vault.test-int-secret-mgt.prod.cdsf.io
Issued by Amazon
About this certificate
This digital certificate with serial number 0c:57:ac:4c:82:3c:5a:4a:45:20:78:d1:81:54:1d:4d was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=vault.test-int-secret-mgt.prod.cdsf.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:57:ac:4c:82:3c:5a:4a:45:20:78:d1:81:54:1d:4dSerial Number (int): 16405960412209712858905784376932703565
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 64:b5:aa:e1:e2:a9:96:23:65:c4:59:85:f5:ad:28:4b:f8:e4:ab:99
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): aa:be:70:47:34:04:ac:17:6a:75:20:84:cc:87:16:65:48:49:d1:67
Fingerprint (sha256): 18:42:2c:6f:49:84:59:8b:64:1b:4a:61:2f:35:b9:20:a8:2b:c9:49:22:cf:e0:3a:12:94:8a:92:2d:a9:a7:c3
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate vault.test-int-secret-mgt.prod.cdsf.io
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vault.test-int-secret-mgt.prod.cdsf.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vault.test-int-secret-mgt.prod.cdsf.io
Other certificates including the domain name cdsf.io
(limited to 100 certificates)
test-simple-tool.tooling.prod.cdsf.io
we-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
dev-simple-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
vault.test-val-secret-mgt.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-val-eu-central-1-test.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
syzygy-access.tisweb.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-vault.test.cdsf.io
registry-test.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
smashing.tooling.prod.cdsf.io
vault-int.int-secret-mgt.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
repo.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.eu-central-1-test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
vault.vault-k8s-val-eu-central-1.prod.cdsf.io
smashing.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
code.tooling.prod.cdsf.io
repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-direct-tool.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
eks.tooling.prod.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
paste.tool.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
we-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
dev-simple-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
vault.test-val-secret-mgt.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-val-eu-central-1-test.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
syzygy-access.tisweb.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-vault.test.cdsf.io
registry-test.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
smashing.tooling.prod.cdsf.io
vault-int.int-secret-mgt.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
repo.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.eu-central-1-test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
vault.vault-k8s-val-eu-central-1.prod.cdsf.io
smashing.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
code.tooling.prod.cdsf.io
repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-direct-tool.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
eks.tooling.prod.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
paste.tool.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
Certificate
The complete raw certificate details for vault.test-int-secret-mgt.prod.cdsf.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEojCCA4qgAwIBAgIQDFesTII8WkpFIHjRgVQdTTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTEyMzEwMDAwMDBaFw0yMTAxMzEx MjAwMDBaMDExLzAtBgNVBAMTJnZhdWx0LnRlc3QtaW50LXNlY3JldC1tZ3QucHJv ZC5jZHNmLmlvMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscDDpu1N wb2w0LJD9QcmgLIy1t5TpZc1GOkVj4ZD8RbTP51SCCAhKFcJf+g2BMmUmIYM4lOf PZDT9urmlEAQZchQVzeV0qJ7jDyZ9EW2minZM/PDzPnTFJlluoA1KJVwki3ERLtA ic+Pb8KuYFUtyf6b8n6tYpjURV1QX1RTvjY8voPxxDHMc/vIEBIfIec+HIuq72U1 FR8p23SFd8JNKeFsjn7PnIQGB6vUZKqClXT1WQGbJDxFYpkn145yWZEaQRTdHB86 ELf0MIbr8jrw1+D2TIu4+sJAzwQXAZXLJWf5/h5nIpokt6zOHHTA7ISuqcTago5K nHlQtGBufAMI6QIDAQABo4IBnzCCAZswHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOU ByeWdFv5PdAwHQYDVR0OBBYEFGS1quHiqZYjZcRZhfWtKEv45KuZMDEGA1UdEQQq MCiCJnZhdWx0LnRlc3QtaW50LXNlY3JldC1tZ3QucHJvZC5jZHNmLmlvMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0f BDQwMjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2Nh MWIuY3JsMCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEF BQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRy dXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVz dC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQC BQAwDQYJKoZIhvcNAQELBQADggEBAA1GCc0YWVsDxNgPUQuOe1kMSCbcCyZFYJAE AZASKJ+oNSJmf7EOAdZ3G14KFARH+MwXOYDXyJ4l8EicBFdBdWJZYnGCRWWv2sBK op0ewh3N2biMxemmVP9vWmGJQdolAnHo0ZjCZSseHBgD7Wa4R+DXqzlWYNfJnsSv U4InulSrXi0aivzdkGHGNsnnfqCS7xt2bFDqrTfoXjWIrnfaA8va0ToELu/RVCBA KoWfAvDFlpDor/+10+QFwOMiVAO2CMJ+ugn+QmNyKbUJxlx7ORDbrPF+iBfuH+CX hfwkZaoJMEkfN1f1Xqcgvwzy6T4nhnvkjgiifRfwm/+x6CZYQCg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscDDpu1Nwb2w0LJD9Qcm gLIy1t5TpZc1GOkVj4ZD8RbTP51SCCAhKFcJf+g2BMmUmIYM4lOfPZDT9urmlEAQ ZchQVzeV0qJ7jDyZ9EW2minZM/PDzPnTFJlluoA1KJVwki3ERLtAic+Pb8KuYFUt yf6b8n6tYpjURV1QX1RTvjY8voPxxDHMc/vIEBIfIec+HIuq72U1FR8p23SFd8JN KeFsjn7PnIQGB6vUZKqClXT1WQGbJDxFYpkn145yWZEaQRTdHB86ELf0MIbr8jrw 1+D2TIu4+sJAzwQXAZXLJWf5/h5nIpokt6zOHHTA7ISuqcTago5KnHlQtGBufAMI 6QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16405960412209712858905784376932703565 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-31 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-31 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vault.test-int-secret-mgt.prod.cdsf.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22439235581255495538511164166593556389480369140664431517127559985963733112191126748854758486376854659831490773942403279907786507857936887696532207200165502177001158400517593000442200831647647339748535341560661718097477014974131917863206409229222826968977040826340943690458975493440958894327487808746554870641319069817184261442026766739508337786581435386540518710096761828294996300794665657749365640620821464727552367667807490811680576638778071435010447790573397025962461160484917160476084748149705081583929164206726392648717051900894450133666058448470024322428215645220535953615360061627791354118727108592317925361897 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 64b5aae1e2a9962365c45985f5ad284bf8e4ab99 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vault.test-int-secret-mgt.prod.cdsf.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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