play.hbomax.com
Issued by Amazon
About this certificate
This digital certificate with serial number 02:de:c1:9e:e7:8a:e5:14:1f:78:88:29:c0:56:0e:78 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=play.hbomax.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:de:c1:9e:e7:8a:e5:14:1f:78:88:29:c0:56:0e:78Serial Number (int): 3815072988926696330463246354851696248
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 11:6d:67:58:0e:05:a2:2d:ef:bd:b5:13:7c:7e:9d:75:b4:56:50:98
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): eb:cd:49:74:d3:18:92:d5:17:63:1a:c7:0b:8c:d3:5a:60:b4:7d:a7
Fingerprint (sha256): 18:74:48:81:8d:50:01:9e:17:18:a8:89:a4:25:82:89:82:8f:86:72:b4:1d:07:3f:aa:a0:89:a4:47:fa:f7:4b
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate play.hbomax.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for play.hbomax.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
play.hbomax.com
*.play.hbomax.com
*.play.hbomax.com
Other certificates including the domain name hbomax.com
(limited to 100 certificates)
dash.pro42.akm.cdn.hbogo.com
terraform-fix-test.micro.hbomax.com
view.cx.hbomax.com
hbomax.com
dmx-web.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
hbo.map.fastly.net
listen.hbomax.com
dash.pro42.akm.cdn.hbogo.com
listen.hbomax.com
play.hbomax.com
hbomax.com
vizio.play.codex-int.hbo.com
imagespecs.micro.hbomax.com
press.hbomax.com
press.hbomax.com
admin-test.micro.hbomax.com
test45.micro.hbomax.com
help.hbomax.com
trk.hbomax.com
turner.com
scooby-doo.micro.hbomax.com
vizio.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
ssl766512.cloudflaressl.com
hbomax.com
hbo.map.fastly.net
hbonow.com
play.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
xtv.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
san-3-s6.tlsprovisioning.exacttarget.com
listen.hbomax.com
cms.orbit.hbomax.com
cms.orbit.hbomax.com
ssl766511.cloudflaressl.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
turner.com
hbo.map.fastly.net
dmx-web.play.codex-int.hbo.com
hbomax.com
hbo.map.fastly.net
hbo.map.fastly.net
hbomax.com
shows.hbomax.com
trk.hbomax.com
hbo.map.fastly.net
shared-ingress-protected-prod-us-1-us-west-2.api.hbo.com
partners.hbomax.com
click.cx.hbomax.com
ablink.mail.hbomax.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
play.hbomax.com
listen.hbomax.com
hbomax.com
play.hbomax.com
raised-by-wolves.micro.hbomax.com
turner.com
ziggo.play.codex-int.hbo.com
ablink.email.hbomax.com
turner.com
xtv.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
play.hbomax.com
turner.com
test-statushub-three.micro.hbomax.com
hbomaximagespecs.com
cdn.hbomax.com
ssl766511.cloudflaressl.com
cox.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-west-1.api.hbo.com
ablink.mail.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
hbo.map.fastly.net
hbomax.com
cms.orbit.hbomax.com
qa.partner.hbomax.com
cloud.cx.hbomax.com
listen.hbomax.com
cms.orbit.hbomax.com
unpregnant.micro.hbo.com
hbo.map.fastly.net
hbo.map.fastly.net
vf-tivo.play.codex-int.hbo.com
partners.hbomax.com
ingest.orbit.hbomax.com
cdn.hbomax.com
hbomax.com
poc.cdn.hbomax.com
dmx-web.play.codex-int.hbo.com
atdl-contest.micro.hbomax.com
listen.hbomax.com
activate.hbomax.com
hbo.map.fastly.net
vf-sagemcom.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
terraform-fix-test.micro.hbomax.com
view.cx.hbomax.com
hbomax.com
dmx-web.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
hbo.map.fastly.net
listen.hbomax.com
dash.pro42.akm.cdn.hbogo.com
listen.hbomax.com
play.hbomax.com
hbomax.com
vizio.play.codex-int.hbo.com
imagespecs.micro.hbomax.com
press.hbomax.com
press.hbomax.com
admin-test.micro.hbomax.com
test45.micro.hbomax.com
help.hbomax.com
trk.hbomax.com
turner.com
scooby-doo.micro.hbomax.com
vizio.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
ssl766512.cloudflaressl.com
hbomax.com
hbo.map.fastly.net
hbonow.com
play.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
xtv.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
san-3-s6.tlsprovisioning.exacttarget.com
listen.hbomax.com
cms.orbit.hbomax.com
cms.orbit.hbomax.com
ssl766511.cloudflaressl.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
turner.com
hbo.map.fastly.net
dmx-web.play.codex-int.hbo.com
hbomax.com
hbo.map.fastly.net
hbo.map.fastly.net
hbomax.com
shows.hbomax.com
trk.hbomax.com
hbo.map.fastly.net
shared-ingress-protected-prod-us-1-us-west-2.api.hbo.com
partners.hbomax.com
click.cx.hbomax.com
ablink.mail.hbomax.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
play.hbomax.com
listen.hbomax.com
hbomax.com
play.hbomax.com
raised-by-wolves.micro.hbomax.com
turner.com
ziggo.play.codex-int.hbo.com
ablink.email.hbomax.com
turner.com
xtv.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
play.hbomax.com
turner.com
test-statushub-three.micro.hbomax.com
hbomaximagespecs.com
cdn.hbomax.com
ssl766511.cloudflaressl.com
cox.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-west-1.api.hbo.com
ablink.mail.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
hbo.map.fastly.net
hbomax.com
cms.orbit.hbomax.com
qa.partner.hbomax.com
cloud.cx.hbomax.com
listen.hbomax.com
cms.orbit.hbomax.com
unpregnant.micro.hbo.com
hbo.map.fastly.net
hbo.map.fastly.net
vf-tivo.play.codex-int.hbo.com
partners.hbomax.com
ingest.orbit.hbomax.com
cdn.hbomax.com
hbomax.com
poc.cdn.hbomax.com
dmx-web.play.codex-int.hbo.com
atdl-contest.micro.hbomax.com
listen.hbomax.com
activate.hbomax.com
hbo.map.fastly.net
vf-sagemcom.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
Certificate
The complete raw certificate details for play.hbomax.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6DCCBNCgAwIBAgIQAt7BnueK5RQfeIgpwFYOeDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA0MjgwMDAwMDBaFw0yMzA1Mjcy MzU5NTlaMBoxGDAWBgNVBAMTD3BsYXkuaGJvbWF4LmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAMN2TN8hZuGnfKc3Nexi/83Ws1wfHaO1Kg+QqHif enOay3pO77wYgcVama5UG/cB0E8toPda0hKbk9y/wSdcibNK7YziaRsRRtiXWtIm lAmnjsJDrm1TQqxOE32LmnISn1IarWi2BL9p6NT0Sie3gMaD2FFFXaOD3FgGUok3 gjs6GwlOBHnvn5OCpZ+XVF0avE5AH7VwSnjc3UDSQWOrs5KM3TRvlTLFTms0b2+j LRn41ii9Dvr8sjyxBaGqbheg0Iwu2uYBIuwefgIU0f7oRMMPiUjWzRQnSaAF7l/3 rwbbSs3Jcncm/eCKW2JjK3dXvo7Ih+ijSuU+WMfEE2y36BsCAwEAAaOCAvwwggL4 MB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBQRbWdY DgWiLe+9tRN8fp11tFZQmDAtBgNVHREEJjAkgg9wbGF5Lmhib21heC5jb22CESou cGxheS5oYm9tYXguY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwPQYDVR0fBDYwNDAyoDCgLoYsaHR0cDovL2NybC5zY2Ex Yi5hbWF6b250cnVzdC5jb20vc2NhMWItMS5jcmwwEwYDVR0gBAwwCjAIBgZngQwB AgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2Ex Yi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIu YW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMIIBfQYKKwYB BAHWeQIEAgSCAW0EggFpAWcAdgCt9776fP8QyIudPZwePhhqtGcpXc+xDCTKhYY0 69yCigAAAYBt8wJ3AAAEAwBHMEUCIQDhsFPLAT5Nb/LwRtUwz9gUdrgQejy1lLEH 6s/+WBb+EAIgWSKobZdXEwB7zjB8zl1DcQSd+t9szeOMtxFpjyR4begAdQA1zxkb v7FsV78PrUxtQsu7ticgJlHqP+Eq76gDwzvWTAAAAYBt8wJoAAAEAwBGMEQCIF+A G+aJyroJbqkxAcuk98w9lK/wGN2MO2kxsRdQ5p/DAiBxglO3F2/DLAIFWrLAWpt0 Ewz+D6By4XJrlugvE15y9wB2ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55 NqWaAAABgG3zAqYAAAQDAEcwRQIgBzNlDf1xg2lAUoL2gKkUnwni1wgaB5kUcFgP 6I3H1lMCIQC3eAssv3iVWv396QyMYUuNTRRD6DBeW8UmhH/IevVv0zANBgkqhkiG 9w0BAQsFAAOCAQEAv/92KXVsU8sQ3eSmK61iDjRH8tjJPt0aOMuhjDXl1aFYq0xL p9Zse1gU4AYKnGVRSwMKrTcXTUc/h8896Jp7y7oxqT7ToVeAkhB1MvSxBeEjBKO4 SOG0HlOjTZVRWAwhb8Z8O7gBDTZJlTP1nX2iu23fykz7a1U7XJS00TDyaCV4wxFc 37TjEEmBQmIcNLJRwAyRTJ4/UWyni81r+L1JZ2nWG/NC6nVIbKIvXTLijMmInNJx hePwX6LdyhofFQtJNEroQN2p7zjyMSDdRzGwuCz745KZOrW7hJEK7cO53GsodfIy dw/HbL5gPcHaPWmcLHrEbDIJEGsQr9TZNSXHWA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw3ZM3yFm4ad8pzc17GL/ zdazXB8do7UqD5CoeJ96c5rLek7vvBiBxVqZrlQb9wHQTy2g91rSEpuT3L/BJ1yJ s0rtjOJpGxFG2Jda0iaUCaeOwkOubVNCrE4TfYuachKfUhqtaLYEv2no1PRKJ7eA xoPYUUVdo4PcWAZSiTeCOzobCU4Eee+fk4Kln5dUXRq8TkAftXBKeNzdQNJBY6uz kozdNG+VMsVOazRvb6MtGfjWKL0O+vyyPLEFoapuF6DQjC7a5gEi7B5+AhTR/uhE ww+JSNbNFCdJoAXuX/evBttKzclydyb94IpbYmMrd1e+jsiH6KNK5T5Yx8QTbLfo GwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3815072988926696330463246354851696248 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-04-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'play.hbomax.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24674805510515994743095112450019628896856339941196204699706184746955159295368982189086945066586375239342730589063376692141889384620022473776130461651171604810662517050807087634182742433599259704796329611277388105461883775800131079075361889976461478101736884910577554118165382746955358656528359712343127428418198020161331349539048966438694057500534794484236091460328349115477077193754474252249415634673596959685122198572184035611404762722295044042378704071031161496304002480286384907249166284514546500381170116110953881386625961151652385228417210321861768806287256699024799552077115529190990779242602350205138206451739 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 116d67580e05a22defbdb5137c7e9d75b4565098 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'play.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.play.hbomax.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00bfff7629756c53cb10dde4a62bad620e3447f2d8c93edd1a38cba18c35e5d5a158ab4c4ba7d66c7b5814e0060a9c65514b030aad37174d473f87cf3de89a7bcbba31a93ed3a1578092107532f4b105e12304a3b848e1b41e53a34d9551580c216fc67c3bb8010d36499533f59d7da2bb6ddfca4cfb6b553b5c94b4d130f2682578c3115cdfb4e310498142621c34b251c00c914c9e3f516ca78bcd6bf8bd496769d61bf342ea75486ca22f5d32e28cc9889cd27185e3f05fa2ddca1a1f150b49344ae840dda9ef38f23120dd4731b0b82cfbe392993ab5bb84910aedc3b9dc6b2875f232770fc76cbe603dc1da3d699c2c7ac46c3209106b10afd4d93525c758