origin.web.production.hca.brightspot.cloud
Issued by Amazon
About this certificate
This digital certificate with serial number 08:eb:4a:f4:57:7d:77:2b:5c:1d:d3:da:79:62:66:85 was issued on by Amazon.
With 14 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=origin.web.production.hca.brightspot.cloud
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:eb:4a:f4:57:7d:77:2b:5c:1d:d3:da:79:62:66:85Serial Number (int): 11855533985094209523412868685220701829
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ef:2b:85:54:bf:1f:83:1b:30:18:28:9b:e0:a6:1d:63:bb:ac:24:e1
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): d6:e9:e5:0b:a2:0d:f1:19:54:bf:31:07:7a:67:a1:fc:c8:75:9d:43
Fingerprint (sha256): 18:a0:57:df:3c:ff:f4:ce:2f:b0:4c:9e:d2:44:03:82:d6:7e:2b:bf:3c:8e:4a:b5:fd:ab:4b:ba:fa:3e:4e:2c
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate origin.web.production.hca.brightspot.cloud
14
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for origin.web.production.hca.brightspot.cloud
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
origin.web.production.hca.brightspot.cloud
web.production.hca.brightspot.cloud
*.origin.web.production.hca.brightspot.cloud
*.web.production.hca.brightspot.cloud
verify.origin.web.production.hca.brightspot.cloud
www.thekey.ca
cms.web.production.hca.brightspot.cloud
thekey.ca
verify.cms.web.production.hca.brightspot.cloud
www.thekey.com
thekey.brightspotcdn.com
static.web.production.hca.brightspot.cloud
thekey.com
brightspot.thekey.com
web.production.hca.brightspot.cloud
*.origin.web.production.hca.brightspot.cloud
*.web.production.hca.brightspot.cloud
verify.origin.web.production.hca.brightspot.cloud
www.thekey.ca
cms.web.production.hca.brightspot.cloud
thekey.ca
verify.cms.web.production.hca.brightspot.cloud
www.thekey.com
thekey.brightspotcdn.com
static.web.production.hca.brightspot.cloud
thekey.com
brightspot.thekey.com
Other certificates including the domain name brightspot.cloud
(limited to 100 certificates)
cst-qa.lower.chorus.brightspot.cloud
origin.ser.production.k1.amazon.brightspot.cloud
origin.uat.lower.google-marketing.brightspot.cloud
entertainment.production.k1.amazon.brightspot.cloud
origin.relay-qa.lower.k1.amazon.brightspot.cloud
biospace-qa.lower.k1.m1.brightspot.cloud
origin.kpbs.kpbs.production.k3.m1.brightspot.cloud
cms.6amcity.com
origin.ajga-uat.ajga.lower.k1.m1.brightspot.cloud
amazon-hvh.lower.k3.m1.brightspot.cloud
static.amazon-hvh.lower.k3.m1.brightspot.cloud
origin.acertus.production.k1.m1.brightspot.cloud
origin.cst-web.production.chorus.brightspot.cloud
origin.web.production.projectm.brightspot.cloud
origin.medtech.production.jnj.brightspot.cloud
origin.web.production.hca.brightspot.cloud
intsys.inter-systems.production.k2.m1.brightspot.cloud
origin.wwe-prod.production.k2.m1.brightspot.cloud
origin.jobs.production.amazon-jobs.brightspot.cloud
origin.berlin-2023-qa.berlin-2023.lower.k2.m1.brightspot.cloud
www.nbcsportsathletedirect.com
static.church-qa.church.lower.church.brightspot.cloud
origin.epe-uat.epe.lower.k2.m1.brightspot.cloud
lehigh-v.lehigh-valley.production.k1.m1.brightspot.cloud
origin.pitchbook-uat.lower.k2.m1.brightspot.cloud
fastmarkets.com
origin.deseret.production.chorus.brightspot.cloud
static.lexipol.lower.k1.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
static.bwater-uat.bridgewater.lower.k2.m1.brightspot.cloud
static.farm-journal-qa.lower.k1.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
origin.web.production.teaching-strategies.brightspot.cloud
origin.thecity.production.chorus.brightspot.cloud
origin.intsys.inter-systems.production.k2.m1.brightspot.cloud
amazon-last-mile.lower.k3.m1.brightspot.cloud
origin.vpm.production.k1.m1.brightspot.cloud
origin.foods.wholefoods.production.k1.amazon.brightspot.cloud
static.biospace.production.k1.m1.brightspot.cloud
bsp.elpais.com.uy
origin.vpm.production.k1.m1.brightspot.cloud
origin.carrick.production.k1.m1.brightspot.cloud
cms.6amcity.com
static.timothy-shriver-prod.production.k1.m1.brightspot.cloud
origin.chalkbeat.production.chorus.brightspot.cloud
origin.berlin-2023.berlin-2023.production.k2.m1.brightspot.cloud
acertus-qa.lower.k1.m1.brightspot.cloud
cms.6amcity.com
cms.6amcity.com
origin.marriott-news.production.k1.m1.brightspot.cloud
origin.ei.energy-intelligence.production.k1.m1.brightspot.cloud
origin.thecity.production.chorus.brightspot.cloud
origin.lehigh-v.lehigh-valley.production.k1.m1.brightspot.cloud
static.uat.lower.dispatch-health.brightspot.cloud
*.dispatchhealth.com
origin.chopra.chopra.production.k2.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
static.uat.lower.amazon-sell.brightspot.cloud
static.notmusa.production.k3.m1.brightspot.cloud
static.aarp-states-uat.aarp.lower.k1.m1.brightspot.cloud
science-qa2.topics.lower.k1.amazon.brightspot.cloud
origin.im-qa.lower.jnj.brightspot.cloud
origin.uat.lower.dispatch-health.brightspot.cloud
sixam-city-uat.lower.k1.m1.brightspot.cloud
origin.rfdtv.k1.go.brightspot.cloud
static.web.production.forum-communications.brightspot.cloud
static.gbh.production.k1.m1.brightspot.cloud
origin.aji.production.k2.m1.brightspot.cloud
origin.notmusa.production.k3.m1.brightspot.cloud
origin.usnews-uat.lower.usnews.brightspot.cloud
verify.origin.prod-news.production.ap.brightspot.cloud
mattress-uat.mattress-firm.lower.k2.m1.brightspot.cloud
origin.qa-migration.lower.el-pais.brightspot.cloud
castle-qa.castle-connolly.lower.k2.m1.brightspot.cloud
origin.qa.lower.google-marketing.brightspot.cloud
sustainability.production.k1.amazon.brightspot.cloud
static.uat.lower.google-marketing.brightspot.cloud
origin.in-investor-qa2.lower.k2.m1.brightspot.cloud
static.acertus.production.k1.m1.brightspot.cloud
origin.lexis.production.ln-production.brightspot.cloud
origin.deseret-qa2.lower.chorus.brightspot.cloud
static.pay.production.k1.amazon.brightspot.cloud
origin.cst-web.production.chorus.brightspot.cloud
origin.lehigh-v.lehigh-valley.production.k1.m1.brightspot.cloud
origin.church-qa.church.lower.church.brightspot.cloud
static.epe.epe.production.k2.m1.brightspot.cloud
origin.pay.production.k1.amazon.brightspot.cloud
origin.sixam-city.production.k1.m1.brightspot.cloud
origin.realtymogul.k1.go.brightspot.cloud
epe-uat.epe.lower.k2.m1.brightspot.cloud
origin.web.production.projectm.brightspot.cloud
origin.farm-journal.production.k1.m1.brightspot.cloud
origin.torridon.production.k2.m1.brightspot.cloud
origin.church-perf.church.lower.church.brightspot.cloud
brightspot-design.brightspotcdn.com
costar-qa.costar.lower.k1.m1.brightspot.cloud
origin.cst-web.production.chorus.brightspot.cloud
fastmarkets.com
costar-uat.costar.lower.k1.m1.brightspot.cloud
origin.web.production.forum-communications.brightspot.cloud
origin.ser.production.k1.amazon.brightspot.cloud
origin.uat.lower.google-marketing.brightspot.cloud
entertainment.production.k1.amazon.brightspot.cloud
origin.relay-qa.lower.k1.amazon.brightspot.cloud
biospace-qa.lower.k1.m1.brightspot.cloud
origin.kpbs.kpbs.production.k3.m1.brightspot.cloud
cms.6amcity.com
origin.ajga-uat.ajga.lower.k1.m1.brightspot.cloud
amazon-hvh.lower.k3.m1.brightspot.cloud
static.amazon-hvh.lower.k3.m1.brightspot.cloud
origin.acertus.production.k1.m1.brightspot.cloud
origin.cst-web.production.chorus.brightspot.cloud
origin.web.production.projectm.brightspot.cloud
origin.medtech.production.jnj.brightspot.cloud
origin.web.production.hca.brightspot.cloud
intsys.inter-systems.production.k2.m1.brightspot.cloud
origin.wwe-prod.production.k2.m1.brightspot.cloud
origin.jobs.production.amazon-jobs.brightspot.cloud
origin.berlin-2023-qa.berlin-2023.lower.k2.m1.brightspot.cloud
www.nbcsportsathletedirect.com
static.church-qa.church.lower.church.brightspot.cloud
origin.epe-uat.epe.lower.k2.m1.brightspot.cloud
lehigh-v.lehigh-valley.production.k1.m1.brightspot.cloud
origin.pitchbook-uat.lower.k2.m1.brightspot.cloud
fastmarkets.com
origin.deseret.production.chorus.brightspot.cloud
static.lexipol.lower.k1.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
static.bwater-uat.bridgewater.lower.k2.m1.brightspot.cloud
static.farm-journal-qa.lower.k1.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
origin.web.production.teaching-strategies.brightspot.cloud
origin.thecity.production.chorus.brightspot.cloud
origin.intsys.inter-systems.production.k2.m1.brightspot.cloud
amazon-last-mile.lower.k3.m1.brightspot.cloud
origin.vpm.production.k1.m1.brightspot.cloud
origin.foods.wholefoods.production.k1.amazon.brightspot.cloud
static.biospace.production.k1.m1.brightspot.cloud
bsp.elpais.com.uy
origin.vpm.production.k1.m1.brightspot.cloud
origin.carrick.production.k1.m1.brightspot.cloud
cms.6amcity.com
static.timothy-shriver-prod.production.k1.m1.brightspot.cloud
origin.chalkbeat.production.chorus.brightspot.cloud
origin.berlin-2023.berlin-2023.production.k2.m1.brightspot.cloud
acertus-qa.lower.k1.m1.brightspot.cloud
cms.6amcity.com
cms.6amcity.com
origin.marriott-news.production.k1.m1.brightspot.cloud
origin.ei.energy-intelligence.production.k1.m1.brightspot.cloud
origin.thecity.production.chorus.brightspot.cloud
origin.lehigh-v.lehigh-valley.production.k1.m1.brightspot.cloud
static.uat.lower.dispatch-health.brightspot.cloud
*.dispatchhealth.com
origin.chopra.chopra.production.k2.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
static.uat.lower.amazon-sell.brightspot.cloud
static.notmusa.production.k3.m1.brightspot.cloud
static.aarp-states-uat.aarp.lower.k1.m1.brightspot.cloud
science-qa2.topics.lower.k1.amazon.brightspot.cloud
origin.im-qa.lower.jnj.brightspot.cloud
origin.uat.lower.dispatch-health.brightspot.cloud
sixam-city-uat.lower.k1.m1.brightspot.cloud
origin.rfdtv.k1.go.brightspot.cloud
static.web.production.forum-communications.brightspot.cloud
static.gbh.production.k1.m1.brightspot.cloud
origin.aji.production.k2.m1.brightspot.cloud
origin.notmusa.production.k3.m1.brightspot.cloud
origin.usnews-uat.lower.usnews.brightspot.cloud
verify.origin.prod-news.production.ap.brightspot.cloud
mattress-uat.mattress-firm.lower.k2.m1.brightspot.cloud
origin.qa-migration.lower.el-pais.brightspot.cloud
castle-qa.castle-connolly.lower.k2.m1.brightspot.cloud
origin.qa.lower.google-marketing.brightspot.cloud
sustainability.production.k1.amazon.brightspot.cloud
static.uat.lower.google-marketing.brightspot.cloud
origin.in-investor-qa2.lower.k2.m1.brightspot.cloud
static.acertus.production.k1.m1.brightspot.cloud
origin.lexis.production.ln-production.brightspot.cloud
origin.deseret-qa2.lower.chorus.brightspot.cloud
static.pay.production.k1.amazon.brightspot.cloud
origin.cst-web.production.chorus.brightspot.cloud
origin.lehigh-v.lehigh-valley.production.k1.m1.brightspot.cloud
origin.church-qa.church.lower.church.brightspot.cloud
static.epe.epe.production.k2.m1.brightspot.cloud
origin.pay.production.k1.amazon.brightspot.cloud
origin.sixam-city.production.k1.m1.brightspot.cloud
origin.realtymogul.k1.go.brightspot.cloud
epe-uat.epe.lower.k2.m1.brightspot.cloud
origin.web.production.projectm.brightspot.cloud
origin.farm-journal.production.k1.m1.brightspot.cloud
origin.torridon.production.k2.m1.brightspot.cloud
origin.church-perf.church.lower.church.brightspot.cloud
brightspot-design.brightspotcdn.com
costar-qa.costar.lower.k1.m1.brightspot.cloud
origin.cst-web.production.chorus.brightspot.cloud
fastmarkets.com
costar-uat.costar.lower.k1.m1.brightspot.cloud
origin.web.production.forum-communications.brightspot.cloud
Certificate
The complete raw certificate details for origin.web.production.hca.brightspot.cloud in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHrTCCBpWgAwIBAgIQCOtK9Fd9dytcHdPaeWJmhTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA2MTAwMDAwMDBaFw0yMzA3MDky MzU5NTlaMDUxMzAxBgNVBAMTKm9yaWdpbi53ZWIucHJvZHVjdGlvbi5oY2EuYnJp Z2h0c3BvdC5jbG91ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL23 8IysHX/hpItemU6Qd3H2UlXS6KVxUlofWfLzEvcWb56tdr/FDJOtYyJ4EpsnCTXP DBnv5R5P9NDtFgkLLQIBll3n4mWpG4S8KmUDGF+eVAYkXzIu3uLzHuE+DTN1kwFY 8Sd5jf4ks6UpnYK9pfM6Kd/3yJzUzSywvIwmN6WBqWapp+razdis29a9SkUeVE3Y 8r0DOQdfbEiPkG8btvzKeOKjDOVwtbCmS5okr1Dm3wEPd7Nt8WvVAjA8FzXiASrU h5/JQp6F14wvsvEAUzsf0PhWHlUortQTt15j2NE/O62hY75SEHj8xx+96ouU1IlO bLTpHgic3hwV3vohfpUCAwEAAaOCBKYwggSiMB8GA1UdIwQYMBaAFFmkZgZSoHuV kjyjlAcnlnRb+T3QMB0GA1UdDgQWBBTvK4VUvx+DGzAYKJvgph1ju6wk4TCCAdIG A1UdEQSCAckwggHFgipvcmlnaW4ud2ViLnByb2R1Y3Rpb24uaGNhLmJyaWdodHNw b3QuY2xvdWSCI3dlYi5wcm9kdWN0aW9uLmhjYS5icmlnaHRzcG90LmNsb3Vkgiwq Lm9yaWdpbi53ZWIucHJvZHVjdGlvbi5oY2EuYnJpZ2h0c3BvdC5jbG91ZIIlKi53 ZWIucHJvZHVjdGlvbi5oY2EuYnJpZ2h0c3BvdC5jbG91ZIIxdmVyaWZ5Lm9yaWdp bi53ZWIucHJvZHVjdGlvbi5oY2EuYnJpZ2h0c3BvdC5jbG91ZIINd3d3LnRoZWtl eS5jYYInY21zLndlYi5wcm9kdWN0aW9uLmhjYS5icmlnaHRzcG90LmNsb3Vkggl0 aGVrZXkuY2GCLnZlcmlmeS5jbXMud2ViLnByb2R1Y3Rpb24uaGNhLmJyaWdodHNw b3QuY2xvdWSCDnd3dy50aGVrZXkuY29tghh0aGVrZXkuYnJpZ2h0c3BvdGNkbi5j b22CKnN0YXRpYy53ZWIucHJvZHVjdGlvbi5oY2EuYnJpZ2h0c3BvdC5jbG91ZIIK dGhla2V5LmNvbYIVYnJpZ2h0c3BvdC50aGVrZXkuY29tMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPQYDVR0fBDYwNDAyoDCg LoYsaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWItMS5jcmww EwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzAB hiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKG Kmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNV HRMBAf8EAjAAMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdwDoPtDaPvUGNTLn Vyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAYFNLU8hAAAEAwBIMEYCIQCKmgJ77n2w 9/5DceZ5qoeilRfyyAtJm52z1CPgDPmBVAIhAMtjYe4vE7kWqC3C1s+BTKBbRUOz Q3MlmIwPVgK24uYbAHcANc8ZG7+xbFe/D61MbULLu7YnICZR6j/hKu+oA8M71kwA AAGBTS1PWwAABAMASDBGAiEAj4narbwNZt1WUgYzUxnjLTj+0uaUf0dmv3izN2G8 RyMCIQDJZlOjuK5RQOti+6RDqeJIYGHseBC14C/5nh19X3Q5oQB2ALc++yTfnE26 dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABgU0tT0YAAAQDAEcwRQIgJg/ABd2Y KiCzk1QVQ6Em33azcAerkyOG1TQIXCXfXrkCIQCEXf+cK5XjvmyQOKTHrdwTKXrc sM8eRB3DoV8SHODfqjANBgkqhkiG9w0BAQsFAAOCAQEAPldcY3XCXvDllth2qzlx RmI+Q89P2wSBM1zR/rJSK2ztrNC431NnaA33tdzvo/JZQ72GWGiSpbJyVLq5jUOC CxRo1KtB/skqB/3ZRmtD5hVXHgNYmGjwyiy3O8UNuwvVOwy6MTZJyGJhXGFbnsFF hI6XBgVtXyPVfuthZLYl1dMf+VWZmTm5De5Qn0peoeqwkQszOkews3o93oLTNkFr 9HQ1oN4T9NC/XZXcCxpv38fe0BKTX+aC50e4SMOuoZ89VSCQAVypvelD4J022/Es Bjpg/78yhgKJKKPlAsT5rywwYmrsj7oav3eFiI7VGzKIcDHAmABBa7YOahkEomvg 2g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbfwjKwdf+Gki16ZTpB3 cfZSVdLopXFSWh9Z8vMS9xZvnq12v8UMk61jIngSmycJNc8MGe/lHk/00O0WCQst AgGWXefiZakbhLwqZQMYX55UBiRfMi7e4vMe4T4NM3WTAVjxJ3mN/iSzpSmdgr2l 8zop3/fInNTNLLC8jCY3pYGpZqmn6trN2Kzb1r1KRR5UTdjyvQM5B19sSI+Qbxu2 /Mp44qMM5XC1sKZLmiSvUObfAQ93s23xa9UCMDwXNeIBKtSHn8lCnoXXjC+y8QBT Ox/Q+FYeVSiu1BO3XmPY0T87raFjvlIQePzHH73qi5TUiU5stOkeCJzeHBXe+iF+ lQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11855533985094209523412868685220701829 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'origin.web.production.hca.brightspot.cloud' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23949743658854102336039663702962827319715667271921333198239656511543885923441440085980160585673192572685638460948368979110833694129990910327216710684652159773543746778603876801500495192656860297446942832268508182870845620367276219223647353602265025092644386574044348637706261634248727338694053999998508715377748916236455970606071017022352335014307590586704691444984891775649022292840125136126688559651395578485288680026081821070780167342139512215633436673777826197584940156705220026919533402798197477042534188723042863260182333200892184458572746770147936097332129935910920960474424084406283171992031347662306186198677 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ef2b8554bf1f831b3018289be0a61d63bbac24e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (457 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.origin.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'verify.origin.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thekey.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thekey.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'verify.cms.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thekey.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thekey.brightspotcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thekey.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brightspot.thekey.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 003e575c6375c25ef0e596d876ab397146623e43cf4fdb0481335cd1feb2522b6cedacd0b8df5367680df7b5dcefa3f25943bd86586892a5b27254bab98d43820b1468d4ab41fec92a07fdd9466b43e615571e03589868f0ca2cb73bc50dbb0bd53b0cba313649c862615c615b9ec145848e9706056d5f23d57eeb6164b625d5d31ff955999939b90dee509f4a5ea1eab0910b333a47b0b37a3dde82d336416bf47435a0de13f4d0bf5d95dc0b1a6fdfc7ded012935fe682e747b848c3aea19f3d552090015ca9bde943e09d36dbf12c063a60ffbf3286028928a3e502c4f9af2c30626aec8fba1abf7785888ed51b32887031c09800416bb60e6a1904a26be0da