vault.test-secret-mgt.prod.cdsf.io
Issued by Amazon
About this certificate
This digital certificate with serial number 0b:03:5a:76:74:02:00:58:51:8e:b1:35:35:28:71:66 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=vault.test-secret-mgt.prod.cdsf.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:03:5a:76:74:02:00:58:51:8e:b1:35:35:28:71:66Serial Number (int): 14638919645899865038463025565586190694
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 8b:41:5d:4c:e6:39:03:1a:3e:17:46:e2:91:c5:c9:bd:f3:92:fa:6e
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 88:d6:fa:a0:72:b1:3c:8a:67:48:d7:a2:20:6e:f9:42:ea:ce:fb:f2
Fingerprint (sha256): 19:4e:98:67:eb:cb:15:c5:60:16:72:95:7e:d0:b5:bd:e3:b0:66:33:7f:99:b0:89:cc:79:3d:76:bf:4a:67:00
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate vault.test-secret-mgt.prod.cdsf.io
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vault.test-secret-mgt.prod.cdsf.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vault.test-secret-mgt.prod.cdsf.io
Other certificates including the domain name cdsf.io
(limited to 100 certificates)
test-simple-tool.tooling.prod.cdsf.io
we-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
dev-simple-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
vault.test-val-secret-mgt.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-val-eu-central-1-test.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
syzygy-access.tisweb.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-vault.test.cdsf.io
registry-test.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
smashing.tooling.prod.cdsf.io
vault-int.int-secret-mgt.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
repo.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.eu-central-1-test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
vault.vault-k8s-val-eu-central-1.prod.cdsf.io
smashing.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
code.tooling.prod.cdsf.io
repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-direct-tool.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
eks.tooling.prod.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
paste.tool.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
we-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
dev-simple-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
vault.test-val-secret-mgt.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-val-eu-central-1-test.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
syzygy-access.tisweb.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-vault.test.cdsf.io
registry-test.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
smashing.tooling.prod.cdsf.io
vault-int.int-secret-mgt.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
repo.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.eu-central-1-test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
vault.vault-k8s-val-eu-central-1.prod.cdsf.io
smashing.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
code.tooling.prod.cdsf.io
repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-direct-tool.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
eks.tooling.prod.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
paste.tool.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
Certificate
The complete raw certificate details for vault.test-secret-mgt.prod.cdsf.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEmjCCA4KgAwIBAgIQCwNadnQCAFhRjrE1NShxZjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA4MjAwMDAwMDBaFw0yMDA5MjAx MjAwMDBaMC0xKzApBgNVBAMTInZhdWx0LnRlc3Qtc2VjcmV0LW1ndC5wcm9kLmNk c2YuaW8wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkOQB2xP4Cb64Q JKXWQsi1aPGsBwqvLcJiYO0hI7Lzkd11rvDgFKhbMUIslnvh0OzRPCLgXfP4vSh9 XH+ZoHhzwm3DX2asAOkhA/kcBUx8mrInnp+LS+AzHQO6tkAdQ0s+0hJ3BxBCuLVM dVfFViIEJgVV8PGpuZwN+RB6/BfXtHvxv9cemBd4VjUHL2zJ/v8Wd6CPvZzbhBhz hRpEM6kfXNJqRU3cW8vt2FmxDQ2U3jj52hBdFiv7aGPZxpH+llBbjSXImrfnLn+a /tYJKstLaL1aR6/bk9ZejiM6P0L2pbLaV3EDy+Nk3RR4aGeuYSnV1FmnFy4FdM7Y sRGP2+q9AgMBAAGjggGbMIIBlzAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0 W/k90DAdBgNVHQ4EFgQUi0FdTOY5Axo+F0bikcXJvfOS+m4wLQYDVR0RBCYwJIIi dmF1bHQudGVzdC1zZWNyZXQtbWd0LnByb2QuY2RzZi5pbzAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAu oCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNybDAg BgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBn MC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20w NgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3Nj YTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqG SIb3DQEBCwUAA4IBAQBlVAnwaZBbMGBX4wxLBlOHtw42L1BrSH2ocDdi3MDdJ/MR ohO+X+xW8uq4mxplfhygPa0nPWscVheVA+WLDudC8NPEIOuCUcKFBa+PJQeLuq9r WCZ3oHYPC0HoXKKU2cq0iSSorWnJ8lLEYWU2DWmWbiQ+iwHs8w+XOR4OLuCI5OIf jbvZskYvhdK5OUa0ScB/whLk4vbNuhqlLZN2W68LgzlcM+XZox3E0sJaFrnHdYQV F+dJBx4VTM5i3Tjd/E4zK5IclELfn+pOy99NlfrScMafsL5LKn0bTEWAv9Wz/uFD R5S2F3U08sHXV5yxDp24uw48UF3HfR+QI/gnzbSv -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApDkAdsT+Am+uECSl1kLI tWjxrAcKry3CYmDtISOy85Hdda7w4BSoWzFCLJZ74dDs0Twi4F3z+L0ofVx/maB4 c8Jtw19mrADpIQP5HAVMfJqyJ56fi0vgMx0DurZAHUNLPtISdwcQQri1THVXxVYi BCYFVfDxqbmcDfkQevwX17R78b/XHpgXeFY1By9syf7/Fnegj72c24QYc4UaRDOp H1zSakVN3FvL7dhZsQ0NlN44+doQXRYr+2hj2caR/pZQW40lyJq35y5/mv7WCSrL S2i9Wkev25PWXo4jOj9C9qWy2ldxA8vjZN0UeGhnrmEp1dRZpxcuBXTO2LERj9vq vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14638919645899865038463025565586190694 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-20 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vault.test-secret-mgt.prod.cdsf.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20731190655691677527856931804527041092200657492282925950979579772413943674335949706014877455685271586655119067056199616798437504438889735956660588190449354375780698415456920688017669933244313289103710793780618791417099339177851335187423466189049659652917026185394573366276728666514333869324463980977955323055356219570300965614271952560423854646945892280809941125877910765694054490622733215712023612233197676281770821583835293982512577077479359243708784804337542527035975685568994728601362290124871787123375377641539466312274026544919893620892750218652540509041243769074000311467716073189331566176975689115205312965309 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8b415d4ce639031a3e1746e291c5c9bdf392fa6e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vault.test-secret-mgt.prod.cdsf.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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