espnqa.com
Issued by Amazon
About this certificate
This digital certificate with serial number 06:aa:22:2d:09:c1:45:a0:81:d5:12:c6:a0:ad:62:32 was issued on by Amazon.
With 17 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=espnqa.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:aa:22:2d:09:c1:45:a0:81:d5:12:c6:a0:ad:62:32Serial Number (int): 8858751610873269808662135947200913970
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: f5:93:b2:b0:60:50:73:ed:5d:a6:a7:a1:28:9c:8f:1f:c9:e2:83:bb
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): d0:c1:fa:4e:52:5c:43:57:15:0d:31:29:75:73:94:97:e7:5d:1f:e1
Fingerprint (sha256): 19:a5:bc:f0:e1:ac:89:74:29:76:10:db:58:22:48:98:77:06:39:6f:ee:25:87:8e:4b:1b:5f:00:12:bc:ff:ac
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate espnqa.com
17
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for espnqa.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
espnqa.com
watch.video.api.espnqa.com
watch.auth.api.espnqa.com
watch.product.api.espnqa.com
*.api.espnqa.com
site.web.api.espnqa.com
watch.graph.api.espnqa.com
*.shortstop.espnqa.com
fan.core.api.espnqa.com
*.espnqa.com
*.espnqa.net
*.espncdn.com
site.mobile.api.espnqa.com
*.core.api.espnqa.com
*.fan.api.espnqa.com
*.partnerpub.espnqa.com
watch.admin.espnqa.com
watch.video.api.espnqa.com
watch.auth.api.espnqa.com
watch.product.api.espnqa.com
*.api.espnqa.com
site.web.api.espnqa.com
watch.graph.api.espnqa.com
*.shortstop.espnqa.com
fan.core.api.espnqa.com
*.espnqa.com
*.espnqa.net
*.espncdn.com
site.mobile.api.espnqa.com
*.core.api.espnqa.com
*.fan.api.espnqa.com
*.partnerpub.espnqa.com
watch.admin.espnqa.com
Other certificates including the domain name espnqa.com
(limited to 100 certificates)
espnqa.com
editions.espnqa.com
m.espnqa.com
cdn.secure.espn.go.com
www.espnqa.com
espnqa.com
espnqa.com
broadband.espnqa.com
espnqa.com
cdn.espnqa.com
cdn.espnqa.com
www.aws.espn.com
www.espnqa.com
espnqa.com
www.espn.com
*.web.plus.espnqa.com
www.espn.com
espnqa.com
cdn.secure.espn.go.com
cdn.espnqa.com
espnqa.com
dcs7deportes.geo.hosted.espn.com
espn.com
espnqa.com
espnqa.com
games.espnqa.com
espnqa.com
www.espn.com
espnqa.com
www.espnqa.com
cdn.espnqa.com
www.espn.com
www.espn.com
espnqa.com
espnqa.com
tredir.ppe.go.com
espn.com
creativestudio.espnqa.com
cdp-dev-airflow-cluster.aws.dp.hosted.espndev.com
dcs7deportes.geo.hosted.espnqa.com
www.espnqa.com
www.espn.com
cdn.espnqa.com
www.espn.com
dcf.espn.com
www.espnqa.com
espn.com
editions.espnqa.com
*.cms.internal.espnqa.com
www.espnqa.com
espn.com
www.espn.com
cdn.secure.espn.go.com
www.espn.com
espnqa.com
csr-nonprod3-axis.disney.network
cdn.espnqa.com
espnqa.com
dcf.espn.com
www.espn.com
espnqa.com
dcf.espn.com
www.espnqa.com
www.espn.com
www.espnqa.com
internal.espnqa.com
www.espn.com
espnqa.com
espnqa.com
espn.com
csr-nonprod3-axis.disney.network
dcf.espn.com
www.espnqa.com
www.espnqa.com
www.espn.com
abcfeqa.com
*.api.espnqa.com
dcs7deportes.geo.hosted.espnqa.com
cdn.secure.espn.go.com
www.aws.espn.com
www.espnqa.com
tredir.ppe.go.com
espnqa.com
espnqa.com
cdn.espnqa.com
www.aws.espn.com
www.espnqa.com
www.espn.com
tredir.ppe.go.com
cdn.secure.espn.go.com
r.espnqa.com
www.aws.espn.com
cdn.secure.espn.go.com
cdn.espnqa.com
cdn.espnqa.com
espnqa.com
dev-cdp-nifi-cluster.aws.dp.hosted.espndev.com
www.espnqa.com
cdn.espnqa.com
espn.com
editions.espnqa.com
m.espnqa.com
cdn.secure.espn.go.com
www.espnqa.com
espnqa.com
espnqa.com
broadband.espnqa.com
espnqa.com
cdn.espnqa.com
cdn.espnqa.com
www.aws.espn.com
www.espnqa.com
espnqa.com
www.espn.com
*.web.plus.espnqa.com
www.espn.com
espnqa.com
cdn.secure.espn.go.com
cdn.espnqa.com
espnqa.com
dcs7deportes.geo.hosted.espn.com
espn.com
espnqa.com
espnqa.com
games.espnqa.com
espnqa.com
www.espn.com
espnqa.com
www.espnqa.com
cdn.espnqa.com
www.espn.com
www.espn.com
espnqa.com
espnqa.com
tredir.ppe.go.com
espn.com
creativestudio.espnqa.com
cdp-dev-airflow-cluster.aws.dp.hosted.espndev.com
dcs7deportes.geo.hosted.espnqa.com
www.espnqa.com
www.espn.com
cdn.espnqa.com
www.espn.com
dcf.espn.com
www.espnqa.com
espn.com
editions.espnqa.com
*.cms.internal.espnqa.com
www.espnqa.com
espn.com
www.espn.com
cdn.secure.espn.go.com
www.espn.com
espnqa.com
csr-nonprod3-axis.disney.network
cdn.espnqa.com
espnqa.com
dcf.espn.com
www.espn.com
espnqa.com
dcf.espn.com
www.espnqa.com
www.espn.com
www.espnqa.com
internal.espnqa.com
www.espn.com
espnqa.com
espnqa.com
espn.com
csr-nonprod3-axis.disney.network
dcf.espn.com
www.espnqa.com
www.espnqa.com
www.espn.com
abcfeqa.com
*.api.espnqa.com
dcs7deportes.geo.hosted.espnqa.com
cdn.secure.espn.go.com
www.aws.espn.com
www.espnqa.com
tredir.ppe.go.com
espnqa.com
espnqa.com
cdn.espnqa.com
www.aws.espn.com
www.espnqa.com
www.espn.com
tredir.ppe.go.com
cdn.secure.espn.go.com
r.espnqa.com
www.aws.espn.com
cdn.secure.espn.go.com
cdn.espnqa.com
cdn.espnqa.com
espnqa.com
dev-cdp-nifi-cluster.aws.dp.hosted.espndev.com
www.espnqa.com
cdn.espnqa.com
espn.com
Certificate
The complete raw certificate details for espnqa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4jCCBMqgAwIBAgIQBqoiLQnBRaCB1RLGoK1iMjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA3MjIwMDAwMDBaFw0yMDA4MjIx MjAwMDBaMBUxEzARBgNVBAMTCmVzcG5xYS5jb20wggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYfEK5XvoLmakifl1iv5ctWjDqrNjm60jE6N/Wwlq5Ayak UAZvE3KtrV20C1a0Fz/4yojZbFfH4+Xpif62UQFX/xiyOtnq/IICinFiHSA31rJa hzTtEYRKBjEmMkwiNDIWq56Yqj9u6PeliFDxGfJBzTYJsGuy0KQBmSdIyuN9TJFV Mf8aP9dN78kmhyPd+F8cc201UbvGGTq/MWcLKyST5N1grHrztE1ZCMyCHaCnNYXT pSoLDh4OcgrVwas7vwkcbK8vtkfcmIwuwuoLCTpSu1l4KkV6StMRM1jlM2NZbXIj GRu+RY1gjj6m25V/HtcPbDFrAdmjvhyAi3lvlAipAgMBAAGjggL7MIIC9zAfBgNV HSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQU9ZOysGBQc+1d pqehKJyPH8nig7swggGLBgNVHREEggGCMIIBfoIKZXNwbnFhLmNvbYIad2F0Y2gu dmlkZW8uYXBpLmVzcG5xYS5jb22CGXdhdGNoLmF1dGguYXBpLmVzcG5xYS5jb22C HHdhdGNoLnByb2R1Y3QuYXBpLmVzcG5xYS5jb22CECouYXBpLmVzcG5xYS5jb22C F3NpdGUud2ViLmFwaS5lc3BucWEuY29tghp3YXRjaC5ncmFwaC5hcGkuZXNwbnFh LmNvbYIWKi5zaG9ydHN0b3AuZXNwbnFhLmNvbYIXZmFuLmNvcmUuYXBpLmVzcG5x YS5jb22CDCouZXNwbnFhLmNvbYIMKi5lc3BucWEubmV0gg0qLmVzcG5jZG4uY29t ghpzaXRlLm1vYmlsZS5hcGkuZXNwbnFhLmNvbYIVKi5jb3JlLmFwaS5lc3BucWEu Y29tghQqLmZhbi5hcGkuZXNwbnFhLmNvbYIXKi5wYXJ0bmVycHViLmVzcG5xYS5j b22CFndhdGNoLmFkbWluLmVzcG5xYS5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRw Oi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkw FzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEF BQcwAYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUF BzAChipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQw DAYDVR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsF AAOCAQEAVawgknjKvyOPS90SOV2NDn42uITRIiep/dwwasDy7MhyvFkescf0oCDQ x6aDzZSmpw2PDGkWX3dpwPyszTOc+BoFHiBztKwsCZjOdISb1Rw6ZzvEuNrkSBEZ HunP3DeeXM9ycWU0TdJb9yjwNkw1M+f6pctwjfBe21cGXWfFNmRBMcPzxW3+2DLB TamYWBJ8V5nedRwTckTz3Og+gHqhLjy7w0i8f7gKZ3mNitxqiMfGV4JetxGnklmm YYlWTT7dhSvYw1jpJqVl1rqgF4reGFn7Nwe1AhO3WP8C9IQngVZ6mp3II306FStG Nl5jC7zEBdjGIpoxy+vfJqZh7Pue6w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2HxCuV76C5mpIn5dYr+X LVow6qzY5utIxOjf1sJauQMmpFAGbxNyra1dtAtWtBc/+MqI2WxXx+Pl6Yn+tlEB V/8YsjrZ6vyCAopxYh0gN9ayWoc07RGESgYxJjJMIjQyFquemKo/buj3pYhQ8Rny Qc02CbBrstCkAZknSMrjfUyRVTH/Gj/XTe/JJocj3fhfHHNtNVG7xhk6vzFnCysk k+TdYKx687RNWQjMgh2gpzWF06UqCw4eDnIK1cGrO78JHGyvL7ZH3JiMLsLqCwk6 UrtZeCpFekrTETNY5TNjWW1yIxkbvkWNYI4+ptuVfx7XD2wxawHZo74cgIt5b5QI qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8858751610873269808662135947200913970 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-22 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'espnqa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27328749078522219857726148321609855489074977599647162710035741326936650464943602813351146201843511990945938578438127283578806542526948624937611242280488586921065052819444789195778641901773453787350634842395132969442875478934237068921963958399452087033571543429434427476141442590779301794765814284132156007556790277449095293162836163775356036396952397092115331388542618521180517013316031798786313274691285612648374766463472396325905357334746349141173906309067176739170005219940789997071620634582348597661318565208568475308673398596787822239522144640975470584349782933482494158622555431821411204972884926030580582451369 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f593b2b0605073ed5da6a7a1289c8f1fc9e283bb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (386 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watch.video.api.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watch.auth.api.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watch.product.api.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'site.web.api.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watch.graph.api.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.shortstop.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fan.core.api.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.espnqa.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.espncdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'site.mobile.api.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.core.api.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fan.api.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.partnerpub.espnqa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watch.admin.espnqa.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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