*.stage.buzzfeed.io
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 02:d2:f5:5b:84:60:64:1f:38:17:04:52:3b:5e:83:92 was issued on by Amazon.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.stage.buzzfeed.io
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:d2:f5:5b:84:60:64:1f:38:17:04:52:3b:5e:83:92Serial Number (int): 3753814772946379992747217102540014482
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: d9:07:06:58:e2:b1:78:bd:68:f8:66:93:45:f5:52:10:ea:73:07:be
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): af:de:86:6b:77:73:aa:2b:e8:36:34:cc:8d:da:ce:de:87:32:58:03
Fingerprint (sha256): 1a:85:bc:92:f8:d0:e5:df:ec:e1:e4:0b:4d:f3:61:23:03:8e:92:69:26:6f:a0:c2:3c:cd:f4:18:bb:70:bc:6d
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.stage.buzzfeed.io
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.stage.buzzfeed.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.stage.buzzfeed.io
*.bzfd.it
*.use1.huffpo.net
*.sso.stage.huffpost.net
*.glb.buzzfeed.io
*.huffpost.net
*.cambria-production.huffpo.net
*.buzzfeed.com
*.cambria-staging.huffpo.net
*.buzzfeed.io
*.stage.huffpost.net
*.sso.stage.buzzfeed.io
*.staging.huffingtonpost.com
*.bzfd.it
*.use1.huffpo.net
*.sso.stage.huffpost.net
*.glb.buzzfeed.io
*.huffpost.net
*.cambria-production.huffpo.net
*.buzzfeed.com
*.cambria-staging.huffpo.net
*.buzzfeed.io
*.stage.huffpost.net
*.sso.stage.buzzfeed.io
*.staging.huffingtonpost.com
Other certificates including the domain name buzzfeed.io
(limited to 100 certificates)
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo02.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.adminprod.buzzfeed.io
*.dev.buzzfeed.io
*.adminprod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--willmccutchen.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.test.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.hackweek.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--dan-meruelo.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.test.buzzfeed.io
*.unstable.buzzfeed.io
*.rigplayground1.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.adminprod.buzzfeed.io
*.hackweek.buzzfeed.io
*.prod.buzzfeed.io
*.namespace.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo02.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.adminprod.buzzfeed.io
*.dev.buzzfeed.io
*.adminprod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--willmccutchen.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.test.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.hackweek.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--dan-meruelo.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.test.buzzfeed.io
*.unstable.buzzfeed.io
*.rigplayground1.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.adminprod.buzzfeed.io
*.hackweek.buzzfeed.io
*.prod.buzzfeed.io
*.namespace.unstable.buzzfeed.io
Certificate
The complete raw certificate details for *.stage.buzzfeed.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIQAtL1W4RgZB84FwRSO16DkjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDIyNDAwMDAwMFoXDTIzMDYxNTIzNTk1OVowHjEc MBoGA1UEAwwTKi5zdGFnZS5idXp6ZmVlZC5pbzCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJkDubEpMei6h0gt1PSu15FF/VPn7LMoIcEImOgUXo4NyDYu evkCflmM/cXBbiZsqFBtXh2g67QDezHweZAoyBZ73j25C78Tz6HkWDt6CVDxygYF +jh/NTcNzpMEEEXlSdYhzqZ20J+u3E3RotYHvZZE4WwU4ukFgHeCA4EUarARG0mI vcGBCd9FBvW2csNVeKhR0Pzq2ldNyZE9SKjjf8bYeRuNgR6upfsG0hZQmJHLnuDz PL1ZpyZD7jjX8j6NopPL1fXcwo5JYH2Y+lA+t8ggBFzAfjt2VuLp+okLQr3JM8GM 2O8Bo85XH2lVmwyQr172H0+0fhfIeYbN0f3MXH0CAwEAAaOCA/kwggP1MB8GA1Ud IwQYMBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBTZBwZY4rF4vWj4 ZpNF9VIQ6nMHvjCCASgGA1UdEQSCAR8wggEbghMqLnN0YWdlLmJ1enpmZWVkLmlv ggkqLmJ6ZmQuaXSCESoudXNlMS5odWZmcG8ubmV0ghgqLnNzby5zdGFnZS5odWZm cG9zdC5uZXSCESouZ2xiLmJ1enpmZWVkLmlvgg4qLmh1ZmZwb3N0Lm5ldIIfKi5j YW1icmlhLXByb2R1Y3Rpb24uaHVmZnBvLm5ldIIOKi5idXp6ZmVlZC5jb22CHCou Y2FtYnJpYS1zdGFnaW5nLmh1ZmZwby5uZXSCDSouYnV6emZlZWQuaW+CFCouc3Rh Z2UuaHVmZnBvc3QubmV0ghcqLnNzby5zdGFnZS5idXp6ZmVlZC5pb4IcKi5zdGFn aW5nLmh1ZmZpbmd0b25wb3N0LmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9j cmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNybDATBgNVHSAEDDAKMAgG BmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3Nw LnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5y Mm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwggF/ BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2AOg+0No+9QY1MudXKLyJa8kD08vREWvs 62nhd31tBr1uAAABhoLmh7QAAAQDAEcwRQIhALqu7ia9hF1sLZ4uWpy3CQzmFIfL /OzHaTipy16R5tVcAiBLY8gShS5zYHdg4xpgfH97vqUVyqvEQ2jyho7kVDMvOAB2 ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAABhoLmh/0AAAQDAEcw RQIgKEbaaATALsJpD4Uc8ARc9KH5QFbfEYHmU9ryqVlYBa8CIQDRGDeXYlEDVnlR HxWxXXR4h77V4Yh5xf36ES0ir69jcQB3ALc++yTfnE26dfI5xbpY9Gxd/ELPep81 xJ4dCYEl7bSZAAABhoLmh7kAAAQDAEgwRgIhAP+gTTRa5VP/SdsOjywnx9s01kVH BIOuGy6ollXyVujwAiEAx8dyCCSe/0ZQSRWCFojxt0kG4bjZasj3oEuLg6VBCuEw DQYJKoZIhvcNAQELBQADggEBAJrKhKI6kEfGIG97yWiPxjpU43a6nm1sqRple2mC dyePN3uZ13eGjHQR/wnVttyI7wnIQiPO9/d0GyGh1d9MQp0p7hKDBK2rgL4mPkUw Whtw+Swq+hADS8egGBFv6CnmSXdBk1qv/8N4ZQmyOAWIdNGAwY3d4OTuJ0G6BZnl dt9xKZz/jQ2H7rOLUh1M3Jld9HCdf9BVVM+lV2K9M0uKHU1vZXY9sl6934FxBCqa Gul9N3AfzIqV2uivVBdOwgmBIyfP5jLBVsFd6hK+vnoZzZTUfNzYQklcgPEorkLp 9au4HasfGt58RyVa6oCNWCFk+UiLmk+aLc4Z1j5Dyq7bveg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQO5sSkx6LqHSC3U9K7X kUX9U+fssyghwQiY6BRejg3INi56+QJ+WYz9xcFuJmyoUG1eHaDrtAN7MfB5kCjI FnvePbkLvxPPoeRYO3oJUPHKBgX6OH81Nw3OkwQQReVJ1iHOpnbQn67cTdGi1ge9 lkThbBTi6QWAd4IDgRRqsBEbSYi9wYEJ30UG9bZyw1V4qFHQ/OraV03JkT1IqON/ xth5G42BHq6l+wbSFlCYkcue4PM8vVmnJkPuONfyPo2ik8vV9dzCjklgfZj6UD63 yCAEXMB+O3ZW4un6iQtCvckzwYzY7wGjzlcfaVWbDJCvXvYfT7R+F8h5hs3R/cxc fQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3753814772946379992747217102540014482 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.stage.buzzfeed.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19316297703049419503501786012168648204283992784234599616190522122683103315731422453210321311833328345862860918358367167323623148122492794859775268089975553376023233447583178692042277198117395971658534320463660090787884924228568744569622693570249686405916631384707103389262979861539686729567475917374703137204200618564292233302179860697718428913883028452480875816665805662280993214195440288121172853224475227608793176775766575491549784371233596840106702825735342011422781529513342237180025257565822014934585645202174952109991593099856871228253119517532642152520778998946195035797446847690442834518539949289797292153981 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d9070658e2b178bd68f8669345f55210ea7307be . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (287 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bzfd.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.use1.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sso.stage.huffpost.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.glb.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.huffpost.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cambria-production.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.buzzfeed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cambria-staging.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage.huffpost.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sso.stage.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.staging.huffingtonpost.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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