play.hbomax.com
- HOME BOX OFFICE, INC. -
Issued by GlobalSign RSA OV SSL CA 2018
About this certificate
This digital certificate with serial number 37:1e:5f:99:7a:23:66:8a:80:f1:c5:b9 was issued on by GlobalSign nv-sa.
With 57 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
HOME BOX OFFICE, INC.
Organization:
HOME BOX OFFICE, INC.
State / Province:
New York
Locality: New York
Country: US
Locality: New York
Country: US
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 37:1e:5f:99:7a:23:66:8a:80:f1:c5:b9Serial Number (int): 17058394770731124390827771321
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: cd:04:ed:b3:75:36:23:1f:b8:f7:c2:f8:ef:65:22:8b:be:0f:97:2d
AuthorityKeyId: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb
Fingerprint (sha1): e1:0f:9b:45:5b:44:f1:65:61:8e:42:f5:0c:61:38:0e:15:35:5d:d5
Fingerprint (sha256): 1a:ca:37:b7:9f:c6:2c:39:40:74:ae:c5:5a:58:0d:04:56:d1:95:ba:9a:87:a5:a4:65:88:33:fc:c5:9f:23:70
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018Check the revocation status for certificate play.hbomax.com
57
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for play.hbomax.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
play.hbomax.com
activate.hbomax.com
art-gallery-akm.api.hbo.com
art-gallery-emea-akm.api.hbo.com
art-gallery-emea.api.hbo.com
art-gallery-latam-akm.api.hbo.com
art-gallery-latam.api.hbo.com
art-gallery-snp-akm.development.hurley.hbo.com
art-gallery-snp.development.hurley.hbo.com
art-gallery.api.hbo.com
artist.api.akm.cdn.hbo.com
artist.api.cdn.hbo.com
artist.api.fly.cdn.hbo.com
artist.snp.akm.cdn.hbo.com
artist.snp.cdn.hbo.com
artist.staging.cdn.hbo.com
artist.staging.hurley.akm.cdn.hbo.com
artist.staging.hurley.fly.cdn.hbo.com
atv.api.akm.cdn.hbo.com
atv.api.lv3.cdn.hbo.com
ci.activate.hbomax.com
ci.play.hbomax.com
cilock.activate.hbomax.com
cilock.play.hbomax.com
cmaf.akm.eu.cdn.hbomax.com
cmaf.akm.eu.hbomaxcdn.com
cmaf.akm.latam.cdn.hbomax.com
cmaf.akm.latam.hbomaxcdn.com
cmaf.akm.us.cdn.hbomax.com
cmaf.akm.us.hbomaxcdn.com
dash.pro42.akm.cdn.hbomax.com
dash.qapro42.akm.cdn.hbomax.com
device.hbomax.com
hls3.qapro11.akm.cdn.hbomax.com
ipv6test.hbomax.com
live.akm.emea.hbomaxcdn.com
live.akm.eu.hbomaxcdn.com
live.akm.latam.hbomaxcdn.com
media.akm.cdn.hbomax.com
media.cdn.hbomax.com
media.fly.cdn.hbomax.com
qa.activate.hbomax.com
qa.device.hbomax.com
qa.play.hbomax.com
qacmaf.akm.eu.cdn.hbomax.com
qacmaf.akm.eu.hbomaxcdn.com
qacmaf.akm.latam.cdn.hbomax.com
qacmaf.akm.latam.hbomaxcdn.com
qacmaf.akm.us.cdn.hbomax.com
qacmaf.akm.us.hbomaxcdn.com
qamedia.akm.cdn.hbomax.com
qamedia.cdn.hbomax.com
qamedia.fly.cdn.hbomax.com
qaprod.activate.hbomax.com
qaprod.play.hbomax.com
staging.activate.hbomax.com
staging.play.hbomax.com
activate.hbomax.com
art-gallery-akm.api.hbo.com
art-gallery-emea-akm.api.hbo.com
art-gallery-emea.api.hbo.com
art-gallery-latam-akm.api.hbo.com
art-gallery-latam.api.hbo.com
art-gallery-snp-akm.development.hurley.hbo.com
art-gallery-snp.development.hurley.hbo.com
art-gallery.api.hbo.com
artist.api.akm.cdn.hbo.com
artist.api.cdn.hbo.com
artist.api.fly.cdn.hbo.com
artist.snp.akm.cdn.hbo.com
artist.snp.cdn.hbo.com
artist.staging.cdn.hbo.com
artist.staging.hurley.akm.cdn.hbo.com
artist.staging.hurley.fly.cdn.hbo.com
atv.api.akm.cdn.hbo.com
atv.api.lv3.cdn.hbo.com
ci.activate.hbomax.com
ci.play.hbomax.com
cilock.activate.hbomax.com
cilock.play.hbomax.com
cmaf.akm.eu.cdn.hbomax.com
cmaf.akm.eu.hbomaxcdn.com
cmaf.akm.latam.cdn.hbomax.com
cmaf.akm.latam.hbomaxcdn.com
cmaf.akm.us.cdn.hbomax.com
cmaf.akm.us.hbomaxcdn.com
dash.pro42.akm.cdn.hbomax.com
dash.qapro42.akm.cdn.hbomax.com
device.hbomax.com
hls3.qapro11.akm.cdn.hbomax.com
ipv6test.hbomax.com
live.akm.emea.hbomaxcdn.com
live.akm.eu.hbomaxcdn.com
live.akm.latam.hbomaxcdn.com
media.akm.cdn.hbomax.com
media.cdn.hbomax.com
media.fly.cdn.hbomax.com
qa.activate.hbomax.com
qa.device.hbomax.com
qa.play.hbomax.com
qacmaf.akm.eu.cdn.hbomax.com
qacmaf.akm.eu.hbomaxcdn.com
qacmaf.akm.latam.cdn.hbomax.com
qacmaf.akm.latam.hbomaxcdn.com
qacmaf.akm.us.cdn.hbomax.com
qacmaf.akm.us.hbomaxcdn.com
qamedia.akm.cdn.hbomax.com
qamedia.cdn.hbomax.com
qamedia.fly.cdn.hbomax.com
qaprod.activate.hbomax.com
qaprod.play.hbomax.com
staging.activate.hbomax.com
staging.play.hbomax.com
Other certificates including the domain name hbomax.com
(limited to 100 certificates)
dash.pro42.akm.cdn.hbogo.com
terraform-fix-test.micro.hbomax.com
view.cx.hbomax.com
hbomax.com
dmx-web.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
hbo.map.fastly.net
listen.hbomax.com
dash.pro42.akm.cdn.hbogo.com
listen.hbomax.com
play.hbomax.com
hbomax.com
vizio.play.codex-int.hbo.com
imagespecs.micro.hbomax.com
press.hbomax.com
press.hbomax.com
admin-test.micro.hbomax.com
test45.micro.hbomax.com
help.hbomax.com
trk.hbomax.com
turner.com
scooby-doo.micro.hbomax.com
vizio.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
ssl766512.cloudflaressl.com
hbomax.com
hbo.map.fastly.net
hbonow.com
play.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
xtv.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
san-3-s6.tlsprovisioning.exacttarget.com
listen.hbomax.com
cms.orbit.hbomax.com
cms.orbit.hbomax.com
ssl766511.cloudflaressl.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
turner.com
hbo.map.fastly.net
dmx-web.play.codex-int.hbo.com
hbomax.com
hbo.map.fastly.net
hbo.map.fastly.net
hbomax.com
shows.hbomax.com
trk.hbomax.com
hbo.map.fastly.net
shared-ingress-protected-prod-us-1-us-west-2.api.hbo.com
partners.hbomax.com
click.cx.hbomax.com
ablink.mail.hbomax.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
play.hbomax.com
listen.hbomax.com
hbomax.com
play.hbomax.com
raised-by-wolves.micro.hbomax.com
turner.com
ziggo.play.codex-int.hbo.com
ablink.email.hbomax.com
turner.com
xtv.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
play.hbomax.com
turner.com
test-statushub-three.micro.hbomax.com
hbomaximagespecs.com
cdn.hbomax.com
ssl766511.cloudflaressl.com
cox.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-west-1.api.hbo.com
ablink.mail.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
hbo.map.fastly.net
hbomax.com
cms.orbit.hbomax.com
qa.partner.hbomax.com
cloud.cx.hbomax.com
listen.hbomax.com
cms.orbit.hbomax.com
unpregnant.micro.hbo.com
hbo.map.fastly.net
hbo.map.fastly.net
vf-tivo.play.codex-int.hbo.com
partners.hbomax.com
ingest.orbit.hbomax.com
cdn.hbomax.com
hbomax.com
poc.cdn.hbomax.com
dmx-web.play.codex-int.hbo.com
atdl-contest.micro.hbomax.com
listen.hbomax.com
activate.hbomax.com
hbo.map.fastly.net
vf-sagemcom.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
terraform-fix-test.micro.hbomax.com
view.cx.hbomax.com
hbomax.com
dmx-web.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
hbo.map.fastly.net
listen.hbomax.com
dash.pro42.akm.cdn.hbogo.com
listen.hbomax.com
play.hbomax.com
hbomax.com
vizio.play.codex-int.hbo.com
imagespecs.micro.hbomax.com
press.hbomax.com
press.hbomax.com
admin-test.micro.hbomax.com
test45.micro.hbomax.com
help.hbomax.com
trk.hbomax.com
turner.com
scooby-doo.micro.hbomax.com
vizio.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
ssl766512.cloudflaressl.com
hbomax.com
hbo.map.fastly.net
hbonow.com
play.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
xtv.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
san-3-s6.tlsprovisioning.exacttarget.com
listen.hbomax.com
cms.orbit.hbomax.com
cms.orbit.hbomax.com
ssl766511.cloudflaressl.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
turner.com
hbo.map.fastly.net
dmx-web.play.codex-int.hbo.com
hbomax.com
hbo.map.fastly.net
hbo.map.fastly.net
hbomax.com
shows.hbomax.com
trk.hbomax.com
hbo.map.fastly.net
shared-ingress-protected-prod-us-1-us-west-2.api.hbo.com
partners.hbomax.com
click.cx.hbomax.com
ablink.mail.hbomax.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
play.hbomax.com
listen.hbomax.com
hbomax.com
play.hbomax.com
raised-by-wolves.micro.hbomax.com
turner.com
ziggo.play.codex-int.hbo.com
ablink.email.hbomax.com
turner.com
xtv.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
play.hbomax.com
turner.com
test-statushub-three.micro.hbomax.com
hbomaximagespecs.com
cdn.hbomax.com
ssl766511.cloudflaressl.com
cox.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-west-1.api.hbo.com
ablink.mail.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
hbo.map.fastly.net
hbomax.com
cms.orbit.hbomax.com
qa.partner.hbomax.com
cloud.cx.hbomax.com
listen.hbomax.com
cms.orbit.hbomax.com
unpregnant.micro.hbo.com
hbo.map.fastly.net
hbo.map.fastly.net
vf-tivo.play.codex-int.hbo.com
partners.hbomax.com
ingest.orbit.hbomax.com
cdn.hbomax.com
hbomax.com
poc.cdn.hbomax.com
dmx-web.play.codex-int.hbo.com
atdl-contest.micro.hbomax.com
listen.hbomax.com
activate.hbomax.com
hbo.map.fastly.net
vf-sagemcom.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
Certificate
The complete raw certificate details for play.hbomax.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILEzCCCfugAwIBAgIMNx5fmXojZoqA8cW5MA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0yMjAxMDMxODI2MTVaFw0y MzAyMDQxODI2MTVaMG0xCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhOZXcgWW9yazER MA8GA1UEBxMITmV3IFlvcmsxHjAcBgNVBAoTFUhPTUUgQk9YIE9GRklDRSwgSU5D LjEYMBYGA1UEAxMPcGxheS5oYm9tYXguY29tMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAzjnoD0IJzIsNLMI/31e16Icm7rHgV/K+J/F7ecakOGxBuv9N Cq/XTSd6kVaCLXXTsxAZ2t9B4IkWiSX57vIOXht1E3EPCcRlS/hAPG3aVDB8E45B oR+JwnjY6Cqnr1fOU/Fyxh7mpPWV1LcWBG9mAzpG1sn7D/eqf7Y42FbWdWCWwxra FFcQZ9zNMgnsLCc6C8Pxf5CfF5a55PDPP9aehOH5sJXo7TheLd9mmMjuOrq1w6Wl fxVLj5FqwaMPy3lxVqI3+BtMYI+4yuvqjx5A/hzqT2MUzPttzj/sJPI7+tgTw43o QBxdmfOg0xat/oQsVFrIA87AGupm1crEq5gLzQIDAQABo4IHzjCCB8owDgYDVR0P AQH/BAQDAgWgMIGOBggrBgEFBQcBAQSBgTB/MEQGCCsGAQUFBzAChjhodHRwOi8v c2VjdXJlLmdsb2JhbHNpZ24uY29tL2NhY2VydC9nc3JzYW92c3NsY2EyMDE4LmNy dDA3BggrBgEFBQcwAYYraHR0cDovL29jc3AuZ2xvYmFsc2lnbi5jb20vZ3Nyc2Fv dnNzbGNhMjAxODBWBgNVHSAETzBNMEEGCSsGAQQBoDIBFDA0MDIGCCsGAQUFBwIB FiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNvbS9yZXBvc2l0b3J5LzAIBgZngQwB AgIwCQYDVR0TBAIwADCCBk4GA1UdEQSCBkUwggZBgg9wbGF5Lmhib21heC5jb22C E2FjdGl2YXRlLmhib21heC5jb22CG2FydC1nYWxsZXJ5LWFrbS5hcGkuaGJvLmNv bYIgYXJ0LWdhbGxlcnktZW1lYS1ha20uYXBpLmhiby5jb22CHGFydC1nYWxsZXJ5 LWVtZWEuYXBpLmhiby5jb22CIWFydC1nYWxsZXJ5LWxhdGFtLWFrbS5hcGkuaGJv LmNvbYIdYXJ0LWdhbGxlcnktbGF0YW0uYXBpLmhiby5jb22CLmFydC1nYWxsZXJ5 LXNucC1ha20uZGV2ZWxvcG1lbnQuaHVybGV5Lmhiby5jb22CKmFydC1nYWxsZXJ5 LXNucC5kZXZlbG9wbWVudC5odXJsZXkuaGJvLmNvbYIXYXJ0LWdhbGxlcnkuYXBp Lmhiby5jb22CGmFydGlzdC5hcGkuYWttLmNkbi5oYm8uY29tghZhcnRpc3QuYXBp LmNkbi5oYm8uY29tghphcnRpc3QuYXBpLmZseS5jZG4uaGJvLmNvbYIaYXJ0aXN0 LnNucC5ha20uY2RuLmhiby5jb22CFmFydGlzdC5zbnAuY2RuLmhiby5jb22CGmFy dGlzdC5zdGFnaW5nLmNkbi5oYm8uY29tgiVhcnRpc3Quc3RhZ2luZy5odXJsZXku YWttLmNkbi5oYm8uY29tgiVhcnRpc3Quc3RhZ2luZy5odXJsZXkuZmx5LmNkbi5o Ym8uY29tghdhdHYuYXBpLmFrbS5jZG4uaGJvLmNvbYIXYXR2LmFwaS5sdjMuY2Ru Lmhiby5jb22CFmNpLmFjdGl2YXRlLmhib21heC5jb22CEmNpLnBsYXkuaGJvbWF4 LmNvbYIaY2lsb2NrLmFjdGl2YXRlLmhib21heC5jb22CFmNpbG9jay5wbGF5Lmhi b21heC5jb22CGmNtYWYuYWttLmV1LmNkbi5oYm9tYXguY29tghljbWFmLmFrbS5l dS5oYm9tYXhjZG4uY29tgh1jbWFmLmFrbS5sYXRhbS5jZG4uaGJvbWF4LmNvbYIc Y21hZi5ha20ubGF0YW0uaGJvbWF4Y2RuLmNvbYIaY21hZi5ha20udXMuY2RuLmhi b21heC5jb22CGWNtYWYuYWttLnVzLmhib21heGNkbi5jb22CHWRhc2gucHJvNDIu YWttLmNkbi5oYm9tYXguY29tgh9kYXNoLnFhcHJvNDIuYWttLmNkbi5oYm9tYXgu Y29tghFkZXZpY2UuaGJvbWF4LmNvbYIfaGxzMy5xYXBybzExLmFrbS5jZG4uaGJv bWF4LmNvbYITaXB2NnRlc3QuaGJvbWF4LmNvbYIbbGl2ZS5ha20uZW1lYS5oYm9t YXhjZG4uY29tghlsaXZlLmFrbS5ldS5oYm9tYXhjZG4uY29tghxsaXZlLmFrbS5s YXRhbS5oYm9tYXhjZG4uY29tghhtZWRpYS5ha20uY2RuLmhib21heC5jb22CFG1l ZGlhLmNkbi5oYm9tYXguY29tghhtZWRpYS5mbHkuY2RuLmhib21heC5jb22CFnFh LmFjdGl2YXRlLmhib21heC5jb22CFHFhLmRldmljZS5oYm9tYXguY29tghJxYS5w bGF5Lmhib21heC5jb22CHHFhY21hZi5ha20uZXUuY2RuLmhib21heC5jb22CG3Fh Y21hZi5ha20uZXUuaGJvbWF4Y2RuLmNvbYIfcWFjbWFmLmFrbS5sYXRhbS5jZG4u aGJvbWF4LmNvbYIecWFjbWFmLmFrbS5sYXRhbS5oYm9tYXhjZG4uY29tghxxYWNt YWYuYWttLnVzLmNkbi5oYm9tYXguY29tghtxYWNtYWYuYWttLnVzLmhib21heGNk bi5jb22CGnFhbWVkaWEuYWttLmNkbi5oYm9tYXguY29tghZxYW1lZGlhLmNkbi5o Ym9tYXguY29tghpxYW1lZGlhLmZseS5jZG4uaGJvbWF4LmNvbYIacWFwcm9kLmFj dGl2YXRlLmhib21heC5jb22CFnFhcHJvZC5wbGF5Lmhib21heC5jb22CG3N0YWdp bmcuYWN0aXZhdGUuaGJvbWF4LmNvbYIXc3RhZ2luZy5wbGF5Lmhib21heC5jb20w HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQYMBaAFPjvf/LN eGeo3m+PJI2I8YcDArPrMB0GA1UdDgQWBBTNBO2zdTYjH7j3wvjvZSKLvg+XLTAT BgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEARBwt56GAx3Ff NFtmQABI88MCRJLyE6MIreyjOnL3A/gDBfEHz7Z4DVsimlP1iqmqUsASs+/OWX9N WYT7wmz4ZAllL4h2A5uWPzk9ox3VbKQK3GHPYPon24T5s7xxMU0pFjiEc48JhZgU 5bDG0dWfktch/biCtC1E+DIYdT7DN5WOa/m/aUaxQQG1mHmgVLpGvJEvwEsVKbF6 wcrnxyEARAzJAc0OmiV7klEymA+o5ur3kb+6x1X+nKG5v2P9KKmdV96zlFvPS9Ri g6XLQuCxiUoJdaoz08uIKPLAHqTOigNcqeK07Z9SfOsbwnPlwMp8xWV+C31PhHm1 xB+8pbpHzw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjnoD0IJzIsNLMI/31e1 6Icm7rHgV/K+J/F7ecakOGxBuv9NCq/XTSd6kVaCLXXTsxAZ2t9B4IkWiSX57vIO Xht1E3EPCcRlS/hAPG3aVDB8E45BoR+JwnjY6Cqnr1fOU/Fyxh7mpPWV1LcWBG9m AzpG1sn7D/eqf7Y42FbWdWCWwxraFFcQZ9zNMgnsLCc6C8Pxf5CfF5a55PDPP9ae hOH5sJXo7TheLd9mmMjuOrq1w6WlfxVLj5FqwaMPy3lxVqI3+BtMYI+4yuvqjx5A /hzqT2MUzPttzj/sJPI7+tgTw43oQBxdmfOg0xat/oQsVFrIA87AGupm1crEq5gL zQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17058394770731124390827771321 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-03 18:26:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-04 18:26:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HOME BOX OFFICE, INC.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'play.hbomax.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26033645573935785356539603003859723410348310011611092367454964671538083371194312062093620973018515287859355824001716079645948688409435177278955569176028054427678987501255665910862171920576571726598162258767401235939878123762884709866608527230403307402937046728911653364679099068135435782316389865008644163918182629324505184082787840106128215942071143330684302138488104476933136412672498912523263081290832265199221613240997861655006332173885387344563141087937923666596316187533484214361674161550979959230183524587951737224861049279644921525945552031326838764283267558666919272149256077041524345985935490527697848241101 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1605 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'play.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'activate.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art-gallery-akm.api.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art-gallery-emea-akm.api.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art-gallery-emea.api.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art-gallery-latam-akm.api.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art-gallery-latam.api.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art-gallery-snp-akm.development.hurley.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art-gallery-snp.development.hurley.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art-gallery.api.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artist.api.akm.cdn.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artist.api.cdn.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artist.api.fly.cdn.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artist.snp.akm.cdn.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artist.snp.cdn.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artist.staging.cdn.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artist.staging.hurley.akm.cdn.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artist.staging.hurley.fly.cdn.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'atv.api.akm.cdn.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'atv.api.lv3.cdn.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.activate.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.play.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cilock.activate.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cilock.play.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmaf.akm.eu.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmaf.akm.eu.hbomaxcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmaf.akm.latam.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmaf.akm.latam.hbomaxcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmaf.akm.us.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmaf.akm.us.hbomaxcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dash.pro42.akm.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dash.qapro42.akm.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'device.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hls3.qapro11.akm.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ipv6test.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.akm.emea.hbomaxcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.akm.eu.hbomaxcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.akm.latam.hbomaxcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'media.akm.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'media.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'media.fly.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.activate.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.device.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.play.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qacmaf.akm.eu.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qacmaf.akm.eu.hbomaxcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qacmaf.akm.latam.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qacmaf.akm.latam.hbomaxcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qacmaf.akm.us.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qacmaf.akm.us.hbomaxcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qamedia.akm.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qamedia.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qamedia.fly.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qaprod.activate.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qaprod.play.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.activate.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.play.hbomax.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cd04edb37536231fb8f7c2f8ef65228bbe0f972d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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