applenews.meredithcorp.io
Issued by Amazon
About this certificate
This digital certificate with serial number 05:c1:ba:f3:26:92:77:3f:f4:28:1f:be:a7:37:fa:bd was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=applenews.meredithcorp.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:c1:ba:f3:26:92:77:3f:f4:28:1f:be:a7:37:fa:bdSerial Number (int): 7652045065189067957982843963423849149
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: fc:c9:b1:f4:ed:14:33:6f:5e:4b:19:cd:03:90:e8:9f:de:97:9c:f1
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 0e:f3:a1:d7:39:95:5f:dc:84:c2:67:3d:1f:25:ab:b6:d3:2e:5e:a4
Fingerprint (sha256): 1b:f0:bc:7a:9d:fe:b8:07:89:ae:79:01:4e:4a:34:61:29:7c:41:4b:c0:1b:ae:10:10:d1:44:77:7c:30:1b:ea
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate applenews.meredithcorp.io
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for applenews.meredithcorp.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
applenews.meredithcorp.io
www.applenews.meredithcorp.io
applenews.timeinc.net
www.applenews.timeinc.net
www.applenews.meredithcorp.io
applenews.timeinc.net
www.applenews.timeinc.net
Other certificates including the domain name meredithcorp.io
(limited to 100 certificates)
shared-services.meredithcorp.io
*.format-manager.meredithcorp.io
meredithcorp.io
meredithcorp.io
stage.authzadmin.meredithcorp.io
ugcuploader.meredithcorp.io
profiles-swagger.meredithcorp.io
*.dsa.meredithcorp.io
dsar.meredithcorp.io
*.cms.meredithcorp.io
meredithcorp.io
meredithcorp.io
splunk.meredithcorp.io
*.video.meredithcorp.io
feeds.meredithcorp.io
*.accountservices.meredithcorp.io
meredithcorp.io
syndication-stage.meredithcorp.io
*.meredithcorp.io
applenews.meredithcorp.io
*.meredithcorp.io
pollsquiz.meredithcorp.io
user-activity.meredithcorp.io
meredithcorp.io
*.format-manager.meredithcorp.io
*.meredithcorp.io
atg-reconciliation.meredithcorp.io
stamp.meredithcorp.io
meredithcorp.io
applenews.meredithcorp.io
user.meredithcorp.io
*.accountservices.meredithcorp.io
ui.meredithcorp.io
*.dsa.meredithcorp.io
aws-accounts-viewer.meredithcorp.io
*.meredithcorp.io
email-reputation.meredithcorp.io
registration.meredithcorp.io
feeds.meredithcorp.io
segment.meredithcorp.io
*.pollsquiz.meredithcorp.io
formatmanager.meredithcorp.io
ui.meredithcorp.io
meredithcorp.io
stage.feeds.meredithcorp.io
legacy-images.meredithcorp.io
*.ugc.meredithcorp.io
email-tools.meredithcorp.io
*.meredithcorp.io
feeds.meredithcorp.io
stage.authzadmin.meredithcorp.io
feeds.meredithcorp.io
meredithcorp.io
stage-ugcuploader.timeinc.com
stage.authzadmin.meredithcorp.io
meredithcorp.io
anf.meredithcorp.io
meredithcorp.io
feeds.meredithcorp.io
*.meredithcorp.io
newsletter.meredithcorp.io
stage-ugcuploader.timeinc.com
email-tools.meredithcorp.io
*.meredithcorp.io
pollsquiz.meredithcorp.io
meredithcorp.io
*.meredithcorp.io
ugcuploader.meredithcorp.io
feeds.meredithcorp.io
*.meredithcorp.io
*.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.ugc.meredithcorp.io
*.accountservices.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.feeds.meredithcorp.io
digitaledition.syndication-stage.meredithcorp.io
digitaledition.syndication.meredithcorp.io
meredithcorp.io
meredithcorp.io
meredithcorp.io
anf.meredithcorp.io
c360-scheduler.meredithcorp.io
*.video.meredithcorp.io
meredithcorp.io
munki.meredithcorp.io
user-saves.meredithcorp.io
dar.meredithcorp.io
*.ugc.meredithcorp.io
*.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.accountservices.meredithcorp.io
munki.meredithcorp.io
*.syndication-stage.meredithcorp.io
recipecms-ingestor.meredithcorp.io
*.cms.meredithcorp.io
authzadmin.meredithcorp.io
*.format-manager.meredithcorp.io
meredithcorp.io
meredithcorp.io
stage.authzadmin.meredithcorp.io
ugcuploader.meredithcorp.io
profiles-swagger.meredithcorp.io
*.dsa.meredithcorp.io
dsar.meredithcorp.io
*.cms.meredithcorp.io
meredithcorp.io
meredithcorp.io
splunk.meredithcorp.io
*.video.meredithcorp.io
feeds.meredithcorp.io
*.accountservices.meredithcorp.io
meredithcorp.io
syndication-stage.meredithcorp.io
*.meredithcorp.io
applenews.meredithcorp.io
*.meredithcorp.io
pollsquiz.meredithcorp.io
user-activity.meredithcorp.io
meredithcorp.io
*.format-manager.meredithcorp.io
*.meredithcorp.io
atg-reconciliation.meredithcorp.io
stamp.meredithcorp.io
meredithcorp.io
applenews.meredithcorp.io
user.meredithcorp.io
*.accountservices.meredithcorp.io
ui.meredithcorp.io
*.dsa.meredithcorp.io
aws-accounts-viewer.meredithcorp.io
*.meredithcorp.io
email-reputation.meredithcorp.io
registration.meredithcorp.io
feeds.meredithcorp.io
segment.meredithcorp.io
*.pollsquiz.meredithcorp.io
formatmanager.meredithcorp.io
ui.meredithcorp.io
meredithcorp.io
stage.feeds.meredithcorp.io
legacy-images.meredithcorp.io
*.ugc.meredithcorp.io
email-tools.meredithcorp.io
*.meredithcorp.io
feeds.meredithcorp.io
stage.authzadmin.meredithcorp.io
feeds.meredithcorp.io
meredithcorp.io
stage-ugcuploader.timeinc.com
stage.authzadmin.meredithcorp.io
meredithcorp.io
anf.meredithcorp.io
meredithcorp.io
feeds.meredithcorp.io
*.meredithcorp.io
newsletter.meredithcorp.io
stage-ugcuploader.timeinc.com
email-tools.meredithcorp.io
*.meredithcorp.io
pollsquiz.meredithcorp.io
meredithcorp.io
*.meredithcorp.io
ugcuploader.meredithcorp.io
feeds.meredithcorp.io
*.meredithcorp.io
*.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.ugc.meredithcorp.io
*.accountservices.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.feeds.meredithcorp.io
digitaledition.syndication-stage.meredithcorp.io
digitaledition.syndication.meredithcorp.io
meredithcorp.io
meredithcorp.io
meredithcorp.io
anf.meredithcorp.io
c360-scheduler.meredithcorp.io
*.video.meredithcorp.io
meredithcorp.io
munki.meredithcorp.io
user-saves.meredithcorp.io
dar.meredithcorp.io
*.ugc.meredithcorp.io
*.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.accountservices.meredithcorp.io
munki.meredithcorp.io
*.syndication-stage.meredithcorp.io
recipecms-ingestor.meredithcorp.io
*.cms.meredithcorp.io
authzadmin.meredithcorp.io
Certificate
The complete raw certificate details for applenews.meredithcorp.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIQBcG68yaSdz/0KB++pzf6vTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTAzMTIwMDAwMDBaFw0yMDA0MTIx MjAwMDBaMCQxIjAgBgNVBAMTGWFwcGxlbmV3cy5tZXJlZGl0aGNvcnAuaW8wggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNqBVpGk5E/WDQQtR1pEy1+mc8 1TVqMQ07r20B2Azvvxab63j2SmWD/hwtuqQkMcBiD/dO8GxHUdEseH0V7GQiPnYN sOA4Gozzmfx4xiMoV7KCj1uBaa4povbxgVLrFl1Ge6S++KSGbrRc1vaa/rBBV8KQ R/nXau/ySrUTYjRNU5HjJzpVCScw4v4YG3lh0BAL/oMjIt8O8fwUTWOe2+8mLdra 0MXXypUASclgwDKN2UcwMANna+RNXPmsoDsy3E4EV9lOua6oKUMyzuTDprCnTPvZ SRxQpUYc1OyBwTQt5TJL7jK4TqMuD2++K6JChc5jQXTS3nv4QPgf9wwM46bbAgMB AAGjggLXMIIC0zAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNV HQ4EFgQU/Mmx9O0UM29eSxnNA5Don96XnPEwdQYDVR0RBG4wbIIZYXBwbGVuZXdz Lm1lcmVkaXRoY29ycC5pb4Idd3d3LmFwcGxlbmV3cy5tZXJlZGl0aGNvcnAuaW+C FWFwcGxlbmV3cy50aW1laW5jLm5ldIIZd3d3LmFwcGxlbmV3cy50aW1laW5jLm5l dDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3Qu Y29tL3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEw dQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5h bWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1h em9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMIIBBQYKKwYBBAHW eQIEAgSB9gSB8wDxAHYA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo/csA AAFpcoD5VAAABAMARzBFAiEAs2ayBdACCwrbEEfCYFOB4J4SpO0ygfsuQIzxrqCT cCwCIBde8Uffslv+zhNWOeYYhrwYSLJjKNWVnAQoUwVOodwhAHcAh3W/51l8+IxD mV+9827/Vo1HVjb/SrVgwbTq/16ggw8AAAFpcoD6WwAABAMASDBGAiEAi2UDGlvl q6AgLFraEDF1ivHVXs0OP3w3cvoNxr7aHNMCIQCdQNTSucy7f19WBCaxzcniGenb QY9FSSSNU/0Fqip0YTANBgkqhkiG9w0BAQsFAAOCAQEAuUzLPVagfoGTOm2NHwFj MCdFTNKDdjv1sgWQvITiJVRdPLI5cjPKZzeGo4EAEOlUDtuEOfwsdt/bQJtokz2x pRZOCfn8X0K3Qkf/codF4SEy46FW0BPjBJC5TQbUUcOBcnWo7Qb+rY6GqkfgPv70 HjATbNsiZfNqeR08bIJv+AyHsUGDraPb3niRMI75WCYgQA1y2HlLepBsEYRauFYD SepQoBruQUx4gqTko8H+zr/48/9Tz2DIbu/pb/PBuXSI0CgcFwndp+l6hhikXdNT qavs7FaRfqmYH/EqqTJuMxIquIb98GXSiHh5T0lgNGFkeIu5HwHnLhUowX5muWEn ew== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzagVaRpORP1g0ELUdaRM tfpnPNU1ajENO69tAdgM778Wm+t49kplg/4cLbqkJDHAYg/3TvBsR1HRLHh9Fexk Ij52DbDgOBqM85n8eMYjKFeygo9bgWmuKaL28YFS6xZdRnukvvikhm60XNb2mv6w QVfCkEf512rv8kq1E2I0TVOR4yc6VQknMOL+GBt5YdAQC/6DIyLfDvH8FE1jntvv Ji3a2tDF18qVAEnJYMAyjdlHMDADZ2vkTVz5rKA7MtxOBFfZTrmuqClDMs7kw6aw p0z72UkcUKVGHNTsgcE0LeUyS+4yuE6jLg9vviuiQoXOY0F00t57+ED4H/cMDOOm 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7652045065189067957982843963423849149 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-12 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'applenews.meredithcorp.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25961737647627063542215611061791315294748910751371211223773956366831838723448483450740466815041861422774631330002750769923185243442558091089132404664363391000161212581765365107746942972979402596280066765449033218982453525723267047963299115616745708369323537026967676641879059470096537317172744062394695251514241819704322723537992424886181055457130490248052826663477931876743532037679256508517828308668318885744371246160172199213547840231647583866085326042838002035248001025838670650941157553994662081705487108812908102582382596761394948611131491980400645834754780752917654991288684215131613686886007938006221362276059 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fcc9b1f4ed14336f5e4b19cd0390e89fde979cf1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'applenews.meredithcorp.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.applenews.meredithcorp.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'applenews.timeinc.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.applenews.timeinc.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb000001697280f9540000040300473045022100b366b205d0020b0adb1047c2605381e09e12a4ed3281fb2e408cf1aea093702c0220175ef147dfb25bfece135639e61886bc1848b26328d5959c042853054ea1dc210077008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001697280fa5b00000403004830460221008b65031a5be5aba0202c5ada1031758af1d55ecd0e3f7c3772fa0dc6beda1cd30221009d40d4d2b9ccbb7f5f560426b1cdc9e219e9db418f4549248d53fd05aa2a7461 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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