*.api.rap-test.ukritfsdigstaging.services.ukri.org
Issued by Amazon
About this certificate
This digital certificate with serial number 0b:8d:c9:4c:5a:6c:11:66:54:2d:57:a6:a7:69:9f:c9 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.api.rap-test.ukritfsdigstaging.services.ukri.org
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:8d:c9:4c:5a:6c:11:66:54:2d:57:a6:a7:69:9f:c9Serial Number (int): 15357704624342467407712689237216829385
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 18:92:f0:36:14:e7:14:d3:c2:b3:12:4e:11:55:fa:1f:14:4f:e7:64
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): b8:79:e1:20:71:bf:63:19:c9:7e:51:28:d2:2a:b9:f1:4e:31:23:c6
Fingerprint (sha256): 1c:49:99:48:f0:d5:9f:59:57:54:7f:3d:87:c3:fb:aa:ce:c8:8d:de:eb:a0:6f:39:c5:78:a9:24:32:61:a8:e3
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate *.api.rap-test.ukritfsdigstaging.services.ukri.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.api.rap-test.ukritfsdigstaging.services.ukri.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.api.rap-test.ukritfsdigstaging.services.ukri.org
Other certificates including the domain name ukri.org
(limited to 100 certificates)
nerc.ukri.org
riinfrastructure.ukri.org.uk
ahrc.ukri.org
webhelpdesk.ukri.org
ahrc.ukri.org
store.apps.ukri.org
www.ukri.org
ithelpdesk.ukri.org
ukinnovationhub.ukri.org
*.api.rap-test.ukritfsdigstaging.services.ukri.org
training.ukri.org
uknqt.ukri.org
webhelpdesk.ukri.org
funding-service.ukri.org
bbsrc.ukri.org
guest.ukri.org
energycatalyst.ukri.org
internal.demo-1.ukristaging.services.ukri.org
ui.demo-1.ukristaging.services.ukri.org
www.innovateuk.ukri.org
ausoriwsvlrpm01.ukri.org
beta.innovateukedge.ukri.org
ukfoodsystems.ukri.org
dev.mhp.ukri.org
re.ukri.org
ausoriwsvlrpm01.ukri.org
epsrc.ukri.org
esrc.ukri.org
ukri.org
*.services.ukri.org
r4ri.ukri.org
*.staging.services.ukri.org
vpn.ukri.org
*.sil.uat.innovateuk.ukri.org
helloworld.default.ukristaging.services.ukri.org
portal.nerc.ac.uk
engagementhub.ukri.org
internal.infradev-1.ukristaging.services.ukri.org
*.apps.org-env-0.org.innovateuk.ukri.org
jenkins29skjdnchg.beta.ukri.org
*.api.dev.ukristaging.services.ukri.org
stfc.ukri.org
ahrc.ukri.org
*.dev.whp.ukri.org
nerc.ukri.org
go.innovateuk.ukri.org
*.services.ukri.org
*.dev-1.ukristaging.services.ukri.org
internal.dr-1.ukridr.services.ukri.org
esrc.ukri.org
esrc.ukri.org
testgow.epsrc.ukri.org
stfc.ukri.org
nerc.ukri.org
ahrc.ukri.org
www.mrc.ukri.org
mrc.ukri.org
sts.ukri.org
epsrc.ukri.org
dev.coronavirusexplained.ukri.org
ukri.org
reporting.services.ukri.org
ukfoodsystems.ukri.org
*.api.rap-test.ukritfsdigstaging.services.ukri.org
mrc.ukri.org
vpn.ukri.org
farminginnovation.ukri.org
engagementhub.ukri.org
*.dev.services.ukri.org
ukfoodsystems.ukri.org
san-13-s51.tlsprovisioning.exacttarget.com
san-13-s51.tlsprovisioning.exacttarget.com
gow.bbsrc.ukri.org
*.nmgn.mrc.ukri.org
engagementhub.ukri.org
eduroam.ukri.org
anpr1.mscp.ukri.org
*.innovateuk.ukri.org
energycatalyst.ukri.org
anpr1.mscp.ukri.org
uatdirectory.apps.ukri.org
*.test-1.ukristaging.services.ukri.org
engagementhub.ukri.org
vpn.innovateuk.ukri.org
nerc.ukri.org
eduroam.ukri.org
app.info.innovateuk.org
*.api.dr-1.ukridr.services.ukri.org
webhelpdesk.ukri.org
www.bbsrc.ukri.org
epsrc.ukri.org
gow.epsrc.ukri.org
eds.ukri.org
coronavirusexplained.ukri.org
re.ukri.org
reporting.services.ukri.org
yopass.innovateuk.ukri.org
*.staging.innovateuk.ukri.org
apps.ukri.org
uatdirectory.apps.ukri.org
riinfrastructure.ukri.org.uk
ahrc.ukri.org
webhelpdesk.ukri.org
ahrc.ukri.org
store.apps.ukri.org
www.ukri.org
ithelpdesk.ukri.org
ukinnovationhub.ukri.org
*.api.rap-test.ukritfsdigstaging.services.ukri.org
training.ukri.org
uknqt.ukri.org
webhelpdesk.ukri.org
funding-service.ukri.org
bbsrc.ukri.org
guest.ukri.org
energycatalyst.ukri.org
internal.demo-1.ukristaging.services.ukri.org
ui.demo-1.ukristaging.services.ukri.org
www.innovateuk.ukri.org
ausoriwsvlrpm01.ukri.org
beta.innovateukedge.ukri.org
ukfoodsystems.ukri.org
dev.mhp.ukri.org
re.ukri.org
ausoriwsvlrpm01.ukri.org
epsrc.ukri.org
esrc.ukri.org
ukri.org
*.services.ukri.org
r4ri.ukri.org
*.staging.services.ukri.org
vpn.ukri.org
*.sil.uat.innovateuk.ukri.org
helloworld.default.ukristaging.services.ukri.org
portal.nerc.ac.uk
engagementhub.ukri.org
internal.infradev-1.ukristaging.services.ukri.org
*.apps.org-env-0.org.innovateuk.ukri.org
jenkins29skjdnchg.beta.ukri.org
*.api.dev.ukristaging.services.ukri.org
stfc.ukri.org
ahrc.ukri.org
*.dev.whp.ukri.org
nerc.ukri.org
go.innovateuk.ukri.org
*.services.ukri.org
*.dev-1.ukristaging.services.ukri.org
internal.dr-1.ukridr.services.ukri.org
esrc.ukri.org
esrc.ukri.org
testgow.epsrc.ukri.org
stfc.ukri.org
nerc.ukri.org
ahrc.ukri.org
www.mrc.ukri.org
mrc.ukri.org
sts.ukri.org
epsrc.ukri.org
dev.coronavirusexplained.ukri.org
ukri.org
reporting.services.ukri.org
ukfoodsystems.ukri.org
*.api.rap-test.ukritfsdigstaging.services.ukri.org
mrc.ukri.org
vpn.ukri.org
farminginnovation.ukri.org
engagementhub.ukri.org
*.dev.services.ukri.org
ukfoodsystems.ukri.org
san-13-s51.tlsprovisioning.exacttarget.com
san-13-s51.tlsprovisioning.exacttarget.com
gow.bbsrc.ukri.org
*.nmgn.mrc.ukri.org
engagementhub.ukri.org
eduroam.ukri.org
anpr1.mscp.ukri.org
*.innovateuk.ukri.org
energycatalyst.ukri.org
anpr1.mscp.ukri.org
uatdirectory.apps.ukri.org
*.test-1.ukristaging.services.ukri.org
engagementhub.ukri.org
vpn.innovateuk.ukri.org
nerc.ukri.org
eduroam.ukri.org
app.info.innovateuk.org
*.api.dr-1.ukridr.services.ukri.org
webhelpdesk.ukri.org
www.bbsrc.ukri.org
epsrc.ukri.org
gow.epsrc.ukri.org
eds.ukri.org
coronavirusexplained.ukri.org
re.ukri.org
reporting.services.ukri.org
yopass.innovateuk.ukri.org
*.staging.innovateuk.ukri.org
apps.ukri.org
uatdirectory.apps.ukri.org
Certificate
The complete raw certificate details for *.api.rap-test.ukritfsdigstaging.services.ukri.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIErzCCA5egAwIBAgIQC43JTFpsEWZULVemp2mfyTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA5MjEwMDAwMDBaFw0yMzEwMjAy MzU5NTlaMD0xOzA5BgNVBAMMMiouYXBpLnJhcC10ZXN0LnVrcml0ZnNkaWdzdGFn aW5nLnNlcnZpY2VzLnVrcmkub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAsVwQ5d6Mcgd5B9n7+i9t2d+5WsA6WYfDTG3IS0NwBFuXrkd61my/iFAo MPMsxjo1pnXwYaIqmfGfTa4Us8SNZ2pKNQgb9DpemkuMCd9SNc1vUrwZTWTSou+X HO0hvs2rlurPjVWv0OtmssbDiPi5FTnZjoDBjWTZJTJCxcYaDqK4W0VK/cHTBOcj slJiMRUK2Tv/Flev0HHzcmjtKpXscvJJPhiX2MhscUAv6icIXjUQxpkGqxJAopoG ZoXSr92bhHm9FUb2lJVybShSizehy5WvLjuuoC2em42sDVnHLYNIS1/MeiKlV1V4 AZYWeHTiwU/gR8UcF6a2VO3+YZ289QIDAQABo4IBoDCCAZwwHwYDVR0jBBgwFoAU WaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFBiS8DYU5xTTwrMSThFV+h8U T+dkMD0GA1UdEQQ2MDSCMiouYXBpLnJhcC10ZXN0LnVrcml0ZnNkaWdzdGFnaW5n LnNlcnZpY2VzLnVrcmkub3JnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwPQYDVR0fBDYwNDAyoDCgLoYsaHR0cDovL2NybC5z Y2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWItMS5jcmwwEwYDVR0gBAwwCjAIBgZn gQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5z Y2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2Nh MWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB/NTLuhiWQ+eTmTfRK sggH2zsRglaBdZMklqeXbwUpAKyrOKyspAEHONqTBuaKFwJrlEX7zlK5skAwzmj+ QYQSwaApN8VMJBQEiYgC03jLwEmTKxrRy79Bvi1kaOQUEmkcDOB/sCNitNA+mEBI TJGvB5SyCQLc7cCG2+tLXjCZXUSg7PFfbDfu8+8X/gkdZePCWnMUEVB5IJzdzK7B P5j7yfy4AGJHp6jRjBjKjPClmkwAu56G+G3x8BGP0DxIgFHjWMRqhZzSH06xDWlV naf1XIWK2EnhEPJ9nP+Ur/Jy7MZqdvhfcreCabsbV8IjC2Ba3wJEGHqlW+zDO0Fd ZbFk -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVwQ5d6Mcgd5B9n7+i9t 2d+5WsA6WYfDTG3IS0NwBFuXrkd61my/iFAoMPMsxjo1pnXwYaIqmfGfTa4Us8SN Z2pKNQgb9DpemkuMCd9SNc1vUrwZTWTSou+XHO0hvs2rlurPjVWv0OtmssbDiPi5 FTnZjoDBjWTZJTJCxcYaDqK4W0VK/cHTBOcjslJiMRUK2Tv/Flev0HHzcmjtKpXs cvJJPhiX2MhscUAv6icIXjUQxpkGqxJAopoGZoXSr92bhHm9FUb2lJVybShSizeh y5WvLjuuoC2em42sDVnHLYNIS1/MeiKlV1V4AZYWeHTiwU/gR8UcF6a2VO3+YZ28 9QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15357704624342467407712689237216829385 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.api.rap-test.ukritfsdigstaging.services.ukri.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22389579419364563472748730067514567841396192686266298217532847960233094931597071998054635507564564211594609261236843543853841797446519449713445950822639350971016468352452367953013382353989787607582630438701081907185090054233652803658980287080557049231205795059912494634635843408099060331949496791133915096547920551795544340291151593841017223111526773714751030480471114566486142590294045920944797097251706939226363066640867882733756402976470078589308870302797220478364194957048497072187268945305085126493949511608398498118747410186487687967556387317869433929393298549934223287665481929895407039979584291272304063528181 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1892f03614e714d3c2b3124e1155fa1f144fe764 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.rap-test.ukritfsdigstaging.services.ukri.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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