hrd.svc.cloud.microsoft
- Microsoft Corporation -
Issued by Microsoft Azure RSA TLS Issuing CA 08
About this certificate
This digital certificate with serial number 33:00:08:50:01:1d:a5:d3:74:fb:40:97:57:00:00:00:08:50:01 was issued on by Microsoft Corporation.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Microsoft Corporation
Organization:
Microsoft Corporation
State / Province:
WA
Locality: Redmond
Country: US
Locality: Redmond
Country: US
Microsoft Corporation
Organization:
Microsoft Corporation
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 33:00:08:50:01:1d:a5:d3:74:fb:40:97:57:00:00:00:08:50:01Serial Number (int): 1137340833728030435345913723756131121002729473
Serial Number lenght: 150 bits, 19 octets
SubjectKeyId: 08:3b:75:3a:16:ce:2b:61:0d:e7:90:e1:fb:79:c2:0e:ce:d3:5b:49
AuthorityKeyId: f6:7e:2f:bd:80:a3:4a:b2:70:5b:eb:df:9a:1f:d8:ed:ca:61:80:07
Fingerprint (sha1): 23:49:77:d8:f6:bb:fc:d1:5e:75:09:88:03:2f:da:e6:7b:e1:02:8b
Fingerprint (sha256): 1d:bc:16:27:3b:4d:f2:5e:64:a4:b1:6c:fd:e3:ad:77:d8:74:2e:5b:33:16:86:8a:05:34:cb:a8:f5:03:b4:e9
Issuing Certificate URL: http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2008%20-%20xsign.crt
Revocation information
OCSP Server: http://oneocsp.microsoft.com/ocspCRL Distribution Point: http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2008.crl
Check the revocation status for certificate hrd.svc.cloud.microsoft
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hrd.svc.cloud.microsoft
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
12 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hrd.svc.cloud.microsoft
*.hrd.svc.cloud.microsoft
hrd.office.com
*.hrd.office.com
*.hrd.svc.cloud.microsoft
hrd.office.com
*.hrd.office.com
Other certificates including the domain name cloud.microsoft
(limited to 100 certificates)
portal.azure
*.reviewsetservice.ediscovery.svc.cloud.microsoft
augloop.office.com
www.office.com
www.office.com
www.office.com
www.office.com
augloop.office.com
www.office.com
portal.azure
www.office.com
esign.svc.cloud.microsoft
msit.neu.pubsub.mb.mobile.m365.svc.cloud.microsoft
status.office.com
esign.svc.cloud.microsoft
augloop.office.com
www.office.com
msit.scus.pubsub.mb.mobile.m365.svc.cloud.microsoft
cloud.microsoft
www.office.com
auth.brb.skype.cloud.microsoft
kevlar-ssl.augloop-dogfood.officeppe.com
augloop.office.com
www.office.com
www.office.com
www.office.com
*.brb.skype.cloud.microsoft
www.office.com
officeapps.live.com
sdf.substrate.svc.cloud.microsoft
www.office.com
www.office.com
augloop.office.com
portal.azure
www.office.com
admin.cloud.microsoft
www.office.com
portal.office.com
augloop.office.com
portal.azure
www.office.com
portal.azure
community.dynamics365.com
insights.cloud.microsoft
www.office.com
catalog.mesh.cloud.microsoft
www.office.com
msit.weu.apis.mobile.m365.svc.cloud.microsoft
www.office.com
www.office.com
community.dynamics365.com
esign.svc.cloud.microsoft
www.office.com
status.cloud.microsoft
www.office.com
odc.officeapps.live.com
dogfood.augloop.svc.cloud.microsoft
portal.azure
www.office.com
*.us1.glint.cloud.microsoft
*.eu1.glint.cloud.microsoft
www.office.com
viva.cloud.microsoft
esign.svc.cloud.microsoft
esign.svc.cloud.microsoft
augloop.office.com
substrate.svc.cloud.microsoft
www.office.com
kevlar-ssl.augloop.office.com
forms.cloud.microsoft
logapi.brb.teams.cloud.microsoft
*.yammer.com
www.office.com
augloop.office.com
augloop.office.com
*.graphservice.ediscovery.svc.cloud.microsoft
www.office.com
www.office.com
www.office.com
www.office.com
portal.azure
augloop.office.com
viva.cloud.microsoft
sway.office.com
augloop.office.com
www.office.com
brbportal.brb.teams.cloud.microsoft
portal.azure
substrate.svc.cloud.microsoft
hrd.svc.cloud.microsoft
augloop-dogfood.officeppe.com
www.office.com
augloop-dogfood.officeppe.com
df.learning.cloud.microsoft
www.office.com
www.office.com
msit.sea.messagebroker.mobile.m365.svc.cloud.microsoft
www.office.com
windows.cloud.microsoft
augloop.office.com
*.reviewsetservice.ediscovery.svc.cloud.microsoft
augloop.office.com
www.office.com
www.office.com
www.office.com
www.office.com
augloop.office.com
www.office.com
portal.azure
www.office.com
esign.svc.cloud.microsoft
msit.neu.pubsub.mb.mobile.m365.svc.cloud.microsoft
status.office.com
esign.svc.cloud.microsoft
augloop.office.com
www.office.com
msit.scus.pubsub.mb.mobile.m365.svc.cloud.microsoft
cloud.microsoft
www.office.com
auth.brb.skype.cloud.microsoft
kevlar-ssl.augloop-dogfood.officeppe.com
augloop.office.com
www.office.com
www.office.com
www.office.com
*.brb.skype.cloud.microsoft
www.office.com
officeapps.live.com
sdf.substrate.svc.cloud.microsoft
www.office.com
www.office.com
augloop.office.com
portal.azure
www.office.com
admin.cloud.microsoft
www.office.com
portal.office.com
augloop.office.com
portal.azure
www.office.com
portal.azure
community.dynamics365.com
insights.cloud.microsoft
www.office.com
catalog.mesh.cloud.microsoft
www.office.com
msit.weu.apis.mobile.m365.svc.cloud.microsoft
www.office.com
www.office.com
community.dynamics365.com
esign.svc.cloud.microsoft
www.office.com
status.cloud.microsoft
www.office.com
odc.officeapps.live.com
dogfood.augloop.svc.cloud.microsoft
portal.azure
www.office.com
*.us1.glint.cloud.microsoft
*.eu1.glint.cloud.microsoft
www.office.com
viva.cloud.microsoft
esign.svc.cloud.microsoft
esign.svc.cloud.microsoft
augloop.office.com
substrate.svc.cloud.microsoft
www.office.com
kevlar-ssl.augloop.office.com
forms.cloud.microsoft
logapi.brb.teams.cloud.microsoft
*.yammer.com
www.office.com
augloop.office.com
augloop.office.com
*.graphservice.ediscovery.svc.cloud.microsoft
www.office.com
www.office.com
www.office.com
www.office.com
portal.azure
augloop.office.com
viva.cloud.microsoft
sway.office.com
augloop.office.com
www.office.com
brbportal.brb.teams.cloud.microsoft
portal.azure
substrate.svc.cloud.microsoft
hrd.svc.cloud.microsoft
augloop-dogfood.officeppe.com
www.office.com
augloop-dogfood.officeppe.com
df.learning.cloud.microsoft
www.office.com
www.office.com
msit.sea.messagebroker.mobile.m365.svc.cloud.microsoft
www.office.com
windows.cloud.microsoft
augloop.office.com
Certificate
The complete raw certificate details for hrd.svc.cloud.microsoft in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIrzCCBpegAwIBAgITMwAIUAEdpdN0+0CXVwAAAAhQATANBgkqhkiG9w0BAQwF ADBdMQswCQYDVQQGEwJVUzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9u MS4wLAYDVQQDEyVNaWNyb3NvZnQgQXp1cmUgUlNBIFRMUyBJc3N1aW5nIENBIDA4 MB4XDTIzMTIwNzEzMjcxMVoXDTI0MTIwMTEzMjcxMVowbjELMAkGA1UEBhMCVVMx CzAJBgNVBAgTAldBMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3Nv ZnQgQ29ycG9yYXRpb24xIDAeBgNVBAMTF2hyZC5zdmMuY2xvdWQubWljcm9zb2Z0 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAot9vYqq+gXfmnv4h2nb7 xgFSYCXbGGgY2OsgrGc7K8fpECFN2C+/JSF9S7spRKXrnXBCLq6gfLDo/SYOTm/d 7BzzboPU4TIL4c4D+HrruNfbVW5D1u/ZoCYYvqhhdiVh+gbA/5M+LWClk5PKUvaG 7PMu8FjJmmu/jUwbYTmpAfKmDITM231TdxoB4iJugX/IxQlsj6eCPpGdPqoIm0rZ oAH9zxNS8tJzTAnpRlVZrNW16Q6ffgnbGygi4/+1WXZ8c039SwwCLlBkqMBbhhlA /He85DCHsYdKXYHylHBTuGEm6dPAjjSFtPxVHWgYzsq1nRKqZObhN7WJAIPsR0fC RQIDAQABo4IEVTCCBFEwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB1AHb/iD8K tvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjER/LtIAAAQDAEYwRAIgKIBR 6HFYL7yKUpwFomxYtkPMu5OQyV8qmh+2+i4T/cMCIAPkSDuFKmbjOjdUrPaD9cMZ 1IU7FPElcUpo7xfB+TQZAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznY hHMAAAGMRH8vsgAABAMASDBGAiEApNxoOhn8gum8ZY84pk/k/M7+zbKT3vBOZ4yA +oVTNswCIQCxw2ufY2pjFoHUi+0C0oyyFA8hgh9oPXiLFNjzv61LjgB1AFWB1MIW kDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABjER/MEIAAAQDAEYwRAIgWQrs dZSL9HEruH7mOMGhZusCOurevhW8oQEYwY+mmwECICYxEobI+AYBJgp8vJDRxtAE lfNgTrr5aKb3dmj+7O7lMCcGCSsGAQQBgjcVCgQaMBgwCgYIKwYBBQUHAwIwCgYI KwYBBQUHAwEwPAYJKwYBBAGCNxUHBC8wLQYlKwYBBAGCNxUIh73XG4Hn60aCgZ0u jtAMh/DaHV2ChOVpgvOnPgIBZAIBJjCBtAYIKwYBBQUHAQEEgacwgaQwcwYIKwYB BQUHMAKGZ2h0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY2VydHMvTWlj cm9zb2Z0JTIwQXp1cmUlMjBSU0ElMjBUTFMlMjBJc3N1aW5nJTIwQ0ElMjAwOCUy MC0lMjB4c2lnbi5jcnQwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vbmVvY3NwLm1pY3Jv c29mdC5jb20vb2NzcDAdBgNVHQ4EFgQUCDt1OhbOK2EN55Dh+3nCDs7TW0kwDgYD VR0PAQH/BAQDAgWgMF8GA1UdEQRYMFaCF2hyZC5zdmMuY2xvdWQubWljcm9zb2Z0 ghkqLmhyZC5zdmMuY2xvdWQubWljcm9zb2Z0gg5ocmQub2ZmaWNlLmNvbYIQKi5o cmQub2ZmaWNlLmNvbTAMBgNVHRMBAf8EAjAAMGoGA1UdHwRjMGEwX6BdoFuGWWh0 dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY3JsL01pY3Jvc29mdCUyMEF6 dXJlJTIwUlNBJTIwVExTJTIwSXNzdWluZyUyMENBJTIwMDguY3JsMGYGA1UdIARf MF0wUQYMKwYBBAGCN0yDfQEBMEEwPwYIKwYBBQUHAgEWM2h0dHA6Ly93d3cubWlj cm9zb2Z0LmNvbS9wa2lvcHMvRG9jcy9SZXBvc2l0b3J5Lmh0bTAIBgZngQwBAgIw HwYDVR0jBBgwFoAU9n4vvYCjSrJwW+vfmh/Y7cphgAcwHQYDVR0lBBYwFAYIKwYB BQUHAwIGCCsGAQUFBwMBMA0GCSqGSIb3DQEBDAUAA4ICAQB2/arMVgerctJ6pgbx 8TxkICbcXDmahT4e+BlN252Hi9bUnMPkm0qDuDi7pa4oWsyyPz0BzPgpdQtVar3Q mMR/Eg/AvXFl809DEKnf9JEEnJlFURjBoyDwLsfMEEe1iQ1sGLuFsmogUAHV/exi NCBbaPimXhWjiq8RYrf4q2aZjUTpZ4QiCrk4QjFeD0oP0yc7NzH+Tzqx2P4zkGMY 1wf9+YAbuav+vsM18GSCM05LwuBtJvyF1bASlTjs2tZzfeZoLSveGqOdIJIkDmj6 UqWR3QcrCMPkbXlWQCPVAsXcKQRFczh4BSpqtoGey9lFKxn7iQfVQnPDtcJCfHDA IaeB/rNewFS8E8jeC4gjV6I8WGpMUmOMMsDt4oKrA8aCloAuLWraCu/nG8+HbeF2 lI05Mh4dfTw+jk2RXyXsDzDCQNxIcOsAg0RQCB707OSrVmcGYCdw8qg52oW1ulLP VjZSbEXWjfb+Oc8MtCDjTIADfHpFQDhBjj1ObG6R0zVzhqjuQVsH+ykrXPL+gsK2 XcL/1SkUPybS7Yy0NxzylgpvrxPY8RhZuM4ecMhr6JJyT2ffJKwA/Xtx574w41Sz x0XJI3iX3sUxDORaEDZfIiyaOnOwB9mI6+p330ykvniEgGgG0rgF4JAI6Kkt9xP2 3swh4AUvKXE5Fk74BpzwHV7DkA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAot9vYqq+gXfmnv4h2nb7 xgFSYCXbGGgY2OsgrGc7K8fpECFN2C+/JSF9S7spRKXrnXBCLq6gfLDo/SYOTm/d 7BzzboPU4TIL4c4D+HrruNfbVW5D1u/ZoCYYvqhhdiVh+gbA/5M+LWClk5PKUvaG 7PMu8FjJmmu/jUwbYTmpAfKmDITM231TdxoB4iJugX/IxQlsj6eCPpGdPqoIm0rZ oAH9zxNS8tJzTAnpRlVZrNW16Q6ffgnbGygi4/+1WXZ8c039SwwCLlBkqMBbhhlA /He85DCHsYdKXYHylHBTuGEm6dPAjjSFtPxVHWgYzsq1nRKqZObhN7WJAIPsR0fC RQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1137340833728030435345913723756131121002729473 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Azure RSA TLS Issuing CA 08' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-07 13:27:11 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-01 13:27:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hrd.svc.cloud.microsoft' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20560785358423761969890464069891068138077347176411843645919022235985423113807823125559653612134147290423058536060870013147987557716120291873255285092973714966889607935510709909300889760239946219560715942828204358624050755278619891194389140923466132600488290303429426846129481222901014802890974600210973727659650271532420954007497626731850370158034487490452254439427001497007819555644575798823940537343268019493927190995782737361446948067935730143470171979578053557422456253647716437950981150866044841999831195974955510836895162010100501734325105067922756271737061368534795590201366951007503504112687700422777473843781 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.15690651.3798470.4214446.239628.16526621.93.4272873.6083518 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 38 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (167 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2008%20-%20xsign.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://oneocsp.microsoft.com/ocsp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 083b753a16ce2b610de790e1fb79c20eced35b49 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hrd.svc.cloud.microsoft' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hrd.svc.cloud.microsoft' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hrd.office.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hrd.office.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2008.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.76.509.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pkiops/Docs/Repository.htm' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f67e2fbd80a34ab2705bebdf9a1fd8edca618007 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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