staging.payments.magazines.com
Issued by Amazon
About this certificate
This digital certificate with serial number 02:78:58:a5:f1:a1:5f:bf:67:a6:0e:04:f7:d8:29:10 was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=staging.payments.magazines.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:78:58:a5:f1:a1:5f:bf:67:a6:0e:04:f7:d8:29:10Serial Number (int): 3283329614066923841359063974093007120
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 85:ff:9b:93:b3:ce:80:85:8a:58:ea:44:72:dc:fa:1b:95:f7:48:a1
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 00:9e:a3:ad:bd:94:f5:55:ad:15:c9:ef:95:06:4b:a0:9d:0f:86:ce
Fingerprint (sha256): 1e:17:34:dd:1d:8a:18:a8:4e:74:a6:52:bd:11:16:94:2f:c1:40:b0:9a:33:e6:2e:c1:a5:49:13:50:11:0e:77
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate staging.payments.magazines.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for staging.payments.magazines.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
staging.payments.magazines.com
staging.payments.meredithcsa.com
staging.payments.magazine.store
staging.payments.magazines2.com
staging.payments.meredithcsa.com
staging.payments.magazine.store
staging.payments.magazines2.com
Other certificates including the domain name magazines.com
(limited to 100 certificates)
*.imgix.net
con-nhc.magazines.com
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
specialoffers.meredith.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
media5.adlegend.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.agriculture.com
imgix3.map.fastly.net
imgix3.map.fastly.net
*.magazines.com
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.magazines.com
imgix3.map.fastly.net
secure.meredith.com
ssl379523.cloudflaressl.com
media5.adlegend.com
media5.adlegend.com
*.imgix.net
*.imgix.net
*.imgix.net
magazines.com
payments.magazines.com
imgix3.map.fastly.net
staging.payments.magazines.com
www.track.magazines.com
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
*.imgix.net
payments.magazines.com
imgix3.map.fastly.net
imgix3.map.fastly.net
exchange1.magazines.com
www.magazines.com
*.imgix.net
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
ssl379523.cloudflaressl.com
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
www.magazines.com
*.imgix.net
imgix3.map.fastly.net
imgix3.map.fastly.net
ssl379524.cloudflaressl.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
*.secure.magazines.com
imgix3.map.fastly.net
stat.magazines.com
*.secure.magazines2.com
lockhart.magazines.com
media5.adlegend.com
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
imgix3.map.fastly.net
*.imgix.net
ssl379524.cloudflaressl.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
www.magazines.com
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
exchange1.magazines.com
stat.magazines.com
ssl379523.cloudflaressl.com
*.agriculture.com
con-nhc.magazines.com
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
specialoffers.meredith.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
media5.adlegend.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.agriculture.com
imgix3.map.fastly.net
imgix3.map.fastly.net
*.magazines.com
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.magazines.com
imgix3.map.fastly.net
secure.meredith.com
ssl379523.cloudflaressl.com
media5.adlegend.com
media5.adlegend.com
*.imgix.net
*.imgix.net
*.imgix.net
magazines.com
payments.magazines.com
imgix3.map.fastly.net
staging.payments.magazines.com
www.track.magazines.com
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
*.imgix.net
payments.magazines.com
imgix3.map.fastly.net
imgix3.map.fastly.net
exchange1.magazines.com
www.magazines.com
*.imgix.net
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
ssl379523.cloudflaressl.com
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
www.magazines.com
*.imgix.net
imgix3.map.fastly.net
imgix3.map.fastly.net
ssl379524.cloudflaressl.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
*.secure.magazines.com
imgix3.map.fastly.net
stat.magazines.com
*.secure.magazines2.com
lockhart.magazines.com
media5.adlegend.com
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
imgix3.map.fastly.net
*.imgix.net
ssl379524.cloudflaressl.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
www.magazines.com
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
exchange1.magazines.com
stat.magazines.com
ssl379523.cloudflaressl.com
*.agriculture.com
Certificate
The complete raw certificate details for staging.payments.magazines.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgIQAnhYpfGhX79npg4E99gpEDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTEwMTYwMDAwMDBaFw0yMDExMTYx MjAwMDBaMCkxJzAlBgNVBAMTHnN0YWdpbmcucGF5bWVudHMubWFnYXppbmVzLmNv bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJSpFFbcFKe/YGIa+rgq yh4tG9N7pBFce4gpzvSRRckvk3SNNvTZTFwUBMM7xdszhNDqo4zeqn8zkYjqVO7F LlYbkPLx7aw7+eYMEtnWwvaokIK1eI6cF2uoaXSpqVDx926jUSzGPeGpBLDqe7Sd f0GUgJNEOQwm9HSO+0PqtRerT7g8stTMAP/bCjT0/6j1veCxiZmH2UIlcLe56VIh 83akC1fMjOYcT0epCeETdscHqFXz5qzHOd3CMXw+IKlvqdZeBEa/Oq7nikiZqBGK nGNigoInu/PPHfB/Y0JPeOhZMQbDpMqftnqCwOFyTV/6+wk0cLwUUzYxWxK6ZjKq cIECAwEAAaOCAf4wggH6MB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3Q MB0GA1UdDgQWBBSF/5uTs86AhYpY6kRy3PoblfdIoTCBjwYDVR0RBIGHMIGEgh5z dGFnaW5nLnBheW1lbnRzLm1hZ2F6aW5lcy5jb22CIHN0YWdpbmcucGF5bWVudHMu bWVyZWRpdGhjc2EuY29tgh9zdGFnaW5nLnBheW1lbnRzLm1hZ2F6aW5lLnN0b3Jl gh9zdGFnaW5nLnBheW1lbnRzLm1hZ2F6aW5lczIuY29tMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6g LIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3JsMCAG A1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcw LQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2 BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2Nh MWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZI hvcNAQELBQADggEBALaygx02TS71pnhYYigtgbjXy/7U+C6GH3hcZ6TBA5oii9Qo bOH2ej8ZZtYR8Yc79XJONgeIUw7SH5H9119Vrw+b+cHu1X87sio0zfyiTmG+Q8x0 YNXkq12UEHdc+fRyBaZvbmc0nKGkGEpxVZRPpyRrVCJMkfFoqHs7gN36Uhks6bEI SZhIy221J4vIrN5EtVo6hq2DRBivmLEbLEhZQHjoJXDmsZ6iHoYjRZmlKYvmnJE1 7ouIYAHLm11KDNylMFBow3kTMTYHZxF5u6jLy4wewxtaoEoMqAy2ua6NBh+hc5jV ah4bEHOPo2wff1cUE9JOUo44ELwINkVMKAxtqbs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlKkUVtwUp79gYhr6uCrK Hi0b03ukEVx7iCnO9JFFyS+TdI029NlMXBQEwzvF2zOE0OqjjN6qfzORiOpU7sUu VhuQ8vHtrDv55gwS2dbC9qiQgrV4jpwXa6hpdKmpUPH3bqNRLMY94akEsOp7tJ1/ QZSAk0Q5DCb0dI77Q+q1F6tPuDyy1MwA/9sKNPT/qPW94LGJmYfZQiVwt7npUiHz dqQLV8yM5hxPR6kJ4RN2xweoVfPmrMc53cIxfD4gqW+p1l4ERr86rueKSJmoEYqc Y2KCgie7888d8H9jQk946FkxBsOkyp+2eoLA4XJNX/r7CTRwvBRTNjFbErpmMqpw gQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3283329614066923841359063974093007120 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-16 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging.payments.magazines.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18766645319428892907059508780810511810691300281560820661347255852112778376913368316227526153333412371197995030242658621987420167675006776729075127866737269851892455405822520362300711537504925561987221262052736431294266239146791329695764576372995599859063128440341180837638879389112074379311606130315945534876564037973008579716186230020356385826411990692804509704314997535709357272664686921695700471629089624122505036258588650545492403341076867684653217184682307524827160388929826920292624085095189730671069367441632856374582525929918928305679587072991122794662861694192341505181283035302169074727125265750822476214401 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 85ff9b93b3ce80858a58ea4472dcfa1b95f748a1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.payments.magazines.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.payments.meredithcsa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.payments.magazine.store' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.payments.magazines2.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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