*.app-west.buzzfeed.io
Issued by Amazon
About this certificate
This digital certificate with serial number 0d:af:71:27:f1:42:a5:00:ad:3d:47:a6:c7:00:73:d5 was issued on by Amazon.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.app-west.buzzfeed.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:af:71:27:f1:42:a5:00:ad:3d:47:a6:c7:00:73:d5Serial Number (int): 18190910972297507551801013932300202965
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 19:44:fd:e4:8f:bd:4d:d4:fb:fd:ce:bf:49:41:5b:b9:fa:ff:e1:32
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): b0:a9:4a:a5:90:00:7d:2b:68:1e:47:f9:24:ee:81:8a:03:ab:42:1a
Fingerprint (sha256): 1f:a9:eb:25:57:7d:84:86:d9:0a:97:e5:74:b2:38:17:b5:9e:f2:48:34:20:1e:db:94:8c:29:ae:0f:38:26:57
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate *.app-west.buzzfeed.io
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.app-west.buzzfeed.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.app-west.buzzfeed.io
*.sso.app-west.huffpost.net
*.use1.huffpo.net
*.bzfd.it
*.huffpost.net
*.cambria-production.huffpo.net
*.cambria-staging.huffpo.net
*.sso.app-west.buzzfeed.io
*.buzzfeed.com
*.buzzfeed.io
*.app-west.huffpost.net
*.huffingtonpost.com
*.sso.app-west.huffpost.net
*.use1.huffpo.net
*.bzfd.it
*.huffpost.net
*.cambria-production.huffpo.net
*.cambria-staging.huffpo.net
*.sso.app-west.buzzfeed.io
*.buzzfeed.com
*.buzzfeed.io
*.app-west.huffpost.net
*.huffingtonpost.com
Other certificates including the domain name buzzfeed.io
(limited to 100 certificates)
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo02.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.adminprod.buzzfeed.io
*.dev.buzzfeed.io
*.adminprod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--willmccutchen.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.test.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.hackweek.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--dan-meruelo.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.test.buzzfeed.io
*.unstable.buzzfeed.io
*.rigplayground1.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.adminprod.buzzfeed.io
*.hackweek.buzzfeed.io
*.prod.buzzfeed.io
*.namespace.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo02.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.adminprod.buzzfeed.io
*.dev.buzzfeed.io
*.adminprod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--willmccutchen.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.test.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.hackweek.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--dan-meruelo.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.test.buzzfeed.io
*.unstable.buzzfeed.io
*.rigplayground1.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.adminprod.buzzfeed.io
*.hackweek.buzzfeed.io
*.prod.buzzfeed.io
*.namespace.unstable.buzzfeed.io
Certificate
The complete raw certificate details for *.app-west.buzzfeed.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG3TCCBcWgAwIBAgIQDa9xJ/FCpQCtPUemxwBz1TANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA1MTgwMDAwMDBaFw0yMzA2MTYy MzU5NTlaMCExHzAdBgNVBAMMFiouYXBwLXdlc3QuYnV6emZlZWQuaW8wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp/n8veZKix6fY5yAdW/WMFMwt+olG ICgIZyFVnS30dPqfWGbgC05uhkCGy82RQGvVLRd0e05q/OuVfh9e9r23wU45hDIV D6TnjXr7K4l/FZhSiQhslNIU6ZFAJamQ6L5TsouY56gYTO0bftJ5UqIJufk2ZXYh z09hQUDeV/yerVCbKMptiWniG4+vgqCalDgZVT3O8n+z86axlOL4Qm3QrawEiFXf vM//w0jnXIAIBTl5mEwJvQVxtEhpGYoT0F4mQBco2AWRoZoPlML8co5h9nXFvqbZ KZ2Z/+yyGBt4lM//NUsTVhUu7nAwvjS1K90dtdCeN6ZXP5Gnb1Yo/OtfAgMBAAGj ggPqMIID5jAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4E FgQUGUT95I+9TdT7/c6/SUFbufr/4TIwggEZBgNVHREEggEQMIIBDIIWKi5hcHAt d2VzdC5idXp6ZmVlZC5pb4IbKi5zc28uYXBwLXdlc3QuaHVmZnBvc3QubmV0ghEq LnVzZTEuaHVmZnBvLm5ldIIJKi5iemZkLml0gg4qLmh1ZmZwb3N0Lm5ldIIfKi5j YW1icmlhLXByb2R1Y3Rpb24uaHVmZnBvLm5ldIIcKi5jYW1icmlhLXN0YWdpbmcu aHVmZnBvLm5ldIIaKi5zc28uYXBwLXdlc3QuYnV6emZlZWQuaW+CDiouYnV6emZl ZWQuY29tgg0qLmJ1enpmZWVkLmlvghcqLmFwcC13ZXN0Lmh1ZmZwb3N0Lm5ldIIU Ki5odWZmaW5ndG9ucG9zdC5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjA9BgNVHR8ENjA0MDKgMKAuhixodHRwOi8vY3Js LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi0xLmNybDATBgNVHSAEDDAKMAgG BmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3Nw LnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5z Y2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwggF9 BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB1AOg+0No+9QY1MudXKLyJa8kD08vREWvs 62nhd31tBr1uAAABgNgWykgAAAQDAEYwRAIgdux+6/tvPYWeX5rEyYIG2f5zMX3Z 8qK1jJ6VB9QVkNACIEwbxvLro6cO1jj8+6LOFu9hw8SFMg2ITuXsO9QZ1Fw8AHYA Nc8ZG7+xbFe/D61MbULLu7YnICZR6j/hKu+oA8M71kwAAAGA2BbKUgAABAMARzBF AiA3/gkATTZvPZWocQeUFWicmD+0l+lv0pf3NCPJUq5UNgIhAKyloQ8M/eTueGqK JEE2aZB5/+S1p/XXWUMSA+GFvLm8AHYAs3N3B+GEUPhjhtYFqdwRCUp5LbFnDAuH 3PADDnk2pZoAAAGA2BbKdQAABAMARzBFAiAvaQPMagZX+8Q7bL4pbvVsTwpFEfng 7kCU3LKlSt/B/AIhAI8oBXoVw/Moz9rMcU11eknWIAUuXogKNbvd/EZwGXVpMA0G CSqGSIb3DQEBCwUAA4IBAQC2N7EfIEI09NBigaaiPwSzDRWTPZzU6O5IdH1gBOwc pFKz6U9+Ek/u3Kf4U43wwTBu4BZRPw1Wy92VUAuJQW1UNiztjvG2bli+FZJc7MgL FB/piNRl53CulJFViTmjlY8yD457wSLxx1scqcY5wk6GpP9Db+1uRW/QfmuQz/YZ wAjgmkltvEooTWCtR1n5qmKigvbEzmRmsqUmnNrbHkM+qTkL/Zy3eFVzZ3ulVW1X gFjaDcpjNyhvTBWp0ncPuC3itavuRSwpRuwP+20ehow7ru7A4a5o3mMWP2VA5JOM wdElOuZJJT/jRKeirbaFMt/xCwrV/OOEWrga1lSTEPbr -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqf5/L3mSosen2OcgHVv1 jBTMLfqJRiAoCGchVZ0t9HT6n1hm4AtOboZAhsvNkUBr1S0XdHtOavzrlX4fXva9 t8FOOYQyFQ+k5416+yuJfxWYUokIbJTSFOmRQCWpkOi+U7KLmOeoGEztG37SeVKi Cbn5NmV2Ic9PYUFA3lf8nq1QmyjKbYlp4huPr4KgmpQ4GVU9zvJ/s/OmsZTi+EJt 0K2sBIhV37zP/8NI51yACAU5eZhMCb0FcbRIaRmKE9BeJkAXKNgFkaGaD5TC/HKO YfZ1xb6m2Smdmf/sshgbeJTP/zVLE1YVLu5wML40tSvdHbXQnjemVz+Rp29WKPzr XwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18190910972297507551801013932300202965 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.app-west.buzzfeed.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21459770597637721809832552240189590610024642947061491927085088423217241286677446917724304427848805063819628958548524885212376959126541790633019931066113465353636605157544046781164761735840490192917302693528177623219778754114984818508994034571167423174010680642266819260483469716910740103939759754876205378230270554279858200861802308021039923903586960481273974734080425010985577188150329909244173523122850433578872530658651158934966922398187985610378544585001362785194968798149749622080235786680139326078683440762021343931949917890646259456418917855549743179103449551711040268608957235587542438589398172996211658517343 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1944fde48fbd4dd4fbfdcebf49415bb9faffe132 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (272 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.app-west.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sso.app-west.huffpost.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.use1.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bzfd.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.huffpost.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cambria-production.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cambria-staging.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sso.app-west.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.buzzfeed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.app-west.huffpost.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.huffingtonpost.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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