onespot.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0d:f0:22:08:e6:a9:40:3a:da:07:d4:65:f1:c6:4c:4b was issued on by Amazon.
With 22 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=onespot.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:f0:22:08:e6:a9:40:3a:da:07:d4:65:f1:c6:4c:4bSerial Number (int): 18526805498390253289006983286643641419
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 30:48:13:2c:b1:b4:97:f0:38:d6:00:03:43:53:4a:47:04:ac:67:2e
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 95:18:a6:5c:d2:0c:c5:a0:31:02:3e:ae:e1:30:b9:f8:ec:c6:7f:13
Fingerprint (sha256): 22:65:49:ea:92:8e:fe:6b:7b:7d:76:ef:79:b1:03:ca:18:9f:ac:70:a8:1c:d8:57:62:00:9c:22:91:43:b2:a6
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate onespot.com
22
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for onespot.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
onespot.com
alterpoint.com
gensym.com
everestsoftwareinc.com
*.bespeakinc.com
bespeakinc.com
*.epmlive.com
prologic.com
*.gensym.com
biznessapps.com
*.prologic.com
eti.com
*.everestsoftwareinc.com
ecora.com
epmlive.com
*.onespot.com
*.biznessapps.com
*.auto-trol.com
*.alterpoint.com
*.ecora.com
auto-trol.com
*.eti.com
alterpoint.com
gensym.com
everestsoftwareinc.com
*.bespeakinc.com
bespeakinc.com
*.epmlive.com
prologic.com
*.gensym.com
biznessapps.com
*.prologic.com
eti.com
*.everestsoftwareinc.com
ecora.com
epmlive.com
*.onespot.com
*.biznessapps.com
*.auto-trol.com
*.alterpoint.com
*.ecora.com
auto-trol.com
*.eti.com
Other certificates including the domain name onespot.com
(limited to 100 certificates)
onespot.com
preview.onespot.com
support.engineyard.com
*.staging.onespot.com
pages.onespot.com
onespot.com
onespot.com
*.onespot.com
*.dashboard.onespot.com
*.onespot.com
hello.onespot.com
preview.onespot.com
*.dashboard.onespot.com
support.infinio.com
auth.onespot.com
onespot.com
preview.onespot.com
hello.onespot.com
*.dashboard.onespot.com
onespot.com
hello.onespot.com
*.dashboard.onespot.com
www.onespot.com
preview.onespot.com
*.dev.onespot.com
*.qa.onespot.com
preview.onespot.com
*.dev.onespot.com
www.onespot.com
pages.onespot.com
preview.onespot.com
hello.onespot.com
*.onespot.com
support.onespot.com
preview.onespot.com
*.onespot.com
onespot.com
*.onespot.com
*.onespot.com
preview.onespot.com
*.onespot.com
*.onespot.com
*.onespot.com
www.onespot.com
*.staging.onespot.com
onespot.com
auth.onespot.com
support.engineyard.com
support.onespot.com
onespot.com
onespot.com
*.stage.onespot.com
*.onespot.com
www.onespot.com
*.stage.onespot.com
support.onespot.com
pages.onespot.com
www.onespot.com
www.onespot.com
www.onespot.com
*.onespot.com
*.dashboard.onespot.com
www.onespot.com
pages.onespot.com
onespot.com
www.onespot.com
*.qa.onespot.com
preview.onespot.com
support.engineyard.com
support.engineyard.com
*.onespot.com
*.onespot.com
*.onespot.com
preview.onespot.com
*.dashboard.onespot.com
pages.onespot.com
www.onespot.com
auth.onespot.com
*.stage.onespot.com
*.dev.onespot.com
*.onespot.com
*.dashboard.onespot.com
www.onespot.com
*.staging.onespot.com
*.stage.onespot.com
pages.onespot.com
pages.onespot.com
preview.onespot.com
*.onespot.com
image.onespot.com
image.onespot.com
*.onespot.com
dashboard.onespot.com
onespot.com
onespot.com
*.staging.onespot.com
hello.onespot.com
preview.onespot.com
*.onespot.com
*.onespot.com
preview.onespot.com
support.engineyard.com
*.staging.onespot.com
pages.onespot.com
onespot.com
onespot.com
*.onespot.com
*.dashboard.onespot.com
*.onespot.com
hello.onespot.com
preview.onespot.com
*.dashboard.onespot.com
support.infinio.com
auth.onespot.com
onespot.com
preview.onespot.com
hello.onespot.com
*.dashboard.onespot.com
onespot.com
hello.onespot.com
*.dashboard.onespot.com
www.onespot.com
preview.onespot.com
*.dev.onespot.com
*.qa.onespot.com
preview.onespot.com
*.dev.onespot.com
www.onespot.com
pages.onespot.com
preview.onespot.com
hello.onespot.com
*.onespot.com
support.onespot.com
preview.onespot.com
*.onespot.com
onespot.com
*.onespot.com
*.onespot.com
preview.onespot.com
*.onespot.com
*.onespot.com
*.onespot.com
www.onespot.com
*.staging.onespot.com
onespot.com
auth.onespot.com
support.engineyard.com
support.onespot.com
onespot.com
onespot.com
*.stage.onespot.com
*.onespot.com
www.onespot.com
*.stage.onespot.com
support.onespot.com
pages.onespot.com
www.onespot.com
www.onespot.com
www.onespot.com
*.onespot.com
*.dashboard.onespot.com
www.onespot.com
pages.onespot.com
onespot.com
www.onespot.com
*.qa.onespot.com
preview.onespot.com
support.engineyard.com
support.engineyard.com
*.onespot.com
*.onespot.com
*.onespot.com
preview.onespot.com
*.dashboard.onespot.com
pages.onespot.com
www.onespot.com
auth.onespot.com
*.stage.onespot.com
*.dev.onespot.com
*.onespot.com
*.dashboard.onespot.com
www.onespot.com
*.staging.onespot.com
*.stage.onespot.com
pages.onespot.com
pages.onespot.com
preview.onespot.com
*.onespot.com
image.onespot.com
image.onespot.com
*.onespot.com
dashboard.onespot.com
onespot.com
onespot.com
*.staging.onespot.com
hello.onespot.com
preview.onespot.com
*.onespot.com
*.onespot.com
Certificate
The complete raw certificate details for onespot.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHHTCCBgWgAwIBAgIQDfAiCOapQDraB9Rl8cZMSzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA3MjYwMDAwMDBaFw0yMzA4MjQy MzU5NTlaMBYxFDASBgNVBAMTC29uZXNwb3QuY29tMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAx1q8JVgx6eQsKKK15rk+lgjk416c69IHYXAuyyIyGqT0 Vf5HDC22jZRSOFBUEszR9t5pDLLm6fBIZ4MjBCxUaJ6NToIDzrL9McJ53biHP/Q1 8hYWpiiv2xXHRvJr01LtdNt9uWkPaggnK8byGgsnHa0dJw4pugvQp6LbLBl5YnGp dnE5iAfRT0UH36vLr/XZiNsVT3yvg9i6Iqni46awV1BR+ySyPJu7V2iQkWZ6Nwk3 j/44KWZSO+bVDJ9vULEVOgwaYaxkxiWjJsoj5O3CrYK+X+agLitTgBavKaMFPaRL 6vAtThBgw3+AqgdiwjF07pXg42Bt4dj8D709cexCnQIDAQABo4IENTCCBDEwHwYD VR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFDBIEyyxtJfw ONYAA0NTSkcErGcuMIIBYwYDVR0RBIIBWjCCAVaCC29uZXNwb3QuY29tgg5hbHRl cnBvaW50LmNvbYIKZ2Vuc3ltLmNvbYIWZXZlcmVzdHNvZnR3YXJlaW5jLmNvbYIQ Ki5iZXNwZWFraW5jLmNvbYIOYmVzcGVha2luYy5jb22CDSouZXBtbGl2ZS5jb22C DHByb2xvZ2ljLmNvbYIMKi5nZW5zeW0uY29tgg9iaXpuZXNzYXBwcy5jb22CDiou cHJvbG9naWMuY29tggdldGkuY29tghgqLmV2ZXJlc3Rzb2Z0d2FyZWluYy5jb22C CWVjb3JhLmNvbYILZXBtbGl2ZS5jb22CDSoub25lc3BvdC5jb22CESouYml6bmVz c2FwcHMuY29tgg8qLmF1dG8tdHJvbC5jb22CECouYWx0ZXJwb2ludC5jb22CCyou ZWNvcmEuY29tgg1hdXRvLXRyb2wuY29tggkqLmV0aS5jb20wDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA9BgNVHR8ENjA0MDKg MKAuhixodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi0xLmNy bDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUH MAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcw AoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwG A1UdEwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AOg+0No+9QY1 MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABgjzhrXoAAAQDAEcwRQIgZAlYFiGq EtmrI5BV+PITAr3N6Wv/12PUze8V0cX/SlECIQCauqKfbXG22xzlrCOdnxPAU4Dd 2ATqghjUS1c499cmhQB2ADXPGRu/sWxXvw+tTG1Cy7u2JyAmUeo/4SrvqAPDO9ZM AAABgjzhrPIAAAQDAEcwRQIgTPslALlvbdZdV+AQlmnNNKUkc5mfsRbjiYBHwonj 4EkCIQDyTq5+RhybJxiyojGRTLdd0aqPu+gR/lt9IrCh7doNqwB2ALc++yTfnE26 dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABgjzhrOoAAAQDAEcwRQIhAJLO1xHS DghehPJt+SDu3dIpOkdp+uE5Nz1iTGYYRJd+AiA8S827AZswfHgfTyULsB2TVMQp VXVpOHDQ/T9pEsJ0ojANBgkqhkiG9w0BAQsFAAOCAQEAVaT3Vr9UGO2F+bFBOJZ1 BkK3/okIJKsOs0QLKw9FMKxSZuiXEr+x4QKRE3KObl+6LSLpvejtcgxOFGKmnxaD AoTzdmxANm89TYITbS8srNfapyGrL9wiIKeKlLaLYZTGcgtrqmUV/jXYOCi3EXqr 3pu1OdyElkSJEnDylNlqOJUi1GMYZByM9WiXWk/GTeIFN6MTlIQS+qs8N5S8MoFD JeHdjOqnfmcNJ5aTG3J/e1UMWsvg75i9zYSTA7ZsjybAzGp3sTVTivCBlH70h1/g JHABuhEHxoMyzmy1T9bRw3YQdhpQWpaUElr+1Tuj+L9dCNwm+gxAWyZI4rQWJ5tv xA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1q8JVgx6eQsKKK15rk+ lgjk416c69IHYXAuyyIyGqT0Vf5HDC22jZRSOFBUEszR9t5pDLLm6fBIZ4MjBCxU aJ6NToIDzrL9McJ53biHP/Q18hYWpiiv2xXHRvJr01LtdNt9uWkPaggnK8byGgsn Ha0dJw4pugvQp6LbLBl5YnGpdnE5iAfRT0UH36vLr/XZiNsVT3yvg9i6Iqni46aw V1BR+ySyPJu7V2iQkWZ6Nwk3j/44KWZSO+bVDJ9vULEVOgwaYaxkxiWjJsoj5O3C rYK+X+agLitTgBavKaMFPaRL6vAtThBgw3+AqgdiwjF07pXg42Bt4dj8D709cexC nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18526805498390253289006983286643641419 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-07-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'onespot.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25166165757139352303754214704089588782065405638524704560855544610064605050436783857136615582384968328069872472959189467720484105018834372794564460327557575196623351084985839481956347083575827493958772855975992372886098129729854180875435642676440187903681817760872565202403864678952969206895134796324227415099571536087982723402584228248284052927446229100527327654004450974797704094743326120075713398713790717371331667790638439540002045471974179706417754037734754462762417127883005655838010397579359044890871739067269952300477095348404249473776795531260161047997349840399536452532202001012726509654239292105250042561181 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3048132cb1b497f038d6000343534a4704ac672e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (346 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onespot.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alterpoint.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gensym.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'everestsoftwareinc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bespeakinc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bespeakinc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.epmlive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prologic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gensym.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'biznessapps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prologic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eti.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.everestsoftwareinc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ecora.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'epmlive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.onespot.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.biznessapps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.auto-trol.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alterpoint.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ecora.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'auto-trol.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.eti.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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