watch.spectrum.net
Issued by Amazon
About this certificate
This digital certificate with serial number 0e:9c:71:98:d0:85:56:54:40:ca:81:b7:e9:a2:e3:71 was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=watch.spectrum.net
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:9c:71:98:d0:85:56:54:40:ca:81:b7:e9:a2:e3:71Serial Number (int): 19421494270420246992202512076061729649
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 24:ef:b7:b6:e1:37:40:e8:76:b4:a4:77:b2:58:16:9f:e0:be:00:30
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 02:8f:75:13:72:5a:27:26:3f:93:e8:2c:1d:c4:9b:64:77:9f:09:a9
Fingerprint (sha256): 22:7c:13:04:82:19:b6:41:af:54:91:81:37:ae:c6:b9:b6:0e:84:d2:9f:a7:1e:87:67:58:e4:d8:86:48:ec:e1
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate watch.spectrum.net
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for watch.spectrum.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
watch.spectrum.net
watch-blue.spectrum.net
*.watch.spectrum.net
watch-green.spectrum.net
watch-blue.spectrum.net
*.watch.spectrum.net
watch-green.spectrum.net
Other certificates including the domain name spectrum.net
(limited to 100 certificates)
privacy.portals.spectrum.net
mail.charter.net
api-private.cm.spectrum.net
self-care.portals.spectrum.net
*.pi.spectrum.net
activate-uat.spectrum.net
aviatrix-lab.scratch.spectrum.net
report.cm.spectrum.net
device.cm.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
*.pi.spectrum.net
report.cm.spectrum.net
*.scl.spectrum.net
*.stage.tau.spectrum.net
artifactory.scratch.spectrum.net
report-qa.cmdev.spectrum.net
pci.spectrum.net
wifiprofile.spectrum.net
api.spectrum.net
ci-private-api.cmdev.spectrum.net
*.spectrum.net
preprod.idp.aws.spectrum.net
*.spectrum.net
advisor2.spectrum.net
*.wtg.spectrum.net
cii.spectrum.net
ocsports.tv
xspca02.hv.rr.com
tdcs-origin.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
device-gn.cm.spectrum.net
spectrum.net
*.portals.spectrum.net
report.cm.stg.spectrum.net
report-sit.cm.spectrum.net
edge-vod.spectrum.net
xspca02.hv.rr.com
preprod.idp.aws.spectrum.net
*.wireless-api.spectrum.net
xspca01.hv.spectrum.net
spectrum.net
xspca02.hv.rr.com
ci-cmt3teamportal.cmdev.spectrum.net
*.pi.spectrum.net
spectrum.net
xspca01.hv.rr.com
spectrumtv.com
logpull-prod.tau.spectrum.net
gitlab.meta.spectrum.net
xspca01.hv.rr.com
device.cm.stg.spectrum.net
cm-policy-sit.cm.spectrum.net
*.meta.spectrum.net
sonar.cm.spectrum.net
scratch.spectrum.net
api2.cmdev.spectrum.net
tdcs-origin.spectrum.net
fols.spectrum.net
activate.spectrum.net
*.failover.pi.spectrum.net
dsexp.spectrum.net
care.spectrumwifi.spectrum.net
stage-spectrum.net
*.dev.wtg.spectrum.net
self-care.portals.spectrum.net
cms.prd-aws.charter.net
cloudnet-controller.meta.spectrum.net
mediaportals-news-64.dev-charter.net
tdcs.spectrum.net
community.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
watch.spectrum.net
cmt3teamportal.cmdev.spectrum.net
prd-infra-instana-2.prd.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
sdptpsiproxyvip.charter.com
instanadist.tools.prd.spectrum.net
privacy.portals.spectrum.net
xspca01.hv.rr.com
*.eos.spectrum.net
spectrumtv.com
report.cm.stg.spectrum.net
device-ci.cmdev.spectrum.net
edge-vod.spectrum.net
spectrumwifi.spectrum.net
report.cm.spectrum.net
private-api.cm.spectrum.net
cm-policy.cm.spectrum.net
prd.effiedataservice-external.spectrum.net
cloudnet-controller.meta.spectrum.net
*.nls-sit.wtg.spectrum.net
tdcs-engprod.spectrum.net
self-care.portals.spectrum.net
spectrum.net
device-ci.cmdev.spectrum.net
*.spectrum.net
activate-uat.spectrum.net
pci.spectrum.net
report.cm.spectrum.net
*.eos.spectrum.net
mail.charter.net
api-private.cm.spectrum.net
self-care.portals.spectrum.net
*.pi.spectrum.net
activate-uat.spectrum.net
aviatrix-lab.scratch.spectrum.net
report.cm.spectrum.net
device.cm.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
*.pi.spectrum.net
report.cm.spectrum.net
*.scl.spectrum.net
*.stage.tau.spectrum.net
artifactory.scratch.spectrum.net
report-qa.cmdev.spectrum.net
pci.spectrum.net
wifiprofile.spectrum.net
api.spectrum.net
ci-private-api.cmdev.spectrum.net
*.spectrum.net
preprod.idp.aws.spectrum.net
*.spectrum.net
advisor2.spectrum.net
*.wtg.spectrum.net
cii.spectrum.net
ocsports.tv
xspca02.hv.rr.com
tdcs-origin.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
device-gn.cm.spectrum.net
spectrum.net
*.portals.spectrum.net
report.cm.stg.spectrum.net
report-sit.cm.spectrum.net
edge-vod.spectrum.net
xspca02.hv.rr.com
preprod.idp.aws.spectrum.net
*.wireless-api.spectrum.net
xspca01.hv.spectrum.net
spectrum.net
xspca02.hv.rr.com
ci-cmt3teamportal.cmdev.spectrum.net
*.pi.spectrum.net
spectrum.net
xspca01.hv.rr.com
spectrumtv.com
logpull-prod.tau.spectrum.net
gitlab.meta.spectrum.net
xspca01.hv.rr.com
device.cm.stg.spectrum.net
cm-policy-sit.cm.spectrum.net
*.meta.spectrum.net
sonar.cm.spectrum.net
scratch.spectrum.net
api2.cmdev.spectrum.net
tdcs-origin.spectrum.net
fols.spectrum.net
activate.spectrum.net
*.failover.pi.spectrum.net
dsexp.spectrum.net
care.spectrumwifi.spectrum.net
stage-spectrum.net
*.dev.wtg.spectrum.net
self-care.portals.spectrum.net
cms.prd-aws.charter.net
cloudnet-controller.meta.spectrum.net
mediaportals-news-64.dev-charter.net
tdcs.spectrum.net
community.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
watch.spectrum.net
cmt3teamportal.cmdev.spectrum.net
prd-infra-instana-2.prd.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
sdptpsiproxyvip.charter.com
instanadist.tools.prd.spectrum.net
privacy.portals.spectrum.net
xspca01.hv.rr.com
*.eos.spectrum.net
spectrumtv.com
report.cm.stg.spectrum.net
device-ci.cmdev.spectrum.net
edge-vod.spectrum.net
spectrumwifi.spectrum.net
report.cm.spectrum.net
private-api.cm.spectrum.net
cm-policy.cm.spectrum.net
prd.effiedataservice-external.spectrum.net
cloudnet-controller.meta.spectrum.net
*.nls-sit.wtg.spectrum.net
tdcs-engprod.spectrum.net
self-care.portals.spectrum.net
spectrum.net
device-ci.cmdev.spectrum.net
*.spectrum.net
activate-uat.spectrum.net
pci.spectrum.net
report.cm.spectrum.net
*.eos.spectrum.net
Certificate
The complete raw certificate details for watch.spectrum.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgIQDpxxmNCFVlRAyoG36aLjcTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDAzMTEwMDAwMDBaFw0yMTA0MTEx MjAwMDBaMB0xGzAZBgNVBAMTEndhdGNoLnNwZWN0cnVtLm5ldDCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAL40sXQA5flS+cHaaAglRX1jQ8yyCSQ0S37E q1lQKfAdo5TXtHbJoNkx/WqpdiHIFFaQgA1rzrq+X6AxmLTYkEBJ4en4vFiIX75k 3v6gHc+Kx4PiKl7ANIEAcu2v1dndyavqru528Fve0vl08TDbYOgNh4tyQa5ztPOX INoT3n48hFtl/oi9po9w6kZnGaY8rPzhZwbxafSYDd8i8cpZzUeoxLur1AK3JqFv Z7dek8QUv5+Yp6MLgNlzOv0EdapXUNgrXEU6EqHAI4XD77IcG/SpTgKGBTO+Znj4 4Oo9fzziBLyvbEiOvBVJeBb81Oj5ww3GhnJvCAhkjqAh++cNtP8CAwEAAaOCAscw ggLDMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBQk 77e24TdA6Ha0pHeyWBaf4L4AMDBmBgNVHREEXzBdghJ3YXRjaC5zcGVjdHJ1bS5u ZXSCF3dhdGNoLWJsdWUuc3BlY3RydW0ubmV0ghQqLndhdGNoLnNwZWN0cnVtLm5l dIIYd2F0Y2gtZ3JlZW4uc3BlY3RydW0ubmV0MA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0 cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3JsMCAGA1UdIAQZ MBcwCwYJYIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYB BQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEF BQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0 MAwGA1UdEwEB/wQCMAAwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgC72d+8H4px tZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAAAXDLQ2IPAAAEAwBHMEUCIEp1t+PJ IlAcYKtmH9k2Px/OYdEWWPLmBJSFTqSDiouIAiEAoIDQSWJj7xli2ZzD1X0QIcIY kqZDyW9ChpmN7d14c+0AdgBc3EOS/uarRUSxXprUVuYQN/vV+kfcoXOUsl7m9scO ygAAAXDLQ2I/AAAEAwBHMEUCIDzu1+EsMBFVlnEAk7lbgSEz3TG3zWQKiOyvldCw ArXPAiEAjTkEHU7Su9Ed6nKfMfZmIEKpQRrBkurDQ1BC3UvOLPAwDQYJKoZIhvcN AQELBQADggEBAJ8h8nSqFPiiCOlqVfXE93WdBHAffom/0lkUIw2i4dyP1jO6o6xV wguzt9UmFeBbzluOcUVn+R9ZOrcjhWJL0L2MF86WXlJOg/Uxy7OXv/j9mkNxVuvl SkRzLPY78jlbQu3ALWklIFEQ7p4cI2sEoXA98thtoSNjMQF941SbV7TijEzN0mUB xlsY/MHIFiVKJ5ytkTrrxm9+V2/OGZbXzFCNsnj1mbzK/NhZooW9G6po0FxvTfHj 7JvT+RiQsxkGsUj7ZtWKTL5fGkFlL8Yu6rfqev5UBdzrDduQ17HAJswp2sgKNXMT PU2Yp47bhy6hGAMs+1LUOegyHbQ8MlEP/T8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvjSxdADl+VL5wdpoCCVF fWNDzLIJJDRLfsSrWVAp8B2jlNe0dsmg2TH9aql2IcgUVpCADWvOur5foDGYtNiQ QEnh6fi8WIhfvmTe/qAdz4rHg+IqXsA0gQBy7a/V2d3Jq+qu7nbwW97S+XTxMNtg 6A2Hi3JBrnO085cg2hPefjyEW2X+iL2mj3DqRmcZpjys/OFnBvFp9JgN3yLxylnN R6jEu6vUArcmoW9nt16TxBS/n5inowuA2XM6/QR1qldQ2CtcRToSocAjhcPvshwb 9KlOAoYFM75mePjg6j1/POIEvK9sSI68FUl4FvzU6PnDDcaGcm8ICGSOoCH75w20 /wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19421494270420246992202512076061729649 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-11 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'watch.spectrum.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24011261917232008528658664295099488555543330303268808127599429731906667578795877879034753233652606220654113983890496545259390718195153385327188999187612801213102467404866652654473223180321793606159669645014829018346335642425012228779253439903178843444039643025019336616584008654011376160752530617571969141467937891183257430520375059661657529902558142792537276734981532297023986293073631711896465247366691303378036029974392456863799181677164486322853986979548441464521031080167585941727512893847044774269124512939336875357042934272932193221399598411686991432961101763318585876377290868634500881865737509471679580845311 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 24efb7b6e13740e876b4a477b258169fe0be0030 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watch.spectrum.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watch-blue.spectrum.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.watch.spectrum.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watch-green.spectrum.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed18500000170cb43620f000004030047304502204a75b7e3c922501c60ab661fd9363f1fce61d11658f2e60494854ea4838a8b88022100a080d0496263ef1962d99cc3d57d1021c21892a643c96f4286998deddd7873ed0076005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca00000170cb43623f000004030047304502203ceed7e12c30115596710093b95b812133dd31b7cd640a88ecaf95d0b002b5cf0221008d39041d4ed2bbd11dea729f31f6662042a9411ac192eac3435042dd4bce2cf0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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