*.k8s.onyo.com
Issued by Amazon
About this certificate
This digital certificate with serial number 07:24:30:17:e3:36:43:44:c0:99:bf:6d:1f:f5:5f:d8 was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.k8s.onyo.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:24:30:17:e3:36:43:44:c0:99:bf:6d:1f:f5:5f:d8Serial Number (int): 9492494105629074903729665465952591832
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: b1:d8:b9:fe:15:5e:e8:56:99:74:56:9c:68:da:4f:b8:21:60:73:23
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): fa:b1:4e:bc:9a:67:2d:32:36:42:1f:88:ef:38:a9:3f:bb:99:b7:ea
Fingerprint (sha256): 25:1c:4f:a6:1d:0f:c4:a3:40:fa:55:a1:a7:05:8c:bf:82:67:b0:43:1c:bb:1a:4f:ce:f4:e4:cc:c7:f9:01:e6
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.k8s.onyo.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.k8s.onyo.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.k8s.onyo.com
*.staging.k8s.onyo.com
*.develop.k8s.onyo.com
*.payment.k8s.onyo.com
*.staging.k8s.onyo.com
*.develop.k8s.onyo.com
*.payment.k8s.onyo.com
Other certificates including the domain name onyo.com
(limited to 100 certificates)
ssl377491.cloudflaressl.com
ssl377491.cloudflaressl.com
wolfml.com
www.spangee.com
site.onyo.com
form.onyo.com
malm.al
pos.staging.onyo.com
dash.brightlive.com
le.ai
ssl377491.cloudflaressl.com
auth.onyo.com
trekmates.tours
3rein.com
www.titusnjiru.dev
we-24.com
ssl377490.cloudflaressl.com
ssl377491.cloudflaressl.com
mb.logicside.net
sni.cloudflaressl.com
ssl377490.cloudflaressl.com
api.reports.staging.onyo.com
ssl377491.cloudflaressl.com
ssl377489.cloudflaressl.com
ssl377491.cloudflaressl.com
cevremde.com
ssl377491.cloudflaressl.com
ssl377491.cloudflaressl.com
kiosk.onyo.com
www.coopcery.shop
ssl377490.cloudflaressl.com
ssl377489.cloudflaressl.com
www.cycleconnect.com.br
api.staging.onyo.com
app.oficinadaaprovacao.com.br
ssl377490.cloudflaressl.com
api.onyo.com
getmarketingtips.io
ssl377491.cloudflaressl.com
ssl377491.cloudflaressl.com
images.onyo.com
ssl377491.cloudflaressl.com
ssl377489.cloudflaressl.com
ssl377491.cloudflaressl.com
demo.happybuilding.app
dixons-pay.mishipay.com
ssl377489.cloudflaressl.com
sgm.overlay.staging.onyo.com
www.thegoattalent.es
onyo.com
ssl377490.cloudflaressl.com
www.callforcake.com
www.cpimenta.com
*.k8s.onyo.com
onyo.com
ssl377490.cloudflaressl.com
kiosk.onyo.com
onyo.com
onyo.com
ssl377491.cloudflaressl.com
*.k8s.onyo.com
catalog-qa.itxi.aero
ssl377491.cloudflaressl.com
suterapines.cf
www.targetz.mx
*.staging.onyo.com
www.novoda.cc
onyo.com
onelink.chaayos.com
my.getonify.com
team.ziggu.app
ssl377491.cloudflaressl.com
web-app.staging.onyo.com
ssl377491.cloudflaressl.com
onyo.com
site.onyo.com
ssl377490.cloudflaressl.com
onyo.app
ssl377491.cloudflaressl.com
evolvedappraisals.com
ssl377490.cloudflaressl.com
onyo.com
ssl377491.cloudflaressl.com
ssl377489.cloudflaressl.com
www.kubeshield.app
onyo.com
pos.onyo.com
api.staging.onyo.com
sgm.overlay.onyo.com
admin.pedepronto.com.br
onyo.com
ssl377490.cloudflaressl.com
girokstn.com
ssl377491.cloudflaressl.com
portal.vml.visma.ai
ssl377490.cloudflaressl.com
www.ciner8.com
cn.touhougarakuta.com
api.staging.onyo.com
cloud.onyo.com
ssl377491.cloudflaressl.com
wolfml.com
www.spangee.com
site.onyo.com
form.onyo.com
malm.al
pos.staging.onyo.com
dash.brightlive.com
le.ai
ssl377491.cloudflaressl.com
auth.onyo.com
trekmates.tours
3rein.com
www.titusnjiru.dev
we-24.com
ssl377490.cloudflaressl.com
ssl377491.cloudflaressl.com
mb.logicside.net
sni.cloudflaressl.com
ssl377490.cloudflaressl.com
api.reports.staging.onyo.com
ssl377491.cloudflaressl.com
ssl377489.cloudflaressl.com
ssl377491.cloudflaressl.com
cevremde.com
ssl377491.cloudflaressl.com
ssl377491.cloudflaressl.com
kiosk.onyo.com
www.coopcery.shop
ssl377490.cloudflaressl.com
ssl377489.cloudflaressl.com
www.cycleconnect.com.br
api.staging.onyo.com
app.oficinadaaprovacao.com.br
ssl377490.cloudflaressl.com
api.onyo.com
getmarketingtips.io
ssl377491.cloudflaressl.com
ssl377491.cloudflaressl.com
images.onyo.com
ssl377491.cloudflaressl.com
ssl377489.cloudflaressl.com
ssl377491.cloudflaressl.com
demo.happybuilding.app
dixons-pay.mishipay.com
ssl377489.cloudflaressl.com
sgm.overlay.staging.onyo.com
www.thegoattalent.es
onyo.com
ssl377490.cloudflaressl.com
www.callforcake.com
www.cpimenta.com
*.k8s.onyo.com
onyo.com
ssl377490.cloudflaressl.com
kiosk.onyo.com
onyo.com
onyo.com
ssl377491.cloudflaressl.com
*.k8s.onyo.com
catalog-qa.itxi.aero
ssl377491.cloudflaressl.com
suterapines.cf
www.targetz.mx
*.staging.onyo.com
www.novoda.cc
onyo.com
onelink.chaayos.com
my.getonify.com
team.ziggu.app
ssl377491.cloudflaressl.com
web-app.staging.onyo.com
ssl377491.cloudflaressl.com
onyo.com
site.onyo.com
ssl377490.cloudflaressl.com
onyo.app
ssl377491.cloudflaressl.com
evolvedappraisals.com
ssl377490.cloudflaressl.com
onyo.com
ssl377491.cloudflaressl.com
ssl377489.cloudflaressl.com
www.kubeshield.app
onyo.com
pos.onyo.com
api.staging.onyo.com
sgm.overlay.onyo.com
admin.pedepronto.com.br
onyo.com
ssl377490.cloudflaressl.com
girokstn.com
ssl377491.cloudflaressl.com
portal.vml.visma.ai
ssl377490.cloudflaressl.com
www.ciner8.com
cn.touhougarakuta.com
api.staging.onyo.com
cloud.onyo.com
Certificate
The complete raw certificate details for *.k8s.onyo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEujCCA6KgAwIBAgIQByQwF+M2Q0TAmb9tH/Vf2DANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTAxMTQwMDAwMDBaFw0yMDAyMTQx MjAwMDBaMBkxFzAVBgNVBAMMDiouazhzLm9ueW8uY29tMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAzmQ3N4wjpWoxh5PPhRsHXsUkhBX2G12yWE60y1gZ jufBEj9tWER3Ntp7mBeaOshbQ7k8BWRVOb0TjnL1XmW7lX6/j2L4ZUs8YQg3SWW7 yWiDcBVHN5VQ/KcwJHnoGenLx0JB1xPmmDkSXytq5RpM1aj/qEhiZDvk4WJl98Q4 2CmYQ9MYSJ/AqdAcjY4S+tuMENad6AjjUx+kvPlvRnEtnoWARTXzEyUDJyar4qiY OW/akO58W2CVQJ1HQCI63xi0Q7wE4EJu0bEAPl8ZpOSuMDRf6RrQ2eckVsWIfqOe g9u58oNcOyBIBz8yl8Kuq+zT0Knm1JEZs+cLwbiAG+tXnQIDAQABo4IBzzCCAcsw HwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFLHYuf4V XuhWmXRWnGjaT7ghYHMjMGEGA1UdEQRaMFiCDiouazhzLm9ueW8uY29tghYqLnN0 YWdpbmcuazhzLm9ueW8uY29tghYqLmRldmVsb3AuazhzLm9ueW8uY29tghYqLnBh eW1lbnQuazhzLm9ueW8uY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5z Y2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3JsMCAGA1UdIAQZMBcwCwYJYIZI AYb9bAECMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0 dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0 cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB /wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBABZ1 YCvAzuOJ3zSYGmxI3uMmCo+w0nE7Qov006WPPpBSDyAflnQ8aSWBRk5Z1AbrNVwR //yKrlvIE9EETVzfjkoAijcve/vEm5H2Z53BTfJsBLJwgXZVXP3WE/KlN2U2fZpN 5Dgvph+3vmZKPmBo9+DuiQrfQzADbeozCt8SHeXfVgP99J7QDNToBKB0vRBdqGM4 X2QPrgxSwZ4RtUVWIBQy0q0mNxWzqVu5zJj972iHdWpeD68yWwL6DpUAZUxR7QJy woiDErzvBvaykOKy9A4LTmkn6PaKOcFSd1wwxEl3ZbEN7TNUdSBLFsaYyF9AJ/FE kZDXR7NQxooSR5jqj70= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzmQ3N4wjpWoxh5PPhRsH XsUkhBX2G12yWE60y1gZjufBEj9tWER3Ntp7mBeaOshbQ7k8BWRVOb0TjnL1XmW7 lX6/j2L4ZUs8YQg3SWW7yWiDcBVHN5VQ/KcwJHnoGenLx0JB1xPmmDkSXytq5RpM 1aj/qEhiZDvk4WJl98Q42CmYQ9MYSJ/AqdAcjY4S+tuMENad6AjjUx+kvPlvRnEt noWARTXzEyUDJyar4qiYOW/akO58W2CVQJ1HQCI63xi0Q7wE4EJu0bEAPl8ZpOSu MDRf6RrQ2eckVsWIfqOeg9u58oNcOyBIBz8yl8Kuq+zT0Knm1JEZs+cLwbiAG+tX nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9492494105629074903729665465952591832 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-14 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.k8s.onyo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26054509022247538397691602678950114738395642017300545698627598189360905614091468803427153625803357183961759891572288414500585528801256151107392257137379121034993851076242865083262128077424715435349035329720118256066289754501648338073561053580503643801147847315446142135086122690291357325744258091732846785742865132743733004466748894097469072047709157631273595395537670419007519292198276419409993601217614112723005439488986917602483726202515767745239728834048498180652133227569861919665632186576057173686625721698021476206463747854004559137993399791494304159069618935779329563025734426485448664086092696073015896266653 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b1d8b9fe155ee8569974569c68da4fb821607323 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.k8s.onyo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.staging.k8s.onyo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.develop.k8s.onyo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.payment.k8s.onyo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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