cdn.hbomax.com
- HOME BOX OFFICE, INC. -
Issued by GlobalSign RSA OV SSL CA 2018
About this certificate
This digital certificate with serial number 2a:0a:69:16:7f:f9:cf:48:6c:df:bd:b8 was issued on by GlobalSign nv-sa.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
HOME BOX OFFICE, INC.
Organization:
HOME BOX OFFICE, INC.
State / Province:
New York
Locality: New York
Country: US
Locality: New York
Country: US
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 2a:0a:69:16:7f:f9:cf:48:6c:df:bd:b8Serial Number (int): 13010955934223339734534438328
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 70:88:7f:55:de:e8:50:3d:41:c7:00:1f:80:c5:ad:59:42:91:85:8d
AuthorityKeyId: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb
Fingerprint (sha1): 30:d9:dc:a9:48:ea:81:3a:e3:16:32:85:05:ae:da:d5:32:c6:d8:e2
Fingerprint (sha256): 26:18:7a:27:97:ce:e1:76:08:8f:b9:88:ef:b4:7d:7e:ae:7c:08:20:2d:ce:1b:af:4e:5c:97:0d:78:3e:e2:3d
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018Check the revocation status for certificate cdn.hbomax.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cdn.hbomax.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cdn.hbomax.com
dash.pro42.lv3.cdn.hbomax.com
dash.qapro42.lv3.cdn.hbomax.com
cmaf.lv3.cdn.hbomax.com
qacmaf.lv3.cdn.hbomax.com
dash.pro42.lv3.cdn.hbomax.com
dash.qapro42.lv3.cdn.hbomax.com
cmaf.lv3.cdn.hbomax.com
qacmaf.lv3.cdn.hbomax.com
Other certificates including the domain name hbomax.com
(limited to 100 certificates)
dash.pro42.akm.cdn.hbogo.com
terraform-fix-test.micro.hbomax.com
view.cx.hbomax.com
hbomax.com
dmx-web.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
hbo.map.fastly.net
listen.hbomax.com
dash.pro42.akm.cdn.hbogo.com
listen.hbomax.com
play.hbomax.com
hbomax.com
vizio.play.codex-int.hbo.com
imagespecs.micro.hbomax.com
press.hbomax.com
press.hbomax.com
admin-test.micro.hbomax.com
test45.micro.hbomax.com
help.hbomax.com
trk.hbomax.com
turner.com
scooby-doo.micro.hbomax.com
vizio.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
ssl766512.cloudflaressl.com
hbomax.com
hbo.map.fastly.net
hbonow.com
play.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
xtv.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
san-3-s6.tlsprovisioning.exacttarget.com
listen.hbomax.com
cms.orbit.hbomax.com
cms.orbit.hbomax.com
ssl766511.cloudflaressl.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
turner.com
hbo.map.fastly.net
dmx-web.play.codex-int.hbo.com
hbomax.com
hbo.map.fastly.net
hbo.map.fastly.net
hbomax.com
shows.hbomax.com
trk.hbomax.com
hbo.map.fastly.net
shared-ingress-protected-prod-us-1-us-west-2.api.hbo.com
partners.hbomax.com
click.cx.hbomax.com
ablink.mail.hbomax.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
play.hbomax.com
listen.hbomax.com
hbomax.com
play.hbomax.com
raised-by-wolves.micro.hbomax.com
turner.com
ziggo.play.codex-int.hbo.com
ablink.email.hbomax.com
turner.com
xtv.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
play.hbomax.com
turner.com
test-statushub-three.micro.hbomax.com
hbomaximagespecs.com
cdn.hbomax.com
ssl766511.cloudflaressl.com
cox.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-west-1.api.hbo.com
ablink.mail.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
hbo.map.fastly.net
hbomax.com
cms.orbit.hbomax.com
qa.partner.hbomax.com
cloud.cx.hbomax.com
listen.hbomax.com
cms.orbit.hbomax.com
unpregnant.micro.hbo.com
hbo.map.fastly.net
hbo.map.fastly.net
vf-tivo.play.codex-int.hbo.com
partners.hbomax.com
ingest.orbit.hbomax.com
cdn.hbomax.com
hbomax.com
poc.cdn.hbomax.com
dmx-web.play.codex-int.hbo.com
atdl-contest.micro.hbomax.com
listen.hbomax.com
activate.hbomax.com
hbo.map.fastly.net
vf-sagemcom.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
terraform-fix-test.micro.hbomax.com
view.cx.hbomax.com
hbomax.com
dmx-web.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
hbo.map.fastly.net
listen.hbomax.com
dash.pro42.akm.cdn.hbogo.com
listen.hbomax.com
play.hbomax.com
hbomax.com
vizio.play.codex-int.hbo.com
imagespecs.micro.hbomax.com
press.hbomax.com
press.hbomax.com
admin-test.micro.hbomax.com
test45.micro.hbomax.com
help.hbomax.com
trk.hbomax.com
turner.com
scooby-doo.micro.hbomax.com
vizio.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
ssl766512.cloudflaressl.com
hbomax.com
hbo.map.fastly.net
hbonow.com
play.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
xtv.play.codex-int.hbo.com
kpn.play.codex-int.hbo.com
san-3-s6.tlsprovisioning.exacttarget.com
listen.hbomax.com
cms.orbit.hbomax.com
cms.orbit.hbomax.com
ssl766511.cloudflaressl.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
turner.com
hbo.map.fastly.net
dmx-web.play.codex-int.hbo.com
hbomax.com
hbo.map.fastly.net
hbo.map.fastly.net
hbomax.com
shows.hbomax.com
trk.hbomax.com
hbo.map.fastly.net
shared-ingress-protected-prod-us-1-us-west-2.api.hbo.com
partners.hbomax.com
click.cx.hbomax.com
ablink.mail.hbomax.com
hbo.map.fastly.net
san-3-s6.tlsprovisioning.exacttarget.com
play.hbomax.com
listen.hbomax.com
hbomax.com
play.hbomax.com
raised-by-wolves.micro.hbomax.com
turner.com
ziggo.play.codex-int.hbo.com
ablink.email.hbomax.com
turner.com
xtv.play.codex-int.hbo.com
vf-tivo.play.codex-int.hbo.com
play.hbomax.com
turner.com
test-statushub-three.micro.hbomax.com
hbomaximagespecs.com
cdn.hbomax.com
ssl766511.cloudflaressl.com
cox.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-west-1.api.hbo.com
ablink.mail.hbomax.com
san-3-s6.tlsprovisioning.exacttarget.com
hbo.map.fastly.net
hbomax.com
cms.orbit.hbomax.com
qa.partner.hbomax.com
cloud.cx.hbomax.com
listen.hbomax.com
cms.orbit.hbomax.com
unpregnant.micro.hbo.com
hbo.map.fastly.net
hbo.map.fastly.net
vf-tivo.play.codex-int.hbo.com
partners.hbomax.com
ingest.orbit.hbomax.com
cdn.hbomax.com
hbomax.com
poc.cdn.hbomax.com
dmx-web.play.codex-int.hbo.com
atdl-contest.micro.hbomax.com
listen.hbomax.com
activate.hbomax.com
hbo.map.fastly.net
vf-sagemcom.play.codex-int.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
shared-ingress-protected-eu-1-eu-central-1.api.hbo.com
Certificate
The complete raw certificate details for cdn.hbomax.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIMKgppFn/5z0hs3724MA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0yMTAxMTUyMzA2MDJaFw0y MjAyMTYyMzA2MDJaMGwxCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhOZXcgWW9yazER MA8GA1UEBxMITmV3IFlvcmsxHjAcBgNVBAoTFUhPTUUgQk9YIE9GRklDRSwgSU5D LjEXMBUGA1UEAxMOY2RuLmhib21heC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyHxXEDEWIeDxButbGzKsAYOy8ojaTo1biaDrKJPxwG83QB8A7 IVUF/L9vP7QSHn8tFqYITH9zxE8ZvDM1xOxZkX0Xtrx8ekT/4PmMK+rZ9jukxgwy tbK1z7n7eTaOyBaUImvCRbJLt/rMqNOIdox6vHA1LofXYrEPiBO8OeH1LHZwEHyu XL9D3sy3dCvusoycHdvoEGZMOkWx9wlsccoXowJvSbY1dGrBzQoN1IXKC6kqtUI6 zNvksZHG7s9ZTXq+NqKrHHknsoxD97+3qvVvyA8GJuPLlEB6DwlToOw9Aarik/j2 yw2ad/3nghMoXlwH54CUqFXur6bUFuqz0LdhAgMBAAGjggIOMIICCjAOBgNVHQ8B Af8EBAMCBaAwgY4GCCsGAQUFBwEBBIGBMH8wRAYIKwYBBQUHMAKGOGh0dHA6Ly9z ZWN1cmUuZ2xvYmFsc2lnbi5jb20vY2FjZXJ0L2dzcnNhb3Zzc2xjYTIwMTguY3J0 MDcGCCsGAQUFBzABhitodHRwOi8vb2NzcC5nbG9iYWxzaWduLmNvbS9nc3JzYW92 c3NsY2EyMDE4MFYGA1UdIARPME0wQQYJKwYBBAGgMgEUMDQwMgYIKwYBBQUHAgEW Jmh0dHBzOi8vd3d3Lmdsb2JhbHNpZ24uY29tL3JlcG9zaXRvcnkvMAgGBmeBDAEC AjAJBgNVHRMEAjAAMIGPBgNVHREEgYcwgYSCDmNkbi5oYm9tYXguY29tgh1kYXNo LnBybzQyLmx2My5jZG4uaGJvbWF4LmNvbYIfZGFzaC5xYXBybzQyLmx2My5jZG4u aGJvbWF4LmNvbYIXY21hZi5sdjMuY2RuLmhib21heC5jb22CGXFhY21hZi5sdjMu Y2RuLmhib21heC5jb20wHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8G A1UdIwQYMBaAFPjvf/LNeGeo3m+PJI2I8YcDArPrMB0GA1UdDgQWBBRwiH9V3uhQ PUHHAB+Axa1ZQpGFjTATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsF AAOCAQEAJ8d3HmQZX0j0lQpn6OAy4MrBjJu33DHQZzGefZMbcOQ1BgZLEzko1pek mgLmLHwOpkFxhYpCobmcb2icDASu5LYvtj5fHgl7O2pGL+UiioE4gxPDJIdlKukK lSe6YY8A9eC8wxQNU1uwkl/ElaWCDysBxtLbX/6bcGwJsJ51WqDfvZUUQcdvAQjL aqLdVfh+cuEutjS6lALgdFQtE9MaO7EdIMm3jUr6elUVKPnkMy9iyEQeyA51zYXC wuN28dWDamfLcICBm6Rgf0xwufAJvFYiqSyqxFmv5n/PtmiKK7OKcaS+J27oKyDo GdatbkU6/t/mZySyTPETLX1uE/m3ow== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsh8VxAxFiHg8QbrWxsyr AGDsvKI2k6NW4mg6yiT8cBvN0AfAOyFVBfy/bz+0Eh5/LRamCEx/c8RPGbwzNcTs WZF9F7a8fHpE/+D5jCvq2fY7pMYMMrWytc+5+3k2jsgWlCJrwkWyS7f6zKjTiHaM erxwNS6H12KxD4gTvDnh9Sx2cBB8rly/Q97Mt3Qr7rKMnB3b6BBmTDpFsfcJbHHK F6MCb0m2NXRqwc0KDdSFygupKrVCOszb5LGRxu7PWU16vjaiqxx5J7KMQ/e/t6r1 b8gPBibjy5RAeg8JU6DsPQGq4pP49ssNmnf954ITKF5cB+eAlKhV7q+m1Bbqs9C3 YQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13010955934223339734534438328 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-15 23:06:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-16 23:06:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HOME BOX OFFICE, INC.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cdn.hbomax.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22485746879958423870541823905084133657709090672819991111214719996712205857300272407578453872179275445490152780968792895621825842143769076613734248372515823361903093113536879027060818824077104809753958354229458108060698042046300366253453358871379608748620992568277482534137906229139455528347604504561831659657965738596476727762849319174655833929552311247705319399564855708758624391114813355610632217667205609238264937159927996366959823536316936031854409519868886662809101611194991343962803289005926396299082389144039453142353167590442650936508459725570943085341615798741193601723512942571926551676576858565357215987553 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dash.pro42.lv3.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dash.qapro42.lv3.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmaf.lv3.cdn.hbomax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qacmaf.lv3.cdn.hbomax.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 70887f55dee8503d41c7001f80c5ad594291858d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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