recit.getpocket.dev
Issued by Amazon
About this certificate
This digital certificate with serial number 06:3a:3e:dd:8f:85:db:3e:2b:cd:ad:6c:52:6e:8e:79 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=recit.getpocket.dev
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:3a:3e:dd:8f:85:db:3e:2b:cd:ad:6c:52:6e:8e:79Serial Number (int): 8277796255742036179437845176350838393
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: a7:99:ec:af:6d:20:d4:4b:b6:c9:68:af:85:fe:38:20:3f:8d:89:a0
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): dc:bf:26:f1:33:97:4d:f5:fc:25:9f:21:e6:16:ab:51:b3:a1:f3:11
Fingerprint (sha256): 26:51:51:29:7d:e4:f9:d7:c4:d6:3f:2d:23:76:35:74:ff:36:20:80:43:74:11:73:af:58:1f:db:da:0b:d7:2a
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate recit.getpocket.dev
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for recit.getpocket.dev
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
recit.getpocket.dev
Other certificates including the domain name getpocket.dev
(limited to 100 certificates)
firefox-newtab-proxy.getpocket.dev
blog-staging.getpocket.dev
acme.getpocket.dev
web-client.getpocket.dev
acme.getpocket.dev
mozilla-auth-proxy.getpocket.dev
cdktf-backup.getpocket.dev
blog.getpocket.dev
*.admin.getpocket.dev
dotcom-gateway-dev.getpocket.dev
dotcom-gateway-dev.getpocket.dev
collection-api.getpocket.dev
team.getpocket.dev
*.webapp.getpocket.dev
new-tab-assets.getpocket.dev
*.webapp.getpocket.dev
*.mlflow-private.getpocket.dev
apigtest.getpocket.dev
*.webapp.getpocket.dev
admin.getpocket.dev
*.web-marketing.getpocket.dev
web-discover.getpocket.dev
recommendation-api.getpocket.dev
backstage.getpocket.dev
direct.daniel-client-api.getpocket.dev
cdktf-unleash.getpocket.dev
auth.getpocket.dev
recommendation-api.getpocket.dev
blog-staging.getpocket.dev
team.getpocket.dev
*.mlflow-dev1.getpocket.dev
admin.getpocket.dev
blog.getpocket.dev
spocs.getpocket.dev
cdktf.getpocket.dev
*.getpocket.dev
text.getpocket.dev
direct.client-api.getpocket.dev
cdktf-backup.getpocket.dev
direct.client-api.getpocket.dev
auth.getpocket.dev
web-marketing.getpocket.dev
client-api.getpocket.dev
acme.getpocket.dev
blog.getpocket.dev
*.feature.getpocket.dev
acme.getpocket.dev
*.web-discover.getpocket.dev
apig-test.getpocket.dev
recit.getpocket.dev
collection-api.getpocket.dev
backstage.getpocket.dev
blog.getpocket.dev
blog-staging.getpocket.dev
cdktf.getpocket.dev
cdktf.getpocket.dev
*.web-client.getpocket.dev
web-client.getpocket.dev
mozilla-auth-proxy.getpocket.dev
image-api.getpocket.dev
curation-admin-tools.getpocket.dev
*.web-discover.getpocket.dev
client-api.getpocket.dev
acme.getpocket.dev
exampleapi.getpocket.dev
web-discover.getpocket.dev
list-api.getpocket.dev
cdktf-unleash.getpocket.dev
recit.getpocket.dev
blog.getpocket.dev
direct.client-api.getpocket.dev
acme.getpocket.dev
*.feature.getpocket.dev
*.mlflow-private.getpocket.dev
*.admin.getpocket.dev
team.getpocket.dev
acme.getpocket.dev
user-list-search.getpocket.dev
exampleapi.getpocket.dev
acme.getpocket.dev
user-list-search.getpocket.dev
blog.getpocket.dev
acme-good.getpocket.dev
acme.getpocket.dev
text.getpocket.dev
blog.getpocket.dev
web-ui.getpocket.dev
apig-test.getpocket.dev
admin-api.getpocket.dev
companion-proxy.getpocket.dev
blog-staging.getpocket.dev
recit.getpocket.dev
recit.getpocket.dev
*.feature.getpocket.dev
mozilla-auth-proxy.getpocket.dev
firefox-android-home-recommendations.getpocket.dev
*.web-client.getpocket.dev
recit.getpocket.dev
blog.getpocket.dev
direct.firefox-android-home-recommendations.getpocket.dev
blog-staging.getpocket.dev
acme.getpocket.dev
web-client.getpocket.dev
acme.getpocket.dev
mozilla-auth-proxy.getpocket.dev
cdktf-backup.getpocket.dev
blog.getpocket.dev
*.admin.getpocket.dev
dotcom-gateway-dev.getpocket.dev
dotcom-gateway-dev.getpocket.dev
collection-api.getpocket.dev
team.getpocket.dev
*.webapp.getpocket.dev
new-tab-assets.getpocket.dev
*.webapp.getpocket.dev
*.mlflow-private.getpocket.dev
apigtest.getpocket.dev
*.webapp.getpocket.dev
admin.getpocket.dev
*.web-marketing.getpocket.dev
web-discover.getpocket.dev
recommendation-api.getpocket.dev
backstage.getpocket.dev
direct.daniel-client-api.getpocket.dev
cdktf-unleash.getpocket.dev
auth.getpocket.dev
recommendation-api.getpocket.dev
blog-staging.getpocket.dev
team.getpocket.dev
*.mlflow-dev1.getpocket.dev
admin.getpocket.dev
blog.getpocket.dev
spocs.getpocket.dev
cdktf.getpocket.dev
*.getpocket.dev
text.getpocket.dev
direct.client-api.getpocket.dev
cdktf-backup.getpocket.dev
direct.client-api.getpocket.dev
auth.getpocket.dev
web-marketing.getpocket.dev
client-api.getpocket.dev
acme.getpocket.dev
blog.getpocket.dev
*.feature.getpocket.dev
acme.getpocket.dev
*.web-discover.getpocket.dev
apig-test.getpocket.dev
recit.getpocket.dev
collection-api.getpocket.dev
backstage.getpocket.dev
blog.getpocket.dev
blog-staging.getpocket.dev
cdktf.getpocket.dev
cdktf.getpocket.dev
*.web-client.getpocket.dev
web-client.getpocket.dev
mozilla-auth-proxy.getpocket.dev
image-api.getpocket.dev
curation-admin-tools.getpocket.dev
*.web-discover.getpocket.dev
client-api.getpocket.dev
acme.getpocket.dev
exampleapi.getpocket.dev
web-discover.getpocket.dev
list-api.getpocket.dev
cdktf-unleash.getpocket.dev
recit.getpocket.dev
blog.getpocket.dev
direct.client-api.getpocket.dev
acme.getpocket.dev
*.feature.getpocket.dev
*.mlflow-private.getpocket.dev
*.admin.getpocket.dev
team.getpocket.dev
acme.getpocket.dev
user-list-search.getpocket.dev
exampleapi.getpocket.dev
acme.getpocket.dev
user-list-search.getpocket.dev
blog.getpocket.dev
acme-good.getpocket.dev
acme.getpocket.dev
text.getpocket.dev
blog.getpocket.dev
web-ui.getpocket.dev
apig-test.getpocket.dev
admin-api.getpocket.dev
companion-proxy.getpocket.dev
blog-staging.getpocket.dev
recit.getpocket.dev
recit.getpocket.dev
*.feature.getpocket.dev
mozilla-auth-proxy.getpocket.dev
firefox-android-home-recommendations.getpocket.dev
*.web-client.getpocket.dev
recit.getpocket.dev
blog.getpocket.dev
direct.firefox-android-home-recommendations.getpocket.dev
Certificate
The complete raw certificate details for recit.getpocket.dev in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF2zCCBMOgAwIBAgIQBjo+3Y+F2z4rza1sUm6OeTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMTA2MTMwMDAwMDBaFw0yMjA3MTIy MzU5NTlaMB4xHDAaBgNVBAMTE3JlY2l0LmdldHBvY2tldC5kZXYwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2JkqVOAIb+VTVEqPCJWP2JkS1f8ba3Dtq SheQhemYtyX9ZLgle1ghd9qIN1wR8bbcxChVg46WKqISzA/OYBnI1vzz3jTZSSFi uJdoZb3cinFame1zqVJ9OvVTu9poLRlbMJnE3e3/e9FebIR5d7X/HELKWi/xGqmS fPN7cZbWVR0HzC5uqYSi1RzdnVqRk+gcS5VVO/RWDGb4V3w1Kms4/cSjz9NptQ0P djDeBeQrz2ljzOAY/p1DX8ARlZ5xB3Ek0l1zfGfeg241S5V7ZsQkGf2RQ2lee0Q9 CO9cJmOJDV2tyLjL2bMdP3IByB6PoP/HXRy8CaV915uD4aLfLfw/AgMBAAGjggLr MIIC5zAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQU p5nsr20g1Eu2yWivhf44ID+NiaAwHgYDVR0RBBcwFYITcmVjaXQuZ2V0cG9ja2V0 LmRldjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1 c3QuY29tL3NjYTFiLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcB AQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0 LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5j b20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwggF9BgorBgEEAdZ5AgQCBIIBbQSC AWkBZwB2AEalVet1+pEgMLWiiWn0830RLEF0vv1JuIWr8vxw/m1HAAABegPnecsA AAQDAEcwRQIgYQr0mcOUxADOlAHz7ZNTT1sHeKolTx6ss+wpOsNf/bgCIQC4aAku /AF1Hyt3Jkx2igChzhBHjIsy6scsCSsER/kS0AB2ACJFRQdZVSRWlj+hL/H3bYbg IyZjrcBLf13Gg1xu4g8CAAABegPnebUAAAQDAEcwRQIhAKKGd64BwUSjmO+1yNbB 2UUhOt/QfhZXdTAcavpTkT/7AiB+YA2Z9zhE+kC0P4tPrpsYEJ/5yrEXjvMsPUIW f80ugAB1AFGjsPX9AXmcVm24N3iPDKR6zBsny/eeiEKaDf7UiwXlAAABegPnedEA AAQDAEYwRAIgWa0r0/cwYEknkqo9fratNr0JhTII58D+U7sf6s8PHGQCIB3bvMaB IIvfjUbKTqAhzZr0p39aDBC8z6euPkCGDndnMA0GCSqGSIb3DQEBCwUAA4IBAQAq XicDlBN5k5wd+ZVrT41T4qIMGle8AgkwrcKyZJHrNLgRLAr0tMrC6vCBsUUBj+yr F6HzeWv9cnS5aO4/1B9vWC8g+//niIo3Ra2ymcmFq4CiTiIXuHcxQ2YCAANM3wql J7rXfTADgV10XiUM7HPS18CbbM+kZX7YnqWlVU/I+B6S5XVyrOHiiyTvn/TxA7iY HHun1GS4Ygzy71DSAN+DSKMET+6xSuocWG92a03rkna+AMh+re/6kZmN+dWUZvyK GlXg/ufnaSn+EhddOPIURr7rln7HLhnzPdD4W7Uc+tk26WmxWVv7oaMy9Nl9jtF6 Ca1DNqZgEvubFQV0lkSD -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiZKlTgCG/lU1RKjwiVj 9iZEtX/G2tw7akoXkIXpmLcl/WS4JXtYIXfaiDdcEfG23MQoVYOOliqiEswPzmAZ yNb889402UkhYriXaGW93IpxWpntc6lSfTr1U7vaaC0ZWzCZxN3t/3vRXmyEeXe1 /xxCylov8Rqpknzze3GW1lUdB8wubqmEotUc3Z1akZPoHEuVVTv0Vgxm+Fd8NSpr OP3Eo8/TabUND3Yw3gXkK89pY8zgGP6dQ1/AEZWecQdxJNJdc3xn3oNuNUuVe2bE JBn9kUNpXntEPQjvXCZjiQ1drci4y9mzHT9yAcgej6D/x10cvAmlfdebg+Gi3y38 PwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8277796255742036179437845176350838393 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-06-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-07-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'recit.getpocket.dev' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22994253667027644537300352593049567650506448794723901021034274421718399754929203102930991168097408363711472141819129478617785041512309594672424820340065621589912495560617343379656604823741454136774759782373334970562463055387176077116384130725521691563839503985871928207414609156246074953848569447196719940825448551611427030181121938184656543961270165043363760513078408033338147541383146536310621037221677614279201741849416496811172314240828566280156686734175316077636203568376872376683638825074080814771148978660187490415150892562172144300137241736236532215030410721569576198253382518424218345963971977674954655005759 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a799ecaf6d20d44bb6c968af85fe38203f8d89a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'recit.getpocket.dev' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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