*.coastalliving.com
Issued by Amazon
About this certificate
This digital certificate with serial number 04:09:97:c9:f2:50:c7:db:10:7a:28:c5:e4:3c:7f:a6 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.coastalliving.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:09:97:c9:f2:50:c7:db:10:7a:28:c5:e4:3c:7f:a6Serial Number (int): 5366721298570323943926901494693789606
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: d0:ef:6b:bb:dc:8a:85:77:ea:47:92:72:af:31:b4:68:e4:af:eb:1b
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 6a:d1:29:3a:95:ad:91:74:42:5a:7a:d5:93:92:ec:f5:3b:d2:9a:d5
Fingerprint (sha256): 2e:2e:8c:f0:9d:a0:b0:8e:ec:cb:73:ea:4f:73:34:d8:46:8d:45:9f:9b:3f:b2:67:d0:63:3e:27:98:d9:d3:81
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.coastalliving.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.coastalliving.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.coastalliving.com
coastalliving.com
coastalliving.com
Other certificates including the domain name coastalliving.com
(limited to 100 certificates)
*.allyou.com
office.timeinc.com
subscription.timeinc.com
subscription.timeinc.com
qa-subscription.ecommerce.timeinc.com
accounts.bhg.com
*.secure.meredith.com
secure.meredith.com
qa-subscription.ecommerce.timeinc.com
qa-subscription.ecommerce.timeinc.com
tls.automattic.com
office.timeinc.com
qa-subscription.ecommerce.timeinc.com
dev-dcms.www.timeinc.net
prod-dcms.www.timeinc.net
subscription.timeinc.com
xid.people.com
www.reference.dcms-sa.timeinc.net
qa-profiles-uat.timeinc.net
qa-profiles.timeinc.net
www.reference.dcms-sa.timeinc.net
tmpcaa.enterprise.corpad.timeinc.com
profiles.timeinc.net
dev-profiles.timeinc.net
rails.timeinc.net
xid.coastalliving.com
xid.coastalliving.com
prod-dcms.www.timeinc.net
xid.coastalliving.com
xid.people.com
www.reference.dcms-sa.timeinc.net
secure.meredith.com
pages.email.coastalliving.com
accounts.bhg.com
office.timeinc.com
xid.coastalliving.com
subscription.timeinc.com
accounts.bhg.com
prod-dcms.www.timeinc.net
subscription.timeinc.com
prod-dcms.www.timeinc.net
subscription.timeinc.com
dev-dcms.www.timeinc.net
subscription.timeinc.com
qa-profiles.timeinc.net
secure.meredith.com
accounts.bhg.com
*.coastalliving.com
dailycatch.coastalliving.com
secure.meredith.com
*.allyou.com
subscription-assets.timeinc.com
subscription.timeinc.com
subscription.timeinc.com
www.reference.dcms-sa.timeinc.net
rails.timeinc.net
rails.timeinc.net
*.coastalliving.com
subscription.timeinc.com
*.coastalliving.com
pages.email.time.com
*.health.com
subscription.timeinc.com
*.health.com
office.timeinc.com
dailycatch.coastalliving.com
pages.email.coastalliving.com
subscription.timeinc.com
secure.meredith.com
subscription.timeinc.com
subscription.timeinc.com
coastalliving.com
*.secure.meredith.com
subscription.timeinc.com
office.timeinc.com
xid.coastalliving.com
dailycatch.coastalliving.com
prod-dcms.www.timeinc.net
dailycatch.coastalliving.com
*.allyou.com
xid.myrecipes.com
prod-dcms.www.timeinc.net
dev-dcms.www.timeinc.net
coastalliving.com
dev-dcms.www.timeinc.net
qa-dcms.www.timeinc.net
pages.email.coastalliving.com
*.secure.meredith.com
pages.email.coastalliving.com
secure.meredith.com
accounts.bhg.com
rails.timeinc.net
prod-dcms.www.timeinc.net
subscription.timeinc.com
secure.meredith.com
accounts.bhg.com
accounts.bhg.com
prod-dcms.www.timeinc.net
qa-profiles.timeinc.net
xid.coastalliving.com
office.timeinc.com
subscription.timeinc.com
subscription.timeinc.com
qa-subscription.ecommerce.timeinc.com
accounts.bhg.com
*.secure.meredith.com
secure.meredith.com
qa-subscription.ecommerce.timeinc.com
qa-subscription.ecommerce.timeinc.com
tls.automattic.com
office.timeinc.com
qa-subscription.ecommerce.timeinc.com
dev-dcms.www.timeinc.net
prod-dcms.www.timeinc.net
subscription.timeinc.com
xid.people.com
www.reference.dcms-sa.timeinc.net
qa-profiles-uat.timeinc.net
qa-profiles.timeinc.net
www.reference.dcms-sa.timeinc.net
tmpcaa.enterprise.corpad.timeinc.com
profiles.timeinc.net
dev-profiles.timeinc.net
rails.timeinc.net
xid.coastalliving.com
xid.coastalliving.com
prod-dcms.www.timeinc.net
xid.coastalliving.com
xid.people.com
www.reference.dcms-sa.timeinc.net
secure.meredith.com
pages.email.coastalliving.com
accounts.bhg.com
office.timeinc.com
xid.coastalliving.com
subscription.timeinc.com
accounts.bhg.com
prod-dcms.www.timeinc.net
subscription.timeinc.com
prod-dcms.www.timeinc.net
subscription.timeinc.com
dev-dcms.www.timeinc.net
subscription.timeinc.com
qa-profiles.timeinc.net
secure.meredith.com
accounts.bhg.com
*.coastalliving.com
dailycatch.coastalliving.com
secure.meredith.com
*.allyou.com
subscription-assets.timeinc.com
subscription.timeinc.com
subscription.timeinc.com
www.reference.dcms-sa.timeinc.net
rails.timeinc.net
rails.timeinc.net
*.coastalliving.com
subscription.timeinc.com
*.coastalliving.com
pages.email.time.com
*.health.com
subscription.timeinc.com
*.health.com
office.timeinc.com
dailycatch.coastalliving.com
pages.email.coastalliving.com
subscription.timeinc.com
secure.meredith.com
subscription.timeinc.com
subscription.timeinc.com
coastalliving.com
*.secure.meredith.com
subscription.timeinc.com
office.timeinc.com
xid.coastalliving.com
dailycatch.coastalliving.com
prod-dcms.www.timeinc.net
dailycatch.coastalliving.com
*.allyou.com
xid.myrecipes.com
prod-dcms.www.timeinc.net
dev-dcms.www.timeinc.net
coastalliving.com
dev-dcms.www.timeinc.net
qa-dcms.www.timeinc.net
pages.email.coastalliving.com
*.secure.meredith.com
pages.email.coastalliving.com
secure.meredith.com
accounts.bhg.com
rails.timeinc.net
prod-dcms.www.timeinc.net
subscription.timeinc.com
secure.meredith.com
accounts.bhg.com
accounts.bhg.com
prod-dcms.www.timeinc.net
qa-profiles.timeinc.net
xid.coastalliving.com
Certificate
The complete raw certificate details for *.coastalliving.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIQBAmXyfJQx9sQeijF5Dx/pjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA1MDkwMDAwMDBaFw0yMDA2MDkx MjAwMDBaMB4xHDAaBgNVBAMMEyouY29hc3RhbGxpdmluZy5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeA3P0KdXnYAU57zwZum7RusTkU6mtKfZ7 /RfYMEz9TZudmRbkVqF1DDTa1ZT51dYIpammSXMsv/ER8UG1DPquB8BDVHQzjKxy Lm7fpv1mqy1yNgu2DQLXlNH9Rbnbh7nYgoPvyw8QKi+9Bst6BU+/8X4xAY+eP7pR Pjmqu5Razhk1gj96HFEDeog4yqtt9PT/n23sMzSgEqsHXkfNM5Ipnt44fCOLTXfG 9HXCZQTaW2sNrQAXCOl7AvuFqfsGNHkuCZpQSx7khWTh6KfEbUwMeBtmRsCECx9s TmN+Oo077Wv0cwAMMDxB5QjvnquABfr1fwQO/rxT2o4Z2+sOF9C7AgMBAAGjggKS MIICjjAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQU 0O9ru9yKhXfqR5JyrzG0aOSv6xswMQYDVR0RBCowKIITKi5jb2FzdGFsbGl2aW5n LmNvbYIRY29hc3RhbGxpdmluZy5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8v Y3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkwFzAL BglghkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcw AYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAC hipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYD VR0TAQH/BAIwADCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AKS5CZC0GFgUh7sT osxncAo8NZgE+RvfuON3zQ7IDdwQAAABappNE9EAAAQDAEcwRQIhAK20bMi8EBOe Vu75EgfHrdi52OBJPe11mjQjpyAsz0LoAiBh+slq+7jhw5htGxufNQA31YJlvCG7 7QacF58EsxT1ggB2AId1v+dZfPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9eoIMPAAAB appNFPAAAAQDAEcwRQIhAJsLou1Kp0d2m7KZm7Ajp5M7zqth/Aohhq3xe9J1OxAV AiBKWo56CclORu9JoBTAF2gb0HjdbH/VWLsR3oXZ1zB7JzANBgkqhkiG9w0BAQsF AAOCAQEADKEpbzgp0ign75TBQNwtFbe1fsah3jxJqpwUgjXRFKolDdDEMLIjTqSB Oy0uWdtFiXpcZkOxGqRc4oW8L48G6LUtOym1Vyqil04S+WnZHipji7lffIs85n8v YTng+gzbWQW7xAkpHsDfzCRXHYOvcU+BRN6Zn0UAAcs2wc2A0bBl+jCFSpKLiJxa b8Rr+wv1iR48EamqDkvey2M21luxbBCMr0N0DtVUZWV0iNOHtzokSAvUJByXTmoc BQ0yq8kTiwIAup/I4pldnNIXx6Agh5l4nN6nD2a07pwPJBbg0KNu2UoHI00L4w1p fgN7c/qwa0xcJuYXsBxQKHyQ2whbQw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngNz9CnV52AFOe88Gbpu 0brE5FOprSn2e/0X2DBM/U2bnZkW5FahdQw02tWU+dXWCKWppklzLL/xEfFBtQz6 rgfAQ1R0M4ysci5u36b9ZqstcjYLtg0C15TR/UW524e52IKD78sPECovvQbLegVP v/F+MQGPnj+6UT45qruUWs4ZNYI/ehxRA3qIOMqrbfT0/59t7DM0oBKrB15HzTOS KZ7eOHwji013xvR1wmUE2ltrDa0AFwjpewL7han7BjR5LgmaUEse5IVk4einxG1M DHgbZkbAhAsfbE5jfjqNO+1r9HMADDA8QeUI756rgAX69X8EDv68U9qOGdvrDhfQ uwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5366721298570323943926901494693789606 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-09 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.coastalliving.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19947354894975930171571043678593401958753904862861601420920376175653294856243521333076920487777515401241580302495347330339788135798177889983663953720230586505101670654704016709438368244793903171966594267566826920739089846964770008549584171903973291331191465579117353915768668461482838108441820793664087292322075825967657890084609255134413735494350836988440106875524427337092414330669547704540425144536414528870166880043470229878935930193165892923163257902366748637232612305306003022806914737243917075368623629892563785598087686110036399548330613325836143736970184896042817354341748266699436002793305600608342105379003 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d0ef6bbbdc8a8577ea479272af31b468e4afeb1b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.coastalliving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coastalliving.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016a9a4d13d10000040300473045022100adb46cc8bc10139e56eef91207c7add8b9d8e0493ded759a3423a7202ccf42e8022061fac96afbb8e1c3986d1b1b9f350037d58265bc21bbed069c179f04b314f5820076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016a9a4d14f000000403004730450221009b0ba2ed4aa747769bb2999bb023a7933bceab61fc0a2186adf17bd2753b101502204a5a8e7a09c94e46ef49a014c017681bd078dd6c7fd558bb11de85d9d7307b27 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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