ugc.marthastewart.com
Issued by Amazon
About this certificate
This digital certificate with serial number 08:42:4a:01:dd:6c:8a:ff:0a:73:a3:70:e2:91:41:3a was issued on by Amazon.
With 17 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ugc.marthastewart.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:42:4a:01:dd:6c:8a:ff:0a:73:a3:70:e2:91:41:3aSerial Number (int): 10978016605008865894872319144064270650
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 24:e9:70:63:15:62:cb:63:d3:c8:6f:51:00:c4:23:1a:80:7c:b4:c4
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 3e:c4:d3:33:e9:97:e2:4a:43:48:f7:aa:ef:8c:6c:df:cb:e8:ad:f8
Fingerprint (sha256): 30:1d:c1:78:17:c2:36:c7:20:c8:42:65:9f:3a:10:30:88:8b:25:4e:b2:66:ef:39:49:6f:b8:99:e5:65:89:69
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate ugc.marthastewart.com
17
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ugc.marthastewart.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ugc.marthastewart.com
my.marthastewart.com
my.marthastewartweddings.com
ugc.allpeoplequilt.com
ugc.allrecipes.com
ugc.diabeticlivingonline.com
ugc.familycircle.com
ugc.fitnessmagazine.com
ugc.fitpregnancy.com
ugc.livingthecountrylife.com
ugc.marthastewartweddings.com
ugc.midwestliving.com
ugc.more.com
ugc.parenting.com
ugc.parents.com
ugc.shape.com
ugc.traditionalhome.com
my.marthastewart.com
my.marthastewartweddings.com
ugc.allpeoplequilt.com
ugc.allrecipes.com
ugc.diabeticlivingonline.com
ugc.familycircle.com
ugc.fitnessmagazine.com
ugc.fitpregnancy.com
ugc.livingthecountrylife.com
ugc.marthastewartweddings.com
ugc.midwestliving.com
ugc.more.com
ugc.parenting.com
ugc.parents.com
ugc.shape.com
ugc.traditionalhome.com
Other certificates including the domain name marthastewart.com
(limited to 100 certificates)
payments.meredith.com
qa4.ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
securemetrics.marthastewart.com
accounts.bhg.com
*.secure.meredith.com
secure.meredith.com
ssl.1.damoh.marthastewart.com
my.meredith.com
sli.dailypaws.com
sli.dailypaws.com
a-ue1.mydomaine.com
payments.meredith.com
gigya.marthastewart.com
www.meredith.com
images.marthastewart.com
qa4.ugc.marthastewart.com
specialoffers.meredith.com
qa3.my.marthastewart.com
resolute.digital
globalrunningday.org
images.marthastewart.com
sli.dailypaws.com
*.agriculture.com
dev.secure.meredith.com
ssl.1.damoh.marthastewart.com
sli.dailypaws.com
ssl.1.damoh.marthastewart.com
sli.dailypaws.com
secure.meredith.com
accounts.bhg.com
accounts.bhg.com
www.timeinclistrental.com
mywedding.com
secure.meredith.com
mywedding.com
qa2.ugc.marthastewart.com
www.meredith.com
a-uw2.mydomaine.com
mdp.api.meredith.com
secure.meredith.com
accounts.bhg.com
www.timeinclistrental.com
marthastewart.com
a-ue1.mydomaine.com
qa4.ugc.marthastewart.com
ugc.marthastewart.com
secure.meredith.com
marthastewart.com
globalrunningday.org
test.payments.meredith.com
secure.meredith.com
sli.dailypaws.com
a-ue1.mydomaine.com
resolute.digital
qa3.ugc.marthastewart.com
ugc.marthastewart.com
sli.dailypaws.com
test.secure.meredith.com
ssl.1.damoh.marthastewart.com
qa3.ugc.marthastewart.com
marthastewart.com
ugc.marthastewart.com
images.marthastewart.com
www.timeinclistrental.com
links.allrecipes.com
sli.dailypaws.com
win.bhg.com
cr-iframe.magazine.store
secure.meredith.com
payments.meredith.com
*.marthastewart.com
*.secure.meredith.com
accounts.marthastewart.com
win.bhg.com
gigya.marthastewart.com
www.timeinclistrental.com
secure.meredith.com
ssl.1.damoh.marthastewart.com
marthastewart.com
www.meredith.com
qa3.ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
cr-iframe.magazine.store
api.meredith.com
ssl.1.damoh.marthastewart.com
payments.meredith.com
qa.my.marthastewart.com
ugc.marthastewart.com
qa2.ugc.marthastewart.com
*.secure.meredith.com
ssl.1.damoh.marthastewart.com
metrics.marthastewart.com
secure.meredith.com
ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
accounts.bhg.com
www.marthastewart.com
my.meredith.com
test.payments.meredith.com
qa4.ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
securemetrics.marthastewart.com
accounts.bhg.com
*.secure.meredith.com
secure.meredith.com
ssl.1.damoh.marthastewart.com
my.meredith.com
sli.dailypaws.com
sli.dailypaws.com
a-ue1.mydomaine.com
payments.meredith.com
gigya.marthastewart.com
www.meredith.com
images.marthastewart.com
qa4.ugc.marthastewart.com
specialoffers.meredith.com
qa3.my.marthastewart.com
resolute.digital
globalrunningday.org
images.marthastewart.com
sli.dailypaws.com
*.agriculture.com
dev.secure.meredith.com
ssl.1.damoh.marthastewart.com
sli.dailypaws.com
ssl.1.damoh.marthastewart.com
sli.dailypaws.com
secure.meredith.com
accounts.bhg.com
accounts.bhg.com
www.timeinclistrental.com
mywedding.com
secure.meredith.com
mywedding.com
qa2.ugc.marthastewart.com
www.meredith.com
a-uw2.mydomaine.com
mdp.api.meredith.com
secure.meredith.com
accounts.bhg.com
www.timeinclistrental.com
marthastewart.com
a-ue1.mydomaine.com
qa4.ugc.marthastewart.com
ugc.marthastewart.com
secure.meredith.com
marthastewart.com
globalrunningday.org
test.payments.meredith.com
secure.meredith.com
sli.dailypaws.com
a-ue1.mydomaine.com
resolute.digital
qa3.ugc.marthastewart.com
ugc.marthastewart.com
sli.dailypaws.com
test.secure.meredith.com
ssl.1.damoh.marthastewart.com
qa3.ugc.marthastewart.com
marthastewart.com
ugc.marthastewart.com
images.marthastewart.com
www.timeinclistrental.com
links.allrecipes.com
sli.dailypaws.com
win.bhg.com
cr-iframe.magazine.store
secure.meredith.com
payments.meredith.com
*.marthastewart.com
*.secure.meredith.com
accounts.marthastewart.com
win.bhg.com
gigya.marthastewart.com
www.timeinclistrental.com
secure.meredith.com
ssl.1.damoh.marthastewart.com
marthastewart.com
www.meredith.com
qa3.ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
cr-iframe.magazine.store
api.meredith.com
ssl.1.damoh.marthastewart.com
payments.meredith.com
qa.my.marthastewart.com
ugc.marthastewart.com
qa2.ugc.marthastewart.com
*.secure.meredith.com
ssl.1.damoh.marthastewart.com
metrics.marthastewart.com
secure.meredith.com
ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
accounts.bhg.com
www.marthastewart.com
my.meredith.com
test.payments.meredith.com
Certificate
The complete raw certificate details for ugc.marthastewart.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF1TCCBL2gAwIBAgIQCEJKAd1siv8Kc6Nw4pFBOjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xNzEwMjMwMDAwMDBaFw0xODExMjMx MjAwMDBaMCAxHjAcBgNVBAMTFXVnYy5tYXJ0aGFzdGV3YXJ0LmNvbTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAMRSMloXzbnC/+8LEY9FrWXUOz9b0mou EWY8aSG3/lSZviGEm1RVHWjSj/k76qqLH6N7FiCwR1TQJvzUUMGhtwvAJ0s2SvcI HgbXNOZ2qb1ZHmE8ta/lIc4MMV20jdVESO9Oeizkh9eS8sq+8FkK5lmC9qlMPe7k YGvuzXauMX53fMeJeiSnEhjzHE8f6T9r5UnHhYduSvP+41R6XHJR7M5OV6z0v8mp dB4ZAdfDkutkYJsLs+7JFsVeGngjBV+oZ9dvPykZvOz5+stb93j23ER62sGP0epB jZdGGCiInOIDQIaT4DbNglT4havuOxt/0PV+7BvJMb6a5oVB8In3NqECAwEAAaOC AuMwggLfMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQW BBQk6XBjFWLLY9PIb1EAxCMagHy0xDCCAZUGA1UdEQSCAYwwggGIghV1Z2MubWFy dGhhc3Rld2FydC5jb22CFG15Lm1hcnRoYXN0ZXdhcnQuY29tghxteS5tYXJ0aGFz dGV3YXJ0d2VkZGluZ3MuY29tghZ1Z2MuYWxscGVvcGxlcXVpbHQuY29tghJ1Z2Mu YWxscmVjaXBlcy5jb22CHHVnYy5kaWFiZXRpY2xpdmluZ29ubGluZS5jb22CFHVn Yy5mYW1pbHljaXJjbGUuY29tghd1Z2MuZml0bmVzc21hZ2F6aW5lLmNvbYIUdWdj LmZpdHByZWduYW5jeS5jb22CHHVnYy5saXZpbmd0aGVjb3VudHJ5bGlmZS5jb22C HXVnYy5tYXJ0aGFzdGV3YXJ0d2VkZGluZ3MuY29tghV1Z2MubWlkd2VzdGxpdmlu Zy5jb22CDHVnYy5tb3JlLmNvbYIRdWdjLnBhcmVudGluZy5jb22CD3VnYy5wYXJl bnRzLmNvbYINdWdjLnNoYXBlLmNvbYIXdWdjLnRyYWRpdGlvbmFsaG9tZS5jb20w DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7 BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNv bS9zY2ExYi5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBn MC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20w NgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3Nj YTFiLmNydDAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQAnHWMMltzn OwwUoTucItQh3k2pae7JVN20gMM3Ta/I1graLPizAwJZuUEhrXb5oeg8DjQEibV9 MmGShNc6c3U0FZ+fpbZ6LSJnUbMZBfVsUj7fsK3rdBnNhgO0K+katCw13lfclcvP AvZKv494b3POfr1mNX4+TONrd0WaTb0OgSh8Yy3gW+l6c6RB5VLL8au7dgfqY7/o NwwporF2az1dvSF5sVvDUr6mloCclM/sLaTsAVLez4upmtqr37GB2b9/CEfncIha N0GSlimtXKp/eyCV2EhBNdg0PzllE7Lagsf9xnErXT19v3+3Kr+KXqEdgA3zfNZ9 HffJChNIGw/r -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFIyWhfNucL/7wsRj0Wt ZdQ7P1vSai4RZjxpIbf+VJm+IYSbVFUdaNKP+Tvqqosfo3sWILBHVNAm/NRQwaG3 C8AnSzZK9wgeBtc05napvVkeYTy1r+UhzgwxXbSN1URI7056LOSH15Lyyr7wWQrm WYL2qUw97uRga+7Ndq4xfnd8x4l6JKcSGPMcTx/pP2vlSceFh25K8/7jVHpcclHs zk5XrPS/yal0HhkB18OS62Rgmwuz7skWxV4aeCMFX6hn128/KRm87Pn6y1v3ePbc RHrawY/R6kGNl0YYKIic4gNAhpPgNs2CVPiFq+47G3/Q9X7sG8kxvprmhUHwifc2 oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10978016605008865894872319144064270650 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-23 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ugc.marthastewart.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24783240470484963402868606131273231664931657792653713995060860160964719936726455113102755496189818986968109818254015689474107753978701415793902512775201743055302388244450933426965122079327387360043073828305476360421344171905135006695884518595197313258656465862389391873948913793829114347437871346735551604100790169113923033072025334211812463832235918723308051526106875060174907323057866232184868773752311056448527635539455534897752855002635047972269145066261632300213186173828588919868218855165847073201544575088496222496410186691569882831192075740934590185401484475806460311106235973868416131421285595549385207789217 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 24e970631562cb63d3c86f5100c4231a807cb4c4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (396 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.marthastewart.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.marthastewart.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.marthastewartweddings.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.allpeoplequilt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.allrecipes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.diabeticlivingonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.familycircle.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.fitnessmagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.fitpregnancy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.livingthecountrylife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.marthastewartweddings.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.midwestliving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.more.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.parenting.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.parents.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.shape.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.traditionalhome.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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