segment.meredithcorp.io
Issued by Amazon
About this certificate
This digital certificate with serial number 08:ba:5c:72:f4:1f:33:3c:97:ee:ff:ad:62:22:b6:bb was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=segment.meredithcorp.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:ba:5c:72:f4:1f:33:3c:97:ee:ff:ad:62:22:b6:bbSerial Number (int): 11601466271212928557210107522672932539
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 5d:c9:0d:cb:25:e3:6c:2b:0c:76:48:3e:fa:b1:95:d1:db:41:47:aa
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): a2:55:1d:4c:70:7e:16:32:6d:54:fd:a2:12:96:71:a0:05:ae:26:87
Fingerprint (sha256): 35:29:f7:70:5e:18:54:f4:65:d4:5b:22:3a:f8:2b:52:e5:4d:1b:de:de:87:45:23:59:b8:8b:fb:ae:16:e0:2c
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate segment.meredithcorp.io
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for segment.meredithcorp.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
segment.meredithcorp.io
*.segment.meredithcorp.io
*.segment.meredithcorp.io
Other certificates including the domain name meredithcorp.io
(limited to 100 certificates)
shared-services.meredithcorp.io
*.format-manager.meredithcorp.io
meredithcorp.io
meredithcorp.io
feeds.meredithcorp.io
*.meredithcorp.io
stage.authzadmin.meredithcorp.io
ugcuploader.meredithcorp.io
profiles-swagger.meredithcorp.io
*.dsa.meredithcorp.io
dsar.meredithcorp.io
*.cms.meredithcorp.io
meredithcorp.io
meredithcorp.io
splunk.meredithcorp.io
*.video.meredithcorp.io
feeds.meredithcorp.io
*.accountservices.meredithcorp.io
meredithcorp.io
syndication-stage.meredithcorp.io
*.meredithcorp.io
applenews.meredithcorp.io
*.meredithcorp.io
pollsquiz.meredithcorp.io
user-activity.meredithcorp.io
meredithcorp.io
*.format-manager.meredithcorp.io
*.meredithcorp.io
*.meredithcorp.io
atg-reconciliation.meredithcorp.io
stamp.meredithcorp.io
meredithcorp.io
applenews.meredithcorp.io
user.meredithcorp.io
*.accountservices.meredithcorp.io
ui.meredithcorp.io
*.dsa.meredithcorp.io
aws-accounts-viewer.meredithcorp.io
*.meredithcorp.io
email-reputation.meredithcorp.io
registration.meredithcorp.io
feeds.meredithcorp.io
segment.meredithcorp.io
*.pollsquiz.meredithcorp.io
formatmanager.meredithcorp.io
ui.meredithcorp.io
*.meredithcorp.io
meredithcorp.io
stage.feeds.meredithcorp.io
legacy-images.meredithcorp.io
*.ugc.meredithcorp.io
email-tools.meredithcorp.io
*.meredithcorp.io
feeds.meredithcorp.io
stage.authzadmin.meredithcorp.io
feeds.meredithcorp.io
meredithcorp.io
stage-ugcuploader.timeinc.com
stage.authzadmin.meredithcorp.io
meredithcorp.io
anf.meredithcorp.io
meredithcorp.io
feeds.meredithcorp.io
*.meredithcorp.io
newsletter.meredithcorp.io
stage-ugcuploader.timeinc.com
email-tools.meredithcorp.io
*.meredithcorp.io
pollsquiz.meredithcorp.io
meredithcorp.io
*.meredithcorp.io
ugcuploader.meredithcorp.io
feeds.meredithcorp.io
muse.meredithcorp.io
*.meredithcorp.io
*.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.ugc.meredithcorp.io
*.accountservices.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.feeds.meredithcorp.io
digitaledition.syndication-stage.meredithcorp.io
digitaledition.syndication.meredithcorp.io
meredithcorp.io
meredithcorp.io
meredithcorp.io
anf.meredithcorp.io
c360-scheduler.meredithcorp.io
*.video.meredithcorp.io
meredithcorp.io
munki.meredithcorp.io
user-saves.meredithcorp.io
dar.meredithcorp.io
*.ugc.meredithcorp.io
*.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.accountservices.meredithcorp.io
*.format-manager.meredithcorp.io
meredithcorp.io
meredithcorp.io
feeds.meredithcorp.io
*.meredithcorp.io
stage.authzadmin.meredithcorp.io
ugcuploader.meredithcorp.io
profiles-swagger.meredithcorp.io
*.dsa.meredithcorp.io
dsar.meredithcorp.io
*.cms.meredithcorp.io
meredithcorp.io
meredithcorp.io
splunk.meredithcorp.io
*.video.meredithcorp.io
feeds.meredithcorp.io
*.accountservices.meredithcorp.io
meredithcorp.io
syndication-stage.meredithcorp.io
*.meredithcorp.io
applenews.meredithcorp.io
*.meredithcorp.io
pollsquiz.meredithcorp.io
user-activity.meredithcorp.io
meredithcorp.io
*.format-manager.meredithcorp.io
*.meredithcorp.io
*.meredithcorp.io
atg-reconciliation.meredithcorp.io
stamp.meredithcorp.io
meredithcorp.io
applenews.meredithcorp.io
user.meredithcorp.io
*.accountservices.meredithcorp.io
ui.meredithcorp.io
*.dsa.meredithcorp.io
aws-accounts-viewer.meredithcorp.io
*.meredithcorp.io
email-reputation.meredithcorp.io
registration.meredithcorp.io
feeds.meredithcorp.io
segment.meredithcorp.io
*.pollsquiz.meredithcorp.io
formatmanager.meredithcorp.io
ui.meredithcorp.io
*.meredithcorp.io
meredithcorp.io
stage.feeds.meredithcorp.io
legacy-images.meredithcorp.io
*.ugc.meredithcorp.io
email-tools.meredithcorp.io
*.meredithcorp.io
feeds.meredithcorp.io
stage.authzadmin.meredithcorp.io
feeds.meredithcorp.io
meredithcorp.io
stage-ugcuploader.timeinc.com
stage.authzadmin.meredithcorp.io
meredithcorp.io
anf.meredithcorp.io
meredithcorp.io
feeds.meredithcorp.io
*.meredithcorp.io
newsletter.meredithcorp.io
stage-ugcuploader.timeinc.com
email-tools.meredithcorp.io
*.meredithcorp.io
pollsquiz.meredithcorp.io
meredithcorp.io
*.meredithcorp.io
ugcuploader.meredithcorp.io
feeds.meredithcorp.io
muse.meredithcorp.io
*.meredithcorp.io
*.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.ugc.meredithcorp.io
*.accountservices.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.feeds.meredithcorp.io
digitaledition.syndication-stage.meredithcorp.io
digitaledition.syndication.meredithcorp.io
meredithcorp.io
meredithcorp.io
meredithcorp.io
anf.meredithcorp.io
c360-scheduler.meredithcorp.io
*.video.meredithcorp.io
meredithcorp.io
munki.meredithcorp.io
user-saves.meredithcorp.io
dar.meredithcorp.io
*.ugc.meredithcorp.io
*.meredithcorp.io
meredithcorp.io
meredithcorp.io
*.accountservices.meredithcorp.io
Certificate
The complete raw certificate details for segment.meredithcorp.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEnzCCA4egAwIBAgIQCLpccvQfMzyX7v+tYiK2uzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTAyMDQwMDAwMDBaFw0yMDAzMDQx MjAwMDBaMCIxIDAeBgNVBAMTF3NlZ21lbnQubWVyZWRpdGhjb3JwLmlvMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjLBPbUwwOD9Z2PhCmygYKz2ciKx kkfUltAZK/PE3V7oGpk5wMzc4eP47Ao51JNkhu4xGLl8ggCE4mVRloITK2wzkh/B G1GJegMynSv/BKCYvEFkO/Xm6cv0zjB3xpEhS+oBbuUUibdY8nwwzQevu3u9g6Z9 miePs2RQErw5tSme3Aw9Elmll8FdHGZuo85TmWxr4rKV8aTzeFho5Fmr18NbRZYW kZuwJqhI53GrHBSBuATgUy/aROjvv5woxMWEgyGc+gnWXLtx+/r8SOP7D4RxM+i/ UldNuBfZy4xEThBuLj7B9E39j+HeogadWMVaDKgkPl/7VL7C9PZvy1h4jQIDAQAB o4IBqzCCAacwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0O BBYEFF3JDcsl42wrDHZIPvqxldHbQUeqMD0GA1UdEQQ2MDSCF3NlZ21lbnQubWVy ZWRpdGhjb3JwLmlvghkqLnNlZ21lbnQubWVyZWRpdGhjb3JwLmlvMA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQw MjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIu Y3JsMCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEFBQcB AQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0 LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5j b20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAw DQYJKoZIhvcNAQELBQADggEBALPkP5TqPzO2WzSS39GaRKVp1y3WOY8vJCKMkmIE RJjcXlOp+dQZsjmrVXoeZJ70gkSEBVeTONscAuNeVO0VCPk/7K3kEfktalbcMW+B 9mZGemP7yh1hKCuf8DGOYjuUwsUEFUsvN7kll0NYRRmZYtjMSizPoB8neBeD+oBp EuZDcKpM5472hc66fSvzOHYDMqxyTCC/Yoq08fJMGQXJgE/Ns59IJIGldsIiYRn3 yHZjiCJYnsygi85mWSXz0833fZ7BEqTnAfgzpkiMUxb0MQyso/jhTVGrBTYUc3V0 ONSR91MoNc1bij0AiQc2FssSLYTL1w/cbSBZuuacw4S+7R4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjLBPbUwwOD9Z2PhCmyg YKz2ciKxkkfUltAZK/PE3V7oGpk5wMzc4eP47Ao51JNkhu4xGLl8ggCE4mVRloIT K2wzkh/BG1GJegMynSv/BKCYvEFkO/Xm6cv0zjB3xpEhS+oBbuUUibdY8nwwzQev u3u9g6Z9miePs2RQErw5tSme3Aw9Elmll8FdHGZuo85TmWxr4rKV8aTzeFho5Fmr 18NbRZYWkZuwJqhI53GrHBSBuATgUy/aROjvv5woxMWEgyGc+gnWXLtx+/r8SOP7 D4RxM+i/UldNuBfZy4xEThBuLj7B9E39j+HeogadWMVaDKgkPl/7VL7C9PZvy1h4 jQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11601466271212928557210107522672932539 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-04 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'segment.meredithcorp.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19465727113052783206937254505846054088557642281194454801093714693055646939094110002705146151997111084862708636893457224781369869287101544142313851093537128557580299656803847695423358748381345575255765272561526512536329016646503352208728062776704817262603415881563430423796535796685634014578578936393214606779415351530696516710215347571622918097777905175631833112343700124918272461993528690338606547247795016678251339846543300386696031727247749350526674586399548994623177803622351158363633638447006997531558226706074663686164434445472164820939949539666973212570376774291368671177308306725305332572043969698117283510413 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5dc90dcb25e36c2b0c76483efab195d1db4147aa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'segment.meredithcorp.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.segment.meredithcorp.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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