onedrive.com
Issued by Microsoft RSA TLS CA 02
About this certificate
This digital certificate with serial number 7f:00:10:70:b4:7f:67:f3:e6:a4:65:84:76:00:00:00:10:70:b4 was issued on by Microsoft Corporation.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=onedrive.com
Microsoft Corporation
Organization:
Microsoft Corporation
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 7f:00:10:70:b4:7f:67:f3:e6:a4:65:84:76:00:00:00:10:70:b4Serial Number (int): 2832200234541992938441387770219929283192713396
Serial Number lenght: 151 bits, 19 octets
SubjectKeyId: 01:6a:bc:e0:5b:5b:b9:c7:cf:b7:12:b1:01:68:9a:79:61:03:07:49
AuthorityKeyId: ff:2f:7f:e1:06:f4:38:f3:2d:ed:25:8d:98:c2:fe:0e:f6:6c:fc:fa
Fingerprint (sha1): ad:aa:c3:37:a9:9d:be:7b:5b:57:80:fd:d4:fb:53:b1:0b:be:a7:d8
Fingerprint (sha256): 49:58:21:cb:f1:5c:e6:d2:a3:ec:7a:98:31:f0:b5:4a:2e:de:5e:4a:90:73:02:96:69:1b:ef:f1:f4:f0:b6:e7
Issuing Certificate URL: http://www.microsoft.com/pki/mscorp/Microsoft%20RSA%20TLS%20CA%2002.crt
Revocation information
OCSP Server: http://ocsp.msocsp.comCRL Distribution Point: http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20RSA%20TLS%20CA%2002.crl
CRL Distribution Point: http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20RSA%20TLS%20CA%2002.crl
Check the revocation status for certificate onedrive.com
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for onedrive.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
onedrive.com
p.sfx.ms
*.live.com
*.live.net
*.skydrive.live.com
*.onedrive.live.com
*.onedrive.com
d.sfx-df.ms
*.odwebb.svc.ms
*.odwebp.svc.ms
*.odwebdf.svc.ms
*.odwebpl.svc.ms
p.sfx.ms
*.live.com
*.live.net
*.skydrive.live.com
*.onedrive.live.com
*.onedrive.com
d.sfx-df.ms
*.odwebb.svc.ms
*.odwebp.svc.ms
*.odwebdf.svc.ms
*.odwebpl.svc.ms
Other certificates including the domain name onedrive.com
(limited to 100 certificates)
storage.live.com
photos.onedrive.com
mail.live.com
storage.live.com
mail.live.com
dev.onedrive.com
blog.onedrive.com
storage.live.com
akamai-san11.exacttarget.com
onedrive.com
storage.live.com
storage.live.com
dev.onedrive.com
svc.ms
storage.live.com
onedrive.live.com
storage.live.com
photos.onedrive.com
SPO-Prod-ODWeb-O365Shell.onedrive.com
onedrive-df.live.com
dev-staging.onedrive.com
storage.live.com
onedrive.com
onedrive.live.com
storage.live.com
storage.live.com
akamai-san11.exacttarget.com
storage.live.com
storage.live.com
blog.onedrive.com
onedrive.live.com
onedrive.live.com
svc.ms
storage.live.com
photos.onedrive.com
photos.onedrive.com
storage.live.com
akamai-san11.exacttarget.com
storage.live.com
*.svc.ms
www1.onedrive.com
storage.live.com
storage.live.com
storage.live.com
storage.live.com
storage.live.com
qos.admin.onedrive.com
blog.onedrive.com
onedrive.com
onedrive.live.com
blog.onedrive.com
customersuccessblog.onedrive.com
storage.live.com
storage.live.com
storage.live.com
df.storage.live.com
onedrive.com
onedrive.com
storage.live.com
storage.live.com
*.mail.onedrive.com
storage.live.com
dev-staging.onedrive.com
*.mail.onedrive.com
blog.onedrive.com
storage.live.com
onedrive.live.com
storage.live.com
akamai-san11.exacttarget.com
*.mail.onedrive.com
onedrive.com
storage.live.com
pushchanneltst.cma.onedrive.com
onedrive.live.com
blog.onedrive.com
storage.live.com
onedrive.com
onedrive.live.com
*.svc.ms
onedrive.com
pushchannelprod.cma.onedrive.com
akamai-san11.exacttarget.com
storage.live.com
storage.live.com
onedrive.com
df.badger.onedrive.com
onedrive.com
storage.live.com
storage.live.com
photos.onedrive.com
photos.onedrive.com
onedrive-df.live.com
storage.live.com
storage.live.com
storage.live.com
*.mail.onedrive.com
onedrive.live.com
storage.live.com
spdf.badgerspo.onedrive.com
*.mail.onedrive.com
photos.onedrive.com
mail.live.com
storage.live.com
mail.live.com
dev.onedrive.com
blog.onedrive.com
storage.live.com
akamai-san11.exacttarget.com
onedrive.com
storage.live.com
storage.live.com
dev.onedrive.com
svc.ms
storage.live.com
onedrive.live.com
storage.live.com
photos.onedrive.com
SPO-Prod-ODWeb-O365Shell.onedrive.com
onedrive-df.live.com
dev-staging.onedrive.com
storage.live.com
onedrive.com
onedrive.live.com
storage.live.com
storage.live.com
akamai-san11.exacttarget.com
storage.live.com
storage.live.com
blog.onedrive.com
onedrive.live.com
onedrive.live.com
svc.ms
storage.live.com
photos.onedrive.com
photos.onedrive.com
storage.live.com
akamai-san11.exacttarget.com
storage.live.com
*.svc.ms
www1.onedrive.com
storage.live.com
storage.live.com
storage.live.com
storage.live.com
storage.live.com
qos.admin.onedrive.com
blog.onedrive.com
onedrive.com
onedrive.live.com
blog.onedrive.com
customersuccessblog.onedrive.com
storage.live.com
storage.live.com
storage.live.com
df.storage.live.com
onedrive.com
onedrive.com
storage.live.com
storage.live.com
*.mail.onedrive.com
storage.live.com
dev-staging.onedrive.com
*.mail.onedrive.com
blog.onedrive.com
storage.live.com
onedrive.live.com
storage.live.com
akamai-san11.exacttarget.com
*.mail.onedrive.com
onedrive.com
storage.live.com
pushchanneltst.cma.onedrive.com
onedrive.live.com
blog.onedrive.com
storage.live.com
onedrive.com
onedrive.live.com
*.svc.ms
onedrive.com
pushchannelprod.cma.onedrive.com
akamai-san11.exacttarget.com
storage.live.com
storage.live.com
onedrive.com
df.badger.onedrive.com
onedrive.com
storage.live.com
storage.live.com
photos.onedrive.com
photos.onedrive.com
onedrive-df.live.com
storage.live.com
storage.live.com
storage.live.com
*.mail.onedrive.com
onedrive.live.com
storage.live.com
spdf.badgerspo.onedrive.com
*.mail.onedrive.com
Certificate
The complete raw certificate details for onedrive.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIItTCCBp2gAwIBAgITfwAQcLR/Z/PmpGWEdgAAABBwtDANBgkqhkiG9w0BAQsF ADBPMQswCQYDVQQGEwJVUzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9u MSAwHgYDVQQDExdNaWNyb3NvZnQgUlNBIFRMUyBDQSAwMjAeFw0yMTA1MjcxODI1 MjdaFw0yMjA1MjcxODI1MjdaMBcxFTATBgNVBAMTDG9uZWRyaXZlLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALyLUrIA7WgtGyofPPya6JqsNx+h svtxoJhlBFfvUwdt5dflk89+PNHI/gjnzkF9r+ALQ+SdSUniI178YheVrV4sjeL/ nKrQ3nmNmEfLnpK/+5LbAFWa02O/WDI1W+JNL5Vr/GxswnNHsE3GX2My4uA1d3U4 oqvXCSQPvsr61iV+8tAL9eOVD5MEYVpA2wC1WZ1eTeP/HF8YtpkGJrTPpgfKpmHA rj13/yyo3bfXKC5/JyNIaYc8pI8y6H9uhmeD1UlrnIUOPL8yHM3BkzAV/72WO7hN 8bLxD2OBeFEuZtpGR1CnmBJrC9jNth5KUPmwH35oDZSgrEk9W1uJGVZW3VECAwEA AaOCBMAwggS8MIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgApeb7wnjk5IfBW c59jpXflvld9nGAK+PlNXSZcJV3HhAAAAXmvHDhlAAAEAwBHMEUCIG8VZaiBa5RC tZjWWlP0HWCwx9AU5F+Wht/CPyiM/TQ7AiEA0F2bzv9V2RBT9pwQVqq+9mXO6xOj Yby+5o1DxwLGX+cAdgBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAA AXmvHDl/AAAEAwBHMEUCIQCAj45uX58OumIMVtjSny7HCwO8jj52pp8wMDhtLoLU YQIgDa8Aa7iWiMtK1d4pQP3AY45ktI0Dq4q6hbVwWyN3jz0AdwBRo7D1/QF5nFZt uDd4jwykeswbJ8v3nohCmg3+1IsF5QAAAXmvHDnPAAAEAwBIMEYCIQDGKSkpIQMp 10R8Hjp+LdRsNprwCwJDVovQmS36HvSaPAIhAIC5+1ufW57fOwzGDbQAFjcR5gR4 uiCrV3ANF8CVxzGxMCcGCSsGAQQBgjcVCgQaMBgwCgYIKwYBBQUHAwEwCgYIKwYB BQUHAwIwPgYJKwYBBAGCNxUHBDEwLwYnKwYBBAGCNxUIh9qGdYPu2QGCyYUbgbWe YYX062CBXYWGjkGHwphQAgFkAgEnMIGHBggrBgEFBQcBAQR7MHkwUwYIKwYBBQUH MAKGR2h0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2kvbXNjb3JwL01pY3Jvc29m dCUyMFJTQSUyMFRMUyUyMENBJTIwMDIuY3J0MCIGCCsGAQUFBzABhhZodHRwOi8v b2NzcC5tc29jc3AuY29tMB0GA1UdDgQWBBQBarzgW1u5x8+3ErEBaJp5YQMHSTAO BgNVHQ8BAf8EBAMCBLAwgcgGA1UdEQSBwDCBvYIMb25lZHJpdmUuY29tgghwLnNm eC5tc4IKKi5saXZlLmNvbYIKKi5saXZlLm5ldIITKi5za3lkcml2ZS5saXZlLmNv bYITKi5vbmVkcml2ZS5saXZlLmNvbYIOKi5vbmVkcml2ZS5jb22CC2Quc2Z4LWRm Lm1zgg8qLm9kd2ViYi5zdmMubXOCDyoub2R3ZWJwLnN2Yy5tc4IQKi5vZHdlYmRm LnN2Yy5tc4IQKi5vZHdlYnBsLnN2Yy5tczCBsAYDVR0fBIGoMIGlMIGioIGfoIGc hk1odHRwOi8vbXNjcmwubWljcm9zb2Z0LmNvbS9wa2kvbXNjb3JwL2NybC9NaWNy b3NvZnQlMjBSU0ElMjBUTFMlMjBDQSUyMDAyLmNybIZLaHR0cDovL2NybC5taWNy b3NvZnQuY29tL3BraS9tc2NvcnAvY3JsL01pY3Jvc29mdCUyMFJTQSUyMFRMUyUy MENBJTIwMDIuY3JsMFcGA1UdIARQME4wQgYJKwYBBAGCNyoBMDUwMwYIKwYBBQUH AgEWJ2h0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2kvbXNjb3JwL2NwczAIBgZn gQwBAgEwHwYDVR0jBBgwFoAU/y9/4Qb0OPMt7SWNmML+DvZs/PowHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMA0GCSqGSIb3DQEBCwUAA4ICAQBK55v/M+jo PiTKugTdWtb1y9B7VDLNtZA4ylBVwMgcIlrKrhPSh5i0wn+xIUOkwl8w4Vz5bHvx N0q1VI1zNmvn8WwVCC60hMG3N7PtmhEo696NYk2Hk3XRswjXSDAH1ZA0Prg1vg+U oNvPxsZVDhFj+Xy9C5nnpaFU7aTPeSBnBbshbchAhzz1El7deCmL0O+3mKT8beUk sjTkudcnDYA2TqKRFdZp4Qw4jw4a8pYf3vkdF5IJ0ryNNqTcOR/eJmeK74cBx6dA sUuR1QPtpud+PuOzdHsDw4aH10CGmP/e65e3tQCWlpBF3f98MevK0u5cw2lumkJT VS7C/pMxt0TiFrDWdyu3Pmj5GFeaPulJOcOGBcwbMuQ1ou65czstA8+9mScF8mh0 mLGmN9AoMzUDTGjFoW4ctGUv1VS3SNZWONL1aiH7c6das2K6hRKgGLHSukvo5bFJ ILerS2fdvuU8hkycXWKWowl2mk7SZ7uHmx9/liUA0BLgA5790Wo1Hg9sgQk/P1Cg ZkQ2vaJ5oRRjyVWn4kKbIHkfetIyJnCoLsAFz5VO70mEDPUdRKRmFnQnYxZga80V gBvTVn1kpsg4GhB6+7mDXwZoRPU7rtqwjhrNQhDCKm4DCI7SGFDR4mX2bW15U2cA T6pcXz2ijiyqfu5UFlLJQvhSF/zOMBjWPA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvItSsgDtaC0bKh88/Jro mqw3H6Gy+3GgmGUEV+9TB23l1+WTz3480cj+COfOQX2v4AtD5J1JSeIjXvxiF5Wt XiyN4v+cqtDeeY2YR8uekr/7ktsAVZrTY79YMjVb4k0vlWv8bGzCc0ewTcZfYzLi 4DV3dTiiq9cJJA++yvrWJX7y0Av145UPkwRhWkDbALVZnV5N4/8cXxi2mQYmtM+m B8qmYcCuPXf/LKjdt9coLn8nI0hphzykjzLof26GZ4PVSWuchQ48vzIczcGTMBX/ vZY7uE3xsvEPY4F4US5m2kZHUKeYEmsL2M22HkpQ+bAffmgNlKCsST1bW4kZVlbd UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2832200234541992938441387770219929283192713396 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft RSA TLS CA 02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-27 18:25:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-27 18:25:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'onedrive.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23801504079617818758165270510016284324543228053872856906643756151594293317319347032745063022574442969976399142987629422031801284552104271144964516892133006803761620985314473876569979463805744570940619506224331395955635151702576602528362189921658342709800639162910413249893611239962061702576076506250939475536494005723691906456524158966670510335005402203087142810286717965440693298290051110574663553987627287652188018663213545795983107437612873269702758284583733478629071445079259849320166169679419652757281755651351219670827133064726579210228316364500497496884759387655714311340064956670036653311005252363301026192721 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.16155509.8105089.5391003.2969441.12400096.221.10585921.15764560 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 39 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pki/mscorp/Microsoft%20RSA%20TLS%20CA%2002.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.msocsp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 016abce05b5bb9c7cfb712b101689a7961030749 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (192 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onedrive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'p.sfx.ms' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.live.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.skydrive.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.onedrive.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.onedrive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'd.sfx-df.ms' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.odwebb.svc.ms' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.odwebp.svc.ms' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.odwebdf.svc.ms' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.odwebpl.svc.ms' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (168 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20RSA%20TLS%20CA%2002.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20RSA%20TLS%20CA%2002.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.42.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pki/mscorp/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ff2f7fe106f438f32ded258d98c2fe0ef66cfcfa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 004ae79bff33e8e83e24caba04dd5ad6f5cbd07b5432cdb59038ca5055c0c81c225acaae13d28798b4c27fb12143a4c25f30e15cf96c7bf1374ab5548d73366be7f16c15082eb484c1b737b3ed9a1128ebde8d624d879375d1b308d7483007d590343eb835be0f94a0dbcfc6c6550e1163f97cbd0b99e7a5a154eda4cf79206705bb216dc840873cf5125edd78298bd0efb798a4fc6de524b234e4b9d7270d80364ea29115d669e10c388f0e1af2961fdef91d179209d2bc8d36a4dc391fde26678aef8701c7a740b14b91d503eda6e77e3ee3b3747b03c38687d7408698ffdeeb97b7b50096969045ddff7c31ebcad2ee5cc3696e9a4253552ec2fe9331b744e216b0d6772bb73e68f918579a3ee94939c38605cc1b32e435a2eeb9733b2d03cfbd992705f2687498b1a637d0283335034c68c5a16e1cb4652fd554b748d65638d2f56a21fb73a75ab362ba8512a018b1d2ba4be8e5b14920b7ab4b67ddbee53c864c9c5d6296a309769a4ed267bb879b1f7f962500d012e0039efdd16a351e0f6c81093f3f50a0664436bda279a11463c955a7e2429b20791f7ad2322670a82ec005cf954eef49840cf51d44a4661674276316606bcd15801bd3567d64a6c8381a107afbb9835f066844f53baedab08e1acd4210c22a6e03088ed21850d1e265f66d6d795367004faa5c5f3da28e2caa7eee541652c942f85217fcce3018d63c