*.toronto.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0e:53:68:61:02:7b:44:f2:fa:d2:24:6f:99:5e:da:66 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.toronto.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:53:68:61:02:7b:44:f2:fa:d2:24:6f:99:5e:da:66Serial Number (int): 19042269636745750069747905942995786342
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c8:d3:50:b3:27:13:fc:e4:4c:44:43:08:23:07:72:bb:5f:e3:ff:48
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 40:cc:6e:ab:b2:4a:8b:26:67:85:c5:af:30:cf:c8:6c:47:f4:5a:1b
Fingerprint (sha256): 52:d9:f3:74:2f:88:c4:b6:87:4c:46:b5:30:33:3c:40:40:5e:51:3b:4e:bc:48:b7:ea:9b:c0:3e:a3:d0:a9:db
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.toronto.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.toronto.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.toronto.com
toronto.com
toronto.com
Other certificates including the domain name toronto.com
(limited to 100 certificates)
toronto.com
eastyorkbeach.toronto.com
kalamazooshopping.mlive.com
local.flamboroughreview.com
local.theameryfreepress.com
local.panolawatchman.com
local.yourdailyjournal.com
local.thefirsthundredmiles.com
admin.adforge.com
s.toronto.com
toronto.com
local.thegazette.com
communityvotes.com
eastern-courier.origami.neighbourly.co.nz
local.bensonnews-sun.com
local.mexicoledger.com
local.summitdaily.com
local.alexcityoutlook.com
local.pilotweb.aero
communityvotes.com
conroe.communityimpact.com
*.toronto.com
nor-west-news.origami.neighbourly.co.nz
smetrics.toronto.com
local.southwesternontario.ca
markham.yorkregion.com
communityvotes.com
local.dglobe.com
western-leader.origami.neighbourly.co.nz
local.newportnewstimes.com
local.clintonnc.com
portperry.durhamregion.com
local.bridemagazine.co.uk
local.willcoxrangenews.com
tomball.communityimpact.com
local.lutontoday.co.uk
admin.adforge.com
local.ottawasun.com
local.tabertimes.com
local.delrionewsherald.com
toronto.com
newhomes.yorkregion.com
local.northjersey.com
local.hertsad.co.uk
local.clevelandcountyherald.com
local.bemidjipioneer.com
local.cambstimes.co.uk
whangarei-leader.origami.neighbourly.co.nz
local.northamptonchron.co.uk
local.wisbechstandard.co.uk
local.moodycountyenterprise.com
local.pontiacdailyleader.com
local.thefirsthundredmiles.com
parrysoundnorth.parrysound.com
local.eastlondonadvertiser.co.uk
local.theshaunavonstandard.com
communityvotes.com
local.thetfordandbrandontimes.co.uk
local.uintacountyherald.com
local.calgaryherald.com
communityvotes.com
citycentreparkdale.toronto.com
local.guymondailyherald.com
communityvotes.com
local.dglobe.com
secure-metroland.adperfect.com
local.spenboroughguardian.co.uk
local.saltwire.com
communityvotes.com
toronto.com
toronto.com
*.toronto.com
impactousa.wanderful.ownlocal.com
s.toronto.com
minto.southwesternontario.ca
whangarei-leader.origami.neighbourly.co.nz
local.thetfordandbrandontimes.co.uk
local.tahoedailytribune.com
secure-metroland.adperfect.com
local.fraserburghherald.co.uk
communityvotes.com
admin.adforge.com
local.torringtontelegram.com
local.fdlreporter.com
local.gettysburgtimes.com
local.theledger.com
muskegonshopping.mlive.com
mm.local.kentonline.co.uk
fk.local.kentonline.co.uk
muskokan.muskokaregion.com
local.thesiuslawnews.com
local.wenatcheeworld.com
mylocal.journal-news.com
shopping.cleveland.com
local.surreylife.co.uk
northern-news.origami.neighbourly.co.nz
local.cairnspost.com.au
hugo.presspubs.com
local.ijn.com
communityvotes.com
eastyorkbeach.toronto.com
kalamazooshopping.mlive.com
local.flamboroughreview.com
local.theameryfreepress.com
local.panolawatchman.com
local.yourdailyjournal.com
local.thefirsthundredmiles.com
admin.adforge.com
s.toronto.com
toronto.com
local.thegazette.com
communityvotes.com
eastern-courier.origami.neighbourly.co.nz
local.bensonnews-sun.com
local.mexicoledger.com
local.summitdaily.com
local.alexcityoutlook.com
local.pilotweb.aero
communityvotes.com
conroe.communityimpact.com
*.toronto.com
nor-west-news.origami.neighbourly.co.nz
smetrics.toronto.com
local.southwesternontario.ca
markham.yorkregion.com
communityvotes.com
local.dglobe.com
western-leader.origami.neighbourly.co.nz
local.newportnewstimes.com
local.clintonnc.com
portperry.durhamregion.com
local.bridemagazine.co.uk
local.willcoxrangenews.com
tomball.communityimpact.com
local.lutontoday.co.uk
admin.adforge.com
local.ottawasun.com
local.tabertimes.com
local.delrionewsherald.com
toronto.com
newhomes.yorkregion.com
local.northjersey.com
local.hertsad.co.uk
local.clevelandcountyherald.com
local.bemidjipioneer.com
local.cambstimes.co.uk
whangarei-leader.origami.neighbourly.co.nz
local.northamptonchron.co.uk
local.wisbechstandard.co.uk
local.moodycountyenterprise.com
local.pontiacdailyleader.com
local.thefirsthundredmiles.com
parrysoundnorth.parrysound.com
local.eastlondonadvertiser.co.uk
local.theshaunavonstandard.com
communityvotes.com
local.thetfordandbrandontimes.co.uk
local.uintacountyherald.com
local.calgaryherald.com
communityvotes.com
citycentreparkdale.toronto.com
local.guymondailyherald.com
communityvotes.com
local.dglobe.com
secure-metroland.adperfect.com
local.spenboroughguardian.co.uk
local.saltwire.com
communityvotes.com
toronto.com
toronto.com
*.toronto.com
impactousa.wanderful.ownlocal.com
s.toronto.com
minto.southwesternontario.ca
whangarei-leader.origami.neighbourly.co.nz
local.thetfordandbrandontimes.co.uk
local.tahoedailytribune.com
secure-metroland.adperfect.com
local.fraserburghherald.co.uk
communityvotes.com
admin.adforge.com
local.torringtontelegram.com
local.fdlreporter.com
local.gettysburgtimes.com
local.theledger.com
muskegonshopping.mlive.com
mm.local.kentonline.co.uk
fk.local.kentonline.co.uk
muskokan.muskokaregion.com
local.thesiuslawnews.com
local.wenatcheeworld.com
mylocal.journal-news.com
shopping.cleveland.com
local.surreylife.co.uk
northern-news.origami.neighbourly.co.nz
local.cairnspost.com.au
hugo.presspubs.com
local.ijn.com
communityvotes.com
Certificate
The complete raw certificate details for *.toronto.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIQDlNoYQJ7RPL60iRvmV7aZjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTEyMTYwMDAwMDBaFw0yMTAxMTYx MjAwMDBaMBgxFjAUBgNVBAMMDSoudG9yb250by5jb20wggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQCvxEL90ygJ0CYIZOkXE9GU51hCLPTbpnZdcrozbUc+ 2e4qWKZy2GDPTrMTzMXTFFBN4s9/yT8w+9Y6Ri29gtYxh/6aKDks1WjfaMLkmQbS 0Vbp+k8NkhVcW88t0UKO0MVcxR/03SFPa9wJQ8KbXq1kHD4Zy2NrYFT259mqJVL5 d7bfMwexFPnJqURTJhpenpqr+Unkr2TAW7ALWglKDt0iRDjP1W7bbPHwmtUIkUfv JvPU/0DS/ksS05c5kRILJPAQTOxDEvoCaksu6JHJ1K2QB8GYyjCOVmtHS/0aPDNQ 1TxM3lRSJC5OL/VO83eu6nbTLJ0kDJ2ifuKAdFljQ6vhAgMBAAGjggKGMIICgjAf BgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQUyNNQsycT /ORMREMIIwdyu1/j/0gwJQYDVR0RBB4wHIINKi50b3JvbnRvLmNvbYILdG9yb250 by5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRy dXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYGZ4EM AQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Auc2Nh MWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNjYTFi LmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADCCAQQGCisG AQQB1nkCBAIEgfUEgfIA8AB2AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7I DdwQAAABbwxCw+gAAAQDAEcwRQIhAIgGmGFApGDSYcWTdLPgOXe+oNRhb2saBEhS eddRGYDhAiB6msMoqIo1CcFyLtdlsW+3BRCZQbwusQ6eouvKMDfrAwB2AId1v+dZ fPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9eoIMPAAABbwxCxIYAAAQDAEcwRQIgVy7d pbZweMhzsGSQjET3efeEW4RneT6LI962hj5kCGQCIQClh5BHXkoGxMQxxQ91/Sd4 NZ2TE+S0LxccOm/lDD9EHzANBgkqhkiG9w0BAQsFAAOCAQEAaw4CO0TPXtNeGgNo uANrjou6GqtUWcn5SYSHya9Q5w5EPy5oqBEoWdL06rQ5Dfb8RoidEzi0m/cBvsd+ YYuqCkuIOKDT0usX5GfUsr6SacI4zIYKXcoaDepxzlSivXNXU26b0DhlqO3yAt6K FEjuYbIZaEjur8OuzHsbAms9lLjFJpzO/yrpkHlM9ynTJ3nun8yKP/8DTk0OU2BE +YqRsItS5ekDAlMzh4IVWrsHLmVHuqBCfyTLwEpOxu6mn7QgueuhgZFzeRVVrJrc f6acpz/xCaABriEO4Z3zjzb7wEmIpki0plSMuRMPp5XsMpGItMV4SeFc42fdQ5XL Ij0xgA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8RC/dMoCdAmCGTpFxPR lOdYQiz026Z2XXK6M21HPtnuKlimcthgz06zE8zF0xRQTeLPf8k/MPvWOkYtvYLW MYf+mig5LNVo32jC5JkG0tFW6fpPDZIVXFvPLdFCjtDFXMUf9N0hT2vcCUPCm16t ZBw+Gctja2BU9ufZqiVS+Xe23zMHsRT5yalEUyYaXp6aq/lJ5K9kwFuwC1oJSg7d IkQ4z9Vu22zx8JrVCJFH7ybz1P9A0v5LEtOXOZESCyTwEEzsQxL6AmpLLuiRydSt kAfBmMowjlZrR0v9GjwzUNU8TN5UUiQuTi/1TvN3rup20yydJAydon7igHRZY0Or 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19042269636745750069747905942995786342 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-16 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.toronto.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22188483613258763913955488947068057501756799050567477763867450141455390924852855565776843461259919619371663093615865131957516368635791173765444909500710709348524291404023264387833304923169423954442620604093345815775876969064699673539129878882890993386213513069411827520339181472636406431246825728267154872033326545803608907067852421297463264959051742622466047761520896612271952694311996062851872075638168689372452709564986449462182887047853635329377686083506973756093251256583315182815897884603905457972554015829291578659420473204344381032136904687390952625370454048879159253692895294534350301212701478939373810723809 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c8d350b32713fce44c444308230772bb5fe3ff48 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.toronto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'toronto.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016f0c42c3e800000403004730450221008806986140a460d261c59374b3e03977bea0d4616f6b1a04485279d7511980e102207a9ac328a88a3509c1722ed765b16fb705109941bc2eb10e9ea2ebca3037eb030076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016f0c42c48600000403004730450220572edda5b67078c873b064908c44f779f7845b8467793e8b23deb6863e640864022100a58790475e4a06c4c431c50f75fd2778359d9313e4b42f171c3a6fe50c3f441f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006b0e023b44cf5ed35e1a0368b8036b8e8bba1aab5459c9f9498487c9af50e70e443f2e68a8112859d2f4eab4390df6fc46889d1338b49bf701bec77e618baa0a4b8838a0d3d2eb17e467d4b2be9269c238cc860a5dca1a0dea71ce54a2bd7357536e9bd03865a8edf202de8a1448ee61b2196848eeafc3aecc7b1b026b3d94b8c5269cceff2ae990794cf729d32779ee9fcc8a3fff034e4d0e536044f98a91b08b52e5e9030253338782155abb072e6547baa0427f24cbc04a4ec6eea69fb420b9eba1819173791555ac9adc7fa69ca73ff109a001ae210ee19df38f36fbc04988a648b4a6548cb9130fa795ec329188b4c57849e15ce367dd4395cb223d3180