vaalit.test.ylestatic.fi
Issued by Amazon
About this certificate
This digital certificate with serial number 09:f3:e6:1d:b8:02:d9:ed:6a:2d:26:6f:54:27:83:7f was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=vaalit.test.ylestatic.fi
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:f3:e6:1d:b8:02:d9:ed:6a:2d:26:6f:54:27:83:7fSerial Number (int): 13229447407462447559553135918545601407
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 10:ab:0e:75:5c:c1:2f:df:38:83:13:46:ac:b9:27:ac:e6:b9:86:ea
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 79:53:5e:62:14:d4:a9:73:01:3f:fd:e0:7b:67:3c:36:26:ca:9a:77
Fingerprint (sha256): 55:0c:ea:4d:4b:2e:48:40:e2:e4:ce:8d:c6:94:bb:67:eb:ec:53:ed:bd:57:61:2c:22:1a:31:77:37:ff:8e:3d
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate vaalit.test.ylestatic.fi
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vaalit.test.ylestatic.fi
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vaalit.test.ylestatic.fi
vaalit-static-test.c1t.yle.fi
vaalit-static-test.c1t.yle.fi
Other certificates including the domain name ylestatic.fi
(limited to 100 certificates)
lusi-dataviz.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
svenska-dataviz.test.ylestatic.fi
svenska-datavisualizations.ylestatic.fi
svenska-dataviz-poc.test.ylestatic.fi
areena.test.ylestatic.fi
areena.ylestatic.fi
nuoret.test.ylestatic.fi
food.test.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
svenska-datavisualizations.test.ylestatic.fi
taulukkodata.test.ylestatic.fi
lusi-dataviz.test.ylestatic.fi
tunnus-tos.ylestatic.fi
taulukkodata.ylestatic.fi
leanback-areena.staging.ylestatic.fi
voitto-app.ylestatic.fi
yddrasil-sandbox.test.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
galaxi.test.ylestatic.fi
tehtava.ylestatic.fi
galaxi.ylestatic.fi
tehtava.ylestatic.fi
ri.ylestatic.fi
lusi-dataviz.ylestatic.fi
areena.test.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
galaxi.ylestatic.fi
tunnus-tos.ylestatic.fi
taulukkodata.test.ylestatic.fi
elisa-lasten-areena.test.ylestatic.fi
food.test.ylestatic.fi
svenska-dataviz.ylestatic.fi
tehtava.test.ylestatic.fi
vaalit.test.ylestatic.fi
voitto-app.ylestatic.fi
parliament-api-membercard.ylestatic.fi
korea-widget-config.test.ylestatic.fi
data.ylestatic.fi
nuoret.ylestatic.fi
galaxi.test.ylestatic.fi
lusi-dataviz.ylestatic.fi
yddrasil-sandbox.test.ylestatic.fi
ylefi.ylestatic.fi
data.test.ylestatic.fi
areena.ylestatic.fi
yddrasil.ylestatic.fi
areena.test.ylestatic.fi
taulukkodata.test.ylestatic.fi
taulukkodata.ylestatic.fi
nuoret.ylestatic.fi
svenska-datavisualizations.ylestatic.fi
aihe-assets.ylestatic.fi
player.ylestatic.fi
player.ylestatic.fi
nuoret.test.ylestatic.fi
tunnus-tos.ylestatic.fi
samsung-lasten-areena.test.ylestatic.fi
galaxi.ylestatic.fi
galaxi.ylestatic.fi
nuoret.test.ylestatic.fi
areena.ylestatic.fi
korea-widget-config.test.ylestatic.fi
galaxi.test.ylestatic.fi
tunnus-tos.ylestatic.fi
birdhouse.test.ylestatic.fi
aihe-assets.ylestatic.fi
vaalit.ylestatic.fi
ylefi.test.ylestatic.fi
hbbtv-lasten-areena.test.ylestatic.fi
lusi-dataviz.test.ylestatic.fi
food.ylestatic.fi
nuoret.test.ylestatic.fi
food.ylestatic.fi
areena.ylestatic.fi
vaalit.test.ylestatic.fi
tunnus-tos.ylestatic.fi
tunnus-tos.test.ylestatic.fi
svenska-dataviz.test.ylestatic.fi
galaxi.ylestatic.fi
ylefi.test.ylestatic.fi
pikkukakkonen.test.ylestatic.fi
taulukkodata.ylestatic.fi
galaxi.test.ylestatic.fi
yddrasil.ylestatic.fi
leanback-lasten-areena.test.ylestatic.fi
svenska-dataviz.ylestatic.fi
aihe-assets.ylestatic.fi
vaalit.ylestatic.fi
lusi-dataviz.test.ylestatic.fi
svenska-dataviz.ylestatic.fi
player.ylestatic.fi
parliament-api-membercard.ylestatic.fi
yddrasil.test.ylestatic.fi
data.test.ylestatic.fi
aihe-assets.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
food.ylestatic.fi
lusi-dataviz.ylestatic.fi
areena.test.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
svenska-dataviz.test.ylestatic.fi
svenska-datavisualizations.ylestatic.fi
svenska-dataviz-poc.test.ylestatic.fi
areena.test.ylestatic.fi
areena.ylestatic.fi
nuoret.test.ylestatic.fi
food.test.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
svenska-datavisualizations.test.ylestatic.fi
taulukkodata.test.ylestatic.fi
lusi-dataviz.test.ylestatic.fi
tunnus-tos.ylestatic.fi
taulukkodata.ylestatic.fi
leanback-areena.staging.ylestatic.fi
voitto-app.ylestatic.fi
yddrasil-sandbox.test.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
galaxi.test.ylestatic.fi
tehtava.ylestatic.fi
galaxi.ylestatic.fi
tehtava.ylestatic.fi
ri.ylestatic.fi
lusi-dataviz.ylestatic.fi
areena.test.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
galaxi.ylestatic.fi
tunnus-tos.ylestatic.fi
taulukkodata.test.ylestatic.fi
elisa-lasten-areena.test.ylestatic.fi
food.test.ylestatic.fi
svenska-dataviz.ylestatic.fi
tehtava.test.ylestatic.fi
vaalit.test.ylestatic.fi
voitto-app.ylestatic.fi
parliament-api-membercard.ylestatic.fi
korea-widget-config.test.ylestatic.fi
data.ylestatic.fi
nuoret.ylestatic.fi
galaxi.test.ylestatic.fi
lusi-dataviz.ylestatic.fi
yddrasil-sandbox.test.ylestatic.fi
ylefi.ylestatic.fi
data.test.ylestatic.fi
areena.ylestatic.fi
yddrasil.ylestatic.fi
areena.test.ylestatic.fi
taulukkodata.test.ylestatic.fi
taulukkodata.ylestatic.fi
nuoret.ylestatic.fi
svenska-datavisualizations.ylestatic.fi
aihe-assets.ylestatic.fi
player.ylestatic.fi
player.ylestatic.fi
nuoret.test.ylestatic.fi
tunnus-tos.ylestatic.fi
samsung-lasten-areena.test.ylestatic.fi
galaxi.ylestatic.fi
galaxi.ylestatic.fi
nuoret.test.ylestatic.fi
areena.ylestatic.fi
korea-widget-config.test.ylestatic.fi
galaxi.test.ylestatic.fi
tunnus-tos.ylestatic.fi
birdhouse.test.ylestatic.fi
aihe-assets.ylestatic.fi
vaalit.ylestatic.fi
ylefi.test.ylestatic.fi
hbbtv-lasten-areena.test.ylestatic.fi
lusi-dataviz.test.ylestatic.fi
food.ylestatic.fi
nuoret.test.ylestatic.fi
food.ylestatic.fi
areena.ylestatic.fi
vaalit.test.ylestatic.fi
tunnus-tos.ylestatic.fi
tunnus-tos.test.ylestatic.fi
svenska-dataviz.test.ylestatic.fi
galaxi.ylestatic.fi
ylefi.test.ylestatic.fi
pikkukakkonen.test.ylestatic.fi
taulukkodata.ylestatic.fi
galaxi.test.ylestatic.fi
yddrasil.ylestatic.fi
leanback-lasten-areena.test.ylestatic.fi
svenska-dataviz.ylestatic.fi
aihe-assets.ylestatic.fi
vaalit.ylestatic.fi
lusi-dataviz.test.ylestatic.fi
svenska-dataviz.ylestatic.fi
player.ylestatic.fi
parliament-api-membercard.ylestatic.fi
yddrasil.test.ylestatic.fi
data.test.ylestatic.fi
aihe-assets.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
food.ylestatic.fi
lusi-dataviz.ylestatic.fi
areena.test.ylestatic.fi
Certificate
The complete raw certificate details for vaalit.test.ylestatic.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEmjCCA4KgAwIBAgIQCfPmHbgC2e1qLSZvVCeDfzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjAxMTMwMDAwMDBaFw0yMzAyMTEy MzU5NTlaMCMxITAfBgNVBAMTGHZhYWxpdC50ZXN0LnlsZXN0YXRpYy5maTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOKjZ/3Y5As0e2zDrmy0MomEdIk5 C6G6Ox1Ju68AS6XXnD3Saqu0Y7QGmYhBshEfauMo6LTzDPPGKQkryDjBjrCqVL1N zq5nB32+LWSwWEnb9sliSLyLt+i+30uFwKSoGhv54TaQ+Qx2RMdwxLWDb2g7FD0X /pH/Lty1wY10ympViZ53j4Ihgnvf6JLhonnJW56LTAEM+4KtXoJNnbHlM+DnJiW/ GUitm1VJoXPn5cF/+9JnuwLDSFd4I56zRPk8WTxgww2KjjsvhGbjyTYllBy3nHl/ SxdEiWRQtBAy1tIi3jtjrSCz9+kTdHXlMG+rzxQDAEajLqd/iKTLMvjorisCAwEA AaOCAaUwggGhMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1Ud DgQWBBQQqw51XMEv3ziDE0asuSes5rmG6jBCBgNVHREEOzA5ghh2YWFsaXQudGVz dC55bGVzdGF0aWMuZmmCHXZhYWxpdC1zdGF0aWMtdGVzdC5jMXQueWxlLmZpMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPQYD VR0fBDYwNDAyoDCgLoYsaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20v c2NhMWItMS5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBn MC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20w NgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3Nj YTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqG SIb3DQEBCwUAA4IBAQCrGn+XnVKhzFqZhS7pizTqgt/E8zKjWonm3Oawfo01zJVg 4SP3gBF7Ua7WrFFcdjvTKwBnWe3CBdVxK8DgA3MPNUgLq20eHVIZC8FlSgWu1xsX 0/UQcaUERYtHmPlS7yLhysQBST5tRCwjBaroee6XqmYUuLmNC94h90OSqqwmuFa2 Bgys0LITKDueP2I0CaOzdfa6I1hrCaUug2hfOqFE0l+lQuTjVkNVvN21PRal2VFE HDyDX7mI8JeqD5KijCWCZeO78fhiqCo7HUd6oO+QCaWBXMyYJXkLWtGMmCZ8FuDD Cbjzau6GgIFCBQP064brrk3lpk8U4c8cbfnbsYzv -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4qNn/djkCzR7bMOubLQy iYR0iTkLobo7HUm7rwBLpdecPdJqq7RjtAaZiEGyER9q4yjotPMM88YpCSvIOMGO sKpUvU3OrmcHfb4tZLBYSdv2yWJIvIu36L7fS4XApKgaG/nhNpD5DHZEx3DEtYNv aDsUPRf+kf8u3LXBjXTKalWJnnePgiGCe9/okuGieclbnotMAQz7gq1egk2dseUz 4OcmJb8ZSK2bVUmhc+flwX/70me7AsNIV3gjnrNE+TxZPGDDDYqOOy+EZuPJNiWU HLeceX9LF0SJZFC0EDLW0iLeO2OtILP36RN0deUwb6vPFAMARqMup3+IpMsy+Oiu KwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13229447407462447559553135918545601407 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vaalit.test.ylestatic.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28610435531212450997183368906878628478588537443982062285232487135785383388927434308679299781135586879961530467188544948472559529601244717236120666705170340990902123439978812656906129738597274346512658633953800353266917556999307269009145011723605287986236316836835227519720087828489817625536384688141293450564387985447109834567922951427485398042906589412096278209083997495895111374466154361295553415586264156566422943832597693831568308604482733415735140162396944779230465424301992789201236526013105693427306544890088608834359929822040425952035258029996449627387107221397696880296607510001676652848282409023866959081003 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 10ab0e755cc12fdf38831346acb927ace6b986ea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vaalit.test.ylestatic.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vaalit-static-test.c1t.yle.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00ab1a7f979d52a1cc5a99852ee98b34ea82dfc4f332a35a89e6dce6b07e8d35cc9560e123f780117b51aed6ac515c763bd32b006759edc205d5712bc0e003730f35480bab6d1e1d52190bc1654a05aed71b17d3f51071a504458b4798f952ef22e1cac401493e6d442c2305aae879ee97aa6614b8b98d0bde21f74392aaac26b856b6060cacd0b213283b9e3f623409a3b375f6ba23586b09a52e83685f3aa144d25fa542e4e3564355bcddb53d16a5d951441c3c835fb988f097aa0f92a28c258265e3bbf1f862a82a3b1d477aa0ef9009a5815ccc9825790b5ad18c98267c16e0c309b8f36aee868081420503f4eb86ebae4de5a64f14e1cf1c6df9dbb18cef