*.prod.buzzfeed.io
Issued by Amazon
About this certificate
This digital certificate with serial number 0b:0c:6c:6a:54:e6:34:63:cf:7e:16:d1:a9:05:41:5d was issued on by Amazon.
With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.prod.buzzfeed.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:0c:6c:6a:54:e6:34:63:cf:7e:16:d1:a9:05:41:5dSerial Number (int): 14686014440633954593650350742349103453
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d2:eb:62:79:b3:14:8e:ff:f6:34:aa:cc:b3:1a:77:ad:14:b2:32:41
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): f4:12:36:cc:79:c8:b1:01:89:41:cd:4c:f1:02:19:42:1e:1b:7b:61
Fingerprint (sha256): 55:8d:e2:af:18:77:b7:f9:de:8c:b6:f1:92:4b:68:95:5d:85:87:9b:0e:1f:f9:cb:1a:28:18:54:65:ab:e0:05
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate *.prod.buzzfeed.io
15
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.prod.buzzfeed.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.prod.buzzfeed.io
*.prod.huffpost.net
*.use1.huffpo.net
*.bzfd.it
*.glb.buzzfeed.io
*.huffpost.net
*.cambria-production.huffpo.net
*.sso.prod.buzzfeed.io
*.sso.prod.huffpost.net
*.buzzfeed.com
*.cambria-staging.huffpo.net
*.buzzfeed.io
glb.buzzfeed.io
*.huffingtonpost.com
bzfd.it
*.prod.huffpost.net
*.use1.huffpo.net
*.bzfd.it
*.glb.buzzfeed.io
*.huffpost.net
*.cambria-production.huffpo.net
*.sso.prod.buzzfeed.io
*.sso.prod.huffpost.net
*.buzzfeed.com
*.cambria-staging.huffpo.net
*.buzzfeed.io
glb.buzzfeed.io
*.huffingtonpost.com
bzfd.it
Other certificates including the domain name buzzfeed.io
(limited to 100 certificates)
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo02.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.adminprod.buzzfeed.io
*.dev.buzzfeed.io
*.adminprod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--willmccutchen.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.test.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.hackweek.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--dan-meruelo.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.test.buzzfeed.io
*.unstable.buzzfeed.io
*.rigplayground1.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.adminprod.buzzfeed.io
*.hackweek.buzzfeed.io
*.prod.buzzfeed.io
*.namespace.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo02.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.adminprod.buzzfeed.io
*.dev.buzzfeed.io
*.adminprod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--willmccutchen.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.test.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.hackweek.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.prod.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.dev.buzzfeed.io
*.app-west.buzzfeed.io
*.dev.buzzfeed.io
*.prod.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.stage.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--dan-meruelo.unstable.buzzfeed.io
*.namespace--raymond.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.test.buzzfeed.io
*.unstable.buzzfeed.io
*.rigplayground1.buzzfeed.io
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.stage.buzzfeed.io
*.stage.buzzfeed.io
*.dev.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.buzzfeed.com
*.app-west.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.namespace--danmeruelo.unstable.buzzfeed.io
*.prod.buzzfeed.io
*.adminprod.buzzfeed.io
*.hackweek.buzzfeed.io
*.prod.buzzfeed.io
*.namespace.unstable.buzzfeed.io
Certificate
The complete raw certificate details for *.prod.buzzfeed.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG+DCCBeCgAwIBAgIQCwxsalTmNGPPfhbRqQVBXTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA1MTcwMDAwMDBaFw0yMzA2MTUy MzU5NTlaMB0xGzAZBgNVBAMMEioucHJvZC5idXp6ZmVlZC5pbzCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBALkSSKMX0nG3klECt+KBQh4VOf30cDcbCftr leagQQClvfeWtYCJArCta7utfhCjO2GInBCAe+BUfzzUYrMryj9EW/jCHgn1nyhF DeKfQry6gf2gTut43qbUPl+daQ36eHynGqclEqMwmsRzbC846vnb0AbllumMNfcR Dinc6ebTF8QlkPTJneVDAxMjSH5VMSTTH7j5RFvjkf+QvGrVvW+ZA2NNg3FQEU9F 23iAozlMjLdq6+C3GoD4Zonkkg/u0rTfubLH6Xu1tlZ2gkbmVpJrWw9HeT93pFLi U10U2+dPhpmkzMCeAtMWW6wHYjzsS6FLrc65NhpRzzQw2f/THwkCAwEAAaOCBAkw ggQFMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBTS 62J5sxSO//Y0qsyzGnetFLIyQTCCATYGA1UdEQSCAS0wggEpghIqLnByb2QuYnV6 emZlZWQuaW+CEyoucHJvZC5odWZmcG9zdC5uZXSCESoudXNlMS5odWZmcG8ubmV0 ggkqLmJ6ZmQuaXSCESouZ2xiLmJ1enpmZWVkLmlvgg4qLmh1ZmZwb3N0Lm5ldIIf Ki5jYW1icmlhLXByb2R1Y3Rpb24uaHVmZnBvLm5ldIIWKi5zc28ucHJvZC5idXp6 ZmVlZC5pb4IXKi5zc28ucHJvZC5odWZmcG9zdC5uZXSCDiouYnV6emZlZWQuY29t ghwqLmNhbWJyaWEtc3RhZ2luZy5odWZmcG8ubmV0gg0qLmJ1enpmZWVkLmlvgg9n bGIuYnV6emZlZWQuaW+CFCouaHVmZmluZ3RvbnBvc3QuY29tggdiemZkLml0MA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPQYD VR0fBDYwNDAyoDCgLoYsaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20v c2NhMWItMS5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBn MC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20w NgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3Nj YTFiLmNydDAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkA dQDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAYDTuGwxAAAEAwBG MEQCIG043dcq6J1kYrsOHuVsqyvpxnptkOJAFcFmwqSkRcgNAiBuBP4gJeev44aF DrPgRM8eGSFaiGHovXV/V7y2LgbmhwB3ADXPGRu/sWxXvw+tTG1Cy7u2JyAmUeo/ 4SrvqAPDO9ZMAAABgNO4bEoAAAQDAEgwRgIhAMAtxMhWzY77RGYWH3tpm9B6md8/ QPpw9XGSC/Ts/03jAiEAw7CQqc9NHH7gCp31tarpJYf/yp3K8LpcSQoBkM+Dn3oA dwC3Pvsk35xNunXyOcW6WPRsXfxCz3qfNcSeHQmBJe20mQAAAYDTuGw4AAAEAwBI MEYCIQC2Jajchcul4iqG3SAWmUsMa8dKSs93se9v1W8xLq0NKwIhAKn/jCOPTzxC 0YGi4tZvyMIfJr5rbdNN3OJSq849O1v6MA0GCSqGSIb3DQEBCwUAA4IBAQBH0YrA doNttey7Bi7nWq9W87WYdpwDNINCMwp3z1wFrPQXm0oaTDCOgRa15Hyzuv5QdG2q clmnA/Jnc6Tsc/MoZAm0zaCgLBB02FiF7ZYfqSZByDyjf19eUzLHt58sZezl8c0g DXzyGZlU574p7X9MVQhY3StUB6kUfrEfCCoNUhvFx3avlupzTw8c6iiL3se/LrDX n9mkyXuw5MuRfsZU2WsqWNak39Fh+tRGvG87I3ZyCgkD3EnVSuEq3a+GfqMBOOy5 FHfNVtZu/erzsSKv37J5wCV6uxmpQONcXEOqqpJ7QbPlluIn8W60mkiEcmI1JL9X L4ckDqep+hA33TlK -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuRJIoxfScbeSUQK34oFC HhU5/fRwNxsJ+2uV5qBBAKW995a1gIkCsK1ru61+EKM7YYicEIB74FR/PNRisyvK P0Rb+MIeCfWfKEUN4p9CvLqB/aBO63jeptQ+X51pDfp4fKcapyUSozCaxHNsLzjq +dvQBuWW6Yw19xEOKdzp5tMXxCWQ9Mmd5UMDEyNIflUxJNMfuPlEW+OR/5C8atW9 b5kDY02DcVART0XbeICjOUyMt2rr4LcagPhmieSSD+7StN+5ssfpe7W2VnaCRuZW kmtbD0d5P3ekUuJTXRTb50+GmaTMwJ4C0xZbrAdiPOxLoUutzrk2GlHPNDDZ/9Mf CQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14686014440633954593650350742349103453 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.prod.buzzfeed.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23363102466258442210566732475292449992391899063315823313778621066031119578974448477292498964963290655845807660628452993371909136892228057947829835702206063310368804352769066722184412017822005902892345494549828215940579343825510983530119214620804255952204365393210089931535601894857769173714444137452505714681264103530277194573714385775039400463290444806411355047815339306045182456974169267750444408326258533216152869789044535278666413609805617246929624826552081880760827212631654562358578924347519932668316847655499474056506343879865250188306267370221388429149096419943207170152372139861289175069014407750552659369737 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d2eb6279b3148efff634aaccb31a77ad14b23241 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (301 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod.huffpost.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.use1.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bzfd.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.glb.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.huffpost.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cambria-production.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sso.prod.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sso.prod.huffpost.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.buzzfeed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cambria-staging.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glb.buzzfeed.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.huffingtonpost.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bzfd.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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