tockify.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0a:4f:01:b6:b1:cf:3c:ff:a6:c5:41:eb:48:b1:84:fd was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tockify.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:4f:01:b6:b1:cf:3c:ff:a6:c5:41:eb:48:b1:84:fdSerial Number (int): 13702506166637973800435945822661739773
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a4:aa:04:a7:7e:fc:b7:a7:5c:1c:c2:cd:41:41:ce:8c:f1:1e:f0:d3
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): c2:e3:88:c9:c5:2c:92:6c:86:29:99:85:2d:f5:3b:89:29:d5:d6:44
Fingerprint (sha256): 65:2a:78:e6:7d:6f:bb:b0:dd:e8:a8:11:65:dc:5d:a4:d2:0d:a8:86:fc:03:e4:17:79:33:c4:8d:6b:14:39:76
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate tockify.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tockify.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tockify.com
*.tockify.com
tockify.net
*.tockify.net
*.tockify.com
tockify.net
*.tockify.net
Other certificates including the domain name tockify.com
(limited to 100 certificates)
1.wl.tockify.com
2.wl.tockify.com
2.wl.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
1.wl.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
cps5.ucarecdn.com
1.wl.tockify.com
2.wl.tockify.com
1.wl.tockify.com
1.wl.tockify.com
tockify.com
2.wl.tockify.com
*.tockify.com
2.wl.tockify.com
2.wl.tockify.com
3.wl.tockify.com
*.tockify.com
1.wl.tockify.com
2.wl.tockify.com
1.wl.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
cps5.ucarecdn.com
1.wl.tockify.com
1.wl.tockify.com
1.wl.tockify.com
2.wl.tockify.com
1.wl.tockify.com
2.wl.tockify.com
*.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
2.wl.tockify.com
tockify.com
2.wl.tockify.com
1.wl.tockify.com
cps5.ucarecdn.com
2.wl.tockify.com
1.wl.tockify.com
2.wl.tockify.com
2.wl.tockify.com
2.wl.tockify.com
1.wl.tockify.com
cps5.ucarecdn.com
2.wl.tockify.com
tockify.com
2.wl.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
*.tockify.com
1.wl.tockify.com
tockify.com
tockify.com
1.wl.tockify.com
tockify.com
tockify.com
tockify.com
2.wl.tockify.com
3.wl.tockify.com
1.wl.tockify.com
*.tockify.com
tockify.com
tockify.com
tockify.com
*.tockify.com
3.wl.tockify.com
1.wl.tockify.com
1.wl.tockify.com
*.tockify.com
2.wl.tockify.com
1.wl.tockify.com
cps5.ucarecdn.com
2.wl.tockify.com
1.wl.tockify.com
2.wl.tockify.com
*.tockify.com
cps5.ucarecdn.com
1.wl.tockify.com
cps5.ucarecdn.com
1.wl.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
1.wl.tockify.com
3.wl.tockify.com
1.wl.tockify.com
tockify.com
tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
*.tockify.com
*.tockify.com
tockify.com
2.wl.tockify.com
*.tockify.com
1.wl.tockify.com
1.wl.tockify.com
1.wl.tockify.com
2.wl.tockify.com
2.wl.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
1.wl.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
cps5.ucarecdn.com
1.wl.tockify.com
2.wl.tockify.com
1.wl.tockify.com
1.wl.tockify.com
tockify.com
2.wl.tockify.com
*.tockify.com
2.wl.tockify.com
2.wl.tockify.com
3.wl.tockify.com
*.tockify.com
1.wl.tockify.com
2.wl.tockify.com
1.wl.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
cps5.ucarecdn.com
1.wl.tockify.com
1.wl.tockify.com
1.wl.tockify.com
2.wl.tockify.com
1.wl.tockify.com
2.wl.tockify.com
*.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
2.wl.tockify.com
tockify.com
2.wl.tockify.com
1.wl.tockify.com
cps5.ucarecdn.com
2.wl.tockify.com
1.wl.tockify.com
2.wl.tockify.com
2.wl.tockify.com
2.wl.tockify.com
1.wl.tockify.com
cps5.ucarecdn.com
2.wl.tockify.com
tockify.com
2.wl.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
*.tockify.com
1.wl.tockify.com
tockify.com
tockify.com
1.wl.tockify.com
tockify.com
tockify.com
tockify.com
2.wl.tockify.com
3.wl.tockify.com
1.wl.tockify.com
*.tockify.com
tockify.com
tockify.com
tockify.com
*.tockify.com
3.wl.tockify.com
1.wl.tockify.com
1.wl.tockify.com
*.tockify.com
2.wl.tockify.com
1.wl.tockify.com
cps5.ucarecdn.com
2.wl.tockify.com
1.wl.tockify.com
2.wl.tockify.com
*.tockify.com
cps5.ucarecdn.com
1.wl.tockify.com
cps5.ucarecdn.com
1.wl.tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
1.wl.tockify.com
3.wl.tockify.com
1.wl.tockify.com
tockify.com
tockify.com
2.wl.tockify.com
cps5.ucarecdn.com
*.tockify.com
*.tockify.com
tockify.com
2.wl.tockify.com
*.tockify.com
1.wl.tockify.com
1.wl.tockify.com
1.wl.tockify.com
Certificate
The complete raw certificate details for tockify.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgIQCk8BtrHPPP+mxUHrSLGE/TANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDA0MDIwMDAwMDBaFw0yMTA1MDIx MjAwMDBaMBYxFDASBgNVBAMTC3RvY2tpZnkuY29tMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAr5ODYCHI3lcSbro3DohcePStgtaDqwF3sQFHcajEhmgX tCZE1H9MJjYXMx5dDOt1RayR/0MthOSkkBBcRNaVxU8liLTiWxpxB18O51JyZBdS hd94NstOf3EPd7tjiDF/3oIvyVKvbsQ/0KDXeIT2ZiDsI7673pWv7HLZz01vU412 nHVNxk1z8JC9tu9qjm7Zdo5npD6wDEolrIWwI9NZ9l9xZSTtoDLICFHn4zNJbeeU x5h85l9OC/26gwptXl6FzVThfWe+M/nEZnuJSvZsm8uMyhdrZeLf5D7VMstDNk8d 2jNiPosnRhXy/Ih/MG+lWfji6E1LHfRjEGBnNeYRjQIDAQABo4ICozCCAp8wHwYD VR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFKSqBKd+/Len XBzCzUFBzozxHvDTMEEGA1UdEQQ6MDiCC3RvY2tpZnkuY29tgg0qLnRvY2tpZnku Y29tggt0b2NraWZ5Lm5ldIINKi50b2NraWZ5Lm5ldDAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyG Kmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNybDAgBgNV HSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0G CCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYI KwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFi LmNydDAMBgNVHRMBAf8EAjAAMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA9lyU L9F3MCIUVBgIMJRWjuNNExkzv98MLyALzE7xZOMAAAFxO0TOIQAABAMARzBFAiBI /cDObmwo+yVUb8uNoXVuRhCyWxj01RWMayoX9gysnwIhAMlM8b9FW8bxZEMRB5xO VCK1BaKHRYGrA6zR1rcLVU0KAHcAXNxDkv7mq0VEsV6a1FbmEDf71fpH3KFzlLJe 5vbHDsoAAAFxO0TOUQAABAMASDBGAiEAkDmHMtMwV5VEDFGN6z9RNyi9X8AKXIdX 4X93RFMw8uUCIQD9bnKy+ZY+DRECwnBT5pJJ1G7ffyqEo6wOGaFfP1AXHzANBgkq hkiG9w0BAQsFAAOCAQEAKmUoYp6XVz0/rGzvM2SkeDaaLAfwxF31Us09J1c5RuqH vCfco20yn+E4rvEajttYrKpM7qXw4s2Si2RH0pXYQUDAyiL4QsHsCNcv9l6LyuFj F4oe6ORYBW5SL8aGPYIuN45DFxpbHvh0qk1n4nnTbtv4y7ioQJTxcVepQ9PMXI6K JzguQAQ0dtXkIBibqDxds+tM05pMBRXjWOktyFncz/sdv5q7dg2E2/rlPCGu/Tys RpqfsuhIF+wmrXtnMTN2DKPpWjAoc2PZzCD9tXxsgj3gI7YcXgdYrnMKfzhdttAE MCq4fAKMt8gaVs7LitKWZDVSuTFQ1QtoFy6QbLH+zg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5ODYCHI3lcSbro3Dohc ePStgtaDqwF3sQFHcajEhmgXtCZE1H9MJjYXMx5dDOt1RayR/0MthOSkkBBcRNaV xU8liLTiWxpxB18O51JyZBdShd94NstOf3EPd7tjiDF/3oIvyVKvbsQ/0KDXeIT2 ZiDsI7673pWv7HLZz01vU412nHVNxk1z8JC9tu9qjm7Zdo5npD6wDEolrIWwI9NZ 9l9xZSTtoDLICFHn4zNJbeeUx5h85l9OC/26gwptXl6FzVThfWe+M/nEZnuJSvZs m8uMyhdrZeLf5D7VMstDNk8d2jNiPosnRhXy/Ih/MG+lWfji6E1LHfRjEGBnNeYR jQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13702506166637973800435945822661739773 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-02 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tockify.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22164444831994754257641694685439634571371773161241741506787696625746951244063052619487950122261718742619333823666883211767370208458729912675518692831914179054694160854985282927550086500370122636163874231167262555000106589022251764449738709962166295894717696505974346219116476808143448868269989668299043251693535035057069452568673699681495485955924115765689983715036244751845554468724073299889413486623286371904264436693903332445670178321729432350085642515823839154601268118801010116210660953270078459029211271237069504024951801627802151360055518255321384055832271464637156778309593465547351904297179288668353350472077 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a4aa04a77efcb7a75c1cc2cd4141ce8cf11ef0d3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tockify.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tockify.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tockify.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tockify.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e3000001713b44ce210000040300473045022048fdc0ce6e6c28fb25546fcb8da1756e4610b25b18f4d5158c6b2a17f60cac9f022100c94cf1bf455bc6f1644311079c4e5422b505a2874581ab03acd1d6b70b554d0a0077005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca000001713b44ce51000004030048304602210090398732d3305795440c518deb3f513728bd5fc00a5c8757e17f77445330f2e5022100fd6e72b2f9963e0d1102c27053e69249d46edf7f2a84a3ac0e19a15f3f50171f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002a6528629e97573d3fac6cef3364a478369a2c07f0c45df552cd3d27573946ea87bc27dca36d329fe138aef11a8edb58acaa4ceea5f0e2cd928b6447d295d84140c0ca22f842c1ec08d72ff65e8bcae163178a1ee8e458056e522fc6863d822e378e43171a5b1ef874aa4d67e279d36edbf8cbb8a84094f17157a943d3cc5c8e8a27382e40043476d5e420189ba83c5db3eb4cd39a4c0515e358e92dc859dccffb1dbf9abb760d84dbfae53c21aefd3cac469a9fb2e84817ec26ad7b673133760ca3e95a30287363d9cc20fdb57c6c823de023b61c5e0758ae730a7f385db6d004302ab87c028cb7c81a56cecb8ad296643552b93150d50b68172e906cb1fece