stg-in.lower-getty.cloud
Issued by Amazon
About this certificate
This digital certificate with serial number 0e:58:19:37:80:b2:c5:54:e8:d6:b7:bc:6f:05:b5:33 was issued on by Amazon.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=stg-in.lower-getty.cloud
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:58:19:37:80:b2:c5:54:e8:d6:b7:bc:6f:05:b5:33Serial Number (int): 19066625522159118553788148630434460979
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 4f:a1:be:11:09:c9:ed:3d:7a:b7:09:f7:c2:f9:43:59:84:15:ed:70
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 28:94:c9:8a:2c:e3:93:2b:22:33:ff:ca:1b:90:e1:11:de:03:ae:8a
Fingerprint (sha256): 7e:10:21:d6:83:fd:29:40:d5:55:0d:5a:85:de:17:28:17:70:e4:45:7a:40:50:59:40:4e:92:e2:22:ef:91:ee
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate stg-in.lower-getty.cloud
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stg-in.lower-getty.cloud
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stg-in.lower-getty.cloud
stg-www.image.net
staging-in.gettyimages.com
origin-staging-in.gettyimages.com
presse-movie-de.stage-gettyimages.com
presse-movienews-at.stage-gettyimages.com
stg-www.image.net
staging-in.gettyimages.com
origin-staging-in.gettyimages.com
presse-movie-de.stage-gettyimages.com
presse-movienews-at.stage-gettyimages.com
Other certificates including the domain name lower-getty.cloud
(limited to 100 certificates)
lower-customcontent.stage-gettyimages.com
use1-unipassthru.lower-getty.cloud
wildcard.lower-getty.cloud
stg-mm.lower-getty.cloud
stg-in.lower-getty.cloud
usw2-unipassthru.lower-getty.cloud
wildcard.lower-getty.cloud
stg-in.lower-getty.cloud
wildcard.lower-getty.cloud
*.autocomplete.keywordservice.service.lower-getty.cloud
partnerportal.lower-getty.cloud
partnerportal.lower-getty.cloud
secondary-stg-mm.lower-getty.cloud
*.autocomplete.keywordservice.service.lower-getty.cloud
stg-in.lower-getty.cloud
metrics.usw2.lower-getty.cloud
wildcard.lower-getty.cloud
*.lower-getty.cloud
customcontent.lower-getty.cloud
stg-mm.lower-getty.cloud
usw2-stage-unipassthru.lower-getty.cloud
*.lower-getty.cloud
stg-in.lower-getty.cloud
stg-in.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
stg-mm.lower-getty.cloud
wildcard.lower-getty.cloud
stg-mm.lower-getty.cloud
usw2-unipassthru.lower-getty.cloud
stg-mms-api.lower-getty.cloud
*.autocomplete.keywordservice.service.lower-getty.cloud
stg-in.lower-getty.cloud
secondary-stg-mm.lower-getty.cloud
*.lower-getty.cloud
wildcard.splunk.lower-getty.cloud
customcontent.lower-getty.cloud
stg-in.lower-getty.cloud
wildcard.lower-getty.cloud
appdev-platform.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
lower-customcontent.stage-gettyimages.com
*.asset.lower-getty.cloud
*.asset.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
customcontent.stage-gettyimages.com
lower-customcontent.stage-gettyimages.com
appdev-platform.lower-getty.cloud
stg-in.lower-getty.cloud
stg-mm.lower-getty.cloud
partnerportal.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
stg-in.lower-getty.cloud
stg-mm.lower-getty.cloud
*.entapp-integr.lower-getty.cloud
stg-in.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
stg-mm.lower-getty.cloud
customcontent.lower-getty.cloud
use1-unipassthru.lower-getty.cloud
*.asset.lower-getty.cloud
stg-mm.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
stg-mm.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
stg-mm.lower-getty.cloud
stg-mm.lower-getty.cloud
*.lower-getty.cloud
wildcard.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
secondary-stg-in.lower-getty.cloud
stg-in.lower-getty.cloud
stg-mm.lower-getty.cloud
*.entapp-integr.lower-getty.cloud
stg-mm.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
*.asset.lower-getty.cloud
splunk.lower-getty.cloud
wildcard.splunk.lower-getty.cloud
stg-mm.lower-getty.cloud
stg-mms-api.lower-getty.cloud
partnerportal.lower-getty.cloud
stg-mms-ws.lower-getty.cloud
*.lower-getty.cloud
stg-mm.lower-getty.cloud
stg-in.lower-getty.cloud
*.asset.lower-getty.cloud
*.entapp-integr.lower-getty.cloud
use1-unipassthru.lower-getty.cloud
wildcard.lower-getty.cloud
stg-mm.lower-getty.cloud
stg-in.lower-getty.cloud
usw2-unipassthru.lower-getty.cloud
wildcard.lower-getty.cloud
stg-in.lower-getty.cloud
wildcard.lower-getty.cloud
*.autocomplete.keywordservice.service.lower-getty.cloud
partnerportal.lower-getty.cloud
partnerportal.lower-getty.cloud
secondary-stg-mm.lower-getty.cloud
*.autocomplete.keywordservice.service.lower-getty.cloud
stg-in.lower-getty.cloud
metrics.usw2.lower-getty.cloud
wildcard.lower-getty.cloud
*.lower-getty.cloud
customcontent.lower-getty.cloud
stg-mm.lower-getty.cloud
usw2-stage-unipassthru.lower-getty.cloud
*.lower-getty.cloud
stg-in.lower-getty.cloud
stg-in.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
stg-mm.lower-getty.cloud
wildcard.lower-getty.cloud
stg-mm.lower-getty.cloud
usw2-unipassthru.lower-getty.cloud
stg-mms-api.lower-getty.cloud
*.autocomplete.keywordservice.service.lower-getty.cloud
stg-in.lower-getty.cloud
secondary-stg-mm.lower-getty.cloud
*.lower-getty.cloud
wildcard.splunk.lower-getty.cloud
customcontent.lower-getty.cloud
stg-in.lower-getty.cloud
wildcard.lower-getty.cloud
appdev-platform.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
lower-customcontent.stage-gettyimages.com
*.asset.lower-getty.cloud
*.asset.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
customcontent.stage-gettyimages.com
lower-customcontent.stage-gettyimages.com
appdev-platform.lower-getty.cloud
stg-in.lower-getty.cloud
stg-mm.lower-getty.cloud
partnerportal.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
stg-in.lower-getty.cloud
stg-mm.lower-getty.cloud
*.entapp-integr.lower-getty.cloud
stg-in.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
stg-mm.lower-getty.cloud
customcontent.lower-getty.cloud
use1-unipassthru.lower-getty.cloud
*.asset.lower-getty.cloud
stg-mm.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
stg-mm.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
stg-mm.lower-getty.cloud
stg-mm.lower-getty.cloud
*.lower-getty.cloud
wildcard.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
secondary-stg-in.lower-getty.cloud
stg-in.lower-getty.cloud
stg-mm.lower-getty.cloud
*.entapp-integr.lower-getty.cloud
stg-mm.lower-getty.cloud
lower-customcontent.stage-gettyimages.com
*.asset.lower-getty.cloud
splunk.lower-getty.cloud
wildcard.splunk.lower-getty.cloud
stg-mm.lower-getty.cloud
stg-mms-api.lower-getty.cloud
partnerportal.lower-getty.cloud
stg-mms-ws.lower-getty.cloud
*.lower-getty.cloud
stg-mm.lower-getty.cloud
stg-in.lower-getty.cloud
*.asset.lower-getty.cloud
*.entapp-integr.lower-getty.cloud
Certificate
The complete raw certificate details for stg-in.lower-getty.cloud in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIQDlgZN4CyxVTo1re8bwW1MzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xODA2MjEwMDAwMDBaFw0xOTA3MjEx MjAwMDBaMCMxITAfBgNVBAMTGHN0Zy1pbi5sb3dlci1nZXR0eS5jbG91ZDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALr1ou3yFqG/hiSqiUKZGGKqzriZ 2temUpFFLmKxKWp5bdRySoUhKegyGFGenGOmu4/ipAjrRg/emLXIALyzJSgi2tSL bgr56fa8S3/DCBRlT5beaHKeCZW0KcZXRwlYWSx0vpZiVhRqUhBNoEjSTQ9BYr2y TEwr4rDGynOIdLeJA+EvSoNvLe4i2VOu3YtWiipKUM7Q+uCC/kytJz26nhzo5M4W KkTQRJy1jybu3hBIbu+fZTAJxqpEX67LcEwuK0+PipdhcI7/qeI6P2l2+fZ7O1uW zk1Vdu3f9qWYSLsb9RLGHUw4vs9ryg9adyNldrg7ww4V6IbUFc63EuTJtCECAwEA AaOCAjgwggI0MB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1Ud DgQWBBRPob4RCcntPXq3CffC+UNZhBXtcDCByQYDVR0RBIHBMIG+ghhzdGctaW4u bG93ZXItZ2V0dHkuY2xvdWSCEXN0Zy13d3cuaW1hZ2UubmV0ghpzdGFnaW5nLWlu LmdldHR5aW1hZ2VzLmNvbYIhb3JpZ2luLXN0YWdpbmctaW4uZ2V0dHlpbWFnZXMu Y29tgiVwcmVzc2UtbW92aWUtZGUuc3RhZ2UtZ2V0dHlpbWFnZXMuY29tgilwcmVz c2UtbW92aWVuZXdzLWF0LnN0YWdlLWdldHR5aW1hZ2VzLmNvbTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIw MKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNy bDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUHAQEE aTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5j b20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29t L3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0G CSqGSIb3DQEBCwUAA4IBAQCCs6tj3QVDV83C0SPbjLurJAK3ZKnxry1sVFnd4RDJ CnQ/JI34KAiyrdVNEb3F+cEz6gh+4816P/YWnHIco3DFpY4bYHzGtd6PYtui9MWc hAe42V/SoafdT5Y7rIfOLL4r7Ypmas3vanZEWZM38iZ9Zecr7rU7TXydvveXplRF wTPR8Tdycz7RBBrNQ6wq3Vbhq0XhRPg47jd2NM93LpiGqPi7WYEhxD2hjHRs3x1Q laiy8MhPXvfxAjemCgiNDn8xj3V9Ag64mlwMenL2wQF18FKtm1Dpp2uSiMYpfI7C kSIbcgWjpCwbbdoG+EovWI4bPx5aceZFhgCBPXOnN0eN -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuvWi7fIWob+GJKqJQpkY YqrOuJna16ZSkUUuYrEpanlt1HJKhSEp6DIYUZ6cY6a7j+KkCOtGD96YtcgAvLMl KCLa1ItuCvnp9rxLf8MIFGVPlt5ocp4JlbQpxldHCVhZLHS+lmJWFGpSEE2gSNJN D0FivbJMTCvisMbKc4h0t4kD4S9Kg28t7iLZU67di1aKKkpQztD64IL+TK0nPbqe HOjkzhYqRNBEnLWPJu7eEEhu759lMAnGqkRfrstwTC4rT4+Kl2Fwjv+p4jo/aXb5 9ns7W5bOTVV27d/2pZhIuxv1EsYdTDi+z2vKD1p3I2V2uDvDDhXohtQVzrcS5Mm0 IQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19066625522159118553788148630434460979 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-21 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stg-in.lower-getty.cloud' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23601452568356287374875402990461823059798414593487461212581481884487221038757702047439691596722809509401802157518429775357678270083854780872146839392805148515903035814736683120508657611393184192949787524340575865909557100393601860531134034017915985402091025088068015613366627458962470753988674971322064327009449924090510107101229582440977962521058153311505352319889561202314140107999593181530860735204003666312770484002245880983754878402209669074395385096289466359066030257112554313177109731457736825170245058443384391164520747159006425221262977707858855916155718140913128245430058749875683280447713978148926507299873 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4fa1be1109c9ed3d7ab709f7c2f943598415ed70 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (193 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-in.lower-getty.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-www.image.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-in.gettyimages.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-staging-in.gettyimages.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'presse-movie-de.stage-gettyimages.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'presse-movienews-at.stage-gettyimages.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0082b3ab63dd054357cdc2d123db8cbbab2402b764a9f1af2d6c5459dde110c90a743f248df82808b2add54d11bdc5f9c133ea087ee3cd7a3ff6169c721ca370c5a58e1b607cc6b5de8f62dba2f4c59c8407b8d95fd2a1a7dd4f963bac87ce2cbe2bed8a666acdef6a7644599337f2267d65e72beeb53b4d7c9dbef797a65445c133d1f13772733ed1041acd43ac2add56e1ab45e144f838ee377634cf772e9886a8f8bb598121c43da18c746cdf1d5095a8b2f0c84f5ef7f10237a60a088d0e7f318f757d020eb89a5c0c7a72f6c10175f052ad9b50e9a76b9288c6297c8ec291221b7205a3a42c1b6dda06f84a2f588e1b3f1e5a71e6458600813d73a737478d