*.torontolife.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0a:88:f4:78:9f:27:bf:56:46:c6:3c:d6:7f:04:09:cf was issued on by Amazon.
With 22 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.torontolife.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:88:f4:78:9f:27:bf:56:46:c6:3c:d6:7f:04:09:cfSerial Number (int): 14003390795188856237899057884471495119
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 62:56:2f:5a:b5:b5:f3:0f:a8:38:5e:c2:ad:0c:d9:da:72:cd:ff:f5
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): d0:77:17:a3:7d:ff:03:ac:61:3a:b3:bc:56:d2:32:87:42:c4:ff:e1
Fingerprint (sha256): 80:27:c0:28:3a:1b:93:4f:37:9e:3c:e9:f6:f4:c7:e8:6f:80:a2:28:1f:44:5e:b3:23:74:fb:78:24:a6:40:3e
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.torontolife.com
22
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.torontolife.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.torontolife.com
macleans.ca
*.fashionmagazine.com
4000-15-684578694a-shop.darwin.cx
mightymag.ca
*.mightymag.ca
*.fr.chatelaine.darwin.cx
*.macleans.ca
torontolife.com
fashionmagazine.com
quillandquire.com
ottawamagazine.com
chatelaine.com
*.hellomagazine.darwin.cx
*.ottawamagazine.com
*.macleans.darwin.cx
*.chatelaine.darwin.cx
todaysparent.com
*.todaysparent.darwin.cx
*.chatelaine.com
*.quillandquire.com
*.todaysparent.com
macleans.ca
*.fashionmagazine.com
4000-15-684578694a-shop.darwin.cx
mightymag.ca
*.mightymag.ca
*.fr.chatelaine.darwin.cx
*.macleans.ca
torontolife.com
fashionmagazine.com
quillandquire.com
ottawamagazine.com
chatelaine.com
*.hellomagazine.darwin.cx
*.ottawamagazine.com
*.macleans.darwin.cx
*.chatelaine.darwin.cx
todaysparent.com
*.todaysparent.darwin.cx
*.chatelaine.com
*.quillandquire.com
*.todaysparent.com
Other certificates including the domain name torontolife.com
(limited to 100 certificates)
stage.torontolife.com
nfoon.torontolife.com
stage.torontolife.com
torontolife.com
stage.torontolife.com
tburden.torontolife.com
www.torontolife.com
torontolife.com
secure.torontolife.com
members.torontolife.com
www.torontolife.com
*.torontolife.com
*.torontolife.com
members.torontolife.com
nfoon.torontolife.com
dev.torontolife.com
tburden.torontolife.com
qa.torontolife.com
*.torontolife.com
dev.torontolife.com
www.torontolife.com
*.torontolife.com
stage.torontolife.com
members.torontolife.com
secure.torontolife.com
torontolife.com
qa.torontolife.com
bhill.torontolife.com
stage.torontolife.com
dev.torontolife.com
*.torontolife.com
*.torontolife.com
qa.torontolife.com
secure.torontolife.com
*.torontolife.com
udobrowolska.torontolife.com
stage.torontolife.com
torontolife.com
stage.torontolife.com
torontolife.com
www.torontolife.com
tburden.torontolife.com
qa.torontolife.com
dev.torontolife.com
stage.torontolife.com
*.torontolife.com
udobrowolska.torontolife.com
ebrukson.torontolife.com
www.torontolife.com
stage.torontolife.com
torontolife.com
secure.torontolife.com
www.torontolife.com
hbaradaran.torontolife.com
dev.torontolife.com
dev.torontolife.com
www.torontolife.com
dev.torontolife.com
stage.torontolife.com
jmykolyn.torontolife.com
dev.torontolife.com
tburden.torontolife.com
torontolife.com
tburden.torontolife.com
dev.torontolife.com
tburden.torontolife.com
www.torontolife.com
*.torontolife.com
torontolife.com
www.torontolife.com
nfoon.torontolife.com
members.torontolife.com
*.torontolife.com
*.torontolife.com
torontolife.com
hbaradaran.torontolife.com
*.torontolife.com
tburden.torontolife.com
dev.torontolife.com
hbaradaran.torontolife.com
torontolife.com
listings.torontolife.com
stage.torontolife.com
torontolife.com
*.torontolife.com
tburden.torontolife.com
dev.torontolife.com
members.torontolife.com
members.torontolife.com
www.torontolife.com
*.torontolife.com
www.torontolife.com
*.torontolife.com
dev.torontolife.com
*.torontolife.com
tburden.torontolife.com
www.torontolife.com
*.torontolife.com
torontolife.com
*.torontolife.com
nfoon.torontolife.com
stage.torontolife.com
torontolife.com
stage.torontolife.com
tburden.torontolife.com
www.torontolife.com
torontolife.com
secure.torontolife.com
members.torontolife.com
www.torontolife.com
*.torontolife.com
*.torontolife.com
members.torontolife.com
nfoon.torontolife.com
dev.torontolife.com
tburden.torontolife.com
qa.torontolife.com
*.torontolife.com
dev.torontolife.com
www.torontolife.com
*.torontolife.com
stage.torontolife.com
members.torontolife.com
secure.torontolife.com
torontolife.com
qa.torontolife.com
bhill.torontolife.com
stage.torontolife.com
dev.torontolife.com
*.torontolife.com
*.torontolife.com
qa.torontolife.com
secure.torontolife.com
*.torontolife.com
udobrowolska.torontolife.com
stage.torontolife.com
torontolife.com
stage.torontolife.com
torontolife.com
www.torontolife.com
tburden.torontolife.com
qa.torontolife.com
dev.torontolife.com
stage.torontolife.com
*.torontolife.com
udobrowolska.torontolife.com
ebrukson.torontolife.com
www.torontolife.com
stage.torontolife.com
torontolife.com
secure.torontolife.com
www.torontolife.com
hbaradaran.torontolife.com
dev.torontolife.com
dev.torontolife.com
www.torontolife.com
dev.torontolife.com
stage.torontolife.com
jmykolyn.torontolife.com
dev.torontolife.com
tburden.torontolife.com
torontolife.com
tburden.torontolife.com
dev.torontolife.com
tburden.torontolife.com
www.torontolife.com
*.torontolife.com
torontolife.com
www.torontolife.com
nfoon.torontolife.com
members.torontolife.com
*.torontolife.com
*.torontolife.com
torontolife.com
hbaradaran.torontolife.com
*.torontolife.com
tburden.torontolife.com
dev.torontolife.com
hbaradaran.torontolife.com
torontolife.com
listings.torontolife.com
stage.torontolife.com
torontolife.com
*.torontolife.com
tburden.torontolife.com
dev.torontolife.com
members.torontolife.com
members.torontolife.com
www.torontolife.com
*.torontolife.com
www.torontolife.com
*.torontolife.com
dev.torontolife.com
*.torontolife.com
tburden.torontolife.com
www.torontolife.com
*.torontolife.com
torontolife.com
*.torontolife.com
Certificate
The complete raw certificate details for *.torontolife.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHIzCCBgugAwIBAgIQCoj0eJ8nv1ZGxjzWfwQJzzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDAzMzAwMDAwMDBaFw0yMTA0MzAx MjAwMDBaMBwxGjAYBgNVBAMMESoudG9yb250b2xpZmUuY29tMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyaupU8yXXuEvNY7WoZ2zHEI5yuc9dvJemGkj F32f0sHe3qkgiSdP9u3B6ERqdksA0wTYKk7pkReaQbxxdj2v6qO2ZtrHHgvJqrVs /bfd3Cj/SjODUWMrbISnWKYbz9KkYhczWGUQy2+RTlWWQoqyPb3j56AVa+xmYn2u guUi2fzrowecJhxXo4WG8I8I1dZfchA51NyjWhvzeCOZLoB1Ilm5+tPi+5Itpfh+ pFVTqcTQHOt/ty/mA8fsgkxM1QCpueXTyDEPRZ+zruMFakatH7FMs4rXc2JlZ1do sUPT40w58tPXARvHw7PrYgnjVf/6DHEXMgq6UUN5RMNW8uAIFQIDAQABo4IENTCC BDEwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFGJW L1q1tfMPqDhewq0M2dpyzf/1MIIB0gYDVR0RBIIByTCCAcWCESoudG9yb250b2xp ZmUuY29tggttYWNsZWFucy5jYYIVKi5mYXNoaW9ubWFnYXppbmUuY29tgiE0MDAw LTE1LTY4NDU3ODY5NGEtc2hvcC5kYXJ3aW4uY3iCDG1pZ2h0eW1hZy5jYYIOKi5t aWdodHltYWcuY2GCGSouZnIuY2hhdGVsYWluZS5kYXJ3aW4uY3iCDSoubWFjbGVh bnMuY2GCD3Rvcm9udG9saWZlLmNvbYITZmFzaGlvbm1hZ2F6aW5lLmNvbYIRcXVp bGxhbmRxdWlyZS5jb22CEm90dGF3YW1hZ2F6aW5lLmNvbYIOY2hhdGVsYWluZS5j b22CGSouaGVsbG9tYWdhemluZS5kYXJ3aW4uY3iCFCoub3R0YXdhbWFnYXppbmUu Y29tghQqLm1hY2xlYW5zLmRhcndpbi5jeIIWKi5jaGF0ZWxhaW5lLmRhcndpbi5j eIIQdG9kYXlzcGFyZW50LmNvbYIYKi50b2RheXNwYXJlbnQuZGFyd2luLmN4ghAq LmNoYXRlbGFpbmUuY29tghMqLnF1aWxsYW5kcXVpcmUuY29tghIqLnRvZGF5c3Bh cmVudC5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpv bnRydXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYG Z4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Au c2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNj YTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADCCAQQG CisGAQQB1nkCBAIEgfUEgfIA8AB2APZclC/RdzAiFFQYCDCUVo7jTRMZM7/fDC8g C8xO8WTjAAABcSvaMUwAAAQDAEcwRQIhAPXMxEdxLkbfJun0a5iTg/FGufrTXDns yYqAxb0bxmksAiB9QuuCzXkCYmK0j+c/KQFRSx/DYpVEI6HC6zJ+S4vFVAB2AFzc Q5L+5qtFRLFemtRW5hA3+9X6R9yhc5SyXub2xw7KAAABcSvaMaEAAAQDAEcwRQIg FCQM+//HZFroS+n3P3tMjzXFrvLgAOF1LqD4T61AdaQCIQDoviBjGF1vRcEF1IL3 ELsPA8J/yO5yoIj92WEjkJxxbzANBgkqhkiG9w0BAQsFAAOCAQEAbqQ6qOJFlXb6 urv+Gdy8pWamfpGOHPJAcJh1ZhGHBhEX4gmT12r+TkpdckupYjL2vFVR0VjyysXi tq+X0wjc2ACS/z4U8oGeB1WU4ogJvgM7OQOWCCfnp0HrZTl9izzjhzDgt7vO5HC6 4AY2djL6J0LbVOlpNfGKky3354FZ/x3yehgM+G80GZK0A6bxZxE9rLUHEw/2pina C9gus105mogEbPDDPi123K1dSsZGWVZMQ4Hx8XWFYGb85+KaZL0SkHqa23MruNCe nNE+23WLOAFd3n/3ow3ZX09vhdNN132RBl2hlW/GLrP9z+HLDeY/SK/YVgpgcc2k rmBI6NzwUw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyaupU8yXXuEvNY7WoZ2z HEI5yuc9dvJemGkjF32f0sHe3qkgiSdP9u3B6ERqdksA0wTYKk7pkReaQbxxdj2v 6qO2ZtrHHgvJqrVs/bfd3Cj/SjODUWMrbISnWKYbz9KkYhczWGUQy2+RTlWWQoqy Pb3j56AVa+xmYn2uguUi2fzrowecJhxXo4WG8I8I1dZfchA51NyjWhvzeCOZLoB1 Ilm5+tPi+5Itpfh+pFVTqcTQHOt/ty/mA8fsgkxM1QCpueXTyDEPRZ+zruMFakat H7FMs4rXc2JlZ1dosUPT40w58tPXARvHw7PrYgnjVf/6DHEXMgq6UUN5RMNW8uAI FQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14003390795188856237899057884471495119 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-30 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.torontolife.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25458548706665508356087955040503604570877841921227378939506348525715372144191175472980856297409806100959639652716874286608765814294680517192993970314010749221624662192883891989963286491800106999079387242383942854083658825546104849916900417962986029720516962661364968761973233427618284306859115724287476055098593655688481903022006805478671183618789668879084324908428350803141986734065521449955575699915995284603485012167303075925759105185396795229100237938777569244309356454690054107264343775541613284138880970768838469132649334265051219360813922821524897846504719204873661264044371333110348399937788107619206197938197 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 62562f5ab5b5f30fa8385ec2ad0cd9da72cdfff5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (457 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.torontolife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'macleans.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fashionmagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '4000-15-684578694a-shop.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mightymag.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mightymag.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fr.chatelaine.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.macleans.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'torontolife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fashionmagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quillandquire.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ottawamagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chatelaine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hellomagazine.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ottawamagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.macleans.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chatelaine.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'todaysparent.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.todaysparent.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chatelaine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.quillandquire.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.todaysparent.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e3000001712bda314c0000040300473045022100f5ccc447712e46df26e9f46b989383f146b9fad35c39ecc98a80c5bd1bc6692c02207d42eb82cd79026262b48fe73f2901514b1fc362954423a1c2eb327e4b8bc5540076005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca000001712bda31a10000040300473045022014240cfbffc7645ae84be9f73f7b4c8f35c5aef2e000e1752ea0f84fad4075a4022100e8be2063185d6f45c105d482f710bb0f03c27fc8ee72a088fdd96123909c716f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006ea43aa8e2459576fababbfe19dcbca566a67e918e1cf240709875661187061117e20993d76afe4e4a5d724ba96232f6bc5551d158f2cac5e2b6af97d308dcd80092ff3e14f2819e075594e28809be033b3903960827e7a741eb65397d8b3ce38730e0b7bbcee470bae006367632fa2742db54e96935f18a932df7e78159ff1df27a180cf86f341992b403a6f167113dacb507130ff6a629da0bd82eb35d399a88046cf0c33e2d76dcad5d4ac64659564c4381f1f175856066fce7e29a64bd12907a9adb732bb8d09e9cd13edb758b38015dde7ff7a30dd95f4f6f85d34dd77d91065da1956fc62eb3fdcfe1cb0de63f48afd8560a6071cda4ae6048e8dcf053