orbis.com
Issued by Amazon
About this certificate
This digital certificate with serial number 08:21:73:a1:8d:67:e9:e8:9a:8e:bf:e3:2d:4b:37:2c was issued on by Amazon.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=orbis.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:21:73:a1:8d:67:e9:e8:9a:8e:bf:e3:2d:4b:37:2cSerial Number (int): 10807515039212571380031214489692747564
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 8d:13:0e:ec:22:79:7c:8c:95:10:c5:11:fe:62:3e:a1:92:5a:a5:57
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 24:da:a8:13:c0:c9:a6:5e:c8:43:98:c5:aa:60:0d:09:56:27:aa:0c
Fingerprint (sha256): 85:9b:de:1e:07:e8:6e:5e:1b:c7:6f:03:36:83:68:3c:50:2a:ae:ba:bb:36:eb:83:bf:63:5f:66:d1:f4:c8:ff
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate orbis.com
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for orbis.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
orbis.com
institutional.orbis.com
orbisfunds.com
www.orbisfunds.com
orbisfunds.com.au
orbis.com.au
online.orbisfunds.com.au
www.orbisfunds.com.au
www.orbis.com.au
institutional.orbis.com
orbisfunds.com
www.orbisfunds.com
orbisfunds.com.au
orbis.com.au
online.orbisfunds.com.au
www.orbisfunds.com.au
www.orbis.com.au
Other certificates including the domain name orbis.com
(limited to 100 certificates)
www.orbis.com
incapsula.com
mail.orbis.com
portal.orbis.com
www.orbis.com
portal.orbis.com
incapsula.com
*.service.ims-uat.orbis.com
incapsula.com
dev.ii.orbis.com
incapsula.com
incapsula.com
orbis.com
*.service.ims-dev.orbis.com
businessinternships.orbis.com
ii.orbis.com
events.orbis.com
ii.orbis.com
orbis.com
*.stg.orbis.com
passwordstate.orbis.com
incapsula.com
sbx.ii.orbis.com
www.orbis.com
incapsula.com
www.orbis.com
*.service.ims.orbis.com
uat-events.orbis.com
businessinternships.orbis.com
orbis.com
*.ii.orbis.com
incapsula.com
incapsula.com
dev.ii.orbis.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
dev.businessinternships.orbis.com
incapsula.com
incapsula.com
splunk.orbis.app
incapsula.com
events.orbis.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
www.orbis.com
orbis.com
incapsula.com
*.service.ims.orbis.com
quantwebtools.orbis.com
incapsula.com
*.service.ims-sbx.orbis.com
incapsula.com
dev.ii.orbis.com
*.service.ims-uat.orbis.com
incapsula.com
dev.ii.orbis.com
ims-sbx.orbis.app
incapsula.com
incapsula.com
incapsula.com
incapsula.com
www.orbis.com
incapsula.com
online.orbis.com
service.ims-uat.orbis.com
aws-cf.orbis.com
citrix.orbis.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
service.ims-uat.orbis.com
incapsula.com
orbis.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
orbis.com
*.orbis.com
asa-hk1.orbis.com
incapsula.com
incapsula.com
incapsula.com
online.orbis.com
incapsula.com
online.orbis.com
incapsula.com
incapsula.com
incapsula.com
*.service.ims-uat.orbis.com
incapsula.com
orbis.com
incapsula.com
mail.orbis.com
portal.orbis.com
www.orbis.com
portal.orbis.com
incapsula.com
*.service.ims-uat.orbis.com
incapsula.com
dev.ii.orbis.com
incapsula.com
incapsula.com
orbis.com
*.service.ims-dev.orbis.com
businessinternships.orbis.com
ii.orbis.com
events.orbis.com
ii.orbis.com
orbis.com
*.stg.orbis.com
passwordstate.orbis.com
incapsula.com
sbx.ii.orbis.com
www.orbis.com
incapsula.com
www.orbis.com
*.service.ims.orbis.com
uat-events.orbis.com
businessinternships.orbis.com
orbis.com
*.ii.orbis.com
incapsula.com
incapsula.com
dev.ii.orbis.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
dev.businessinternships.orbis.com
incapsula.com
incapsula.com
splunk.orbis.app
incapsula.com
events.orbis.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
www.orbis.com
orbis.com
incapsula.com
*.service.ims.orbis.com
quantwebtools.orbis.com
incapsula.com
*.service.ims-sbx.orbis.com
incapsula.com
dev.ii.orbis.com
*.service.ims-uat.orbis.com
incapsula.com
dev.ii.orbis.com
ims-sbx.orbis.app
incapsula.com
incapsula.com
incapsula.com
incapsula.com
www.orbis.com
incapsula.com
online.orbis.com
service.ims-uat.orbis.com
aws-cf.orbis.com
citrix.orbis.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
service.ims-uat.orbis.com
incapsula.com
orbis.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
orbis.com
*.orbis.com
asa-hk1.orbis.com
incapsula.com
incapsula.com
incapsula.com
online.orbis.com
incapsula.com
online.orbis.com
incapsula.com
incapsula.com
incapsula.com
*.service.ims-uat.orbis.com
incapsula.com
orbis.com
Certificate
The complete raw certificate details for orbis.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/jCCBOagAwIBAgIQCCFzoY1n6eiajr/jLUs3LDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDEyMDMwMDAwMDBaFw0yMjAxMDEy MzU5NTlaMBQxEjAQBgNVBAMTCW9yYmlzLmNvbTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALLlwRytzJjV1rH28ny3p48P8RvFgfo2SHomWHGutFq02OwC uKAK0UDUPQs3qMCz1n+ezVuamweMRQkU7BkACTfzx/rocDcJvZY7n85ZmeiWUB10 MGfZRbgS4cWRYiuFgFt2L8IzzCmt2ERno8oxEHUyYFC+K4rf2nAO/CN/87yI7Q/k PLLtENCrjJz53bvcHwf1Ge3DUplRBhc5YIs5mzRJwEbtE2Z/DEs2mLHnhEjX0UfY EMXZD2xZaOr3h1QB04wWA/5KZscfnWC6GLMuqpXb0LUGI83IeP+jZq65sywi2MfJ MucxMXQj2koXXGSj/U6OR0Nxr3iXBgahwjlrZ7kCAwEAAaOCAxgwggMUMB8GA1Ud IwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBSNEw7sInl8jJUQ xRH+Yj6hklqlVzCBtwYDVR0RBIGvMIGsgglvcmJpcy5jb22CF2luc3RpdHV0aW9u YWwub3JiaXMuY29tgg5vcmJpc2Z1bmRzLmNvbYISd3d3Lm9yYmlzZnVuZHMuY29t ghFvcmJpc2Z1bmRzLmNvbS5hdYIMb3JiaXMuY29tLmF1ghhvbmxpbmUub3JiaXNm dW5kcy5jb20uYXWCFXd3dy5vcmJpc2Z1bmRzLmNvbS5hdYIQd3d3Lm9yYmlzLmNv bS5hdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1 c3QuY29tL3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwB AgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2Ex Yi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIu YW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMIIBAwYKKwYB BAHWeQIEAgSB9ASB8QDvAHYAKXm+8J45OSHwVnOfY6V35b5XfZxgCvj5TV0mXCVd x4QAAAF2JoEq3AAABAMARzBFAiBsnz2z4kcIOA6QUaiWIB6lKmuVmrkESzWhvxQG ok589wIhAMIoeD+M37bpdQTXBB7QrR9z/jfJX+xR+ZH1X17CIhiUAHUAIkVFB1lV JFaWP6Ev8fdthuAjJmOtwEt/XcaDXG7iDwIAAAF2JoErOwAABAMARjBEAiByZuwy yhB8oPihsZjoXQqEEoV6VL1lw1Hthn81Hhph6AIgWby0bBsiDtDSkOaB9ksGHnUD HS2NH0xzqP2/Fa/JYzkwDQYJKoZIhvcNAQELBQADggEBALXmb8/zdTA+8sBM529w vMuhcJOUh30quIrcKmDoMvyrWB3fZtRdOLziuKuMQ2F3wPLY0Z5QvqZwLyhEcXfE P8Ck2TnE90Di/4GKV0Q5GY9clvlbv9SmiRu9tiXJjnhcF3gLoHwtTaBGMtHG96AB HFtmUUrmFAfPywCd3mgymOgScbEJdSmPDzg0T1nvCo2LT7MnF3pL64Rq0l1h3JY6 B9bzMISFwKhp05SttvMx++5tFJi3RTxLEAZnFc3rDVNE9SzZcYArlJYaHYyyxSYT bjB/i9J2h39iO87f2IRNvHEAmS6o/FGyP/c5xI6yr0FeCOGR8fdiGXeINN0DycWE tNY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsuXBHK3MmNXWsfbyfLen jw/xG8WB+jZIeiZYca60WrTY7AK4oArRQNQ9CzeowLPWf57NW5qbB4xFCRTsGQAJ N/PH+uhwNwm9ljufzlmZ6JZQHXQwZ9lFuBLhxZFiK4WAW3YvwjPMKa3YRGejyjEQ dTJgUL4rit/acA78I3/zvIjtD+Q8su0Q0KuMnPndu9wfB/UZ7cNSmVEGFzlgizmb NEnARu0TZn8MSzaYseeESNfRR9gQxdkPbFlo6veHVAHTjBYD/kpmxx+dYLoYsy6q ldvQtQYjzch4/6NmrrmzLCLYx8ky5zExdCPaShdcZKP9To5HQ3GveJcGBqHCOWtn uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10807515039212571380031214489692747564 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'orbis.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22583714373516584446915928492098726482352538124182100256274664214919844156765133204002206310318685473572683539286005688064183316726636206584832613654880373599303299309305240287308316380394974259012416433521508105880159348308707682434920652340381278913839705822447038514917034031772038995984341004440671767541110235473539105214158406482395520064533094524693705847329566707678704808257707926693829662748571934836801385800863822728064428642737071026988023316609386947734644136237896647818976888368189621711931922188577250084001800531336189017614657401814520095932753278257287858364521184824638293933591435983147980515257 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8d130eec22797c8c9510c511fe623ea1925aa557 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (175 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orbis.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'institutional.orbis.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orbisfunds.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.orbisfunds.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orbisfunds.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orbis.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'online.orbisfunds.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.orbisfunds.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.orbis.com.au' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076002979bef09e393921f056739f63a577e5be577d9c600af8f94d5d265c255dc7840000017626812adc000004030047304502206c9f3db3e24708380e9051a896201ea52a6b959ab9044b35a1bf1406a24e7cf7022100c228783f8cdfb6e97504d7041ed0ad1f73fe37c95fec51f991f55f5ec22218940075002245450759552456963fa12ff1f76d86e0232663adc04b7f5dc6835c6ee20f020000017626812b3b000004030046304402207266ec32ca107ca0f8a1b198e85d0a8412857a54bd65c351ed867f351e1a61e8022059bcb46c1b220ed0d290e681f64b061e75031d2d8d1f4c73a8fdbf15afc96339 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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