cloud.pen.shoebox.md

Issued by Amazon

About this certificate

This digital certificate with serial number 09:fc:68:da:8f:11:09:89:fc:c9:0a:c6:b2:62:f2:7d was issued on by Amazon.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=cloud.pen.shoebox.md

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 09:fc:68:da:8f:11:09:89:fc:c9:0a:c6:b2:62:f2:7d
Serial Number (int): 13273637457030180491976813989219988093
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 49:a4:e3:24:b3:6e:81:b3:4b:16:3f:de:f7:ea:ff:3c:78:37:b1:17
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): 86:d9:6f:e8:84:ae:d9:27:31:2f:7c:6f:38:6c:31:8d:55:e1:69:36
Fingerprint (sha256): 90:1d:1f:48:0e:f4:ab:de:64:71:17:e9:cd:8b:b0:b5:06:dd:5d:6b:49:46:ad:ec:fb:f1:04:53:f1:7e:27:74

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate cloud.pen.shoebox.md

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for cloud.pen.shoebox.md

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

cloud.pen.shoebox.md
cloud.us-east-1.pen.shoebox.md
portal.us-east-1.pen.shoebox.md
portal.pen.shoebox.md

Other certificates including the domain name shoebox.md

(limited to 100 certificates)
cloud.immad.shoebox.md
cloud.brad.shoebox.md
cloud.dev.shoebox.md
forms.shoebox.md
inside.shoebox.md
cloud.staging2.shoebox.md
forms.grupoplustech.com
inside.shoebox.md
inside.shoebox.md
shoebox.md
cloud.jeremy.shoebox.md
cloud.staging2.shoebox.md
www.clearwaterclinical.com
cloud.staging2.shoebox.md
cloud.shri.shoebox.md
forms.michiganfreedomfund.com
cloud.ca-central-1.staging.shoebox.md
cloud.shoebox.md
forms.shoebox.md
cloud.adam.shoebox.md
forms.seedformations.co.uk
cloud.jeremy.shoebox.md
cloud.ca-central-1.shoebox.md
cloud.staging2.shoebox.md
shoebox.md
cloud.shoebox.md
www.clearwaterclinical.com
shoebox.md
cloud.ca-central-1.prod2.shoebox.md
cloud.swa.shoebox.md
inside.shoebox.md
cloud.swabeta.shoebox.md
solicitudes.wtocorp.com
shoebox.md
shoebox.md
cloud.staging.shoebox.md
cloud.ca-central-1.shoebox.md
cloud.jeremy.shoebox.md
cloud.shri.shoebox.md
shoebox.md
cloud.staging3.shoebox.md
shoebox.md
cloud.ca-central-1.staging2.shoebox.md
forms.groupleisureandtravel.com
cloud.staging3.shoebox.md
inside.shoebox.md
cloud.p2jprod.shoebox.md
help.shoebox.md
cloud.ca-central-1.staging3.shoebox.md
forms.coloradotirestorage.com
cloud.swaprod.shoebox.md
cloud.jeremy.shoebox.md
www.clearwaterclinical.com
cloud.staging2.shoebox.md
help.shoebox.md
shoebox.md
cloud.elliot.shoebox.md
www.clearwaterclinical.com
cloud.shoebox.md
cloud.ca-central-1.dev.shoebox.md
cloud.ca-central-1.shri.shoebox.md
shoebox.md
cloud.ca-central-1.staging.shoebox.md
cloud.shoebox.md
cloud.pen.shoebox.md
cloud.immad.shoebox.md
help.shoebox.md
cloud.henry.shoebox.md
cloud.ca-central-1.prod1.shoebox.md
cloud.henry.shoebox.md
cloud.shoebox.md
cloud.clubhouse.shoebox.md
membership.labspot.com
cloud.shri.shoebox.md
cloud.jeremy.shoebox.md
cloud.shoebox.md
cloud.pen.shoebox.md
cloud.pen.shoebox.md
cloud.ca-central-1.prod1.shoebox.md
help.shoebox.md
contact.labspot.com
cloud.ca-central-1.staging2.shoebox.md
cloud.shoebox.md
cloud.dev.shoebox.md
forms.hansenmigration.com.au
cloud.ca-central-1.staging.shoebox.md
response.eviseintl.com
shoebox.md
cloud.shoebox.md
cloud.shoebox.md
cloud.staging.shoebox.md
cloud.ben.shoebox.md
cloud.ca-central-1.staging3.shoebox.md
cloud.shri.shoebox.md
cloud.p2jprod.shoebox.md
cloud.staging.shoebox.md
cloud.shoebox.md
cloud.portal.shoebox.md
help.shoebox.md
cloud.swa.shoebox.md

Certificate

The complete raw certificate details for cloud.pen.shoebox.md in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFyTCCBLGgAwIBAgIQCfxo2o8RCYn8yQrGsmLyfTANBgkqhkiG9w0BAQsFADBG
MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg
Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA4MTYwMDAwMDBaFw0yMDA5MTYx
MjAwMDBaMB8xHTAbBgNVBAMTFGNsb3VkLnBlbi5zaG9lYm94Lm1kMIIBIjANBgkq
hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA23PBQdatJcZpyOn8EVom/29kbPHEW02j
m/dBsejZs4Wgnh0pW7vl7yrmNKenz1PtDLiuuDBv/xeDayhx3tiYW6A9KcLl1pBg
yGFY3sVT/EY7IHzCtQX9gKc5kkt5atYvs242HVfaLbhHz5XAzsvf1mNc89d57aNk
MdWWDrsu4Rsnl0D1ndhkCogVR5aybWe7Ri78nyS59Ps8KsGSu3RHlvSoyQoshw1W
OQFy5KmfCT+ne3fcBxni7OjSK0XRPPQ4nPpjuvAZanT9Aiqxqkd3O1LG7Swl0JQU
kgN+UX7F7c8SBkS1bIRbJwKFqcTJ356EoUdCFbGmfIDpQ1C6sAwtlQIDAQABo4IC
2DCCAtQwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYE
FEmk4ySzboGzSxY/3vfq/zx4N7EXMHcGA1UdEQRwMG6CFGNsb3VkLnBlbi5zaG9l
Ym94Lm1kgh5jbG91ZC51cy1lYXN0LTEucGVuLnNob2Vib3gubWSCH3BvcnRhbC51
cy1lYXN0LTEucGVuLnNob2Vib3gubWSCFXBvcnRhbC5wZW4uc2hvZWJveC5tZDAO
BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsG
A1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29t
L3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYI
KwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6
b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9u
dHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMIIBBAYKKwYBBAHWeQIE
AgSB9QSB8gDwAHYAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFs
m7evkAAABAMARzBFAiEAhVzgGrgpkA+hP2HuyfLNxSojB7Uazd+MUKthVe9RABkC
IA3rvO7E5TjMLrldtXc2U6MjokyMNI0tBFWA4MdeQtycAHYAh3W/51l8+IxDmV+9
827/Vo1HVjb/SrVgwbTq/16ggw8AAAFsm7ev2AAABAMARzBFAiAU4cIkiWMA439X
Rn8FoPzTlp4xgLU/nzI2OYGf29arDAIhAL5HDEd05zw7d1TCk1WMRlT/jJcDRZa5
q4gjoWxIo1RRMA0GCSqGSIb3DQEBCwUAA4IBAQAt99sSxs6mZcUp9/AjpLXWt0vS
iqSVxvZEjQ60K6JOFxxgEHXRlbAkQj5PkxyEPxXYVoebxihkHCs9ZXJ+mJZg4zM+
X8X+Id4Ho5Y5QxYWZQC6KpTeNiyTq9TNoFEc+AlbpS3HOk/B1NaL1d2OHHeMrmrN
DdYAU+Zu7YW7uqjDNfJ0e5d9L0R+CwMarkA2GFrybvIwAb8Gu8hwBmgQIusE8FUS
y2PhabCQ2WGMFiFyuzbdS3htnjDLEJnl+gd/6Uknt5IATScgs7jtzWX6WLedAF0Y
06G9ru2WZ3Eq/Q1ZpAhBFZGKrxjjAad1j2QOP8GFhEg/TH06NKopo3FS13Q7
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA23PBQdatJcZpyOn8EVom
/29kbPHEW02jm/dBsejZs4Wgnh0pW7vl7yrmNKenz1PtDLiuuDBv/xeDayhx3tiY
W6A9KcLl1pBgyGFY3sVT/EY7IHzCtQX9gKc5kkt5atYvs242HVfaLbhHz5XAzsvf
1mNc89d57aNkMdWWDrsu4Rsnl0D1ndhkCogVR5aybWe7Ri78nyS59Ps8KsGSu3RH
lvSoyQoshw1WOQFy5KmfCT+ne3fcBxni7OjSK0XRPPQ4nPpjuvAZanT9Aiqxqkd3
O1LG7Swl0JQUkgN+UX7F7c8SBkS1bIRbJwKFqcTJ356EoUdCFbGmfIDpQ1C6sAwt
lQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 13273637457030180491976813989219988093
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-16 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-16 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cloud.pen.shoebox.md'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27703269661548662157415243623360459838345266581713504390051343910096555838559501618891161722118711080353281965937778321641684776826246981541169370291878294944200146646485628999578825406277277238884531075590901999435512141677759949900048759066771509277146617678149783688073215309436421068087754726704070670296159396061785247573246973591146404480632804562616513742095421643043633972173927018399215913218810898855159564419740465033453656333968714639048086808915354605032111144187927280999988783704752939555425361571772112477511025014615115334234381353946642596298688204184565694178513324410152938544616415469412203376021
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							49a4e324b36e81b34b163fdef7eaff3c7837b117
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cloud.pen.shoebox.md'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cloud.us-east-1.pen.shoebox.md'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.us-east-1.pen.shoebox.md'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.pen.shoebox.md'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016c9bb7af900000040300473045022100855ce01ab829900fa13f61eec9f2cdc52a2307b51acddf8c50ab6155ef51001902200debbceec4e538cc2eb95db5773653a323a24c8c348d2d045580e0c75e42dc9c0076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016c9bb7afd80000040300473045022014e1c224896300e37f57467f05a0fcd3969e3180b53f9f323639819fdbd6ab0c022100be470c4774e73c3b7754c293558c4654ff8c97034596b9ab8823a16c48a35451
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		002df7db12c6cea665c529f7f023a4b5d6b74bd28aa495c6f6448d0eb42ba24e171c601075d195b024423e4f931c843f15d856879bc628641c2b3d65727e989660e3333e5fc5fe21de07a396394316166500ba2a94de362c93abd4cda0511cf8095ba52dc73a4fc1d4d68bd5dd8e1c778cae6acd0dd60053e66eed85bbbaa8c335f2747b977d2f447e0b031aae4036185af26ef23001bf06bbc87006681022eb04f05512cb63e169b090d9618c162172bb36dd4b786d9e30cb1099e5fa077fe94927b792004d2720b3b8edcd65fa58b79d005d18d3a1bdaeed9667712afd0d59a4084115918aaf18e301a7758f640e3fc18584483f4c7d3a34aa29a37152d7743b