onedrive.com
- Microsoft Corporation -
Issued by Microsoft Azure RSA TLS Issuing CA 08
About this certificate
This digital certificate with serial number 33:00:15:22:0d:40:e3:07:0c:e3:92:9a:79:00:00:00:15:22:0d was issued on by Microsoft Corporation.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Microsoft Corporation
Organization:
Microsoft Corporation
State / Province:
WA
Locality: Redmond
Country: US
Locality: Redmond
Country: US
Microsoft Corporation
Organization:
Microsoft Corporation
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 33:00:15:22:0d:40:e3:07:0c:e3:92:9a:79:00:00:00:15:22:0dSerial Number (int): 1137345196317334896963648105715890520560312845
Serial Number lenght: 150 bits, 19 octets
SubjectKeyId: f0:2a:1f:15:69:ed:14:02:43:da:7a:9b:0a:76:9d:dc:63:9b:7b:a5
AuthorityKeyId: f6:7e:2f:bd:80:a3:4a:b2:70:5b:eb:df:9a:1f:d8:ed:ca:61:80:07
Fingerprint (sha1): e9:ff:31:7f:0c:79:4e:6c:11:09:23:f9:09:e5:77:ed:06:e0:4d:ed
Fingerprint (sha256): 97:75:b8:8d:58:c5:46:fb:aa:32:48:59:9c:60:4f:12:d0:6a:fe:22:6f:7c:93:9f:8f:55:17:98:ac:cf:8b:5e
Issuing Certificate URL: http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2008%20-%20xsign.crt
Revocation information
OCSP Server: http://oneocsp.microsoft.com/ocspCRL Distribution Point: http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2008.crl
Check the revocation status for certificate onedrive.com
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for onedrive.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
12 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
onedrive.com
p.sfx.ms
*.live.com
*.live.net
*.skydrive.live.com
*.onedrive.live.com
*.onedrive.com
d.sfx-df.ms
*.odwebb.svc.ms
*.odwebp.svc.ms
*.odwebdf.svc.ms
*.odwebpl.svc.ms
p.sfx.ms
*.live.com
*.live.net
*.skydrive.live.com
*.onedrive.live.com
*.onedrive.com
d.sfx-df.ms
*.odwebb.svc.ms
*.odwebp.svc.ms
*.odwebdf.svc.ms
*.odwebpl.svc.ms
Other certificates including the domain name onedrive.com
(limited to 100 certificates)
storage.live.com
photos.onedrive.com
mail.live.com
storage.live.com
mail.live.com
dev.onedrive.com
blog.onedrive.com
storage.live.com
akamai-san11.exacttarget.com
onedrive.com
storage.live.com
storage.live.com
dev.onedrive.com
svc.ms
storage.live.com
onedrive.live.com
storage.live.com
photos.onedrive.com
SPO-Prod-ODWeb-O365Shell.onedrive.com
onedrive-df.live.com
dev-staging.onedrive.com
storage.live.com
onedrive.com
onedrive.live.com
storage.live.com
storage.live.com
akamai-san11.exacttarget.com
storage.live.com
storage.live.com
blog.onedrive.com
onedrive.live.com
onedrive.live.com
svc.ms
storage.live.com
photos.onedrive.com
photos.onedrive.com
storage.live.com
akamai-san11.exacttarget.com
storage.live.com
*.svc.ms
www1.onedrive.com
storage.live.com
storage.live.com
storage.live.com
storage.live.com
storage.live.com
qos.admin.onedrive.com
blog.onedrive.com
onedrive.com
onedrive.live.com
blog.onedrive.com
customersuccessblog.onedrive.com
storage.live.com
storage.live.com
storage.live.com
df.storage.live.com
onedrive.com
onedrive.com
storage.live.com
storage.live.com
*.mail.onedrive.com
storage.live.com
dev-staging.onedrive.com
*.mail.onedrive.com
blog.onedrive.com
storage.live.com
onedrive.live.com
storage.live.com
akamai-san11.exacttarget.com
*.mail.onedrive.com
onedrive.com
storage.live.com
pushchanneltst.cma.onedrive.com
onedrive.live.com
blog.onedrive.com
storage.live.com
onedrive.com
onedrive.live.com
*.svc.ms
onedrive.com
pushchannelprod.cma.onedrive.com
akamai-san11.exacttarget.com
storage.live.com
storage.live.com
onedrive.com
df.badger.onedrive.com
onedrive.com
storage.live.com
storage.live.com
photos.onedrive.com
photos.onedrive.com
onedrive-df.live.com
storage.live.com
storage.live.com
storage.live.com
*.mail.onedrive.com
onedrive.live.com
storage.live.com
spdf.badgerspo.onedrive.com
*.mail.onedrive.com
photos.onedrive.com
mail.live.com
storage.live.com
mail.live.com
dev.onedrive.com
blog.onedrive.com
storage.live.com
akamai-san11.exacttarget.com
onedrive.com
storage.live.com
storage.live.com
dev.onedrive.com
svc.ms
storage.live.com
onedrive.live.com
storage.live.com
photos.onedrive.com
SPO-Prod-ODWeb-O365Shell.onedrive.com
onedrive-df.live.com
dev-staging.onedrive.com
storage.live.com
onedrive.com
onedrive.live.com
storage.live.com
storage.live.com
akamai-san11.exacttarget.com
storage.live.com
storage.live.com
blog.onedrive.com
onedrive.live.com
onedrive.live.com
svc.ms
storage.live.com
photos.onedrive.com
photos.onedrive.com
storage.live.com
akamai-san11.exacttarget.com
storage.live.com
*.svc.ms
www1.onedrive.com
storage.live.com
storage.live.com
storage.live.com
storage.live.com
storage.live.com
qos.admin.onedrive.com
blog.onedrive.com
onedrive.com
onedrive.live.com
blog.onedrive.com
customersuccessblog.onedrive.com
storage.live.com
storage.live.com
storage.live.com
df.storage.live.com
onedrive.com
onedrive.com
storage.live.com
storage.live.com
*.mail.onedrive.com
storage.live.com
dev-staging.onedrive.com
*.mail.onedrive.com
blog.onedrive.com
storage.live.com
onedrive.live.com
storage.live.com
akamai-san11.exacttarget.com
*.mail.onedrive.com
onedrive.com
storage.live.com
pushchanneltst.cma.onedrive.com
onedrive.live.com
blog.onedrive.com
storage.live.com
onedrive.com
onedrive.live.com
*.svc.ms
onedrive.com
pushchannelprod.cma.onedrive.com
akamai-san11.exacttarget.com
storage.live.com
storage.live.com
onedrive.com
df.badger.onedrive.com
onedrive.com
storage.live.com
storage.live.com
photos.onedrive.com
photos.onedrive.com
onedrive-df.live.com
storage.live.com
storage.live.com
storage.live.com
*.mail.onedrive.com
onedrive.live.com
storage.live.com
spdf.badgerspo.onedrive.com
*.mail.onedrive.com
Certificate
The complete raw certificate details for onedrive.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJDjCCBvagAwIBAgITMwAVIg1A4wcM45KaeQAAABUiDTANBgkqhkiG9w0BAQwF ADBdMQswCQYDVQQGEwJVUzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9u MS4wLAYDVQQDEyVNaWNyb3NvZnQgQXp1cmUgUlNBIFRMUyBJc3N1aW5nIENBIDA4 MB4XDTI0MDIxMTIxMDQ1MFoXDTI1MDIwNTIxMDQ1MFowYzELMAkGA1UEBhMCVVMx CzAJBgNVBAgTAldBMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3Nv ZnQgQ29ycG9yYXRpb24xFTATBgNVBAMTDG9uZWRyaXZlLmNvbTCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAKVRRA0dUaLTih8thCj2BWjK1s1m4dCFp6PI KSnLEpzL6yTq6PGcBrcCnzyeZyk3zYaEGunrPAbSWD3eLjWrvLDPHXjABHa/YJ3f qz5REKovrMMUyQ3qhk+S5N2wmMpyysd9+eabeV+XJlfEuGXcYRiX/BPLbgv0uEvQ 7KVqM8CfNiGUyA1GRwwdnwkTHNQQwGl1WhRIgJkVhluMGr20d6i3tGa1EiyTAq49 i2vG9zCB5Ns0NbShPbZvrGgFKYPaCuWixN9QnQdZBrHGqNKYMJhKAnfMnzaVNkYt 93KpNv/NYYCvN5rxGTzwSdDh1wsrZLPaL0HIGqVy3hunXSnau3kCAwEAAaOCBL8w ggS7MIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdgDPEVbu1S58r/OHW9lpLpvp GnFnSrAX7KwB0lt3zsw7CAAAAY2aBdrGAAAEAwBHMEUCIQCO6nQFwBJOekgWGXnr LXy/weMb5IAwJt0NGwHeRtkBywIgGgoPY8jlU2QutWTo/kCwWPC/ecrEpykKJhQG gXne+fMAdQB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAY2aBdub AAAEAwBGMEQCIH4HENsq4ozdZMgOHAdrupQ6RuNAkEPj5wk4JbIDV79RAiBsmmqS v0ORp0bGaAmRqyECXeJY4/gnlnlUGonZVlAp9AB2AFWB1MIWkDYBSuoLm1c8U/DA 5Dh4cCUIFy+jqh0HE9MMAAABjZoF26oAAAQDAEcwRQIhAOPKjHK0WNFry2AZeA9W W+Thwx7IPIDsXIFGE9gmFKZ5AiB7DD/Rec3m/ZmChlt6v20RBvXMQKZqG7WQMcB6 /9+F+DAnBgkrBgEEAYI3FQoEGjAYMAoGCCsGAQUFBwMCMAoGCCsGAQUFBwMBMDwG CSsGAQQBgjcVBwQvMC0GJSsGAQQBgjcVCIe91xuB5+tGgoGdLo7QDIfw2h1dgoTl aYLzpz4CAWQCASYwgbQGCCsGAQUFBwEBBIGnMIGkMHMGCCsGAQUFBzAChmdodHRw Oi8vd3d3Lm1pY3Jvc29mdC5jb20vcGtpb3BzL2NlcnRzL01pY3Jvc29mdCUyMEF6 dXJlJTIwUlNBJTIwVExTJTIwSXNzdWluZyUyMENBJTIwMDglMjAtJTIweHNpZ24u Y3J0MC0GCCsGAQUFBzABhiFodHRwOi8vb25lb2NzcC5taWNyb3NvZnQuY29tL29j c3AwHQYDVR0OBBYEFPAqHxVp7RQCQ9p6mwp2ndxjm3ulMA4GA1UdDwEB/wQEAwIF oDCByAYDVR0RBIHAMIG9ggxvbmVkcml2ZS5jb22CCHAuc2Z4Lm1zggoqLmxpdmUu Y29tggoqLmxpdmUubmV0ghMqLnNreWRyaXZlLmxpdmUuY29tghMqLm9uZWRyaXZl LmxpdmUuY29tgg4qLm9uZWRyaXZlLmNvbYILZC5zZngtZGYubXOCDyoub2R3ZWJi LnN2Yy5tc4IPKi5vZHdlYnAuc3ZjLm1zghAqLm9kd2ViZGYuc3ZjLm1zghAqLm9k d2VicGwuc3ZjLm1zMAwGA1UdEwEB/wQCMAAwagYDVR0fBGMwYTBfoF2gW4ZZaHR0 cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jcmwvTWljcm9zb2Z0JTIwQXp1 cmUlMjBSU0ElMjBUTFMlMjBJc3N1aW5nJTIwQ0ElMjAwOC5jcmwwZgYDVR0gBF8w XTBRBgwrBgEEAYI3TIN9AQEwQTA/BggrBgEFBQcCARYzaHR0cDovL3d3dy5taWNy b3NvZnQuY29tL3BraW9wcy9Eb2NzL1JlcG9zaXRvcnkuaHRtMAgGBmeBDAECAjAf BgNVHSMEGDAWgBT2fi+9gKNKsnBb69+aH9jtymGABzAdBgNVHSUEFjAUBggrBgEF BQcDAgYIKwYBBQUHAwEwDQYJKoZIhvcNAQEMBQADggIBAF6Z3DLgFn6N2pcDDz6W AgGusvynjr4j1uKJsHzhjkw8BjWgzSOKZSjv8Dvg4t9TcM8zMa5SvRZsx/dshH+O JTcSdL9THtW4w0cgE72IGWd4oOkI06P4E+hOaNWVMAK4M5Ftz+IeIdTMcCkYtCsB UJvLri44eAwrk7DGQIqsF0RI8hOLcrpxjtXJdF+qqa20rHmeS1KbxBnZ+LGPsdBM b7I9VD6MQlOov458HqwjLY9/h78H1l5wrTKmPu68S0kacdl1dCjAF5xt3wyp4zM0 IPGK79fLUFOfQo3JLvqc3xtEUX7lc4tbv8qkPEP5Alm2fu34OWdgasfEFsp6uB8L l39beqBmczxBCcmQss8hEL9EY/Br+OxcyVwByoWGDBXZ3gMNDcEHQCJ5DxkrRBoF gQU0UyguLelFpo4Qu/NmqFcQtyyq0vmOGJYEP//EuoapgV0yr68qmcMIQSlsrGob 70vqVl10+kLlLOJy5QmJVyV5wqSXOdruV6i/uxNrUT8bXKww2v+/ccMp6SOY6qSW 3Kge4sF17YBDWtKEAOuS638zOlWoGmnRoQNJRT2ma4vN1Jc4/ujJlMr/uQwMeIi4 +6/97vU7tX2/zFxmKXNZYEb4hwK+R8gzAr7CY7I+uVOJEWtlQ8QkZ3awzlFJcfZR JyTRSGq5bF7nHd+x6Nc6Ukxg -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVFEDR1RotOKHy2EKPYF aMrWzWbh0IWno8gpKcsSnMvrJOro8ZwGtwKfPJ5nKTfNhoQa6es8BtJYPd4uNau8 sM8deMAEdr9gnd+rPlEQqi+swxTJDeqGT5Lk3bCYynLKx3355pt5X5cmV8S4Zdxh GJf8E8tuC/S4S9DspWozwJ82IZTIDUZHDB2fCRMc1BDAaXVaFEiAmRWGW4wavbR3 qLe0ZrUSLJMCrj2La8b3MIHk2zQ1tKE9tm+saAUpg9oK5aLE31CdB1kGscao0pgw mEoCd8yfNpU2Ri33cqk2/81hgK83mvEZPPBJ0OHXCytks9ovQcgapXLeG6ddKdq7 eQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1137345196317334896963648105715890520560312845 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Azure RSA TLS Issuing CA 08' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-11 21:04:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-05 21:04:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'onedrive.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20869393991328507747091659829090080400361971323481423706318192505101661454979107675592929149635168401551039835546502664009283652623366048985090392636862031368844455449935910917148243523483595074059746911269013490916397454972356117179008171414383503307114755047983939707194031692628217860666765377657329495047939426135165342463458941542163226053494164786057167878419775848104938295418866050489357140428596751668403191289010756201891050154331673690935076040188232581040640246969767805238200460738126948149357567260707810308889455857930705931878220174648759179121720541109972086238354836747050816258967800274789148048249 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.15690651.3798470.4214446.239628.16526621.93.4272873.6083518 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 38 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (167 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2008%20-%20xsign.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://oneocsp.microsoft.com/ocsp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f02a1f1569ed140243da7a9b0a769ddc639b7ba5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (192 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onedrive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'p.sfx.ms' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.live.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.skydrive.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.onedrive.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.onedrive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'd.sfx-df.ms' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.odwebb.svc.ms' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.odwebp.svc.ms' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.odwebdf.svc.ms' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.odwebpl.svc.ms' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2008.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.76.509.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pkiops/Docs/Repository.htm' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f67e2fbd80a34ab2705bebdf9a1fd8edca618007 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 005e99dc32e0167e8dda97030f3e960201aeb2fca78ebe23d6e289b07ce18e4c3c0635a0cd238a6528eff03be0e2df5370cf3331ae52bd166cc7f76c847f8e25371274bf531ed5b8c3472013bd88196778a0e908d3a3f813e84e68d5953002b833916dcfe21e21d4cc702918b42b01509bcbae2e38780c2b93b0c6408aac174448f2138b72ba718ed5c9745faaa9adb4ac799e4b529bc419d9f8b18fb1d04c6fb23d543e8c4253a8bf8e7c1eac232d8f7f87bf07d65e70ad32a63eeebc4b491a71d9757428c0179c6ddf0ca9e3333420f18aefd7cb50539f428dc92efa9cdf1b44517ee5738b5bbfcaa43c43f90259b67eedf83967606ac7c416ca7ab81f0b977f5b7aa066733c4109c990b2cf2110bf4463f06bf8ec5cc95c01ca85860c15d9de030d0dc1074022790f192b441a0581053453282e2de945a68e10bbf366a85710b72caad2f98e1896043fffc4ba86a9815d32afaf2a99c30841296cac6a1bef4bea565d74fa42e52ce272e50989572579c2a49739daee57a8bfbb136b513f1b5cac30daffbf71c329e92398eaa496dca81ee2c175ed80435ad28400eb92eb7f333a55a81a69d1a10349453da66b8bcdd49738fee8c994caffb90c0c7888b8fbaffdeef53bb57dbfcc5c662973596046f88702be47c83302bec263b23eb95389116b6543c4246776b0ce514971f6512724d1486ab96c5ee71ddfb1e8d73a524c60