carsgenius.com
Issued by Amazon
About this certificate
This digital certificate with serial number 09:1a:27:d8:79:8f:a5:81:14:c2:2f:50:34:b0:b3:da was issued on by Amazon.
With 21 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=carsgenius.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:1a:27:d8:79:8f:a5:81:14:c2:2f:50:34:b0:b3:daSerial Number (int): 12098859845265138022902624930818470874
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 1b:2c:ee:c2:13:18:e2:81:09:9b:cf:82:b0:e7:10:b8:c0:7e:b4:65
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): d5:cf:af:8d:18:f8:e7:62:dd:7b:6c:09:20:cc:54:9f:6f:2a:d5:d2
Fingerprint (sha256): 9a:1c:78:c2:59:bf:94:38:90:db:71:70:d1:ac:df:f8:7f:4c:32:5e:e0:9d:6b:fb:d2:e5:ca:45:d0:8c:21:4c
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate carsgenius.com
21
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for carsgenius.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
carsgenius.com
*.travel.s1-mq.com
*.intelligentintent.net
system1.com
*.blog.s1-sp.com
*.prod.forkly.com
blog.s1-sp.com
*.prod.travel.s1-mq.com
travel.s1-mq.com
*.prod.blog.s1-sp.com
intelligentintent.net
*.prod.startpage-cms.com
*.startpage-cms.com
*.system1.com
*.prod.system1.com
*.prod.intelligentintent.net
forkly.com
*.wealthversed.com
wealthversed.com
*.prod.wealthversed.com
*.forkly.com
*.travel.s1-mq.com
*.intelligentintent.net
system1.com
*.blog.s1-sp.com
*.prod.forkly.com
blog.s1-sp.com
*.prod.travel.s1-mq.com
travel.s1-mq.com
*.prod.blog.s1-sp.com
intelligentintent.net
*.prod.startpage-cms.com
*.startpage-cms.com
*.system1.com
*.prod.system1.com
*.prod.intelligentintent.net
forkly.com
*.wealthversed.com
wealthversed.com
*.prod.wealthversed.com
*.forkly.com
Other certificates including the domain name carsgenius.com
(limited to 100 certificates)
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
cdn.buy.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
pubwp-admin-prod.k.system1.company
carsgenius.com
carsgenius.com
*.myloveluxe.com
content.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
goto.net
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
cdn.buy.carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
goto.net
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
wealthversed.com
search.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
wealthversed.com
carsgenius.com
carsgenius.com
carsgenius.com
search.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
cdn.buy.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
pubwp-admin-prod.k.system1.company
carsgenius.com
carsgenius.com
*.myloveluxe.com
content.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
goto.net
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
cdn.buy.carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
goto.net
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
wealthversed.com
search.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
wealthversed.com
carsgenius.com
carsgenius.com
carsgenius.com
search.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
Certificate
The complete raw certificate details for carsgenius.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHajCCBlKgAwIBAgIQCRon2HmPpYEUwi9QNLCz2jANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA2MjIwMDAwMDBaFw0yMzA3MjEy MzU5NTlaMBkxFzAVBgNVBAMTDmNhcnNnZW5pdXMuY29tMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEA2AdnNS3ucEuft6lHHy8yV4SZ+Ihosi7JaQV2kEZE wyBkQMfw7XIaqxfaY2YKyWpKxRC6J8qTV/bi8wbk3ouKIjCuNnRiPwLyM78UyrGo /LujP9II8CEuFlp0WqBQ29ZC/i/RmsVuGAqkqrVc5GigopcMiIcMAao7bvLieE6u xRcgX7NuGaX+8Njv0cF1/N/KBklhgo9o4cvjEhC9bwusxBmLERKzPhP4acpn2hoQ ZeXfINjK5OShsfL8NxgskfsWs4rsgPDXJ4A+mPetkC0tcuuZzio39lXqN21BtRMv 4BrdPyg1S/WIJkDRY8bDXEEkvN7q/1EvNurqk84DDBGamwIDAQABo4IEfzCCBHsw HwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFBss7sIT GOKBCZvPgrDnELjAfrRlMIIBrgYDVR0RBIIBpTCCAaGCDmNhcnNnZW5pdXMuY29t ghIqLnRyYXZlbC5zMS1tcS5jb22CFyouaW50ZWxsaWdlbnRpbnRlbnQubmV0ggtz eXN0ZW0xLmNvbYIQKi5ibG9nLnMxLXNwLmNvbYIRKi5wcm9kLmZvcmtseS5jb22C DmJsb2cuczEtc3AuY29tghcqLnByb2QudHJhdmVsLnMxLW1xLmNvbYIQdHJhdmVs LnMxLW1xLmNvbYIVKi5wcm9kLmJsb2cuczEtc3AuY29tghVpbnRlbGxpZ2VudGlu dGVudC5uZXSCGCoucHJvZC5zdGFydHBhZ2UtY21zLmNvbYITKi5zdGFydHBhZ2Ut Y21zLmNvbYINKi5zeXN0ZW0xLmNvbYISKi5wcm9kLnN5c3RlbTEuY29tghwqLnBy b2QuaW50ZWxsaWdlbnRpbnRlbnQubmV0ggpmb3JrbHkuY29tghIqLndlYWx0aHZl cnNlZC5jb22CEHdlYWx0aHZlcnNlZC5jb22CFyoucHJvZC53ZWFsdGh2ZXJzZWQu Y29tggwqLmZvcmtseS5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjA9BgNVHR8ENjA0MDKgMKAuhixodHRwOi8vY3JsLnNj YTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi0xLmNybDATBgNVHSAEDDAKMAgGBmeB DAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNj YTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2Ex Yi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwggF9Bgor BgEEAdZ5AgQCBIIBbQSCAWkBZwB1AK33vvp8/xDIi509nB4+GGq0Zyldz7EMJMqF hjTr3IKKAAABgYve41cAAAQDAEYwRAIgQ1GrE+O99zwrejntLPcJlhtsmc8Qzi89 teOKMoXMtRsCIFRcRLHPCFzQnVCeD4YAiTrecI8COMfq/mGuA77LmSXIAHYANc8Z G7+xbFe/D61MbULLu7YnICZR6j/hKu+oA8M71kwAAAGBi97jRwAABAMARzBFAiEA 7xeLPSZC8I3M/1wJrFBG25G8u21yybXfNFrgr0TOyzsCIF7hHNx0/3FDMps4sQp0 8v97DRcHi0aYSdCm0+oJoUUuAHYAs3N3B+GEUPhjhtYFqdwRCUp5LbFnDAuH3PAD Dnk2pZoAAAGBi97jcAAABAMARzBFAiEApOnjchpwxIrB97ssODCDQ/7Q0gt0tIA1 mkBbs83py3YCIG0d+GkzWO1aqr0cKNltGe9IhPEZxGLPxT87pIqXPtchMA0GCSqG SIb3DQEBCwUAA4IBAQBQZNnqBK3mrlBFBR9FY+qHzsuYtqzI4SMDAZ3XhudFpI9N QPqhVR+5pOqP101i2MXSaF8BVP+nhu2SuwBBgyVzVtsrO+pQkJ5ilYFD4UfyB1TL OflFzpvmrZjwyxBSq8ETS2x4622/3yiwB5cOADO6PbNLl+K8icU8dsU4d1GuFfbU YvRd/Y8TNX8T/KL5xsxEdQA7UMuYEgu1Cla9CIArLfQv1Q/s77pS522ecLfTMDE+ c3ws2oETeRb8Zvru0XJFOvWkaIW6SAR55vxmfuXmpZzE38vAsl+k4+ri3fOgGw6i QVUx9Es4espw9UJX4+23byrDE+ZYwxrSDkPS0AH/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2AdnNS3ucEuft6lHHy8y V4SZ+Ihosi7JaQV2kEZEwyBkQMfw7XIaqxfaY2YKyWpKxRC6J8qTV/bi8wbk3ouK IjCuNnRiPwLyM78UyrGo/LujP9II8CEuFlp0WqBQ29ZC/i/RmsVuGAqkqrVc5Gig opcMiIcMAao7bvLieE6uxRcgX7NuGaX+8Njv0cF1/N/KBklhgo9o4cvjEhC9bwus xBmLERKzPhP4acpn2hoQZeXfINjK5OShsfL8NxgskfsWs4rsgPDXJ4A+mPetkC0t cuuZzio39lXqN21BtRMv4BrdPyg1S/WIJkDRY8bDXEEkvN7q/1EvNurqk84DDBGa mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12098859845265138022902624930818470874 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'carsgenius.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27271124504560444428632279451308813270444011445038827075384945611139227271624594015407714651995244314966789013469645110944868805712126961477438969240307825562158164073963767562838271273738866456359210538150771266221619068063446280825101968673307691574671835958889320298916382238207783554507527341994960179778196566646018776085209646232244143111174898664511226878504039674448173390115197307862535143303224934301584117813234714298083016946181133625050787065433309338038507085088519897740637895811701487331456952049302687082976376444031126741873430082989446615457880454930776245400076477717280286651367566952974959876763 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1b2ceec21318e281099bcf82b0e710b8c07eb465 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (421 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'carsgenius.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.travel.s1-mq.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.intelligentintent.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'system1.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.blog.s1-sp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod.forkly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.s1-sp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod.travel.s1-mq.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'travel.s1-mq.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod.blog.s1-sp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intelligentintent.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod.startpage-cms.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.startpage-cms.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.system1.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod.system1.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod.intelligentintent.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'forkly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wealthversed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wealthversed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod.wealthversed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.forkly.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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