wallet.subsplash.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0c:44:6a:23:8b:f1:59:4e:e5:9e:18:52:00:4d:20:3d was issued on by Amazon.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=wallet.subsplash.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:44:6a:23:8b:f1:59:4e:e5:9e:18:52:00:4d:20:3dSerial Number (int): 16305964887513223063605304809520701501
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 00:89:27:0b:31:ac:e0:4f:f4:51:0d:53:2d:f0:17:46:4e:52:8b:8f
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): bf:03:52:ff:1d:80:f3:08:d8:01:13:13:79:0e:d1:53:ad:3f:5c:07
Fingerprint (sha256): 9c:b9:d7:a8:e5:49:90:90:ad:c5:fd:9e:f1:d4:f4:1b:e5:03:b0:41:f5:de:cb:d1:65:e8:e0:1f:3a:fa:25:ac
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate wallet.subsplash.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for wallet.subsplash.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
wallet.subsplash.com
*.prod.giving.subsplash.net
prod.giving.subsplash.net
*.giving.subsplash.net
giving.subsplash.net
*.prod.giving.subsplash.net
prod.giving.subsplash.net
*.giving.subsplash.net
giving.subsplash.net
Other certificates including the domain name subsplash.com
(limited to 100 certificates)
*.subsplash.com
dashboard.dev.subsplash.com
cg-status.isr.co.jp
statuspage.io
cg-status.isr.co.jp
*.subsplash.com
*.static.subsplash.com
cg-status.isr.co.jp
cg-status.isr.co.jp
statuspage.io
cg-status.isr.co.jp
subsplash.com
statuspage.io
casb.status.symantec.com
statuspage.io
statuspage.io
casb.status.symantec.com
subsplash.com
statuspage.io
cg-status.isr.co.jp
*.ci.subsplash.com
statuspage.io
cg-status.isr.co.jp
statuspage.io
hello.subsplash.com
hello.subsplash.com
secure.subsplash.com
*.cdn.subsplash.com
statuspage.io
www.subsplash.com
secure.subsplash.com
cg-status.isr.co.jp
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
*.dev.subsplash.com
statuspage.io
cg-status.isr.co.jp
www.subsplash.com
statuspage.io
*.dev.subsplash.com
*.subsplash.com
*.stage.subsplash.com
statuspage.io
wallet.subsplash.com
www.subsplash.com
secure.subsplash.com
hello.subsplash.com
www.subsplash.com
cg-status.isr.co.jp
*.subsplash.com
cg-status.isr.co.jp
statuspage.io
www.subsplash.com
www.subsplash.com
cg-status.isr.co.jp
statuspage.io
statuspage.io
statuspage.io
wallet.subsplash.com
*.subsplash.com
secure.subsplash.com
statuspage.io
statuspage.io
support.subsplash.com
cg-status.isr.co.jp
subsplash.com
cg-status.isr.co.jp
secure.subsplash.com
subsplash.com
statuspage.io
statuspage.io
cg-status.isr.co.jp
cg-status.isr.co.jp
hello.subsplash.com
www.subsplash.com
*.wallet.subsplash.com
statuspage.io
wallet.subsplash.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
support.subsplash.com
statuspage.io
statuspage.io
cg-status.isr.co.jp
pi.subsplash.com
cg-status.isr.co.jp
statuspage.io
cg-status.isr.co.jp
statuspage.io
cg-status.isr.co.jp
*.subsplash.com
*.thechurchapp.org
subsplash.com
support.subsplash.com
statuspage.io
dashboard.dev.subsplash.com
cg-status.isr.co.jp
statuspage.io
cg-status.isr.co.jp
*.subsplash.com
*.static.subsplash.com
cg-status.isr.co.jp
cg-status.isr.co.jp
statuspage.io
cg-status.isr.co.jp
subsplash.com
statuspage.io
casb.status.symantec.com
statuspage.io
statuspage.io
casb.status.symantec.com
subsplash.com
statuspage.io
cg-status.isr.co.jp
*.ci.subsplash.com
statuspage.io
cg-status.isr.co.jp
statuspage.io
hello.subsplash.com
hello.subsplash.com
secure.subsplash.com
*.cdn.subsplash.com
statuspage.io
www.subsplash.com
secure.subsplash.com
cg-status.isr.co.jp
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
*.dev.subsplash.com
statuspage.io
cg-status.isr.co.jp
www.subsplash.com
statuspage.io
*.dev.subsplash.com
*.subsplash.com
*.stage.subsplash.com
statuspage.io
wallet.subsplash.com
www.subsplash.com
secure.subsplash.com
hello.subsplash.com
www.subsplash.com
cg-status.isr.co.jp
*.subsplash.com
cg-status.isr.co.jp
statuspage.io
www.subsplash.com
www.subsplash.com
cg-status.isr.co.jp
statuspage.io
statuspage.io
statuspage.io
wallet.subsplash.com
*.subsplash.com
secure.subsplash.com
statuspage.io
statuspage.io
support.subsplash.com
cg-status.isr.co.jp
subsplash.com
cg-status.isr.co.jp
secure.subsplash.com
subsplash.com
statuspage.io
statuspage.io
cg-status.isr.co.jp
cg-status.isr.co.jp
hello.subsplash.com
www.subsplash.com
*.wallet.subsplash.com
statuspage.io
wallet.subsplash.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
support.subsplash.com
statuspage.io
statuspage.io
cg-status.isr.co.jp
pi.subsplash.com
cg-status.isr.co.jp
statuspage.io
cg-status.isr.co.jp
statuspage.io
cg-status.isr.co.jp
*.subsplash.com
*.thechurchapp.org
subsplash.com
support.subsplash.com
statuspage.io
Certificate
The complete raw certificate details for wallet.subsplash.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRzCCBS+gAwIBAgIQDERqI4vxWU7lnhhSAE0gPTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA1MDUwMDAwMDBaFw0yMzA2MDMy MzU5NTlaMB8xHTAbBgNVBAMTFHdhbGxldC5zdWJzcGxhc2guY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0CDSl38LHOAlH+RB6FabwLWOqQaqKL0 JBlr0cldDDSd4got5RpMEMIW+wz9SneeK7ROx3f8CpPm60AzGZC/tzgCvm2ZXhmd mOU3N3wHpGj3k1eXm0C5bhMACcmBHn1ze5/lKBhRw9wY05Aj1dyM8Pu6auEkY70U cqGo04eAYa7NOA3ITQmqya+mEf9L2Zk5JaHU/h4hSPk0VylSYHWagGa7cyQsfzVp x+T+AlaN0cItvc7PX/C2xS5d3y/oGwm7XFxTUV4xqt/q2AvjkoDUbdRtqTs7wKUW PGSL8IbefmY0VVsfSCODTq6Ni78tueH4i18EJ0kDEZfxuuOHguYcNQIDAQABo4ID VjCCA1IwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYE FACJJwsxrOBP9FENUy3wF0ZOUouPMIGFBgNVHREEfjB8ghR3YWxsZXQuc3Vic3Bs YXNoLmNvbYIbKi5wcm9kLmdpdmluZy5zdWJzcGxhc2gubmV0ghlwcm9kLmdpdmlu Zy5zdWJzcGxhc2gubmV0ghYqLmdpdmluZy5zdWJzcGxhc2gubmV0ghRnaXZpbmcu c3Vic3BsYXNoLm5ldDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMD0GA1UdHwQ2MDQwMqAwoC6GLGh0dHA6Ly9jcmwuc2NhMWIu YW1hem9udHJ1c3QuY29tL3NjYTFiLTEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIB MHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Auc2NhMWIu YW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNjYTFiLmFt YXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB 1nkCBAIEggFuBIIBagFoAHYA6D7Q2j71BjUy51covIlryQPTy9ERa+zraeF3fW0G vW4AAAGAkZStdgAABAMARzBFAiArBNTqixRWQ3D5SO8WvYO/EWg7d99HnPH7lXNu T276BwIhAPH7iI6xcTdYQUA7cltUviiie3WgEo6RgT9H0nolyfJEAHYANc8ZG7+x bFe/D61MbULLu7YnICZR6j/hKu+oA8M71kwAAAGAkZStggAABAMARzBFAiBvFFb6 5wm4sWcyx5QMLxzKyju3sE/Oez7NA85vdGEuawIhAIKcdPUg8/M6wmqC4DcFty2u E6ioWqMmUGIQVzmfpwI9AHYAs3N3B+GEUPhjhtYFqdwRCUp5LbFnDAuH3PADDnk2 pZoAAAGAkZStoAAABAMARzBFAiBBJEuI9ji6ulkFlMFEdaooh7jv6nk71dYo8jWq xoNEuAIhAJ00FQ+ZMbe+0dzpDvNn/0+t7lKafwoe/MElyrAXGpq0MA0GCSqGSIb3 DQEBCwUAA4IBAQAHvXkvbtZ8a6VvZR0DpzcaSPEjO3YXBZG0EoMqDQFHM/peBpq+ uxI59reB/nh2WGQDF2N6f4Fcy+e+LlX0vD3A0DHPQvC6MQokfEoUdU7OMux3ES+E EUNZIZ07Jam6IHCDesIFJ91VesWwRJD/wKaGy7PWrtdtRDO6pKuXLIRHEMbDOv6N w6op+mHkWVlN7WRgXPjPxylmaAcowkmAKGPkYHcWV5uE6FuGFEh0oChU46peErjO PXHVX/71XU98eXF4Ruu2GLDPWUm8RFFpp7AaQFLSq82YxPSlx+QC8d2T5XeJs9r3 z7lBfvVrNSwrh80FPumG/ksjVj85iHdbu+3L -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0CDSl38LHOAlH+RB6Fa bwLWOqQaqKL0JBlr0cldDDSd4got5RpMEMIW+wz9SneeK7ROx3f8CpPm60AzGZC/ tzgCvm2ZXhmdmOU3N3wHpGj3k1eXm0C5bhMACcmBHn1ze5/lKBhRw9wY05Aj1dyM 8Pu6auEkY70UcqGo04eAYa7NOA3ITQmqya+mEf9L2Zk5JaHU/h4hSPk0VylSYHWa gGa7cyQsfzVpx+T+AlaN0cItvc7PX/C2xS5d3y/oGwm7XFxTUV4xqt/q2AvjkoDU bdRtqTs7wKUWPGSL8IbefmY0VVsfSCODTq6Ni78tueH4i18EJ0kDEZfxuuOHguYc NQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16305964887513223063605304809520701501 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'wallet.subsplash.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23638375502382097512239811736158917574527228477245420684540279384301448025052476483254399257181756543476289928220824255878653551579479234250260742587415049001786406837036248901427514254371145256264326234925082012759693396719756196614877798835058766355973295963797534674811488030701482841813807374932917667065912230295528953835574436390078800693427420308231514243181850221299720057031901427508002616034888420367604155765998883369026138768515437245923123513558263322766198584779025676141466616380799271112369426250750924677072121920691989014044495979549437972991456825557973193146937034425003332212014032683173102885941 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0089270b31ace04ff4510d532df017464e528b8f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wallet.subsplash.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod.giving.subsplash.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod.giving.subsplash.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.giving.subsplash.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giving.subsplash.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 0168007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e000001809194ad76000004030047304502202b04d4ea8b14564370f948ef16bd83bf11683b77df479cf1fb95736e4f6efa07022100f1fb888eb171375841403b725b54be28a27b75a0128e91813f47d27a25c9f24400760035cf191bbfb16c57bf0fad4c6d42cbbbb627202651ea3fe12aefa803c33bd64c000001809194ad82000004030047304502206f1456fae709b8b16732c7940c2f1ccaca3bb7b04fce7b3ecd03ce6f74612e6b022100829c74f520f3f33ac26a82e03705b72dae13a8a85aa32650621057399fa7023d007600b3737707e18450f86386d605a9dc11094a792db1670c0b87dcf0030e7936a59a000001809194ada00000040300473045022041244b88f638baba590594c14475aa2887b8efea793bd5d628f235aac68344b80221009d34150f9931b7bed1dce90ef367ff4fadee529a7f0a1efcc125cab0171a9ab4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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