*.torontolife.com
Issued by Amazon
About this certificate
This digital certificate with serial number 02:c5:ff:ad:69:21:ce:87:5f:f9:2e:20:71:61:23:11 was issued on by Amazon.
With 25 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.torontolife.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:c5:ff:ad:69:21:ce:87:5f:f9:2e:20:71:61:23:11Serial Number (int): 3686524226159034820326677625849324305
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: a3:74:72:cb:ed:c3:c0:d4:69:33:a4:7a:3b:32:9a:ef:b4:7d:4c:c1
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 29:1d:b5:7d:44:43:3c:6b:1c:70:85:17:db:fa:6d:ae:44:5c:c7:f0
Fingerprint (sha256): b8:6a:ad:11:65:92:9c:6c:7a:ee:bb:fc:f0:6d:fe:67:bb:79:e5:28:b9:eb:b2:96:40:18:1c:37:df:f6:e8:b3
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.torontolife.com
25
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.torontolife.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.torontolife.com
ottawamagazine.com
*.ottawamagazine.com
todaysparent.com
*.fr.chatelaine.darwin.cx
4000-15-684578694a-shop.darwin.cx
hellomagazine.ca
chatelaine.com
*.todaysparent.com
fashionmagazine.com
*.chatelaine.com
mightymag.ca
*.hellomagazine.ca
macleans.ca
*.quillandquire.com
*.macleans.darwin.cx
*.fr.chatelaine.com
*.hellomagazine.darwin.cx
torontolife.com
*.chatelaine.darwin.cx
quillandquire.com
*.macleans.ca
*.todaysparent.darwin.cx
*.mightymag.ca
*.fashionmagazine.com
ottawamagazine.com
*.ottawamagazine.com
todaysparent.com
*.fr.chatelaine.darwin.cx
4000-15-684578694a-shop.darwin.cx
hellomagazine.ca
chatelaine.com
*.todaysparent.com
fashionmagazine.com
*.chatelaine.com
mightymag.ca
*.hellomagazine.ca
macleans.ca
*.quillandquire.com
*.macleans.darwin.cx
*.fr.chatelaine.com
*.hellomagazine.darwin.cx
torontolife.com
*.chatelaine.darwin.cx
quillandquire.com
*.macleans.ca
*.todaysparent.darwin.cx
*.mightymag.ca
*.fashionmagazine.com
Other certificates including the domain name torontolife.com
(limited to 100 certificates)
stage.torontolife.com
nfoon.torontolife.com
stage.torontolife.com
torontolife.com
stage.torontolife.com
tburden.torontolife.com
www.torontolife.com
torontolife.com
secure.torontolife.com
members.torontolife.com
www.torontolife.com
*.torontolife.com
*.torontolife.com
members.torontolife.com
nfoon.torontolife.com
dev.torontolife.com
tburden.torontolife.com
qa.torontolife.com
*.torontolife.com
dev.torontolife.com
www.torontolife.com
*.torontolife.com
stage.torontolife.com
members.torontolife.com
secure.torontolife.com
torontolife.com
qa.torontolife.com
bhill.torontolife.com
stage.torontolife.com
dev.torontolife.com
*.torontolife.com
*.torontolife.com
qa.torontolife.com
secure.torontolife.com
*.torontolife.com
udobrowolska.torontolife.com
stage.torontolife.com
torontolife.com
stage.torontolife.com
torontolife.com
www.torontolife.com
tburden.torontolife.com
qa.torontolife.com
dev.torontolife.com
stage.torontolife.com
*.torontolife.com
udobrowolska.torontolife.com
ebrukson.torontolife.com
www.torontolife.com
stage.torontolife.com
torontolife.com
secure.torontolife.com
www.torontolife.com
hbaradaran.torontolife.com
dev.torontolife.com
dev.torontolife.com
www.torontolife.com
dev.torontolife.com
stage.torontolife.com
jmykolyn.torontolife.com
dev.torontolife.com
tburden.torontolife.com
torontolife.com
tburden.torontolife.com
dev.torontolife.com
tburden.torontolife.com
www.torontolife.com
*.torontolife.com
torontolife.com
www.torontolife.com
nfoon.torontolife.com
members.torontolife.com
*.torontolife.com
*.torontolife.com
torontolife.com
hbaradaran.torontolife.com
*.torontolife.com
tburden.torontolife.com
dev.torontolife.com
hbaradaran.torontolife.com
torontolife.com
listings.torontolife.com
stage.torontolife.com
torontolife.com
*.torontolife.com
tburden.torontolife.com
dev.torontolife.com
members.torontolife.com
members.torontolife.com
www.torontolife.com
*.torontolife.com
www.torontolife.com
*.torontolife.com
dev.torontolife.com
*.torontolife.com
tburden.torontolife.com
www.torontolife.com
*.torontolife.com
torontolife.com
*.torontolife.com
nfoon.torontolife.com
stage.torontolife.com
torontolife.com
stage.torontolife.com
tburden.torontolife.com
www.torontolife.com
torontolife.com
secure.torontolife.com
members.torontolife.com
www.torontolife.com
*.torontolife.com
*.torontolife.com
members.torontolife.com
nfoon.torontolife.com
dev.torontolife.com
tburden.torontolife.com
qa.torontolife.com
*.torontolife.com
dev.torontolife.com
www.torontolife.com
*.torontolife.com
stage.torontolife.com
members.torontolife.com
secure.torontolife.com
torontolife.com
qa.torontolife.com
bhill.torontolife.com
stage.torontolife.com
dev.torontolife.com
*.torontolife.com
*.torontolife.com
qa.torontolife.com
secure.torontolife.com
*.torontolife.com
udobrowolska.torontolife.com
stage.torontolife.com
torontolife.com
stage.torontolife.com
torontolife.com
www.torontolife.com
tburden.torontolife.com
qa.torontolife.com
dev.torontolife.com
stage.torontolife.com
*.torontolife.com
udobrowolska.torontolife.com
ebrukson.torontolife.com
www.torontolife.com
stage.torontolife.com
torontolife.com
secure.torontolife.com
www.torontolife.com
hbaradaran.torontolife.com
dev.torontolife.com
dev.torontolife.com
www.torontolife.com
dev.torontolife.com
stage.torontolife.com
jmykolyn.torontolife.com
dev.torontolife.com
tburden.torontolife.com
torontolife.com
tburden.torontolife.com
dev.torontolife.com
tburden.torontolife.com
www.torontolife.com
*.torontolife.com
torontolife.com
www.torontolife.com
nfoon.torontolife.com
members.torontolife.com
*.torontolife.com
*.torontolife.com
torontolife.com
hbaradaran.torontolife.com
*.torontolife.com
tburden.torontolife.com
dev.torontolife.com
hbaradaran.torontolife.com
torontolife.com
listings.torontolife.com
stage.torontolife.com
torontolife.com
*.torontolife.com
tburden.torontolife.com
dev.torontolife.com
members.torontolife.com
members.torontolife.com
www.torontolife.com
*.torontolife.com
www.torontolife.com
*.torontolife.com
dev.torontolife.com
*.torontolife.com
tburden.torontolife.com
www.torontolife.com
*.torontolife.com
torontolife.com
*.torontolife.com
Certificate
The complete raw certificate details for *.torontolife.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGazCCBVOgAwIBAgIQAsX/rWkhzodf+S4gcWEjETANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDA0MTMwMDAwMDBaFw0yMTA1MTMx MjAwMDBaMBwxGjAYBgNVBAMMESoudG9yb250b2xpZmUuY29tMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm2cU8ysWSA0jG066ClOYO4Ei0L+MnM2KL9a2 /MpTIL7tdGW1m2YKeDtN18XfrTA5Za5xTuR9kN08QYVpgH+IcFoqp9YsMUY/SUdl kbJCJUXeLVqiqXLNEN0H8E4siQjNVjpfBqaXtVYTAqgU+lRp1p4r06j+dLJ1gv46 iqHuueV5q48VWysYnnbDweNCO5lkBV/lND6gk2ZZKS6dvuyovuBJEtaVZgzLKhMn dZBKxul28OJj03EoV8Ia/KOASOVTZ/uz1uTLb9fiIhHEn4eAhaVoUZIB9Wsrlt07 4VQV6RMxW58rU9GXwAqkYgkkJKkUpnZEmjpQaEod4xVmvNTobwIDAQABo4IDfTCC A3kwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFKN0 csvtw8DUaTOkejsymu+0fUzBMIICDQYDVR0RBIICBDCCAgCCESoudG9yb250b2xp ZmUuY29tghJvdHRhd2FtYWdhemluZS5jb22CFCoub3R0YXdhbWFnYXppbmUuY29t ghB0b2RheXNwYXJlbnQuY29tghkqLmZyLmNoYXRlbGFpbmUuZGFyd2luLmN4giE0 MDAwLTE1LTY4NDU3ODY5NGEtc2hvcC5kYXJ3aW4uY3iCEGhlbGxvbWFnYXppbmUu Y2GCDmNoYXRlbGFpbmUuY29tghIqLnRvZGF5c3BhcmVudC5jb22CE2Zhc2hpb25t YWdhemluZS5jb22CECouY2hhdGVsYWluZS5jb22CDG1pZ2h0eW1hZy5jYYISKi5o ZWxsb21hZ2F6aW5lLmNhggttYWNsZWFucy5jYYITKi5xdWlsbGFuZHF1aXJlLmNv bYIUKi5tYWNsZWFucy5kYXJ3aW4uY3iCEyouZnIuY2hhdGVsYWluZS5jb22CGSou aGVsbG9tYWdhemluZS5kYXJ3aW4uY3iCD3Rvcm9udG9saWZlLmNvbYIWKi5jaGF0 ZWxhaW5lLmRhcndpbi5jeIIRcXVpbGxhbmRxdWlyZS5jb22CDSoubWFjbGVhbnMu Y2GCGCoudG9kYXlzcGFyZW50LmRhcndpbi5jeIIOKi5taWdodHltYWcuY2GCFSou ZmFzaGlvbm1hZ2F6aW5lLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwu c2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCG SAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFo dHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0 dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMB Af8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBo TJ9E+ZOpAdaauoUBkV8U8p7jDWwoEmJI9zO0T3R2+dz+LzrMElMvQ3mLu1FDPyqi 2J0n3uAyce8ZJEtC5TWEauHwobhjqEfhalP8wpwfrcKcRDQZxQHQhEbP+A1ELefe cUTpsqZjVA3O+/fWhQlx1MnOd7xzCdPwBybOtG4QNwkRG7CLO2JIXQ2m42bhu8tq lktun2ItETWtc4oF1mGZlPXu8Oinycl3PxXrbPi9N7XHNIuzTkezSqYniYFST34n NzW/EkA45vXYAVCoDz756hVghF03EDZ8q3RnQ1NB7/Rtox3OAt2hTYGVrNTLDh4I dEQgUG/NDWjB591tGMFa -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm2cU8ysWSA0jG066ClOY O4Ei0L+MnM2KL9a2/MpTIL7tdGW1m2YKeDtN18XfrTA5Za5xTuR9kN08QYVpgH+I cFoqp9YsMUY/SUdlkbJCJUXeLVqiqXLNEN0H8E4siQjNVjpfBqaXtVYTAqgU+lRp 1p4r06j+dLJ1gv46iqHuueV5q48VWysYnnbDweNCO5lkBV/lND6gk2ZZKS6dvuyo vuBJEtaVZgzLKhMndZBKxul28OJj03EoV8Ia/KOASOVTZ/uz1uTLb9fiIhHEn4eA haVoUZIB9Wsrlt074VQV6RMxW58rU9GXwAqkYgkkJKkUpnZEmjpQaEod4xVmvNTo bwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3686524226159034820326677625849324305 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.torontolife.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19617768817319142129674299874648274720569015259658040998405322975310236579920501977079956629631103415773094425812255256297471690437612105075676924250755443402240580481246918129373569489905091645700154446930588709030698441700817540899204292588186502329701417329810289273616625520268021873072136729903146642234624660997623167943774564071951385005236775069918747847423883032923525423081616692698271715500115291806479753426051524605637335626987600173444408626308844601647003576934583722558894698056315702196737646284566485280788020384568587839636707837676554187933178833254385661268433207935142590303865839686052843153519 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a37472cbedc3c0d46933a47a3b329aefb47d4cc1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (516 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.torontolife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ottawamagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ottawamagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'todaysparent.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fr.chatelaine.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '4000-15-684578694a-shop.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hellomagazine.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chatelaine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.todaysparent.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fashionmagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chatelaine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mightymag.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hellomagazine.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'macleans.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.quillandquire.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.macleans.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fr.chatelaine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hellomagazine.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'torontolife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chatelaine.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quillandquire.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.macleans.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.todaysparent.darwin.cx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mightymag.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fashionmagazine.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00684c9f44f993a901d69aba8501915f14f29ee30d6c28126248f733b44f7476f9dcfe2f3acc12532f43798bbb51433f2aa2d89d27dee03271ef19244b42e535846ae1f0a1b863a847e16a53fcc29c1fadc29c443419c501d08446cff80d442de7de7144e9b2a663540dcefbf7d6850971d4c9ce77bc7309d3f00726ceb46e103709111bb08b3b62485d0da6e366e1bbcb6a964b6e9f622d1135ad738a05d6619994f5eef0e8a7c9c9773f15eb6cf8bd37b5c7348bb34e47b34aa6278981524f7e273735bf124038e6f5d80150a80f3ef9ea1560845d3710367cab7467435341eff46da31dce02dda14d8195acd4cb0e1e08744420506fcd0d68c1e7dd6d18c15a