*.nonprod.getty1.net
Issued by Amazon
About this certificate
This digital certificate with serial number 0d:04:c3:40:85:ba:cd:86:b2:11:4c:df:93:cc:39:4d was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.nonprod.getty1.net
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:04:c3:40:85:ba:cd:86:b2:11:4c:df:93:cc:39:4dSerial Number (int): 17304693314500495725424920127511214413
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 7a:3b:0f:a1:d5:6c:e3:1c:09:aa:d3:72:a2:75:fa:cd:92:0e:e0:53
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 6e:d9:41:cc:b5:14:b7:fb:47:97:3e:81:f2:f5:f6:8e:9f:89:19:15
Fingerprint (sha256): bb:84:2f:b1:87:ec:61:e8:3f:aa:55:e6:a2:bb:e3:e7:29:a7:d6:5f:a5:33:34:89:51:ce:5f:f3:90:3b:dc:b7
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.nonprod.getty1.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.nonprod.getty1.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.nonprod.getty1.net
Other certificates including the domain name getty1.net
(limited to 100 certificates)
embed-cdn.gettyimages.com
embed-cdn.gettyimages.com
stage-gateway-api.nonprod.getty1.net
accountmanagement.sandbox.getty1.net
accountmanagement.sandbox.getty1.net
wildcard.prod.getty1.net
wireimage-origin-stage.nonprod.getty1.net
api.gettyimages.com
developer-portal.prod.getty1.net
origin-api.sandbox.getty1.net
wp-mktg.prod.getty1.net
istockcontenthub.lower.getty1.net
wildcard.lower.getty1.net
wp-mktg.prod.getty1.net
wildcard.lower.getty1.net
wildcard.prod.getty1.net
wp-mktg.prod.getty1.net
wp-mktg.prod.getty1.net
thinkstock-origin-production.prod.getty1.net
jake.sandbox.getty1.net
wildcard.prod.getty1.net
api.gettyimages.com
accountmanagement.sandbox.getty1.net
wildcard.lower.getty1.net
accountmanagement.sandbox.getty1.net
unisporkal.sandbox.getty1.net
developer-portal.prod.getty1.net
wildcard.prod.getty1.net
wp-mktg.prod.getty1.net
api.gettyimages.com
wp-istock-inspector.prod.getty1.net
wildcard.nonprod.getty1.net
wildcard.lower.getty1.net
embed-cdn.gettyimages.com
accountmanagement.sandbox.getty1.net
wildcard.prod.getty1.net
wildcard.nonprod.getty1.net
accountmanagement.sandbox.getty1.net
wildcard.lower.getty1.net
wildcard.prod.getty1.net
wildcard.lower.getty1.net
wildcard.sandbox.getty1.net
wireimage-origin-production.prod.getty1.net
accountmanagement.sandbox.getty1.net
api.gettyimages.com
wp-mktg.prod.getty1.net
api.gettyimages.com
wildcard.sandbox.getty1.net
origin-api.gettyimages.com
wildcard.prod.getty1.net
accountmanagement.sandbox.getty1.net
wildcard.nonprod.getty1.net
wildcard.prod.getty1.net
embed.gettyimages.com
origin-api.gettyimages.com
wildcard.sandbox.getty1.net
musiccontrib-origin-stage.nonprod.getty1.net
developer-portal.prod.getty1.net
wildcard.lower.getty1.net
embed-cdn.gettyimages.com
wildcard.lower.getty1.net
developer-portal.prod.getty1.net
wp-istock-inspector.prod.getty1.net
api.gettyimages.com
wp-mktg.sandbox.getty1.net
thinkstock-origin-stage.nonprod.getty1.net
developer-portal.prod.getty1.net
wildcard.nonprod.getty1.net
wildcard.lower.getty1.net
origin-api.nonprod.getty1.net
accountmanagement.sandbox.getty1.net
developer-portal.prod.getty1.net
jake.sandbox.getty1.net
wp-istock-inspector.prod.getty1.net
wp-mktg.prod.getty1.net
api.sandbox.getty1.net
wildcard.prod.getty1.net
wp-mktg.sandbox.getty1.net
wildcard.sandbox.getty1.net
embed.gettyimages.com
entmon-splunk-hec-firehose.shared.getty1.net
wp-mktg.prod.getty1.net
embed-test-cdn.lower.getty1.net
entmon-splunk-hec-firehose.shared.getty1.net
embed.gettyimages.com
*.nonprod.getty1.net
embed-test-cdn.lower.getty1.net
wildcard.lower.getty1.net
wildcard.prod.getty1.net
developer-portal.prod.getty1.net
api.gettyimages.com
entmon-splunk-hec-firehose.nonprod.getty1.net
wp-mktg.prod.getty1.net
wp-mktg.prod.getty1.net
gateway-api.prod.getty1.net
embed-cdn.gettyimages.com
wp-mktg.prod.getty1.net
wildcard.prod.getty1.net
wildcard.lower.getty1.net
gateway-api.prod.getty1.net
embed-cdn.gettyimages.com
stage-gateway-api.nonprod.getty1.net
accountmanagement.sandbox.getty1.net
accountmanagement.sandbox.getty1.net
wildcard.prod.getty1.net
wireimage-origin-stage.nonprod.getty1.net
api.gettyimages.com
developer-portal.prod.getty1.net
origin-api.sandbox.getty1.net
wp-mktg.prod.getty1.net
istockcontenthub.lower.getty1.net
wildcard.lower.getty1.net
wp-mktg.prod.getty1.net
wildcard.lower.getty1.net
wildcard.prod.getty1.net
wp-mktg.prod.getty1.net
wp-mktg.prod.getty1.net
thinkstock-origin-production.prod.getty1.net
jake.sandbox.getty1.net
wildcard.prod.getty1.net
api.gettyimages.com
accountmanagement.sandbox.getty1.net
wildcard.lower.getty1.net
accountmanagement.sandbox.getty1.net
unisporkal.sandbox.getty1.net
developer-portal.prod.getty1.net
wildcard.prod.getty1.net
wp-mktg.prod.getty1.net
api.gettyimages.com
wp-istock-inspector.prod.getty1.net
wildcard.nonprod.getty1.net
wildcard.lower.getty1.net
embed-cdn.gettyimages.com
accountmanagement.sandbox.getty1.net
wildcard.prod.getty1.net
wildcard.nonprod.getty1.net
accountmanagement.sandbox.getty1.net
wildcard.lower.getty1.net
wildcard.prod.getty1.net
wildcard.lower.getty1.net
wildcard.sandbox.getty1.net
wireimage-origin-production.prod.getty1.net
accountmanagement.sandbox.getty1.net
api.gettyimages.com
wp-mktg.prod.getty1.net
api.gettyimages.com
wildcard.sandbox.getty1.net
origin-api.gettyimages.com
wildcard.prod.getty1.net
accountmanagement.sandbox.getty1.net
wildcard.nonprod.getty1.net
wildcard.prod.getty1.net
embed.gettyimages.com
origin-api.gettyimages.com
wildcard.sandbox.getty1.net
musiccontrib-origin-stage.nonprod.getty1.net
developer-portal.prod.getty1.net
wildcard.lower.getty1.net
embed-cdn.gettyimages.com
wildcard.lower.getty1.net
developer-portal.prod.getty1.net
wp-istock-inspector.prod.getty1.net
api.gettyimages.com
wp-mktg.sandbox.getty1.net
thinkstock-origin-stage.nonprod.getty1.net
developer-portal.prod.getty1.net
wildcard.nonprod.getty1.net
wildcard.lower.getty1.net
origin-api.nonprod.getty1.net
accountmanagement.sandbox.getty1.net
developer-portal.prod.getty1.net
jake.sandbox.getty1.net
wp-istock-inspector.prod.getty1.net
wp-mktg.prod.getty1.net
api.sandbox.getty1.net
wildcard.prod.getty1.net
wp-mktg.sandbox.getty1.net
wildcard.sandbox.getty1.net
embed.gettyimages.com
entmon-splunk-hec-firehose.shared.getty1.net
wp-mktg.prod.getty1.net
embed-test-cdn.lower.getty1.net
entmon-splunk-hec-firehose.shared.getty1.net
embed.gettyimages.com
*.nonprod.getty1.net
embed-test-cdn.lower.getty1.net
wildcard.lower.getty1.net
wildcard.prod.getty1.net
developer-portal.prod.getty1.net
api.gettyimages.com
entmon-splunk-hec-firehose.nonprod.getty1.net
wp-mktg.prod.getty1.net
wp-mktg.prod.getty1.net
gateway-api.prod.getty1.net
embed-cdn.gettyimages.com
wp-mktg.prod.getty1.net
wildcard.prod.getty1.net
wildcard.lower.getty1.net
gateway-api.prod.getty1.net
Certificate
The complete raw certificate details for *.nonprod.getty1.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEfjCCA2agAwIBAgIQDQTDQIW6zYayEUzfk8w5TTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xODA4MDYwMDAwMDBaFw0xOTA5MDYx MjAwMDBaMB8xHTAbBgNVBAMMFCoubm9ucHJvZC5nZXR0eTEubmV0MIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0bVCMviDBYaPX8WmMHPGLkMvUmBIl/D5 a8istMkrIMCsQXCRFjNzLCjQxFblx8tpJvkHiPxZ6DjXdxozPRQch4Uqg52CcUXZ 3W2ZFFe8FFwuD70SvmSxDhgUl318Gms4oiose57/b44S62R9IUGibRFzFvJn4Qr7 rP3VA6dKryC+v/k/VlX2MswTdv55GOdGi0sUluNB8Tgj2/02bW8NZGQy1PGd6FnT FZecSZlS3l+a3oMr5wjXGv2m3N2OqDFTEk6QM6x2NnDIHGfTboSQGjRVCChRT94V tPLg5mqD07rnROR/vu/4KObDEJG2Hi1TNU7HzA3S2PbIfKXW4ulOrQIDAQABo4IB jTCCAYkwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYE FHo7D6HVbOMcCarTcqJ1+s2SDuBTMB8GA1UdEQQYMBaCFCoubm9ucHJvZC5nZXR0 eTEubmV0MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250 cnVzdC5jb20vc2NhMWIuY3JsMCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeB DAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNj YTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2Ex Yi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYB BAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAIpLVylyYp48f2qAPhpY 4n+NY9r5tymatwVvFOhAcF2VDKGNlvRVV3GDUbuMqMy0b5sayCWCXtogCR5WfIxR YqZM5cXFQhqy05WkBsxbRkwxu8C67+SCRTxnij2u2ckb3FHNA9QnF2R+0aASd14e LiZDlRESuPmlvgnUq8LbwfZv/nQWroDRMgOAl6lt5/8PxCk0GHkAN10nQ8IdVi03 5OmsAIdf/aKHmrH7j7PbyCXZ6KkGM66J8SfncPOSf98ab6k2VQKGz7ilf7UrV91V s/dCmrtZBU0IxxfS4x2dNIeOkZMfo0VQRV26mjSNwfgquPD9io64JpRtM+cLvc5d kqk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0bVCMviDBYaPX8WmMHPG LkMvUmBIl/D5a8istMkrIMCsQXCRFjNzLCjQxFblx8tpJvkHiPxZ6DjXdxozPRQc h4Uqg52CcUXZ3W2ZFFe8FFwuD70SvmSxDhgUl318Gms4oiose57/b44S62R9IUGi bRFzFvJn4Qr7rP3VA6dKryC+v/k/VlX2MswTdv55GOdGi0sUluNB8Tgj2/02bW8N ZGQy1PGd6FnTFZecSZlS3l+a3oMr5wjXGv2m3N2OqDFTEk6QM6x2NnDIHGfTboSQ GjRVCChRT94VtPLg5mqD07rnROR/vu/4KObDEJG2Hi1TNU7HzA3S2PbIfKXW4ulO rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17304693314500495725424920127511214413 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-06 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.nonprod.getty1.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26473187680070074651180417966715794541520919300306688141286270527355367811120758788615943232678868698353572653835059525623967750438962464224791813824268435197172829495083541596292306012935447519291616650954651084314931337156743109958318790472422953460796569353058598885934667542567233245561166651406453876266091317879242049829968132234345440409218887414414987299937971590360135695861290060272731343287340275943016439408519822061786658168574585670605021444527306848966751797809478803154278233377466294411839465039067059230419997895169717295089345112918361647716568059594286077359012131670391800209015059804320164302509 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7a3b0fa1d56ce31c09aad372a275facd920ee053 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.nonprod.getty1.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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