supportdiagnostics.partners.extranet.microsoft.com
Issued by MSIT Machine Auth CA 2
About this certificate
This digital certificate with serial number 7e:5a:24:7a:00:01:00:00:2f:d5 was issued on byMSIT Machine Auth CA 2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates MUST contain the Subject Alternate Name extension (BRs: 7.1.4.2.1)
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: authorityInformationAccess MUST contain the HTTP URL of the Issuing CA's OSCP responder. (BRs: 7.1.2.3)
- Subscriber certificates must contain at least one policy identifier that indicates adherence to CAB standards (BRs: 7.1.2.3)
- Subscriber Certificate: certificatePolicies MUST be present and SHOULD NOT be marked critical. (BRs: 7.1.2.3)
- The common name field in subscriber certificates must include only names from the SAN extension (BRs: 7.1.4.2.2)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
- Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate, for public certificates this should not be an internal name (BRs: 7.1.2.10.3)
Certificate Subject
CN=supportdiagnostics.partners.extranet.microsoft.com
MSIT Machine Auth CA 2
This certificate has expire since
Certificate Details
Serial Number (hex): 7e:5a:24:7a:00:01:00:00:2f:d5Serial Number (int): 596681012221545975656405
Serial Number lenght: 79 bits, 10 octets
SubjectKeyId: 1f:d3:c3:d8:28:c6:ad:1b:a9:d5:fa:29:31:b6:2a:05:58:89:8c:50
AuthorityKeyId: eb:db:11:5e:f8:09:9e:d8:d6:62:9c:fd:62:9d:e3:84:4a:28:e1:27
Fingerprint (sha1): e7:0d:39:12:d5:14:bc:5f:18:8e:0f:29:91:74:b5:e9:6e:cb:c2:40
Fingerprint (sha256): bd:39:2e:69:b6:5a:f3:b2:34:fd:04:4f:c0:8f:ea:c1:bf:93:39:a4:2b:01:41:99:79:a3:7c:5c:45:e6:aa:04
Issuing Certificate URL: http://www.microsoft.com/pki/mscorp/MSIT%20Machine%20Auth%20CA%202(1).crt
Issuing Certificate URL: http://corppki/aia/MSIT%20Machine%20Auth%20CA%202(1).crt
Revocation information
CRL Distribution Point: http://mscrl.microsoft.com/pki/mscorp/crl/MSIT%20Machine%20Auth%20CA%202(1).crlCRL Distribution Point: http://crl.microsoft.com/pki/mscorp/crl/MSIT%20Machine%20Auth%20CA%202(1).crl
CRL Distribution Point: http://corppki/crl/MSIT%20Machine%20Auth%20CA%202(1).crl
Check the revocation status for certificate supportdiagnostics.partners.extranet.microsoft.com
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for supportdiagnostics.partners.extranet.microsoft.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name microsoft.com
(limited to 100 certificates)
ppe.gallery.expression.microsoft.com
KeyRecoveryAgent.manage-dogfood.microsoft.com
phoneregistration.gtm.corp.microsoft.com
iot.dps.mp.microsoft.com
gmevpn.glbdns2.microsoft.com
workflowservice-int.dps.mp.microsoft.com
FCS1.AMSU1.sconline-int.microsoft.com
azure-management.azurepilot.cp.microsoft.com
politemail4msft.cloudapp.net
app.aladdindev.microsoft.com
e.microsoft.com
exp3days.ossdatabases-test1.microsoft.com
tip2.vnet.powerplatform.microsoft.com
pitstop.microsoft.com
mail.microsoft.com
solutionsauthor.partners.extranet.microsoft.com
storemanagement-int-client.microsoft.com
000dtk5o40pl2.redmond.corp.microsoft.com
*.contentexplorer.mc.microsoft.com
tip1.api.bap.microsoft.com
quote.mocksubscription.l2o.microsoft.com
tip1.api.bap.microsoft.com
supportactions-dcsteam-actions.services.microsoft.com
*.nus.onlinebackup.microsoft.com
adkaulfake131.ustcms.microsoft.com
afsppweu-cp.afs.azure.net
FCS1.DAMSUA0102.manage-dogfood.microsoft.com
listingsmanagement-int.dps.mp.microsoft.com
selync-lct.redmond.corp.microsoft.com
portfolios.officeppe.com
*.daas.microsoft.com
auth.hcs.microsoft.com
optimizer.asimov.microsoft.com
testdrive.microsoft.com
telemetry.urs.microsoft.com
identity.microsoft.com
vstfmscisext.partners.extranet.microsoft.com
mygroups.microsoft.com
code.msdn.microsoft.com
config.edog.officeapps.live.com
services.awasa.microsoft.com
wus-int.GENEVA.KEYVAULT.slkv2.MICROSOFT.COM
eastus2.vnet.powerplatform.microsoft.com
fp.wd.microsoft.com
mygroups.microsoft.com
download.oemsoc.microsoft.com
msats-ppe.commerce.microsoft.com
ATPAppID.manage-selfhost.microsoft.com
edsystems.parttest.extranettest.microsoft.com
*.daas.microsoft.com
tip2.vnet.powerplatform.microsoft.com
netscan.corp.microsoft.com
mail.protection.outlook.com
detego.partners.extranet.microsoft.com
settings.data.microsoft.com
sfcluster.dev.asi.microsoft.com
*.falconprod-sf.trafficmanager.net
OpsToolReadOnly.manage.microsoft.com
guidesideasaccess4.microsoft.com
mpn-mlxint.microsoft.com
*.redmond.corp.microsoft.com
tip2.vnet.powerplatform.microsoft.com
SpyNet2.Microsoft.com
mysignins-ppe.microsoft.com
regmgmtu1.partners.extranet.microsoft.com
soumay1.ustcms.microsoft.com
i4.services.social.microsoft.com
msit-bcwebatmpoc-sc.cloudapp.net
CH1MBISPOWA.corp.microsoft.com
kailani10.one.microsoft.com
bmslt.partners.extranet.microsoft.com
fulfillmentquery.mcapi.commerce.microsoft.com
azuresqldataloadervcscert4.microsoft.com
testaadoutage.ustcms.microsoft.com
identity.microsoft.com
threatintel-stg.trafficmanager.net
rm2.partners.extranet.microsoft.com
preview.viewer.messaging.microsoft.com
debugoutputest.smltenant.microsoft.com
developertools-test.powerplatform.microsoft.com
zbcmp.pfgold.dev.ustcms.microsoft.com
tip2.vnet.powerplatform.microsoft.com
e.microsoft.com
presence.teams.microsoft.com
beijing-portal.msftvpn.ras.microsoft.com
myprofile-ppe.microsoft.com
adkaulfake050.ustcms.microsoft.com
*.redmond.corp.microsoft.com
home.diagnostics.support.microsoft.com
fasttrack.microsoft.com
pas.windows.net
social.technet.microsoft.com
adkaulfake038.ustcms.microsoft.com
licensing.powerplatform.microsoft.com
alerts.serviceshub.microsoft.com
adkaulfake010.ustcms.microsoft.com
appmanagement.activedirectory.microsoft.com
*.acs.voiceapps.infra.teams.microsoft.com
techprofile.microsoft.com
noam.eersapi.teams.microsoft.com
KeyRecoveryAgent.manage-dogfood.microsoft.com
phoneregistration.gtm.corp.microsoft.com
iot.dps.mp.microsoft.com
gmevpn.glbdns2.microsoft.com
workflowservice-int.dps.mp.microsoft.com
FCS1.AMSU1.sconline-int.microsoft.com
azure-management.azurepilot.cp.microsoft.com
politemail4msft.cloudapp.net
app.aladdindev.microsoft.com
e.microsoft.com
exp3days.ossdatabases-test1.microsoft.com
tip2.vnet.powerplatform.microsoft.com
pitstop.microsoft.com
mail.microsoft.com
solutionsauthor.partners.extranet.microsoft.com
storemanagement-int-client.microsoft.com
000dtk5o40pl2.redmond.corp.microsoft.com
*.contentexplorer.mc.microsoft.com
tip1.api.bap.microsoft.com
quote.mocksubscription.l2o.microsoft.com
tip1.api.bap.microsoft.com
supportactions-dcsteam-actions.services.microsoft.com
*.nus.onlinebackup.microsoft.com
adkaulfake131.ustcms.microsoft.com
afsppweu-cp.afs.azure.net
FCS1.DAMSUA0102.manage-dogfood.microsoft.com
listingsmanagement-int.dps.mp.microsoft.com
selync-lct.redmond.corp.microsoft.com
portfolios.officeppe.com
*.daas.microsoft.com
auth.hcs.microsoft.com
optimizer.asimov.microsoft.com
testdrive.microsoft.com
telemetry.urs.microsoft.com
identity.microsoft.com
vstfmscisext.partners.extranet.microsoft.com
mygroups.microsoft.com
code.msdn.microsoft.com
config.edog.officeapps.live.com
services.awasa.microsoft.com
wus-int.GENEVA.KEYVAULT.slkv2.MICROSOFT.COM
eastus2.vnet.powerplatform.microsoft.com
fp.wd.microsoft.com
mygroups.microsoft.com
download.oemsoc.microsoft.com
msats-ppe.commerce.microsoft.com
ATPAppID.manage-selfhost.microsoft.com
edsystems.parttest.extranettest.microsoft.com
*.daas.microsoft.com
tip2.vnet.powerplatform.microsoft.com
netscan.corp.microsoft.com
mail.protection.outlook.com
detego.partners.extranet.microsoft.com
settings.data.microsoft.com
sfcluster.dev.asi.microsoft.com
*.falconprod-sf.trafficmanager.net
OpsToolReadOnly.manage.microsoft.com
guidesideasaccess4.microsoft.com
mpn-mlxint.microsoft.com
*.redmond.corp.microsoft.com
tip2.vnet.powerplatform.microsoft.com
SpyNet2.Microsoft.com
mysignins-ppe.microsoft.com
regmgmtu1.partners.extranet.microsoft.com
soumay1.ustcms.microsoft.com
i4.services.social.microsoft.com
msit-bcwebatmpoc-sc.cloudapp.net
CH1MBISPOWA.corp.microsoft.com
kailani10.one.microsoft.com
bmslt.partners.extranet.microsoft.com
fulfillmentquery.mcapi.commerce.microsoft.com
azuresqldataloadervcscert4.microsoft.com
testaadoutage.ustcms.microsoft.com
identity.microsoft.com
threatintel-stg.trafficmanager.net
rm2.partners.extranet.microsoft.com
preview.viewer.messaging.microsoft.com
debugoutputest.smltenant.microsoft.com
developertools-test.powerplatform.microsoft.com
zbcmp.pfgold.dev.ustcms.microsoft.com
tip2.vnet.powerplatform.microsoft.com
e.microsoft.com
presence.teams.microsoft.com
beijing-portal.msftvpn.ras.microsoft.com
myprofile-ppe.microsoft.com
adkaulfake050.ustcms.microsoft.com
*.redmond.corp.microsoft.com
home.diagnostics.support.microsoft.com
fasttrack.microsoft.com
pas.windows.net
social.technet.microsoft.com
adkaulfake038.ustcms.microsoft.com
licensing.powerplatform.microsoft.com
alerts.serviceshub.microsoft.com
adkaulfake010.ustcms.microsoft.com
appmanagement.activedirectory.microsoft.com
*.acs.voiceapps.infra.teams.microsoft.com
techprofile.microsoft.com
noam.eersapi.teams.microsoft.com
Certificate
The complete raw certificate details for supportdiagnostics.partners.extranet.microsoft.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFvzCCBKegAwIBAgIKflokegABAAAv1TANBgkqhkiG9w0BAQUFADCBgDETMBEG CgmSJomT8ixkARkWA2NvbTEZMBcGCgmSJomT8ixkARkWCW1pY3Jvc29mdDEUMBIG CgmSJomT8ixkARkWBGNvcnAxFzAVBgoJkiaJk/IsZAEZFgdyZWRtb25kMR8wHQYD VQQDExZNU0lUIE1hY2hpbmUgQXV0aCBDQSAyMB4XDTEzMDEwOTIzMDQzM1oXDTE1 MDEwOTIzMDQzM1owPTE7MDkGA1UEAxMyc3VwcG9ydGRpYWdub3N0aWNzLnBhcnRu ZXJzLmV4dHJhbmV0Lm1pY3Jvc29mdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpw46uFy9HZ2cpYM8KtivQiBXpXCa54FoYJxSGrIRGel9MOH0v tPrtlEoKRp/gLxtmEV4mXT+fWCiE4TnBYYp3dfWwKtSvuHPCPI0WBvvSEJzWupRv nXmPLGPtcymSvxX8+QLitvAH8fb4dql9iSqYhzPmHs9k34Us3WmfI38yPV0Tk2af X47JE1I/iXuQQYSuI7JmJUt4jN7K8L8aB3eIORuZ0lzXb1e5L2a6eT9oY3ZW09lh JiP2VWveTEvwfefO0q3Zwp8VVu356slbTtykKoAss3KpfxSjoT3rc7N5ng5f6uvN xpwCPAIAc7MbOrQl8clSWOqI+K/7m0S8/mADAgMBAAGjggJ7MIICdzAdBgNVHQ4E FgQUH9PD2CjGrRup1fopMbYqBViJjFAwCwYDVR0PBAQDAgSwMB8GA1UdIwQYMBaA FOvbEV74CZ7Y1mKc/WKd44RKKOEnMIHuBgNVHR8EgeYwgeMwgeCggd2ggdqGT2h0 dHA6Ly9tc2NybC5taWNyb3NvZnQuY29tL3BraS9tc2NvcnAvY3JsL01TSVQlMjBN YWNoaW5lJTIwQXV0aCUyMENBJTIwMigxKS5jcmyGTWh0dHA6Ly9jcmwubWljcm9z b2Z0LmNvbS9wa2kvbXNjb3JwL2NybC9NU0lUJTIwTWFjaGluZSUyMEF1dGglMjBD QSUyMDIoMSkuY3JshjhodHRwOi8vY29ycHBraS9jcmwvTVNJVCUyME1hY2hpbmUl MjBBdXRoJTIwQ0ElMjAyKDEpLmNybDCBrQYIKwYBBQUHAQEEgaAwgZ0wVQYIKwYB BQUHMAKGSWh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2kvbXNjb3JwL01TSVQl MjBNYWNoaW5lJTIwQXV0aCUyMENBJTIwMigxKS5jcnQwRAYIKwYBBQUHMAKGOGh0 dHA6Ly9jb3JwcGtpL2FpYS9NU0lUJTIwTWFjaGluZSUyMEF1dGglMjBDQSUyMDIo MSkuY3J0MD8GCSsGAQQBgjcVBwQyMDAGKCsGAQQBgjcVCIPPiU2t8gKFoZ8MgvrK fYHh+3SBT4PC7YUIjqnShWMCAWQCAQowHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsG AQUFBwMBMCcGCSsGAQQBgjcVCgQaMBgwCgYIKwYBBQUHAwIwCgYIKwYBBQUHAwEw DQYJKoZIhvcNAQEFBQADggEBAHPWfBw2JXapjCHp4rKvTnGun6o8r9oVyWlsmoT5 EmBjudpRvmnHS44cUY8TzX7v3pCguSwYJbmNp0PIupf8oS58pG0vHrv0a8/Mp7Bn KsaWH2di10P1xZH3yj3ysITQuklXkHJq11FXmLy1ZdicTNu1Vxa5BAn4kTB1gFkb 107QNAkUbrARS8FXTq8rIWDdxW/9xfoShSUsBKq6ghKyAZXYQnwKceplDqC2gx7O RdcM89hGXMsCHWSn4idsp3fiSKL8h0NuFkfBlSREXOYPNGwquWHkzLeokAa7JEh3 /C28ubNfcZ3cWlsb0eUSXGZboXxIrIuxHressLU2e9RfhAM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6cOOrhcvR2dnKWDPCrYr 0IgV6VwmueBaGCcUhqyERnpfTDh9L7T67ZRKCkaf4C8bZhFeJl0/n1gohOE5wWGK d3X1sCrUr7hzwjyNFgb70hCc1rqUb515jyxj7XMpkr8V/PkC4rbwB/H2+HapfYkq mIcz5h7PZN+FLN1pnyN/Mj1dE5Nmn1+OyRNSP4l7kEGEriOyZiVLeIzeyvC/Ggd3 iDkbmdJc129XuS9munk/aGN2VtPZYSYj9lVr3kxL8H3nztKt2cKfFVbt+erJW07c pCqALLNyqX8Uo6E963OzeZ4OX+rrzcacAjwCAHOzGzq0JfHJUljqiPiv+5tEvP5g AwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 596681012221545975656405 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.9.2342.19200300.100.1.25 (domainComponent) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.9.2342.19200300.100.1.25 (domainComponent) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'microsoft' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.9.2342.19200300.100.1.25 (domainComponent) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'corp' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.9.2342.19200300.100.1.25 (domainComponent) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MSIT Machine Auth CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-01-09 23:04:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-01-09 23:04:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'supportdiagnostics.partners.extranet.microsoft.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29509957977478440035928000277506715885722689303978705671207614927608153931317345744191645143563854945694988696120946713564512862126795104921653284722155553201941744605543778418734474442013949069759048279315068431357636250824319466330755352258758397871687601852919340229405946427899587318540955198445291832420446778630181924619416831595130878928822985552946947209562956081758593737317960839462084611735540773673354949321231640504230525114450887952111547688200438578746985989451332245548956699246687090097131198766258128407726759872128732352278144601744077978249065907128224538746128857581000872645901060585173899173891 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1fd3c3d828c6ad1ba9d5fa2931b62a0558898c50 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ebdb115ef8099ed8d6629cfd629de3844a28e127 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (230 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mscrl.microsoft.com/pki/mscorp/crl/MSIT%20Machine%20Auth%20CA%202(1).crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.microsoft.com/pki/mscorp/crl/MSIT%20Machine%20Auth%20CA%202(1).crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://corppki/crl/MSIT%20Machine%20Auth%20CA%202(1).crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (160 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pki/mscorp/MSIT%20Machine%20Auth%20CA%202(1).crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://corppki/aia/MSIT%20Machine%20Auth%20CA%202(1).crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER asn1: structure error: base 128 integer too large 1.3.6.1.4.1.311.21.8.7587021.751874.11030412.6202749.3702260.207.945504904.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 10 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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