payments.magazines.com
Issued by Amazon
About this certificate
This digital certificate with serial number 05:2a:29:0e:c7:f2:32:d3:ca:69:09:f9:07:f2:f1:3c was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=payments.magazines.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:2a:29:0e:c7:f2:32:d3:ca:69:09:f9:07:f2:f1:3cSerial Number (int): 6865049196851384071072176099034329404
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: cd:67:28:7a:c8:dd:05:e0:5c:ff:79:c2:fb:65:b3:03:ed:1b:7a:1c
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 1b:76:17:84:63:9d:6d:16:f6:c9:be:bf:5a:96:49:3d:ef:03:2c:a8
Fingerprint (sha256): bd:e0:5f:c8:bd:86:86:e6:10:67:36:45:49:a0:30:d0:da:2c:5b:ec:8d:68:96:b4:9a:96:b6:9b:1b:1d:8b:fa
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate payments.magazines.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for payments.magazines.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
payments.magazines.com
payments.meredithcsa.com
payments.magazine.store
payments.magazines2.com
payments.meredithcsa.com
payments.magazine.store
payments.magazines2.com
Other certificates including the domain name magazines.com
(limited to 100 certificates)
*.imgix.net
con-nhc.magazines.com
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
specialoffers.meredith.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
media5.adlegend.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.agriculture.com
imgix3.map.fastly.net
imgix3.map.fastly.net
*.magazines.com
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.magazines.com
imgix3.map.fastly.net
secure.meredith.com
ssl379523.cloudflaressl.com
media5.adlegend.com
media5.adlegend.com
*.imgix.net
*.imgix.net
*.imgix.net
magazines.com
payments.magazines.com
imgix3.map.fastly.net
staging.payments.magazines.com
www.track.magazines.com
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
*.imgix.net
payments.magazines.com
imgix3.map.fastly.net
imgix3.map.fastly.net
exchange1.magazines.com
www.magazines.com
*.imgix.net
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
ssl379523.cloudflaressl.com
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
www.magazines.com
*.imgix.net
imgix3.map.fastly.net
imgix3.map.fastly.net
ssl379524.cloudflaressl.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
*.secure.magazines.com
imgix3.map.fastly.net
stat.magazines.com
*.secure.magazines2.com
lockhart.magazines.com
media5.adlegend.com
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
imgix3.map.fastly.net
*.imgix.net
ssl379524.cloudflaressl.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
www.magazines.com
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
exchange1.magazines.com
stat.magazines.com
ssl379523.cloudflaressl.com
*.agriculture.com
con-nhc.magazines.com
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
imgix3.map.fastly.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
specialoffers.meredith.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
media5.adlegend.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.agriculture.com
imgix3.map.fastly.net
imgix3.map.fastly.net
*.magazines.com
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.magazines.com
imgix3.map.fastly.net
secure.meredith.com
ssl379523.cloudflaressl.com
media5.adlegend.com
media5.adlegend.com
*.imgix.net
*.imgix.net
*.imgix.net
magazines.com
payments.magazines.com
imgix3.map.fastly.net
staging.payments.magazines.com
www.track.magazines.com
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
*.imgix.net
payments.magazines.com
imgix3.map.fastly.net
imgix3.map.fastly.net
exchange1.magazines.com
www.magazines.com
*.imgix.net
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
ssl379523.cloudflaressl.com
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
www.magazines.com
*.imgix.net
imgix3.map.fastly.net
imgix3.map.fastly.net
ssl379524.cloudflaressl.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
*.secure.magazines.com
imgix3.map.fastly.net
stat.magazines.com
*.secure.magazines2.com
lockhart.magazines.com
media5.adlegend.com
*.imgix.net
ssl379523.cloudflaressl.com
imgix3.map.fastly.net
imgix3.map.fastly.net
*.imgix.net
ssl379524.cloudflaressl.com
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
*.imgix.net
*.imgix.net
*.imgix.net
imgix3.map.fastly.net
www.magazines.com
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
imgix3.map.fastly.net
*.imgix.net
exchange1.magazines.com
stat.magazines.com
ssl379523.cloudflaressl.com
*.agriculture.com
Certificate
The complete raw certificate details for payments.magazines.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgIQBSopDsfyMtPKaQn5B/LxPDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTEwMTYwMDAwMDBaFw0yMDExMTYx MjAwMDBaMCExHzAdBgNVBAMTFnBheW1lbnRzLm1hZ2F6aW5lcy5jb20wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg0//t+Dbuz+Xlqty4KvVpYvX1a9lt RxXroKgx9xOicKXXfp+zfqFU6f5BsTwMsqzN1+zIGEzFxlwBSg47mwSEgoVOTsqi Wr79rz8lsGeJPtbueUWe9VBGO7ZTw+kiPVvmBpoov2AtObwSlgWQ4M5oIUug9cNu vfGgeIfE2jQA69GfJ1OW4xXWin/nwi+nOESdf1jS1c0evxyBnA/Fb4w8Eql2uIPN kJ4WbOHBwZIBms2K7Jc/x17VMsdf03ffvIhvYMElzNHAm/kIM7dJF8uiQL1/ViXC Dpl+akjF6hSRLXBvRyxyTm6Mn01P92YRlTlobvJjbxChuMCURINThGQNAgMBAAGj ggLOMIICyjAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4E FgQUzWcoesjdBeBc/3nC+2WzA+0behwwbQYDVR0RBGYwZIIWcGF5bWVudHMubWFn YXppbmVzLmNvbYIYcGF5bWVudHMubWVyZWRpdGhjc2EuY29tghdwYXltZW50cy5t YWdhemluZS5zdG9yZYIXcGF5bWVudHMubWFnYXppbmVzMi5jb20wDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAy MDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5j cmwwIAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsGAQUFBwEB BGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3Qu Y29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNv bS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADCCAQQGCisGAQQB1nkCBAIEgfUEgfIA 8AB3ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABbdUsGyMAAAQD AEgwRgIhAKoJ90G9g1SO7gu6wcXi2K6FOsyzIDqRnJTYyLw+RfTnAiEAjaCN1rjs C+sgPZ9P1iZgdeMM4AWksyN1O8IA0ga1TwQAdQCHdb/nWXz4jEOZX73zbv9WjUdW Nv9KtWDBtOr/XqCDDwAAAW3VLBuDAAAEAwBGMEQCIEfL+dZ9otN7EULpwjzFi5Uj pgE1GxosgNeN8H9iRhhlAiAmoX2aZeLDjfQl/xNkidIy9p8k741l+aA9Uc4bZr9v gDANBgkqhkiG9w0BAQsFAAOCAQEAR4s9rAKa5eYvrR3yWtim4gX3RlksGVnHM1Jv 4g8oa1oG1Ke4JtqEdhfT5KM/Dc7pi7ekboexzV05MNTxMpcA/aoILCjOfOGFyYEY vO+w75jjmrG8ch9fhuuXTzRXzoOCttYe1chsiKvwCI8oaG4YtiEUgtGja7WvMJCb 51ok4PmCAJA2GCVlXFU+P4I/8okVe+0b1LBmgYAlBRTvtCjtMcJyo+fcUZi/o4GC f9ZB0u65nMxPSfTbXS8ZXaqkoOY6qwQL3gFatVNsarpuEXcs+Z2jAxja5zCzuIgI RdFasAvd6NomlwsEe0CSsPUGiwbJp8s8zU98vfWGXl7e9rl9/A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNP/7fg27s/l5arcuCr1 aWL19WvZbUcV66CoMfcTonCl136fs36hVOn+QbE8DLKszdfsyBhMxcZcAUoOO5sE hIKFTk7Kolq+/a8/JbBniT7W7nlFnvVQRju2U8PpIj1b5gaaKL9gLTm8EpYFkODO aCFLoPXDbr3xoHiHxNo0AOvRnydTluMV1op/58IvpzhEnX9Y0tXNHr8cgZwPxW+M PBKpdriDzZCeFmzhwcGSAZrNiuyXP8de1TLHX9N337yIb2DBJczRwJv5CDO3SRfL okC9f1Ylwg6ZfmpIxeoUkS1wb0csck5ujJ9NT/dmEZU5aG7yY28QobjAlESDU4Rk DQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6865049196851384071072176099034329404 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-16 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'payments.magazines.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20302669755201558861480658051497839887190679528988216767107948905880243739718897894471516816060618243408259869027665159789042878912369990746355940132351758992093282059270610254085639535448501925371784810292387628766404458202184133659533759750432007304159097979309901033787031001859709532450621523836253663252426171545697729230688013945667272581914995428215246337962520839576217661807700311827529570076853742747591216819381645041716663257223805934149748813297692894360175108066288802983283916169020610354269599705631001306506770678562059838212004454634428255589023202754654110841556025389554875509391740278649372566541 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cd67287ac8dd05e05cff79c2fb65b303ed1b7a1c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (102 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'payments.magazines.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'payments.meredithcsa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'payments.magazine.store' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'payments.magazines2.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016dd52c1b230000040300483046022100aa09f741bd83548eee0bbac1c5e2d8ae853accb3203a919c94d8c8bc3e45f4e70221008da08dd6b8ec0beb203d9f4fd6266075e30ce005a4b323753bc200d206b54f040075008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016dd52c1b830000040300463044022047cbf9d67da2d37b1142e9c23cc58b9523a601351b1a2c80d78df07f62461865022026a17d9a65e2c38df425ff136489d232f69f24ef8d65f9a03d51ce1b66bf6f80 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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