www.nbcsportsathletedirect.com
Issued by Amazon
About this certificate
This digital certificate with serial number 04:fb:c5:63:45:c4:18:8a:0b:b0:a7:ce:6b:d8:53:ca was issued on by Amazon.
With 30 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.nbcsportsathletedirect.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:fb:c5:63:45:c4:18:8a:0b:b0:a7:ce:6b:d8:53:caSerial Number (int): 6624181994503444539225227928098329546
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 46:d0:f3:5b:bb:47:61:e9:33:19:b9:5f:6f:e3:57:9e:a1:3c:86:2b
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 5e:57:84:c3:1d:16:87:85:c0:31:01:07:23:cc:a1:36:e3:d1:8d:9c
Fingerprint (sha256): c0:9f:80:b0:f4:0e:fa:be:32:13:04:69:78:08:92:71:53:a0:00:37:94:29:4a:76:fc:85:70:70:95:59:7d:fa
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate www.nbcsportsathletedirect.com
30
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.nbcsportsathletedirect.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.nbcsportsathletedirect.com
nbcathletesdirect.net
nbcathletedirect.net
www.nbcsportsathletedirect.net
nbcsportnil.net
athletedirect.production.nbc-sports.brightspot.cloud
nbcsportathletesdirect.com
cms.athletedirect.production.nbc-sports.brightspot.cloud
nbcsportathletedirect.net
nbcsportsathletedirect.net
static.athletedirect.production.nbc-sports.brightspot.cloud
nbcsportsnil.com
nbcsportsad.net
nbcsad.brightspotcdn.com
*.athletedirect.production.nbc-sports.brightspot.cloud
nbcsportad.net
brightspot.nbcsportsathletedirect.com
nbcathletesdirect.com
nbcathletedirect.com
nbcsportnil.com
nbcsportathletedirect.com
nbcsportsathletedirect.com
nbcsportad.com
nbcsportathletesdirect.net
verify.cms.athletedirect.production.nbc-sports.brightspot.cloud
origin.athletedirect.production.nbc-sports.brightspot.cloud
*.origin.athletedirect.production.nbc-sports.brightspot.cloud
verify.origin.athletedirect.production.nbc-sports.brightspot.cloud
nbcsportsad.com
nbcsportsnil.net
nbcathletesdirect.net
nbcathletedirect.net
www.nbcsportsathletedirect.net
nbcsportnil.net
athletedirect.production.nbc-sports.brightspot.cloud
nbcsportathletesdirect.com
cms.athletedirect.production.nbc-sports.brightspot.cloud
nbcsportathletedirect.net
nbcsportsathletedirect.net
static.athletedirect.production.nbc-sports.brightspot.cloud
nbcsportsnil.com
nbcsportsad.net
nbcsad.brightspotcdn.com
*.athletedirect.production.nbc-sports.brightspot.cloud
nbcsportad.net
brightspot.nbcsportsathletedirect.com
nbcathletesdirect.com
nbcathletedirect.com
nbcsportnil.com
nbcsportathletedirect.com
nbcsportsathletedirect.com
nbcsportad.com
nbcsportathletesdirect.net
verify.cms.athletedirect.production.nbc-sports.brightspot.cloud
origin.athletedirect.production.nbc-sports.brightspot.cloud
*.origin.athletedirect.production.nbc-sports.brightspot.cloud
verify.origin.athletedirect.production.nbc-sports.brightspot.cloud
nbcsportsad.com
nbcsportsnil.net
Other certificates including the domain name nbcsportsathletedirect.com
(limited to 100 certificates)
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
origin.athletedirect.production.nbc-sports.brightspot.cloud
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
origin.athletedirect.production.nbc-sports.brightspot.cloud
www.nbcsportsathletedirect.com
www.nbcsportsathletedirect.com
Certificate
The complete raw certificate details for www.nbcsportsathletedirect.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIXDCCB0SgAwIBAgIQBPvFY0XEGIoLsKfOa9hTyjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjAzMzAwMDAwMDBaFw0yMzA0Mjgy MzU5NTlaMCkxJzAlBgNVBAMTHnd3dy5uYmNzcG9ydHNhdGhsZXRlZGlyZWN0LmNv bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK08Gp9TgPGdReLppcU1 1CNQVKguSfCdYM8ZUSFSbXdpJ+pBFxfsf9cfqqOwgR2Dn2ZbgJJNQPKZirK/9RX8 +8LvWMS+JRHYqgoyKCQlqS6t+HXoR/9E8swQFBgPkw1D6xMoxrwUkR7sbyji7Iqk uKmdKn8ORxhUmpuYNYIZmZy/aRswq16/p9lpfTmuAz05tOx0g2M+PV1LQDJFK19N amKghS36Q8kv47vUGMP03EV54FZ8r821pZgm/LRsxsE4mHWNq8Q54s1ldOH47/51 wCYO2z04BVtd/ssvt0qEPkVLPxbfQOWVjHCyCas9PfGMcP2ec7Z+y+N2JS1ANHNL Qx8CAwEAAaOCBWEwggVdMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3Q MB0GA1UdDgQWBBRG0PNbu0dh6TMZuV9v41eeoTyGKzCCA/wGA1UdEQSCA/MwggPv gh53d3cubmJjc3BvcnRzYXRobGV0ZWRpcmVjdC5jb22CFW5iY2F0aGxldGVzZGly ZWN0Lm5ldIIUbmJjYXRobGV0ZWRpcmVjdC5uZXSCHnd3dy5uYmNzcG9ydHNhdGhs ZXRlZGlyZWN0Lm5ldIIPbmJjc3BvcnRuaWwubmV0gjRhdGhsZXRlZGlyZWN0LnBy b2R1Y3Rpb24ubmJjLXNwb3J0cy5icmlnaHRzcG90LmNsb3VkghpuYmNzcG9ydGF0 aGxldGVzZGlyZWN0LmNvbYI4Y21zLmF0aGxldGVkaXJlY3QucHJvZHVjdGlvbi5u YmMtc3BvcnRzLmJyaWdodHNwb3QuY2xvdWSCGW5iY3Nwb3J0YXRobGV0ZWRpcmVj dC5uZXSCGm5iY3Nwb3J0c2F0aGxldGVkaXJlY3QubmV0gjtzdGF0aWMuYXRobGV0 ZWRpcmVjdC5wcm9kdWN0aW9uLm5iYy1zcG9ydHMuYnJpZ2h0c3BvdC5jbG91ZIIQ bmJjc3BvcnRzbmlsLmNvbYIPbmJjc3BvcnRzYWQubmV0ghhuYmNzYWQuYnJpZ2h0 c3BvdGNkbi5jb22CNiouYXRobGV0ZWRpcmVjdC5wcm9kdWN0aW9uLm5iYy1zcG9y dHMuYnJpZ2h0c3BvdC5jbG91ZIIObmJjc3BvcnRhZC5uZXSCJWJyaWdodHNwb3Qu bmJjc3BvcnRzYXRobGV0ZWRpcmVjdC5jb22CFW5iY2F0aGxldGVzZGlyZWN0LmNv bYIUbmJjYXRobGV0ZWRpcmVjdC5jb22CD25iY3Nwb3J0bmlsLmNvbYIZbmJjc3Bv cnRhdGhsZXRlZGlyZWN0LmNvbYIabmJjc3BvcnRzYXRobGV0ZWRpcmVjdC5jb22C Dm5iY3Nwb3J0YWQuY29tghpuYmNzcG9ydGF0aGxldGVzZGlyZWN0Lm5ldII/dmVy aWZ5LmNtcy5hdGhsZXRlZGlyZWN0LnByb2R1Y3Rpb24ubmJjLXNwb3J0cy5icmln aHRzcG90LmNsb3VkgjtvcmlnaW4uYXRobGV0ZWRpcmVjdC5wcm9kdWN0aW9uLm5i Yy1zcG9ydHMuYnJpZ2h0c3BvdC5jbG91ZII9Ki5vcmlnaW4uYXRobGV0ZWRpcmVj dC5wcm9kdWN0aW9uLm5iYy1zcG9ydHMuYnJpZ2h0c3BvdC5jbG91ZIJCdmVyaWZ5 Lm9yaWdpbi5hdGhsZXRlZGlyZWN0LnByb2R1Y3Rpb24ubmJjLXNwb3J0cy5icmln aHRzcG90LmNsb3Vkgg9uYmNzcG9ydHNhZC5jb22CEG5iY3Nwb3J0c25pbC5uZXQw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA9 BgNVHR8ENjA0MDKgMKAuhixodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNv bS9zY2ExYi0xLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRp MGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNv bTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20v c2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJ KoZIhvcNAQELBQADggEBAGZhJ9zAQsVrNwAvCIT/BoKMMRCe3+OHawLV7pjcdZGO INko+A9ELnnmqJAcDE/ClEVxLGESerDmhmYsgTai/hZRUtLVIynv2pKp2LA/yN9g 7YF9W2t9uN+oNrKk3zRgUu9vOQxKwHCyP5oBLp/fidehtACPmzJjYDWHXGyMjGSk d7sym5SpPSSGSWD35rjYEau3g46YRnAiM+i9wWEykRnhvLM73DxfgsvcaNrAmXuF jcs65/haHHk0eOkUROinCXNUrkoWD5E4BvblDtVcvTUglYtXh43Elnn+Cn9N/A0K 0NryF9Fc7UFqUpm0iMoV1hlH5+opjciNNTX6/bdnacg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTwan1OA8Z1F4umlxTXU I1BUqC5J8J1gzxlRIVJtd2kn6kEXF+x/1x+qo7CBHYOfZluAkk1A8pmKsr/1Ffz7 wu9YxL4lEdiqCjIoJCWpLq34dehH/0TyzBAUGA+TDUPrEyjGvBSRHuxvKOLsiqS4 qZ0qfw5HGFSam5g1ghmZnL9pGzCrXr+n2Wl9Oa4DPTm07HSDYz49XUtAMkUrX01q YqCFLfpDyS/ju9QYw/TcRXngVnyvzbWlmCb8tGzGwTiYdY2rxDnizWV04fjv/nXA Jg7bPTgFW13+yy+3SoQ+RUs/Ft9A5ZWMcLIJqz098Yxw/Z5ztn7L43YlLUA0c0tD HwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6624181994503444539225227928098329546 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-28 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.nbcsportsathletedirect.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21868865143022160981368323909409710105206010242212795336054145271206699990738202784153447930088388083878371103994499761511699501058049833778624705875119328937828260763618089335806362973451975523744245591324537606339508083193392502462062656814630508483426721172764467908848488179229561713113371871910413058196093815128447346677447686930344297551126124363500950935858461388811054256416902875520102963404211607810533972080195821729874691286814650510088210807441091783519839435531863465094854584372231628626130472540466759189902660100630996087853542473334850253570275232640889806292224721292538823221744038522462036247327 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 46d0f35bbb4761e93319b95f6fe3579ea13c862b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1011 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nbcsportsathletedirect.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcathletesdirect.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcathletedirect.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nbcsportsathletedirect.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportnil.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'athletedirect.production.nbc-sports.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportathletesdirect.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.athletedirect.production.nbc-sports.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportathletedirect.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportsathletedirect.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.athletedirect.production.nbc-sports.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportsnil.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportsad.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsad.brightspotcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.athletedirect.production.nbc-sports.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportad.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brightspot.nbcsportsathletedirect.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcathletesdirect.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcathletedirect.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportnil.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportathletedirect.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportsathletedirect.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportad.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportathletesdirect.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'verify.cms.athletedirect.production.nbc-sports.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin.athletedirect.production.nbc-sports.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.origin.athletedirect.production.nbc-sports.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'verify.origin.athletedirect.production.nbc-sports.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportsad.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nbcsportsnil.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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