www.assoc-amazon.ca

- Amazon.com, Inc. -

Issued by Symantec Class 3 Secure Server CA - G4

About this certificate

This digital certificate with serial number 4a:d1:35:44:0c:e7:3e:29:e9:4a:19:0e:c8:ce:40:c6 was issued on by Symantec Corporation.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Amazon.com, Inc.

Organization: Amazon.com, Inc.
State / Province: Washington
Locality: Seattle
Country: US

Symantec Corporation

Organization: Symantec Corporation
Organization unit: Symantec Trust Network
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 4a:d1:35:44:0c:e7:3e:29:e9:4a:19:0e:c8:ce:40:c6
Serial Number (int): 99449142090734973619787862973411639494
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: 5f:60:cf:61:90:55:df:84:43:14:8a:60:2a:b2:f5:7a:f4:43:18:ef

Fingerprint (sha1): c3:3f:fc:6f:19:0b:4f:b9:2d:93:bb:f1:9c:20:0f:25:08:bc:dc:96
Fingerprint (sha256): c2:a7:8a:a1:1e:85:d5:ae:56:7f:15:f9:d4:1d:71:82:f2:e2:44:a0:8f:df:cc:06:7d:11:ed:51:c2:cf:ea:69

Issuing Certificate URL: http://ss.symcb.com/ss.crt

Revocation information

OCSP Server: http://ss.symcd.com
CRL Distribution Point: http://ss.symcb.com/ss.crl

Check the revocation status for certificate www.assoc-amazon.ca

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.assoc-amazon.ca

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ir-br.amazon-adsystem.com
ir-ca.amazon-adsystem.com
www.assoc-amazon.ca
ir-mx.amazon-adsystem.com

Other certificates including the domain name assoc-amazon.ca

(limited to 100 certificates)
www.assoc-amazon.ca
www.assoc-amazon.ca
wms-na.assoc-amazon.com
wms-na.assoc-amazon.com
wms-na.assoc-amazon.com
wms-na.assoc-amazon.com
wms-na.assoc-amazon.com
www.assoc-amazon.ca
www.assoc-amazon.ca
wms-na.assoc-amazon.com
ws-na.assoc-amazon.com
wms-na.assoc-amazon.com
ws-na.assoc-amazon.com
wms.assoc-amazon.ca
ws-na.assoc-amazon.com
www.assoc-amazon.ca
www.assoc-amazon.ca
wms.assoc-amazon.ca
www.assoc-amazon.ca
wms-na.assoc-amazon.com
ws-na.assoc-amazon.com
wms-na.assoc-amazon.com
ws-na.assoc-amazon.com
www.assoc-amazon.ca
www.assoc-amazon.ca
ws-na.assoc-amazon.com
ws-na.assoc-amazon.com
www.assoc-amazon.ca
wms-na.assoc-amazon.com
www.assoc-amazon.ca
ws-na.assoc-amazon.com
ws-na.assoc-amazon.com
wms-na.assoc-amazon.com
wms.assoc-amazon.ca
ws-na.assoc-amazon.com
ws-na.assoc-amazon.com
ws-na.assoc-amazon.com
www.assoc-amazon.ca
ws-na.assoc-amazon.com
ws-na.assoc-amazon.com
wms.assoc-amazon.ca
ws-na.assoc-amazon.com
www.assoc-amazon.ca
www.assoc-amazon.ca
ws-na.assoc-amazon.com
ws-na.assoc-amazon.com
ws-na.assoc-amazon.com
ws-na.assoc-amazon.com
wms-na.assoc-amazon.com
www.assoc-amazon.ca
wms-na.assoc-amazon.com
ws-na.assoc-amazon.com
ws-na.assoc-amazon.com
ws-na.assoc-amazon.com
www.assoc-amazon.ca
wms-na.assoc-amazon.com
ws-na.assoc-amazon.com
ws-na.assoc-amazon.com

Certificate

The complete raw certificate details for www.assoc-amazon.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGNzCCBR+gAwIBAgIQStE1RAznPinpShkOyM5AxjANBgkqhkiG9w0BAQsFADB+
MQswCQYDVQQGEwJVUzEdMBsGA1UEChMUU3ltYW50ZWMgQ29ycG9yYXRpb24xHzAd
BgNVBAsTFlN5bWFudGVjIFRydXN0IE5ldHdvcmsxLzAtBgNVBAMTJlN5bWFudGVj
IENsYXNzIDMgU2VjdXJlIFNlcnZlciBDQSAtIEc0MB4XDTE2MDkyNjAwMDAwMFoX
DTE3MTAyNTIzNTk1OVowbTELMAkGA1UEBhMCVVMxEzARBgNVBAgMCldhc2hpbmd0
b24xEDAOBgNVBAcMB1NlYXR0bGUxGTAXBgNVBAoMEEFtYXpvbi5jb20sIEluYy4x
HDAaBgNVBAMME3d3dy5hc3NvYy1hbWF6b24uY2EwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDHUFZiE8yekVZGaq7WfP5GkMGbBcLtgj8lnBaDDhfOdS3n
ibtpJwaB//8EsbbxlgRHfN16tLcRnK8I+fOr/KC0TMJu+mSlClD9D3YZ16MZvGka
TqPGh0jQmp5lDKNWdPKYLuE1HVX9R1/+fYPP5Kp8F6NvLItSc/sns9rRd2hVeZx+
iBFP9+8xxjGfjRRtfnH7uMnlg7wU8WqyepvACyPR31K/5mgqrJGXTi+MsaXardm7
QN1qpAt/6WBLjBYWr5gikN/J92Dupz5cJSJ37anuynZqIXc2E//gmajsphCazMVK
7qZ/qWgquKnVGRrHsyjbWpvSUnGAOoPb1+CEg85jAgMBAAGjggLAMIICvDBvBgNV
HREEaDBmghlpci1ici5hbWF6b24tYWRzeXN0ZW0uY29tghlpci1jYS5hbWF6b24t
YWRzeXN0ZW0uY29tghN3d3cuYXNzb2MtYW1hem9uLmNhghlpci1teC5hbWF6b24t
YWRzeXN0ZW0uY29tMAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW
MBQGCCsGAQUFBwMBBggrBgEFBQcDAjBhBgNVHSAEWjBYMFYGBmeBDAECAjBMMCMG
CCsGAQUFBwIBFhdodHRwczovL2Quc3ltY2IuY29tL2NwczAlBggrBgEFBQcCAjAZ
DBdodHRwczovL2Quc3ltY2IuY29tL3JwYTAfBgNVHSMEGDAWgBRfYM9hkFXfhEMU
imAqsvV69EMY7zArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vc3Muc3ltY2IuY29t
L3NzLmNybDBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9zcy5z
eW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9zcy5zeW1jYi5jb20vc3MuY3J0
MIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUA3esdK3oNT6Ygi4GtgWhwfi6OnQHV
XIiNPRHEzbbsvswAAAFXZRjCCQAABAMARjBEAiB4SJAJGxwlXpR3qYm7D7S9rlWC
lpVyZD0NCwuXzynxSgIgKg34GbSVCoi2JDQr10+ahg3jqblNFfXOuMB5tKGx1/4A
dgBo9pj4H2SCvjqM7rkoHUz8cVFdZ5PURNEKZ6y7T0/7xAAAAVdlGMIfAAAEAwBH
MEUCIQDE9Xqcwo0fEyUEBCJR0thDy4zz6QKTiFM9S04UfhU5OgIgZ8ENbiO7UZrz
XyjYFr75I+VbujMyDK0l6ajC9GUBWKgwDQYJKoZIhvcNAQELBQADggEBAIe64XFs
taZSvq9BG6FL37c9Xf0ZMnu8keNDiP/do2O6VeDXYjIwAM7yZY/dbXebDGgNO/oy
eTko4kuY3pp8aLSF+fgEuOiYYy479bV2N8rLRAHijUWbfQhs0k5OIdBRzs5A1cKL
3jfYn1Ysa6hoRRagv3mHv2KbZMRP9sawORSccRayZTFt2oAEYZSP3hQGv+35yotK
Tt08rK6OUtjxu90nya0xDxoesl4gMowWDrKtJOmIKpuiJZWKsFXnWoa054sOfU79
lmFmced4yx9QZmMPGoncZQ2Gt+biWK7WUwpi+JnoZlgdzy1TmDp0AKqNF09zAhx5
ERKC8szQ7UdszAU=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1BWYhPMnpFWRmqu1nz+
RpDBmwXC7YI/JZwWgw4XznUt54m7aScGgf//BLG28ZYER3zderS3EZyvCPnzq/yg
tEzCbvpkpQpQ/Q92GdejGbxpGk6jxodI0JqeZQyjVnTymC7hNR1V/Udf/n2Dz+Sq
fBejbyyLUnP7J7Pa0XdoVXmcfogRT/fvMcYxn40UbX5x+7jJ5YO8FPFqsnqbwAsj
0d9Sv+ZoKqyRl04vjLGl2q3Zu0DdaqQLf+lgS4wWFq+YIpDfyfdg7qc+XCUid+2p
7sp2aiF3NhP/4Jmo7KYQmszFSu6mf6loKrip1Rkax7Mo21qb0lJxgDqD29fghIPO
YwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 99449142090734973619787862973411639494
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Corporation'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Class 3 Secure Server CA - G4'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-26 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-25 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Washington'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Seattle'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Amazon.com, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.assoc-amazon.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25161038553475025987471742607659658189884149039605862164768056137748388880916187156285311584832163304529736324076887404595564238297629029597986194931578517159343252281752194788694959023796858809228021321705782226212767628045616745368484268144993561005355362092912002039142094290313625181814514054205567822124737640108104103776836262204674023296528728665196909882318156308700640173750419974798169605717245066183695567107601510340667207574556636248766742097180135317881313851253136366400963919443814208622589451224663302545569735788327161473519543301265984768336423633041260761739696430969148356887396875424839961398883
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ir-br.amazon-adsystem.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ir-ca.amazon-adsystem.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.assoc-amazon.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ir-mx.amazon-adsystem.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://d.symcb.com/rpa'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5f60cf619055df8443148a602ab2f57af44318ef
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ss.symcb.com/ss.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ss.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ss.symcb.com/ss.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc000001576518c20900000403004630440220784890091b1c255e9477a989bb0fb4bdae5582969572643d0d0b0b97cf29f14a02202a0df819b4950a88b624342bd74f9a860de3a9b94d15f5ceb8c079b4a1b1d7fe00760068f698f81f6482be3a8ceeb9281d4cfc71515d6793d444d10a67acbb4f4ffbc4000001576518c21f0000040300473045022100c4f57a9cc28d1f132504042251d2d843cb8cf3e9029388533d4b4e147e15393a022067c10d6e23bb519af35f28d816bef923e55bba33320cad25e9a8c2f4650158a8
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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