devmisc.public-dev.aws.aktia.org
Issued by Amazon
About this certificate
This digital certificate with serial number 0b:67:a7:87:6b:4b:ac:70:ca:93:f3:38:75:35:69:17 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=devmisc.public-dev.aws.aktia.org
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:67:a7:87:6b:4b:ac:70:ca:93:f3:38:75:35:69:17Serial Number (int): 15159712421475290917349580721540655383
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 1f:c1:3f:79:6a:d9:3a:9c:0c:de:14:be:ce:f6:a7:ad:08:b6:5f:b1
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 2d:f2:2b:e2:f5:d9:1b:1d:48:9f:8d:5c:50:9d:e2:bd:76:48:4c:3a
Fingerprint (sha256): e6:6c:09:fc:77:45:fe:f7:6e:18:07:2d:4b:cd:19:42:bb:bc:93:db:61:d1:e8:67:0a:41:22:a9:77:16:3d:d3
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate devmisc.public-dev.aws.aktia.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for devmisc.public-dev.aws.aktia.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
devmisc.public-dev.aws.aktia.org
devmisc.aktia.fi
devmisc.aktia.fi
Other certificates including the domain name aktia.org
(limited to 100 certificates)
*.psd2-dev.aws.aktia.org
*.authentication-prod.aws.aktia.org
*.trainer-test.aws.aktia.org
*.psd2-prod.aws.aktia.org
ce-ecs-private.wallet-prod.aws.aktia.org
*.wallet-sys.aws.aktia.org
superset.data-test.aws.aktia.org
*.psd2-sandbox-int.aws.aktia.org
sysmisc.public-sys.aws.aktia.org
*.wallet-prod.aws.aktia.org
*.netbank-dev.aws.aktia.org
pubsub-prod.aws.aktia.org
logs.splunk-test.aws.aktia.org
*.psd2-int.aws.aktia.org
superset.data.aws.aktia.org
devforms.public-dev.aws.aktia.org
*.architecture-dev.aws.aktia.org
*.wallet-dev.aws.aktia.org
*.infrastructure-sandbox.aws.aktia.org
*.psd2-sys.aws.aktia.org
halogs.splunk-test.aws.aktia.org
devforms.public-dev.aws.aktia.org
pubsub-dev.aws.aktia.org
splunkforwarder.sharedservices.aws.aktia.org
ml-server.data.aws.aktia.org
sysforms.public-sys.aws.aktia.org
splunkforwarder-prod.sharedservices.aws.aktia.org
airflow.data-test.aws.aktia.org
devforms.public-dev.aws.aktia.org
sysmisc.public-sys.aws.aktia.org
*.psd2-sandbox-prod.aws.aktia.org
*.authentication-sys.aws.aktia.org
airflow.data.aws.aktia.org
*.psd2-sandbox-prod.aws.aktia.org
halogs.splunk-prod.aws.aktia.org
*.psd2-sandbox-int.aws.aktia.org
devforms.public-dev.aws.aktia.org
splunkforwarder-test.sharedservices.aws.aktia.org
*.architecture-sys.aws.aktia.org
airflow.data-test.aws.aktia.org
devmisc.public-dev.aws.aktia.org
ce-ecs-private.wallet-sys.aws.aktia.org
*.psd2-sandbox-sys.aws.aktia.org
devmisc.public-dev.aws.aktia.org
devmisc.public-dev.aws.aktia.org
sysforms.public-sys.aws.aktia.org
ml-server.data-test.aws.aktia.org
superset.data.aws.aktia.org
*.wallet-dev.aws.aktia.org
logs.splunk-prod.aws.aktia.org
devforms.public-dev.aws.aktia.org
devmisc.public-dev.aws.aktia.org
*.netbank-sys.aws.aktia.org
sysforms.public-sys.aws.aktia.org
airflow.data.aws.aktia.org
*.mobile-sys.aws.aktia.org
*.psd2-prod.aws.aktia.org
ce-ecs-private.wallet-dev.aws.aktia.org
*.psd2-dev.aws.aktia.org
superset.data-test.aws.aktia.org
splunkforwarder.sharedservices.aws.aktia.org
sysmisc.public-sys.aws.aktia.org
*.psd2-int.aws.aktia.org
*.mobile-dev.aws.aktia.org
*.psd2-sandbox-sys.aws.aktia.org
*.insurance-sys.aws.aktia.org
login.authentication-prod.aws.aktia.org
devmisc.public-dev.aws.aktia.org
*.psd2-sys.aws.aktia.org
*.authentication-dev.aws.aktia.org
*.wallet-prod.aws.aktia.org
*.trainer-test.aws.aktia.org
*.wallet-sys.aws.aktia.org
*.authentication-prod.aws.aktia.org
*.trainer-test.aws.aktia.org
*.psd2-prod.aws.aktia.org
ce-ecs-private.wallet-prod.aws.aktia.org
*.wallet-sys.aws.aktia.org
superset.data-test.aws.aktia.org
*.psd2-sandbox-int.aws.aktia.org
sysmisc.public-sys.aws.aktia.org
*.wallet-prod.aws.aktia.org
*.netbank-dev.aws.aktia.org
pubsub-prod.aws.aktia.org
logs.splunk-test.aws.aktia.org
*.psd2-int.aws.aktia.org
superset.data.aws.aktia.org
devforms.public-dev.aws.aktia.org
*.architecture-dev.aws.aktia.org
*.wallet-dev.aws.aktia.org
*.infrastructure-sandbox.aws.aktia.org
*.psd2-sys.aws.aktia.org
halogs.splunk-test.aws.aktia.org
devforms.public-dev.aws.aktia.org
pubsub-dev.aws.aktia.org
splunkforwarder.sharedservices.aws.aktia.org
ml-server.data.aws.aktia.org
sysforms.public-sys.aws.aktia.org
splunkforwarder-prod.sharedservices.aws.aktia.org
airflow.data-test.aws.aktia.org
devforms.public-dev.aws.aktia.org
sysmisc.public-sys.aws.aktia.org
*.psd2-sandbox-prod.aws.aktia.org
*.authentication-sys.aws.aktia.org
airflow.data.aws.aktia.org
*.psd2-sandbox-prod.aws.aktia.org
halogs.splunk-prod.aws.aktia.org
*.psd2-sandbox-int.aws.aktia.org
devforms.public-dev.aws.aktia.org
splunkforwarder-test.sharedservices.aws.aktia.org
*.architecture-sys.aws.aktia.org
airflow.data-test.aws.aktia.org
devmisc.public-dev.aws.aktia.org
ce-ecs-private.wallet-sys.aws.aktia.org
*.psd2-sandbox-sys.aws.aktia.org
devmisc.public-dev.aws.aktia.org
devmisc.public-dev.aws.aktia.org
sysforms.public-sys.aws.aktia.org
ml-server.data-test.aws.aktia.org
superset.data.aws.aktia.org
*.wallet-dev.aws.aktia.org
logs.splunk-prod.aws.aktia.org
devforms.public-dev.aws.aktia.org
devmisc.public-dev.aws.aktia.org
*.netbank-sys.aws.aktia.org
sysforms.public-sys.aws.aktia.org
airflow.data.aws.aktia.org
*.mobile-sys.aws.aktia.org
*.psd2-prod.aws.aktia.org
ce-ecs-private.wallet-dev.aws.aktia.org
*.psd2-dev.aws.aktia.org
superset.data-test.aws.aktia.org
splunkforwarder.sharedservices.aws.aktia.org
sysmisc.public-sys.aws.aktia.org
*.psd2-int.aws.aktia.org
*.mobile-dev.aws.aktia.org
*.psd2-sandbox-sys.aws.aktia.org
*.insurance-sys.aws.aktia.org
login.authentication-prod.aws.aktia.org
devmisc.public-dev.aws.aktia.org
*.psd2-sys.aws.aktia.org
*.authentication-dev.aws.aktia.org
*.wallet-prod.aws.aktia.org
*.trainer-test.aws.aktia.org
*.wallet-sys.aws.aktia.org
Certificate
The complete raw certificate details for devmisc.public-dev.aws.aktia.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEnTCCA4WgAwIBAgIQC2enh2tLrHDKk/M4dTVpFzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA0MDEwMDAwMDBaFw0yMzA0MzAy MzU5NTlaMCsxKTAnBgNVBAMTIGRldm1pc2MucHVibGljLWRldi5hd3MuYWt0aWEu b3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2LpGTZ5eN6MO2H7O Aq0/A4HiArbnflK66BV7YInoLEAY04D7UAPUB4LZl/35h3Ely8nBOlWwCun7M+Lu MU8QRY2HM9hAIl4RFfh428tsE7Yky+8gKoSfBJHlbztps7yiiO4i4ej5oUGM2DU0 FvIjpORxTQCdU0cUyf28uO/G0Akjt6e9xyztYjnaidamnoij4QNKd7eMuQqBNUIo jgszOAK3cASZd3xuwSaOfV3L7KOl01IxDwWDc7DHx9cP9P2b3sGRSXP6uqH0ZzKJ AANbCFht5G2nni+MLjTqFVJ5zz9B15HeQKaN6tHsge1+zkNeZvDap4oclBfstQTs KbTYCwIDAQABo4IBoDCCAZwwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5 PdAwHQYDVR0OBBYEFB/BP3lq2TqcDN4Uvs72p60Itl+xMD0GA1UdEQQ2MDSCIGRl dm1pc2MucHVibGljLWRldi5hd3MuYWt0aWEub3JnghBkZXZtaXNjLmFrdGlhLmZp MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw PQYDVR0fBDYwNDAyoDCgLoYsaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5j b20vc2NhMWItMS5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEE aTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5j b20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29t L3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0G CSqGSIb3DQEBCwUAA4IBAQASAJ+ttp3ixx2P259T7RJVXqSnK7kfBLn6zTqJGSsO NNLbafCSJrK8iG9Am29AKbvHygpg4Y9PPODpIr10wSaKNfIHiEsD4Rzu0mnQ0ORw oyUpj0eq6HOHXNfAlfx8kgrh6S3EHBaAfP06UFRtN8xxsZJNOzWnaqsuGZNf5sIb GwEWoH+Z5rXbxpoyj4TZLfbnZBDvatgV9+L3s3AUGBvWkO+WFgIYDyXAjUm3vlqL +YrcZ38aWlXj+IuIVriIYP/6ekUaL3wVbte+n8WuTzHK59ydm4SJbbKwkmsZeHtX N9y2SvbM4R6BJ66cD4wbbAg41QiOuNlRqrbYL2mQz5yW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2LpGTZ5eN6MO2H7OAq0/ A4HiArbnflK66BV7YInoLEAY04D7UAPUB4LZl/35h3Ely8nBOlWwCun7M+LuMU8Q RY2HM9hAIl4RFfh428tsE7Yky+8gKoSfBJHlbztps7yiiO4i4ej5oUGM2DU0FvIj pORxTQCdU0cUyf28uO/G0Akjt6e9xyztYjnaidamnoij4QNKd7eMuQqBNUIojgsz OAK3cASZd3xuwSaOfV3L7KOl01IxDwWDc7DHx9cP9P2b3sGRSXP6uqH0ZzKJAANb CFht5G2nni+MLjTqFVJ5zz9B15HeQKaN6tHsge1+zkNeZvDap4oclBfstQTsKbTY CwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15159712421475290917349580721540655383 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-04-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-30 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'devmisc.public-dev.aws.aktia.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27359329312210014709766065731829507144048531143131708499760001534128280809159652016342281708920984264687394131196567028680290455629113350226847262115209555955717620960891371422568185490933213497872810062929221786008694492187161520049885156931492944687128396840141918831667983889274771552176150060001545946627723170025620580215857962455661989171692203258792596816598899044077182312584861303121380947452652670078340540264196550374000558613675989876337767379888977636870961637792429926059205572433503390690875305915950113682229461564050295793430747132132244460087773756256266086852196551122874879050530546213263699662859 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1fc13f796ad93a9c0cde14becef6a7ad08b65fb1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'devmisc.public-dev.aws.aktia.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'devmisc.aktia.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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