-429825471 | 2024-12-29T22:00:26.041085
80 /
tcp
HTTP/1.1 302 Found
Location: https://admin.exchange.microsoft.com/
Content-Security-Policy: default-src https://webshell.suite.office.com/ https://login.microsoftonline.com/ shell.cdn.office.net https://outlook.office365.com/ecp/; script-src *.office365.com 'nonce-kc9lOYS61GZlX6xz7VmVsGBnuPrrMHhb0mwQgHGYZ64=' 'report-sample' 'unsafe-inline' 'self' data: https://shellprod.msocdn.com https://prod.msocdn.com *.cdn.office.net https://ow2.res.office365 admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office365.com https://owamaildev.blob.core.windows.net shell.cdn.office.net https://apis.google.com https://accounts.google.com https://webshell.suite.office.com https://portal.office.com/ https://amcdn.msftauth.net https://www.atmrum.net https://www.clarity.ms https://admin.microsoft.com; style-src 'self' 'report-sample' 'unsafe-inline' data: https://spoprod-a.akamaihd.net *.azureedge.net https://shellprod.msocdn.com https://prod.msocdn.com *.cdn.office.net admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office365.com shell.cdn.office.net https://www.clarity.ms; font-src 'self' data: font/woff https://spoprod-a.akamaihd.net *.azureedge.net https://prod.msocdn.com *.cdn.office.net admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office365.com shell.cdn.office.net *.sharepointonline.com https://www.clarity.ms; img-src * data:; connect-src 'self' data: https://shellprod.msocdn.com/ *.config.office.net *.office.microsoft.com https://browser.events.data.microsoft.com/ https://eu-mobile.events.data.microsoft.com/ https://mobile.events.data.microsoft.com/ https://browser.pipe.aria.microsoft.com/ https://prod.msocdn.com *.cdn.office.net https://admin.exchange.trafficmanager.net/ admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office.com *.msedge.net *.office365.com https://login.microsoftonline.com/ shell.cdn.office.net https://admin.microsoft.com/ https://portal.office.com/ https://admin-ignite.microsoft.com/ https://outlook.office365.com/ecp/ https://www.atmrum.net/ https://www.clarity.ms https://alchemysage.azurefd.net/ *.azr.footprintdns.com *.measure.microsoft.com wss://*.office.com wss://*.augloop.svc.cloud.microsoft https://*.iris.microsoft.com/ https://arc.msn.com/; frame-src https://content.googleapis.com https://accounts.google.com https://content-cloudresourcemanager.googleapis.com https://content-serviceusage.googleapis.com https://content-servicemanagement.googleapis.com https://content-iam.googleapis.com https://shellprod.msocdn.com/ https://webshell.suite.office.com https://outlook.office.com/ https://login.microsoftonline.com/ https://ux-mpac.console.azure.com https://outlook.office365.com/ https://outlook.office.com/ https://login.microsoftonline.com/ https://www.clarity.ms https://outlook.office.com.cas.ms/ https://outlook.office.com.mcas.ms/ https://*.cas.ms/ https://*.mcas.ms/; frame-ancestors 'self' https://admin-sdf.exchange.microsoft.com; report-uri https://csp.microsoft.com/report/EAC-WW; base-uri 'self'; form-action 'self'; upgrade-insecure-requests
Strict-Transport-Security: max-age=31536000; includeSubDomains
Date: Sun, 29 Dec 2024 22:00:25 GMT
Content-Length: 0
1609308323 | 2025-01-01T20:31:28.839440
443 /
tcp
HTTP/1.1 302 Found
Location: https://login.microsoftonline.com/common/oauth2/authorize?client_id=497effe9-df71-4043-a8bb-14cf78c4b63b&response_type=code%20id_token&scope=openid%20profile&state=OpenIdConnect.AuthenticationProperties%3DOtzirrOU8U-kGAvPVqNKOZ4q8q08GC9yiCIgpf7nKQZUo6pK2TiekUyH5YpU0hsz6gwyHst1fD9OzS4-xJg9bi6nmCs%26rid%3Dffa81e3c-4d1b-4411-9291-d3f02b39359e&response_mode=form_post&nonce=638713602880147524.OTI4MDg3ZDItZTIwYy00MDA4LWIxZDEtY2ZkMmVjMmZkOTgxYzgxZmUwYzMtNGYzYy00MDk5LWI2YTktNWQxOGQxZWJjNmE0&redirect_uri=https%3A%2F%2F4.231.207.170%2F&post_logout_redirect_uri=https%3A%2F%2F4.231.207.170%2F&x-client-SKU=ID_NET472&x-client-ver=8.1.2.0
Content-Security-Policy: default-src https://webshell.suite.office.com/ https://login.microsoftonline.com/ shell.cdn.office.net https://outlook.office365.com/ecp/; script-src *.office365.com 'nonce-qUlHW7k8y+14zXU/FS5c/Ib+GtAcws61BeFn1W5UtuE=' 'report-sample' 'unsafe-inline' 'self' data: https://shellprod.msocdn.com https://prod.msocdn.com *.cdn.office.net https://ow2.res.office365 admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office365.com https://owamaildev.blob.core.windows.net shell.cdn.office.net https://apis.google.com https://accounts.google.com https://webshell.suite.office.com https://portal.office.com/ https://amcdn.msftauth.net https://www.atmrum.net https://www.clarity.ms https://admin.microsoft.com; style-src 'self' 'report-sample' 'unsafe-inline' data: https://spoprod-a.akamaihd.net *.azureedge.net https://shellprod.msocdn.com https://prod.msocdn.com *.cdn.office.net admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office365.com shell.cdn.office.net https://www.clarity.ms; font-src 'self' data: font/woff https://spoprod-a.akamaihd.net *.azureedge.net https://prod.msocdn.com *.cdn.office.net admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office365.com shell.cdn.office.net *.sharepointonline.com https://www.clarity.ms; img-src * data:; connect-src 'self' data: https://shellprod.msocdn.com/ *.config.office.net *.office.microsoft.com https://browser.events.data.microsoft.com/ https://eu-mobile.events.data.microsoft.com/ https://mobile.events.data.microsoft.com/ https://browser.pipe.aria.microsoft.com/ https://prod.msocdn.com *.cdn.office.net https://admin.exchange.trafficmanager.net/ admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office.com *.msedge.net *.office365.com https://login.microsoftonline.com/ shell.cdn.office.net https://admin.microsoft.com/ https://portal.office.com/ https://admin-ignite.microsoft.com/ https://outlook.office365.com/ecp/ https://www.atmrum.net/ https://www.clarity.ms https://alchemysage.azurefd.net/ *.azr.footprintdns.com *.measure.microsoft.com wss://*.office.com wss://*.augloop.svc.cloud.microsoft https://*.iris.microsoft.com/ https://arc.msn.com/; frame-src https://content.googleapis.com https://accounts.google.com https://content-cloudresourcemanager.googleapis.com https://content-serviceusage.googleapis.com https://content-servicemanagement.googleapis.com https://content-iam.googleapis.com https://shellprod.msocdn.com/ https://webshell.suite.office.com https://outlook.office.com/ https://login.microsoftonline.com/ https://ux-mpac.console.azure.com https://outlook.office365.com/ https://outlook.office.com/ https://login.microsoftonline.com/ https://www.clarity.ms https://outlook.office.com.cas.ms/ https://outlook.office.com.mcas.ms/ https://*.cas.ms/ https://*.mcas.ms/; frame-ancestors 'self' https://admin-sdf.exchange.microsoft.com; report-uri https://csp.microsoft.com/report/EAC-WW; base-uri 'self'; form-action 'self'; upgrade-insecure-requests
WWW-Authenticate: Bearer error="invalid_token"
Set-Cookie: OpenIdConnect.nonce.OuFDHyp2ZBqWdfm5%2BaocsGgVFob%2BomqZcxj5Kyv41%2FM%3D=cVh1bmdMTTk0NUxhcjdFdkN3VXN2NnRDS1l6bjBqLVFOTUVsaGQtRGdrdnh5SWw3bEttM2lKNFU5eWlhQzduU1pfMHNNVjhiZlRKeWR5Q2R1SjNBTDhYMHhyUTRvRVpfMUxMeHFwazV2M0F2MzkyZVE4dDZZV3ViajFQcURxU2RlUmhNRmJVcmZLb0ktcHhueG1CVWM4cDZ0eHhzd1ZtUHR6WW91aDZYQW5mQXh2ZDc0aXRzUXRIeDI5RHBPS2FYR2w5bjRrM0xfNmxhZEFCRWZ5OXVoN1V4MXpz; path=/; expires=Wed, 01-Jan-2025 20:46:28 GMT; secure; HttpOnly; SameSite=None
Set-Cookie: OpenIdConnect.nonce.OuFDHyp2ZBqWdfm5%2BaocsGgVFob%2BomqZcxj5Kyv41%2FM%3D=cVh1bmdMTTk0NUxhcjdFdkN3VXN2NnRDS1l6bjBqLVFOTUVsaGQtRGdrdnh5SWw3bEttM2lKNFU5eWlhQzduU1pfMHNNVjhiZlRKeWR5Q2R1SjNBTDhYMHhyUTRvRVpfMUxMeHFwazV2M0F2MzkyZVE4dDZZV3ViajFQcURxU2RlUmhNRmJVcmZLb0ktcHhueG1CVWM4cDZ0eHhzd1ZtUHR6WW91aDZYQW5mQXh2ZDc0aXRzUXRIeDI5RHBPS2FYR2w5bjRrM0xfNmxhZEFCRWZ5OXVoN1V4MXpz; expires=Wed, 01-Jan-2025 20:46:28 GMT; path=/; samesite=None; secure; HttpOnly
Strict-Transport-Security: max-age=31536000; includeSubDomains
Date: Wed, 01 Jan 2025 20:31:28 GMT
Content-Length: 0
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:01:2e:92:f9:91:31:0b:a3:df:0d:2d:58:00:00:01:2e:92:f9
Signature Algorithm: sha384WithRSAEncryption
Issuer: C=US, O=Microsoft Corporation, CN=Microsoft Azure RSA TLS Issuing CA 04
Validity
Not Before: Dec 4 18:32:45 2024 GMT
Not After : Jun 2 18:32:45 2025 GMT
Subject: C=US, ST=WA, L=Redmond, O=Microsoft Corporation, CN=admin.exchange.microsoft.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a4:49:58:96:fd:01:23:18:2d:7c:26:e4:ed:b8:
61:47:30:5a:5d:07:44:ba:39:72:a0:07:10:1e:4a:
d1:32:b1:bd:4b:4c:e2:32:75:4a:20:dc:1f:f5:8e:
50:5a:5e:c9:ea:7a:43:08:d5:7c:e4:3e:2f:19:83:
a9:44:3a:a3:21:bd:47:f4:fa:9e:a7:ba:b8:67:87:
c7:f1:64:89:26:b1:b4:42:55:bf:a4:ac:03:37:3d:
57:e1:d0:ef:ec:28:1e:1f:81:53:1d:1a:95:53:6f:
11:b2:21:d3:d1:97:ee:92:58:18:49:ad:97:b1:38:
e6:ed:d4:e6:86:e7:7b:a4:51:40:82:3e:5a:ba:17:
46:f3:bf:51:15:ee:f4:93:ab:06:bb:04:1f:44:b8:
d1:b7:90:48:49:42:c9:f7:16:95:2d:ff:a9:fa:15:
c3:3f:2f:1a:4b:e9:a1:3a:1f:f0:b3:48:72:be:bc:
b0:70:47:17:ec:42:cd:d4:27:2b:52:26:ab:a4:4d:
6b:dc:c2:a9:2a:5e:7a:91:74:05:59:04:ed:4b:52:
54:20:f5:08:2d:04:25:b6:3d:5a:df:ae:65:cf:c5:
bf:9c:32:38:d6:98:2c:96:94:f9:92:81:e6:67:69:
98:20:77:de:35:ab:21:cf:91:41:90:6d:07:16:a6:
47:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Dec 4 18:42:48.337 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:DF:91:FF:C0:14:64:1B:E8:D0:CB:45:
E4:AC:1F:AC:AF:6D:DB:BE:51:AD:74:CF:30:9A:74:1A:
79:62:BC:62:4E:02:20:7A:67:3A:90:42:48:A1:95:F4:
B6:B8:83:95:89:B5:1B:53:38:17:7E:31:E7:E4:8F:4B:
FE:38:0D:A0:7C:FC:A7
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Dec 4 18:42:48.241 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:FB:C6:87:FD:2A:F4:4D:94:34:15:BE:
1E:8E:74:31:19:71:C6:EC:B1:5A:6D:43:69:3B:AB:43:
C7:87:E3:37:FA:02:20:36:44:0F:DF:2E:24:C8:D7:D3:
44:B2:84:96:09:BF:1F:81:97:A9:F6:22:4F:FC:56:85:
42:8A:94:69:31:36:3E
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
Timestamp : Dec 4 18:42:48.387 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:E9:DD:E2:41:2F:4E:76:B4:DD:41:B2:
3C:48:6A:0F:23:2A:5D:C4:B2:0B:DF:36:37:58:8C:95:
EA:02:EE:33:85:02:21:00:E5:B0:09:73:FC:B3:C7:6A:
63:33:01:0C:CC:E9:50:C5:6B:CF:55:AF:80:CF:33:52:
85:E8:71:AB:EF:0B:EA:31
Microsoft Application Policies Extension:
0.0
..+.......0
..+.......
Microsoft certificate template:
0-.%+.....7.........F...........]...0......d..-
Authority Information Access:
CA Issuers - URI:http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2004%20-%20xsign.crt
OCSP - URI:http://oneocsp.microsoft.com/ocsp
X509v3 Subject Key Identifier:
6B:14:F8:13:8D:18:AB:58:21:E1:D1:7A:6D:42:FE:E3:D8:B4:0C:77
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Subject Alternative Name:
DNS:admin.exchange.microsoft.com
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 CRL Distribution Points:
Full Name:
URI:http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2004.crl
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.311.76.509.1.1
CPS: http://www.microsoft.com/pkiops/Docs/Repository.htm
Policy: 2.23.140.1.2.2
X509v3 Authority Key Identifier:
3B:70:D1:53:E9:76:25:9D:60:A8:CA:66:0F:C6:9B:AE:6F:54:16:6A
X509v3 Extended Key Usage:
TLS Web Client Authentication, TLS Web Server Authentication
Signature Algorithm: sha384WithRSAEncryption
Signature Value:
92:f2:6d:12:85:0a:8c:ad:e3:89:17:96:48:1f:b3:df:77:dd:
4c:f2:62:01:04:29:5b:fe:28:d7:52:1d:50:20:63:ee:45:8f:
7a:14:41:41:83:31:05:77:93:ec:40:e2:0c:76:c2:bf:6c:07:
67:3f:fa:9d:4a:5f:21:73:62:c8:e9:c6:3d:79:68:53:10:1c:
a9:92:0f:d8:64:5c:76:4a:f9:d5:d2:ce:f6:49:8a:70:0c:d2:
d9:f5:e4:69:9c:d8:0b:0c:05:6e:61:de:c1:57:8f:5d:81:34:
a2:f0:0d:b6:dd:9a:df:f8:d7:5e:a2:1d:af:84:9e:2c:e8:13:
14:98:9d:c1:9f:10:9e:01:03:fe:e0:c4:0c:83:d1:dc:03:58:
15:fa:09:cd:93:63:21:e8:c7:4d:26:92:70:79:66:bc:df:c1:
36:9c:81:c2:79:d8:43:46:87:05:3f:3e:8a:00:c4:f3:62:30:
d7:c5:50:09:ea:b7:de:72:87:8f:c0:ba:f5:e3:65:42:b7:13:
70:97:d1:b6:d7:1d:c2:5f:5b:30:03:03:50:49:10:67:de:ab:
89:a9:e0:96:d0:a6:e6:ea:a5:8e:3c:20:66:2e:53:b5:28:54:
03:e7:1b:dc:2c:24:b2:3a:72:f9:9a:6a:8b:55:79:fa:fa:37:
50:b3:c3:5a:dd:ab:ca:cd:28:40:b0:df:dd:b4:27:c8:df:a9:
67:9d:01:49:4f:e0:26:98:7b:c9:f3:35:39:11:d7:d7:4c:e0:
96:94:0c:74:cd:46:38:46:a6:c6:16:9f:d6:dc:6c:54:78:ac:
82:83:52:a4:14:e3:a8:c1:7c:52:fe:81:af:f6:9b:4a:4f:95:
53:de:8a:f2:0d:10:26:b7:fc:21:b0:73:14:9f:74:88:ab:ee:
b3:3a:d3:9b:d2:36:ec:f3:a8:43:f2:be:59:b1:bd:61:d5:f4:
7a:a6:c3:aa:91:14:29:54:90:29:b5:1f:66:6f:6d:02:49:16:
e9:82:42:1c:56:ff:e9:fc:f3:1e:8e:22:5f:9d:98:01:82:5e:
99:7a:1e:f8:98:d6:96:f8:fc:45:8c:f8:e9:d1:30:c1:98:94:
6c:a9:83:89:ea:77:e5:1b:56:67:6d:72:df:a3:9f:51:8c:b3:
80:36:ce:b7:47:49:ed:88:5e:f0:45:a6:3a:6e:e5:1a:c6:d3:
33:86:a9:88:8f:c2:c0:ac:8a:19:67:0d:1f:69:67:52:55:a0:
97:80:55:d4:cd:0f:b7:5b:a4:f5:92:01:ab:76:fa:3f:cc:1b:
d0:9d:f7:c9:f4:aa:30:f5:08:6b:ce:60:70:b3:82:b9:fd:19:
8c:91:25:af:5f:88:34:ab
1380533126 | 2025-01-02T08:24:07.505113
10000 /
tcp
HTTP/1.1 302 Found
Location: https://login.microsoftonline.com/common/oauth2/authorize?client_id=497effe9-df71-4043-a8bb-14cf78c4b63b&response_type=code%20id_token&scope=openid%20profile&state=OpenIdConnect.AuthenticationProperties%3DCBS1CJytiLeLqLoB-V9krpKrLLPZpBlrEtyeQdYRCXzJX6JtM-kghxRkH9bQ1X1js3cbOjwcVCuZDQvXokEdHamqN5g%26rid%3D38fc29ee-4bd3-45df-8989-bee801f01f10&response_mode=form_post&nonce=638714030474377018.MWE4YTNjZWQtMDU0OC00NDFjLTk4YjItZTlmZGU0N2NkY2NlOThiYWUyYTctZGFkNS00MDE0LTgzNTUtZjZlZWM5OWJhNTBj&redirect_uri=https%3A%2F%2F4.231.207.170%2F&post_logout_redirect_uri=https%3A%2F%2F4.231.207.170%2F&x-client-SKU=ID_NET472&x-client-ver=8.1.2.0
Content-Security-Policy: default-src https://webshell.suite.office.com/ https://login.microsoftonline.com/ shell.cdn.office.net https://outlook.office365.com/ecp/; script-src *.office365.com 'nonce-nb6Q5QjEZvCw59kqQy+EsBnTBibRD8fSuIs8qKy8lCU=' 'report-sample' 'unsafe-inline' 'self' data: https://shellprod.msocdn.com https://prod.msocdn.com *.cdn.office.net https://ow2.res.office365 admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office365.com https://owamaildev.blob.core.windows.net shell.cdn.office.net https://apis.google.com https://accounts.google.com https://webshell.suite.office.com https://portal.office.com/ https://amcdn.msftauth.net https://www.atmrum.net https://www.clarity.ms https://admin.microsoft.com; style-src 'self' 'report-sample' 'unsafe-inline' data: https://spoprod-a.akamaihd.net *.azureedge.net https://shellprod.msocdn.com https://prod.msocdn.com *.cdn.office.net admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office365.com shell.cdn.office.net https://www.clarity.ms; font-src 'self' data: font/woff https://spoprod-a.akamaihd.net *.azureedge.net https://prod.msocdn.com *.cdn.office.net admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office365.com shell.cdn.office.net *.sharepointonline.com https://www.clarity.ms; img-src * data:; connect-src 'self' data: https://shellprod.msocdn.com/ *.config.office.net *.office.microsoft.com https://browser.events.data.microsoft.com/ https://eu-mobile.events.data.microsoft.com/ https://mobile.events.data.microsoft.com/ https://browser.pipe.aria.microsoft.com/ https://prod.msocdn.com *.cdn.office.net https://admin.exchange.trafficmanager.net/ admin.exchange.trafficmanager.net admin.exchange.microsoft.com *.office.com *.msedge.net *.office365.com https://login.microsoftonline.com/ shell.cdn.office.net https://admin.microsoft.com/ https://portal.office.com/ https://admin-ignite.microsoft.com/ https://outlook.office365.com/ecp/ https://www.atmrum.net/ https://www.clarity.ms https://alchemysage.azurefd.net/ *.azr.footprintdns.com *.measure.microsoft.com wss://*.office.com wss://*.augloop.svc.cloud.microsoft https://*.iris.microsoft.com/ https://arc.msn.com/; frame-src https://content.googleapis.com https://accounts.google.com https://content-cloudresourcemanager.googleapis.com https://content-serviceusage.googleapis.com https://content-servicemanagement.googleapis.com https://content-iam.googleapis.com https://shellprod.msocdn.com/ https://webshell.suite.office.com https://outlook.office.com/ https://login.microsoftonline.com/ https://ux-mpac.console.azure.com https://outlook.office365.com/ https://outlook.office.com/ https://login.microsoftonline.com/ https://www.clarity.ms https://outlook.office.com.cas.ms/ https://outlook.office.com.mcas.ms/ https://*.cas.ms/ https://*.mcas.ms/; frame-ancestors 'self' https://admin-sdf.exchange.microsoft.com; report-uri https://csp.microsoft.com/report/EAC-WW; base-uri 'self'; form-action 'self'; upgrade-insecure-requests
WWW-Authenticate: Bearer error="invalid_token"
Set-Cookie: OpenIdConnect.nonce.qPE%2FZmvl8nE%2B1vMrjYs1b03c3R9ZaJ86QuPxJ4tKyAs%3D=OGhhbnRHal93VE9MdEhVTFR4UHhxZW5VM2NORElPYlJTam8zM2VqbUliZW9yZHZ0THlQMl9PSjZDRGRPd1NTckNrMGFOUUZ6SmxCNk1fb0VxUXFfWThfWVhFeVdyY0tFSjJycThXZ3d1bDZkb1ZRVnZUeFhkbXRVTi1BX0Rkc1NkOXJfbW5ZWGtjZmR0LXBKZVR2NUdqZmduUlcyVWVIWi1ncjFxZlZPVWpENUNEM1FjNUpOcC1jM0h0VWo1VnNpZU1BdzBRNm9ScTZaSlhxUkRxdEZyNVJ5MVNV; path=/; expires=Thu, 02-Jan-2025 08:39:07 GMT; secure; HttpOnly; SameSite=None
Set-Cookie: OpenIdConnect.nonce.qPE%2FZmvl8nE%2B1vMrjYs1b03c3R9ZaJ86QuPxJ4tKyAs%3D=OGhhbnRHal93VE9MdEhVTFR4UHhxZW5VM2NORElPYlJTam8zM2VqbUliZW9yZHZ0THlQMl9PSjZDRGRPd1NTckNrMGFOUUZ6SmxCNk1fb0VxUXFfWThfWVhFeVdyY0tFSjJycThXZ3d1bDZkb1ZRVnZUeFhkbXRVTi1BX0Rkc1NkOXJfbW5ZWGtjZmR0LXBKZVR2NUdqZmduUlcyVWVIWi1ncjFxZlZPVWpENUNEM1FjNUpOcC1jM0h0VWo1VnNpZU1BdzBRNm9ScTZaSlhxUkRxdEZyNVJ5MVNV; expires=Thu, 02-Jan-2025 08:39:07 GMT; path=/; samesite=None; secure; HttpOnly
Strict-Transport-Security: max-age=31536000; includeSubDomains
Date: Thu, 02 Jan 2025 08:24:06 GMT
Content-Length: 0
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:01:2e:92:f9:91:31:0b:a3:df:0d:2d:58:00:00:01:2e:92:f9
Signature Algorithm: sha384WithRSAEncryption
Issuer: C=US, O=Microsoft Corporation, CN=Microsoft Azure RSA TLS Issuing CA 04
Validity
Not Before: Dec 4 18:32:45 2024 GMT
Not After : Jun 2 18:32:45 2025 GMT
Subject: C=US, ST=WA, L=Redmond, O=Microsoft Corporation, CN=admin.exchange.microsoft.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a4:49:58:96:fd:01:23:18:2d:7c:26:e4:ed:b8:
61:47:30:5a:5d:07:44:ba:39:72:a0:07:10:1e:4a:
d1:32:b1:bd:4b:4c:e2:32:75:4a:20:dc:1f:f5:8e:
50:5a:5e:c9:ea:7a:43:08:d5:7c:e4:3e:2f:19:83:
a9:44:3a:a3:21:bd:47:f4:fa:9e:a7:ba:b8:67:87:
c7:f1:64:89:26:b1:b4:42:55:bf:a4:ac:03:37:3d:
57:e1:d0:ef:ec:28:1e:1f:81:53:1d:1a:95:53:6f:
11:b2:21:d3:d1:97:ee:92:58:18:49:ad:97:b1:38:
e6:ed:d4:e6:86:e7:7b:a4:51:40:82:3e:5a:ba:17:
46:f3:bf:51:15:ee:f4:93:ab:06:bb:04:1f:44:b8:
d1:b7:90:48:49:42:c9:f7:16:95:2d:ff:a9:fa:15:
c3:3f:2f:1a:4b:e9:a1:3a:1f:f0:b3:48:72:be:bc:
b0:70:47:17:ec:42:cd:d4:27:2b:52:26:ab:a4:4d:
6b:dc:c2:a9:2a:5e:7a:91:74:05:59:04:ed:4b:52:
54:20:f5:08:2d:04:25:b6:3d:5a:df:ae:65:cf:c5:
bf:9c:32:38:d6:98:2c:96:94:f9:92:81:e6:67:69:
98:20:77:de:35:ab:21:cf:91:41:90:6d:07:16:a6:
47:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Dec 4 18:42:48.337 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:DF:91:FF:C0:14:64:1B:E8:D0:CB:45:
E4:AC:1F:AC:AF:6D:DB:BE:51:AD:74:CF:30:9A:74:1A:
79:62:BC:62:4E:02:20:7A:67:3A:90:42:48:A1:95:F4:
B6:B8:83:95:89:B5:1B:53:38:17:7E:31:E7:E4:8F:4B:
FE:38:0D:A0:7C:FC:A7
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Dec 4 18:42:48.241 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:FB:C6:87:FD:2A:F4:4D:94:34:15:BE:
1E:8E:74:31:19:71:C6:EC:B1:5A:6D:43:69:3B:AB:43:
C7:87:E3:37:FA:02:20:36:44:0F:DF:2E:24:C8:D7:D3:
44:B2:84:96:09:BF:1F:81:97:A9:F6:22:4F:FC:56:85:
42:8A:94:69:31:36:3E
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
Timestamp : Dec 4 18:42:48.387 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:E9:DD:E2:41:2F:4E:76:B4:DD:41:B2:
3C:48:6A:0F:23:2A:5D:C4:B2:0B:DF:36:37:58:8C:95:
EA:02:EE:33:85:02:21:00:E5:B0:09:73:FC:B3:C7:6A:
63:33:01:0C:CC:E9:50:C5:6B:CF:55:AF:80:CF:33:52:
85:E8:71:AB:EF:0B:EA:31
Microsoft Application Policies Extension:
0.0
..+.......0
..+.......
Microsoft certificate template:
0-.%+.....7.........F...........]...0......d..-
Authority Information Access:
CA Issuers - URI:http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2004%20-%20xsign.crt
OCSP - URI:http://oneocsp.microsoft.com/ocsp
X509v3 Subject Key Identifier:
6B:14:F8:13:8D:18:AB:58:21:E1:D1:7A:6D:42:FE:E3:D8:B4:0C:77
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Subject Alternative Name:
DNS:admin.exchange.microsoft.com
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 CRL Distribution Points:
Full Name:
URI:http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20RSA%20TLS%20Issuing%20CA%2004.crl
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.311.76.509.1.1
CPS: http://www.microsoft.com/pkiops/Docs/Repository.htm
Policy: 2.23.140.1.2.2
X509v3 Authority Key Identifier:
3B:70:D1:53:E9:76:25:9D:60:A8:CA:66:0F:C6:9B:AE:6F:54:16:6A
X509v3 Extended Key Usage:
TLS Web Client Authentication, TLS Web Server Authentication
Signature Algorithm: sha384WithRSAEncryption
Signature Value:
92:f2:6d:12:85:0a:8c:ad:e3:89:17:96:48:1f:b3:df:77:dd:
4c:f2:62:01:04:29:5b:fe:28:d7:52:1d:50:20:63:ee:45:8f:
7a:14:41:41:83:31:05:77:93:ec:40:e2:0c:76:c2:bf:6c:07:
67:3f:fa:9d:4a:5f:21:73:62:c8:e9:c6:3d:79:68:53:10:1c:
a9:92:0f:d8:64:5c:76:4a:f9:d5:d2:ce:f6:49:8a:70:0c:d2:
d9:f5:e4:69:9c:d8:0b:0c:05:6e:61:de:c1:57:8f:5d:81:34:
a2:f0:0d:b6:dd:9a:df:f8:d7:5e:a2:1d:af:84:9e:2c:e8:13:
14:98:9d:c1:9f:10:9e:01:03:fe:e0:c4:0c:83:d1:dc:03:58:
15:fa:09:cd:93:63:21:e8:c7:4d:26:92:70:79:66:bc:df:c1:
36:9c:81:c2:79:d8:43:46:87:05:3f:3e:8a:00:c4:f3:62:30:
d7:c5:50:09:ea:b7:de:72:87:8f:c0:ba:f5:e3:65:42:b7:13:
70:97:d1:b6:d7:1d:c2:5f:5b:30:03:03:50:49:10:67:de:ab:
89:a9:e0:96:d0:a6:e6:ea:a5:8e:3c:20:66:2e:53:b5:28:54:
03:e7:1b:dc:2c:24:b2:3a:72:f9:9a:6a:8b:55:79:fa:fa:37:
50:b3:c3:5a:dd:ab:ca:cd:28:40:b0:df:dd:b4:27:c8:df:a9:
67:9d:01:49:4f:e0:26:98:7b:c9:f3:35:39:11:d7:d7:4c:e0:
96:94:0c:74:cd:46:38:46:a6:c6:16:9f:d6:dc:6c:54:78:ac:
82:83:52:a4:14:e3:a8:c1:7c:52:fe:81:af:f6:9b:4a:4f:95:
53:de:8a:f2:0d:10:26:b7:fc:21:b0:73:14:9f:74:88:ab:ee:
b3:3a:d3:9b:d2:36:ec:f3:a8:43:f2:be:59:b1:bd:61:d5:f4:
7a:a6:c3:aa:91:14:29:54:90:29:b5:1f:66:6f:6d:02:49:16:
e9:82:42:1c:56:ff:e9:fc:f3:1e:8e:22:5f:9d:98:01:82:5e:
99:7a:1e:f8:98:d6:96:f8:fc:45:8c:f8:e9:d1:30:c1:98:94:
6c:a9:83:89:ea:77:e5:1b:56:67:6d:72:df:a3:9f:51:8c:b3:
80:36:ce:b7:47:49:ed:88:5e:f0:45:a6:3a:6e:e5:1a:c6:d3:
33:86:a9:88:8f:c2:c0:ac:8a:19:67:0d:1f:69:67:52:55:a0:
97:80:55:d4:cd:0f:b7:5b:a4:f5:92:01:ab:76:fa:3f:cc:1b:
d0:9d:f7:c9:f4:aa:30:f5:08:6b:ce:60:70:b3:82:b9:fd:19:
8c:91:25:af:5f:88:34:ab
