www.bag.admin.ch
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0b:11:f2:9e:9b:30:fc:19:46:97:cc:1d:02:94:a0:9a was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.bag.admin.ch
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:11:f2:9e:9b:30:fc:19:46:97:cc:1d:02:94:a0:9aSerial Number (int): 14714697909432323093893862690603180186
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 35:ee:a7:a7:d2:06:23:2c:f8:4d:07:a3:64:cd:8e:c3:bf:d4:4c:6b
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 19:3e:27:e0:4d:e7:ea:13:c3:81:b2:c2:d6:18:15:e0:3d:e0:50:ce
Fingerprint (sha256): 00:dc:c2:c4:a3:cd:2c:bd:ca:fa:69:b1:bb:dd:ff:a3:75:1f:7c:23:db:4b:5d:d3:e4:27:7f:35:15:23:31:7e
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate www.bag.admin.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.bag.admin.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.bag.admin.ch
Other certificates including the domain name admin.ch
(limited to 100 certificates)
www.blw.admin.ch
www.gate.bav.admin.ch
www.jira-a.estv.admin.ch
sts0032.sts.eiam.admin.ch
www.cmsp4-a.admin.ch
appint.naz.admin.ch
www.staatskalender.admin.ch
*.geo.admin.ch
www.code.admin.ch
www.bundespublikationen.admin.ch
www.suissetax-r.estv.admin.ch
help.geo.admin.ch
int.translation.eda.admin.ch
www.portal.bsv.admin.ch
viaduc.sfa-laboratory.ch
www.tacho-en.admin.ch
e-dec-web-a.ezv.admin.ch
ncts-formular.ezv.admin.ch
trifid-lindas.int.cluster.ldbar.ch
ws.inar-r.zas.admin.ch
rp-eda01.eda.admin.ch
apis.sem.admin.ch
ws.seodor.zas.admin.ch
www.sust.admin.ch
www.edb.admin.ch
www.sib.admin.ch
www.apistore.estv.admin.ch
www.xmlns.bfs.admin.ch
www.logixs.eda.admin.ch
www.esti.admin.ch
nd8.li.admin.ch
www.bar.admin.ch
sts003-r.gever.admin.ch
www-tmp-a.ekf.admin.ch
www.cfig.admin.ch
adonis.ezv.admin.ch
www.bag.admin.ch
key-recovery.a-pki.admin.ch
Int.ex4.lmsvbs.admin.ch
toolchain-selfservice.bit.admin.ch
s001047a.adr.admin.ch
ws.dds.bakom.admin.ch
rio-a.ssl.admin.ch
www.portal-a.eiam.admin.ch
www.ekff.admin.ch
www.cms-a1.admin.ch
ws.lsvastammdaten-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
www.sonderbewilligungen.admin.ch
intranet.sibad.vbs.admin.ch
storme-r.bafu.admin.ch
intranet.gate-r.bar.admin.ch
idp-base.gate-r.eiam.admin.ch
tokenunseal.a-pki.admin.ch
www.e-cites-a2.admin.ch
www.regress.admin.ch
intranet.vbs.admin.ch
www.oscitv-gw-a.admin.ch
epo.ejpd.admin.ch
test2.gate-a.bit.admin.ch
www.etv.blv.admin.ch
www.bestellung-k.admin.ch
www.pxweb-admin-a.bfs.admin.ch
www.widget.e-portal.admin.ch
www.ausbildung.eur-med.bazg.admin.ch
ebd.abn.ezv.admin.ch
www.cmsp8-a.admin.ch
www.b2cshop-i.admin.ch
idp-egov-federal.gate-d.eiam.admin.ch
flrt.bazl.admin.ch
ca-sbpp.seco.admin.ch
www.b2cshop.admin.ch
www.coff-ekff.admin.ch
sanadress.vbs.admin.ch
www.medregom-r.admin.ch
transfer-pr.wbf.admin.ch
cmc.a-pki.admin.ch
www.g2020-info.admin.ch
www.eofcom-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
ww2.elic-en.admin.ch
ws.quattrop-r.admin.ch
www.bbl.admin.ch
wwwt.interruptio-ges.bfs.admin.ch
www-tmp.roemerholz.admin.ch
www.aramis.admin.ch
survey.efk.admin.ch
uat-publish-internet-vbs.vbs.admin.ch
www.infoafam-a.zas.admin.ch
www.sust.admin.ch
www.plugins.aramis-a.admin.ch
www.pxweb-a.bfs.admin.ch
www.openegov.admin.ch
www.cms-t2.admin.ch
www.psyreg-k.admin.ch
www.cfej.admin.ch
www.cfig.admin.ch
pin-reset.a-pki.admin.ch
www.gate.bav.admin.ch
www.jira-a.estv.admin.ch
sts0032.sts.eiam.admin.ch
www.cmsp4-a.admin.ch
appint.naz.admin.ch
www.staatskalender.admin.ch
*.geo.admin.ch
www.code.admin.ch
www.bundespublikationen.admin.ch
www.suissetax-r.estv.admin.ch
help.geo.admin.ch
int.translation.eda.admin.ch
www.portal.bsv.admin.ch
viaduc.sfa-laboratory.ch
www.tacho-en.admin.ch
e-dec-web-a.ezv.admin.ch
ncts-formular.ezv.admin.ch
trifid-lindas.int.cluster.ldbar.ch
ws.inar-r.zas.admin.ch
rp-eda01.eda.admin.ch
apis.sem.admin.ch
ws.seodor.zas.admin.ch
www.sust.admin.ch
www.edb.admin.ch
www.sib.admin.ch
www.apistore.estv.admin.ch
www.xmlns.bfs.admin.ch
www.logixs.eda.admin.ch
www.esti.admin.ch
nd8.li.admin.ch
www.bar.admin.ch
sts003-r.gever.admin.ch
www-tmp-a.ekf.admin.ch
www.cfig.admin.ch
adonis.ezv.admin.ch
www.bag.admin.ch
key-recovery.a-pki.admin.ch
Int.ex4.lmsvbs.admin.ch
toolchain-selfservice.bit.admin.ch
s001047a.adr.admin.ch
ws.dds.bakom.admin.ch
rio-a.ssl.admin.ch
www.portal-a.eiam.admin.ch
www.ekff.admin.ch
www.cms-a1.admin.ch
ws.lsvastammdaten-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
www.sonderbewilligungen.admin.ch
intranet.sibad.vbs.admin.ch
storme-r.bafu.admin.ch
intranet.gate-r.bar.admin.ch
idp-base.gate-r.eiam.admin.ch
tokenunseal.a-pki.admin.ch
www.e-cites-a2.admin.ch
www.regress.admin.ch
intranet.vbs.admin.ch
www.oscitv-gw-a.admin.ch
epo.ejpd.admin.ch
test2.gate-a.bit.admin.ch
www.etv.blv.admin.ch
www.bestellung-k.admin.ch
www.pxweb-admin-a.bfs.admin.ch
www.widget.e-portal.admin.ch
www.ausbildung.eur-med.bazg.admin.ch
ebd.abn.ezv.admin.ch
www.cmsp8-a.admin.ch
www.b2cshop-i.admin.ch
idp-egov-federal.gate-d.eiam.admin.ch
flrt.bazl.admin.ch
ca-sbpp.seco.admin.ch
www.b2cshop.admin.ch
www.coff-ekff.admin.ch
sanadress.vbs.admin.ch
www.medregom-r.admin.ch
transfer-pr.wbf.admin.ch
cmc.a-pki.admin.ch
www.g2020-info.admin.ch
www.eofcom-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
ww2.elic-en.admin.ch
ws.quattrop-r.admin.ch
www.bbl.admin.ch
wwwt.interruptio-ges.bfs.admin.ch
www-tmp.roemerholz.admin.ch
www.aramis.admin.ch
survey.efk.admin.ch
uat-publish-internet-vbs.vbs.admin.ch
www.infoafam-a.zas.admin.ch
www.sust.admin.ch
www.plugins.aramis-a.admin.ch
www.pxweb-a.bfs.admin.ch
www.openegov.admin.ch
www.cms-t2.admin.ch
www.psyreg-k.admin.ch
www.cfej.admin.ch
www.cfig.admin.ch
pin-reset.a-pki.admin.ch
Certificate
The complete raw certificate details for www.bag.admin.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIQCxHynpsw/BlGl8wdApSgmjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTExODAwMDAwMFoXDTI0MTIxNTIzNTk1OVowGzEZ MBcGA1UEAxMQd3d3LmJhZy5hZG1pbi5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMRIkK8g9csm7Lgtf7dtozJFHlE0FaG5bk/s3Li1pLN4sbJK3KEO ysBdWF0mSs15Mv8dvyctKCLZ0F9AMB1RKx7tKbkJvXYK/LN2rYjOGaeyhgvjS3m7 NZf9NuIuob5wkrxHcTxYKHsqLwxbZWFh9ZXLno24JPeWO8oWwmNnaVcWJ8kHkUDc RlfPjJnfPYb1x+HxtKR5yXsWBcsZC1s+EOx+nEzSjrVF/492kp6jn01WQ+Fs41YI 7epjiUa52dpB8Z2IrCOySyihVzZLhdNN94piyOUgXXkn9rv+y6MbanKA1AeahsiZ MKIUQ3eUh+bmH9Ef74j7GzHGWvEa/QlR2GMCAwEAAaOCAuowggLmMB8GA1UdIwQY MBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBQ17qen0gYjLPhNB6Nk zY7Dv9RMazAbBgNVHREEFDASghB3d3cuYmFnLmFkbWluLmNoMBMGA1UdIAQMMAow CAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMi5hbWF6 b250cnVzdC5jb20vcjJtMDIuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcw AYYhaHR0cDovL29jc3AucjJtMDIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAC hipodHRwOi8vY3J0LnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYD VR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHYA7s3QZNXbGs7F XLedtM0TojKHRny87N7DUUhZRnEftZsAAAGL4U3ndwAABAMARzBFAiAp7EsOPKcY k0Z0bWZr4fysGC5X/FbNF1Q3RmvwdWdbKgIhAPusfIlhqYIZ20hifyNesBdczXIG A+nGrjY15C/MKaL6AHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMA AAGL4U3niwAABAMASDBGAiEAwi0kdalpHbvQrivtO6C+02Dv7XCDsNBNMnSbfwOj hi4CIQDWXHpbvKx7aIQH7fqD2040BYfiBlc1W2jCmyckw675lgB2ANq2v2s/tbYi n5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABi+FN55EAAAQDAEcwRQIhAOnJXrIg NiPeCBRomQQoZOVqZaqHBYiO+a4F110DL0D3AiArB5eRNBDAsWjViHOgjTNs6LBU x/UVZeuxXYoGlDO3LzANBgkqhkiG9w0BAQsFAAOCAQEAIN2LimgGi9+02doe+0zt ISMkND8pPOoTeSN0dvQ3arLCU6INuSFUL4HgmX51ct250PvM5bO0ZWjf+etku2ae 4q1zA0PrCsWqq8heE5e44+869bPBMyF+phIfY6L51vKn0Qe1PDG17ah7XOhJBueg WAz4UgISYPYgVg2z1oP/lTIuFCznK/JBPuIMccB6SgPxUae/QjFawWtBQg1mkweB DTimeuuXVSdqiSoGNnQf3aiWH9Bgx+0NccMSJs6SkWCVj65+JY+3I+Vqo+IbqBoO p4VbxIfOiNBa2WppUdNAWFHJlyO5vMWrW0iBKIIelp2PxmOiNYvn6tfxhps+SKFT SQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxEiQryD1yybsuC1/t22j MkUeUTQVobluT+zcuLWks3ixskrcoQ7KwF1YXSZKzXky/x2/Jy0oItnQX0AwHVEr Hu0puQm9dgr8s3atiM4Zp7KGC+NLebs1l/024i6hvnCSvEdxPFgoeyovDFtlYWH1 lcuejbgk95Y7yhbCY2dpVxYnyQeRQNxGV8+Mmd89hvXH4fG0pHnJexYFyxkLWz4Q 7H6cTNKOtUX/j3aSnqOfTVZD4WzjVgjt6mOJRrnZ2kHxnYisI7JLKKFXNkuF0033 imLI5SBdeSf2u/7LoxtqcoDUB5qGyJkwohRDd5SH5uYf0R/viPsbMcZa8Rr9CVHY YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14714697909432323093893862690603180186 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bag.admin.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24778490993444154914633892822860602668097570508882841140510766106656345917148571635859439902337222442172105713217112547575543679503233167842791781143187997781006656129000218261623961316739067131688770542754755955089800663438372854828791210314901726540645736521090232163161123834511852019466823241608762856662495261335578013372354591512810206412554346865592843809591351264153736273173000132487477110253216749158710677203672765464351308272707240841691328788549877002960032951590457763874024759886429028881501054147934019473688100543145696668308860483187996520072163229193257254921425733976908937355340258882692142192739 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 35eea7a7d206232cf84d07a364cd8ec3bfd44c6b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bag.admin.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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