ops-api.cn-north-1.pi.a2z.org.cn
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0b:68:8c:87:bf:8d:97:05:75:7f:e4:e1:0f:3c:0d:2c was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ops-api.cn-north-1.pi.a2z.org.cn
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:68:8c:87:bf:8d:97:05:75:7f:e4:e1:0f:3c:0d:2cSerial Number (int): 15164357119350955929335919029731986732
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ab:88:2b:a8:5b:a9:ef:ff:ed:c4:4b:cf:8f:3c:95:ce:30:4b:c6:b9
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 62:0e:14:62:4f:ee:da:33:7a:25:1a:6b:23:7a:ad:45:a8:9f:44:05
Fingerprint (sha256): 02:2a:3d:66:13:77:d9:d4:26:0e:d2:50:c2:58:f2:36:e0:42:d5:f3:0b:c0:4a:df:f3:86:b2:d7:5d:7f:8a:e1
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate ops-api.cn-north-1.pi.a2z.org.cn
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ops-api.cn-north-1.pi.a2z.org.cn
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ops-api.cn-north-1.pi.a2z.org.cn
ops-api.vpc.pi.a2z.com
ops-api.vpc.pi.a2z.com
Other certificates including the domain name a2z.org.cn
(limited to 100 certificates)
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.cti.api.tickety.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.prod.tnsv2.taxes.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
prod-zhy-o.cn-northwest-1.ro.bsg.budgets.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.gamma.cn-north-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
idp.integ.federate.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
main.bsk.cn-northwest-1.beta.basin.security.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.request-queue.composition.config.a2z.org.cn
2080a.prod.cn-northwest-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.gamma.api-tenant.shoehorn.security.a2z.org.cn
*.gamma.cn-north-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.gamma.service.shoehorn.security.a2z.org.cn
preprod-cn-northwest-1.scs.gluestudio.a2z.org.cn
sagemaker.pre-prod.cn-north-1.ml-platform.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.gamma.cn-north-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-north-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.gamma.oas.ops-auth.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
9c84e.gamma.cn-north-1.integtest.moonraker.iot.aws.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
vs.d2c.marketing.aws.a2z.org.cn
ease.gamma.cn-northwest-1.ml-platform.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
8fb61.prod.cn-northwest-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.cti.api.tickety.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.prod.tnsv2.taxes.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
prod-zhy-o.cn-northwest-1.ro.bsg.budgets.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.gamma.cn-north-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
idp.integ.federate.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
main.bsk.cn-northwest-1.beta.basin.security.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.request-queue.composition.config.a2z.org.cn
2080a.prod.cn-northwest-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.gamma.api-tenant.shoehorn.security.a2z.org.cn
*.gamma.cn-north-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.gamma.service.shoehorn.security.a2z.org.cn
preprod-cn-northwest-1.scs.gluestudio.a2z.org.cn
sagemaker.pre-prod.cn-north-1.ml-platform.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.gamma.cn-north-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-north-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.gamma.oas.ops-auth.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
9c84e.gamma.cn-north-1.integtest.moonraker.iot.aws.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
vs.d2c.marketing.aws.a2z.org.cn
ease.gamma.cn-northwest-1.ml-platform.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
8fb61.prod.cn-northwest-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
Certificate
The complete raw certificate details for ops-api.cn-north-1.pi.a2z.org.cn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIElzCCA3+gAwIBAgIQC2iMh7+NlwV1f+ThDzwNLDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIwODAwMDAwMFoXDTI1MDEwNTIzNTk1OVowKzEp MCcGA1UEAxMgb3BzLWFwaS5jbi1ub3J0aC0xLnBpLmEyei5vcmcuY24wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD28sWKVl9CbQU4jVNoESg+E+K5l0r DDrBQ+TwM2WPCjqU4RVQJkfmtC17Puykf9Qu8aC2sNKft+tT64SBWp6B8C1iLYp4 /yi1U6gY99lEBEzjPu6hDGLHmNOM6EyGP449B85bLDr3Zx6LRikdZn+hOG8UYplW wc93mlfawsyaf0FL42pxyB4GR8+A2mJrdx5OLI3luitTpf9UCx+GRX4Zv3J4Pyo2 YfkubFQF/WFBBEqwmeExLA/gjF123OBKrQvaiQ1xZgoX8FUuIPNVGIrDELWmpaqj iCpx4ieJn47Piwq5r1Zx5IC6ybp7g24nD3JWZCR9cRp4K25CoijZPQQfAgMBAAGj ggGkMIIBoDAfBgNVHSMEGDAWgBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4E FgQUq4grqFup7//txEvPjzyVzjBLxrkwQwYDVR0RBDwwOoIgb3BzLWFwaS5jbi1u b3J0aC0xLnBpLmEyei5vcmcuY26CFm9wcy1hcGkudnBjLnBpLmEyei5jb20wEwYD VR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIy bTAzLmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0G CCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYI KwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAz LmNlcjAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3 DQEBCwUAA4IBAQBCKPsLmTCjEYnK2qJ8Rmh55XaMBERhaM4XtjgytQlhrBVb+FwL uLu2o9t+Ge5+gY1lljkePoi7MJ1z62RsanbnOD4ERB9dHRRm2FQp4CmwLhnxZU5w RszrldpW8TYNwm3ck/GVBMZJMYwQZ4421NhBRLRJ6c059lP60WtdEcSIZZf2WyE6 uFT5qf/bDH8G/Wjv8XT7xfybpWdStwOVM6Nh733aoa93DDAeYcBch4EMhySZaw7S 3vfGcvNuJ6fsLocK4VJuMsC/9o6pSZXZGa8KI05dQicjDdjTiY/VbLns8URPeGd2 PCf2iPgFNr8r3XJyPxe0BpTYJKp4OJJJmzqC -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9vLFilZfQm0FOI1TaBE oPhPiuZdKww6wUPk8DNljwo6lOEVUCZH5rQtez7spH/ULvGgtrDSn7frU+uEgVqe gfAtYi2KeP8otVOoGPfZRARM4z7uoQxix5jTjOhMhj+OPQfOWyw692cei0YpHWZ/ oThvFGKZVsHPd5pX2sLMmn9BS+NqccgeBkfPgNpia3ceTiyN5borU6X/VAsfhkV+ Gb9yeD8qNmH5LmxUBf1hQQRKsJnhMSwP4IxddtzgSq0L2okNcWYKF/BVLiDzVRiK wxC1pqWqo4gqceIniZ+Oz4sKua9WceSAusm6e4NuJw9yVmQkfXEaeCtuQqIo2T0E HwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15164357119350955929335919029731986732 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ops-api.cn-north-1.pi.a2z.org.cn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24724853587549200044314399538591277524208554410837719735340073350739466823955216551297383814119816311138141895743052345955002000210472239956435140388540931229759784640351268824052576055067456959801081472270180988798952551844401337057961288124170704636020386185214499378631110942706579170142081164635830342513962607239525940424636583514590980329380884974574099524366711674151381210660100717096170468575208793622117360851353498912596845728673662668706833734338414176327218912598407606371848534732850313256139549189156694543236437600358066768183205638282479545627076775699732817572888978915299960673084846753499026621471 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ab882ba85ba9efffedc44bcf8f3c95ce304bc6b9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ops-api.cn-north-1.pi.a2z.org.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ops-api.vpc.pi.a2z.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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