ci-demo.oregon.delivery.aimatch.net
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 04:6d:b6:94:31:5c:e7:c9:7d:2d:82:dc:18:90:ba:ab was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ci-demo.oregon.delivery.aimatch.net
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:6d:b6:94:31:5c:e7:c9:7d:2d:82:dc:18:90:ba:abSerial Number (int): 5886575480312957658387740051006077611
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 0b:e0:ec:2c:c6:fc:50:a0:e2:1b:3d:05:a5:7d:48:7d:1e:39:8f:05
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): c6:51:3d:69:bd:e7:75:14:0a:d9:37:50:36:0f:3c:dc:aa:7d:c6:df
Fingerprint (sha256): 02:c7:02:13:62:bb:4b:57:12:fe:83:a7:07:31:70:04:9b:a0:1b:85:1c:5e:e8:74:6d:20:6f:42:a1:9f:86:09
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate ci-demo.oregon.delivery.aimatch.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ci-demo.oregon.delivery.aimatch.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ci-demo.oregon.delivery.aimatch.net
Other certificates including the domain name aimatch.net
(limited to 100 certificates)
*.aimatch.com
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
canary.sydney.delivery.aimatch.net
combinedloadtst.oregon.delivery.dev.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
canary.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-demo.oregon.delivery.aimatch.net
tier1-usw2.oregon.delivery.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-demo.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
tier1-euw1.ireland.delivery.aimatch.net
tier1-apse2.sydney.delivery.aimatch.net
ci-apne1.tokyo.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
canary.oregon.delivery.aimatch.net
tweety.ireland.delivery.aimatch.net
tier1-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
tweety.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
tweety.ireland.delivery.aimatch.net
tweety.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
*.aimatch.com
itv-tier1.ireland.delivery.aimatch.net
*.aimatch.com
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
canary.oregon-tier3.delivery.aimatch.net
tngcibyokst.oregon-cassandra.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
combinedloadtst.oregon.delivery.dev.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
itv-tier1.ireland.delivery.aimatch.net
canary.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
tweety.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
combinedloadtst.oregon.delivery.dev.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-tier2.oregon.delivery.aimatch.net
canary.oregon-tier3.delivery.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
canary.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
canary.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
*.dev.aimatch.com
ci-usw2.oregon.delivery.aimatch.net
tier2-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
*.aimatch.com
ci-aps1.mumbai.delivery.aimatch.net
combinedloadtst.oregon.delivery.dev.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
*.aimatch.com
ci-aps1.mumbai.delivery.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
canary.sydney.delivery.aimatch.net
combinedloadtst.oregon.delivery.dev.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
canary.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-demo.oregon.delivery.aimatch.net
tier1-usw2.oregon.delivery.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-demo.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
tier1-euw1.ireland.delivery.aimatch.net
tier1-apse2.sydney.delivery.aimatch.net
ci-apne1.tokyo.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
canary.oregon.delivery.aimatch.net
tweety.ireland.delivery.aimatch.net
tier1-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
tweety.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
tweety.ireland.delivery.aimatch.net
tweety.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
*.aimatch.com
itv-tier1.ireland.delivery.aimatch.net
*.aimatch.com
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
canary.oregon-tier3.delivery.aimatch.net
tngcibyokst.oregon-cassandra.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
combinedloadtst.oregon.delivery.dev.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
itv-tier1.ireland.delivery.aimatch.net
canary.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
tweety.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
combinedloadtst.oregon.delivery.dev.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-tier2.oregon.delivery.aimatch.net
canary.oregon-tier3.delivery.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
canary.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
canary.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
*.dev.aimatch.com
ci-usw2.oregon.delivery.aimatch.net
tier2-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
*.aimatch.com
ci-aps1.mumbai.delivery.aimatch.net
combinedloadtst.oregon.delivery.dev.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
*.aimatch.com
ci-aps1.mumbai.delivery.aimatch.net
ci-aps1.mumbai.delivery.aimatch.net
ci-usw2.oregon.delivery.aimatch.net
Certificate
The complete raw certificate details for ci-demo.oregon.delivery.aimatch.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9TCCBN2gAwIBAgIQBG22lDFc58l9LYLcGJC6qzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMDkyNTAwMDAwMFoXDTI0MTAyMzIzNTk1OVowLjEs MCoGA1UEAxMjY2ktZGVtby5vcmVnb24uZGVsaXZlcnkuYWltYXRjaC5uZXQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZwePSDv0b/RpAC2CENSuXpzaa PSwuRY0r92QmWbl7BaUjcJae09pC/SAxco4+s0bDVB6EJb13nNV0/khPHU+3IoHy /gXdnt43pO/SwIEwi9df3NuErzTWlfE/DGXo/abIIZ6M+At8VGDlp56R8FTeF+RW f5umLqoE4AFly1HoqUtQCTVbh7mNTb3zq9WPV4sq7Y6ij2uGPily3P6bv5Qug39E GQhFbwqtXAwDeSYFIKD+SKii3BBaG/Jknk2Pabz7x6mKbM/WM6ijAjQQqxzyino1 NQgN40T4HoOJnPq2qP1afmRYBunbDF2Aa4EV19C3NfvTCtUpRgEYyngBYjqRAgMB AAGjggL/MIIC+zAfBgNVHSMEGDAWgBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNV HQ4EFgQUC+DsLMb8UKDiGz0FpX1IfR45jwUwLgYDVR0RBCcwJYIjY2ktZGVtby5v cmVnb24uZGVsaXZlcnkuYWltYXRjaC5uZXQwEwYDVR0gBAwwCjAIBgZngQwBAgEw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7 BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRydXN0LmNv bS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8v b2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9j cnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMBAf8EAjAA MIIBgQYKKwYBBAHWeQIEAgSCAXEEggFtAWsAdwDuzdBk1dsazsVct520zROiModG fLzs3sNRSFlGcR+1mwAAAYrOMkHWAAAEAwBIMEYCIQDC4WX5xOeYtxTnY+w8AxMT 3shBE5g1nrXRqfL1Mdm+DwIhAISgX9b6ONq1eZ9qAgo8p+FGZWzy7XEudX4dLmXw LnMsAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGKzjJCJAAA BAMASDBGAiEA1CDl5xrm7u4txJ1VzhnrVU95wqZg0Meh9V3orLppHG4CIQCCSURl bSXOnaVqMoew8EHQfqPLxnV9Mqe9C3yjvQg7GAB3ANq2v2s/tbYin5vCu1xr6HCR cWy7UYSFNL2kPTBI1/urAAABis4yQfUAAAQDAEgwRgIhAKROE6M85WBEsTyAst34 P3yM1xN2Wfv1Q4tm2LVMU3E1AiEAsVyv7Q8xwmXCj9D9mYrsj/PoNoSbJX9CWssg gANsOVYwDQYJKoZIhvcNAQELBQADggEBAFzlArPR+XE3P0NWnS8WhYHn7YhK7tEA 4PE10XP/VK7XuedlCwvTGsTJtyUv4Ug2R0YH0ULHDYWu/tg0ZTMBCno0VDwhQ4OQ xzmkaN7Q0lb6MpmkVhRfDKNqwkGCCW+T5xIEHjdVfQYoBZ4BiSaF9TqrexKwgmTa KFZ5A9EjDTgdu8cYuCIZl5mfOR5lGKZZsNoDgvtqkndgPHiDNbosD/TJ9/mD2NHR pPNLw44OJGtp1d+VISd3eUsgyC9CNtg3ql87MAaoxKXO6xQtfQ+zRx4mpQVdshHE K64Gg1f8lDYen2G32APmB97haSo5yCacXXUkTLiJCXvr0PIdpZPT0ko= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2cHj0g79G/0aQAtghDUr l6c2mj0sLkWNK/dkJlm5ewWlI3CWntPaQv0gMXKOPrNGw1QehCW9d5zVdP5ITx1P tyKB8v4F3Z7eN6Tv0sCBMIvXX9zbhK801pXxPwxl6P2myCGejPgLfFRg5aeekfBU 3hfkVn+bpi6qBOABZctR6KlLUAk1W4e5jU2986vVj1eLKu2Ooo9rhj4pctz+m7+U LoN/RBkIRW8KrVwMA3kmBSCg/kiootwQWhvyZJ5Nj2m8+8epimzP1jOoowI0EKsc 8op6NTUIDeNE+B6DiZz6tqj9Wn5kWAbp2wxdgGuBFdfQtzX70wrVKUYBGMp4AWI6 kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5886575480312957658387740051006077611 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-23 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ci-demo.oregon.delivery.aimatch.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27489322862612775333271503459750905754276370194880036454346949335768604320172625811260384688666852645421612957594927129837488221741155034982370956097046242768917271314948280008506731428695293065034592259255187442703658889501970256980809037165050642247695396155806712369246710138678645363575907240610180597797020895479331640942703911078486369853457751809693761930430164906236104754118099668433925564356190395296660641691492628419272633941495969758260270433854949249026170560171498579708098251409336423440821838227907228295658278923157181696696668644381479600304747245210903752701894575852516367424424925309754023230097 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0be0ec2cc6fc50a0e21b3d05a57d487d1e398f05 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci-demo.oregon.delivery.aimatch.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (369 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) 016b007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ace3241d60000040300483046022100c2e165f9c4e798b714e763ec3c031313dec8411398359eb5d1a9f2f531d9be0f02210084a05fd6fa38dab5799f6a020a3ca7e146656cf2ed712e757e1d2e65f02e732c00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ace3242240000040300483046022100d420e5e71ae6eeee2dc49d55ce19eb554f79c2a660d0c7a1f55de8acba691c6e022100824944656d25ce9da56a3287b0f041d07ea3cbc6757d32a7bd0b7ca3bd083b18007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018ace3241f50000040300483046022100a44e13a33ce56044b13c80b2ddf83f7c8cd7137659fbf5438b66d8b54c537135022100b15cafed0f31c265c28fd0fd998aec8ff3e836849b257f425acb2080036c3956 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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