freight.amazon.co.uk
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 0e:21:91:f1:23:da:a6:ef:9f:a5:93:cd:bb:c0:c9:11 was issued on by Amazon.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=freight.amazon.co.uk
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0e:21:91:f1:23:da:a6:ef:9f:a5:93:cd:bb:c0:c9:11Serial Number (int): 18783497791796476467846457496474536209
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 15:a0:fe:76:6b:e1:fe:f5:0b:5b:f5:66:fc:ef:8c:19:4f:c3:56:71
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 14:44:c4:41:e6:bd:9d:02:2e:46:a4:53:93:23:4d:fc:54:55:27:96
Fingerprint (sha256): 02:c7:55:1e:f1:fe:42:85:31:f5:78:eb:51:11:b4:3e:f6:86:c5:db:40:2f:c9:28:3b:9f:dc:b3:e6:1a:19:dd
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate freight.amazon.co.uk
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for freight.amazon.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
freight.amazon.co.uk
origin-freight.amazon.co.uk
freight.amazon.de
origin-freight.amazon.de
freight.amazon.eu
ship.freight.amazon.in
ship-freight.amazon.in
origin-freight.amazon.co.uk
freight.amazon.de
origin-freight.amazon.de
freight.amazon.eu
ship.freight.amazon.in
ship-freight.amazon.in
Other certificates including the domain name amazon.co.uk
(limited to 100 certificates)
aax-eu.amazon.com
*.peg.a2z.com
translate-acx.amazon.co.uk
glimpse-publish-eu.amazon.com
cde-ta-g7g.amazon.com
smile.amazon.co.uk
skills-store-eu.amazon.com
securephotostorageservice-eu-external.amazon.com
dp-gw-na.amazon.com
content-drive.amazon.co.uk
vendorcentral.amazon.co.uk
internal-campfire-eu.amazon.com
services.amazon.co.uk
www.amazonmusic.es
gio-catalog-eu.amazon.com
vendorcentral.amazon.co.uk
authorize.payments-sandbox.amazon.co.uk
sdu.amazon.eu
logistics.amazon.com
api-amazondevices-eu.amazon.com
cscentral.amazon.co.uk
argileto.amazon.com
sdu.amazon.eu
luna.amazon.eu
af-mobile-api.amazon.co.uk
webservices.amazon.eu
*.peg.a2z.com
glimpse-publish-eu.amazon.com
shipping.amazon.co.uk
www.amazon.co.uk
accelerator.amazon.co.uk
fls-eu.amazon.com
www.amazon.co.uk
website-g7g.amazon.co.uk
membership.amazon.com
arap.amazon.co.uk
freight.amazon.co.uk
kindlestore-sha-proxy.amazon.com
arcus-www.amazon.co.uk
brandservices.amazon.com
gio-catalog-eu.amazon.com
ssofaast-aftx.amazon.co.uk
kep.amazon.com
alexa-skills-beta.amazon.com.au
kep.amazon.com
dp-gw-na.amazon.com
d16gars-eu.amazon.co.uk
r.amazon.co.uk
travel.amazon.co.uk
transportation.amazon.co.uk
api-preprod.amazon.co.uk
internal-campfire-eu.amazon.com
sellercentral.amazon.co.uk
www.amazonmusic.es
sharingservice.amazon.co.uk
primenow.amazon.co.uk
tschavari.de
sdu.amazon.eu
track.amazon.co.uk
carriercentral.amazon.eu
local-sfis.amazon.co.uk
account-status.amazon.co.uk
kep-eu.amazon.com
aws.amazon.co.uk
payments-sandbox.amazon.co.uk
ramp.amazon.com
cde-ta-g7g-sha-proxy-preprod.amazon.com
unagi-eu.amazon.com
cde-ta-g7g.amazon.com
gaming.amazon.eu
aax-eu-retail-direct.amazon-adsystem.com
kindle.amazon.com
amazon.is
account-p2k.amazon.com
api-sandbox.amazon.co.uk
www14.amazon.co.uk
kindle-store-proxy-endpoint-na.amazon.com
ddee-preprod-uk.amazon.co.uk
*.peg.a2z.com
skills-store-eu.amazon.com
endeavour.amazon.co.uk
logistics-platform.amazon.co.uk
brandregistry.amazon.co.uk
amzon.co.uk
read.amazon.co.uk
vpbs-eu.amazon.com
translate-acx.amazon.co.uk
ams.amazon.co.uk
skills-store-eu.amazon.com
identity.browserapps.amazon.co.uk
cscentral.amazon.co.uk
dl.amazon.co.uk
akamai-renew-cert-digicert-arcus-www.amazon.com
brandservices.amazon.com
hub.amazon.it
cde-ta-g7g-preprod.amazon.com
af-mobile-api.amazon.co.uk
d16gars-eu.amazon.co.uk
partnercentral.amazon.it
ssofaast-wms.amazon.co.uk
*.peg.a2z.com
translate-acx.amazon.co.uk
glimpse-publish-eu.amazon.com
cde-ta-g7g.amazon.com
smile.amazon.co.uk
skills-store-eu.amazon.com
securephotostorageservice-eu-external.amazon.com
dp-gw-na.amazon.com
content-drive.amazon.co.uk
vendorcentral.amazon.co.uk
internal-campfire-eu.amazon.com
services.amazon.co.uk
www.amazonmusic.es
gio-catalog-eu.amazon.com
vendorcentral.amazon.co.uk
authorize.payments-sandbox.amazon.co.uk
sdu.amazon.eu
logistics.amazon.com
api-amazondevices-eu.amazon.com
cscentral.amazon.co.uk
argileto.amazon.com
sdu.amazon.eu
luna.amazon.eu
af-mobile-api.amazon.co.uk
webservices.amazon.eu
*.peg.a2z.com
glimpse-publish-eu.amazon.com
shipping.amazon.co.uk
www.amazon.co.uk
accelerator.amazon.co.uk
fls-eu.amazon.com
www.amazon.co.uk
website-g7g.amazon.co.uk
membership.amazon.com
arap.amazon.co.uk
freight.amazon.co.uk
kindlestore-sha-proxy.amazon.com
arcus-www.amazon.co.uk
brandservices.amazon.com
gio-catalog-eu.amazon.com
ssofaast-aftx.amazon.co.uk
kep.amazon.com
alexa-skills-beta.amazon.com.au
kep.amazon.com
dp-gw-na.amazon.com
d16gars-eu.amazon.co.uk
r.amazon.co.uk
travel.amazon.co.uk
transportation.amazon.co.uk
api-preprod.amazon.co.uk
internal-campfire-eu.amazon.com
sellercentral.amazon.co.uk
www.amazonmusic.es
sharingservice.amazon.co.uk
primenow.amazon.co.uk
tschavari.de
sdu.amazon.eu
track.amazon.co.uk
carriercentral.amazon.eu
local-sfis.amazon.co.uk
account-status.amazon.co.uk
kep-eu.amazon.com
aws.amazon.co.uk
payments-sandbox.amazon.co.uk
ramp.amazon.com
cde-ta-g7g-sha-proxy-preprod.amazon.com
unagi-eu.amazon.com
cde-ta-g7g.amazon.com
gaming.amazon.eu
aax-eu-retail-direct.amazon-adsystem.com
kindle.amazon.com
amazon.is
account-p2k.amazon.com
api-sandbox.amazon.co.uk
www14.amazon.co.uk
kindle-store-proxy-endpoint-na.amazon.com
ddee-preprod-uk.amazon.co.uk
*.peg.a2z.com
skills-store-eu.amazon.com
endeavour.amazon.co.uk
logistics-platform.amazon.co.uk
brandregistry.amazon.co.uk
amzon.co.uk
read.amazon.co.uk
vpbs-eu.amazon.com
translate-acx.amazon.co.uk
ams.amazon.co.uk
skills-store-eu.amazon.com
identity.browserapps.amazon.co.uk
cscentral.amazon.co.uk
dl.amazon.co.uk
akamai-renew-cert-digicert-arcus-www.amazon.com
brandservices.amazon.com
hub.amazon.it
cde-ta-g7g-preprod.amazon.com
af-mobile-api.amazon.co.uk
d16gars-eu.amazon.co.uk
partnercentral.amazon.it
ssofaast-wms.amazon.co.uk
Certificate
The complete raw certificate details for freight.amazon.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZTCCBU2gAwIBAgIQDiGR8SPapu+fpZPNu8DJETANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTI0MDMwNzAwMDAwMFoXDTI1MDIwNTIzNTk1OVowHzEd MBsGA1UEAxMUZnJlaWdodC5hbWF6b24uY28udWswggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNIE8GHJwbGS7num0ifDvOaHBz6KQxe9kzmyp2t/u9wsC0 FFQjTVOOWsZGZ8gTj8lpHtWRQaF4TZ9xGpzLYv4ZFrBMt5vOGzvbyy8oD5MC0pbd GeCABcLyHQ72Y9huAhywvPB8VMnM5G6O3Z9ilJ2mQsQRiOt6eMgwenqDkeNzpMiG fUPBnlHP02ev+PY0j3fg3yKGEwpGd3yGqEhx0BgUuVlhrJFVRC5WQAr6UXGERN0u XreVSBhlTNAChXLAsy2cNAIxs6AD72mfvVro3C7Yb/FwjjCGSH2biVfQgpcymjin nhQ3jiwxooDE4dOUYMilq41i+SXmaNU9clUiYVkVAgMBAAGjggN+MIIDejAfBgNV HSMEGDAWgBSBuA5jiokSGOX6OztQlZ/m5ZAThTAdBgNVHQ4EFgQUFaD+dmvh/vUL W/Vm/O+MGU/DVnEwga4GA1UdEQSBpjCBo4IUZnJlaWdodC5hbWF6b24uY28udWuC G29yaWdpbi1mcmVpZ2h0LmFtYXpvbi5jby51a4IRZnJlaWdodC5hbWF6b24uZGWC GG9yaWdpbi1mcmVpZ2h0LmFtYXpvbi5kZYIRZnJlaWdodC5hbWF6b24uZXWCFnNo aXAuZnJlaWdodC5hbWF6b24uaW6CFnNoaXAtZnJlaWdodC5hbWF6b24uaW4wEwYD VR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIy bTAxLmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jcmwwdQYIKwYBBQUHAQEEaTBnMC0G CCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMS5hbWF6b250cnVzdC5jb20wNgYI KwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDEuYW1hem9udHJ1c3QuY29tL3IybTAx LmNlcjAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgDP EVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAY4YMqr0AAAEAwBHMEUC IHwvldtoSdfNEsz3NNWniQIB680me5vCXCLQfRGdEYgnAiEAhWRzlNvYhMVLcBau UnuDq+SeBDH9IACn98hnsZq7QAUAdwB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkD L9kOjC55uAAAAY4YMqqbAAAEAwBIMEYCIQCrgSTk8zw5Z445u6iZ9krhsYSWFr4W 8rlZ3SzOmAKhbAIhALmmCEp5JvRsnITQRtjgS9sBB9RTY1NuIvJK2GNc614PAHYA 5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGOGDKqwAAABAMARzBF AiEA7SYWDTTQX2NGquhinacRFkQ6IXQMeLhX9zdbTr3/UmsCIHDyEPIj2d29aKvK QTBgIxhJI7N7rwNVKk/fHWlzk+vYMA0GCSqGSIb3DQEBCwUAA4IBAQDmI0vUS8wJ LCcU4B+gjcdrYWfPK1JtPWK9XXF7WDklaioQxuARiaF2gWPBcD8oWhD8GhPxB7HC li27e9z27h4sXYKU2sQRBKfw/4VuMM0KEVeeWKJhSat4G9mZCJqsqwzV/od9cNqH 9+HLVWIPMR3h8x+CX3KD81YwnmIl/VG+OaLdJrPo6OPQh+vifrpbYe7iCYtM16MH CkVaOgyDjUgkOgvdBx5bJRSr7D6AU8e3pwvYMfSkciL7eMqWnrRz7NIhpXUDQrRk pDv68ZpDJP2eG59OyVE1gez2amTObFH2zeOlKuKIbCBkc5brCE8rcYBWfewKZkrk 6Z3h2XpOma/d -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSBPBhycGxku57ptInw7 zmhwc+ikMXvZM5sqdrf7vcLAtBRUI01TjlrGRmfIE4/JaR7VkUGheE2fcRqcy2L+ GRawTLebzhs728svKA+TAtKW3RnggAXC8h0O9mPYbgIcsLzwfFTJzORujt2fYpSd pkLEEYjrenjIMHp6g5Hjc6TIhn1DwZ5Rz9Nnr/j2NI934N8ihhMKRnd8hqhIcdAY FLlZYayRVUQuVkAK+lFxhETdLl63lUgYZUzQAoVywLMtnDQCMbOgA+9pn71a6Nwu 2G/xcI4whkh9m4lX0IKXMpo4p54UN44sMaKAxOHTlGDIpauNYvkl5mjVPXJVImFZ FQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18783497791796476467846457496474536209 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'freight.amazon.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25894784525399713600778152357129795613920559860015349884704961094195113911352445048654676251820258169225617993656960605018244037457509982892575040155151539820825996660722030088200741641623045464553109758580188728184174720958411181253761782525275242962232465819785676543131506242838914892718010550370504762195015289256370514829394824180093142668040249900333468664962381921374044307822565479169892283393068067232287158989586043049104835369272988508575871600782582384586089180010444243619551903050712998636869195236602526487707323032952910933711702568823012438845760953133789401763843573729327034302842805124012156475669 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 15a0fe766be1fef50b5bf566fcef8c194fc35671 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (166 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freight.amazon.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-freight.amazon.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freight.amazon.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-freight.amazon.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freight.amazon.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ship.freight.amazon.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ship-freight.amazon.in' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00e6234bd44bcc092c2714e01fa08dc76b6167cf2b526d3d62bd5d717b5839256a2a10c6e01189a1768163c1703f285a10fc1a13f107b1c2962dbb7bdcf6ee1e2c5d8294dac41104a7f0ff856e30cd0a11579e58a26149ab781bd999089aacab0cd5fe877d70da87f7e1cb55620f311de1f31f825f7283f356309e6225fd51be39a2dd26b3e8e8e3d087ebe27eba5b61eee2098b4cd7a3070a455a3a0c838d48243a0bdd071e5b2514abec3e8053c7b7a70bd831f4a47222fb78ca969eb473ecd221a5750342b464a43bfaf19a4324fd9e1b9f4ec9513581ecf66a64ce6c51f6cde3a52ae2886c20647396eb084f2b7180567dec0a664ae4e99de1d97a4e99afdd