xo.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 0c:25:66:13:4c:9b:b7:c6:15:a0:dc:ab:2e:3b:38:b1 was issued on by Amazon.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=xo.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:25:66:13:4c:9b:b7:c6:15:a0:dc:ab:2e:3b:38:b1Serial Number (int): 16144921268008551434049642568082995377
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f5:d9:1d:61:35:d1:36:fa:53:29:65:d0:1c:22:e1:ba:aa:25:e5:58
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): a7:cb:55:81:0a:64:a7:96:44:b1:18:d8:9f:53:bc:1a:19:0f:3d:39
Fingerprint (sha256): 03:34:27:3c:aa:7d:1b:ab:25:ad:8a:d6:0e:42:0a:0f:9b:19:1f:37:9e:52:4a:09:b7:43:3a:c9:5f:cd:42:cf
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate xo.com
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for xo.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
xo.com
enterpriseip.xo.com
sales.xo.com
blog.xo.com
www.xo.com
smallbusiness.xo.com
solutions.xo.com
t1.xo.com
terms.xo.com
enterpriseip.xo.com
sales.xo.com
blog.xo.com
www.xo.com
smallbusiness.xo.com
solutions.xo.com
t1.xo.com
terms.xo.com
Other certificates including the domain name xo.com
(limited to 100 certificates)
webmail.xo.com
portal.xo.com
awtunnel.xo.com
password.xo.com
channelink.xo.com
webmail.xo.com
edgecast-bc.xo.com
xo.com
*.ultradns.com
apps.xo.com
legacy.xo.com
register.xo.com
plaegwdmz01.pla.dc.xo.com
xoradar.xo.com
tools.xo.com
partners.xo.com
xostats.xo.com
xoradar.xo.com
password.xo.com
xowebvpn.xo.com
xo.com
webremedy-fxo.xo.com
xocitrix.xo.com
xowebvpn.xo.com
*.xo.com
txplancoucm11.pla.dc.xo.com
xowebvpn.xo.com
masterstream.xo.com
tools.xo.com
plancactst01.pla.dc.xo.com
xofed.xo.com
partners.xo.com
portal.xo.com
xowebvpn.xo.com
xostats.xo.com
cloud.xo.com
nsamobile.xo.com
*.xo.com
answers.businesscenter.xo.com
bc.xo.com
ofm.xo.com
tools.xo.com
xoprojects.xo.com
testqlsr.dal.dc.xo.com
billing.xo.com
xowebvpn.xo.com
xo.com
portal.xo.com
testxoprojects.dal.dc.xo.com
testnapt.xo.com
apps.xo.com
xoradar.xo.com
masterstream.xo.com
xoprojects.xo.com
dns.xo.com
xoprojects.xo.com
xoprojects.xo.com
TESTQLSR.DAL.DC.XO.COM
pwreset.xo.com
xoradar.xo.com
portal.xo.com
xoprojects.xo.com
citrix.xo.com
xoradar.xo.com
webmail.xo.com
dns.xo.com
billing.xo.com
*.xo.com
plagtrprd02.pla.dc.xo.com
xowebvpn.xo.com
napt.xo.com
napt.xo.com
secure.xo.com
portaldev.xo.com
xowebvpn.xo.com
txplan01-vs01.pla.dc.xo.com
tools.xo.com
usps.xo.com
lyncae.xo.com
portal.xo.com
cloud.xo.com
vahern01-vs01.her.dc.xo.com
xoradar.xo.com
nsamobile.xo.com
portal.xo.com
xostats.xo.com
apps.xo.com
portal.xo.com
partners.xo.com
*.cloud.xo.com
cloud.xo.com
xomobile.xo.com
billing.xo.com
channelink.xo.com
backupcc.xo.com
password.xo.com
plancacprd01.pla.dc.xo.com
xoprojects.xo.com
tools.xo.com
billing.xo.com
portal.xo.com
awtunnel.xo.com
password.xo.com
channelink.xo.com
webmail.xo.com
edgecast-bc.xo.com
xo.com
*.ultradns.com
apps.xo.com
legacy.xo.com
register.xo.com
plaegwdmz01.pla.dc.xo.com
xoradar.xo.com
tools.xo.com
partners.xo.com
xostats.xo.com
xoradar.xo.com
password.xo.com
xowebvpn.xo.com
xo.com
webremedy-fxo.xo.com
xocitrix.xo.com
xowebvpn.xo.com
*.xo.com
txplancoucm11.pla.dc.xo.com
xowebvpn.xo.com
masterstream.xo.com
tools.xo.com
plancactst01.pla.dc.xo.com
xofed.xo.com
partners.xo.com
portal.xo.com
xowebvpn.xo.com
xostats.xo.com
cloud.xo.com
nsamobile.xo.com
*.xo.com
answers.businesscenter.xo.com
bc.xo.com
ofm.xo.com
tools.xo.com
xoprojects.xo.com
testqlsr.dal.dc.xo.com
billing.xo.com
xowebvpn.xo.com
xo.com
portal.xo.com
testxoprojects.dal.dc.xo.com
testnapt.xo.com
apps.xo.com
xoradar.xo.com
masterstream.xo.com
xoprojects.xo.com
dns.xo.com
xoprojects.xo.com
xoprojects.xo.com
TESTQLSR.DAL.DC.XO.COM
pwreset.xo.com
xoradar.xo.com
portal.xo.com
xoprojects.xo.com
citrix.xo.com
xoradar.xo.com
webmail.xo.com
dns.xo.com
billing.xo.com
*.xo.com
plagtrprd02.pla.dc.xo.com
xowebvpn.xo.com
napt.xo.com
napt.xo.com
secure.xo.com
portaldev.xo.com
xowebvpn.xo.com
txplan01-vs01.pla.dc.xo.com
tools.xo.com
usps.xo.com
lyncae.xo.com
portal.xo.com
cloud.xo.com
vahern01-vs01.her.dc.xo.com
xoradar.xo.com
nsamobile.xo.com
portal.xo.com
xostats.xo.com
apps.xo.com
portal.xo.com
partners.xo.com
*.cloud.xo.com
cloud.xo.com
xomobile.xo.com
billing.xo.com
channelink.xo.com
backupcc.xo.com
password.xo.com
plancacprd01.pla.dc.xo.com
xoprojects.xo.com
tools.xo.com
billing.xo.com
Certificate
The complete raw certificate details for xo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGNzCCBR+gAwIBAgIQDCVmE0ybt8YVoNyrLjs4sTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDIwOTAwMDAwMFoXDTIzMDUyNDIzNTk1OVowETEP MA0GA1UEAxMGeG8uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA voZ8wSX+Cl/uhWIthdCMNNczoPSRV+nDcAIjOTY/gFh7yl/hqIwZ3cJZLjNYYoDA liKzWw8NZfoh4h0LkWI0weBRL5csUEhqzx8zrSnp53fW0B8quuVZZ6q8khos1Q1m uDJoJKj7JYqLUBXhAk8rZ71UWTQEZQpahiGW7fqX4pvW2x7lRzPQWJtd4FCk6zs6 ETFlUqqldaM1LmaPG+m6CA5XW/rrIYGO91cVekahiQNvpj7x/z3G3wAjBKE1/WS9 Sb6ngIA4dkY5f8pku1mssIiCod/12kOHNiR1NBQJsZGO35XM8n1qCE/6ZCWbZOgJ we5cAcvdODp05jzloH0juQIDAQABo4IDXjCCA1owHwYDVR0jBBgwFoAUgbgOY4qJ Ehjl+js7UJWf5uWQE4UwHQYDVR0OBBYEFPXZHWE10Tb6Uyll0Bwi4bqqJeVYMIGQ BgNVHREEgYgwgYWCBnhvLmNvbYITZW50ZXJwcmlzZWlwLnhvLmNvbYIMc2FsZXMu eG8uY29tggtibG9nLnhvLmNvbYIKd3d3LnhvLmNvbYIUc21hbGxidXNpbmVzcy54 by5jb22CEHNvbHV0aW9ucy54by5jb22CCXQxLnhvLmNvbYIMdGVybXMueG8uY29t MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw OwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMS5hbWF6b250cnVzdC5j b20vcjJtMDEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkw ZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDEuYW1hem9udHJ1c3QuY29t MDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAxLmFtYXpvbnRydXN0LmNvbS9y Mm0wMS5jZXIwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFn AHYA6D7Q2j71BjUy51covIlryQPTy9ERa+zraeF3fW0GvW4AAAGGNQd/hgAABAMA RzBFAiEAx5ZA0YCXM0FF0QdFui3t1gtHap5h1aGs8dGOz2vqMJYCIHLVJ7KPwF/P grJGpFMJ1cLG5CDJoHaKWkN3GaVepRbvAHYAs3N3B+GEUPhjhtYFqdwRCUp5LbFn DAuH3PADDnk2pZoAAAGGNQd/zwAABAMARzBFAiA6rF4GaNB/gY7lNKiHo4XmuTee o3l4AG1lsa3twhOhdAIhAJ9raZY4wBFX6uofkmJpwGJoG9PcqaEQ3M3H7VXjSGI0 AHUAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGGNQd/owAABAMA RjBEAiBCxWAIAaYvpX/hzoUTKOMrTnIjHpJOMIV2eoa8N2mGEgIgON3gNkzirqZc oewH0e5wS/U739vFk+7pf1f6mCdtF/YwDQYJKoZIhvcNAQELBQADggEBAIhWVSkh A2J82oYS4Uh/OhVRgq4KPHeJDGjmZJ6NbCVqage4XeFD7mX/yVd8XEvnCxBT3X2L 3KFR42lItCENxWxMD1luU2pN9wZ7j8wz9ONoJdbQlGEwsGAWxmftBUuohg+m+e23 tmSaa0ToklRfSh814xlGFGnc4dGxpamHqhXqgTHtXCr/200NYOcZo9XQ/YWEwXV9 ucNfx2VQp6AQEJaZDNZiBKHZ0lTPeClfNxJi7zuBZOpybOtXbwCo0zsZbsI6D9HY 3Bl3hLLVN7hngLntR9rYvIdVOwb7cmrgYHQZz9YTdVEHwD+hqp6Ie/ebik4C+6Kk 7fkLLjUy8CdAtPs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoZ8wSX+Cl/uhWIthdCM NNczoPSRV+nDcAIjOTY/gFh7yl/hqIwZ3cJZLjNYYoDAliKzWw8NZfoh4h0LkWI0 weBRL5csUEhqzx8zrSnp53fW0B8quuVZZ6q8khos1Q1muDJoJKj7JYqLUBXhAk8r Z71UWTQEZQpahiGW7fqX4pvW2x7lRzPQWJtd4FCk6zs6ETFlUqqldaM1LmaPG+m6 CA5XW/rrIYGO91cVekahiQNvpj7x/z3G3wAjBKE1/WS9Sb6ngIA4dkY5f8pku1ms sIiCod/12kOHNiR1NBQJsZGO35XM8n1qCE/6ZCWbZOgJwe5cAcvdODp05jzloH0j uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16144921268008551434049642568082995377 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'xo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24051596113845344240998877592318713696742900266069613212952626705947788254877038239624704984492926944041164468160847249476487535972351047284635729200086780652133289780079162719175774995549750047381461525333296982792103026022019954629155350261857953280889654449788248281067072521299018378962860010332973746351750728374577900852132887062281275233457473568026556271128701991111444304788460746602097284354369615155029669254106235445813168576546426260542381789870704643426262005054560550728626360166189238367845627513175585972823607928628614713836494484699846324568418399904755272088547658220201297802907732090898811265977 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f5d91d6135d136fa532965d01c22e1baaa25e558 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (136 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseip.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sales.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smallbusiness.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'solutions.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 't1.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'terms.xo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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