user-gateway.int.plm.otto.de
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 01:04:c7:91:09:59:ba:c9:85:82:14:c1:3c:54:a4:85 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=user-gateway.int.plm.otto.de
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:04:c7:91:09:59:ba:c9:85:82:14:c1:3c:54:a4:85Serial Number (int): 1354044873707587998080700371367666821
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: ee:df:32:f5:6f:56:34:8d:90:35:3c:ee:93:e9:aa:d1:b8:b7:a6:8a
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 9c:03:76:3e:fc:55:ed:b0:e5:32:89:00:4b:e7:79:d5:44:21:ee:68
Fingerprint (sha256): 03:ae:b8:a8:3f:bf:f4:73:94:23:61:92:4d:9e:fc:f3:3b:bd:9e:7a:a5:68:85:8d:75:fa:bf:f7:fc:e7:05:c3
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate user-gateway.int.plm.otto.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for user-gateway.int.plm.otto.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
user-gateway.int.plm.otto.de
Other certificates including the domain name otto.de
(limited to 100 certificates)
*.develop.find.cloud.otto.de
craproxy.cccs.dr.orderprocessing.otto.de
*.ci.logik.cloud.otto.de
*.infrastructure.tracking.cloud.otto.de
*.dr.newsletter.cloud.otto.de
*.live.services.platform.otto.de
lead-registration-frontend-dev-xalvarez.nonlive.plm.otto.de
*.develop.up.cloud.otto.de
onboarding-feed-wm.int.marketplace-integration.platform.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
psm.otto.de
*.nonlive.pricing.platform.otto.de
craproxy.cccs.dr.orderprocessing.otto.de
zeitgeschenke.otto.de
*.tst.cps360.brain.otto.de
protegrity.cps360.tst.brain.otto.de
odin-demand-center.nonlive.odin.cloud.otto.de
customerctx.develop2.b2ccreditfraud.payments.otto.de
variation-lifecycle.develop.opal-dr.cloud.otto.de
partner-data.int.plm.otto.de
link.service.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
image01int.otto.de
*.nonlive.api.platform.otto.de
cecuda.cccs.dr.orderprocessing.otto.de
advancepayment.cccs.dr.orderprocessing.otto.de
t.ssl.fastly.net
*.develop.nucleus.cloud.otto.de
partner-data.int.plm.otto.de
ats.otto.de
partner-data-wm.int.marketplace-integration.platform.otto.de
access.infrastructure.scalesec.cloud.otto.de
*.live-dr.karma.cloud.otto.de
partner-data.int.plm.otto.de
*.develop.assets-dr.cloud.otto.de
si-grafana.nonlive.si.cloud.otto.de
partner-data.int.plm.otto.de
grafana.cps360.tst.brain.otto.de
acp.praemienkontor.de
odin-demand-center.nonlive.odin.cloud.otto.de
craproxy.cccs.dr.orderprocessing.otto.de
cic.otto.de
*.live.refunds.platform.otto.de
acp.praemienkontor.de
auth.nonlive.si.cloud.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
cecuda.cccs.dr.orderprocessing.otto.de
*.custacc.otto.de
advancepayment.cccs.dr.orderprocessing.otto.de
t.ssl.fastly.net
*.infra.dr.tracking.cloud.otto.de
*.infrastructure.dr-apps.cloud.otto.de
api-dashboard.nonlive.spoc.cloud.otto.de
dsp-backend.live.odin.cloud.otto.de
i2.adis.ws
advancepayment.cccs.dr.orderprocessing.otto.de
*.internal.nonlive.wato.ft7bcn-dr.cloud.otto.de
api.int.plm.otto.de
secret.sec.otto.de
*.nonlive-dr.customer.platform.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
partner-data.int.marketplace-integration.platform.otto.de
cass.cccs.dr.orderprocessing.otto.de
oic.dr.develop.som.platform.otto.de
*.live.coco.cloud.otto.de
order.nonlive.psw.otto.de
cass.cccs.dr.orderprocessing.otto.de
*.develop.som.platform.otto.de
cass.cccs.dr.orderprocessing.otto.de
*.internal.develop.karma.cloud.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
pcc-3675713842.int.turtle.platform.otto.de
*.live.boxfish.platform.otto.de
sprint.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
internal.developci.user.cloud.otto.de
*.develop.dr.karma.cloud.otto.de
access.infrastructure.scalesec.cloud.otto.de
partner-data.int.plm.otto.de
oic.dr.develop.som.platform.otto.de
www.teleoptiprd.otto.de
rocketroulette.otto.de
pushinbox-mobile.nonlive.appsbcn.cloud.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
internal.develop.user.cloud.otto.de
*.dr.develop.som.platform.otto.de
vat-id-verifier.int.plm.otto.de
user-gateway.int.plm.otto.de
*.develop.qs.cloud.otto.de
access.infrastructure.scalesec.cloud.otto.de
*.cps360.tst.brain.otto.de
*.internal.infrastructure.find.cloud.otto.de
advancepayment.cccs.dr.orderprocessing.otto.de
importer-odc.nonlive.odin.cloud.otto.de
*.badass.prophet.dev.nonlive.omen.cloud.otto.de
saleability.int.plm.otto.de
partner-data.int.plm.otto.de
*.develop.promo.cloud.otto.de
protegrity.cps360.prd.brain.otto.de
api.int.plm.otto.de
craproxy.cccs.dr.orderprocessing.otto.de
*.ci.logik.cloud.otto.de
*.infrastructure.tracking.cloud.otto.de
*.dr.newsletter.cloud.otto.de
*.live.services.platform.otto.de
lead-registration-frontend-dev-xalvarez.nonlive.plm.otto.de
*.develop.up.cloud.otto.de
onboarding-feed-wm.int.marketplace-integration.platform.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
psm.otto.de
*.nonlive.pricing.platform.otto.de
craproxy.cccs.dr.orderprocessing.otto.de
zeitgeschenke.otto.de
*.tst.cps360.brain.otto.de
protegrity.cps360.tst.brain.otto.de
odin-demand-center.nonlive.odin.cloud.otto.de
customerctx.develop2.b2ccreditfraud.payments.otto.de
variation-lifecycle.develop.opal-dr.cloud.otto.de
partner-data.int.plm.otto.de
link.service.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
image01int.otto.de
*.nonlive.api.platform.otto.de
cecuda.cccs.dr.orderprocessing.otto.de
advancepayment.cccs.dr.orderprocessing.otto.de
t.ssl.fastly.net
*.develop.nucleus.cloud.otto.de
partner-data.int.plm.otto.de
ats.otto.de
partner-data-wm.int.marketplace-integration.platform.otto.de
access.infrastructure.scalesec.cloud.otto.de
*.live-dr.karma.cloud.otto.de
partner-data.int.plm.otto.de
*.develop.assets-dr.cloud.otto.de
si-grafana.nonlive.si.cloud.otto.de
partner-data.int.plm.otto.de
grafana.cps360.tst.brain.otto.de
acp.praemienkontor.de
odin-demand-center.nonlive.odin.cloud.otto.de
craproxy.cccs.dr.orderprocessing.otto.de
cic.otto.de
*.live.refunds.platform.otto.de
acp.praemienkontor.de
auth.nonlive.si.cloud.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
cecuda.cccs.dr.orderprocessing.otto.de
*.custacc.otto.de
advancepayment.cccs.dr.orderprocessing.otto.de
t.ssl.fastly.net
*.infra.dr.tracking.cloud.otto.de
*.infrastructure.dr-apps.cloud.otto.de
api-dashboard.nonlive.spoc.cloud.otto.de
dsp-backend.live.odin.cloud.otto.de
i2.adis.ws
advancepayment.cccs.dr.orderprocessing.otto.de
*.internal.nonlive.wato.ft7bcn-dr.cloud.otto.de
api.int.plm.otto.de
secret.sec.otto.de
*.nonlive-dr.customer.platform.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
partner-data.int.marketplace-integration.platform.otto.de
cass.cccs.dr.orderprocessing.otto.de
oic.dr.develop.som.platform.otto.de
*.live.coco.cloud.otto.de
order.nonlive.psw.otto.de
cass.cccs.dr.orderprocessing.otto.de
*.develop.som.platform.otto.de
cass.cccs.dr.orderprocessing.otto.de
*.internal.develop.karma.cloud.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
pcc-3675713842.int.turtle.platform.otto.de
*.live.boxfish.platform.otto.de
sprint.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
internal.developci.user.cloud.otto.de
*.develop.dr.karma.cloud.otto.de
access.infrastructure.scalesec.cloud.otto.de
partner-data.int.plm.otto.de
oic.dr.develop.som.platform.otto.de
www.teleoptiprd.otto.de
rocketroulette.otto.de
pushinbox-mobile.nonlive.appsbcn.cloud.otto.de
customerscoring.cccs.dr.orderprocessing.otto.de
internal.develop.user.cloud.otto.de
*.dr.develop.som.platform.otto.de
vat-id-verifier.int.plm.otto.de
user-gateway.int.plm.otto.de
*.develop.qs.cloud.otto.de
access.infrastructure.scalesec.cloud.otto.de
*.cps360.tst.brain.otto.de
*.internal.infrastructure.find.cloud.otto.de
advancepayment.cccs.dr.orderprocessing.otto.de
importer-odc.nonlive.odin.cloud.otto.de
*.badass.prophet.dev.nonlive.omen.cloud.otto.de
saleability.int.plm.otto.de
partner-data.int.plm.otto.de
*.develop.promo.cloud.otto.de
protegrity.cps360.prd.brain.otto.de
api.int.plm.otto.de
Certificate
The complete raw certificate details for user-gateway.int.plm.otto.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEdzCCA1+gAwIBAgIQAQTHkQlZusmFghTBPFSkhTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIyMDAwMDAwMFoXDTI1MDExNzIzNTk1OVowJzEl MCMGA1UEAxMcdXNlci1nYXRld2F5LmludC5wbG0ub3R0by5kZTCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAK8M9tJZmAIlVYG3qPNgmhn0ULR9iLDUIS4/ uhem+f5eLlRJopWaFExy/bfqQslV0QpHSMwkkA+DJ78frzoxgGEy44e6Dhp5FoMH cssXJR5eFowuSi4Mfq/T5vizIJvD1X2swj8LyaRIE+hJAqkaWZtNFgLBx+s4+brZ veGakRtxikHBDjFNhoac1ZcKHSAfOBmSupDBEwGYTWM6uCsNrFjZvLoIe7/i2XXi 0F1R3XsOYDMBset1/sCabJRRA1lxLHgU6URhVGrb97I1ymZQmo74PYAa3r1QqyMr fmWxIENaReDFTsjtUrHMyaTWSXJCjDLVJuyf9ARbtwNxGLaZN9UCAwEAAaOCAYgw ggGEMB8GA1UdIwQYMBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBTu 3zL1b1Y0jZA1PO6T6arRuLemijAnBgNVHREEIDAeghx1c2VyLWdhdGV3YXkuaW50 LnBsbS5vdHRvLmRlMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6g LIYqaHR0cDovL2NybC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3JsMHUG CCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDIuYW1h em9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAyLmFtYXpv bnRydXN0LmNvbS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5AgQD AQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAilr95JcD+HSrtroY8K2JRvgOpEe2 G/CLoF70qpd5MMH6/pRxCUMyKPtzyStgVdEkwJg5CnP8BepMan8Cj0fxh0n4OmNL sdUYN/3ZjkxZYFyOzCyO/xi2RXVwOPjvuiSRGKl8sTGrc5jPUL6FyKkZqMpoQLQy wNfs3oW2uD5dyFbKMEjignRtLchbaZwvoJSy22rOm+Cbmjf4uL2ZJ0qcqT8daWWR 6YYF0kW1oIUZPmnKSWgDd7ma/xKlfh1lYP7/X9m9ulxencVpjh7kkWkrA3GozmIE DHkNApwia0Edj+YAEluss34QLa3NjN+TQJ0Fs9jkk3XR9exNmdCA7q7xGA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwz20lmYAiVVgbeo82Ca GfRQtH2IsNQhLj+6F6b5/l4uVEmilZoUTHL9t+pCyVXRCkdIzCSQD4Mnvx+vOjGA YTLjh7oOGnkWgwdyyxclHl4WjC5KLgx+r9Pm+LMgm8PVfazCPwvJpEgT6EkCqRpZ m00WAsHH6zj5utm94ZqRG3GKQcEOMU2GhpzVlwodIB84GZK6kMETAZhNYzq4Kw2s WNm8ugh7v+LZdeLQXVHdew5gMwGx63X+wJpslFEDWXEseBTpRGFUatv3sjXKZlCa jvg9gBrevVCrIyt+ZbEgQ1pF4MVOyO1SsczJpNZJckKMMtUm7J/0BFu3A3EYtpk3 1QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1354044873707587998080700371367666821 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'user-gateway.int.plm.otto.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22098096228302757395466073741017099424989328728500221895644175834702464023228989822319039331022667188016651463000441430471719849418908147720439509588158751591886019248490372639857509242015103338889138015398972546977769283918303050593268439632441662508358062167853152916183349939350856225798423694057895198905618328223000442125649478608431654451151905194475099672238414908646540165500652151001322055388159762622157713100554060663973527318150777623244872850183544001243539109785445049954582321776174913316095788485897910829651367215333535764781976744448929809657348618488651455733543158025547733473223100726241360689109 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) eedf32f56f56348d90353cee93e9aad1b8b7a68a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'user-gateway.int.plm.otto.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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