*.zipcar.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 01:8b:2a:53:ad:dd:18:c3:8a:cc:5b:ed:10:85:5a:b3 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.zipcar.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:8b:2a:53:ad:dd:18:c3:8a:cc:5b:ed:10:85:5a:b3Serial Number (int): 2051815750070295216507055226814290611
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 1c:ef:b0:75:f4:1d:87:46:4a:5e:db:0e:73:9f:a6:1e:5a:b0:ef:4f
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 58:a3:f7:4f:43:fe:73:59:3c:ab:5d:ed:a1:2e:96:3e:a8:91:bd:cb
Fingerprint (sha256): 04:36:8e:c7:11:24:09:20:fd:4c:d6:5f:2b:86:a7:38:29:a9:17:2c:11:c0:af:e8:a9:26:31:04:aa:23:59:c3
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate *.zipcar.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.zipcar.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.zipcar.com
zipcar.com
zipcar.com
Other certificates including the domain name zipcar.com
(limited to 100 certificates)
ssl2.cdngc.net
ssl2.cdngc.net
ssl2.cdngc.net
dns-vetting1-jeffg-noah.map.fastly.net
vpn.zipcar.com
members.zipcar.com
b2.shared.global.fastly.net
ssl2.cdngc.net
image.partnerapp1.myworld.com
b2.shared.global.fastly.net
surveys.zipcar.com
dns-vetting1-jeffg-noah.map.fastly.net
ssl2.cdngc.net
b2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
ssl2.cdngc.net
b2.shared.global.fastly.net
ssl2.cdngc.net
q.ssl.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
q.ssl.fastly.net
dns-vetting1j.map.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
image.partnerapp1.myworld.com
q.ssl.fastly.net
ssl2.cdngc.net
*.zipcar.com
ssl2.cdngc.net
b2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
ssl2.cdngc.net
image.partnerapp1.myworld.com
dns-vetting1j.map.fastly.net
image.partnerapp1.myworld.com
ssl2.cdngc.net
b2.shared.global.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
dns-vetting1-jeffg-noah.map.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
image.partnerapp1.myworld.com
ssl2.cdngc.net
dns-vetting1-jeffg-noah.map.fastly.net
b2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
b2.shared.global.fastly.net
ssl2.cdngc.net
b2.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b2.shared.global.fastly.net
b2.shared.global.fastly.net
b2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
b2.shared.global.fastly.net
b2.shared.global.fastly.net
ssl2.cdngc.net
b2.shared.global.fastly.net
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
b2.shared.global.fastly.net
b2.shared.global.fastly.net
ssl2.cdngc.net
b2.shared.global.fastly.net
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
b2.shared.global.fastly.net
san-2-s6.tlsprovisioning.exacttarget.com
dns-vetting1-jeffg-noah.map.fastly.net
ssl2.cdngc.net
dns-vetting1-jeffg-noah.map.fastly.net
b2.shared.global.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
dns-vetting1-jeffg-noah.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
q.ssl.fastly.net
q.ssl.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
q.ssl.fastly.net
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
b2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
support.zipcar.com
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
q.ssl.fastly.net
dns-vetting1j.map.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
ssl2.cdngc.net
ssl2.cdngc.net
dns-vetting1-jeffg-noah.map.fastly.net
vpn.zipcar.com
members.zipcar.com
b2.shared.global.fastly.net
ssl2.cdngc.net
image.partnerapp1.myworld.com
b2.shared.global.fastly.net
surveys.zipcar.com
dns-vetting1-jeffg-noah.map.fastly.net
ssl2.cdngc.net
b2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
ssl2.cdngc.net
b2.shared.global.fastly.net
ssl2.cdngc.net
q.ssl.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
q.ssl.fastly.net
dns-vetting1j.map.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
image.partnerapp1.myworld.com
q.ssl.fastly.net
ssl2.cdngc.net
*.zipcar.com
ssl2.cdngc.net
b2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
ssl2.cdngc.net
image.partnerapp1.myworld.com
dns-vetting1j.map.fastly.net
image.partnerapp1.myworld.com
ssl2.cdngc.net
b2.shared.global.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
dns-vetting1-jeffg-noah.map.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
image.partnerapp1.myworld.com
ssl2.cdngc.net
dns-vetting1-jeffg-noah.map.fastly.net
b2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
b2.shared.global.fastly.net
ssl2.cdngc.net
b2.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b2.shared.global.fastly.net
b2.shared.global.fastly.net
b2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
b2.shared.global.fastly.net
b2.shared.global.fastly.net
ssl2.cdngc.net
b2.shared.global.fastly.net
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
b2.shared.global.fastly.net
b2.shared.global.fastly.net
ssl2.cdngc.net
b2.shared.global.fastly.net
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
b2.shared.global.fastly.net
san-2-s6.tlsprovisioning.exacttarget.com
dns-vetting1-jeffg-noah.map.fastly.net
ssl2.cdngc.net
dns-vetting1-jeffg-noah.map.fastly.net
b2.shared.global.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
dns-vetting1-jeffg-noah.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
q.ssl.fastly.net
q.ssl.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
q.ssl.fastly.net
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
b2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
support.zipcar.com
ssl2.cdngc.net
dns-vetting1j.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
q.ssl.fastly.net
dns-vetting1j.map.fastly.net
ssl2.cdngc.net
ssl2.cdngc.net
Certificate
The complete raw certificate details for *.zipcar.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF0TCCBLmgAwIBAgIQAYsqU63dGMOKzFvtEIVaszANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDIyODAwMDAwMFoXDTIzMTIxMTIzNTk1OVowFzEV MBMGA1UEAwwMKi56aXBjYXIuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAxA/ml339SSapzs0c15IC9ZLJjLeIEbrwPu8KcTJLwCGM/38VhnXGZmjf pLAq7FnLl36G9RQuCTa8ZuV2+ILsDl7qE7HsQkMscNP0ji7XMaWFmwSnxwWwuPn9 s8/tKHNiZWNBA+dIwR2mCwJUhP5WHKfsCB8Cbm8xEEG448OPjKG1DSKE3l5N5ZgQ 0tkqeWiA5Nd5ZJf0fXeh1u4DzZAmi3nhsHXZp6Rzlcw+fX2MUbIITHYbch8ns5Si gGg+fH6OdlCpLgvewy1MHN/kfmVxLGmV+YOh59DO2BYEJmaCZ+FV9uPnqElQ+emF 5eZlzxzAsddbWHk7NhBpvVgbKbfYlQIDAQABo4IC8jCCAu4wHwYDVR0jBBgwFoAU gbgOY4qJEhjl+js7UJWf5uWQE4UwHQYDVR0OBBYEFBzvsHX0HYdGSl7bDnOfph5a sO9PMCMGA1UdEQQcMBqCDCouemlwY2FyLmNvbYIKemlwY2FyLmNvbTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0 MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDEuYW1hem9udHJ1c3QuY29tL3IybTAx LmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYB BQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAxLmFtYXpvbnRydXN0LmNvbTA2BggrBgEF BQcwAoYqaHR0cDovL2NydC5yMm0wMS5hbWF6b250cnVzdC5jb20vcjJtMDEuY2Vy MAwGA1UdEwEB/wQCMAAwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2AOg+0No+ 9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABhpfHJqgAAAQDAEcwRQIhAKVj AJEipHcHqz/yLRqWRkQhTPrGeIktFFV6lzM79q1hAiAyn0TrcKEHxqIvGBH0YM0t SMd+/wF0SZPZLPVl5OsqVQB2ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55 NqWaAAABhpfHJvIAAAQDAEcwRQIhAI6gVswQgYdz/FYSNafgdyc0fD/uW4UGCqBX Yx+s017+AiAJZ74HjdmoV6rVTVM0lNhFHadPu5Xxk5TNHgB1r8agSgB3ALc++yTf nE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABhpfHJq8AAAQDAEgwRgIhAKXM hBN75NMG7qoCGnyuQVzYjUK8akSOXqIRIk6vbrtaAiEAqKvuW9hU+UV5JNUhRjzV 5m9ZbuIYSR/TSko3q6atUCMwDQYJKoZIhvcNAQELBQADggEBAKZ1UEmyQmEs7jD7 nu4IMz7Df18u862Kc83gDw9ofp/HZV/3EWOVAo2rjPAqeXLdX2e4FDtqbbjT2XFB 53Gnl7N5mJpYzhlhAjBfAsDx3ei7MnInt5Nv28Q4ix4iz3IQ7yeP4VhnNynkd3fA M3rf14QQnLtYcSjBMc2J7nMz6okEAb+G9ASnPlvja9x2gp55vvl8sOKJ8fBwm6IQ sZNrBNV5T2luZhLPFO0RTcx45MxU5tNyWawFS1P8pABfVKjf6q0g7wta4q799On7 H4eK+U97CEe+8QZzmMUiM3e7v71DS6rEFgBr5jLsIB3NLSWkE7ZGuYIeWZ3YCGc3 +kk2KZg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxA/ml339SSapzs0c15IC 9ZLJjLeIEbrwPu8KcTJLwCGM/38VhnXGZmjfpLAq7FnLl36G9RQuCTa8ZuV2+ILs Dl7qE7HsQkMscNP0ji7XMaWFmwSnxwWwuPn9s8/tKHNiZWNBA+dIwR2mCwJUhP5W HKfsCB8Cbm8xEEG448OPjKG1DSKE3l5N5ZgQ0tkqeWiA5Nd5ZJf0fXeh1u4DzZAm i3nhsHXZp6Rzlcw+fX2MUbIITHYbch8ns5SigGg+fH6OdlCpLgvewy1MHN/kfmVx LGmV+YOh59DO2BYEJmaCZ+FV9uPnqElQ+emF5eZlzxzAsddbWHk7NhBpvVgbKbfY lQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2051815750070295216507055226814290611 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.zipcar.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24750548724958411173817897833468563708835513152130881990146425939161672695452896948608975377381135336767706567419286069386130631438283473111612951591192036350085434068832211350207809354079545168522291720493849909205056478390675071500464349862626894869621735175109864074766846933182380913900399637607167213774722273340151984759793763313925058531787967666964854588786525727363923535946883015655184821567060015584325117676468639977878241818003217489825481237006279377624647415082541164385568995370570407056551475904528951822238070711326686799511872521545653651091102066684562872354521341857599201923893813071093714901141 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1cefb075f41d87464a5edb0e739fa61e5ab0ef4f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.zipcar.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zipcar.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 0169007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018697c726a80000040300473045022100a563009122a47707ab3ff22d1a964644214cfac678892d14557a97333bf6ad610220329f44eb70a107c6a22f1811f460cd2d48c77eff01744993d92cf565e4eb2a55007600b3737707e18450f86386d605a9dc11094a792db1670c0b87dcf0030e7936a59a0000018697c726f200000403004730450221008ea056cc10818773fc561235a7e07727347c3fee5b85060aa057631facd35efe02200967be078dd9a857aad54d533494d8451da74fbb95f19394cd1e0075afc6a04a007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018697c726af0000040300483046022100a5cc84137be4d306eeaa021a7cae415cd88d42bc6a448e5ea211224eaf6ebb5a022100a8abee5bd854f9457924d521463cd5e66f596ee218491fd34a4a37aba6ad5023 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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