gql-dev-py.np.gpe.xfinity.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 0c:3f:1b:6e:95:bc:ed:77:ea:9b:0b:a4:79:20:08:be was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=gql-dev-py.np.gpe.xfinity.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:3f:1b:6e:95:bc:ed:77:ea:9b:0b:a4:79:20:08:beSerial Number (int): 16278407038005525710013756687213660350
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 22:90:d5:aa:60:46:ad:46:88:3b:ed:db:f8:ac:b1:4b:d9:90:e1:c7
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): a8:03:91:0e:25:8c:07:64:f9:31:58:0e:51:8b:fe:8e:d9:8d:bc:e3
Fingerprint (sha256): 04:80:80:cf:96:de:d6:c1:be:e5:72:13:5d:1b:99:16:58:1f:03:07:ff:00:2c:2b:b0:20:88:56:87:bb:45:fa
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate gql-dev-py.np.gpe.xfinity.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gql-dev-py.np.gpe.xfinity.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gql-dev-py.np.gpe.xfinity.com
Other certificates including the domain name xfinity.com
(limited to 100 certificates)
cdn-le4.arkadiumhosted.com
*.xfn-ops.xfinity.com
sit2-hop.cybersource.xfinity.com
*.identity.xfinity.com
approval.xfinity.com
payments.xfinity.com
www.xfinity.comcast.net
brand-staging.xfinity.com
imap.email.comcast.net
*.wifi-stage.connected.xfinity.com
*.iotplatform-int.eu.xfinity.com
*.xcp.xfinity.com
research.xfinity.com
wificouponmanager.xfinity.com
emailplus.xfinity.com
edge.cirrus-config.xcr.comcast.net
wifilogin-st.xfinity.com
pcat-beta.mobile.xfinity.com
*.xcp-ep-prod.xfinity.com
gamex-staging.np.gpe.xfinity.com
*.agentcoach.xfinity.com
iota-staging.xfinity.com
cms9.xfinity.com
developers.xfinity.com
communitystage.re.xfinity.com
developer.xfinity.com
pcat-alpha.mobile.xfinity.com
bill-pay-staging.maw-pci.xfinity.com
events.biggestfantour.com
api.wcdc.int.xfinity.com
stg-tech360-os-hoa-tdb-4.techtools.xfinity.com
missioncontrol.xfinity.com
research.staging.xfinity.com
movableink.xfinity.com
research.staging.xfinity.com
prod.mdu.xfinity.com
bill-pay-qa.maw-pci.xfinity.com
diagnosticapi-stage.traxion.xfinity.com
upload-qa.cvr.comcast.net
approval.xfinity.com
sit-hop.cybersource.xfinity.com
cdn-le4.arkadiumhosted.com
*.oauthlink.iot-prod.xfinity.com
bill-pay-pre-prod.maw-pci.xfinity.com
gql-dev-py.np.gpe.xfinity.com
cdn-le4.arkadiumhosted.com
stage.ipie.xfinity.com
cdn-le4.arkadiumhosted.com
nextray-preprod.traxion.xfinity.com
staging.cx.xfinity.com
gql-dev-node.np.gpe.xfinity.com
my.xfinity.com
*.spil.xfinity.com
bpm-auth.cac.xfinity.com
lab-controller.msn.comcast.net
research.staging.xfinity.com
xfinity.com
*.wifi-stage.connected.xfinity.com
internet.xfinity.com
san1.yext-cdn.com
pcat-alpha.mobile.xfinity.com
secure07.lithium.com
login-dev.comcast.net
xapi.xfinity.com
hawkeye.traxion.xfinity.com
autodiscover.comcast.net
carriers.xfinity.com
xray-stage.traxion.xfinity.com
*.xchat.xfinity.com
experience.xfinity.com
www.xfinity.com
api.dhtimeline.xfinity.com
es.xfinity.com
answers-autozone.pagescdn.com
import.xfinity.com
www.sc.xfinity.com
core.mqtt.iot-qa.eu.xfinity.com
secure07.lithium.com
client-events-gw.gpe.xfinity.com
www.xfinity.com
events.biggestfantour.com
signal-dev-vid.gslb2.xfinity.com
*.cws.xfinity.com
prod-hop.cybersource.xfinity.com
api.ch2.prd.xfinity.com
livecache-ng-prod.cvr.comcast.net
activatecablecard.xfinity.com
validation.slb.comcast.com
api.pdc.int.xfinity.com
communitytd3.re.xfinity.com
traffic-test.np.gpe.xfinity.com
livecache-stg-cvr.gslb2.xfinity.com
secure05.stage.lithium.com
*.np.sdp.xfinity.com
brand.xfinity.com
www.xfinity.comcast.net
*.oauthlink.iot-int.xfinity.com
livecache-cvr.gslb2.xfinity.com
cdn-le4.arkadiumhosted.com
*.xfn-ops.xfinity.com
sit2-hop.cybersource.xfinity.com
*.identity.xfinity.com
approval.xfinity.com
payments.xfinity.com
www.xfinity.comcast.net
brand-staging.xfinity.com
imap.email.comcast.net
*.wifi-stage.connected.xfinity.com
*.iotplatform-int.eu.xfinity.com
*.xcp.xfinity.com
research.xfinity.com
wificouponmanager.xfinity.com
emailplus.xfinity.com
edge.cirrus-config.xcr.comcast.net
wifilogin-st.xfinity.com
pcat-beta.mobile.xfinity.com
*.xcp-ep-prod.xfinity.com
gamex-staging.np.gpe.xfinity.com
*.agentcoach.xfinity.com
iota-staging.xfinity.com
cms9.xfinity.com
developers.xfinity.com
communitystage.re.xfinity.com
developer.xfinity.com
pcat-alpha.mobile.xfinity.com
bill-pay-staging.maw-pci.xfinity.com
events.biggestfantour.com
api.wcdc.int.xfinity.com
stg-tech360-os-hoa-tdb-4.techtools.xfinity.com
missioncontrol.xfinity.com
research.staging.xfinity.com
movableink.xfinity.com
research.staging.xfinity.com
prod.mdu.xfinity.com
bill-pay-qa.maw-pci.xfinity.com
diagnosticapi-stage.traxion.xfinity.com
upload-qa.cvr.comcast.net
approval.xfinity.com
sit-hop.cybersource.xfinity.com
cdn-le4.arkadiumhosted.com
*.oauthlink.iot-prod.xfinity.com
bill-pay-pre-prod.maw-pci.xfinity.com
gql-dev-py.np.gpe.xfinity.com
cdn-le4.arkadiumhosted.com
stage.ipie.xfinity.com
cdn-le4.arkadiumhosted.com
nextray-preprod.traxion.xfinity.com
staging.cx.xfinity.com
gql-dev-node.np.gpe.xfinity.com
my.xfinity.com
*.spil.xfinity.com
bpm-auth.cac.xfinity.com
lab-controller.msn.comcast.net
research.staging.xfinity.com
xfinity.com
*.wifi-stage.connected.xfinity.com
internet.xfinity.com
san1.yext-cdn.com
pcat-alpha.mobile.xfinity.com
secure07.lithium.com
login-dev.comcast.net
xapi.xfinity.com
hawkeye.traxion.xfinity.com
autodiscover.comcast.net
carriers.xfinity.com
xray-stage.traxion.xfinity.com
*.xchat.xfinity.com
experience.xfinity.com
www.xfinity.com
api.dhtimeline.xfinity.com
es.xfinity.com
answers-autozone.pagescdn.com
import.xfinity.com
www.sc.xfinity.com
core.mqtt.iot-qa.eu.xfinity.com
secure07.lithium.com
client-events-gw.gpe.xfinity.com
www.xfinity.com
events.biggestfantour.com
signal-dev-vid.gslb2.xfinity.com
*.cws.xfinity.com
prod-hop.cybersource.xfinity.com
api.ch2.prd.xfinity.com
livecache-ng-prod.cvr.comcast.net
activatecablecard.xfinity.com
validation.slb.comcast.com
api.pdc.int.xfinity.com
communitytd3.re.xfinity.com
traffic-test.np.gpe.xfinity.com
livecache-stg-cvr.gslb2.xfinity.com
secure05.stage.lithium.com
*.np.sdp.xfinity.com
brand.xfinity.com
www.xfinity.comcast.net
*.oauthlink.iot-int.xfinity.com
livecache-cvr.gslb2.xfinity.com
cdn-le4.arkadiumhosted.com
Certificate
The complete raw certificate details for gql-dev-py.np.gpe.xfinity.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5TCCBM2gAwIBAgIQDD8bbpW87XfqmwukeSAIvjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDEwOTAwMDAwMFoXDTI0MDIwNzIzNTk1OVowKDEm MCQGA1UEAxMdZ3FsLWRldi1weS5ucC5ncGUueGZpbml0eS5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEdkAGMvWHL+yVFHhmuF1eBz1kDeYXA9kH P7JBhCTgTU8nuXbgjzPhqRP1VD/nPjjCpzgWRyv4iqrJgoraP3QavxLasEOHZ/Tf jl74udHlBfvLUT0Fbc1vCfcogtU5Yb8+f4mEXO4a4OE0SvV2Ct8tmPuQ6koJaRv/ 4UlRusTrNkF/g4gN3vBnzSwxGFLhVIP7hIZ+j1mLgCh6NPozSO5Vb1zbS1hH324h NE59aRiCkJ8/6cJxmDH+RXPNoJ42oju6Eq6y4Y+OomtZM2MSZj8bFXPDPIdgKEj0 r5dfyRF7wOjwvFVU2G50GBSNIRCwZTlTjYhtSHvh++Jv33tpo3z/AgMBAAGjggL1 MIIC8TAfBgNVHSMEGDAWgBSBuA5jiokSGOX6OztQlZ/m5ZAThTAdBgNVHQ4EFgQU IpDVqmBGrUaIO+3b+KyxS9mQ4ccwKAYDVR0RBCEwH4IdZ3FsLWRldi1weS5ucC5n cGUueGZpbml0eS5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAx LmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEw dQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMS5h bWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDEuYW1h em9udHJ1c3QuY29tL3IybTAxLmNlcjAMBgNVHRMBAf8EAjAAMIIBfQYKKwYBBAHW eQIEAgSCAW0EggFpAWcAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1 mwAAAYWXCIy6AAAEAwBHMEUCIQCge5AUUdUBy6SIGNi3OOIp4YAfiMeGPHAvDpuk i2tndwIgHCGYPxwshigB0Qq2DJHOHkLtYvK6H2B9iGaG5E3BzC8AdgBIsONr2qZH NA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYWXCIyiAAAEAwBHMEUCIQDpxazN yHqPFfXnn+HYgm7sbB3S4+5oIgFOZxFasEmKegIgAg2pWT76Lar6J+pSKBDgEynC 7VxQ/RMnfpFaxdlgOJoAdQB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6 dAAAAYWXCIyvAAAEAwBGMEQCIF3OP7+leHkHd3q0FAyrg8jP4jIclMyhrdivLnFA i5HlAiBDZeYPBweBsf1074+pGvMqN8rqErFvGOv+GhjxKOwS2TANBgkqhkiG9w0B AQsFAAOCAQEAWo5CnWkKVukXEvGr+8KuYeM/1I+2BySZK3xHMsvL65/PJWOb6Uzu j7KIc8oa0Sq/77GsKP45WWPJVtjDvU39FHgAvWGjN8YKDYewlV4Hc/aztZfFLGs7 8SrnMzt7y+yG5EmTTQEpyJOSKOputHktomfGcyHZspfZ5kPHoqHwaSiNBH+awjCY S2Imixr0ny0b6TFSzIqbuY3+KJsoXEYKM0xmhWh/vkFA5n/p8+Uyvg1aN2CyRaEa AkLZjwPl7PLtlL1GBEK/IYAD0so5E9t6Q/qvXZ0UngzDFMNLzxCCRpP/EOrU2HCb Qtqpmn97Jd9Eo1gosYg86PZRdd1NSW3/Hw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHZABjL1hy/slRR4Zrhd Xgc9ZA3mFwPZBz+yQYQk4E1PJ7l24I8z4akT9VQ/5z44wqc4Fkcr+IqqyYKK2j90 Gr8S2rBDh2f0345e+LnR5QX7y1E9BW3Nbwn3KILVOWG/Pn+JhFzuGuDhNEr1dgrf LZj7kOpKCWkb/+FJUbrE6zZBf4OIDd7wZ80sMRhS4VSD+4SGfo9Zi4AoejT6M0ju VW9c20tYR99uITROfWkYgpCfP+nCcZgx/kVzzaCeNqI7uhKusuGPjqJrWTNjEmY/ GxVzwzyHYChI9K+XX8kRe8Do8LxVVNhudBgUjSEQsGU5U42IbUh74fvib997aaN8 /wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16278407038005525710013756687213660350 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gql-dev-py.np.gpe.xfinity.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24801019068281609096629731500827685540860989824021694471481277717815333834379413682018039031411671714630721533939308152035793760919072304577851173303450173571036928004417974236720676599477665573708607110211996331924150697490562890086263492548647932783056236874076314458394624892359878234914686176455732704217956769956038670846262131782363200598484339843396807950529004083841236907269749091582708640531384012846373368343718479740321296517679821172255488649371904664514373368451205986028800551598387421399312062934313829779165554038226431658993102554566553867973998325559537398494676720019634437090285137425401341246719 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2290d5aa6046ad46883beddbf8acb14bd990e1c7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gql-dev-py.np.gpe.xfinity.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN asn1: syntax error: invalid boolean false . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:30|false] BMPString [237 98 242 186 31 96 125 136 102 134 228 77 193 204 47 0 118 0 72 176 227 107 218 166 71 52 15 229 106 2 250 157 48 235 28 82 1 203 86 221 44 129 217 187 191 171 57 216 132 115 0 0 1 133 151 8 140 162 0 0 4 3 0 71 48 69] . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 105738155239936001099463802962907494382889120845653225876689325448929974258298 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 928763510208792258454462301409201245030923915049001479227814924990566906010 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 005a8e429d690a56e91712f1abfbc2ae61e33fd48fb60724992b7c4732cbcbeb9fcf25639be94cee8fb28873ca1ad12abfefb1ac28fe395963c956d8c3bd4dfd147800bd61a337c60a0d87b0955e0773f6b3b597c52c6b3bf12ae7333b7bcbec86e449934d0129c8939228ea6eb4792da267c67321d9b297d9e643c7a2a1f069288d047f9ac230984b62268b1af49f2d1be93152cc8a9bb98dfe289b285c460a334c6685687fbe4140e67fe9f3e532be0d5a3760b245a11a0242d98f03e5ecf2ed94bd460442bf218003d2ca3913db7a43faaf5d9d149e0cc314c34bcf10824693ff10ead4d8709b42daa99a7f7b25df44a35828b1883ce8f65175dd4d496dff1f