bloomnation.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 08:08:45:7d:2c:18:b0:97:76:c9:39:b4:f5:e9:32:7d was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bloomnation.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:08:45:7d:2c:18:b0:97:76:c9:39:b4:f5:e9:32:7dSerial Number (int): 10676771744577760434888862334169199229
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 00:8b:3f:de:35:ea:af:d8:27:8b:7e:7a:0d:6d:00:ba:f2:c6:69:30
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 85:9b:0a:a3:fc:8a:3b:e3:fb:7f:a6:31:08:29:ca:5f:88:bd:bf:3f
Fingerprint (sha256): 04:fb:b4:e2:05:dd:9e:f9:48:23:fe:9f:d2:d1:b7:27:c2:0d:0c:9a:33:44:57:94:4f:d4:8c:da:e5:a1:3a:da
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate bloomnation.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bloomnation.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bloomnation.com
*.bloomnation.com
*.bloomnation.com
Other certificates including the domain name bloomnation.com
(limited to 100 certificates)
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
san-10-s11.tlsprovisioning.exacttarget.com
salesloft.bloomnation.com
cloudinary2.map.fastly.net
bloomnation.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
san-10-s11.tlsprovisioning.exacttarget.com
bloomnation.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-cloudinary-pin.map.fastly.net
s2-san.cloudinary.com
pos.bloomnation.com
s2-cloudinary-pin.map.fastly.net
*.bloomnation.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
salesloft.bloomnation.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-cloudinary-pin.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
careers.bloomnation.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
*.bloomnation.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-cloudinary-pin.map.fastly.net
dashboard.bloomnation.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
san-10-s11.tlsprovisioning.exacttarget.com
cloudinary2.map.fastly.net
*.bloomnation.com
cloudinary2.map.fastly.net
s2-cloudinary-pin.map.fastly.net
s2-san.cloudinary.com
bloomnation.com
salesloft.bloomnation.com
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
san-10-s11.tlsprovisioning.exacttarget.com
salesloft.bloomnation.com
cloudinary2.map.fastly.net
bloomnation.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
san-10-s11.tlsprovisioning.exacttarget.com
bloomnation.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-cloudinary-pin.map.fastly.net
s2-san.cloudinary.com
pos.bloomnation.com
s2-cloudinary-pin.map.fastly.net
*.bloomnation.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
salesloft.bloomnation.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-cloudinary-pin.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
careers.bloomnation.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
*.bloomnation.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-cloudinary-pin.map.fastly.net
dashboard.bloomnation.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
cloudinary2.map.fastly.net
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
s2-san.cloudinary.com
san-10-s11.tlsprovisioning.exacttarget.com
cloudinary2.map.fastly.net
*.bloomnation.com
cloudinary2.map.fastly.net
s2-cloudinary-pin.map.fastly.net
s2-san.cloudinary.com
bloomnation.com
salesloft.bloomnation.com
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
cloudinary2.map.fastly.net
Certificate
The complete raw certificate details for bloomnation.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3zCCBMegAwIBAgIQCAhFfSwYsJd2yTm09ekyfTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDMyMzAwMDAwMFoXDTI0MDQyMTIzNTk1OVowGjEY MBYGA1UEAxMPYmxvb21uYXRpb24uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAuRi3Ga6uefzd2Cv03r06tEI14LMb34uUURB93S4c6YEzmUV2LyB6 0+hcS4d80aJ9vTmlTVcWKtO3FHhGd1icvMyyp1YgUlTFUksQL/dlAs4ittzxmGU6 tDTZRUmxn2l3Gd+X3ZqG6OnHXhua8RDe8LsllP/6/ht0aSBgt9BZKPGhYEFQVab3 2yZR5cXX7s8g0lAW8k5BDhiBDzURLXj+aYeKDR7h6NUBn6IpSGfQJeDcnWK9SvDx Pa/SE3xWo8AeBIE2sCYLs7/iCID8eWFC86QMYQxHI7VN1s3opkuhXQTXcHN2gi7M GC9+FQU6YrVGTaX7QS1cH9qrXO9DwT/fKwIDAQABo4IC/TCCAvkwHwYDVR0jBBgw FoAUgbgOY4qJEhjl+js7UJWf5uWQE4UwHQYDVR0OBBYEFACLP9416q/YJ4t+eg1t ALryxmkwMC0GA1UdEQQmMCSCD2Jsb29tbmF0aW9uLmNvbYIRKi5ibG9vbW5hdGlv bi5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAxLmFtYXpvbnRy dXN0LmNvbS9yMm0wMS5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUH AQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMS5hbWF6b250cnVz dC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDEuYW1hem9udHJ1c3Qu Y29tL3IybTAxLmNlcjAMBgNVHRMBAf8EAjAAMIIBgAYKKwYBBAHWeQIEAgSCAXAE ggFsAWoAdwDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYcMhUZB AAAEAwBIMEYCIQCEGsfridQsrh2gcSl/WEN+zjDcLy/Y2yOeD0reCmDO6AIhAKc4 0JeDg59FTT9QGaT0Fh/KSRRRvmHrAwfr6AFeBbBQAHcASLDja9qmRzQP5WoC+p0w 6xxSActW3SyB2bu/qznYhHMAAAGHDIVGVwAABAMASDBGAiEAllQlNw5MXZxYsXH2 bRTTMoOpyVjQBVfM1WEV7biFU68CIQC5jaCPxhzr7d2MSSn6Uqpf8nS8kFgBv6Iw nk5UxkHshwB2ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABhwyF Ri4AAAQDAEcwRQIhAPTfwj+frAjA+hkCKXTxagdbOhvZPu52l2zz3DQPj79gAiBy o0igjbw19+hhU97wsbYD4iTVkVMFF6W5E5Bf2qlzYDANBgkqhkiG9w0BAQsFAAOC AQEA5MQTAcr/A0vXkapFQWtdFm1lTRCyfPaEk+yqxVz5iP7JHtonAEwVA71oufIE cOSEj/o5NGI/VERGUR+y18YFI30vAgm5xaFsfcUo14mCy5e/4X+cgfIhlp3ptHiI VaUtOSxCUrugRkJmSuaUrK2F/x/XUGKTr0TPIZejWBgzWQzEyFR9wWTtqnyfTqS7 ugRTTrWmf24A+293+LPQKSYxhnwKKmIwydd8sdeHvTxoluFgLy+/miWJGu9cyIL+ GWqwCJCGGfdgKzAFR7QE8Khgp4pTaNTxaGL3s1MnsoLgICW3jtSzF+GVOPvWjxO9 QWO72Kbq/eWBJ0l+h8UcFldtdw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuRi3Ga6uefzd2Cv03r06 tEI14LMb34uUURB93S4c6YEzmUV2LyB60+hcS4d80aJ9vTmlTVcWKtO3FHhGd1ic vMyyp1YgUlTFUksQL/dlAs4ittzxmGU6tDTZRUmxn2l3Gd+X3ZqG6OnHXhua8RDe 8LsllP/6/ht0aSBgt9BZKPGhYEFQVab32yZR5cXX7s8g0lAW8k5BDhiBDzURLXj+ aYeKDR7h6NUBn6IpSGfQJeDcnWK9SvDxPa/SE3xWo8AeBIE2sCYLs7/iCID8eWFC 86QMYQxHI7VN1s3opkuhXQTXcHN2gi7MGC9+FQU6YrVGTaX7QS1cH9qrXO9DwT/f KwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10676771744577760434888862334169199229 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bloomnation.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23366273955646488270627427463684978476411466461497771523179003500973924502345996954225828581647088723205541895607527889512386708610483065936455190246979730366116836062748474403044211806813313792579594956338635977102913083826878702895186148880289251312247029421189601146093275711293940995221994216179994949002615869159472393628889825856827352454528891616356029380450099802608514002758149729159463045324132873035881189997662635593368000826555485123006556451164498726664819017071893134971214335987249925654953369808546833409044300517921876405499765044302364439240078481304557272958849830207704921820319005237305034137387 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 008b3fde35eaafd8278b7e7a0d6d00baf2c66930 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bloomnation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bloomnation.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00e4c41301caff034bd791aa45416b5d166d654d10b27cf68493ecaac55cf988fec91eda27004c1503bd68b9f20470e4848ffa3934623f544446511fb2d7c605237d2f0209b9c5a16c7dc528d78982cb97bfe17f9c81f221969de9b4788855a52d392c4252bba04642664ae694acad85ff1fd7506293af44cf2197a3581833590cc4c8547dc164edaa7c9f4ea4bbba04534eb5a67f6e00fb6f77f8b3d0292631867c0a2a6230c9d77cb1d787bd3c6896e1602f2fbf9a25891aef5cc882fe196ab008908619f7602b300547b404f0a860a78a5368d4f16862f7b35327b282e02025b78ed4b317e19538fbd68f13bd4163bbd8a6eafde58127497e87c51c16576d77