download-tracked.flockmail.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 08:8d:65:c8:55:44:75:01:81:d6:0f:20:39:df:f5:84 was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=download-tracked.flockmail.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 08:8d:65:c8:55:44:75:01:81:d6:0f:20:39:df:f5:84Serial Number (int): 11368002218724194685662641200511841668
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 64:ae:18:35:46:05:44:a9:62:6b:33:b0:f0:73:b5:c7:58:20:2e:9a
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 57:b7:b9:36:55:7c:b5:f4:e4:03:ca:90:03:64:de:d3:85:ea:0c:fa
Fingerprint (sha256): 05:12:7b:5d:8b:40:01:52:5a:ae:65:a3:6a:aa:02:87:66:ff:96:aa:82:a7:4e:c4:2b:1d:b1:06:5d:22:fc:ad
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate download-tracked.flockmail.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for download-tracked.flockmail.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
download-tracked.flockmail.com
*.download-tracked.flockmail.com
upload-tracked.flockmail.com
*.upload-tracked.flockmail.com
*.download-tracked.flockmail.com
upload-tracked.flockmail.com
*.upload-tracked.flockmail.com
Other certificates including the domain name flockmail.com
(limited to 100 certificates)
status.achilles.com
status.attomus.com
status.achilles.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
download-tracked.flockmail.com
status.attomus.com
status.achilles.com
status.attomus.com
dardenstatus.paradox.ai
status.attomus.com
status.attomus.com
endpoint-security.status.broadcom.com
*.flockmail.com
status.achilles.com
endpoint-security.status.broadcom.com
status.attomus.com
status.achilles.com
status.achilles.com
atlanticindustrie-status.polaris.synopsys.com
status.attomus.com
agency.online.anz.com
agency.online.anz.com
flockmail.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
support.flock.com
status.achilles.com
status.achilles.com
dardenstatus.paradox.ai
status.achilles.com
endpoint-security.status.broadcom.com
agency.online.anz.com
status.attomus.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
status.achilles.com
flockmail.com
*.flockmail.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
support.flock.com
status.achilles.com
status.achilles.com
dardenstatus.paradox.ai
status.achilles.com
endpoint-security.status.broadcom.com
dardenstatus.paradox.ai
*.flockmail.com
dardenstatus.paradox.ai
endpoint-security.status.broadcom.com
status.achilles.com
agency.online.anz.com
endpoint-security.status.broadcom.com
status.achilles.com
status.achilles.com
endpoint-security.status.broadcom.com
dardenstatus.paradox.ai
status.achilles.com
flockmail.com
endpoint-security.status.broadcom.com
*.flockmail.com
*.flockmail.com
status.achilles.com
endpoint-security.status.broadcom.com
support.flock.com
status.achilles.com
status.achilles.com
atlanticindustrie-status.polaris.synopsys.com
status.achilles.com
endpoint-security.status.broadcom.com
support.flock.com
dardenstatus.paradox.ai
status.attomus.com
status.achilles.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
dardenstatus.paradox.ai
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
status.attomus.com
*.flockmail.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
support.flock.com
status.achilles.com
status.attomus.com
flockmail.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
support.flock.com
*.flockmail.com
status.achilles.com
endpoint-security.status.broadcom.com
dardenstatus.paradox.ai
status.attomus.com
status.achilles.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
download-tracked.flockmail.com
status.attomus.com
status.achilles.com
status.attomus.com
dardenstatus.paradox.ai
status.attomus.com
status.attomus.com
endpoint-security.status.broadcom.com
*.flockmail.com
status.achilles.com
endpoint-security.status.broadcom.com
status.attomus.com
status.achilles.com
status.achilles.com
atlanticindustrie-status.polaris.synopsys.com
status.attomus.com
agency.online.anz.com
agency.online.anz.com
flockmail.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
support.flock.com
status.achilles.com
status.achilles.com
dardenstatus.paradox.ai
status.achilles.com
endpoint-security.status.broadcom.com
agency.online.anz.com
status.attomus.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
status.achilles.com
flockmail.com
*.flockmail.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
support.flock.com
status.achilles.com
status.achilles.com
dardenstatus.paradox.ai
status.achilles.com
endpoint-security.status.broadcom.com
dardenstatus.paradox.ai
*.flockmail.com
dardenstatus.paradox.ai
endpoint-security.status.broadcom.com
status.achilles.com
agency.online.anz.com
endpoint-security.status.broadcom.com
status.achilles.com
status.achilles.com
endpoint-security.status.broadcom.com
dardenstatus.paradox.ai
status.achilles.com
flockmail.com
endpoint-security.status.broadcom.com
*.flockmail.com
*.flockmail.com
status.achilles.com
endpoint-security.status.broadcom.com
support.flock.com
status.achilles.com
status.achilles.com
atlanticindustrie-status.polaris.synopsys.com
status.achilles.com
endpoint-security.status.broadcom.com
support.flock.com
dardenstatus.paradox.ai
status.attomus.com
status.achilles.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
dardenstatus.paradox.ai
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
status.attomus.com
*.flockmail.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
support.flock.com
status.achilles.com
status.attomus.com
flockmail.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
endpoint-security.status.broadcom.com
support.flock.com
*.flockmail.com
status.achilles.com
endpoint-security.status.broadcom.com
dardenstatus.paradox.ai
Certificate
The complete raw certificate details for download-tracked.flockmail.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgIQCI1lyFVEdQGB1g8gOd/1hDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDUyMjAwMDAwMFoXDTI1MDYyMDIzNTk1OVowKTEn MCUGA1UEAxMeZG93bmxvYWQtdHJhY2tlZC5mbG9ja21haWwuY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxzKPdn9XErzuza0IF0vZ7Zy81gMHESY M/Jp6hmHHPmQ7oR66xlwpq97b2sWMdv/NSZDr8CY9rutqs13JAbJL8eQYX/OYs0B k/Cbisugc2qLxTpk8FUBPMCopsopr2vJibvpi/vbr3IZaRN3h/SgtrziPyMRiBPm pzZTbfR/L6j7xC9CYyJeVaz8wXLrC8+GvAHbg5FvvqmgYE+3WvytVAivc0CHwMh4 RrVo8vGTRQhgQrF1EMTRNB2nTPy2aWRX7FA1MFimnHZELCCZa0FDDSafWtZew5w/ j20LrsdOsQkNBl8DK/NWfNqNqNuT5LDEXqtPb4+af6AJfuSKXxhNAwIDAQABo4ID WjCCA1YwHwYDVR0jBBgwFoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYE FGSuGDVGBUSpYmszsPBztcdYIC6aMIGLBgNVHREEgYMwgYCCHmRvd25sb2FkLXRy YWNrZWQuZmxvY2ttYWlsLmNvbYIgKi5kb3dubG9hZC10cmFja2VkLmZsb2NrbWFp bC5jb22CHHVwbG9hZC10cmFja2VkLmZsb2NrbWFpbC5jb22CHioudXBsb2FkLXRy YWNrZWQuZmxvY2ttYWlsLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0 MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAy LmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIy bTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0w Mi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwggF+Bgor BgEEAdZ5AgQCBIIBbgSCAWoBaAB3AE51oydcmhDDOFts1N8/Uusd8OCOG41pwLH6 ZLFimjnfAAABj58DUnoAAAQDAEgwRgIhAIArdgsKjXemq0m7JNip6R8jlvRXGJKE iAgZyAApfKX2AiEAsntX19f6uVOhsx+T6VfTSXLTkEss5khIg+L0jlYSb5MAdgB9 WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAY+fA1K8AAAEAwBHMEUC IAlKSbr0SdV0Hy+b58wGeTUX72bmQNY32yBBQidl80luAiEAw642l+YvptsvlDVn YtLs7xo/13NFk9HYAaBF9o7lL0YAdQDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qH Mh39HjeOUAAAAY+fA1MsAAAEAwBGMEQCICA4YlGoVYRJjgshMbe8NpKIxtiCOI6W OmlZUfDcUdtpAiAzjC8HEE8ZBjhhbHf3Qf6DHNDiZG0pRz4nBIEqeBZGejANBgkq hkiG9w0BAQsFAAOCAQEAfzv+0SChUSpmy+lmFKdV39O81IPngGa52jcUz4hD61bw 1f1TjjoNPQTss1JMXXX0HR1voxNr6RH1rPKIA4tKh41vMoOTjmV+ukHT2SS4ch30 VzetT62PKvgLAq5SNOryM3qVPQUjgSJM2sO61lJ7fGAchzXdVQak0So+NfmSOovq lpmVZytZFKydE5lftp/94GJCaPD6s6UCbZxmpjKbSEDc/D9m/WgqPgrNZ8vTZnKg P5fLb+c7N5zGN5G4vwDMYvtFkdOohM8glRk+GpK/6voCifm6PAdo6KH8dQVETwml 0xeQJ+mt21uKp65osTVJFIBwfSIeP51sbYiCqSJWfA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxzKPdn9XErzuza0IF0v Z7Zy81gMHESYM/Jp6hmHHPmQ7oR66xlwpq97b2sWMdv/NSZDr8CY9rutqs13JAbJ L8eQYX/OYs0Bk/Cbisugc2qLxTpk8FUBPMCopsopr2vJibvpi/vbr3IZaRN3h/Sg trziPyMRiBPmpzZTbfR/L6j7xC9CYyJeVaz8wXLrC8+GvAHbg5FvvqmgYE+3Wvyt VAivc0CHwMh4RrVo8vGTRQhgQrF1EMTRNB2nTPy2aWRX7FA1MFimnHZELCCZa0FD DSafWtZew5w/j20LrsdOsQkNBl8DK/NWfNqNqNuT5LDEXqtPb4+af6AJfuSKXxhN AwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11368002218724194685662641200511841668 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'download-tracked.flockmail.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23620759909874309656966628734193365961660692898792686886628965260448052636762744343540647168376981443402441443406266941837426265195879377478711175004646906802532739546907406734676826843796494006152713334898351796155004973192050393542569468808835653457505552964832975759595751805739053493980330724873610784493894056372710882242303597119739664345989126591385025526830614622759311301567488324545406002504998874925131175632187618230326357554151253345303822178319662486461349182340235314713414210460661445938933232577309623149205295676861446125485028221125835150578601419168588266172254718959294677872703727646231479471363 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 64ae1835460544a9626b33b0f073b5c758202e9a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (131 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'download-tracked.flockmail.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.download-tracked.flockmail.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'upload-tracked.flockmail.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.upload-tracked.flockmail.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007f3bfed120a1512a66cbe96614a755dfd3bcd483e78066b9da3714cf8843eb56f0d5fd538e3a0d3d04ecb3524c5d75f41d1d6fa3136be911f5acf288038b4a878d6f3283938e657eba41d3d924b8721df45737ad4fad8f2af80b02ae5234eaf2337a953d052381224cdac3bad6527b7c601c8735dd5506a4d12a3e35f9923a8bea969995672b5914ac9d13995fb69ffde0624268f0fab3a5026d9c66a6329b4840dcfc3f66fd682a3e0acd67cbd36672a03f97cb6fe73b379cc63791b8bf00cc62fb4591d3a884cf2095193e1a92bfeafa0289f9ba3c0768e8a1fc7505444f09a5d3179027e9addb5b8aa7ae68b135491480707d221e3f9d6c6d8882a922567c