test-mtls2.sit.archie-services.myob.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0b:b1:56:70:40:63:1a:39:36:27:d7:b4:b7:76:1c:41 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=test-mtls2.sit.archie-services.myob.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:b1:56:70:40:63:1a:39:36:27:d7:b4:b7:76:1c:41Serial Number (int): 15542297678301702855057269726102559809
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 6a:e2:4b:28:af:77:eb:68:1f:05:b5:84:cb:ed:e4:03:09:4d:e8:55
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 18:c8:f2:83:b5:ea:a1:27:d7:fc:e1:d7:ba:eb:e5:94:91:5e:5e:2e
Fingerprint (sha256): 05:f6:fe:62:dc:7d:76:b7:ab:bb:62:74:60:1b:4d:01:21:0a:c9:d7:d5:5f:be:8c:17:8f:16:9f:c8:76:59:ab
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate test-mtls2.sit.archie-services.myob.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for test-mtls2.sit.archie-services.myob.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
test-mtls2.sit.archie-services.myob.com
Other certificates including the domain name myob.com
(limited to 100 certificates)
secure07.stage.lithium.com
payments.myob.com
cardportal.myob.com
sit.banking-rules.dev.myob.com
sitcollab.confirmation.myob.com
dl.myob.com
pay-item.payroll.prod.myob.com
xid.myob.com.au
advr.myob.com
*.camilltest.test.myob.com
peoplehub.myob.com
tax-migration-analytics.svc.platform.myob.com
rewards.myob.com
y-arl-services-2.myob.com
alerting.wp.svc.europa.jupiter.myob.com
metrics.data.svc.europa.jupiter.myob.com
links.app.sre.myob.com
agencyapi.myob.com
*.digital.myob.com
*.login.myob.com
cdn.rogue.dev.myob.com
secure04.lithium.com
mobile-ci.myob.com
relaycloud-stage.api.myob.com
monitoring.fs.svc.europa.jupiter.myob.com
app.myob.com
dev.module.advr.myob.com
pay-event-publisher.payroll.dev.myob.com
preview-sme-features-api.svc.platform.myob.com
accountrightlive.myob.com
upgrade-api.svc.platform.myob.com
secure07.stage.lithium.com
production-employee-servicing-time-api.svc.platform.myob.com
my.account.myob.com
docker.myob.com
secure04.lithium.com
advr.dev.myob.com
upgrade-web.svc.platform.myob.com
upload-file.myob.com
dev.module.advr.myob.com
advr.prod.module.myob.com
*.gem.myob.com
*.dev.essentials.myob.com
reminders-api-prod.svc.platform.myob.com
metrics.wp.svc.europa.jupiter.myob.com
advr.dev.myob.com
*.ar-services.myob.com
payagent.payroll.prod.myob.com
web-assets.myob.com
bankfeeds-api.myob.com
ap7-1.cdn.salesforce-communities.com
billing.sab.myob.com
sit.id.myob.com
test-mtls2.sit.archie-services.myob.com
api.pvt.reminders.myob.com
production-report-data-auditor-api.svc.platform.myob.com
m-arl-cfsts.myob.com
metrics.wp.svc.europa.jupiter.myob.com
prod.help.myob.com
cdn-stp.payroll.dev.myob.com
myob.com
wfm.myob.com
sni.cloudflaressl.com
arl-protected-api.dev.ar-services.myob.com
*.nebula.dev.myob.com
b-arl-cfsts.myob.com
ledgercache-cache-dev-console.nebula.dev.myob.com
preview-report-gst-workflow.svc.platform.myob.com
my-account-mf.myaccount.myob.com
financial-institution.myob.com
secure07.stage.lithium.com
*.partner.myob.com
myob.com
production-eedx-project-kiln-backend.svc.platform.myob.com
mysuccess.myob.com
loyalty-service.myob.com
*.external-data-interfaces.prod.myob.com
resources.digital.dev.myob.com
ci.super.myob.com
monitoring.ps.svc.europa.jupiter.myob.com
monitoring.pwf.svc.europa.jupiter.myob.com
onthego.myob.com
secure07.stage.lithium.com
monitoring.wp.svc.europa.jupiter.myob.com
snap-server.svc.platform.myob.com
directory.myob.com
test-integrator.myob.com
perf-task-orchestration-api.svc.platform.myob.com
myob.com
secure04.lithium.com
secure04.lithium.com
ledgercache-cache-sit-notificator.nebula.dev.myob.com
secure07.stage.lithium.com
*.external-data-interfaces.prod.myob.com
pgtraining.myob.com
alerting.lb.svc.europa.jupiter.myob.com
*.dev.advr.myob.com
secure04.lithium.com
salesforce.api.svc.invoicefinancetest.myob.com
partner-search-leads-service.svc.platform.myob.com
payments.myob.com
cardportal.myob.com
sit.banking-rules.dev.myob.com
sitcollab.confirmation.myob.com
dl.myob.com
pay-item.payroll.prod.myob.com
xid.myob.com.au
advr.myob.com
*.camilltest.test.myob.com
peoplehub.myob.com
tax-migration-analytics.svc.platform.myob.com
rewards.myob.com
y-arl-services-2.myob.com
alerting.wp.svc.europa.jupiter.myob.com
metrics.data.svc.europa.jupiter.myob.com
links.app.sre.myob.com
agencyapi.myob.com
*.digital.myob.com
*.login.myob.com
cdn.rogue.dev.myob.com
secure04.lithium.com
mobile-ci.myob.com
relaycloud-stage.api.myob.com
monitoring.fs.svc.europa.jupiter.myob.com
app.myob.com
dev.module.advr.myob.com
pay-event-publisher.payroll.dev.myob.com
preview-sme-features-api.svc.platform.myob.com
accountrightlive.myob.com
upgrade-api.svc.platform.myob.com
secure07.stage.lithium.com
production-employee-servicing-time-api.svc.platform.myob.com
my.account.myob.com
docker.myob.com
secure04.lithium.com
advr.dev.myob.com
upgrade-web.svc.platform.myob.com
upload-file.myob.com
dev.module.advr.myob.com
advr.prod.module.myob.com
*.gem.myob.com
*.dev.essentials.myob.com
reminders-api-prod.svc.platform.myob.com
metrics.wp.svc.europa.jupiter.myob.com
advr.dev.myob.com
*.ar-services.myob.com
payagent.payroll.prod.myob.com
web-assets.myob.com
bankfeeds-api.myob.com
ap7-1.cdn.salesforce-communities.com
billing.sab.myob.com
sit.id.myob.com
test-mtls2.sit.archie-services.myob.com
api.pvt.reminders.myob.com
production-report-data-auditor-api.svc.platform.myob.com
m-arl-cfsts.myob.com
metrics.wp.svc.europa.jupiter.myob.com
prod.help.myob.com
cdn-stp.payroll.dev.myob.com
myob.com
wfm.myob.com
sni.cloudflaressl.com
arl-protected-api.dev.ar-services.myob.com
*.nebula.dev.myob.com
b-arl-cfsts.myob.com
ledgercache-cache-dev-console.nebula.dev.myob.com
preview-report-gst-workflow.svc.platform.myob.com
my-account-mf.myaccount.myob.com
financial-institution.myob.com
secure07.stage.lithium.com
*.partner.myob.com
myob.com
production-eedx-project-kiln-backend.svc.platform.myob.com
mysuccess.myob.com
loyalty-service.myob.com
*.external-data-interfaces.prod.myob.com
resources.digital.dev.myob.com
ci.super.myob.com
monitoring.ps.svc.europa.jupiter.myob.com
monitoring.pwf.svc.europa.jupiter.myob.com
onthego.myob.com
secure07.stage.lithium.com
monitoring.wp.svc.europa.jupiter.myob.com
snap-server.svc.platform.myob.com
directory.myob.com
test-integrator.myob.com
perf-task-orchestration-api.svc.platform.myob.com
myob.com
secure04.lithium.com
secure04.lithium.com
ledgercache-cache-sit-notificator.nebula.dev.myob.com
secure07.stage.lithium.com
*.external-data-interfaces.prod.myob.com
pgtraining.myob.com
alerting.lb.svc.europa.jupiter.myob.com
*.dev.advr.myob.com
secure04.lithium.com
salesforce.api.svc.invoicefinancetest.myob.com
partner-search-leads-service.svc.platform.myob.com
Certificate
The complete raw certificate details for test-mtls2.sit.archie-services.myob.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEjTCCA3WgAwIBAgIQC7FWcEBjGjk2J9e0t3YcQTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIyMDAwMDAwMFoXDTI1MDExNzIzNTk1OVowMjEw MC4GA1UEAxMndGVzdC1tdGxzMi5zaXQuYXJjaGllLXNlcnZpY2VzLm15b2IuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy92I/oTyq483XDGAdz5n sr46V0YE/wC3l+QOcEtFhobuajlxjhvFCcBlVp0QV6+kKu2fPOEOszEX/l4qhqCj 8keVxDGZLLTz4ueBXhIhF9NT6XLNgJp08a0xIgRVpGd+NoaMja3/i2lSeOtENyk1 nwUCJTupcfqhB3tKvBlAmQL8d6URxJpxxmlLainrnDgCIipoZ+2lIAzFAdYubg0s 91+9YfWRp3/X0yfm+kv/WZgah6jG3b5ND3Niv5BRviZG09WlcmzK0ZmLTyG06hii WQGj9auwmzmytScrzoFQFUKh+50mfJkK+z0ll99l1lykwKo8P1QcBvwJ7YjxkL5z EwIDAQABo4IBkzCCAY8wHwYDVR0jBBgwFoAUwDFSzVpQw4J8dHHOy+mc+XrrguIw HQYDVR0OBBYEFGriSyivd+toHwW1hMvt5AMJTehVMDIGA1UdEQQrMCmCJ3Rlc3Qt bXRsczIuc2l0LmFyY2hpZS1zZXJ2aWNlcy5teW9iLmNvbTATBgNVHSAEDDAKMAgG BmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9u dHJ1c3QuY29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGG IWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYq aHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1Ud EwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEB AAFgPaBbLBX8YUODW9OS8z4owDBq+0dGv21Y1id182OZiwgy/xpHDHUf5IkllpyP egVMxWutGd7E55wwezAjZsu0P5iKdqcmtfLke9rHlE7isQSLrHIpp5s8zkoWNf21 y8qkdW9V35oRma4w6QPqCaqkJuToys87sK80ha9HbSGyQxtysQDMP28EhxT8V1+s 27t+seTiykp+bn0h5mAB0ZMdhKgNst5FMF5KTwCtE3CrM3k3Mr/8jeVMVed4nBmN IRY+PaTgdK30drh0pBsiEi59APpvHMbNuk6VGQTzgTqhfqhKTh8YskXNJaKC/lga yqd+IaQafn/YrppZLTPNjOM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy92I/oTyq483XDGAdz5n sr46V0YE/wC3l+QOcEtFhobuajlxjhvFCcBlVp0QV6+kKu2fPOEOszEX/l4qhqCj 8keVxDGZLLTz4ueBXhIhF9NT6XLNgJp08a0xIgRVpGd+NoaMja3/i2lSeOtENyk1 nwUCJTupcfqhB3tKvBlAmQL8d6URxJpxxmlLainrnDgCIipoZ+2lIAzFAdYubg0s 91+9YfWRp3/X0yfm+kv/WZgah6jG3b5ND3Niv5BRviZG09WlcmzK0ZmLTyG06hii WQGj9auwmzmytScrzoFQFUKh+50mfJkK+z0ll99l1lykwKo8P1QcBvwJ7YjxkL5z EwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15542297678301702855057269726102559809 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'test-mtls2.sit.archie-services.myob.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25735618954060117512095156483752485458969978223806156573815760947232374208725945732575952945355728635337660339785635596101474118614939465816155097593827842632406579371761075089298490507361605945715276946491273297447361746443175690672851999031297650452716309729030328009568478477056686881279577585290339395582428335857164899926462007564735085565441246547853606043421298633761292496229405120570867480127099155463911956701551548629015139721434104181740633155388295457645696931462618874380367791939147617793145362899313404413595989290483357689424609142180112045823097850953758234756818194629075004119621851005886436111123 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6ae24b28af77eb681f05b584cbede403094de855 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test-mtls2.sit.archie-services.myob.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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