*.bf-cpx-production.aws.bfops.io
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0d:cd:ce:ef:c8:84:42:40:b2:b9:81:e7:2d:df:03:87 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.bf-cpx-production.aws.bfops.io
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:cd:ce:ef:c8:84:42:40:b2:b9:81:e7:2d:df:03:87Serial Number (int): 18348581975169632206998363871266145159
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 71:e8:77:d7:34:76:71:74:67:4f:3e:ce:51:ee:b2:f7:8c:0c:ef:73
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 4c:2b:cc:0f:00:93:9e:29:ac:ef:77:b3:bd:f7:f4:51:a4:ed:a6:82
Fingerprint (sha256): 07:13:80:1c:4f:33:03:1c:84:5b:7e:4a:fa:bb:1e:6a:fb:4a:a2:ec:78:d8:a2:09:6a:56:12:e4:4d:11:5a:2b
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.bf-cpx-production.aws.bfops.io
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.bf-cpx-production.aws.bfops.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.bf-cpx-production.aws.bfops.io
bf-cpx-production.aws.bfops.io
bf-cpx-production.aws.bfops.io
Other certificates including the domain name bfops.io
(limited to 100 certificates)
regional.bf-regioccms-development.aws.bfops.io
*.bf-nativedashboard-development.aws.bfops.io
*.bf-admanager-dr.aws.bfops.io
bfops.io
*.bf-cpx-staging.aws.bfops.io
*.bf-onelogin-dr.aws.bfops.io
bf-tools.net
*.bf-folcore-development.aws.bfops.io
bfops.io
bfops.io
bfops.io
cat-front-api.bf-personalize-development.aws.bfops.io
*.bf-contentlounge-tools.aws.bfops.io
bfops.io
*.bf-onelogin-staging.aws.bfops.io
*.bf-trackalo-staging.aws.bfops.io
*.bf-cpx-production.aws.bfops.io
*.bf-operations-sandbox.aws.bfops.io
*.bf-netdoctor-development.aws.bfops.io
bfops.io
*.bf-tvspielfilm-staging.aws.bfops.io
*.bf-datalake-staging.aws.bfops.io
*.bf-folcore-dr.aws.bfops.io
bfops.io
*.bf-chipproduct-production.aws.bfops.io
bf-tools.net
*.bf-poc-development.aws.bfops.io
bf-tools.net
*.bf-onelogin-development.aws.bfops.io
bf-tools.net
*.bf-newswirefrontend-staging.aws.bfops.io
*.bf-newswirefrontend-dr.aws.bfops.io
*.bf-cpx-sandbox.aws.bfops.io
bf-tools.net
*.bf-poc-production.aws.bfops.io
*.bf-cpx-development.aws.bfops.io
*.bf-datalake-sandbox.aws.bfops.io
bfops.io
*.bf-contentplatform-dr.aws.bfops.io
bfops.io
bfops.io
cat-user-management-api.bf-personalize-development.aws.bfops.io
*.bf-chipwidgets-dr.aws.bfops.io
*.bf-folapp-production.aws.bfops.io
*.bf-honeyfactory-production.aws.bfops.io
*.bf-datalake-production.aws.bfops.io
bfops.io
bfops.io
*.bf-honeyfactory-production.aws.bfops.io
*.bf-onelogin-tools.aws.bfops.io
*.bf-bcfinancetools-sandbox.aws.bfops.io
*.bf-contentlounge-staging.aws.bfops.io
*.bf-cpx-production.aws.bfops.io
bfops.io
cognito.bf-kaufberatungsseotool-development.aws.bfops.io
news-feed-front-api.bf-personalize-development.aws.bfops.io
bfops.io
bf-tools.net
*.bf-admanager-sandbox.aws.bfops.io
bfops.io
*.bf-chipwidgets-tools.aws.bfops.io
bf-tools.net
*.bf-admanager-development.aws.bfops.io
bfops.io
bfops.io
gitlab.bfops.io
bfops.io
*.bf-contentassembler-dr.aws.bfops.io
*.bf-datalake-dr.aws.bfops.io
*.bf-datalake-development.aws.bfops.io
*.bf-bcfinancetools-production.aws.bfops.io
news-feed-front-api.bf-personalize-development.aws.bfops.io
bf-tools.net
cat-fetcher-api.bf-personalize-development.aws.bfops.io
news-feed-front-api.bf-personalize-development.aws.bfops.io
cat-fetcher-api.bf-personalize-development.aws.bfops.io
bf-tools.net
*.bf-operations-development.aws.bfops.io
bfops.io
bfops.io
*.bf-bcfinancetools-staging.aws.bfops.io
*.bf-powerdns-tools.aws.bfops.io
*.bf-poc-development.aws.bfops.io
*.bf-netdoctor-sandbox.aws.bfops.io
*.bf-bcfinancetools-tools.aws.bfops.io
*.bf-trackalo-dr.aws.bfops.io
*.bf-admanager-production.aws.bfops.io
*.bf-admanager-dr.aws.bfops.io
bf-tools.net
*.bf-trackalo-tools.aws.bfops.io
*.bf-bcfinancetools-tools.aws.bfops.io
cat-fetcher-api.bf-personalize-development.aws.bfops.io
*.bf-poc-sandbox.aws.bfops.io
*.bf-newswirefrontend-staging.aws.bfops.io
*.bf-nativedashboard-sandbox.aws.bfops.io
*.bf-honeyfactory-dr.aws.bfops.io
bf-tools.net
*.bf-automizeddatavideos-dr.aws.bfops.io
bfops.io
regional.bf-regioccms-staging.aws.bfops.io
*.bf-nativedashboard-development.aws.bfops.io
*.bf-admanager-dr.aws.bfops.io
bfops.io
*.bf-cpx-staging.aws.bfops.io
*.bf-onelogin-dr.aws.bfops.io
bf-tools.net
*.bf-folcore-development.aws.bfops.io
bfops.io
bfops.io
bfops.io
cat-front-api.bf-personalize-development.aws.bfops.io
*.bf-contentlounge-tools.aws.bfops.io
bfops.io
*.bf-onelogin-staging.aws.bfops.io
*.bf-trackalo-staging.aws.bfops.io
*.bf-cpx-production.aws.bfops.io
*.bf-operations-sandbox.aws.bfops.io
*.bf-netdoctor-development.aws.bfops.io
bfops.io
*.bf-tvspielfilm-staging.aws.bfops.io
*.bf-datalake-staging.aws.bfops.io
*.bf-folcore-dr.aws.bfops.io
bfops.io
*.bf-chipproduct-production.aws.bfops.io
bf-tools.net
*.bf-poc-development.aws.bfops.io
bf-tools.net
*.bf-onelogin-development.aws.bfops.io
bf-tools.net
*.bf-newswirefrontend-staging.aws.bfops.io
*.bf-newswirefrontend-dr.aws.bfops.io
*.bf-cpx-sandbox.aws.bfops.io
bf-tools.net
*.bf-poc-production.aws.bfops.io
*.bf-cpx-development.aws.bfops.io
*.bf-datalake-sandbox.aws.bfops.io
bfops.io
*.bf-contentplatform-dr.aws.bfops.io
bfops.io
bfops.io
cat-user-management-api.bf-personalize-development.aws.bfops.io
*.bf-chipwidgets-dr.aws.bfops.io
*.bf-folapp-production.aws.bfops.io
*.bf-honeyfactory-production.aws.bfops.io
*.bf-datalake-production.aws.bfops.io
bfops.io
bfops.io
*.bf-honeyfactory-production.aws.bfops.io
*.bf-onelogin-tools.aws.bfops.io
*.bf-bcfinancetools-sandbox.aws.bfops.io
*.bf-contentlounge-staging.aws.bfops.io
*.bf-cpx-production.aws.bfops.io
bfops.io
cognito.bf-kaufberatungsseotool-development.aws.bfops.io
news-feed-front-api.bf-personalize-development.aws.bfops.io
bfops.io
bf-tools.net
*.bf-admanager-sandbox.aws.bfops.io
bfops.io
*.bf-chipwidgets-tools.aws.bfops.io
bf-tools.net
*.bf-admanager-development.aws.bfops.io
bfops.io
bfops.io
gitlab.bfops.io
bfops.io
*.bf-contentassembler-dr.aws.bfops.io
*.bf-datalake-dr.aws.bfops.io
*.bf-datalake-development.aws.bfops.io
*.bf-bcfinancetools-production.aws.bfops.io
news-feed-front-api.bf-personalize-development.aws.bfops.io
bf-tools.net
cat-fetcher-api.bf-personalize-development.aws.bfops.io
news-feed-front-api.bf-personalize-development.aws.bfops.io
cat-fetcher-api.bf-personalize-development.aws.bfops.io
bf-tools.net
*.bf-operations-development.aws.bfops.io
bfops.io
bfops.io
*.bf-bcfinancetools-staging.aws.bfops.io
*.bf-powerdns-tools.aws.bfops.io
*.bf-poc-development.aws.bfops.io
*.bf-netdoctor-sandbox.aws.bfops.io
*.bf-bcfinancetools-tools.aws.bfops.io
*.bf-trackalo-dr.aws.bfops.io
*.bf-admanager-production.aws.bfops.io
*.bf-admanager-dr.aws.bfops.io
bf-tools.net
*.bf-trackalo-tools.aws.bfops.io
*.bf-bcfinancetools-tools.aws.bfops.io
cat-fetcher-api.bf-personalize-development.aws.bfops.io
*.bf-poc-sandbox.aws.bfops.io
*.bf-newswirefrontend-staging.aws.bfops.io
*.bf-nativedashboard-sandbox.aws.bfops.io
*.bf-honeyfactory-dr.aws.bfops.io
bf-tools.net
*.bf-automizeddatavideos-dr.aws.bfops.io
bfops.io
regional.bf-regioccms-staging.aws.bfops.io
Certificate
The complete raw certificate details for *.bf-cpx-production.aws.bfops.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDDCCBPSgAwIBAgIQDc3O78iEQkCyuYHnLd8DhzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDMwNjAwMDAwMFoXDTI1MDQwMzIzNTk1OVowKzEp MCcGA1UEAwwgKi5iZi1jcHgtcHJvZHVjdGlvbi5hd3MuYmZvcHMuaW8wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuVOO87F3FKukbmex8Yjh2kAFR1J4j yqe0G0bFxi4HGDFxD126Y1J27Za3kWG44dbqjkrHNpt+xz0AdSh1dcQSNxHaA3+i QN0zVxbQMf2vQM3Wlj8JkH0Vm9qa2X52JESjP2v839E6No+5kpaZCIpo508O9qc9 SwMveW3AEZSqIYJb4xzqAl+Jnmv2C1vYNp13oV4lL4SdceoXPnQ8QD8tKMuHeYvF w88KYpOJjTXUhaX8AYSJ4aXdfA/tKTiD+9Nb7SPJuDfkUjRMXKVVLWoD4XRz6UXq CRJEQi/JJe++C4zANxH4xNopri9NDbkWvkwWps95q6dFYjd+ap9+ce3PAgMBAAGj ggMZMIIDFTAfBgNVHSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4E FgQUceh31zR2cXRnTz7OUe6y94wM73MwSwYDVR0RBEQwQoIgKi5iZi1jcHgtcHJv ZHVjdGlvbi5hd3MuYmZvcHMuaW+CHmJmLWNweC1wcm9kdWN0aW9uLmF3cy5iZm9w cy5pbzATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6 Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNybDB1BggrBgEFBQcB AQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0 LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5j b20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSC AWoBaAB2AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABjhNT+tYA AAQDAEcwRQIgPR2A5WPjxCn7riP8i/wdkbK2SnyflSDdfaVaXTOzhQcCIQDKVAuD DStcj+GsA3HYBrMQtbzkSxErSWPmwf1jr4nCGgB2AH1ZHhLheCp7HGFnfF79+NCH XBSgTpWeuQMv2Q6MLnm4AAABjhNT+twAAAQDAEcwRQIgSlFjZxCtMmlTDZXsXRjJ AjpXTssfwvbXJHor3FSDeGICIQC3cxv5dZQlxdFLHlzNr84j8U41EKIu/XGGeRVf Zto+oAB2AObSMWNAd4zBEEEG13G5zsHSQPaWhIb7uocyHf0eN45QAAABjhNT+wAA AAQDAEcwRQIhAMeJFRSF45scUvx/spxus9kAE1Bee0o68HIlFUvLHvseAiAtCZk5 tCEQ7g3BxcocVK2WUIcacAF8TNrH/nMEUYwb5TANBgkqhkiG9w0BAQsFAAOCAQEA UuPy38GTDLdc5GkLZ4lFwJMXdwv6PcwVv7dMCHMROinOGDEAJcc51/C3rqsYQH5k zs4ZiMMfvZ+gHCQ9XjQ8zZUHEz+3L06bZxb5xJVswc7Y0MYP5JXOzHaqX0TP/2SA 1l/fAEAJBRdOhMRgM3wU3f0/jLJlaXF4lw/les6meZE4fYSponLGdhEWaOqMYZSQ FaAq70AJiOSM4Vl11mT+95czE6GMqOdLKb5OEZQe9UlBAX5QqLcH0BGZoKORAwm5 IZYAY3r0B+us7uo9UfEKddGv3jsNRLE1ZuuHTeleA5MFFOtzG+8/8f4XUDLaM22a fM4+MI9bhf0ajvxqpvCTMw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlTjvOxdxSrpG5nsfGI4 dpABUdSeI8qntBtGxcYuBxgxcQ9dumNSdu2Wt5FhuOHW6o5Kxzabfsc9AHUodXXE EjcR2gN/okDdM1cW0DH9r0DN1pY/CZB9FZvamtl+diREoz9r/N/ROjaPuZKWmQiK aOdPDvanPUsDL3ltwBGUqiGCW+Mc6gJfiZ5r9gtb2Dadd6FeJS+EnXHqFz50PEA/ LSjLh3mLxcPPCmKTiY011IWl/AGEieGl3XwP7Sk4g/vTW+0jybg35FI0TFylVS1q A+F0c+lF6gkSREIvySXvvguMwDcR+MTaKa4vTQ25Fr5MFqbPeaunRWI3fmqffnHt zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18348581975169632206998363871266145159 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.bf-cpx-production.aws.bfops.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22007325686756121938956200857369649786724261815541316204769013657301817625364002844587144219140933203036198086138686239474579195617936073914513302294702914073385232350674414532534718789133109843964280876009751436042857321697216622447782887352231414128529801822825521898638101097106341857145575444213025226945547188134855750363529486359176645565354092582613080891612007408204003454679635111024239786969282995658428718865549154444947105674495596454290801534018643136985931576674415720692165920255784929707992386917397122576026314846462166902222031354872550152595566200195509174661303950209978408737211157136384113896911 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 71e877d734767174674f3ece51eeb2f78c0cef73 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bf-cpx-production.aws.bfops.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bf-cpx-production.aws.bfops.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 0168007600cf1156eed52e7caff3875bd9692e9be91a71674ab017ecac01d25b77cecc3b080000018e1353fad6000004030047304502203d1d80e563e3c429fbae23fc8bfc1d91b2b64a7c9f9520dd7da55a5d33b38507022100ca540b830d2b5c8fe1ac0371d806b310b5bce44b112b4963e6c1fd63af89c21a0076007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000018e1353fadc000004030047304502204a51636710ad3269530d95ec5d18c9023a574ecb1fc2f6d7247a2bdc54837862022100b7731bf9759425c5d14b1e5ccdafce23f14e3510a22efd718679155f66da3ea0007600e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e500000018e1353fb000000040300473045022100c789151485e39b1c52fc7fb29c6eb3d90013505e7b4a3af07225154bcb1efb1e02202d099939b42110ee0dc1c5ca1c54ad9650871a70017c4cdac7fe7304518c1be5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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