partner-payment-oauth-dev.snowflake.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0b:18:19:41:96:47:67:63:bc:61:1a:db:0f:0d:7e:f7 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=partner-payment-oauth-dev.snowflake.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:18:19:41:96:47:67:63:bc:61:1a:db:0f:0d:7e:f7Serial Number (int): 14746635334818638633913109967472000759
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: e5:35:22:36:fa:79:cd:20:0f:77:6a:b6:fa:58:ad:34:5e:b2:06:a5
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 06:86:02:51:7d:7b:c0:f8:cc:95:92:91:f9:df:a7:78:64:e4:7a:5e
Fingerprint (sha256): 07:40:01:5a:6f:19:4f:86:94:47:92:4e:ac:43:e8:ad:70:ff:0a:85:d2:fc:a3:47:1c:57:24:b5:96:49:0f:c8
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate partner-payment-oauth-dev.snowflake.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for partner-payment-oauth-dev.snowflake.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
partner-payment-oauth-dev.snowflake.com
Other certificates including the domain name snowflake.com
(limited to 100 certificates)
1e291ab3status.snowflake.com
1e291ab3status.snowflake.com
developer.status.atlassian.com
*.autotestcore2.eastus2.azure-dev.app.snowflake.com
attstatus.snowflake.com
glmatching.snowflake.com
finserv.snowflake.com
attstatus.snowflake.com
*.ordevautotest.us-west-2.aws-dev.app.snowflake.com
*.c1.eu-west-1.aws.app.snowflake.com
*.devtemptest2core1.us-west-2.aws-dev.app.snowflake.com
pricingautomation.snowflake.com
*.autotestc1.eastus2.azure-dev.app.snowflake.com
app1e-status.outreach.io
event.snowflake.com
*.m1.us-gov-west-1.aws-gov.app.snowflake.com
attstatus.snowflake.com
*.c1.us-east-1.aws.app.snowflake.com
lift.snowflake.com
*.oltp1.us-west-2.aws-dev.app.snowflake.com
community.snowflake.com
partner-payment-api.snowflake.com
snowamp.snowflake.com
abemcertified.abem.org
ciscokineticbeta.iotspdev.io
events.snowflake.com
attstatus.snowflake.com
developer.status.atlassian.com
utc-converter.snowflake.com
*.gfts.us-east-2.aws.app.snowflake.com
app-cdn-staging.app.snowflake.com
attstatus.snowflake.com
app-cdntest1.snowflake.com
usergroups.snowflake.com
attstatus.snowflake.com
snowamp-uat.snowflake.com
seone.snowflake.com
app1e-status.outreach.io
1e291ab3status.snowflake.com
pricingautomation.snowflake.com
events.snowflake.com
events.snowflake.com
app1e-status.outreach.io
hello.snowflake.com
go.snowflake.com
developer.status.atlassian.com
seone-qa.snowflake.com
events.snowflake.com
attstatus.snowflake.com
ipe-em-ssm-activation-code-us-east-1.snowflake.com
demo.streamlit.snowflake.com
app1e-status.outreach.io
*.qa3.us-west-2.aws-dev.app.snowflake.com
sni204121.cloudflaressl.com
partner-payment-oauth-dev.snowflake.com
*.autotestc1.eastus2.azure-dev.app.snowflake.com
demo.streamlit.snowflake.com
liftdev.snowflake.com
1e291ab3status.snowflake.com
*.capitalone.us-east-1.aws.app.snowflake.com
attstatus.snowflake.com
cleanroom-sso.snowflake.com
accredible.armanl.eu
1e291ab3status.snowflake.com
*.snowvmtest.us-west-2.aws-dev.app.snowflake.com
*.core2.us-west-2.aws-dev.app.snowflake.com
attstatus.snowflake.com
it-ds-chromadb.snowflake.com
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
events.snowflake.com
app1e-status.outreach.io
*.qa6.us-west-2.aws-dev.app.snowflake.com
app1e-status.outreach.io
app1e-status.outreach.io
corp-vpn.snowflake.com
argocd-it-dev.snowflake.com
app1e-status.outreach.io
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
partner-payment-oauth.snowflake.com
events.snowflake.com
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
events.snowflake.com
app.my-guitar-tabs.com
*.autotestcore2.eastus2.azure-dev.app.snowflake.com
*.t1.usgovvirginia.azure-gov.app.snowflake.com
abemcertified.abem.org
*.citi.us-east-2.aws.app.snowflake.com
*.devtemptest3core1.us-west-2.aws-dev.app.snowflake.com
api.developers.snowflake.com
lift.snowflake.com
leapfrog-ssl-33.gcs-web.com
*.c2.eastus2.azure-dev.app.snowflake.com
sni204121.cloudflaressl.com
events.snowflake.com
smart.snowflake.com
1e291ab3status.snowflake.com
app1e-status.outreach.io
app1e-status.outreach.io
*.c1.eu-west-1.aws.app.snowflake.com
sni204121.cloudflaressl.com
1e291ab3status.snowflake.com
developer.status.atlassian.com
*.autotestcore2.eastus2.azure-dev.app.snowflake.com
attstatus.snowflake.com
glmatching.snowflake.com
finserv.snowflake.com
attstatus.snowflake.com
*.ordevautotest.us-west-2.aws-dev.app.snowflake.com
*.c1.eu-west-1.aws.app.snowflake.com
*.devtemptest2core1.us-west-2.aws-dev.app.snowflake.com
pricingautomation.snowflake.com
*.autotestc1.eastus2.azure-dev.app.snowflake.com
app1e-status.outreach.io
event.snowflake.com
*.m1.us-gov-west-1.aws-gov.app.snowflake.com
attstatus.snowflake.com
*.c1.us-east-1.aws.app.snowflake.com
lift.snowflake.com
*.oltp1.us-west-2.aws-dev.app.snowflake.com
community.snowflake.com
partner-payment-api.snowflake.com
snowamp.snowflake.com
abemcertified.abem.org
ciscokineticbeta.iotspdev.io
events.snowflake.com
attstatus.snowflake.com
developer.status.atlassian.com
utc-converter.snowflake.com
*.gfts.us-east-2.aws.app.snowflake.com
app-cdn-staging.app.snowflake.com
attstatus.snowflake.com
app-cdntest1.snowflake.com
usergroups.snowflake.com
attstatus.snowflake.com
snowamp-uat.snowflake.com
seone.snowflake.com
app1e-status.outreach.io
1e291ab3status.snowflake.com
pricingautomation.snowflake.com
events.snowflake.com
events.snowflake.com
app1e-status.outreach.io
hello.snowflake.com
go.snowflake.com
developer.status.atlassian.com
seone-qa.snowflake.com
events.snowflake.com
attstatus.snowflake.com
ipe-em-ssm-activation-code-us-east-1.snowflake.com
demo.streamlit.snowflake.com
app1e-status.outreach.io
*.qa3.us-west-2.aws-dev.app.snowflake.com
sni204121.cloudflaressl.com
partner-payment-oauth-dev.snowflake.com
*.autotestc1.eastus2.azure-dev.app.snowflake.com
demo.streamlit.snowflake.com
liftdev.snowflake.com
1e291ab3status.snowflake.com
*.capitalone.us-east-1.aws.app.snowflake.com
attstatus.snowflake.com
cleanroom-sso.snowflake.com
accredible.armanl.eu
1e291ab3status.snowflake.com
*.snowvmtest.us-west-2.aws-dev.app.snowflake.com
*.core2.us-west-2.aws-dev.app.snowflake.com
attstatus.snowflake.com
it-ds-chromadb.snowflake.com
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
events.snowflake.com
app1e-status.outreach.io
*.qa6.us-west-2.aws-dev.app.snowflake.com
app1e-status.outreach.io
app1e-status.outreach.io
corp-vpn.snowflake.com
argocd-it-dev.snowflake.com
app1e-status.outreach.io
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
partner-payment-oauth.snowflake.com
events.snowflake.com
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
events.snowflake.com
app.my-guitar-tabs.com
*.autotestcore2.eastus2.azure-dev.app.snowflake.com
*.t1.usgovvirginia.azure-gov.app.snowflake.com
abemcertified.abem.org
*.citi.us-east-2.aws.app.snowflake.com
*.devtemptest3core1.us-west-2.aws-dev.app.snowflake.com
api.developers.snowflake.com
lift.snowflake.com
leapfrog-ssl-33.gcs-web.com
*.c2.eastus2.azure-dev.app.snowflake.com
sni204121.cloudflaressl.com
events.snowflake.com
smart.snowflake.com
1e291ab3status.snowflake.com
app1e-status.outreach.io
app1e-status.outreach.io
*.c1.eu-west-1.aws.app.snowflake.com
sni204121.cloudflaressl.com
Certificate
The complete raw certificate details for partner-payment-oauth-dev.snowflake.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIQCxgZQZZHZ2O8YRrbDw1+9zANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDYxNzAwMDAwMFoXDTI1MDcxNzIzNTk1OVowMjEw MC4GA1UEAxMncGFydG5lci1wYXltZW50LW9hdXRoLWRldi5zbm93Zmxha2UuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApz6Ghua7HjP9I6jUusAO qvegUsDYMvSqIOgyg5YQgxGEKCVGl2GmXoPn3HYV9TE0WltV6MT2WT7dMEUHxd4y 8C9ASkn+gFPB/xHVFKdQ/0+LhQXeBzjH/tlu+G2+MGrNbggureU09HqTTmQAJGem C4CORJgIq7Jjnun6frjITlclBlfK/AkwQauhZV433m2DRwZOGDv2Jb7JMVzveuFm fkfXJGq3I+M0h72TrgkLOEBqjyIwqpkJCvNKyBo9PUwEe4M71gNcybvKaTTz9dgr +svXe1dWJbnZ/62UNPEwYLIixuHQGu7SvYBbldVwgUQvhiNlEEiwtjATULlukQvV dwIDAQABo4IDADCCAvwwHwYDVR0jBBgwFoAUwDFSzVpQw4J8dHHOy+mc+XrrguIw HQYDVR0OBBYEFOU1Ijb6ec0gD3dqtvpYrTResgalMDIGA1UdEQQrMCmCJ3BhcnRu ZXItcGF5bWVudC1vYXV0aC1kZXYuc25vd2ZsYWtlLmNvbTATBgNVHSAEDDAKMAgG BmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9u dHJ1c3QuY29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGG IWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYq aHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1Ud EwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB3ABLxTjS9U3JMhAYZ w48/ehP457Vih4icbTAFhOvlhiY6AAABkCPkgp0AAAQDAEgwRgIhALEnNH9e9+u/ 5sLhuMJuztcCE6Lkf+EWU0pH+YS4lwh+AiEAhY+xvNJtf8EWfY2l7yhJqgqdRcDd z6GleCWj39xbdVEAdQB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAA AZAj5IKeAAAEAwBGMEQCIDzG4BIlKxy5sqyUrbzqgtFQFK3AIoDEaF91FHEG7nLz AiALJVUokX2I5yYGCLKvW0Aq5KGxHaZ4s/DXB52C7V8uAgB2AObSMWNAd4zBEEEG 13G5zsHSQPaWhIb7uocyHf0eN45QAAABkCPkgrcAAAQDAEcwRQIhANwkerLRw3/n 8cxgG6FNn1JItBBtLeuSi3A5E26wBc+DAiAVJpN/jV6/EX6fQwwmUck9ZYQTCmgA ol5wa09Cn5GS4DANBgkqhkiG9w0BAQsFAAOCAQEAgX494YVyzVSvxFkspjbMbDb7 ZUCjGRK2m39ytNSbo1mbJzwqTgs9mWzavVAp5frqji1CSThjPubAOTJI7pw/ioE0 T1i4i+w2V7A5rblJ+81JiKsr2ti19yO07PKSobtUUMPu204ZBbdHgBxLleVHNccR rQbcIKOVN3QKPW2rO2rPNg4dvPYjJ5SopeYz8IUVcXlIUVS7Rs+Fbt6gYhfvc502 uUkbXoUn7IEul4vig4DTglyMpWBvAR9sgL7ANZhIpN1UZwhe4aMiR21UzPz9Dm9T JA3EoquPAiL7haKjfC00HTW7C7iKar6oG3s3ZEv629u+K3uwusF2UPRp2kjj3Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApz6Ghua7HjP9I6jUusAO qvegUsDYMvSqIOgyg5YQgxGEKCVGl2GmXoPn3HYV9TE0WltV6MT2WT7dMEUHxd4y 8C9ASkn+gFPB/xHVFKdQ/0+LhQXeBzjH/tlu+G2+MGrNbggureU09HqTTmQAJGem C4CORJgIq7Jjnun6frjITlclBlfK/AkwQauhZV433m2DRwZOGDv2Jb7JMVzveuFm fkfXJGq3I+M0h72TrgkLOEBqjyIwqpkJCvNKyBo9PUwEe4M71gNcybvKaTTz9dgr +svXe1dWJbnZ/62UNPEwYLIixuHQGu7SvYBbldVwgUQvhiNlEEiwtjATULlukQvV dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14746635334818638633913109967472000759 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'partner-payment-oauth-dev.snowflake.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21112629400516993195587587035852399844074517550959402535143687157005104030366251949662664049630012114766336567793378930114326340928779182198125958725296351701103235453565366263516067647912456213092275702908193357877258865052590558057463532714305076113173451521249548595673533295565970194297242129062486665304782885403895727036059958874154712844013297125293330289391433577908941961171394174511727538511694057098147124578876935623100841032425849760190054456843206464079226389732840549231103607194895048227249963259826701280483790989983344348291182252741080974270049317696372165693201403299453435643857323358738317038967 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e5352236fa79cd200f776ab6fa58ad345eb206a5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'partner-payment-oauth-dev.snowflake.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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