*.realm1.habanero-stage1.karanashi.io
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 03:d2:e3:74:93:8c:1b:3a:da:79:51:f5:d9:aa:9f:07 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.realm1.habanero-stage1.karanashi.io
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:d2:e3:74:93:8c:1b:3a:da:79:51:f5:d9:aa:9f:07Serial Number (int): 5082679670757616652584893318504816391
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 62:0b:44:d4:7d:52:cf:31:03:60:07:6c:1e:61:1d:90:51:5b:ec:cb
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): c0:26:07:1b:3c:4e:e7:90:f0:52:89:fd:eb:88:4c:bd:ea:41:fb:e4
Fingerprint (sha256): 07:c6:a0:b4:9f:2d:14:97:85:ba:58:4a:f9:89:99:1e:ef:19:5a:96:c9:b9:ac:45:ed:40:03:b0:0a:c1:c6:86
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate *.realm1.habanero-stage1.karanashi.io
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.realm1.habanero-stage1.karanashi.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.realm1.habanero-stage1.karanashi.io
Other certificates including the domain name karanashi.io
(limited to 100 certificates)
*.tenant2.uch-sandbox.karanashi.io
*.21.habanero-stage5.karanashi.io
stage.karanashi.io
*.tenant-a.habanero-uch-sandbox.karanashi.io
uch-sandbox.karanashi.io
*.tenant-a.habanero-uch-sandbox.karanashi.io
*.tenant15.habanero-stage5.karanashi.io
v260test3.karanashi.io
*.tenant1.habanero-stage1.karanashi.io
*.iss210-tenant.iss210.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.realm1.habanero-stage1.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.dokuji-uch-sandbox.karanashi.io
*.cplpdo-test.habanero-stage2.karanashi.io
uch-sandbox.karanashi.io
*.uch-dokuji.karanashi.io
*.msc-tenant3.msc.karanashi.io
*.dokuji-uch-sandbox.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
uch-sandbox.karanashi.io
v260test2.karanashi.io
habanero-stage1.karanashi.io
habanero-development.karanashi.io
broker02.karanashi.io
*.habanero-tenant1.karanashi.io
habanero-stage6.karanashi.io
msc-development.karanashi.io
habanero-development.karanashi.io
*.aiplatform.karanashi.io
*.tenant2.habanero-stage5.karanashi.io
habanero-uch-sandbox.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.uch-dokuji.karanashi.io
ess-skeleton.stage.karanashi.io
msc-development.karanashi.io
*.dokuji-uch-sandbox.karanashi.io
*.tenant3.habanero-stage4.karanashi.io
karanashi.io
*.tenant1.v260api-test.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
stage.karanashi.io
*.tenant1.msc-staging.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.msc-tenant4.msc.karanashi.io
*.uch-dokuji.karanashi.io
broker01.karanashi.io
*.tenant5.habanero-development.karanashi.io
uch-sandbox.karanashi.io
habanero-stage3.karanashi.io
*.tenant1.habanero-stage6.karanashi.io
*.uch-dokuji.karanashi.io
flashair.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
karanashi.io
feature-version.karanashi.io
stage.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.msc-tenant1.msc.karanashi.io
stage.karanashi.io
*.msc-tenant2.msc.karanashi.io
habanero-development.karanashi.io
*.uch-dokuji.karanashi.io
uch-sandbox.karanashi.io
msc-development.karanashi.io
uch-sandbox.karanashi.io
habanero-stage1.karanashi.io
stage.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.samplerealm.samplebase.karanashi.io
letsencryptforlocal.karanashi.io
habanero-stage3.karanashi.io
*.tenant1.feature-version.karanashi.io
*.tenant1.habanero-development.karanashi.io
broker03.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
uch-sandbox.karanashi.io
v260api-test.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
habanero-stage1.karanashi.io
*.uch-dokuji.karanashi.io
msc-staging.karanashi.io
habanero-stage2.karanashi.io
feature-version.karanashi.io
stage.karanashi.io
*.samplebase.samplebase.karanashi.io
*.tenant1.habanero-stage2.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
msc-development.karanashi.io
*.tenant1.v260test3.karanashi.io
uch-sandbox.karanashi.io
*.tenant1.habanero-stage2.karanashi.io
*.uch-dokuji.karanashi.io
*.dokuji-uch-sandbox.karanashi.io
wso2.karanashi.io
*.tenant2.habanero-stage1.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
uch-sandbox.karanashi.io
*.21.habanero-stage5.karanashi.io
stage.karanashi.io
*.tenant-a.habanero-uch-sandbox.karanashi.io
uch-sandbox.karanashi.io
*.tenant-a.habanero-uch-sandbox.karanashi.io
*.tenant15.habanero-stage5.karanashi.io
v260test3.karanashi.io
*.tenant1.habanero-stage1.karanashi.io
*.iss210-tenant.iss210.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.realm1.habanero-stage1.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.dokuji-uch-sandbox.karanashi.io
*.cplpdo-test.habanero-stage2.karanashi.io
uch-sandbox.karanashi.io
*.uch-dokuji.karanashi.io
*.msc-tenant3.msc.karanashi.io
*.dokuji-uch-sandbox.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
uch-sandbox.karanashi.io
v260test2.karanashi.io
habanero-stage1.karanashi.io
habanero-development.karanashi.io
broker02.karanashi.io
*.habanero-tenant1.karanashi.io
habanero-stage6.karanashi.io
msc-development.karanashi.io
habanero-development.karanashi.io
*.aiplatform.karanashi.io
*.tenant2.habanero-stage5.karanashi.io
habanero-uch-sandbox.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.uch-dokuji.karanashi.io
ess-skeleton.stage.karanashi.io
msc-development.karanashi.io
*.dokuji-uch-sandbox.karanashi.io
*.tenant3.habanero-stage4.karanashi.io
karanashi.io
*.tenant1.v260api-test.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
stage.karanashi.io
*.tenant1.msc-staging.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.msc-tenant4.msc.karanashi.io
*.uch-dokuji.karanashi.io
broker01.karanashi.io
*.tenant5.habanero-development.karanashi.io
uch-sandbox.karanashi.io
habanero-stage3.karanashi.io
*.tenant1.habanero-stage6.karanashi.io
*.uch-dokuji.karanashi.io
flashair.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
karanashi.io
feature-version.karanashi.io
stage.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.msc-tenant1.msc.karanashi.io
stage.karanashi.io
*.msc-tenant2.msc.karanashi.io
habanero-development.karanashi.io
*.uch-dokuji.karanashi.io
uch-sandbox.karanashi.io
msc-development.karanashi.io
uch-sandbox.karanashi.io
habanero-stage1.karanashi.io
stage.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.samplerealm.samplebase.karanashi.io
letsencryptforlocal.karanashi.io
habanero-stage3.karanashi.io
*.tenant1.feature-version.karanashi.io
*.tenant1.habanero-development.karanashi.io
broker03.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
uch-sandbox.karanashi.io
v260api-test.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
habanero-stage1.karanashi.io
*.uch-dokuji.karanashi.io
msc-staging.karanashi.io
habanero-stage2.karanashi.io
feature-version.karanashi.io
stage.karanashi.io
*.samplebase.samplebase.karanashi.io
*.tenant1.habanero-stage2.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
msc-development.karanashi.io
*.tenant1.v260test3.karanashi.io
uch-sandbox.karanashi.io
*.tenant1.habanero-stage2.karanashi.io
*.uch-dokuji.karanashi.io
*.dokuji-uch-sandbox.karanashi.io
wso2.karanashi.io
*.tenant2.habanero-stage1.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
*.tenant1.uch-sandbox.karanashi.io
uch-sandbox.karanashi.io
Certificate
The complete raw certificate details for *.realm1.habanero-stage1.karanashi.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEiTCCA3GgAwIBAgIQA9LjdJOMGzraeVH12aqfBzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIxNDAwMDAwMFoXDTI1MDExMjIzNTk1OVowMDEu MCwGA1UEAwwlKi5yZWFsbTEuaGFiYW5lcm8tc3RhZ2UxLmthcmFuYXNoaS5pbzCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOXOWo7vWLdoJo28BUY/7oGw PW0blnJ5BMFY3daxif4hKBgOwLPQ9on2jluCozpt75y8eE7W36QeKig9cox4MTKC ItCBowB2Zl3Ygyh3fhHLm42XbpShgRoCBb1r1Dvuq9ECJgLX64qJVBDh1j0OCgN8 6RX1SNyiPPvSI1esvVFqmM5xWJ0lfkgZVRDuS4S+LyoQojUFW69QZUuX/juTsy0r Xrqj2q1X2jrNKv3x5Rhu5aP/RdgGkixTMMeSNrKyMdq2yfc0v3OXWZZ0QAlbfFKa UTl63PPsn93k4QpCRTu94OmG+hOjSmEE2Hj0dYI2aZAQ1q3+Cqj29y9KTSJ8d40C AwEAAaOCAZEwggGNMB8GA1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0G A1UdDgQWBBRiC0TUfVLPMQNgB2weYR2QUVvsyzAwBgNVHREEKTAngiUqLnJlYWxt MS5oYWJhbmVyby1zdGFnZTEua2FyYW5hc2hpLmlvMBMGA1UdIAQMMAowCAYGZ4EM AQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMy5hbWF6b250cnVz dC5jb20vcjJtMDMuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0 cDovL29jc3AucjJtMDMuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRw Oi8vY3J0LnIybTAzLmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jZXIwDAYDVR0TAQH/ BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEATs7N S2vEk6Jkexc6wFa+UtTT01y4BP5I0LKwe7FqR9evCzJqPouaue0aIyYNzFsGVqbA UnkSd0Y00PPQOVxstZnXY57JUjC7QSE8LKuFuNfsHFGcI6b/T3YbCVRO8uiBL2Yv b1oe/8y5axfpO4RC3PisAWtDsYRMcG8ddtnGDw3M+WHXl5LGn2pywm50mT6nbIvw gvohdrrk5yx0tqYR6JVnS/JVBnfVKPFnLJhSOp9roMRKhXXe85+2hbVyf+zLCWRd U17hbYm+M+sEXXxMyi79SDpoh/H0/pYB16GyZtmF3Qv//+kR/lJFMxEuFZJPyYCA +7aCQ+xC0n0wb5DBrA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5c5aju9Yt2gmjbwFRj/u gbA9bRuWcnkEwVjd1rGJ/iEoGA7As9D2ifaOW4KjOm3vnLx4TtbfpB4qKD1yjHgx MoIi0IGjAHZmXdiDKHd+EcubjZdulKGBGgIFvWvUO+6r0QImAtfriolUEOHWPQ4K A3zpFfVI3KI8+9IjV6y9UWqYznFYnSV+SBlVEO5LhL4vKhCiNQVbr1BlS5f+O5Oz LSteuqParVfaOs0q/fHlGG7lo/9F2AaSLFMwx5I2srIx2rbJ9zS/c5dZlnRACVt8 UppROXrc8+yf3eThCkJFO73g6Yb6E6NKYQTYePR1gjZpkBDWrf4KqPb3L0pNInx3 jQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5082679670757616652584893318504816391 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.realm1.habanero-stage1.karanashi.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29010328660683030152160976577981038930733056481338742248176088374264982660944454201499696380640179275638655069967438741416194632760918632836662178978171383797101271302869188495553973148731094622383346839384186129968906868684994805105315059317995421639309965709884557505572633446812465176528612962983673349407072630922496209350770173595725402060902628640341006758400047429020747437173902411226484011243028368257576046083809777969017340649566135764496496111876823838015974983688146023741872451714262499984877530237738655060919022258430244241176496751636183738244441229214843338535544782650836904139700450379508666365837 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 620b44d47d52cf310360076c1e611d90515beccb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (41 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.realm1.habanero-stage1.karanashi.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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