at.wsj.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 09:82:b2:ff:42:8f:d9:9d:2f:08:df:bb:cf:44:3b:5f was issued on by Amazon.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=at.wsj.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:82:b2:ff:42:8f:d9:9d:2f:08:df:bb:cf:44:3b:5fSerial Number (int): 12641681046364576276053250540313000799
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: b8:2b:0a:a7:5b:e7:ab:a5:4b:c1:c4:bd:cd:4f:6c:57:bf:f1:c9:87
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): e0:11:ce:0c:fe:9c:14:89:51:79:09:94:f3:e7:d3:53:6b:13:00:5e
Fingerprint (sha256): 07:fe:11:8f:2c:63:18:14:05:03:00:05:77:64:5c:90:f0:e2:03:51:f1:48:76:29:e8:49:56:b9:7e:01:71:21
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate at.wsj.com
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for at.wsj.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
at.wsj.com
www.wsjmagazine.com
www.executivecareers.org
ds.wsj.com
wsj.co.uk
www.jp.wsj.com
wsjdn.wsj.com
www.wsjmagazine.com
www.executivecareers.org
ds.wsj.com
wsj.co.uk
www.jp.wsj.com
wsjdn.wsj.com
Other certificates including the domain name wsj.com
(limited to 100 certificates)
mlnewsplus.wsj.com
customercenter.wsj.com
suggest.factiva.com
brand.stg.dowjones.com
cmonetwork.wsj.com
iwap.wsj.com
id.cn.wsj.com
accounts.dowjones.com
suggest.int.factiva.com
on.wsj.com
iphonetest.wsj.com
credit-card-api-00.store.wsj.com
blueprint.stg.wsj.com
blue-partner.wsj.com
customercenter.wsj.com
accounts.dowjones.com
newsplus.int.wsj.com
newsplus.wsj.com
asia.buy.wsj.com
ssl.wsj.com
print.wsj.com
www.wsj.com
conferences.wsj.com
wsjtechhealth.wsj.com
setup.wsj.com
commenting.wsj.com
*.d.dev.wsj.com
ae.wsj.com
confirm.wsj.com
subscribe.wsj.com
ssl.wsj.com
print.wsj.com
update.wsj.com
projects.wsj.com
education.wsj.com
payment-01.store.wsj.com
chat.wsj.com
adfinder.wsj.com
r-uat.smpdev.wsj.com
guides.wsj.com
newsplus.wsj.com
*.wsj.com
stg.accounts.dowjones.com
www.s.dev.wsj.com
professor.wsj.com
www.s.dev.realestate.wsj.com
contact.wsj.com
www.s.dev.wsj.com
amp.wsj.com
sm.wsj.com
confirm.s.dev.wsj.com
CONTACT.WSJ.COM
deloitte.stg.wsj.com
*.s.dev.wsj.com
at.wsj.com
partner.wsj.com
iphonetest.wsj.com
newsplus.web.prod.pib.dowjones.io
professional.wsj.com
financialcrisis.wsj.com
highschool.wsj.com
r.wsj.com
prepare.wsj.com
ceocouncil.wsj.com
*.stg.dowjones.com
partners.wsj.com
foefestival.wsj.com
newsplus.web.prod.pib.dowjones.io
amp.wsj.com
mlsignin.stg.wsj.com
suggest.dowjones.com
chat.s.dev.wsj.com
v2.pixel.djp.data.newscorp.com
*.wsj.com
test9.dowjones.com
sbk-beta.asia.wsj.com
store.wsj.com
login.wsj.com
*.dowjones.com
cyber.pro.wsj.com
commerce.wsj.com
journalist.wsj.com
investinginafrica.wsj.com
am.wsj.com
global.factiva.com
accounts.dowjones.com
classifieds.wsj.com
store.wsj.com
customercenter.wsj.com
buy.wsj.com
confirm.wsj.com
blue-customercenter.wsj.com
journalist.stg.wsj.com
financingthefuture.stg.wsj.com
prod.payment.store.wsj.com
on.wsj.com
bbtest.wsj.com
commercialpartnerships.wsj.com
journalist.wsj.com
print.wsj.com
customercenter.wsj.com
suggest.factiva.com
brand.stg.dowjones.com
cmonetwork.wsj.com
iwap.wsj.com
id.cn.wsj.com
accounts.dowjones.com
suggest.int.factiva.com
on.wsj.com
iphonetest.wsj.com
credit-card-api-00.store.wsj.com
blueprint.stg.wsj.com
blue-partner.wsj.com
customercenter.wsj.com
accounts.dowjones.com
newsplus.int.wsj.com
newsplus.wsj.com
asia.buy.wsj.com
ssl.wsj.com
print.wsj.com
www.wsj.com
conferences.wsj.com
wsjtechhealth.wsj.com
setup.wsj.com
commenting.wsj.com
*.d.dev.wsj.com
ae.wsj.com
confirm.wsj.com
subscribe.wsj.com
ssl.wsj.com
print.wsj.com
update.wsj.com
projects.wsj.com
education.wsj.com
payment-01.store.wsj.com
chat.wsj.com
adfinder.wsj.com
r-uat.smpdev.wsj.com
guides.wsj.com
newsplus.wsj.com
*.wsj.com
stg.accounts.dowjones.com
www.s.dev.wsj.com
professor.wsj.com
www.s.dev.realestate.wsj.com
contact.wsj.com
www.s.dev.wsj.com
amp.wsj.com
sm.wsj.com
confirm.s.dev.wsj.com
CONTACT.WSJ.COM
deloitte.stg.wsj.com
*.s.dev.wsj.com
at.wsj.com
partner.wsj.com
iphonetest.wsj.com
newsplus.web.prod.pib.dowjones.io
professional.wsj.com
financialcrisis.wsj.com
highschool.wsj.com
r.wsj.com
prepare.wsj.com
ceocouncil.wsj.com
*.stg.dowjones.com
partners.wsj.com
foefestival.wsj.com
newsplus.web.prod.pib.dowjones.io
amp.wsj.com
mlsignin.stg.wsj.com
suggest.dowjones.com
chat.s.dev.wsj.com
v2.pixel.djp.data.newscorp.com
*.wsj.com
test9.dowjones.com
sbk-beta.asia.wsj.com
store.wsj.com
login.wsj.com
*.dowjones.com
cyber.pro.wsj.com
commerce.wsj.com
journalist.wsj.com
investinginafrica.wsj.com
am.wsj.com
global.factiva.com
accounts.dowjones.com
classifieds.wsj.com
store.wsj.com
customercenter.wsj.com
buy.wsj.com
confirm.wsj.com
blue-customercenter.wsj.com
journalist.stg.wsj.com
financingthefuture.stg.wsj.com
prod.payment.store.wsj.com
on.wsj.com
bbtest.wsj.com
commercialpartnerships.wsj.com
journalist.wsj.com
print.wsj.com
Certificate
The complete raw certificate details for at.wsj.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGJDCCBQygAwIBAgIQCYKy/0KP2Z0vCN+7z0Q7XzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDMxNTAwMDAwMFoXDTI0MDQxMjIzNTk1OVowFTET MBEGA1UEAxMKYXQud3NqLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJSmAbQHJ1oadI8M4f+jmgAJ9KMP6Nlyd7UgoAs6S4Kbronb5wBlCv5s06If LY+FPB37YH0LSR2ydMPL4LZEPNyDGSZUOFPXrhlhq3XhSkD4Hmc0nWPAXbLjwnfu ltuVgThVoYSVT+k2wNQNh735o/KT8+tuqiNdb8TK9bx5oHVuX+5+k1NaJBbQQBmA 2JaHljKnfm87NBypamkcbTFnXP+7eEa69KgE7XFYbDp1nrjab1PvNT3bpASf7cLl zSH5rZmmkf5FQ1172cifYiWPf1aJUCHiRUoRwTanupWTEAquJEWwrBvjN8ef/F9/ aneYsbl8aSoHnR95PYUtc3PXcmcCAwEAAaOCA0cwggNDMB8GA1UdIwQYMBaAFIG4 DmOKiRIY5fo7O1CVn+blkBOFMB0GA1UdDgQWBBS4KwqnW+erpUvBxL3NT2xXv/HJ hzB6BgNVHREEczBxggphdC53c2ouY29tghN3d3cud3NqbWFnYXppbmUuY29tghh3 d3cuZXhlY3V0aXZlY2FyZWVycy5vcmeCCmRzLndzai5jb22CCXdzai5jby51a4IO d3d3LmpwLndzai5jb22CDXdzamRuLndzai5jb20wDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipo dHRwOi8vY3JsLnIybTAxLmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jcmwwEwYDVR0g BAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRw Oi8vb2NzcC5yMm0wMS5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6 Ly9jcnQucjJtMDEuYW1hem9udHJ1c3QuY29tL3IybTAxLmNlcjAMBgNVHRMBAf8E AjAAMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQDuzdBk1dsazsVct520zROi ModGfLzs3sNRSFlGcR+1mwAAAYbjPu2nAAAEAwBGMEQCIHTQQHNcMxnNHbU/EO0y 3gG3hauzRHuPiUbmUQUxYqZWAiBs8+5wINoqwxaVtlwljrQF5g2/TzX3fBoxAqI2 d7Qw4wB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABhuM+7eIA AAQDAEcwRQIgQok6CSri1ugSrd6wVbn/v1onwWGAxjuX+6gCKWgofXMCIQCMT1cr b5ApdyPs1tAd0LowVy2Fp5LrYQDmmNpFXXevZAB2ADtTd3U+LbmAToswWwb+QDtn 2E/D9Me9AA0tcm/h+tQXAAABhuM+7eIAAAQDAEcwRQIhAMTz7Lbz1tz5omoT+QKA eox82CQcKLIYRbwMRt5HzqAEAiA5Yb2wA417fffcgfQ+qpwrr5L5n3oGpA5yAtfR JpOZHTANBgkqhkiG9w0BAQsFAAOCAQEACCtNOFtEmdKCywodrT/jVSn/Vnzb8uZq ODM8et3ZvHo/VITx2S3MNzSHZTgF9vTr8ZAUeOzaO7xr+B4D5EwRXDIR1ewaF0Mp h8W217HpKlgxxWkQprZ/rwxdrvmXNtw2aGWQBogf7hkOXAqLb5IEdloGddYvMfNF +CwNHd2oiOllHrifcjVMhAfeJhbsPjtFosE9lZShiQt/nSH3Z6f5++gmEiTlqR/W Qzv+R0C1aI/DzR2/3I1JfbyMnhDlfJF1+5A+FcrgGjfeT+Xy2Wu3M1DAcXLVEMyI 2NgQjoKKFN7YkPqd7Jh2gbB0pr4/B4NNzzSH3LRidh2humlhz0AY/A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlKYBtAcnWhp0jwzh/6Oa AAn0ow/o2XJ3tSCgCzpLgpuuidvnAGUK/mzToh8tj4U8HftgfQtJHbJ0w8vgtkQ8 3IMZJlQ4U9euGWGrdeFKQPgeZzSdY8BdsuPCd+6W25WBOFWhhJVP6TbA1A2Hvfmj 8pPz626qI11vxMr1vHmgdW5f7n6TU1okFtBAGYDYloeWMqd+bzs0HKlqaRxtMWdc /7t4Rrr0qATtcVhsOnWeuNpvU+81PdukBJ/twuXNIfmtmaaR/kVDXXvZyJ9iJY9/ VolQIeJFShHBNqe6lZMQCq4kRbCsG+M3x5/8X39qd5ixuXxpKgedH3k9hS1zc9dy ZwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12641681046364576276053250540313000799 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'at.wsj.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18765130066697113377743253161574047741301223696483610423570337161572251364094716975997229170991500350452276151270458137102391927195033729401837100387653681878565437909439136591164660093969255157510827604411379539278907431895660675300385830941922579459627480265603024595969700049359873601439887985707655244975273071140207649524562724607528793985747218598264278045474307274092360918005119525796608473366286438861587731297117637969111574593693321608738812018091043824573585233093829262181775749007743750362117366566743523721156256228196606030020625861119403982540669089012896053355656319538254386688867543805539556749927 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b82b0aa75be7aba54bc1c4bdcd4f6c57bff1c987 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'at.wsj.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wsjmagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.executivecareers.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ds.wsj.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wsj.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jp.wsj.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wsjdn.wsj.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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