aax-apse-dtb-web.amazon-adsystem.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 02:6f:81:e6:77:3b:88:96:26:b6:de:d1:73:04:05:93 was issued on by Amazon.
With 14 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=aax-apse-dtb-web.amazon-adsystem.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:6f:81:e6:77:3b:88:96:26:b6:de:d1:73:04:05:93Serial Number (int): 3237435633084134762597104561728783763
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 9e:c2:30:66:77:20:88:55:c2:3c:e0:4f:66:12:ad:b8:fd:77:ee:c2
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): dc:ef:f6:e5:83:47:1f:41:ea:f8:34:49:5d:bb:5a:a8:34:dc:f1:da
Fingerprint (sha256): 08:85:a3:9b:c9:d3:fe:47:63:a1:2b:ed:72:95:4a:f6:c0:75:49:76:9f:fb:cd:de:5a:ba:ed:b7:64:f0:bb:cf
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate aax-apse-dtb-web.amazon-adsystem.com
14
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aax-apse-dtb-web.amazon-adsystem.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aax-apse-dtb-web.amazon-adsystem.com
aax.amazon-adsystem.com
aax-fe-sin.amazon-adsystem.com
aax-dtb-legacy.amazon-adsystem.amazon.com
aax-dtb-mobile-cf.amazon-adsystem.amazon.com
aax-dtb-legacy.amazon-adsystem.com
aax-dtb-mobile-cf.amazon-adsystem.com
aax-dtb-cf.amazon-adsystem.com
aax-dtb-mobile-px.amazon-adsystem.com
aax-dtb-mobile-geo.amazon-adsystem.com
aax-dtb-mobile-geo.amazon-adsystem.amazon.com
aax-dtb-web-geo.amazon-adsystem.com
aax-dtb-web-bids-geo.amazon-adsystem.com
aax-dtb-mobile-bids-geo.amazon-adsystem.com
aax.amazon-adsystem.com
aax-fe-sin.amazon-adsystem.com
aax-dtb-legacy.amazon-adsystem.amazon.com
aax-dtb-mobile-cf.amazon-adsystem.amazon.com
aax-dtb-legacy.amazon-adsystem.com
aax-dtb-mobile-cf.amazon-adsystem.com
aax-dtb-cf.amazon-adsystem.com
aax-dtb-mobile-px.amazon-adsystem.com
aax-dtb-mobile-geo.amazon-adsystem.com
aax-dtb-mobile-geo.amazon-adsystem.amazon.com
aax-dtb-web-geo.amazon-adsystem.com
aax-dtb-web-bids-geo.amazon-adsystem.com
aax-dtb-mobile-bids-geo.amazon-adsystem.com
Other certificates including the domain name amazon-adsystem.com
(limited to 100 certificates)
aax-us-west.amazon-adsystem.com
rcm-fe.assoc-amazon.com
aax-us-east.amazon-adsystem.com
www.assoc-amazon.fr
aax-fe-retail-direct.amazon-adsystem.com
assoc-msdk-cn.amazon-adsystem.com
wms-eu.assoc-amazon.com
aax-fe.amazon-adsystem.com
www.assoc-amazon.ca
aax-vx-fe-us-west-2.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-east-test1.amazon-adsystem.com
rcm-na.assoc-amazon.com
aax-us-iad.amazon.com
aax-us-east-test6.amazon-adsystem.com
mads-eu.amazon.com
z-eu.amazon-adsystem.com
aax-eu-retail-direct.amazon-adsystem.com
www.assoc-amazon.ca
wms-eu.assoc-amazon.com
aax-vx-us-us-east-1.amazon-adsystem.com
aax-fe-sin.amazon-adsystem.com
aax.online-panel.advertising.amazon.dev
cdn-d.amazon-adsystem.com
rcm-fe.assoc-amazon.com
www.assoc-amazon.de
rcm-eu.assoc-amazon.com
s.amazon-adsystem.com
aax-us-pdx.amazon-adsystem.com
wms-na.assoc-amazon.com
v-eu.amazon-adsystem.com
aax-adx.ap-southeast.3px.axp.amazon-adsystem.com
rcm-fe.assoc-amazon.com
cdn-c.amazon-adsystem.com
aax-apse-dtb-web.amazon-adsystem.com
fls-na.amazon-adsystem.com
aax-eu.amazon-adsystem.com
wms-na.assoc-amazon.com
at-us-east.amazon-adsystem.com
aax-us-east-rtb-adx.amazon-adsystem.com
wms-na.assoc-amazon.com
ws-eu.assoc-amazon.com
aax-us-pdx.amazon-adsystem.com
z-eu.amazon-adsystem.com
aax-us-pdx.amazon-adsystem.com
fls-cn.amazon-adsystem.com
ws-fe.assoc-amazon.com
video-player.aps.amazon-adsystem.com
aax-eu.amazon-adsystem.com
wms-na.assoc-amazon.com
vq-eu-west-1.amazon-adsystem.com
assoc-msdk-eu.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
wms-na.assoc-amazon.com
aax-us-west.amazon-adsystem.com
www.assoc-amazon.fr
ws-fe.assoc-amazon.com
vaes.dub.amazon-adsystem.com
cell8002.pdx.spp.bid-na.ads.aps.amazon-adsystem.com
?.amazon-adsystem.com
mads.amazon.com
aax-us-east.amazon-adsystem.com
www.assoc-amazon.ca
mas-sdk.amazon.com
z-eu.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
imdb.amazon-adsystem.com
imdb.amazon-adsystem.com
aax-fe-retail-direct.amazon-adsystem.com
vq-test-us-east-1.amazon-adsystem.com
aax-vx-us-us-west-2.amazon-adsystem.com
aax-us-east-test1.amazon-adsystem.com
atue.amazon-adsystem.com
rcm-na.assoc-amazon.com
c.amazon-adsystem.com
assoc-msdk-metrics-us.amazon-adsystem.com
www.assoc-amazon.es
ws-eu.assoc-amazon.com
z-na.amazon-adsystem.com
vfw-ap.amazon-adsystem.com
mas-sdk.amazon.com
mobile-associates-service.amazon.com
rcm-eu.assoc-amazon.com
v-eu.amazon-adsystem.com
ws-cn.assoc-amazon.com
aax-fe.amazon-adsystem.com
aax-fe-sin-rtb-adx.amazon-adsystem.com
*.us-east-1.prod.3p.entry.video-ads.a2z.com
www.assoc-amazon.jp
aax-vx-us-iad.amazon-adsystem.com
www.assoc-amazon.de
v.amazon-adsystem.com
aax.online-panel.advertising.amazon.dev
fls-fe.amazon-adsystem.com
www.assoc-amazon.ca
rcm-fe.assoc-amazon.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-iad.amazon.com
cell7002.pdx.stv.bid-na.ads.aps.amazon-adsystem.com
rcm-fe.assoc-amazon.com
aax-us-east.amazon-adsystem.com
www.assoc-amazon.fr
aax-fe-retail-direct.amazon-adsystem.com
assoc-msdk-cn.amazon-adsystem.com
wms-eu.assoc-amazon.com
aax-fe.amazon-adsystem.com
www.assoc-amazon.ca
aax-vx-fe-us-west-2.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-east-test1.amazon-adsystem.com
rcm-na.assoc-amazon.com
aax-us-iad.amazon.com
aax-us-east-test6.amazon-adsystem.com
mads-eu.amazon.com
z-eu.amazon-adsystem.com
aax-eu-retail-direct.amazon-adsystem.com
www.assoc-amazon.ca
wms-eu.assoc-amazon.com
aax-vx-us-us-east-1.amazon-adsystem.com
aax-fe-sin.amazon-adsystem.com
aax.online-panel.advertising.amazon.dev
cdn-d.amazon-adsystem.com
rcm-fe.assoc-amazon.com
www.assoc-amazon.de
rcm-eu.assoc-amazon.com
s.amazon-adsystem.com
aax-us-pdx.amazon-adsystem.com
wms-na.assoc-amazon.com
v-eu.amazon-adsystem.com
aax-adx.ap-southeast.3px.axp.amazon-adsystem.com
rcm-fe.assoc-amazon.com
cdn-c.amazon-adsystem.com
aax-apse-dtb-web.amazon-adsystem.com
fls-na.amazon-adsystem.com
aax-eu.amazon-adsystem.com
wms-na.assoc-amazon.com
at-us-east.amazon-adsystem.com
aax-us-east-rtb-adx.amazon-adsystem.com
wms-na.assoc-amazon.com
ws-eu.assoc-amazon.com
aax-us-pdx.amazon-adsystem.com
z-eu.amazon-adsystem.com
aax-us-pdx.amazon-adsystem.com
fls-cn.amazon-adsystem.com
ws-fe.assoc-amazon.com
video-player.aps.amazon-adsystem.com
aax-eu.amazon-adsystem.com
wms-na.assoc-amazon.com
vq-eu-west-1.amazon-adsystem.com
assoc-msdk-eu.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
wms-na.assoc-amazon.com
aax-us-west.amazon-adsystem.com
www.assoc-amazon.fr
ws-fe.assoc-amazon.com
vaes.dub.amazon-adsystem.com
cell8002.pdx.spp.bid-na.ads.aps.amazon-adsystem.com
?.amazon-adsystem.com
mads.amazon.com
aax-us-east.amazon-adsystem.com
www.assoc-amazon.ca
mas-sdk.amazon.com
z-eu.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
imdb.amazon-adsystem.com
imdb.amazon-adsystem.com
aax-fe-retail-direct.amazon-adsystem.com
vq-test-us-east-1.amazon-adsystem.com
aax-vx-us-us-west-2.amazon-adsystem.com
aax-us-east-test1.amazon-adsystem.com
atue.amazon-adsystem.com
rcm-na.assoc-amazon.com
c.amazon-adsystem.com
assoc-msdk-metrics-us.amazon-adsystem.com
www.assoc-amazon.es
ws-eu.assoc-amazon.com
z-na.amazon-adsystem.com
vfw-ap.amazon-adsystem.com
mas-sdk.amazon.com
mobile-associates-service.amazon.com
rcm-eu.assoc-amazon.com
v-eu.amazon-adsystem.com
ws-cn.assoc-amazon.com
aax-fe.amazon-adsystem.com
aax-fe-sin-rtb-adx.amazon-adsystem.com
*.us-east-1.prod.3p.entry.video-ads.a2z.com
www.assoc-amazon.jp
aax-vx-us-iad.amazon-adsystem.com
www.assoc-amazon.de
v.amazon-adsystem.com
aax.online-panel.advertising.amazon.dev
fls-fe.amazon-adsystem.com
www.assoc-amazon.ca
rcm-fe.assoc-amazon.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-iad.amazon.com
cell7002.pdx.stv.bid-na.ads.aps.amazon-adsystem.com
Certificate
The complete raw certificate details for aax-apse-dtb-web.amazon-adsystem.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH8jCCBtqgAwIBAgIQAm+B5nc7iJYmtt7RcwQFkzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTI0MDQxOTAwMDAwMFoXDTI1MDQwMzIzNTk1OVowLzEt MCsGA1UEAxMkYWF4LWFwc2UtZHRiLXdlYi5hbWF6b24tYWRzeXN0ZW0uY29tMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmCDipqgvKyraT+q7Kds8juT/ m1ECqLtpUbt4y791DpP9ymjn0rHwRi/Ks781L1boAXhUL9SDuX3t78ReyIw5M4ny 4GZIDR0gk557w9FyVvVdc1dP7WB6JF8jgcgqj9NRz0j/mC3a9e2RWlVN2liFzmPs 9NjIDbiPKxNGFXmoUKyV9VHmE5Fi3j6J2P1+v3OFrBJpchTuEii7rdReEOz+7xvz 54gTQk2wXYukXUmWXAUnyRnCdZ5zjqekDM8DMwXlzFavs/SakozS0aTc6el7M8V9 tAeJ4UYhOB0P6oYfff8XLajNc92ZSDb7Oxhj+lfWrFy1cnmngSlYmoYTdTi1BwID AQABo4IE+zCCBPcwHwYDVR0jBBgwFoAUgbgOY4qJEhjl+js7UJWf5uWQE4UwHQYD VR0OBBYEFJ7CMGZ3IIhVwjzgT2YSrbj9d+7CMIICKgYDVR0RBIICITCCAh2CJGFh eC1hcHNlLWR0Yi13ZWIuYW1hem9uLWFkc3lzdGVtLmNvbYIXYWF4LmFtYXpvbi1h ZHN5c3RlbS5jb22CHmFheC1mZS1zaW4uYW1hem9uLWFkc3lzdGVtLmNvbYIpYWF4 LWR0Yi1sZWdhY3kuYW1hem9uLWFkc3lzdGVtLmFtYXpvbi5jb22CLGFheC1kdGIt bW9iaWxlLWNmLmFtYXpvbi1hZHN5c3RlbS5hbWF6b24uY29tgiJhYXgtZHRiLWxl Z2FjeS5hbWF6b24tYWRzeXN0ZW0uY29tgiVhYXgtZHRiLW1vYmlsZS1jZi5hbWF6 b24tYWRzeXN0ZW0uY29tgh5hYXgtZHRiLWNmLmFtYXpvbi1hZHN5c3RlbS5jb22C JWFheC1kdGItbW9iaWxlLXB4LmFtYXpvbi1hZHN5c3RlbS5jb22CJmFheC1kdGIt bW9iaWxlLWdlby5hbWF6b24tYWRzeXN0ZW0uY29tgi1hYXgtZHRiLW1vYmlsZS1n ZW8uYW1hem9uLWFkc3lzdGVtLmFtYXpvbi5jb22CI2FheC1kdGItd2ViLWdlby5h bWF6b24tYWRzeXN0ZW0uY29tgihhYXgtZHRiLXdlYi1iaWRzLWdlby5hbWF6b24t YWRzeXN0ZW0uY29tgithYXgtZHRiLW1vYmlsZS1iaWRzLWdlby5hbWF6b24tYWRz eXN0ZW0uY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYq aHR0cDovL2NybC5yMm0wMS5hbWF6b250cnVzdC5jb20vcjJtMDEuY3JsMHUGCCsG AQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDEuYW1hem9u dHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAxLmFtYXpvbnRy dXN0LmNvbS9yMm0wMS5jZXIwDAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIE ggFvBIIBawFpAHUATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGO 87bG7QAABAMARjBEAiB1axsLzh+PG7rzMdgI0bm52/pvJ3J+X/uki1Dn3xLqLAIg L2qBMu+zYeohQtrup9szC5m6aTmI88LAtF/HbKzlGVIAdwB9WR4S4XgqexxhZ3xe /fjQh1wUoE6VnrkDL9kOjC55uAAAAY7ztsbmAAAEAwBIMEYCIQCZD42dtAAAo2tv PjtLxYp4t9dh0iVc0c4Hr5U7plPDyAIhAL0IVlipsrRM6Vg4QKX7HxShfajYXBnT HvUVB4J5d0vrAHcA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGO 87bG/QAABAMASDBGAiEA4KI7rKdCX6MUvqed/LUoFYaBbSrkAoHDJN8QkrFBC/MC IQCJ1AHxgkbePHxcl9veaD0cLfiNfNI2olqdzmb8QSN51jANBgkqhkiG9w0BAQsF AAOCAQEAX4EAczSLElJYPHj0Ag3Bz+y/BcnoYgSwJBqOz9MEKOXQLSqM8tHxhBvg My29uxKqD41k8D1peaaqEc9iHJEL5g9laX7Qc4Fu6q1pDCXfMXthAgk8fR7ec/bK llaLNcjd2N52qGT50Kc9CBZb3EAA+vMZleLYpBFA08n5lFiDpk/lxFy+BGKdt3jT qBhiMyx2jTmfYIuneyQT7O1Jl2e0oycaMqPVc601awwOWz6pxoO35E1a7MGdL+Bq Vj8jdnhq06Yg76/YTvi6GMLI0AyyxeCpqFeRWqDsykBaVyPE3phYE889sgWlRS8X E+Xbb7omSIHO5+y8Bdg4O8YVL31HcQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmCDipqgvKyraT+q7Kds8 juT/m1ECqLtpUbt4y791DpP9ymjn0rHwRi/Ks781L1boAXhUL9SDuX3t78ReyIw5 M4ny4GZIDR0gk557w9FyVvVdc1dP7WB6JF8jgcgqj9NRz0j/mC3a9e2RWlVN2liF zmPs9NjIDbiPKxNGFXmoUKyV9VHmE5Fi3j6J2P1+v3OFrBJpchTuEii7rdReEOz+ 7xvz54gTQk2wXYukXUmWXAUnyRnCdZ5zjqekDM8DMwXlzFavs/SakozS0aTc6el7 M8V9tAeJ4UYhOB0P6oYfff8XLajNc92ZSDb7Oxhj+lfWrFy1cnmngSlYmoYTdTi1 BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3237435633084134762597104561728783763 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aax-apse-dtb-web.amazon-adsystem.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19204438728022352983812132916717062556470204809166597986079380331537131090344247296972504106427292614968205104622890548852586382974976831679468494628241660814216951862537620213210483957887732349954538151504626140034656881891310584918228529035918433301106499621009880597955308189142736836002428637832107450529257272234732068840811966836082023872372557129314416003701817135108747081686593743258222254324082195137417178990205766081678716444955142370555978665874539704807566464995052812222616698833215839685744631939328304689344056060201452797073758038676936272175594604578234725993052349602941696768724723842826427217159 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9ec2306677208855c23ce04f6612adb8fd77eec2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (545 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-apse-dtb-web.amazon-adsystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax.amazon-adsystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-fe-sin.amazon-adsystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-dtb-legacy.amazon-adsystem.amazon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-dtb-mobile-cf.amazon-adsystem.amazon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-dtb-legacy.amazon-adsystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-dtb-mobile-cf.amazon-adsystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-dtb-cf.amazon-adsystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-dtb-mobile-px.amazon-adsystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-dtb-mobile-geo.amazon-adsystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-dtb-mobile-geo.amazon-adsystem.amazon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-dtb-web-geo.amazon-adsystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-dtb-web-bids-geo.amazon-adsystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aax-dtb-mobile-bids-geo.amazon-adsystem.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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