at-us-east.amazon-adsystem.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 0e:cb:5d:16:64:15:e2:8f:67:a3:61:0f:7f:66:05:84 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=at-us-east.amazon-adsystem.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0e:cb:5d:16:64:15:e2:8f:67:a3:61:0f:7f:66:05:84Serial Number (int): 19665116241359065472933708242824332676
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f4:8b:3c:fc:ed:0f:d1:38:d5:16:43:97:43:72:9b:df:23:a1:b2:2f
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 4e:44:e5:ec:48:cf:51:2f:93:02:3f:77:01:9b:06:f1:f0:6b:62:94
Fingerprint (sha256): 08:dc:fc:2c:16:05:4e:30:af:da:dd:8d:3a:a8:c8:e0:c8:ca:51:ca:b9:16:96:89:fa:6e:6b:41:7a:71:bb:79
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate at-us-east.amazon-adsystem.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for at-us-east.amazon-adsystem.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
at-us-east.amazon-adsystem.com
Other certificates including the domain name amazon-adsystem.com
(limited to 100 certificates)
aax-us-west.amazon-adsystem.com
rcm-fe.assoc-amazon.com
aax-us-east.amazon-adsystem.com
www.assoc-amazon.fr
aax-fe-retail-direct.amazon-adsystem.com
assoc-msdk-cn.amazon-adsystem.com
wms-eu.assoc-amazon.com
aax-fe.amazon-adsystem.com
www.assoc-amazon.ca
aax-vx-fe-us-west-2.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-east-test1.amazon-adsystem.com
rcm-na.assoc-amazon.com
aax-us-iad.amazon.com
aax-us-east-test6.amazon-adsystem.com
mads-eu.amazon.com
z-eu.amazon-adsystem.com
aax-eu-retail-direct.amazon-adsystem.com
www.assoc-amazon.ca
wms-eu.assoc-amazon.com
aax-vx-us-us-east-1.amazon-adsystem.com
aax-fe-sin.amazon-adsystem.com
aax.online-panel.advertising.amazon.dev
cdn-d.amazon-adsystem.com
rcm-fe.assoc-amazon.com
www.assoc-amazon.de
rcm-eu.assoc-amazon.com
s.amazon-adsystem.com
aax-us-pdx.amazon-adsystem.com
wms-na.assoc-amazon.com
v-eu.amazon-adsystem.com
aax-adx.ap-southeast.3px.axp.amazon-adsystem.com
rcm-fe.assoc-amazon.com
cdn-c.amazon-adsystem.com
aax-apse-dtb-web.amazon-adsystem.com
fls-na.amazon-adsystem.com
aax-eu.amazon-adsystem.com
wms-na.assoc-amazon.com
at-us-east.amazon-adsystem.com
aax-us-east-rtb-adx.amazon-adsystem.com
wms-na.assoc-amazon.com
ws-eu.assoc-amazon.com
aax-us-pdx.amazon-adsystem.com
z-eu.amazon-adsystem.com
aax-us-pdx.amazon-adsystem.com
fls-cn.amazon-adsystem.com
ws-fe.assoc-amazon.com
video-player.aps.amazon-adsystem.com
aax-eu.amazon-adsystem.com
wms-na.assoc-amazon.com
vq-eu-west-1.amazon-adsystem.com
assoc-msdk-eu.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
wms-na.assoc-amazon.com
aax-us-west.amazon-adsystem.com
www.assoc-amazon.fr
ws-fe.assoc-amazon.com
vaes.dub.amazon-adsystem.com
cell8002.pdx.spp.bid-na.ads.aps.amazon-adsystem.com
?.amazon-adsystem.com
mads.amazon.com
aax-us-east.amazon-adsystem.com
www.assoc-amazon.ca
mas-sdk.amazon.com
z-eu.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
imdb.amazon-adsystem.com
imdb.amazon-adsystem.com
aax-fe-retail-direct.amazon-adsystem.com
vq-test-us-east-1.amazon-adsystem.com
aax-vx-us-us-west-2.amazon-adsystem.com
aax-us-east-test1.amazon-adsystem.com
atue.amazon-adsystem.com
rcm-na.assoc-amazon.com
c.amazon-adsystem.com
assoc-msdk-metrics-us.amazon-adsystem.com
www.assoc-amazon.es
ws-eu.assoc-amazon.com
z-na.amazon-adsystem.com
vfw-ap.amazon-adsystem.com
mas-sdk.amazon.com
mobile-associates-service.amazon.com
rcm-eu.assoc-amazon.com
v-eu.amazon-adsystem.com
ws-cn.assoc-amazon.com
aax-fe.amazon-adsystem.com
aax-fe-sin-rtb-adx.amazon-adsystem.com
*.us-east-1.prod.3p.entry.video-ads.a2z.com
www.assoc-amazon.jp
aax-vx-us-iad.amazon-adsystem.com
www.assoc-amazon.de
v.amazon-adsystem.com
aax.online-panel.advertising.amazon.dev
fls-fe.amazon-adsystem.com
www.assoc-amazon.ca
rcm-fe.assoc-amazon.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-iad.amazon.com
cell7002.pdx.stv.bid-na.ads.aps.amazon-adsystem.com
rcm-fe.assoc-amazon.com
aax-us-east.amazon-adsystem.com
www.assoc-amazon.fr
aax-fe-retail-direct.amazon-adsystem.com
assoc-msdk-cn.amazon-adsystem.com
wms-eu.assoc-amazon.com
aax-fe.amazon-adsystem.com
www.assoc-amazon.ca
aax-vx-fe-us-west-2.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-east-test1.amazon-adsystem.com
rcm-na.assoc-amazon.com
aax-us-iad.amazon.com
aax-us-east-test6.amazon-adsystem.com
mads-eu.amazon.com
z-eu.amazon-adsystem.com
aax-eu-retail-direct.amazon-adsystem.com
www.assoc-amazon.ca
wms-eu.assoc-amazon.com
aax-vx-us-us-east-1.amazon-adsystem.com
aax-fe-sin.amazon-adsystem.com
aax.online-panel.advertising.amazon.dev
cdn-d.amazon-adsystem.com
rcm-fe.assoc-amazon.com
www.assoc-amazon.de
rcm-eu.assoc-amazon.com
s.amazon-adsystem.com
aax-us-pdx.amazon-adsystem.com
wms-na.assoc-amazon.com
v-eu.amazon-adsystem.com
aax-adx.ap-southeast.3px.axp.amazon-adsystem.com
rcm-fe.assoc-amazon.com
cdn-c.amazon-adsystem.com
aax-apse-dtb-web.amazon-adsystem.com
fls-na.amazon-adsystem.com
aax-eu.amazon-adsystem.com
wms-na.assoc-amazon.com
at-us-east.amazon-adsystem.com
aax-us-east-rtb-adx.amazon-adsystem.com
wms-na.assoc-amazon.com
ws-eu.assoc-amazon.com
aax-us-pdx.amazon-adsystem.com
z-eu.amazon-adsystem.com
aax-us-pdx.amazon-adsystem.com
fls-cn.amazon-adsystem.com
ws-fe.assoc-amazon.com
video-player.aps.amazon-adsystem.com
aax-eu.amazon-adsystem.com
wms-na.assoc-amazon.com
vq-eu-west-1.amazon-adsystem.com
assoc-msdk-eu.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
wms-na.assoc-amazon.com
aax-us-west.amazon-adsystem.com
www.assoc-amazon.fr
ws-fe.assoc-amazon.com
vaes.dub.amazon-adsystem.com
cell8002.pdx.spp.bid-na.ads.aps.amazon-adsystem.com
?.amazon-adsystem.com
mads.amazon.com
aax-us-east.amazon-adsystem.com
www.assoc-amazon.ca
mas-sdk.amazon.com
z-eu.amazon-adsystem.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
imdb.amazon-adsystem.com
imdb.amazon-adsystem.com
aax-fe-retail-direct.amazon-adsystem.com
vq-test-us-east-1.amazon-adsystem.com
aax-vx-us-us-west-2.amazon-adsystem.com
aax-us-east-test1.amazon-adsystem.com
atue.amazon-adsystem.com
rcm-na.assoc-amazon.com
c.amazon-adsystem.com
assoc-msdk-metrics-us.amazon-adsystem.com
www.assoc-amazon.es
ws-eu.assoc-amazon.com
z-na.amazon-adsystem.com
vfw-ap.amazon-adsystem.com
mas-sdk.amazon.com
mobile-associates-service.amazon.com
rcm-eu.assoc-amazon.com
v-eu.amazon-adsystem.com
ws-cn.assoc-amazon.com
aax-fe.amazon-adsystem.com
aax-fe-sin-rtb-adx.amazon-adsystem.com
*.us-east-1.prod.3p.entry.video-ads.a2z.com
www.assoc-amazon.jp
aax-vx-us-iad.amazon-adsystem.com
www.assoc-amazon.de
v.amazon-adsystem.com
aax.online-panel.advertising.amazon.dev
fls-fe.amazon-adsystem.com
www.assoc-amazon.ca
rcm-fe.assoc-amazon.com
aax-us-pdx-rtb-adx.amazon-adsystem.com
aax-us-iad.amazon.com
cell7002.pdx.stv.bid-na.ads.aps.amazon-adsystem.com
Certificate
The complete raw certificate details for at-us-east.amazon-adsystem.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6TCCBNGgAwIBAgIQDstdFmQV4o9no2EPf2YFhDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDgyNDAwMDAwMFoXDTI0MDkyMjIzNTk1OVowKTEn MCUGA1UEAxMeYXQtdXMtZWFzdC5hbWF6b24tYWRzeXN0ZW0uY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxgLw/qrf0AYzD17mVvR30kKtNMCwwiJ OKgu0x1e28KyXGG5+Rc0rdTsJdZ/pKOWEKdOVlYUN4guyY4BBgo5sicQaXSQYj4v Wn7+FplO2TQV/fhwx5iezYQ6dmr1HxTYJjA7SSacLTNhEhG+P8LqeHoaj+RI9a+h A58DQb5n1+03rdCIf6iFRHNTxLRka54L+x9t9Fde0vzXSAoybxa039HayQqLHzpN AUtgo+sVgDZmX/j0Fss/URn2HwDxV8HfONgaaWbPqw7Opicg8kTY0/ggzufnXv9j WvSxu0q0/4UU51KIloXQ9Plz4LR8S7sHF5iVgGK/lVESGYHCEwIvwQIDAQABo4IC +DCCAvQwHwYDVR0jBBgwFoAUgbgOY4qJEhjl+js7UJWf5uWQE4UwHQYDVR0OBBYE FPSLPPztD9E41RZDl0Nym98jobIvMCkGA1UdEQQiMCCCHmF0LXVzLWVhc3QuYW1h em9uLWFkc3lzdGVtLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJt MDEuYW1hem9udHJ1c3QuY29tL3IybTAxLmNybDATBgNVHSAEDDAKMAgGBmeBDAEC ATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAx LmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMS5h bWF6b250cnVzdC5jb20vcjJtMDEuY2VyMAwGA1UdEwEB/wQCMAAwggF/BgorBgEE AdZ5AgQCBIIBbwSCAWsBaQB1AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZx H7WbAAABiiWVlpcAAAQDAEYwRAIgWqtpSguTE+cRgZjTt51ZS20P65dDRPhs+6Yx Ty13K6sCIGQii6wbDY9gyzmKWCZvrjb9RB5aJfCBSxQnYuhYHCZSAHcASLDja9qm RzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGKJZWWpwAABAMASDBGAiEAk/V0 pm3Zmyv+6xopbmh4ae7CYHFcAb29puICphCJ7SECIQDquQZ8KIXu35dP9v3geXG/ e3txjyMtqKE7ao/GnDUw9wB3ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI 1/urAAABiiWVllcAAAQDAEgwRgIhAKNk7bGHHGaWm/DZkcwCOwPMW132l7U8Delw obXaeoarAiEAy1LTFtG5f+KAJ0e1lG+ma8pQhboEdVSBpgDuegyBKzAwDQYJKoZI hvcNAQELBQADggEBAJelcQAR7IaQoJ6fy6S7/W3Oyn0nqUhwMsSzzkkYvW7Rj83y 6MfHSpoFABQrlSYXSAA1dcQYYhGLjKfUCECwf0ihkl47Te40x1mrGKFnWVPKmi3A nuhyD9TCGp2uUc5R5RhOKjLvvUeNZ6uc9tJfD5AytCv4PQsqZvuuL+AEDgq5fN7X KxfLQEhpB1xG1T9Stxdf/jQrNzK+TMdDZiFggskf/kMTGdrCLnfu9ZcXOW6vIRIp uzpW7OFBFw4B1wIwV2532ez+fG/GDsFmckJmcYHdU7FGl67uJt47fmIUb2gIC6iI r5zxD7qZkrlezY3fC4mJJSNtqbMwOx7n8FTEuVo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxgLw/qrf0AYzD17mVvR 30kKtNMCwwiJOKgu0x1e28KyXGG5+Rc0rdTsJdZ/pKOWEKdOVlYUN4guyY4BBgo5 sicQaXSQYj4vWn7+FplO2TQV/fhwx5iezYQ6dmr1HxTYJjA7SSacLTNhEhG+P8Lq eHoaj+RI9a+hA58DQb5n1+03rdCIf6iFRHNTxLRka54L+x9t9Fde0vzXSAoybxa0 39HayQqLHzpNAUtgo+sVgDZmX/j0Fss/URn2HwDxV8HfONgaaWbPqw7Opicg8kTY 0/ggzufnXv9jWvSxu0q0/4UU51KIloXQ9Plz4LR8S7sHF5iVgGK/lVESGYHCEwIv wQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19665116241359065472933708242824332676 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'at-us-east.amazon-adsystem.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21093654433726340687752102417084213293284277643165978173317343172374958903754042405166529108736139957304379851407432738631875700035672818468024127116387749813239640315003953198619648024197741004603111748008577853729677824726982005682778340022590522500925478465538920130055029424983120786760156021114359661397120447264388706152956481136355870641122818135915826764195634216186173543874309304751674156965227259841289435931475394698699737449128925664091759052739651413063132404433868865407957060879709652614599095338132021674746988909926828842041081110680545264480809731189616384554112272619019488730281809661437491163073 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f48b3cfced0fd138d516439743729bdf23a1b22f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'at-us-east.amazon-adsystem.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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