cn-north-1.prod.aqueductcms.ess.aws.a2z.org.cn
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 05:ab:44:49:3d:d0:b2:b3:ec:5b:c1:9a:6f:a9:ad:8c was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=cn-north-1.prod.aqueductcms.ess.aws.a2z.org.cn
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 05:ab:44:49:3d:d0:b2:b3:ec:5b:c1:9a:6f:a9:ad:8cSerial Number (int): 7535407748373832813697674251776667020
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 8a:3a:e0:3a:e3:c7:bf:c6:f0:34:1d:88:a5:73:03:55:37:5d:77:13
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): f3:3c:bc:5a:61:a0:5e:00:b1:fb:04:20:b0:00:59:21:ae:23:66:17
Fingerprint (sha256): 0a:5f:88:04:26:75:e5:f7:5e:ba:28:89:23:78:e9:10:0c:04:4b:65:65:01:ed:bb:ae:61:0b:dc:1a:0b:f1:05
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate cn-north-1.prod.aqueductcms.ess.aws.a2z.org.cn
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cn-north-1.prod.aqueductcms.ess.aws.a2z.org.cn
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cn-north-1.prod.aqueductcms.ess.aws.a2z.org.cn
Other certificates including the domain name a2z.org.cn
(limited to 100 certificates)
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.cti.api.tickety.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.prod.tnsv2.taxes.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
prod-zhy-o.cn-northwest-1.ro.bsg.budgets.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.gamma.cn-north-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
idp.integ.federate.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
main.bsk.cn-northwest-1.beta.basin.security.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.request-queue.composition.config.a2z.org.cn
2080a.prod.cn-northwest-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.gamma.api-tenant.shoehorn.security.a2z.org.cn
*.gamma.cn-north-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.gamma.service.shoehorn.security.a2z.org.cn
preprod-cn-northwest-1.scs.gluestudio.a2z.org.cn
sagemaker.pre-prod.cn-north-1.ml-platform.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.gamma.cn-north-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-north-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.gamma.oas.ops-auth.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
9c84e.gamma.cn-north-1.integtest.moonraker.iot.aws.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
vs.d2c.marketing.aws.a2z.org.cn
ease.gamma.cn-northwest-1.ml-platform.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
8fb61.prod.cn-northwest-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.cti.api.tickety.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.prod.tnsv2.taxes.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
prod-zhy-o.cn-northwest-1.ro.bsg.budgets.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.gamma.cn-north-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
idp.integ.federate.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
main.bsk.cn-northwest-1.beta.basin.security.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.request-queue.composition.config.a2z.org.cn
2080a.prod.cn-northwest-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.gamma.api-tenant.shoehorn.security.a2z.org.cn
*.gamma.cn-north-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.gamma.service.shoehorn.security.a2z.org.cn
preprod-cn-northwest-1.scs.gluestudio.a2z.org.cn
sagemaker.pre-prod.cn-north-1.ml-platform.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.gamma.cn-north-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-north-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-northwest-1.gamma.oas.ops-auth.insights.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
ops-api.cn-north-1.pi.a2z.org.cn
9c84e.gamma.cn-north-1.integtest.moonraker.iot.aws.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
*.d-c-ss.prod.cn-northwest-1.canary.identity.iot.aws.a2z.org.cn
vs.d2c.marketing.aws.a2z.org.cn
ease.gamma.cn-northwest-1.ml-platform.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
8fb61.prod.cn-northwest-1.integtest.puller.iot.aws.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
cn-north-1.prod.canaries.quickbeam.acm.a2z.org.cn
Certificate
The complete raw certificate details for cn-north-1.prod.aqueductcms.ess.aws.a2z.org.cn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEmzCCA4OgAwIBAgIQBatEST3QsrPsW8Gab6mtjDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIwODAwMDAwMFoXDTI1MDEwNTIzNTk1OVowOTE3 MDUGA1UEAxMuY24tbm9ydGgtMS5wcm9kLmFxdWVkdWN0Y21zLmVzcy5hd3MuYTJ6 Lm9yZy5jbjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJq4eDWL+7AR EcjWQA17rnZcQ48q2TAkMACe4cXIRA6NBmZT6FrYST0PVDnVRlWU3XnSbxdhuB1R Eo91U6Vj18WfmllDfM8n/W2WgzSwb9zKjmFFhn8Y0vvLYse+iNhxg//vnPPUUrMH KMDFJsTEKwgyUH+baoB1ELAuplB6RGbK1+GTtds7yiIjd7k7L7iMqYqEWycwN5gr MpzT+kfArEwmu8+PLhbo8ChfgSqLzxa9v83uPpfX4iVSqC1jYF+z5UOEhMHI815Q ILzc73GVrMi5ZfCqzrYR/WULIeO+L1kh/YIxrvHX5ycKTlz1GlqvO7ZwCO1L2+QM SMOFIsAqGfMCAwEAAaOCAZowggGWMB8GA1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZ VUIB1y4CMB0GA1UdDgQWBBSKOuA648e/xvA0HYilcwNVN113EzA5BgNVHREEMjAw gi5jbi1ub3J0aC0xLnByb2QuYXF1ZWR1Y3RjbXMuZXNzLmF3cy5hMnoub3JnLmNu MBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2Ny bC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY3JsMHUGCCsGAQUFBwEBBGkw ZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDMuYW1hem9udHJ1c3QuY29t MDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAzLmFtYXpvbnRydXN0LmNvbS9y Mm0wMy5jZXIwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkq hkiG9w0BAQsFAAOCAQEAsq51nFJKshejkY5ZZJtk8mD3rXlUA3e9mOFOHRcn8dAk fYy1SQd6g0qYEJgqoRhbFbKVufQ+GWy2WJKpEDWQllwVnWhcv6nj9c/9/BI1tpQr qAVNjX9nAn/Y6xEm+LtUmWBxlsQQTrdSEgLHDV6EoEj0EBV3ItUu9WkO1OtPsxTG U99SKNcJuVSGlaK8CwkGvWnMbY7mlqyNp/8OLU/ZOahtybiheXAEDXNAI6WU5/SZ tT+YrsHaXlCIw2hW4kw72+waRqUBcf4GbQtRcmZizEjYNSrlfTcBtG0F7e6vo5uQ 2mc7FaOecIv1JcQW63AndFU/hA3lAkukkiqBflCymw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrh4NYv7sBERyNZADXuu dlxDjyrZMCQwAJ7hxchEDo0GZlPoWthJPQ9UOdVGVZTdedJvF2G4HVESj3VTpWPX xZ+aWUN8zyf9bZaDNLBv3MqOYUWGfxjS+8tix76I2HGD/++c89RSswcowMUmxMQr CDJQf5tqgHUQsC6mUHpEZsrX4ZO12zvKIiN3uTsvuIypioRbJzA3mCsynNP6R8Cs TCa7z48uFujwKF+BKovPFr2/ze4+l9fiJVKoLWNgX7PlQ4SEwcjzXlAgvNzvcZWs yLll8KrOthH9ZQsh474vWSH9gjGu8dfnJwpOXPUaWq87tnAI7Uvb5AxIw4UiwCoZ 8wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7535407748373832813697674251776667020 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cn-north-1.prod.aqueductcms.ess.aws.a2z.org.cn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19531664298614472131780948900354125066597838125530536067498700702618425272223771244393151364912006466468966734704804502611726953231178913946096554869381608907635671224530493339344758735649929735854507710452750214727465613179253284112143443324010782929394425948553007744200662958406511830233570548782380090902639486370171007828948355295501986299067273294721005728817859277385996785884063997429968004101707482393810280650415764882412204919147097922197930726225037525158259285719727319059336777962062251939451495234412305767373605685615704978007975428274962617499375697965981849722364299743237624786870829680656959281651 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8a3ae03ae3c7bfc6f0341d88a5730355375d7713 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cn-north-1.prod.aqueductcms.ess.aws.a2z.org.cn' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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