epps.elliemae.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 02:59:57:42:33:c3:d0:02:74:3a:9a:fe:1a:98:45:f1 was issued on by Amazon.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=epps.elliemae.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:59:57:42:33:c3:d0:02:74:3a:9a:fe:1a:98:45:f1Serial Number (int): 3122340226694133374730545979486389745
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 81:c1:e9:fa:02:15:35:0c:1a:30:dd:e8:7b:91:3c:3c:2d:a7:d1:95
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): c6:52:a7:49:40:5f:ff:1a:46:b9:bb:ce:75:90:35:eb:9e:73:8a:b5
Fingerprint (sha256): 0b:78:ad:42:04:69:8d:f8:1c:eb:b2:b5:89:c6:cb:39:b3:34:1d:6d:36:5a:20:8b:bc:bf:6f:30:41:a9:69:d1
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate epps.elliemae.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for epps.elliemae.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
epps.elliemae.com
origin.epps.elliemae.com
epps.ellieservices.com
origin.epps.elliemae.com
epps.ellieservices.com
Other certificates including the domain name elliemae.com
(limited to 100 certificates)
website.elliemae.com
insights.elliemae.com
api.stg.gaia.elliemae.com
stg.coffi.elliemae.com
api-stage.ccs.notification.elliemae.com
stg.tsmonitor.elliemae.com
*.idp.elliemae.com
prod01.elliemae.com
phoenix.access.elliemae.com
insights.elliemae.com
docs.concept.partner.elliemae.com
us-west-2.www.staging.marketing.elliemae.com
sseqadashboard.elliemae.com
bazar.int.consumer-connect.rd.elliemae.io
cds1.cvent.com
mavent.com
insights.elliemae.com
nonprod01.elliemae.com
insights-demo.elliemae.com
*.api.elliemae.com
prod01.elliemae.com
dev.emstatuscenter.elliemae.com
insights.elliemae.com
us-west-2.www.explore.staging.marketing.elliemae.com
api-concept.presence.notification.elliemae.com
cds1.cvent.com
prod.ns-sse-processor.notification.elliemae.com
cds1.cvent.com
docs.developer.elliemae.com
api.peg.asset.rd.elliemae.io
stg.beacon.elliemae.com
bazar.int.consumer-connect.rd.elliemae.io
stg.coffi.elliemae.com
api-concept.presence.notification.elliemae.com
*.mortgage-application.net
qa.modules.elliemaeservices.com
insights.elliemae.com
velocify.net
beacon.elliemae.com
cds1.cvent.com
api.ccs.notification.elliemae.com
cds1.cvent.com
*.api.elliemae.com
origin-api.push.notification.elliemae.com
api-stg.presence.notification.elliemae.com
us-east-1.www.staging.marketing.elliemae.com
elliemae.com
prod01.elliemae.com
qa.beacon.elliemae.com
docs.developer.elliemae.com
prod01.elliemae.com
api.coffi.elliemae.com
dev.resourcecenterapi.elliemae.com
api.stg.coffi.elliemae.com
cds1.cvent.com
us-west-2.www.simplifile.prod.marketing.elliemae.com
*.admin.elliemae.com
dev-iceedu.elliemae.com
partnerconnect.elliemae.com
us-west-2.www.explore.staging.marketing.elliemae.com
education.elliemae.com
epps.elliemae.com
*.admin.elliemae.com
pemdemo.elliemae.com
dev.resourcecenterapi.elliemae.com
insights.elliemae.com
dev.rccasemgt.elliemae.com
emise1.corp.elliemae.com
concept.developer.elliemae.com
cds1.cvent.com
us-east-1.www.simplifile.prod.marketing.elliemae.com
api.subscriptions.elliemae.com
api.coffi.elliemae.com
velocify.net
dev.access.elliemae.com
beacon.elliemae.com
dev3.api.ellielabs.com
concept-tfe.api.elliemae.com
prod01.elliemae.com
qa.velocify.net
qa.education.elliemae.com
insights.elliemae.com
dev.gaia.elliemae.com
dev3.api.ellielabs.com
bazar.int.consumer-connect.rd.elliemae.io
*.api.elliemae.com
creative.elliemae.com
us-west-2.www.simplifile.prod.marketing.elliemae.com
dnl.shop.elliemae.com
api.qa.gaia.elliemae.com
prod01.elliemae.com
phx.cf-lms.elliemae.com
api.peg.cms.rd.elliemae.io
api.ccs.notification.elliemae.com
docs2.developer.elliemae.com
us-west-2.www.velocify.staging.marketing.elliemae.com
mavent.com
cds1.cvent.com
creative.elliemae.com
forum.elliemae.com
insights.elliemae.com
api.stg.gaia.elliemae.com
stg.coffi.elliemae.com
api-stage.ccs.notification.elliemae.com
stg.tsmonitor.elliemae.com
*.idp.elliemae.com
prod01.elliemae.com
phoenix.access.elliemae.com
insights.elliemae.com
docs.concept.partner.elliemae.com
us-west-2.www.staging.marketing.elliemae.com
sseqadashboard.elliemae.com
bazar.int.consumer-connect.rd.elliemae.io
cds1.cvent.com
mavent.com
insights.elliemae.com
nonprod01.elliemae.com
insights-demo.elliemae.com
*.api.elliemae.com
prod01.elliemae.com
dev.emstatuscenter.elliemae.com
insights.elliemae.com
us-west-2.www.explore.staging.marketing.elliemae.com
api-concept.presence.notification.elliemae.com
cds1.cvent.com
prod.ns-sse-processor.notification.elliemae.com
cds1.cvent.com
docs.developer.elliemae.com
api.peg.asset.rd.elliemae.io
stg.beacon.elliemae.com
bazar.int.consumer-connect.rd.elliemae.io
stg.coffi.elliemae.com
api-concept.presence.notification.elliemae.com
*.mortgage-application.net
qa.modules.elliemaeservices.com
insights.elliemae.com
velocify.net
beacon.elliemae.com
cds1.cvent.com
api.ccs.notification.elliemae.com
cds1.cvent.com
*.api.elliemae.com
origin-api.push.notification.elliemae.com
api-stg.presence.notification.elliemae.com
us-east-1.www.staging.marketing.elliemae.com
elliemae.com
prod01.elliemae.com
qa.beacon.elliemae.com
docs.developer.elliemae.com
prod01.elliemae.com
api.coffi.elliemae.com
dev.resourcecenterapi.elliemae.com
api.stg.coffi.elliemae.com
cds1.cvent.com
us-west-2.www.simplifile.prod.marketing.elliemae.com
*.admin.elliemae.com
dev-iceedu.elliemae.com
partnerconnect.elliemae.com
us-west-2.www.explore.staging.marketing.elliemae.com
education.elliemae.com
epps.elliemae.com
*.admin.elliemae.com
pemdemo.elliemae.com
dev.resourcecenterapi.elliemae.com
insights.elliemae.com
dev.rccasemgt.elliemae.com
emise1.corp.elliemae.com
concept.developer.elliemae.com
cds1.cvent.com
us-east-1.www.simplifile.prod.marketing.elliemae.com
api.subscriptions.elliemae.com
api.coffi.elliemae.com
velocify.net
dev.access.elliemae.com
beacon.elliemae.com
dev3.api.ellielabs.com
concept-tfe.api.elliemae.com
prod01.elliemae.com
qa.velocify.net
qa.education.elliemae.com
insights.elliemae.com
dev.gaia.elliemae.com
dev3.api.ellielabs.com
bazar.int.consumer-connect.rd.elliemae.io
*.api.elliemae.com
creative.elliemae.com
us-west-2.www.simplifile.prod.marketing.elliemae.com
dnl.shop.elliemae.com
api.qa.gaia.elliemae.com
prod01.elliemae.com
phx.cf-lms.elliemae.com
api.peg.cms.rd.elliemae.io
api.ccs.notification.elliemae.com
docs2.developer.elliemae.com
us-west-2.www.velocify.staging.marketing.elliemae.com
mavent.com
cds1.cvent.com
creative.elliemae.com
forum.elliemae.com
Certificate
The complete raw certificate details for epps.elliemae.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGAjCCBOqgAwIBAgIQAllXQjPD0AJ0Opr+GphF8TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIyNjAwMDAwMFoXDTI1MDEyMzIzNTk1OVowHDEa MBgGA1UEAxMRZXBwcy5lbGxpZW1hZS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCNL5K1ULQ2ic/WABhn3nMvefmNOnEl5gBzDBj0QnKSqe1qBQ3a CeKSgwHEQ5ccc/fzO+xZzJqpPCpCCNKHEUBNikDHwyEixqV7k2uvF0tIs+Hf/J2b VvpfxqcLIbzCgXNPIbXexi12LWqeixLCvaDrVCYyePVUTJblkWhSEQAwy+mE8BZw RErXceal/RYHze/VI5ubTWb7R03uUcHPWTYl791B+x4a2mDKoOSxYR0UdClgz7mh dwbGOl5pGYY3dcE1f+9J6d32cubQM+/ADa9us8wazqxvAkx6EBYBhsXwegU/wGwk FA5pXlR3f8r/HJzHkknomXdzoDJQXew3RJNVAgMBAAGjggMeMIIDGjAfBgNVHSME GDAWgBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQUgcHp+gIVNQwaMN3o e5E8PC2n0ZUwTgYDVR0RBEcwRYIRZXBwcy5lbGxpZW1hZS5jb22CGG9yaWdpbi5l cHBzLmVsbGllbWFlLmNvbYIWZXBwcy5lbGxpZXNlcnZpY2VzLmNvbTATBgNVHSAE DDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDMu YW1hem9udHJ1c3QuY29tL3IybTAzLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYB BQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpvbnRydXN0LmNvbTA2BggrBgEF BQcwAoYqaHR0cDovL2NydC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY2Vy MAwGA1UdEwEB/wQCMAAwggGABgorBgEEAdZ5AgQCBIIBcASCAWwBagB3AM8RVu7V Lnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABjKOOwlYAAAQDAEgwRgIhAJDh KnrdRTD+pv1+AMpXkAKSJQUZ/aO4YjQ4jw7hUav9AiEAp3N6EM+TMlIvQ9AFrAqj O3MGq54m3pyomQYf2KndPLUAdgB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kO jC55uAAAAYyjjsIHAAAEAwBHMEUCIQCYHpNLpnkZlOpEMG9iI+8slpCnebhVbYWF sD12KxjkUwIgcnp/f+iXK4aP3rYm+2inOBmtrtwIbmAxBpX4WSmjqUEAdwDm0jFj QHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAYyjjsIrAAAEAwBIMEYCIQCz niXsD3IDO3WLYTwsgtWX8iRxXX0okcvgnC+gI1fFIQIhAMv1sn9l3Fm7PIhOQLRT YffDCAWGo/OX+7+QLDU5KxzhMA0GCSqGSIb3DQEBCwUAA4IBAQAUKy1nseVZb+pw SC4bALe54IhcNjxqChRHgJ3HmD+msc8jXzbjx+irbudlFHkaGWiF62Ao7RiHV/sn PSfZ93U0sGZjcd+iZ+MyEjzN08CczqldFocswPAAacB4+p3bMYRSksEByqcrac+T 18JQq14mAg6FyF6tpPsoz7tDFMcmTKAjq8CQe8wEoQMyPavrv1xT6Y20/9Zq2i5b opTUL+/4pDiWV6FAE4FEDbsuP80zjezbRqdZFlMLU73jzZBY+fmXkqR0BMcNgSz2 YU25NTdX24GfzBS88Ad3pj6MfP7At+NxPN5+dkA7iRwWyk+Dus55YrqCH1aMhGii 81Frf1Ds -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjS+StVC0NonP1gAYZ95z L3n5jTpxJeYAcwwY9EJykqntagUN2gnikoMBxEOXHHP38zvsWcyaqTwqQgjShxFA TYpAx8MhIsale5NrrxdLSLPh3/ydm1b6X8anCyG8woFzTyG13sYtdi1qnosSwr2g 61QmMnj1VEyW5ZFoUhEAMMvphPAWcERK13Hmpf0WB83v1SObm01m+0dN7lHBz1k2 Je/dQfseGtpgyqDksWEdFHQpYM+5oXcGxjpeaRmGN3XBNX/vSend9nLm0DPvwA2v brPMGs6sbwJMehAWAYbF8HoFP8BsJBQOaV5Ud3/K/xycx5JJ6Jl3c6AyUF3sN0ST VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3122340226694133374730545979486389745 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-23 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'epps.elliemae.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17823060159878552641386255304611253726765579050270018026335655281351024377364312242271063027734181122021508378382958930085330381812972605460712241279318918686493439759390400933829419095634539765426894177962325639864751619206061786806864792732340332276349771813722315085444720842378213827277745433767009337418251890636404934085990294940012516941331518890240956306561776867500498873173816767308939960701535398970447681478418505510067917375326398640306973356661561541073444064878195622769327423736089575755935310619589295130867159894056461630733494071828256955054139584425500624747361214745289114137845885198483631412053 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 81c1e9fa0215350c1a30dde87b913c3c2da7d195 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (71 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'epps.elliemae.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin.epps.elliemae.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'epps.ellieservices.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 016a007700cf1156eed52e7caff3875bd9692e9be91a71674ab017ecac01d25b77cecc3b080000018ca38ec256000004030048304602210090e12a7add4530fea6fd7e00ca57900292250519fda3b86234388f0ee151abfd022100a7737a10cf9332522f43d005ac0aa33b7306ab9e26de9ca899061fd8a9dd3cb50076007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000018ca38ec2070000040300473045022100981e934ba6791994ea44306f6223ef2c9690a779b8556d8585b03d762b18e4530220727a7f7fe8972b868fdeb626fb68a73819adaedc086e60310695f85929a3a941007700e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e500000018ca38ec22b0000040300483046022100b39e25ec0f72033b758b613c2c82d597f224715d7d2891cbe09c2fa02357c521022100cbf5b27f65dc59bb3c884e40b45361f7c3080586a3f397fbbf902c35392b1ce1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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