*.stage.itonicsit.de
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 03:ac:ec:86:50:71:11:43:2a:1a:6a:58:15:49:bb:55 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.stage.itonicsit.de
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:ac:ec:86:50:71:11:43:2a:1a:6a:58:15:49:bb:55Serial Number (int): 4885556337158467598979930178426878805
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: f5:12:75:24:9a:68:a8:c0:0c:e4:af:64:4f:bd:c1:d4:ab:62:76:9d
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 8f:4f:e6:fd:d9:25:92:94:70:7f:47:ba:b7:f6:00:71:db:9f:10:8a
Fingerprint (sha256): 0b:ca:43:9e:2a:29:01:18:18:f7:06:75:8c:48:11:82:69:40:9b:16:15:77:a3:84:88:e3:e8:2f:1c:22:8b:d8
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate *.stage.itonicsit.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.stage.itonicsit.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.stage.itonicsit.de
Other certificates including the domain name itonicsit.de
(limited to 100 certificates)
sivantos.live.itonicsit.de
bayerninnovativ.live.itonicsit.de
zabbix.itonicsit.de
ksb-bvw.live.itonicsit.de
audi.live.itonicsit.de
*.stage.itonicsit.de
zf-innovation.live.itonicsit.de
bayerninnovativ-new.stage.itonicsit.de
vrpayment.live.itonicsit.de
api.inventory.itonicsit.de
hauni.live.itonicsit.de
google.demo.itonicsit.de
rewe-digital.live.itonicsit.de
merz.dev.itonicsit.de
piwik.itonicsit.de
fletcherbuilding.live.itonicsit.de
*.live.itonicsit.de
dmgmori.live.itonicsit.de
enterprise.itonicsit.de
google.dev.itonicsit.de
evonik-screenflox.stage.itonicsit.de
sivantos.live.itonicsit.de
audi-innovation.itonicsit.de
vetter.live.itonicsit.de
ctmaster.itonicsit.de
audi.live.itonicsit.de
*.stage.itonicsit.de
*.itonicsit.de
*.stage.itonicsit.de
detecon.live.itonicsit.de
draexlmaier.live.itonicsit.de
google.dev.itonicsit.de
sivantos.live.itonicsit.de
wifi.itonicsit.de
utm-01.itonicsit.de
passwords.itonicsit.de
bayerninnovativ.live.itonicsit.de
siemens-pd-pa-old.live.itonicsit.de
dmgmori.live.itonicsit.de
rheinmetall.live.itonicsit.de
innovationsuite.demo.itonicsit.de
svn.itonicsit.de
toyota.live.itonicsit.de
files.itonicsit.de
sivantos.live.itonicsit.de
ksb-bvw.live.itonicsit.de
google.demo.itonicsit.de
help.itonicsit.de
jnj.live.itonicsit.de
wuerth.live.itonicsit.de
enterprise.dev.itonicsit.de
koerber.live.itonicsit.de
passwords.itonicsit.de
apobank.stage.itonicsit.de
piwik.itonicsit.de
dzbank.live.itonicsit.de
utm-01.itonicsit.de
piwik.itonicsit.de
otc-poc.dev.itonicsit.de
zabbix.itonicsit.de
google.dev.itonicsit.de
*.stage.itonicsit.de
enterprise.itonicsit.de
*.itonicsit.de
api.inventory.dev.itonicsit.de
hauni.live.itonicsit.de
nio.stage.itonicsit.de
passwords.itonicsit.de
audi-innovation.itonicsit.de
sirim-berhad.live.itonicsit.de
schwarzgroup.stage.itonicsit.de
evonik-screenflox.stage.itonicsit.de
skoda.stage.itonicsit.de
bosch.live.itonicsit.de
nio.live.itonicsit.de
pwc-radar.stage.itonicsit.de
sirim-berhad.live.itonicsit.de
skoda.stage.itonicsit.de
bayerninnovativ.live.itonicsit.de
innovationsuite.demo.itonicsit.de
audi.live.itonicsit.de
boi.demo.itonicsit.de
freudenberg.live.itonicsit.de
solvay.live.itonicsit.de
skoda.stage.itonicsit.de
merz.live.itonicsit.de
mobiliar.live.itonicsit.de
zabbix.itonicsit.de
bosch.live.itonicsit.de
google.stage.itonicsit.de
edeka-new.live.itonicsit.de
zf-innovation.live.itonicsit.de
docker.dev.itonicsit.de
*.live.itonicsit.de
adia.demo.itonicsit.de
cisco-test.dev.itonicsit.de
dzbank.live.itonicsit.de
*.live.itonicsit.de
toyota.live.itonicsit.de
bayer.demo.itonicsit.de
bayerninnovativ.live.itonicsit.de
zabbix.itonicsit.de
ksb-bvw.live.itonicsit.de
audi.live.itonicsit.de
*.stage.itonicsit.de
zf-innovation.live.itonicsit.de
bayerninnovativ-new.stage.itonicsit.de
vrpayment.live.itonicsit.de
api.inventory.itonicsit.de
hauni.live.itonicsit.de
google.demo.itonicsit.de
rewe-digital.live.itonicsit.de
merz.dev.itonicsit.de
piwik.itonicsit.de
fletcherbuilding.live.itonicsit.de
*.live.itonicsit.de
dmgmori.live.itonicsit.de
enterprise.itonicsit.de
google.dev.itonicsit.de
evonik-screenflox.stage.itonicsit.de
sivantos.live.itonicsit.de
audi-innovation.itonicsit.de
vetter.live.itonicsit.de
ctmaster.itonicsit.de
audi.live.itonicsit.de
*.stage.itonicsit.de
*.itonicsit.de
*.stage.itonicsit.de
detecon.live.itonicsit.de
draexlmaier.live.itonicsit.de
google.dev.itonicsit.de
sivantos.live.itonicsit.de
wifi.itonicsit.de
utm-01.itonicsit.de
passwords.itonicsit.de
bayerninnovativ.live.itonicsit.de
siemens-pd-pa-old.live.itonicsit.de
dmgmori.live.itonicsit.de
rheinmetall.live.itonicsit.de
innovationsuite.demo.itonicsit.de
svn.itonicsit.de
toyota.live.itonicsit.de
files.itonicsit.de
sivantos.live.itonicsit.de
ksb-bvw.live.itonicsit.de
google.demo.itonicsit.de
help.itonicsit.de
jnj.live.itonicsit.de
wuerth.live.itonicsit.de
enterprise.dev.itonicsit.de
koerber.live.itonicsit.de
passwords.itonicsit.de
apobank.stage.itonicsit.de
piwik.itonicsit.de
dzbank.live.itonicsit.de
utm-01.itonicsit.de
piwik.itonicsit.de
otc-poc.dev.itonicsit.de
zabbix.itonicsit.de
google.dev.itonicsit.de
*.stage.itonicsit.de
enterprise.itonicsit.de
*.itonicsit.de
api.inventory.dev.itonicsit.de
hauni.live.itonicsit.de
nio.stage.itonicsit.de
passwords.itonicsit.de
audi-innovation.itonicsit.de
sirim-berhad.live.itonicsit.de
schwarzgroup.stage.itonicsit.de
evonik-screenflox.stage.itonicsit.de
skoda.stage.itonicsit.de
bosch.live.itonicsit.de
nio.live.itonicsit.de
pwc-radar.stage.itonicsit.de
sirim-berhad.live.itonicsit.de
skoda.stage.itonicsit.de
bayerninnovativ.live.itonicsit.de
innovationsuite.demo.itonicsit.de
audi.live.itonicsit.de
boi.demo.itonicsit.de
freudenberg.live.itonicsit.de
solvay.live.itonicsit.de
skoda.stage.itonicsit.de
merz.live.itonicsit.de
mobiliar.live.itonicsit.de
zabbix.itonicsit.de
bosch.live.itonicsit.de
google.stage.itonicsit.de
edeka-new.live.itonicsit.de
zf-innovation.live.itonicsit.de
docker.dev.itonicsit.de
*.live.itonicsit.de
adia.demo.itonicsit.de
cisco-test.dev.itonicsit.de
dzbank.live.itonicsit.de
*.live.itonicsit.de
toyota.live.itonicsit.de
bayer.demo.itonicsit.de
Certificate
The complete raw certificate details for *.stage.itonicsit.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF1TCCBL2gAwIBAgIQA6zshlBxEUMqGmpYFUm7VTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDEzMDAwMDAwMFoXDTI1MDIyNzIzNTk1OVowHzEd MBsGA1UEAwwUKi5zdGFnZS5pdG9uaWNzaXQuZGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzlN7KTuNCZBZMQSnO0x1KldOGlcnevk1tmBXYRLqwLQn+ 1o3d2HamAVXZbOMTBQ5Qjoq9bXblkz776xRx300JNqpg4pcthO063X762NSiJ0ej +mx9FeYtB5a4h5lHjcr4oIpi5Cwyow76II+VhSsxHe9xys+Q8LVy+7xYYxerzSyQ NEB1Krw/PeYDqEwGKF5eAHxPKaulRZ6b/7oINGgNdSuLBbs9ZIXLxaEsK6g6kfKv T2vO5JokJEXJGTqtS6aVb5eVLIkpRh8d9odeZ7ZBwNxaNz6IPz4VCjeKNX5C7Xge Gq/YTh8zP6FSH/e4Ntnu6rRe/JdsJpKoUSPlPbdjAgMBAAGjggLuMIIC6jAfBgNV HSMEGDAWgBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQU9RJ1JJpoqMAM 5K9kT73B1Ktidp0wHwYDVR0RBBgwFoIUKi5zdGFnZS5pdG9uaWNzaXQuZGUwEwYD VR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIy bTAzLmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0G CCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYI KwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAz LmNlcjAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgBO daMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAY1Xw0TLAAAEAwBHMEUC IQC9tZCGG0TatMlwNA+iwIZN5fMXrltgbOrsl98u4uI6gwIgdOkdCdpwqr/LaW8L Rzz4LH8Zxf/vmEp6NyWahIzVQOsAdwB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkD L9kOjC55uAAAAY1Xw0UAAAAEAwBIMEYCIQD9zDqPXI+z0YSiQDwgOjp6Y7Z7gZ1w DJdSBmmO9wFJawIhAItYRpHiwluIE7uKy1aW+AuRp5YzSYhlZ+KJD/IZVjf3AHYA 5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGNV8NFNAAABAMARzBF AiEA5vsHjeUNfVbwDLIiPve6n5VJiIRFRFLTcWIucAmpHG0CID2hTHUPr7b0vks+ 0EzhqsjB91R5SG6RXYzJgsMzQ7l/MA0GCSqGSIb3DQEBCwUAA4IBAQAEBfocB54p 7g958Y13iETQDPOLAIvnXRFdrTjcQ/o7gppqcaSf1JS4m+iutnfBgi3KGssZ3Dpr aZEh91TJuDds0kSu60udt3td6uvQ9C9qrqMhB7F1OzH6Nbux3huKfEaz93/qMs44 6/nmaOcWbLMUlgE+piWrBHwPGWwZhDrMjF2CcLcTHGfrzkKJBzrKMUjmOboFyd7i il/ezKF0P5XZ+lIVHFNjP+irNihurraA59SWlHBK4eRvdO9B1jhg1bGIXXxg6GtO nQvx9Er1qqWqS1bu+aPd3otrpyHgrirx/eq6pdpagqVjgvp++prqUEzik2QlvGvd JhqSuMkgClN8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5Teyk7jQmQWTEEpztMd SpXThpXJ3r5NbZgV2ES6sC0J/taN3dh2pgFV2WzjEwUOUI6KvW125ZM+++sUcd9N CTaqYOKXLYTtOt1++tjUoidHo/psfRXmLQeWuIeZR43K+KCKYuQsMqMO+iCPlYUr MR3vccrPkPC1cvu8WGMXq80skDRAdSq8Pz3mA6hMBiheXgB8TymrpUWem/+6CDRo DXUriwW7PWSFy8WhLCuoOpHyr09rzuSaJCRFyRk6rUumlW+XlSyJKUYfHfaHXme2 QcDcWjc+iD8+FQo3ijV+Qu14Hhqv2E4fMz+hUh/3uDbZ7uq0XvyXbCaSqFEj5T23 YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4885556337158467598979930178426878805 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.stage.itonicsit.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22670067257322412089621639615899142210192057936183763479885651224657185848164570364297374411341713467692141207309947196516786814890523389175802373544720074161859180142557405457815450199684287930570118016590379049836460146560285391293772000959868271914212953238251034320898459006115073329433361225874793709390910101190258740168440507685133892742535464096399860003474202025780996899624414061946649645449527128924136610872923030921424081308592139425583794854301791038162921637390197911541854103195336038859466448726946843270729507010076062362664609873242509690956830788114866069555092110559329765018419723349738712315747 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f51275249a68a8c00ce4af644fbdc1d4ab62769d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage.itonicsit.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 01690076004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018d57c344cb0000040300473045022100bdb590861b44dab4c970340fa2c0864de5f317ae5b606ceaec97df2ee2e23a83022074e91d09da70aabfcb696f0b473cf82c7f19c5ffef984a7a37259a848cd540eb0077007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000018d57c345000000040300483046022100fdcc3a8f5c8fb3d184a2403c203a3a7a63b67b819d700c975206698ef701496b0221008b584691e2c25b8813bb8acb5696f80b91a7963349886567e2890ff2195637f7007600e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e500000018d57c345340000040300473045022100e6fb078de50d7d56f00cb2223ef7ba9f95498884454452d371622e7009a91c6d02203da14c750fafb6f4be4b3ed04ce1aac8c1f75479486e915d8cc982c33343b97f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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