mcs2-dev.dht.live
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 04:2b:16:8b:69:0e:e7:c4:0b:e9:a2:73:1a:53:2b:b5 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=mcs2-dev.dht.live
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:2b:16:8b:69:0e:e7:c4:0b:e9:a2:73:1a:53:2b:b5Serial Number (int): 5540638006296476374927906104316996533
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: c0:74:77:41:40:83:33:89:1a:37:d3:72:21:3d:ca:53:4a:ff:9b:39
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 55:2e:23:b1:99:b1:a0:0b:39:a5:4f:19:f6:84:98:52:88:72:eb:77
Fingerprint (sha256): 0b:e2:c6:d4:82:e7:c1:d3:d7:b4:0e:58:51:ba:3a:cc:25:44:45:cc:9d:59:65:45:a5:57:39:fd:03:6b:ab:93
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate mcs2-dev.dht.live
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mcs2-dev.dht.live
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mcs2-dev.dht.live
*.mcs2-dev.dht.live
*.mcs2-dev.dht.live
Other certificates including the domain name dht.live
(limited to 100 certificates)
test-iot-cms-a.machine-services-perf-stg.dht.live
static.showtime7-sbx.dht.live
sc-1761-survey-api.honeybadgers-sbx.dht.live
amr-prod-overflow-a.prod-messaging-prd.dht.live
green-mcs-d.messaging2-amr-prd.dht.live
static.showtime8-sbx.dht.live
green-iot-avx-a.airview-messaging-stg.dht.live
sc-2061-werewolf-api.honeybadgers-sbx.dht.live
avw.airview0-dev.dht.live
blue-ace-a.machine-services-dev.dht.live
docs.sc-2377b-survey-api.honeybadgers-sbx.dht.live
sc-1457-scui.honeybadgers-sbx.dht.live
green-mcsmonaco-a.airview-messaging-qa.dht.live
green-iot-hub-c.messaging2-amr-prd.dht.live
support-api.showtime5-sbx.dht.live
api.airdba.atlas-eu-prd.dht.live
airview-apac-pre-prod.dht.live
fsg-dev3.airview-kona-dev.dht.live
sc-1761-werewolf-api.honeybadgers-sbx.dht.live
monaco.airview0-dev.dht.live
chat.dawn-us-prd.dht.live
external.showtime8-sbx.dht.live
sc-1769-survey-api.honeybadgers-sbx.dht.live
support-api.showtime8-sbx.dht.live
graphql.showtime9-sbx.dht.live
artifactory-edge-amr.artifactory-shared.dht.live
api.aloe-dev.dht.live
avx-mock-amr.showtime6-sbx.dht.live
avx-mock-apac.showtime7-sbx.dht.live
mobilequestionsui.sleep-concierge-qa.dht.live
docs.showtime8-sbx.dht.live
nexus-new.airview0-shared.dht.live
sc-1764-survey-api.honeybadgers-sbx.dht.live
*.mgmt.paas.dht.live
sc-2374-scui.honeybadgers-sbx.dht.live
api.airdba.atlas-eu-stg.dht.live
docs.showtime2-sbx.dht.live
avx-mock-apac.showtime8-sbx.dht.live
data-platform-mock.showtime5-sbx.dht.live
external.showtime12-dev.dht.live
data-platform-mock.showtime8-sbx.dht.live
sc-2206-werewolf.honeybadgers-sbx.dht.live
cdk-multicare-aws.saas-sltc-sandbox-dev.dht.live
external.showtime4-sbx.dht.live
sc-1741-survey-api.honeybadgers-sbx.dht.live
green-iot-avx-d.airview-messaging-stg.dht.live
docs.showtime5-sbx.dht.live
peep-ws10.smart-coaching-dev.dht.live
test-lost-ebs-a.machine-services-perf-stg.dht.live
bitbucket.prod.dht.live
blue-avw-b.machine-services-dev.dht.live
sc-1470-mobilequestionsui.honeybadgers-sbx.dht.live
content-ws2.smart-coaching-dev.dht.live
graphql.showtime8-sbx.dht.live
amr-stg-mcs-c.airview-messaging-stg.dht.live
cdk-multicare-aws.saas-sltc-sandbox-dev.dht.live
blue-avw-c.machine-services-dev.dht.live
docs.sc-1760-survey-api.honeybadgers-sbx.dht.live
sc-2377-werewolf.honeybadgers-sbx.dht.live
graphql.showtime5-sbx.dht.live
green-mcspacific-a.messaging2-amr-prd.dht.live
external.myair-eu-dev.dht.live
docs.showtime7-sbx.dht.live
sc-1761-scui.honeybadgers-sbx.dht.live
support-api.showtime6-sbx.dht.live
peep-ws5.smart-coaching-dev.dht.live
green-iot-mds-h.messaging2-amr-stg.dht.live
api.showtime4-sbx.dht.live
docs.sc-2371-survey-api.honeybadgers-sbx.dht.live
sc-2037-mobilequestionsui.honeybadgers-sbx.dht.live
green-iot-mds-f.airview-messaging-stg.dht.live
api.hellosleep-prd.dht.live
opsmanager-amr-sbx.atlas-sbx.dht.live
docs.sc-728-survey-api.honeybadgers-sbx.dht.live
sc-1764-scui.honeybadgers-sbx.dht.live
support.showtime5-sbx.dht.live
customer-service.saas-sltc-sandbox-dev.dht.live
nightowl.showtime6-sbx.dht.live
green-mcspacific-c.messaging2-amr-stg.dht.live
scui.sleep-concierge-prd.dht.live
amr-prod-dps-ebs-d.prod-messaging-prd.dht.live
api.showtime8-sbx.dht.live
sc-1457-werewolf-api.honeybadgers-sbx.dht.live
support.showtime4-sbx.dht.live
*.sre-dev-ave-qa.dht.live
sc-2066-scui.honeybadgers-sbx.dht.live
mcs2-dev.dht.live
support-api.showtime7-sbx.dht.live
amr-qa-avx-d.airview-messaging-qa.dht.live
avx-mock-amr.showtime14-dev.dht.live
green-dps-ebs-b.messaging2-amr-prd.dht.live
graphql.showtime8-sbx.dht.live
support-api.myair-eu-dev.dht.live
avx-mock-amr.showtime2-sbx.dht.live
data-platform-mock.showtime3-sbx.dht.live
data-platform-mock.myair-eu-dev.dht.live
content-ws4.smart-coaching-dev.dht.live
green-iot-mds-c.messaging2-amr-stg.dht.live
amr-qa-envoymq-hub.airview-messaging-qa.dht.live
*.airview-icm-dev.dht.live
static.showtime7-sbx.dht.live
sc-1761-survey-api.honeybadgers-sbx.dht.live
amr-prod-overflow-a.prod-messaging-prd.dht.live
green-mcs-d.messaging2-amr-prd.dht.live
static.showtime8-sbx.dht.live
green-iot-avx-a.airview-messaging-stg.dht.live
sc-2061-werewolf-api.honeybadgers-sbx.dht.live
avw.airview0-dev.dht.live
blue-ace-a.machine-services-dev.dht.live
docs.sc-2377b-survey-api.honeybadgers-sbx.dht.live
sc-1457-scui.honeybadgers-sbx.dht.live
green-mcsmonaco-a.airview-messaging-qa.dht.live
green-iot-hub-c.messaging2-amr-prd.dht.live
support-api.showtime5-sbx.dht.live
api.airdba.atlas-eu-prd.dht.live
airview-apac-pre-prod.dht.live
fsg-dev3.airview-kona-dev.dht.live
sc-1761-werewolf-api.honeybadgers-sbx.dht.live
monaco.airview0-dev.dht.live
chat.dawn-us-prd.dht.live
external.showtime8-sbx.dht.live
sc-1769-survey-api.honeybadgers-sbx.dht.live
support-api.showtime8-sbx.dht.live
graphql.showtime9-sbx.dht.live
artifactory-edge-amr.artifactory-shared.dht.live
api.aloe-dev.dht.live
avx-mock-amr.showtime6-sbx.dht.live
avx-mock-apac.showtime7-sbx.dht.live
mobilequestionsui.sleep-concierge-qa.dht.live
docs.showtime8-sbx.dht.live
nexus-new.airview0-shared.dht.live
sc-1764-survey-api.honeybadgers-sbx.dht.live
*.mgmt.paas.dht.live
sc-2374-scui.honeybadgers-sbx.dht.live
api.airdba.atlas-eu-stg.dht.live
docs.showtime2-sbx.dht.live
avx-mock-apac.showtime8-sbx.dht.live
data-platform-mock.showtime5-sbx.dht.live
external.showtime12-dev.dht.live
data-platform-mock.showtime8-sbx.dht.live
sc-2206-werewolf.honeybadgers-sbx.dht.live
cdk-multicare-aws.saas-sltc-sandbox-dev.dht.live
external.showtime4-sbx.dht.live
sc-1741-survey-api.honeybadgers-sbx.dht.live
green-iot-avx-d.airview-messaging-stg.dht.live
docs.showtime5-sbx.dht.live
peep-ws10.smart-coaching-dev.dht.live
test-lost-ebs-a.machine-services-perf-stg.dht.live
bitbucket.prod.dht.live
blue-avw-b.machine-services-dev.dht.live
sc-1470-mobilequestionsui.honeybadgers-sbx.dht.live
content-ws2.smart-coaching-dev.dht.live
graphql.showtime8-sbx.dht.live
amr-stg-mcs-c.airview-messaging-stg.dht.live
cdk-multicare-aws.saas-sltc-sandbox-dev.dht.live
blue-avw-c.machine-services-dev.dht.live
docs.sc-1760-survey-api.honeybadgers-sbx.dht.live
sc-2377-werewolf.honeybadgers-sbx.dht.live
graphql.showtime5-sbx.dht.live
green-mcspacific-a.messaging2-amr-prd.dht.live
external.myair-eu-dev.dht.live
docs.showtime7-sbx.dht.live
sc-1761-scui.honeybadgers-sbx.dht.live
support-api.showtime6-sbx.dht.live
peep-ws5.smart-coaching-dev.dht.live
green-iot-mds-h.messaging2-amr-stg.dht.live
api.showtime4-sbx.dht.live
docs.sc-2371-survey-api.honeybadgers-sbx.dht.live
sc-2037-mobilequestionsui.honeybadgers-sbx.dht.live
green-iot-mds-f.airview-messaging-stg.dht.live
api.hellosleep-prd.dht.live
opsmanager-amr-sbx.atlas-sbx.dht.live
docs.sc-728-survey-api.honeybadgers-sbx.dht.live
sc-1764-scui.honeybadgers-sbx.dht.live
support.showtime5-sbx.dht.live
customer-service.saas-sltc-sandbox-dev.dht.live
nightowl.showtime6-sbx.dht.live
green-mcspacific-c.messaging2-amr-stg.dht.live
scui.sleep-concierge-prd.dht.live
amr-prod-dps-ebs-d.prod-messaging-prd.dht.live
api.showtime8-sbx.dht.live
sc-1457-werewolf-api.honeybadgers-sbx.dht.live
support.showtime4-sbx.dht.live
*.sre-dev-ave-qa.dht.live
sc-2066-scui.honeybadgers-sbx.dht.live
mcs2-dev.dht.live
support-api.showtime7-sbx.dht.live
amr-qa-avx-d.airview-messaging-qa.dht.live
avx-mock-amr.showtime14-dev.dht.live
green-dps-ebs-b.messaging2-amr-prd.dht.live
graphql.showtime8-sbx.dht.live
support-api.myair-eu-dev.dht.live
avx-mock-amr.showtime2-sbx.dht.live
data-platform-mock.showtime3-sbx.dht.live
data-platform-mock.myair-eu-dev.dht.live
content-ws4.smart-coaching-dev.dht.live
green-iot-mds-c.messaging2-amr-stg.dht.live
amr-qa-envoymq-hub.airview-messaging-qa.dht.live
*.airview-icm-dev.dht.live
Certificate
The complete raw certificate details for mcs2-dev.dht.live in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEdjCCA16gAwIBAgIQBCsWi2kO58QL6aJzGlMrtTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDYwODAwMDAwMFoXDTI0MDcwNjIzNTk1OVowHDEa MBgGA1UEAxMRbWNzMi1kZXYuZGh0LmxpdmUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/fOireVBbpXU0U+HhysMmAXLbgSPxUIFPOsaNnwIlv7iGvf0G tFy9cr2RmeEUZrtTv5dl0sj4pZT0rrwYNvYFzqT2NaS83I/lvrE3cTwgvByiaFoo 5p0TxRk0CSZR26AzKO6m1TbsqIpEUWZGV+bulkQB2HgRdLv8Dtkw3lKAqVwCdpij TKw5XhetNLcw22c1qifJXu5UOLlQAJDUZx6xW5cFVRYRoCEge5CmSVzCDSCTYovO SG51rxGy+nO4p+1By16Ls4y6A5wUvPXaE3nKPQCm4Q0grGRRgoqMYy72fDNtrxjP 2yFqHyjT2kVffsD8OjKrBwyaTDrUqu3WDTOTAgMBAAGjggGSMIIBjjAfBgNVHSME GDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUwHR3QUCDM4kaN9Ny IT3KU0r/mzkwMQYDVR0RBCowKIIRbWNzMi1kZXYuZGh0LmxpdmWCEyoubWNzMi1k ZXYuZGh0LmxpdmUwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFt YXpvbnRydXN0LmNvbS9yMm0wMi5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYI KwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMi5hbWF6 b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDIuYW1hem9u dHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMB Af8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQC2HxcjYB02dWRaPjIKNa76P08Kd7Hr 4vnud9BqD4yLXby/XJlsY00wFGh75ZRS88xtHCJPyVenpBjbJH9xf85oLMcuE0gD Qc39YbOhwMPiEVsg1CA8ELNyjwGP49svf9y3OUa3TN0a69zOzDJP8WQeGG2pXpgV es+SlQbZIGXvKYQVc9jQUGPTBQ7wcALMnhS7M4mLA8hCUwYIdzVb/uO8dtlio2Rw KRfV7oYxZ1FnvzhGR3Klo3Dj/O1SRIeQgJ6pe8FcxduEMbr03IWhox++d+LwakVU lNzCfLaFDjxWhMWO3d72UK8paIJfLfZM2Jh+zAYM2tFzdWmQ8c2HonZm -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3zoq3lQW6V1NFPh4crD JgFy24Ej8VCBTzrGjZ8CJb+4hr39BrRcvXK9kZnhFGa7U7+XZdLI+KWU9K68GDb2 Bc6k9jWkvNyP5b6xN3E8ILwcomhaKOadE8UZNAkmUdugMyjuptU27KiKRFFmRlfm 7pZEAdh4EXS7/A7ZMN5SgKlcAnaYo0ysOV4XrTS3MNtnNaonyV7uVDi5UACQ1Gce sVuXBVUWEaAhIHuQpklcwg0gk2KLzkhuda8RsvpzuKftQctei7OMugOcFLz12hN5 yj0ApuENIKxkUYKKjGMu9nwzba8Yz9shah8o09pFX37A/DoyqwcMmkw61Krt1g0z kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5540638006296476374927906104316996533 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mcs2-dev.dht.live' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24173111106252145421197107546696459929456688716476037804693775590069312358305784699331801678805127888013101334032413151740931658882993814020907795830860220100491761045888357223325944368771575086202415007283808380674817446823829265293062489161404386554676266665795306644968167091257171671319206579018749028001049263479471074768045118289481592058679472217396914687823112867332691026937381896405580080160124100241417800841544754691023023880641856137898794430111319334785710399174307010090616086445424567186649890708436969803797403547180008208686209362912651792573659680362333473266189994022279703407678680711875470898067 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c0747741408333891a37d372213dca534aff9b39 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mcs2-dev.dht.live' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mcs2-dev.dht.live' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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