cpa.ci.ew1.entitlements-ci.fsapi.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 07:1e:55:5b:e5:bd:a3:65:e0:7c:bc:6f:3f:9a:d6:e5 was issued on by Amazon.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=cpa.ci.ew1.entitlements-ci.fsapi.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:1e:55:5b:e5:bd:a3:65:e0:7c:bc:6f:3f:9a:d6:e5Serial Number (int): 9462096161930880983252376837129164517
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 8c:3c:ac:fb:30:0d:dc:11:d7:1e:89:c5:c7:b8:bd:c0:f7:49:a0:6f
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 9c:ef:49:27:bf:e6:f0:b2:b9:fd:3c:49:d8:7d:14:a3:c0:69:9a:0f
Fingerprint (sha256): 0b:e5:b5:56:c5:5d:6b:e0:d8:9f:ad:05:47:81:f9:21:28:1b:48:e5:7e:83:fb:ad:17:9a:39:42:58:65:76:d1
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate cpa.ci.ew1.entitlements-ci.fsapi.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cpa.ci.ew1.entitlements-ci.fsapi.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cpa.ci.ew1.entitlements-ci.fsapi.com
provisioning.ew1.entitlements-ci.fsapi.com
csa.ci.ew1.entitlements-ci.fsapi.com
csa.ci.glb.entitlements-ci.fsapi.com
cpa.ci.glb.entitlements-ci.fsapi.com
provisioning.ew1.entitlements-ci.fsapi.com
csa.ci.ew1.entitlements-ci.fsapi.com
csa.ci.glb.entitlements-ci.fsapi.com
cpa.ci.glb.entitlements-ci.fsapi.com
Other certificates including the domain name fsapi.com
(limited to 100 certificates)
relay.stg.withsecure.com
us2.spi.psb.fsapi.com
lorsp.sc2.fsapi.com
*.sensesdk-ci.fsapi.com
lykaal-layer3.mind.pc-ci.fsapi.com
emea.psb-regional-gateway.psb.fsapi.com
psblive.reporting-service.internal.psb-stg.fsapi.com
bigdata-labs.ds.fsapi.com
stable.epp.elements-ci.fsapi.com
toucan.accounts-apac.fsapi.com
helrdomaster02.fi.f-secure.com
portal.radar.elements-stg.withsecure.com
gustvimaster.infra-dev-services.fsapi.com
ew1.doorman.ci.gw.fsapi.com
gustvi.infra-dev-services.fsapi.com
stable.psb-ci.fsapi.com
ew1-psb-ci-latest-ecs-internal.psb-ci.fsapi.com
public.prod.ane1.cosmos-prd.fsapi.com
eu1.psb.fsapi.com
update-karma.pc.fsapi.com
mobile-dl.sp.f-secure.com
*.accounts-emea-ci.fsapi.com
ddr-dev.sensesdk-ci.fsapi.com
accounts-stg.fsapi.com
latest.psb-regional-gateway.psb-ci.fsapi.com
jenkins-staging.fi.f-secure.com
eu1.reporting-service.internal.psb.fsapi.com
helcccpmaster01.fi.f-secure.com
guts2.sp.f-secure.com
jp3.psb.fsapi.com
influxdb-mindcontrol.pc-ci.fsapi.com
ulmaster01.internalsecure.com
famp-ci.fsapi.com
savaja-layer3.mind.pc-ci.fsapi.com
doorman.sp.f-secure.com
restmc.mind.sc2.fsapi.com
client-alb.musttu.guts2-ci.fsapi.com
alb.j4a.infra-dev-services.fsapi.com
api.prd.ew1.doorman.fsapi.com
ddr-dev2.sensesdk-ci.fsapi.com
token.accounts-apac-ci-integration.fsapi.com
obus.sc.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
client.sarkar.guts2-ci.fsapi.com
ntstr.pc.fsapi.com
psbtp.micro-cosmos.internal.psb-stg.fsapi.com
obus.eu-west-1.mind.pc-ci.fsapi.com
hydra.eu-west-1.mind.pc-ci.fsapi.com
ups.ups-prd.fsapi.com
lykaal-layer3.mind.pc-ci.fsapi.com
lorsp-karma.sc2.fsapi.com
eu1.spi.psb.fsapi.com
mind-bin-feature-ex.ap-southeast-1.mind.pc.fsapi.com
public.stable.ew1.cosmos-ci.fsapi.com
dds-dev3.sensesdk-ci.fsapi.com
alb.j4a.services-ci-infra-services.fsapi.com
bump.borgs-ci.fsapi.com
relay.withsecure.com
ddr-dev2.sensesdk-ci.fsapi.com
eu-smi-eu.spi.psb.fsapi.com
sandbox.dev-lehtjo.ci.gw.fsapi.com
dp-antial.ds-ci.fsapi.com
accounts-ci-integration.fsxt.net
sebe-lb-int.eu-west-1.ele.fsapi.com
famp.fsapi.com
staging.pete.ds.fsapi.com
psblive.psb-stg.fsapi.com
redirects.ele.fsapi.com
scanner.cloudprotection.fsapi.com
monitoring.savaja.sc.fsapi.com
ew1a-splunk-indexer.infra-dev-services.fsapi.com
alb.j4a.infra-dev-services.fsapi.com
ws-ci.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
sarkar.guts2-ci.fsapi.com
cpa.ci.ew1.entitlements-ci.fsapi.com
doorman.sp.f-secure.com
ntstr.eu-west-1.mind.pc-stg.fsapi.com
doorman-beta.sp.f-secure.com
salmi-s3-api.eu-west-1.sc-ci.fsapi.com
staging.pete.ds.fsapi.com
toucan.accounts-emea-ci-integration.fsapi.com
infra-auth-proxy.ds-ci.fsapi.com
token.accounts-emea.fsapi.com
ew1b-splunk-indexer.ci-infra-services.fsapi.com
influxdb-mindcontrol-lykaal.pc-ci.fsapi.com
toucan.accounts-apac-stg.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
push-na.fsapi.com
api.int.ci.ew1.entitlements-ci.fsapi.com
accounts-ci-integration.fsxt.net
atlas.ci.fsapi.com
admin.guts2-prd.fsapi.com
psb3.batch-password-protection.internal.psb.fsapi.com
jenkins-elements02.internalsecure.com
emea4.psb.fsapi.com
rexex.kaleeri.fsapi.com
sebe-tp.fsapi.com
stable.psb-ci.fsapi.com
admin.int.ci.ew1.guts2-ci.fsapi.com
us2.spi.psb.fsapi.com
lorsp.sc2.fsapi.com
*.sensesdk-ci.fsapi.com
lykaal-layer3.mind.pc-ci.fsapi.com
emea.psb-regional-gateway.psb.fsapi.com
psblive.reporting-service.internal.psb-stg.fsapi.com
bigdata-labs.ds.fsapi.com
stable.epp.elements-ci.fsapi.com
toucan.accounts-apac.fsapi.com
helrdomaster02.fi.f-secure.com
portal.radar.elements-stg.withsecure.com
gustvimaster.infra-dev-services.fsapi.com
ew1.doorman.ci.gw.fsapi.com
gustvi.infra-dev-services.fsapi.com
stable.psb-ci.fsapi.com
ew1-psb-ci-latest-ecs-internal.psb-ci.fsapi.com
public.prod.ane1.cosmos-prd.fsapi.com
eu1.psb.fsapi.com
update-karma.pc.fsapi.com
mobile-dl.sp.f-secure.com
*.accounts-emea-ci.fsapi.com
ddr-dev.sensesdk-ci.fsapi.com
accounts-stg.fsapi.com
latest.psb-regional-gateway.psb-ci.fsapi.com
jenkins-staging.fi.f-secure.com
eu1.reporting-service.internal.psb.fsapi.com
helcccpmaster01.fi.f-secure.com
guts2.sp.f-secure.com
jp3.psb.fsapi.com
influxdb-mindcontrol.pc-ci.fsapi.com
ulmaster01.internalsecure.com
famp-ci.fsapi.com
savaja-layer3.mind.pc-ci.fsapi.com
doorman.sp.f-secure.com
restmc.mind.sc2.fsapi.com
client-alb.musttu.guts2-ci.fsapi.com
alb.j4a.infra-dev-services.fsapi.com
api.prd.ew1.doorman.fsapi.com
ddr-dev2.sensesdk-ci.fsapi.com
token.accounts-apac-ci-integration.fsapi.com
obus.sc.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
client.sarkar.guts2-ci.fsapi.com
ntstr.pc.fsapi.com
psbtp.micro-cosmos.internal.psb-stg.fsapi.com
obus.eu-west-1.mind.pc-ci.fsapi.com
hydra.eu-west-1.mind.pc-ci.fsapi.com
ups.ups-prd.fsapi.com
lykaal-layer3.mind.pc-ci.fsapi.com
lorsp-karma.sc2.fsapi.com
eu1.spi.psb.fsapi.com
mind-bin-feature-ex.ap-southeast-1.mind.pc.fsapi.com
public.stable.ew1.cosmos-ci.fsapi.com
dds-dev3.sensesdk-ci.fsapi.com
alb.j4a.services-ci-infra-services.fsapi.com
bump.borgs-ci.fsapi.com
relay.withsecure.com
ddr-dev2.sensesdk-ci.fsapi.com
eu-smi-eu.spi.psb.fsapi.com
sandbox.dev-lehtjo.ci.gw.fsapi.com
dp-antial.ds-ci.fsapi.com
accounts-ci-integration.fsxt.net
sebe-lb-int.eu-west-1.ele.fsapi.com
famp.fsapi.com
staging.pete.ds.fsapi.com
psblive.psb-stg.fsapi.com
redirects.ele.fsapi.com
scanner.cloudprotection.fsapi.com
monitoring.savaja.sc.fsapi.com
ew1a-splunk-indexer.infra-dev-services.fsapi.com
alb.j4a.infra-dev-services.fsapi.com
ws-ci.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
sarkar.guts2-ci.fsapi.com
cpa.ci.ew1.entitlements-ci.fsapi.com
doorman.sp.f-secure.com
ntstr.eu-west-1.mind.pc-stg.fsapi.com
doorman-beta.sp.f-secure.com
salmi-s3-api.eu-west-1.sc-ci.fsapi.com
staging.pete.ds.fsapi.com
toucan.accounts-emea-ci-integration.fsapi.com
infra-auth-proxy.ds-ci.fsapi.com
token.accounts-emea.fsapi.com
ew1b-splunk-indexer.ci-infra-services.fsapi.com
influxdb-mindcontrol-lykaal.pc-ci.fsapi.com
toucan.accounts-apac-stg.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
push-na.fsapi.com
api.int.ci.ew1.entitlements-ci.fsapi.com
accounts-ci-integration.fsxt.net
atlas.ci.fsapi.com
admin.guts2-prd.fsapi.com
psb3.batch-password-protection.internal.psb.fsapi.com
jenkins-elements02.internalsecure.com
emea4.psb.fsapi.com
rexex.kaleeri.fsapi.com
sebe-tp.fsapi.com
stable.psb-ci.fsapi.com
admin.int.ci.ew1.guts2-ci.fsapi.com
Certificate
The complete raw certificate details for cpa.ci.ew1.entitlements-ci.fsapi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIQBx5VW+W9o2XgfLxvP5rW5TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIxMjAwMDAwMFoXDTI1MDEwOTIzNTk1OVowLzEt MCsGA1UEAxMkY3BhLmNpLmV3MS5lbnRpdGxlbWVudHMtY2kuZnNhcGkuY29tMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmAnpWiVExaczuxSLpcsr5bIV rsuR5R1zbQC2k85UnCqnSUzbqgpvdWS2DgC5CJyvffCymcauPo9RdIegk9ENSG1f EM8vrVmjppCMp+UxXqeAVHcCECYNtwzwOz/h3WtuuJi2usafzVhdMiXoxJaiDA0K 1f/GprMZIBUoH/u57esHPKVtUWA21tekkeQRJ6lkoU9ZtbBLCMJMboDStXOhNcnU bgkQPATdvgr3AcFE7BjTUtEgveVOlz+PRx0rPQPSQyfbzQmqmi3gDxLXdWZULNGw Z0WwrhPLselB8p+nZfhgwqjstUd+2nzocl28pdq6FPFCIUMQIT5Lx9GUemkyrwID AQABo4ICMTCCAi0wHwYDVR0jBBgwFoAUVdkYX9IczAHhWLS+q9lVQgHXLgIwHQYD VR0OBBYEFIw8rPswDdwR1x6Jxce4vcD3SaBvMIHPBgNVHREEgccwgcSCJGNwYS5j aS5ldzEuZW50aXRsZW1lbnRzLWNpLmZzYXBpLmNvbYIqcHJvdmlzaW9uaW5nLmV3 MS5lbnRpdGxlbWVudHMtY2kuZnNhcGkuY29tgiRjc2EuY2kuZXcxLmVudGl0bGVt ZW50cy1jaS5mc2FwaS5jb22CJGNzYS5jaS5nbGIuZW50aXRsZW1lbnRzLWNpLmZz YXBpLmNvbYIkY3BhLmNpLmdsYi5lbnRpdGxlbWVudHMtY2kuZnNhcGkuY29tMBMG A1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5y Mm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY3JsMHUGCCsGAQUFBwEBBGkwZzAt BggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDMuYW1hem9udHJ1c3QuY29tMDYG CCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAzLmFtYXpvbnRydXN0LmNvbS9yMm0w My5jZXIwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAS2/uzdzg0fvnPQBIyGJjD4eUC+ICzM7jfUcaC0dlxIbiQcM1 qjMobLzwh/CixlGHqBG0Xly/RQSPr+KuMRBpU2wD0NgnnQpexwYgDTROQA0OdQkD JDLSoorNNjYBmbVvmfayiLz9BUyJvOclLE9l3nTUhravQRY1bq3TTbnajvc5X+dn mZghV2cEAGn/0mirbPzgt9lwzCiOtqawO9coHCaXeSNNCDK0VADiU2z3B88nYCDu g9n4ukXDSKYDj3QYaIhXay89W1CgBfXYQLtn6TCHMOUV9h7YYCCHR811byP4c5V7 ZigLu3l/OHNFe77LrsP0oIZhf/+uhn4KvmubsQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmAnpWiVExaczuxSLpcsr 5bIVrsuR5R1zbQC2k85UnCqnSUzbqgpvdWS2DgC5CJyvffCymcauPo9RdIegk9EN SG1fEM8vrVmjppCMp+UxXqeAVHcCECYNtwzwOz/h3WtuuJi2usafzVhdMiXoxJai DA0K1f/GprMZIBUoH/u57esHPKVtUWA21tekkeQRJ6lkoU9ZtbBLCMJMboDStXOh NcnUbgkQPATdvgr3AcFE7BjTUtEgveVOlz+PRx0rPQPSQyfbzQmqmi3gDxLXdWZU LNGwZ0WwrhPLselB8p+nZfhgwqjstUd+2nzocl28pdq6FPFCIUMQIT5Lx9GUemky rwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9462096161930880983252376837129164517 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cpa.ci.ew1.entitlements-ci.fsapi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19193109913314748841033983939158965583240162993281134832184322086628847668101689704560413780171858880942656713954582763768130298537232190623442162439255723934183539259624198102616033973057688861057347559891935075815700978426596299934655350859393772934572920042881929901254591327952531181843109128274525746116278769457184420780578556100895352566447389694362144618336154558685540733648372396597484670122962299331191292162517275937071446703995180627113401611045840267347395003691486692665394745393049155591250811646272385313601081512005243499168248311485371262127286350892060810031074879108755975737919783530743162548911 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8c3cacfb300ddc11d71e89c5c7b8bdc0f749a06f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (199 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpa.ci.ew1.entitlements-ci.fsapi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'provisioning.ew1.entitlements-ci.fsapi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'csa.ci.ew1.entitlements-ci.fsapi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'csa.ci.glb.entitlements-ci.fsapi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpa.ci.glb.entitlements-ci.fsapi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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