wfpapi.dev.beneficiaryenrolment.syr.wfp.org
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 06:a9:62:fb:42:7c:4d:d3:06:6a:0f:61:a5:99:e4:b0 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=wfpapi.dev.beneficiaryenrolment.syr.wfp.org
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:a9:62:fb:42:7c:4d:d3:06:6a:0f:61:a5:99:e4:b0Serial Number (int): 8854873726788115015480146944197256368
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 15:b3:99:c7:ea:2d:9f:9d:30:e4:8f:48:93:30:58:9f:00:78:1e:35
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 80:91:24:35:34:2b:51:6d:7f:fd:8c:b1:cb:a7:79:8a:5b:72:68:0a
Fingerprint (sha256): 0c:15:33:f4:83:52:4c:c8:5d:16:64:5d:58:91:8d:94:f3:e7:cd:18:5a:5a:50:53:37:31:92:a6:37:fd:df:0f
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate wfpapi.dev.beneficiaryenrolment.syr.wfp.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for wfpapi.dev.beneficiaryenrolment.syr.wfp.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
wfpapi.dev.beneficiaryenrolment.syr.wfp.org
*.wfpapi.dev.beneficiaryenrolment.syr.wfp.org
*.wfpapi.dev.beneficiaryenrolment.syr.wfp.org
Other certificates including the domain name wfp.org
(limited to 100 certificates)
helpdesk.travelleaders.com
speakto.ner.wfp.org
helpdesk.travelleaders.com
api.efs.wfp.org
*.sdn.wfp.org
wga.wfp.org
5728757302165504-fe2.pantheonsite.io
app.dev.mealstracker.lbn.wfp.org
5728757302165504-fe2.pantheonsite.io
partnerconnect.wfp.org
helpdesk.travelleaders.com
api.dev.comp.wfp.org
servicedesk.nga.wfp.org
5728757302165504-fe2.pantheonsite.io
5728757302165504-fe2.pantheonsite.io
*.opweb.wfp.org
*.wfp.org
5728757302165504-fe2.pantheonsite.io
helpdesk.andersonmt.org
training.comet.wfp.org
gis.tur.wfp.org
partnerships.comet.wfp.org
ko.donate.wfp.org
docs.lms.wfp.org
qa.dashboard.wfp.org
staging.spaplus.wfp.org
kontext.wfp.org
dev.api.efs.wfp.org
openid.auth.wfp.org
speakto.cod.wfp.org
partnerships.comet.wfp.org
job-listing.wfp.org
openid.auth.wfp.org
helpdesk.travelleaders.com
speakto.mwi.wfp.org
helpdesk.andersonmt.org
indblik.wfp.org
helpdesk.andersonmt.org
dev.maps.slv.wfp.org
api.dev.dashboard.wfp.org
etcconnect.bgd.wfp.org
mobile.less.wfp.org
farm2go.wfp.org
5728757302165504-fe2.pantheonsite.io
docs.gefs.wfp.org
*.guesthouse.wfp.org
go.docs.wfp.org
api.wfp.org
dev.vulnerabilityneedsreview.syr.wfp.org
qa.scope.eguide.wfp.org
irm.analytics.wfp.org
*.comet.wfp.org
mail.wfp.org
action.bangkok.wfp.org
training.simsas.wfp.org
helpdesk.andersonmt.org
supplychain.go.wfp.org
pit.cbt.wfp.org
esm.wfp.org
*.schoolconnect.wfp.org
speakto.uga.wfp.org
maano.api.wfp.org
*.hosting.wfp.org
mobile.wfp.org
wfpapi.dev.beneficiaryenrolment.syr.wfp.org
ja.news.wfp.org
servicedesk.frauenthal-automotive.com
api.simsas.wfp.org
membership.executiveboard.wfp.org
helpdesk.andersonmt.org
api.pos.syr.wfp.org
qa.oevmis.wfp.org
helpdesk.andersonmt.org
5728757302165504-fe2.pantheonsite.io
5728757302165504-fe2.pantheonsite.io
buildingblocks.jor.wfp.org
ssd.wfp.org
training.spaplus.wfp.org
5728757302165504-fe2.pantheonsite.io
wall.wfp.org
5728757302165504-fe2.pantheonsite.io
helpdesk.andersonmt.org
portal.sen.wfp.org
dev.plusschoolmenus.wfp.org
5728757302165504-fe2.pantheonsite.io
qa.plusschoolmenus.wfp.org
spring.wfp.org
5728757302165504-fe2.pantheonsite.io
panorama.wfp.org
5728757302165504-fe2.pantheonsite.io
status.api.wfp.org
helpdesk.andersonmt.org
*.selfservice.go.wfp.org
qa.its.wfp.org
qa.comet.wfp.org
integrator.efs.wfp.org
dev.auctiondigitaloffice.wfp.org
wob.dev.oims.wfp.org
catalog.efs.wfp.org
donatenow.wfp.org
speakto.ner.wfp.org
helpdesk.travelleaders.com
api.efs.wfp.org
*.sdn.wfp.org
wga.wfp.org
5728757302165504-fe2.pantheonsite.io
app.dev.mealstracker.lbn.wfp.org
5728757302165504-fe2.pantheonsite.io
partnerconnect.wfp.org
helpdesk.travelleaders.com
api.dev.comp.wfp.org
servicedesk.nga.wfp.org
5728757302165504-fe2.pantheonsite.io
5728757302165504-fe2.pantheonsite.io
*.opweb.wfp.org
*.wfp.org
5728757302165504-fe2.pantheonsite.io
helpdesk.andersonmt.org
training.comet.wfp.org
gis.tur.wfp.org
partnerships.comet.wfp.org
ko.donate.wfp.org
docs.lms.wfp.org
qa.dashboard.wfp.org
staging.spaplus.wfp.org
kontext.wfp.org
dev.api.efs.wfp.org
openid.auth.wfp.org
speakto.cod.wfp.org
partnerships.comet.wfp.org
job-listing.wfp.org
openid.auth.wfp.org
helpdesk.travelleaders.com
speakto.mwi.wfp.org
helpdesk.andersonmt.org
indblik.wfp.org
helpdesk.andersonmt.org
dev.maps.slv.wfp.org
api.dev.dashboard.wfp.org
etcconnect.bgd.wfp.org
mobile.less.wfp.org
farm2go.wfp.org
5728757302165504-fe2.pantheonsite.io
docs.gefs.wfp.org
*.guesthouse.wfp.org
go.docs.wfp.org
api.wfp.org
dev.vulnerabilityneedsreview.syr.wfp.org
qa.scope.eguide.wfp.org
irm.analytics.wfp.org
*.comet.wfp.org
mail.wfp.org
action.bangkok.wfp.org
training.simsas.wfp.org
helpdesk.andersonmt.org
supplychain.go.wfp.org
pit.cbt.wfp.org
esm.wfp.org
*.schoolconnect.wfp.org
speakto.uga.wfp.org
maano.api.wfp.org
*.hosting.wfp.org
mobile.wfp.org
wfpapi.dev.beneficiaryenrolment.syr.wfp.org
ja.news.wfp.org
servicedesk.frauenthal-automotive.com
api.simsas.wfp.org
membership.executiveboard.wfp.org
helpdesk.andersonmt.org
api.pos.syr.wfp.org
qa.oevmis.wfp.org
helpdesk.andersonmt.org
5728757302165504-fe2.pantheonsite.io
5728757302165504-fe2.pantheonsite.io
buildingblocks.jor.wfp.org
ssd.wfp.org
training.spaplus.wfp.org
5728757302165504-fe2.pantheonsite.io
wall.wfp.org
5728757302165504-fe2.pantheonsite.io
helpdesk.andersonmt.org
portal.sen.wfp.org
dev.plusschoolmenus.wfp.org
5728757302165504-fe2.pantheonsite.io
qa.plusschoolmenus.wfp.org
spring.wfp.org
5728757302165504-fe2.pantheonsite.io
panorama.wfp.org
5728757302165504-fe2.pantheonsite.io
status.api.wfp.org
helpdesk.andersonmt.org
*.selfservice.go.wfp.org
qa.its.wfp.org
qa.comet.wfp.org
integrator.efs.wfp.org
dev.auctiondigitaloffice.wfp.org
wob.dev.oims.wfp.org
catalog.efs.wfp.org
donatenow.wfp.org
Certificate
The complete raw certificate details for wfpapi.dev.beneficiaryenrolment.syr.wfp.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIExDCCA6ygAwIBAgIQBqli+0J8TdMGag9hpZnksDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIxODAwMDAwMFoXDTI1MDExNjIzNTk1OVowNjE0 MDIGA1UEAxMrd2ZwYXBpLmRldi5iZW5lZmljaWFyeWVucm9sbWVudC5zeXIud2Zw Lm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOc7mSa5WnEe3pym TBAasS+QFdORqEvzBRVAmGWfRR/TplL3uNrsSBks12hqTbmwrmJAJA9aYqc77xM6 wIOfoBWFWh3C82uEO8eGoN2NRGu12loRGr1FaBjQ36e3fKcXRrlU4Sdz28FQBwT4 6+1p9QYeo9y6a2uRM8J/r4ABkMrLo6vfdd7STvmFu+zYgh6JK+TuzXtKAiCeH80x 4NKl88KvY/kflcdcHsCxeFoLQlRrVn9RessX5AVLD+OqM27qhkPC+BDsnZ9tVBxL SgNT414Z0XTYJa8P330+YJZHUWmzrFho8cOXDHRqMd5Soja71yyQLaYu1Gp0IcS6 NnMdzlUCAwEAAaOCAcYwggHCMB8GA1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZVUIB 1y4CMB0GA1UdDgQWBBQVs5nH6i2fnTDkj0iTMFifAHgeNTBlBgNVHREEXjBcgit3 ZnBhcGkuZGV2LmJlbmVmaWNpYXJ5ZW5yb2xtZW50LnN5ci53ZnAub3Jngi0qLndm cGFwaS5kZXYuYmVuZWZpY2lhcnllbnJvbG1lbnQuc3lyLndmcC5vcmcwEwYDVR0g BAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAz LmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsG AQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYB BQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNl cjAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeIji3PfZzz7PlfYR0MGd2OuzuYgE0hwwdIT3QEf9qo9h/DbJ9QAkl YICdS4UR+4VreyJdP9lYIxjweGBnQRk3/a3uOF0+8d2txqsaYexYZfjvww8LQQX6 P+65hrEzvOH0MdAXnY0rcyXAA4WTuDlY9uiwKNqXLEg1JDjhH9TnfqLCFe6V6xSy EALTS7vDZNjgiH8Ej4M7Kq4QLbJGi3VELN63oqd7IyAqX7qcnuGBoMPPEpXUGmIk tHv0NM+UZOg1tAnWO8blhKUEgKd6uUeh9jIN6YUvnTb3aIRozNPd35CNM0Codj3W FsH987yuykhA6CrcHEpbP5pMfERz8kBj -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5zuZJrlacR7enKZMEBqx L5AV05GoS/MFFUCYZZ9FH9OmUve42uxIGSzXaGpNubCuYkAkD1pipzvvEzrAg5+g FYVaHcLza4Q7x4ag3Y1Ea7XaWhEavUVoGNDfp7d8pxdGuVThJ3PbwVAHBPjr7Wn1 Bh6j3Lpra5Ezwn+vgAGQysujq9913tJO+YW77NiCHokr5O7Ne0oCIJ4fzTHg0qXz wq9j+R+Vx1wewLF4WgtCVGtWf1F6yxfkBUsP46ozbuqGQ8L4EOydn21UHEtKA1Pj XhnRdNglrw/ffT5glkdRabOsWGjxw5cMdGox3lKiNrvXLJAtpi7UanQhxLo2cx3O VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8854873726788115015480146944197256368 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'wfpapi.dev.beneficiaryenrolment.syr.wfp.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29190437438162977231459412761658008941628331162853118848876299541256030157700729255186539177136683419659230539863165180019432471520144652998633576956056548443727381082465485646962254466809954123003882643832687258214492972390388365928538448338963866955370108833516259773683233073572871521512732435402637208284915824916231974534966095837467196478635366671295382489819658171411789322530227890083983631878690069881405147769574833318184406281297159261237975901406758834482760449492621783171382324303137352739122947198232268662793728071882983327212149599189829127584337985285660071444469736641505494049489188993814641888853 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 15b399c7ea2d9f9d30e48f489330589f00781e35 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wfpapi.dev.beneficiaryenrolment.syr.wfp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wfpapi.dev.beneficiaryenrolment.syr.wfp.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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