xo.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 05:26:04:2a:cf:c2:78:cf:16:63:4e:69:29:61:cf:e2 was issued on by Amazon.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=xo.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:26:04:2a:cf:c2:78:cf:16:63:4e:69:29:61:cf:e2Serial Number (int): 6843531781068642166277923086090227682
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: e0:80:a3:ac:e7:b1:57:3c:93:6d:d9:87:b9:66:28:f4:c3:8f:d4:f1
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 33:12:51:ea:e7:62:4a:0e:b8:f0:3a:cd:3c:b9:2a:0b:23:3a:00:3a
Fingerprint (sha256): 0c:4a:07:07:f4:8a:bf:75:e9:be:4d:6c:eb:be:be:b3:16:11:a8:8a:81:76:aa:39:36:1e:02:4c:2b:ff:3b:40
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate xo.com
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for xo.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
xo.com
enterpriseip.xo.com
sales.xo.com
blog.xo.com
www.xo.com
smallbusiness.xo.com
solutions.xo.com
t1.xo.com
terms.xo.com
enterpriseip.xo.com
sales.xo.com
blog.xo.com
www.xo.com
smallbusiness.xo.com
solutions.xo.com
t1.xo.com
terms.xo.com
Other certificates including the domain name xo.com
(limited to 100 certificates)
webmail.xo.com
portal.xo.com
awtunnel.xo.com
password.xo.com
channelink.xo.com
webmail.xo.com
edgecast-bc.xo.com
xo.com
*.ultradns.com
apps.xo.com
legacy.xo.com
register.xo.com
plaegwdmz01.pla.dc.xo.com
xoradar.xo.com
tools.xo.com
partners.xo.com
xostats.xo.com
xoradar.xo.com
password.xo.com
xowebvpn.xo.com
xo.com
webremedy-fxo.xo.com
xocitrix.xo.com
xowebvpn.xo.com
*.xo.com
txplancoucm11.pla.dc.xo.com
xowebvpn.xo.com
masterstream.xo.com
tools.xo.com
plancactst01.pla.dc.xo.com
xofed.xo.com
partners.xo.com
portal.xo.com
xowebvpn.xo.com
xostats.xo.com
cloud.xo.com
nsamobile.xo.com
*.xo.com
answers.businesscenter.xo.com
bc.xo.com
ofm.xo.com
tools.xo.com
xoprojects.xo.com
testqlsr.dal.dc.xo.com
billing.xo.com
xowebvpn.xo.com
xo.com
portal.xo.com
testxoprojects.dal.dc.xo.com
testnapt.xo.com
apps.xo.com
xoradar.xo.com
masterstream.xo.com
xoprojects.xo.com
dns.xo.com
xoprojects.xo.com
xoprojects.xo.com
TESTQLSR.DAL.DC.XO.COM
pwreset.xo.com
xoradar.xo.com
portal.xo.com
xoprojects.xo.com
citrix.xo.com
xoradar.xo.com
webmail.xo.com
dns.xo.com
billing.xo.com
*.xo.com
plagtrprd02.pla.dc.xo.com
xowebvpn.xo.com
napt.xo.com
napt.xo.com
secure.xo.com
portaldev.xo.com
xowebvpn.xo.com
txplan01-vs01.pla.dc.xo.com
tools.xo.com
usps.xo.com
lyncae.xo.com
portal.xo.com
cloud.xo.com
vahern01-vs01.her.dc.xo.com
xoradar.xo.com
nsamobile.xo.com
portal.xo.com
xostats.xo.com
apps.xo.com
portal.xo.com
partners.xo.com
*.cloud.xo.com
cloud.xo.com
xomobile.xo.com
billing.xo.com
channelink.xo.com
backupcc.xo.com
password.xo.com
plancacprd01.pla.dc.xo.com
xoprojects.xo.com
tools.xo.com
billing.xo.com
portal.xo.com
awtunnel.xo.com
password.xo.com
channelink.xo.com
webmail.xo.com
edgecast-bc.xo.com
xo.com
*.ultradns.com
apps.xo.com
legacy.xo.com
register.xo.com
plaegwdmz01.pla.dc.xo.com
xoradar.xo.com
tools.xo.com
partners.xo.com
xostats.xo.com
xoradar.xo.com
password.xo.com
xowebvpn.xo.com
xo.com
webremedy-fxo.xo.com
xocitrix.xo.com
xowebvpn.xo.com
*.xo.com
txplancoucm11.pla.dc.xo.com
xowebvpn.xo.com
masterstream.xo.com
tools.xo.com
plancactst01.pla.dc.xo.com
xofed.xo.com
partners.xo.com
portal.xo.com
xowebvpn.xo.com
xostats.xo.com
cloud.xo.com
nsamobile.xo.com
*.xo.com
answers.businesscenter.xo.com
bc.xo.com
ofm.xo.com
tools.xo.com
xoprojects.xo.com
testqlsr.dal.dc.xo.com
billing.xo.com
xowebvpn.xo.com
xo.com
portal.xo.com
testxoprojects.dal.dc.xo.com
testnapt.xo.com
apps.xo.com
xoradar.xo.com
masterstream.xo.com
xoprojects.xo.com
dns.xo.com
xoprojects.xo.com
xoprojects.xo.com
TESTQLSR.DAL.DC.XO.COM
pwreset.xo.com
xoradar.xo.com
portal.xo.com
xoprojects.xo.com
citrix.xo.com
xoradar.xo.com
webmail.xo.com
dns.xo.com
billing.xo.com
*.xo.com
plagtrprd02.pla.dc.xo.com
xowebvpn.xo.com
napt.xo.com
napt.xo.com
secure.xo.com
portaldev.xo.com
xowebvpn.xo.com
txplan01-vs01.pla.dc.xo.com
tools.xo.com
usps.xo.com
lyncae.xo.com
portal.xo.com
cloud.xo.com
vahern01-vs01.her.dc.xo.com
xoradar.xo.com
nsamobile.xo.com
portal.xo.com
xostats.xo.com
apps.xo.com
portal.xo.com
partners.xo.com
*.cloud.xo.com
cloud.xo.com
xomobile.xo.com
billing.xo.com
channelink.xo.com
backupcc.xo.com
password.xo.com
plancacprd01.pla.dc.xo.com
xoprojects.xo.com
tools.xo.com
billing.xo.com
Certificate
The complete raw certificate details for xo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGNjCCBR6gAwIBAgIQBSYEKs/CeM8WY05pKWHP4jANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDMyNjAwMDAwMFoXDTI0MDQyMzIzNTk1OVowETEP MA0GA1UEAxMGeG8uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA k7EVOYLbYwXLoApwQQmhxjwZ8adyQR8ztbVpxjP4I+lf4/iYfyl+qxJsEDDpBxzU +54ccRV9nAGTiVAuKDG7+Od4AiC56TqrcEmqTkCQoJWaKmDz+wIst9iQRMBT5iwf HW99QuMJNjE7Z4f+uk5c6JtuhRmQ17silsIxEO6Vb8UuLZzprHPFqnEd2vw273HQ W6nCFMyiUO3AmTkAwKaYV0XZfH4vXWS1UmbHA2v+bYSZwlcq9yhHGcSflbhEz6zQ KeN9ipNMsu5tRiv55ggWyeUmSKXZiijmD9OAUydAQMNy3QGjR+rkLk2an0diZlG0 OBQ1hQ2Yg31Es1OLxCF5OQIDAQABo4IDXTCCA1kwHwYDVR0jBBgwFoAUgbgOY4qJ Ehjl+js7UJWf5uWQE4UwHQYDVR0OBBYEFOCAo6znsVc8k23Zh7lmKPTDj9TxMIGQ BgNVHREEgYgwgYWCBnhvLmNvbYITZW50ZXJwcmlzZWlwLnhvLmNvbYIMc2FsZXMu eG8uY29tggtibG9nLnhvLmNvbYIKd3d3LnhvLmNvbYIUc21hbGxidXNpbmVzcy54 by5jb22CEHNvbHV0aW9ucy54by5jb22CCXQxLnhvLmNvbYIMdGVybXMueG8uY29t MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw OwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMS5hbWF6b250cnVzdC5j b20vcjJtMDEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkw ZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDEuYW1hem9udHJ1c3QuY29t MDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAxLmFtYXpvbnRydXN0LmNvbS9y Mm0wMS5jZXIwDAYDVR0TAQH/BAIwADCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFm AHUA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGHG3FChQAABAMA RjBEAiBJvQJSAW7EMkP1FFKLjNshmz0xTvqh955jAtAEIxVi9wIgEcN+y3720evZ 0lLIP8myXHV0oEKXaz71OKrFrT7r30IAdQBz2Z6JG0yWeKAgfUed5rLGHNBRXnEZ KoxrgBB6wXdytQAAAYcbcUKlAAAEAwBGMEQCIEVFw2wX78QudXVijTFUNFELsatu tuM7j5VVit2HAakcAiBv2UgG+7hjEOvlTju6zIrmwqkSuWt8ZyolDGPO5hr7ZgB2 AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABhxtxQm0AAAQDAEcw RQIhAMiOuSDWVuld7N4mzABNZgkjCWSi5tVyBneyaOijoIs6AiBfuaWftM62WuTP bOm5pu007QGpKUBBwSJI8J/7Yl/NOTANBgkqhkiG9w0BAQsFAAOCAQEANe5ZuAT+ IuBnWriBgL0Ki0MGxWv0Zl7TOiuDgoImMigRDUCcQYn/RSddhMOpUPyv7mkKLaeA lsIw0fjVLnpd7no8Fyy03NPSCiAF9VyWYMGZZOs5MTdw6zaOrDfMc6VwH1QFNila ESNUTFh0mEdC6e9n5YCFfEEb+FB5RckKPqwBFqyyqq85GOonlj+KErp+AlMrq/IK mhjBfLztWdBSBGx4b2yPnmW2gwufcf6rzDfr3WWQZzta2z03UoGyTv+P/8Xr368V gGh35BV7DNuq3F1hiFa+4xvCWb+WZr1X19B0+ANJX/IDN02zbQ8MOpkKNh7QPInJ Xpdqepozjo77gw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7EVOYLbYwXLoApwQQmh xjwZ8adyQR8ztbVpxjP4I+lf4/iYfyl+qxJsEDDpBxzU+54ccRV9nAGTiVAuKDG7 +Od4AiC56TqrcEmqTkCQoJWaKmDz+wIst9iQRMBT5iwfHW99QuMJNjE7Z4f+uk5c 6JtuhRmQ17silsIxEO6Vb8UuLZzprHPFqnEd2vw273HQW6nCFMyiUO3AmTkAwKaY V0XZfH4vXWS1UmbHA2v+bYSZwlcq9yhHGcSflbhEz6zQKeN9ipNMsu5tRiv55ggW yeUmSKXZiijmD9OAUydAQMNy3QGjR+rkLk2an0diZlG0OBQ1hQ2Yg31Es1OLxCF5 OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6843531781068642166277923086090227682 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-23 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'xo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18644353666906924146021855962788182761032731577822129980634411210073627558291990411877971640378672604906397335695374837519931380519308095832458871785554189466625165837995355734314800871377445207729301926151244492965043773293938254079360548884760179480079048566485323413880750472491203880192924715571578860056314759746948139649818629498261517352371368689991917802231469705102974156684895918988343895826777953601767573018300973774359621038145484417197338547878921789815139123100326123450706343352042357567307970359770293938195236289602316781603131577409140292621920055057294440711499868017791569246583538505351883225401 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e080a3ace7b1573c936dd987b96628f4c38fd4f1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (136 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseip.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sales.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smallbusiness.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'solutions.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 't1.xo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'terms.xo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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