*.royalcanin.fr
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 01:1a:53:2b:c4:2a:a4:1e:b9:f3:92:c5:b2:a1:93:62 was issued on by Amazon.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.royalcanin.fr
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:1a:53:2b:c4:2a:a4:1e:b9:f3:92:c5:b2:a1:93:62Serial Number (int): 1465914621625524437569479531743515490
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 62:14:55:46:2a:04:fe:62:c9:ff:80:d1:28:99:21:6d:9d:26:5b:37
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 4f:e8:5e:b1:4d:5b:6a:87:01:73:60:4b:a5:85:63:7b:c2:ff:a9:c6
Fingerprint (sha256): 0d:17:d4:a5:97:b0:a3:ec:26:16:0c:e8:53:28:b7:c0:67:23:53:12:f8:05:2e:28:be:02:bd:a8:31:ed:aa:47
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.royalcanin.fr
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.royalcanin.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.royalcanin.fr
achetermonchien.com
www.achetermonchat.com
www.achetermonchien.com
wikichat.fr
www.wikichien.fr
www.wikichat.fr
achetermonchat.com
wikichien.fr
adoption.royalcanin.com
achetermonchien.com
www.achetermonchat.com
www.achetermonchien.com
wikichat.fr
www.wikichien.fr
www.wikichat.fr
achetermonchat.com
wikichien.fr
adoption.royalcanin.com
Other certificates including the domain name royalcanin.fr
(limited to 100 certificates)
incapsula.com
*.royalcanin.dk
aws-cf-rd18.mars-inc.com
*.royalcanin.fr
*.royalcanin.dk
*.royalcanin.fr
www.royalcanin.fr
lambda-redirect6.mars-inc.com
aws-cf-rd18.mars-inc.com
lambda-redirect6.mars-inc.com
operation.royalcanin.fr
nsprogress.royalcanin.fr
avent.royalcanin.fr
aws-cf-rd18.mars-inc.com
www.recommandation.royalcanin.fr
vetfollowup.royalcanin.com.au
shop.royalcanin.fr
csxd-02.contentsquare.net
aws-cf-rd24.mars-inc.com
lambda-redirect6.mars-inc.com
aws-cf-rd18.mars-inc.com
*.royalcanin.fr
royalcanin-com-redirect.mars-inc.com
incapsula.com
aws-cf-rd23.mars-inc.com
incapsula.com
jeu.royalcanin.fr
aws-cf-rd23.mars-inc.com
avent.royalcanin.fr
incapsula.com
aws-cf-rd18.mars-inc.com
csxd-02.contentsquare.net
*.royalcanin.fr
aws-cf-rd18.mars-inc.com
nsprogress.royalcanin.fr
preprod-sponsoring.royalcanin.fr
aws-cf-rd23.mars-inc.com
vetservices.royal-canin.at
vetservices.royalcanin.be
monvetoetmoi.royalcanin.fr
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
csxd-02.contentsquare.net
mon.royalcanin.fr
aws-cf-rd18.mars-inc.com
offres.royalcanin.fr
lambda-redirect6.mars-inc.com
incapsula.com
vetservices.royal-canin.at
aws-cf-rd24.mars-inc.com
*.mars.com
shop.royalcanin.fr
*.royalcanin.dk
futurexcellenceveterinaire.royalcanin.fr
*.mars.com
vetservices.royalcanin.be
incapsula.com
lambda-redirect6.mars-inc.com
csxd-02.contentsquare.net
aws-cf-rd18.mars-inc.com
aws-cf-rd23.mars-inc.com
*.royalcanin.fr
aws-cf-rd24.mars-inc.com
operation.royalcanin.fr
lambda-redirect6.mars-inc.com
aws-cf-rd23.mars-inc.com
nsprogress.royalcanin.fr
operation.royalcanin.fr
monvetoetmoi.royalcanin.fr
adminvfu.royalcanin.com
aws-cf-www-royalcanin-com-rd01.mars-inc.com
aws-cf-rd23.mars-inc.com
aws-cf-rd23.mars-inc.com
dev.shop.royalcanin.fr
aws-cf-rd24.mars-inc.com
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
avent.royalcanin.fr
aws-cf-rd18.mars-inc.com
*.mars.com
aws-cf-rd18.mars-inc.com
adminvfu.royalcanin.com
shop.royalcanin.fr
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
shop.royalcanin.fr
vetservices.royal-canin.at
csxd-02.contentsquare.net
aws-cf-rd18.mars-inc.com
offres.royalcanin.fr
aws-cf-rd23.mars-inc.com
csxd-02.contentsquare.net
incapsula.com
aws-cf-rd23.mars-inc.com
nsprogress.royalcanin.fr
www.recommandation.royalcanin.fr
www.recommandation.royalcanin.fr
aws-cf-rd24.mars-inc.com
aws-cf-rd18.mars-inc.com
*.royalcanin.dk
aws-cf-rd18.mars-inc.com
*.royalcanin.fr
*.royalcanin.dk
*.royalcanin.fr
www.royalcanin.fr
lambda-redirect6.mars-inc.com
aws-cf-rd18.mars-inc.com
lambda-redirect6.mars-inc.com
operation.royalcanin.fr
nsprogress.royalcanin.fr
avent.royalcanin.fr
aws-cf-rd18.mars-inc.com
www.recommandation.royalcanin.fr
vetfollowup.royalcanin.com.au
shop.royalcanin.fr
csxd-02.contentsquare.net
aws-cf-rd24.mars-inc.com
lambda-redirect6.mars-inc.com
aws-cf-rd18.mars-inc.com
*.royalcanin.fr
royalcanin-com-redirect.mars-inc.com
incapsula.com
aws-cf-rd23.mars-inc.com
incapsula.com
jeu.royalcanin.fr
aws-cf-rd23.mars-inc.com
avent.royalcanin.fr
incapsula.com
aws-cf-rd18.mars-inc.com
csxd-02.contentsquare.net
*.royalcanin.fr
aws-cf-rd18.mars-inc.com
nsprogress.royalcanin.fr
preprod-sponsoring.royalcanin.fr
aws-cf-rd23.mars-inc.com
vetservices.royal-canin.at
vetservices.royalcanin.be
monvetoetmoi.royalcanin.fr
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
csxd-02.contentsquare.net
mon.royalcanin.fr
aws-cf-rd18.mars-inc.com
offres.royalcanin.fr
lambda-redirect6.mars-inc.com
incapsula.com
vetservices.royal-canin.at
aws-cf-rd24.mars-inc.com
*.mars.com
shop.royalcanin.fr
*.royalcanin.dk
futurexcellenceveterinaire.royalcanin.fr
*.mars.com
vetservices.royalcanin.be
incapsula.com
lambda-redirect6.mars-inc.com
csxd-02.contentsquare.net
aws-cf-rd18.mars-inc.com
aws-cf-rd23.mars-inc.com
*.royalcanin.fr
aws-cf-rd24.mars-inc.com
operation.royalcanin.fr
lambda-redirect6.mars-inc.com
aws-cf-rd23.mars-inc.com
nsprogress.royalcanin.fr
operation.royalcanin.fr
monvetoetmoi.royalcanin.fr
adminvfu.royalcanin.com
aws-cf-www-royalcanin-com-rd01.mars-inc.com
aws-cf-rd23.mars-inc.com
aws-cf-rd23.mars-inc.com
dev.shop.royalcanin.fr
aws-cf-rd24.mars-inc.com
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
avent.royalcanin.fr
aws-cf-rd18.mars-inc.com
*.mars.com
aws-cf-rd18.mars-inc.com
adminvfu.royalcanin.com
shop.royalcanin.fr
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
shop.royalcanin.fr
vetservices.royal-canin.at
csxd-02.contentsquare.net
aws-cf-rd18.mars-inc.com
offres.royalcanin.fr
aws-cf-rd23.mars-inc.com
csxd-02.contentsquare.net
incapsula.com
aws-cf-rd23.mars-inc.com
nsprogress.royalcanin.fr
www.recommandation.royalcanin.fr
www.recommandation.royalcanin.fr
aws-cf-rd24.mars-inc.com
aws-cf-rd18.mars-inc.com
Certificate
The complete raw certificate details for *.royalcanin.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGfjCCBWagAwIBAgIQARpTK8QqpB6585LFsqGTYjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDIxNjAwMDAwMFoXDTI1MDMxNjIzNTk1OVowGjEY MBYGA1UEAwwPKi5yb3lhbGNhbmluLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA44bmwvXC+oWHmGyN+L/QbBWFwnwDmCviwpWO/uY1LpKiAipM0ebf HDyEvB4uwUj8/2olq7pZtxiFh0Y/J3aLBoYC7ihCXeYezqJQ/6+0I+fZtOXMklte k+EZ7gnjRuugFGpCk6Chy2LXa9LS4jyUx4EMpf2cZZo7HLkW+0uYRu0out5RKWIB N/AjHnY953mR6G1Xjci2g3pOIiOCy9aMWqIGT/o0/BlyMy0t3W4UU5QIGR3/9Nzm 5M1lEcpgYRs5FYsFUKAlEKa0uyEvMteLu8Vgfw6evt+LBmGyl7eE3rcyJbs3hjvV wM8Vri5LJ9iFCjYFdhObeahOGS7t18RhaQIDAQABo4IDnDCCA5gwHwYDVR0jBBgw FoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFGIUVUYqBP5iyf+A0SiZ IW2dJls3MIHNBgNVHREEgcUwgcKCDyoucm95YWxjYW5pbi5mcoITYWNoZXRlcm1v bmNoaWVuLmNvbYIWd3d3LmFjaGV0ZXJtb25jaGF0LmNvbYIXd3d3LmFjaGV0ZXJt b25jaGllbi5jb22CC3dpa2ljaGF0LmZyghB3d3cud2lraWNoaWVuLmZygg93d3cu d2lraWNoYXQuZnKCEmFjaGV0ZXJtb25jaGF0LmNvbYIMd2lraWNoaWVuLmZyghdh ZG9wdGlvbi5yb3lhbGNhbmluLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1Ud HwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3Iy bTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3Nw LnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5y Mm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwggF+ BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AE51oydcmhDDOFts1N8/Uusd8OCOG41p wLH6ZLFimjnfAAABjbIqFucAAAQDAEcwRQIgQJDAHnkgiA1FDyDGq8wCAvhuVcDc wTNphadZL2yCpWoCIQD7BIIyY6RrT9ZuDjprC/ftR2kPd/FoGiX92sZJWt/A7AB2 AH1ZHhLheCp7HGFnfF79+NCHXBSgTpWeuQMv2Q6MLnm4AAABjbIqFq8AAAQDAEcw RQIhAO/4uwrftSzaZF10oR0MWOz376fF3p4noXqvKCPHFSucAiATnBse7hj+r4CU DBcdoFnAXGFS46oiEtwYfh/NRmoztgB2AObSMWNAd4zBEEEG13G5zsHSQPaWhIb7 uocyHf0eN45QAAABjbIqFtgAAAQDAEcwRQIgPWPKzkWN32SapQTjZKQ1SzBVmEbk tnn04Kw3QBRfT3cCIQDXytG/asr3BczuDyVG7wLKACf0T75jEinkCVkWdE5zEjAN BgkqhkiG9w0BAQsFAAOCAQEATW5r6rDJ/LWTBz3mV26le30C+Uv8BZgBMXLmxh6p 6M+k7hdKzdcp4xCCbjONzc1kgJmutNcbXpMmTF2ZjPbdwEhzbByquLN0CJHoBMtz lXxxAGVfxRu/yn7RuwMxiD+m+V89Je9dTlhDs4iWAZND8pw/9pJEHI19f7kwvATt gDNjDv79/Owtmr/gkj/46Y5kNQq/4P4g9DEw9syMs/jLKK4t7+mOBnorkm2b9pnz 8agzEaFJ4bUH/0fO+UUiRxiNWhS1y2htvm1R7oKIKK3cIe0jo1BYrNc+mskf0ewJ hGyH1LQzXEitLgUgCwxFmKAamjdcW/5acFTZML7x7fM9Cw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA44bmwvXC+oWHmGyN+L/Q bBWFwnwDmCviwpWO/uY1LpKiAipM0ebfHDyEvB4uwUj8/2olq7pZtxiFh0Y/J3aL BoYC7ihCXeYezqJQ/6+0I+fZtOXMkltek+EZ7gnjRuugFGpCk6Chy2LXa9LS4jyU x4EMpf2cZZo7HLkW+0uYRu0out5RKWIBN/AjHnY953mR6G1Xjci2g3pOIiOCy9aM WqIGT/o0/BlyMy0t3W4UU5QIGR3/9Nzm5M1lEcpgYRs5FYsFUKAlEKa0uyEvMteL u8Vgfw6evt+LBmGyl7eE3rcyJbs3hjvVwM8Vri5LJ9iFCjYFdhObeahOGS7t18Rh aQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1465914621625524437569479531743515490 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.royalcanin.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28722617593049398805907580677084898697034026661776341720537956270798912405880528858749940259201015087897088448699330791756250401424482106077413758619472064081167202554005864740832707714314033545215535612333033852769414599915207187264813279545007905989267685309547986975721975233369479794827768164135626510999370017560202527202373943512507515698175656353443747133622887585607462634565489145495386594430511860920552926417886453660792354402175317717417590429967956720041768199522998593418622097095936445249523548231041712492452225039816285231357385126336762775691118524080489566643812118187496960348121702956211112272233 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 621455462a04fe62c9ff80d12899216d9d265b37 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (197 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.royalcanin.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'achetermonchien.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.achetermonchat.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.achetermonchien.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wikichat.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wikichien.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wikichat.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'achetermonchat.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wikichien.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adoption.royalcanin.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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