*.prod.oneoutdoor.egov.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 08:ac:da:5e:e5:89:8c:6a:dd:b9:8e:bc:d3:36:65:6c was issued on by Amazon.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.prod.oneoutdoor.egov.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 08:ac:da:5e:e5:89:8c:6a:dd:b9:8e:bc:d3:36:65:6cSerial Number (int): 11531328109726542929352512737954391404
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 84:ca:99:67:16:49:bb:17:82:61:d4:08:63:83:30:a1:f4:bf:04:98
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 45:bb:1d:26:d1:54:59:10:01:d6:76:ac:c4:f6:68:3b:1e:51:ae:18
Fingerprint (sha256): 0e:3c:a9:15:82:30:af:af:39:d3:48:11:6e:b7:36:d4:79:04:c2:0f:18:03:58:61:6f:65:e0:2d:02:be:79:1b
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate *.prod.oneoutdoor.egov.com
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.prod.oneoutdoor.egov.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.prod.oneoutdoor.egov.com
rio.ri.gov
*.huntfish.pa.gov
oneoutdoor.egov.com
exploremoreil.com
huntfish.pa.gov
prod.oneoutdoor.egov.com
*.rio.ri.gov
*.exploremoreil.com
*.oneoutdoor.egov.com
rio.ri.gov
*.huntfish.pa.gov
oneoutdoor.egov.com
exploremoreil.com
huntfish.pa.gov
prod.oneoutdoor.egov.com
*.rio.ri.gov
*.exploremoreil.com
*.oneoutdoor.egov.com
Other certificates including the domain name egov.com
(limited to 100 certificates)
statuspage.io
cwp.status.symantec.com
statuspage.io
maintenance.blackbaud.com
statuspage.io
statuspage.io
*.test.oneoutdoor.egov.com
statuspage.io
statuspage.io
statuspage.io
maintenance.blackbaud.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
maintenance.blackbaud.com
*.qa.oneoutdoor.egov.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
cwp.status.symantec.com
statuspage.io
statuspage.io
statuspage.io
mail.egov.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
maintenance.blackbaud.com
*.telegov.egov.com
statuspage.io
statuspage.io
*.ct.egov.com
nws.corp.egov.com
webext.egov.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
*.oneoutdoor.egov.com
statuspage.io
statuspage.io
maintenance.blackbaud.com
*.pa.egov.com
maintenance.blackbaud.com
maintenance.blackbaud.com
statuspage.io
stg-auth.abetter.md.egov.com
*.prod.oneoutdoor.egov.com
*.uat.oneoutdoor.egov.com
statuspage.io
statuspage.io
statuspage.io
cwp.status.symantec.com
statuspage.io
statuspage.io
nws.ut.egov.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
maintenance.blackbaud.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
maintenance.blackbaud.com
statuspage.io
maintenance.blackbaud.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
*.oneoutdoor.egov.com
cwp.status.symantec.com
statuspage.io
maintenance.blackbaud.com
statuspage.io
statuspage.io
*.test.oneoutdoor.egov.com
statuspage.io
statuspage.io
statuspage.io
maintenance.blackbaud.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
maintenance.blackbaud.com
*.qa.oneoutdoor.egov.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
cwp.status.symantec.com
statuspage.io
statuspage.io
statuspage.io
mail.egov.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
maintenance.blackbaud.com
*.telegov.egov.com
statuspage.io
statuspage.io
*.ct.egov.com
nws.corp.egov.com
webext.egov.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
*.oneoutdoor.egov.com
statuspage.io
statuspage.io
maintenance.blackbaud.com
*.pa.egov.com
maintenance.blackbaud.com
maintenance.blackbaud.com
statuspage.io
stg-auth.abetter.md.egov.com
*.prod.oneoutdoor.egov.com
*.uat.oneoutdoor.egov.com
statuspage.io
statuspage.io
statuspage.io
cwp.status.symantec.com
statuspage.io
statuspage.io
nws.ut.egov.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
maintenance.blackbaud.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
maintenance.blackbaud.com
statuspage.io
maintenance.blackbaud.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
*.oneoutdoor.egov.com
Certificate
The complete raw certificate details for *.prod.oneoutdoor.egov.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGkDCCBXigAwIBAgIQCKzaXuWJjGrduY680zZlbDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDUwODAwMDAwMFoXDTI0MDYwNjIzNTk1OVowJTEj MCEGA1UEAwwaKi5wcm9kLm9uZW91dGRvb3IuZWdvdi5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDRZfChte5lJUzPf+5dymsUugvf/dewBeoCCMsX UHtF+ZS55WPR2YT08Jm2/hc+kwbnc0x4Ln/A47YJMmnNaWEg6D264BnUjhoZWyHw gialo7afyfSWNPR/0BSdXS6aLhjs72T6EodMuQmoF8q4bBGZChRfa3aKUgZvxzeQ bCTSkIYM3zf5FhVk91JUiJzfDJAnIpGcSHePNk+Goqj3s7gSFcVmNHzGo/kjLqKf AOaQEc4RYjyZuPbudakt0Pat607xDsKuBRdP3KQn4qRkQbDkj1smWZeAzXUD84JM FcDtP5gz7y+r4WBijMxdiWcGTp6DklOS32Sou+mmPE6v07KfAgMBAAGjggOjMIID nzAfBgNVHSMEGDAWgBSBuA5jiokSGOX6OztQlZ/m5ZAThTAdBgNVHQ4EFgQUhMqZ ZxZJuxeCYdQIY4MwofS/BJgwgdMGA1UdEQSByzCByIIaKi5wcm9kLm9uZW91dGRv b3IuZWdvdi5jb22CCnJpby5yaS5nb3aCESouaHVudGZpc2gucGEuZ292ghNvbmVv dXRkb29yLmVnb3YuY29tghFleHBsb3JlbW9yZWlsLmNvbYIPaHVudGZpc2gucGEu Z292ghhwcm9kLm9uZW91dGRvb3IuZWdvdi5jb22CDCoucmlvLnJpLmdvdoITKi5l eHBsb3JlbW9yZWlsLmNvbYIVKi5vbmVvdXRkb29yLmVnb3YuY29tMA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQw MjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMS5hbWF6b250cnVzdC5jb20vcjJtMDEu Y3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEF BQcwAYYhaHR0cDovL29jc3AucjJtMDEuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUF BzAChipodHRwOi8vY3J0LnIybTAxLmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jZXIw DAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHYA7s3QZNXb Gs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGH+d7AyQAABAMARzBFAiEAntsg 16csAYrNXMFI0DJ/7syX6bCarXioZb9KWP7Zg5ICIHBEuoRdMjsm/uewNA6WKgWu DM0TCsxCwrlSV1RqqRl1AHYAc9meiRtMlnigIH1HneayxhzQUV5xGSqMa4AQesF3 crUAAAGH+d7BLQAABAMARzBFAiAiHkojyD7nwFQXt6cqMV6DhnEXHCA4J0bruwie zXBHpgIhAMJfmi1frGgstUhdqr+11ihEmMS2igiJEG8FBqZUweyXAHcASLDja9qm RzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGH+d7BBgAABAMASDBGAiEAtFrc xBk5ytoXqKQ+IePr+OzD/kqoOWcSmqTpcIK3iZgCIQC4pMkeHw5BkklXw8WJ6RvQ AeGYmBPQq1A+R4HGCvc6bTANBgkqhkiG9w0BAQsFAAOCAQEAMDe40QY5zmzgxa9R g0edZH3fa4L/zNZ+4nYE7hWOqJfDBJHDcwS+1CQ8Y1Eq0lNfAtns2mWcDnreLzgV sKbhXXzIQVXNy4Mjinc4kTkFVbNfoM15EYBUT9+OlmBdMt5ylOsLZC1Zuj+NqZoP 3AJt6Xaq8ffA+gwk6o3HwNAKAulUjmlakwN0B+fJ1pYtKEINpdCgoLFU7BPmujPU jo5L51nqqca0rr4ZvIowqysQ/a8UK9guYE+FYLRC093+eZ5iuODrXOoZW4ZKpYxy P16QXVlbu+8MIupgZUEuMHbwZdK2F0j+sQyjRCSlLJu1nSKVhUjlCsBPjK3kVTvy bV8ukA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WXwobXuZSVMz3/uXcpr FLoL3/3XsAXqAgjLF1B7RfmUueVj0dmE9PCZtv4XPpMG53NMeC5/wOO2CTJpzWlh IOg9uuAZ1I4aGVsh8IImpaO2n8n0ljT0f9AUnV0umi4Y7O9k+hKHTLkJqBfKuGwR mQoUX2t2ilIGb8c3kGwk0pCGDN83+RYVZPdSVIic3wyQJyKRnEh3jzZPhqKo97O4 EhXFZjR8xqP5Iy6inwDmkBHOEWI8mbj27nWpLdD2retO8Q7CrgUXT9ykJ+KkZEGw 5I9bJlmXgM11A/OCTBXA7T+YM+8vq+FgYozMXYlnBk6eg5JTkt9kqLvppjxOr9Oy nwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11531328109726542929352512737954391404 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.prod.oneoutdoor.egov.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26434074209416523197559972448908188672269378017682982854422741300656938393877969013979341525470012501118762577126263920099194117837519268172360606289032902132360642048940167367852966320833577314042059912671373380473306035297662523280081750514157496459407705759366843438309707344459712179553996897992632537637073019604884655811391105637058352238628238748104733515883065929947856020857990606807405274700761878229874078277085704918607766844511066334630394547446602734787991374530767021385378149290173663988144322288261316442500543672318941196513560390440480740595344035829115080019408978302742875203353806107379854717599 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 84ca99671649bb178261d408638330a1f4bf0498 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (203 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod.oneoutdoor.egov.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rio.ri.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.huntfish.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oneoutdoor.egov.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exploremoreil.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'huntfish.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod.oneoutdoor.egov.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rio.ri.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.exploremoreil.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.oneoutdoor.egov.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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