plag.prd.apps.rnp.br
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 04:d4:c9:c1:7d:11:cd:a1:d9:9c:e7:96:fa:3c:b5:4a was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=plag.prd.apps.rnp.br
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:d4:c9:c1:7d:11:cd:a1:d9:9c:e7:96:fa:3c:b5:4aSerial Number (int): 6421771011221895224973091483707815242
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: ce:78:02:0f:50:a2:2e:ed:02:92:83:b9:f6:17:a0:67:6e:d7:29:6a
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): bd:12:b6:fe:35:7e:79:7b:a3:86:6b:89:d3:63:fa:33:52:5e:5a:2f
Fingerprint (sha256): 10:21:94:ad:30:d7:88:b7:86:d8:f8:f6:53:ff:8b:27:99:7d:35:36:a9:da:7d:74:ed:e9:17:0f:ef:ba:45:15
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate plag.prd.apps.rnp.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for plag.prd.apps.rnp.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
plag.prd.apps.rnp.br
*.plag.prd.apps.rnp.br
*.plag.prd.apps.rnp.br
Other certificates including the domain name rnp.br
(limited to 100 certificates)
*.teste16.tst.apps.rnp.br
cert00047-azurecdn.akamaized.net
lcp-drm.prd.app.rnp.br
cert00047-azurecdn.akamaized.net
viaipe.rnp.br
*.pop-mt.rnp.br
homolog.perfil.rnp.br
marker-eduroam.rnp.br
*.dev.mconf.rnp.br
cert00047-azurecdn.akamaized.net
hipchat-pratico.rnp.br
hmg.splunk.rnp.br
atendimento.rnp.br
www.pop-pi.rnp.br
filesender.rnp.br
va05-cps.rnp.br
*.ebc.rnp.br
splunk.rnp.br
nuvem.esr.rnp.br
mp.mconf.rnp.br
*.teste17.tst.apps.rnp.br
p1.icpedu.rnp.br
*.pop-ba.rnp.br
*.cafe.rnp.br
viaipecoletor-rn.rnp.br
*.pop-pr.rnp.br
*.repositorio.rnp.br
cert00047-azurecdn.akamaized.net
*.fies.hmg.apps.rnp.br
portal-fibre.cafeexpresso.rnp.br
git.pop-pi.rnp.br
dados.rnp.br
*.curadoria-homolog.rnp.br
centreon-cdc-pe.rnp.br
*.pop-pe.rnp.br
appstarter-exemplo.tst.apps.rnp.br
*.intbr.loadtest.apps.rnp.br
*.cafeexpresso.rnp.br
flow.hmg-nasnuvens.rnp.br
*.pop-al.rnp.br
cert00047-azurecdn.akamaized.net
*.pop-ce.rnp.br
*.pop-mg.rnp.br
mconf.rnp.br
*.cipo.rnp.br
cert00047-azurecdn.akamaized.net
centreon-ac.rnp.br
portal.iguassu.rnp.br
*.nasnuvens.gsc-tst.rnp.br
cert00047-azurecdn.akamaized.net
api.ciencianaescola.dev.apps.kloud.rnp.br
redecinema.rnp.br
*.ceo.rnp.br
hmg-git.rnp.br
*.teste16.prd.apps.rnp.br
*.h.mconf.rnp.br
*.impactaclima-hmg.rnp.br
monitoramento-hml.rnp.br
mail.pop-pi.rnp.br
edge-ac-01.eduplay.rnp.br
*.pop-ac.rnp.br
intbr.tst.apps.rnp.br
atestoweb-api.hmg.apps.kloud.rnp.br
gti-df-senhasegura-01.rnp.br
api.cep.tst.apps.kloud.rnp.br
*.intbr.tst.apps.rnp.br
hmg-idp-edu-v3.rnp.br
idp.rnp.br
centreon-mg.rnp.br
plag.prd.apps.rnp.br
diplomadigital.rnp.br
integra.rnp.br
cert00047-azurecdn.akamaized.net
plataformafor.tst.apps.rnp.br
encsirts.rnp.br
cloud.pop-pi.rnp.br
cert00047-azurecdn.akamaized.net
viaipecoletor-am.rnp.br
centreon-rr.rnp.br
listas.rnp.br
*.pop-mg.rnp.br
ustore1.rnp.br
mail.pop-pi.rnp.br
*.nasnuvens.gsc-hmg.rnp.br
evault02.rnp.br
cert00047-azurecdn.akamaized.net
rocketchat.rnp.br
vcenter-infras-locais.rnp.br
cert00047-azurecdn.akamaized.net
cadvisor.prometheus.pop-mg.rnp.br
cert00047-azurecdn.akamaized.net
graylog.pop-ma.rnp.br
cert00047-azurecdn.akamaized.net
intbr.prd.apps.rnp.br
homolog-icd.rnp.br
ustore1.rnp.br
*.filesender.rnp.br
www.pop-pi.rnp.br
vcenter-np.rnp.br
cafeexpresso.rnp.br
cert00047-azurecdn.akamaized.net
lcp-drm.prd.app.rnp.br
cert00047-azurecdn.akamaized.net
viaipe.rnp.br
*.pop-mt.rnp.br
homolog.perfil.rnp.br
marker-eduroam.rnp.br
*.dev.mconf.rnp.br
cert00047-azurecdn.akamaized.net
hipchat-pratico.rnp.br
hmg.splunk.rnp.br
atendimento.rnp.br
www.pop-pi.rnp.br
filesender.rnp.br
va05-cps.rnp.br
*.ebc.rnp.br
splunk.rnp.br
nuvem.esr.rnp.br
mp.mconf.rnp.br
*.teste17.tst.apps.rnp.br
p1.icpedu.rnp.br
*.pop-ba.rnp.br
*.cafe.rnp.br
viaipecoletor-rn.rnp.br
*.pop-pr.rnp.br
*.repositorio.rnp.br
cert00047-azurecdn.akamaized.net
*.fies.hmg.apps.rnp.br
portal-fibre.cafeexpresso.rnp.br
git.pop-pi.rnp.br
dados.rnp.br
*.curadoria-homolog.rnp.br
centreon-cdc-pe.rnp.br
*.pop-pe.rnp.br
appstarter-exemplo.tst.apps.rnp.br
*.intbr.loadtest.apps.rnp.br
*.cafeexpresso.rnp.br
flow.hmg-nasnuvens.rnp.br
*.pop-al.rnp.br
cert00047-azurecdn.akamaized.net
*.pop-ce.rnp.br
*.pop-mg.rnp.br
mconf.rnp.br
*.cipo.rnp.br
cert00047-azurecdn.akamaized.net
centreon-ac.rnp.br
portal.iguassu.rnp.br
*.nasnuvens.gsc-tst.rnp.br
cert00047-azurecdn.akamaized.net
api.ciencianaescola.dev.apps.kloud.rnp.br
redecinema.rnp.br
*.ceo.rnp.br
hmg-git.rnp.br
*.teste16.prd.apps.rnp.br
*.h.mconf.rnp.br
*.impactaclima-hmg.rnp.br
monitoramento-hml.rnp.br
mail.pop-pi.rnp.br
edge-ac-01.eduplay.rnp.br
*.pop-ac.rnp.br
intbr.tst.apps.rnp.br
atestoweb-api.hmg.apps.kloud.rnp.br
gti-df-senhasegura-01.rnp.br
api.cep.tst.apps.kloud.rnp.br
*.intbr.tst.apps.rnp.br
hmg-idp-edu-v3.rnp.br
idp.rnp.br
centreon-mg.rnp.br
plag.prd.apps.rnp.br
diplomadigital.rnp.br
integra.rnp.br
cert00047-azurecdn.akamaized.net
plataformafor.tst.apps.rnp.br
encsirts.rnp.br
cloud.pop-pi.rnp.br
cert00047-azurecdn.akamaized.net
viaipecoletor-am.rnp.br
centreon-rr.rnp.br
listas.rnp.br
*.pop-mg.rnp.br
ustore1.rnp.br
mail.pop-pi.rnp.br
*.nasnuvens.gsc-hmg.rnp.br
evault02.rnp.br
cert00047-azurecdn.akamaized.net
rocketchat.rnp.br
vcenter-infras-locais.rnp.br
cert00047-azurecdn.akamaized.net
cadvisor.prometheus.pop-mg.rnp.br
cert00047-azurecdn.akamaized.net
graylog.pop-ma.rnp.br
cert00047-azurecdn.akamaized.net
intbr.prd.apps.rnp.br
homolog-icd.rnp.br
ustore1.rnp.br
*.filesender.rnp.br
www.pop-pi.rnp.br
vcenter-np.rnp.br
cafeexpresso.rnp.br
Certificate
The complete raw certificate details for plag.prd.apps.rnp.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6zCCBNOgAwIBAgIQBNTJwX0RzaHZnOeW+jy1SjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIwMzAwMDAwMFoXDTI1MDEwMTIzNTk1OVowHzEd MBsGA1UEAxMUcGxhZy5wcmQuYXBwcy5ybnAuYnIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9tGBKH0REssLnfO/u4QJpXeZrbjzrfPKD4tAn7qfH1SSH VU7JQx0RIOGiAccn2I9wTAj++SHRr1+amHlekT4sI6TAgCAV0sPEEGm1IWsybGib hBKNNoNXt3JmJmmluzXSssFDRME1Rf2D8AWiaYo9n9sQxDIjE2RxCEIOG3LKxAVb 0bQFu0nWrsXmNP2hYzF8Tl9b9W8yzbFvumvL67Aw0O0q6vlLIOYb0d8YK5Dw2v5Y HudJeVUEjPP3T5q+ClWhFeWWAUQQpFPdtRKdZ4DUpHP9gYqmgsRgy/tJtOM12xNr jdmAknLrhNKW9y0hGozgMSxYFtsBymJMeGYeWRFVAgMBAAGjggMEMIIDADAfBgNV HSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUzngCD1CiLu0C koO59hegZ27XKWowNwYDVR0RBDAwLoIUcGxhZy5wcmQuYXBwcy5ybnAuYnKCFiou cGxhZy5wcmQuYXBwcy5ybnAuYnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8E NDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0w Mi5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5y Mm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJt MDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMBAf8EAjAAMIIBfQYK KwYBBAHWeQIEAgSCAW0EggFpAWcAdgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx +mSxYpo53wAAAYwuAVSEAAAEAwBHMEUCIQC/6lRenmnUakylfMMHmBXVDy117aAI 1FyJz9yjoMXPTwIgRHnMw0YbqYKQtBFvhtzeBEcUaN82p5+duuqfHD0qhO8AdQA/ F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAYwuAVTIAAAEAwBGMEQC IGzBzT+aF36X4WAbT4BaDDeBhqC7NJ3njwsYQQ1tOYlzAiBpxn25j8Zo4QVbs7sW rT6g91nJUPihgv+300IEEx2KNgB2AH1ZHhLheCp7HGFnfF79+NCHXBSgTpWeuQMv 2Q6MLnm4AAABjC4BVLMAAAQDAEcwRQIgcnUfhpHgQP0UtVhfiFvXE7SNrxfa9Q1B HHebMV9JYp8CIQD5ZRmHqeaupNvfmQOGFn5x8wqErmKdKc7Xqd9aIOVQgTANBgkq hkiG9w0BAQsFAAOCAQEARPqmvndZBvFloH7AcW26P9pQJ26+m7hDNtZPJiQ935X7 BL7UGHBE9FCtiQROsFY0jyBsn0icz6JkFGBU6Es+GuyOA8qEcOKbhWWKX53dePVA jBUq3laQiG5DGAv79vFxk9BMLjGhmsd0pXakui//o8YUaZmzJVEOL4AQRl8HJKzL xhCWjYWPUs/MeIeyU8DB6dcWvHw7VS7lN9dgvNCUr81eXwsS0ZEGeixfFEhrsPkM aKlv1y3hnLFIsp0qzYl4fFsk22Vv7oyq084idt9afm7g8QHl8qtRgTjHmebUje0K DdY4aiiZ+BppML3+oc9jdswKET/Tf9hI9WdMc9R54w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbRgSh9ERLLC53zv7uEC aV3ma24863zyg+LQJ+6nx9Ukh1VOyUMdESDhogHHJ9iPcEwI/vkh0a9fmph5XpE+ LCOkwIAgFdLDxBBptSFrMmxom4QSjTaDV7dyZiZppbs10rLBQ0TBNUX9g/AFommK PZ/bEMQyIxNkcQhCDhtyysQFW9G0BbtJ1q7F5jT9oWMxfE5fW/VvMs2xb7pry+uw MNDtKur5SyDmG9HfGCuQ8Nr+WB7nSXlVBIzz90+avgpVoRXllgFEEKRT3bUSnWeA 1KRz/YGKpoLEYMv7SbTjNdsTa43ZgJJy64TSlvctIRqM4DEsWBbbAcpiTHhmHlkR VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6421771011221895224973091483707815242 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'plag.prd.apps.rnp.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23947986423880184337993188575165463695644491764250364109494241862343175739231049863809925355516288006395593227538810140154418603403844313618654027213782652074799261891242200058424153656920417036495590575730996504639542415778575608794194737348385416412867732479231132131104894109331842103174060414480167289165961180566065768235957738373013380972816016383311824810674232576858269306429002507211627495671043261945776607868810920801561947692331968032096097015005248206128840658415157893800516140470448293189022123235355529789430297987553367557604345368713833295658947645777409263457257251533985136317622784901997580063061 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ce78020f50a22eed029283b9f617a0676ed7296a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plag.prd.apps.rnp.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.plag.prd.apps.rnp.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 01670076004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018c2e0154840000040300473045022100bfea545e9e69d46a4ca57cc3079815d50f2d75eda008d45c89cfdca3a0c5cf4f02204479ccc3461ba98290b4116f86dcde04471468df36a79f9dbaea9f1c3d2a84ef0075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018c2e0154c8000004030046304402206cc1cd3f9a177e97e1601b4f805a0c378186a0bb349de78f0b18410d6d398973022069c67db98fc668e1055bb3bb16ad3ea0f759c950f8a182ffb7d34204131d8a360076007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000018c2e0154b30000040300473045022072751f8691e040fd14b5585f885bd713b48daf17daf50d411c779b315f49629f022100f9651987a9e6aea4dbdf990386167e71f30a84ae629d29ced7a9df5a20e55081 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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