aws-us-east-1a-lms.rbx.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0f:ae:8f:2c:bc:74:df:70:77:19:93:36:33:a2:5f:f9 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=aws-us-east-1a-lms.rbx.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0f:ae:8f:2c:bc:74:df:70:77:19:93:36:33:a2:5f:f9Serial Number (int): 20844783519095743321254129355169357817
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a9:70:6b:78:15:d5:12:d2:f3:36:ab:c1:8e:01:e1:16:eb:a4:8f:05
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 56:5a:8b:c6:d5:f5:d6:01:0a:b6:6c:38:f1:b1:c9:9e:da:4e:d7:85
Fingerprint (sha256): 10:5e:45:4e:7d:1c:e1:d1:80:ce:d3:68:71:42:2d:65:42:c2:be:9b:75:20:04:07:02:d6:d2:5a:8b:04:aa:6f
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate aws-us-east-1a-lms.rbx.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aws-us-east-1a-lms.rbx.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aws-us-east-1a-lms.rbx.com
Other certificates including the domain name rbx.com
(limited to 100 certificates)
github-prod1.rbx.com
dev-confluence-dns-name.rbx.com
codecov.rbx.com
bpo-vpn.rbx.com
xray-stage.rbx.com
*.prod.ml.rbx.com
*.public.rbx.com
trino-airflowdev-os-blue.di.rbx.com
aws-us-east-2a-lms.rbx.com
bpo-vpn.rbx.com
confluence-stage-legacy.rbx.com
anchore-stage.rbx.com
testing.rbx.com
vault-stage.rbx.com
github-dev.rbx.com
*.rbx.com
anchore.rbx.com
ml-platform-prod-us-east-1-1-6-1-serving.prod.ml.rbx.com
github-dev.rbx.com
cdctl-devpoller.rbx.com
events.rbx.com
edge-st3-usw1.rbx.com
*.astro.dev-hluo.dic.rbx.com
github-dev-dr.rbx.com
ml-platform-infra-use1-1-5-3.prod.ml.rbx.com
github-dev-dr.rbx.com
teamcity-test.rbx.com
github-dev-dr.rbx.com
artifactory-stage-aa.rbx.com
aws-eu-west-2a-lms.rbx.com
*.ml-platform-dev-internal.prod.ml.rbx.com
ipe-stage-vault.rbx.com
*.astro.dev-core.dic.rbx.com
*.astro.dev-core.dic.rbx.com
artifactory-dev.rbx.com
ros.rbx.com
github-dev.rbx.com
ghaas-test-url.rbx.com
github-dev.rbx.com
ml-platform-stage-use1-1-5-3-serving.prod.ml.rbx.com
ml-platform-stage-use1-1-5-3.prod.ml.rbx.com
ml-platform-infra-use1-1-5-3-serving.prod.ml.rbx.com
confluence-dev.rbx.com
report.rbx.com
*.prod.ml.rbx.com
bpo-vpn.rbx.com
starburst-trino-etl.di.rbx.com
arti-stage-use2.rbx.com
artifactory-edge1.rbx.com
teamcity-ge-dev.rbx.com
github-dev.rbx.com
knomad-development-sitetest2-us-west-1a.rbx.com
aws-us-west-2b-lms.rbx.com
dev-druid-dc-1.di.rbx.com
edge-stage-usw1.rbx.com
*.artifactory.rbx.com
aws-us-west-2b-lms.rbx.com
github-dev.rbx.com
github-dev.rbx.com
artifactory-edge1.rbx.com
jfmc-stage.rbx.com
aws-us-west-1a-lms.rbx.com
edge-prod-usw1.rbx.com
ros-dev.rbx.com
artifactory-edge1.rbx.com
dev-confluence-dns-name.rbx.com
teamcity-test.rbx.com
artifactory-uswest1.rbx.com
dev-confluence-dns-name.rbx.com
vault-demo.rbx.com
aws-eu-west-2c-lms.rbx.com
discourse.rbx.com
*.astro.dev-sroy.dic.rbx.com
discourse.rbx.com
astro-dev.di.rbx.com
ghe-stage1-new.rbx.com
superset-dev.di.rbx.com
*.public.rbx.com
artifactory-edge1.rbx.com
arti-prod-usw1-1.rbx.com
knomad-development-sitetest3-us-west-1.rbx.com
aws-us-east-1b-lms.rbx.com
aws-us-east-1c-lms.rbx.com
staging.noteable.ml.rbx.com
core.airflow2.di.rbx.com
edge-st3-use2.rbx.com
aws-eu-central-1a-lms.rbx.com
jwks-dev.lca.rbx.com
ros-dev.rbx.com
aws-us-east-1a-lms.rbx.com
starburst-green.di.rbx.com
aws-us-east-2a-lms.rbx.com
tfe.rbx.com
aws-eu-west-2a-lms.rbx.com
arti-stage-usw1.rbx.com
aws-ap-northeast-1a-lms.rbx.com
*.data-platform.airflow2.di.rbx.com
fossa-stage.rbx.com
dev-confluence-dns-name.rbx.com
ros-stg.rbx.com
dev-confluence-dns-name.rbx.com
codecov.rbx.com
bpo-vpn.rbx.com
xray-stage.rbx.com
*.prod.ml.rbx.com
*.public.rbx.com
trino-airflowdev-os-blue.di.rbx.com
aws-us-east-2a-lms.rbx.com
bpo-vpn.rbx.com
confluence-stage-legacy.rbx.com
anchore-stage.rbx.com
testing.rbx.com
vault-stage.rbx.com
github-dev.rbx.com
*.rbx.com
anchore.rbx.com
ml-platform-prod-us-east-1-1-6-1-serving.prod.ml.rbx.com
github-dev.rbx.com
cdctl-devpoller.rbx.com
events.rbx.com
edge-st3-usw1.rbx.com
*.astro.dev-hluo.dic.rbx.com
github-dev-dr.rbx.com
ml-platform-infra-use1-1-5-3.prod.ml.rbx.com
github-dev-dr.rbx.com
teamcity-test.rbx.com
github-dev-dr.rbx.com
artifactory-stage-aa.rbx.com
aws-eu-west-2a-lms.rbx.com
*.ml-platform-dev-internal.prod.ml.rbx.com
ipe-stage-vault.rbx.com
*.astro.dev-core.dic.rbx.com
*.astro.dev-core.dic.rbx.com
artifactory-dev.rbx.com
ros.rbx.com
github-dev.rbx.com
ghaas-test-url.rbx.com
github-dev.rbx.com
ml-platform-stage-use1-1-5-3-serving.prod.ml.rbx.com
ml-platform-stage-use1-1-5-3.prod.ml.rbx.com
ml-platform-infra-use1-1-5-3-serving.prod.ml.rbx.com
confluence-dev.rbx.com
report.rbx.com
*.prod.ml.rbx.com
bpo-vpn.rbx.com
starburst-trino-etl.di.rbx.com
arti-stage-use2.rbx.com
artifactory-edge1.rbx.com
teamcity-ge-dev.rbx.com
github-dev.rbx.com
knomad-development-sitetest2-us-west-1a.rbx.com
aws-us-west-2b-lms.rbx.com
dev-druid-dc-1.di.rbx.com
edge-stage-usw1.rbx.com
*.artifactory.rbx.com
aws-us-west-2b-lms.rbx.com
github-dev.rbx.com
github-dev.rbx.com
artifactory-edge1.rbx.com
jfmc-stage.rbx.com
aws-us-west-1a-lms.rbx.com
edge-prod-usw1.rbx.com
ros-dev.rbx.com
artifactory-edge1.rbx.com
dev-confluence-dns-name.rbx.com
teamcity-test.rbx.com
artifactory-uswest1.rbx.com
dev-confluence-dns-name.rbx.com
vault-demo.rbx.com
aws-eu-west-2c-lms.rbx.com
discourse.rbx.com
*.astro.dev-sroy.dic.rbx.com
discourse.rbx.com
astro-dev.di.rbx.com
ghe-stage1-new.rbx.com
superset-dev.di.rbx.com
*.public.rbx.com
artifactory-edge1.rbx.com
arti-prod-usw1-1.rbx.com
knomad-development-sitetest3-us-west-1.rbx.com
aws-us-east-1b-lms.rbx.com
aws-us-east-1c-lms.rbx.com
staging.noteable.ml.rbx.com
core.airflow2.di.rbx.com
edge-st3-use2.rbx.com
aws-eu-central-1a-lms.rbx.com
jwks-dev.lca.rbx.com
ros-dev.rbx.com
aws-us-east-1a-lms.rbx.com
starburst-green.di.rbx.com
aws-us-east-2a-lms.rbx.com
tfe.rbx.com
aws-eu-west-2a-lms.rbx.com
arti-stage-usw1.rbx.com
aws-ap-northeast-1a-lms.rbx.com
*.data-platform.airflow2.di.rbx.com
fossa-stage.rbx.com
dev-confluence-dns-name.rbx.com
ros-stg.rbx.com
Certificate
The complete raw certificate details for aws-us-east-1a-lms.rbx.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3jCCBMagAwIBAgIQD66PLLx033B3GZM2M6Jf+TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDEyMjAwMDAwMFoXDTI1MDIxOTIzNTk1OVowJTEj MCEGA1UEAxMaYXdzLXVzLWVhc3QtMWEtbG1zLnJieC5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDI4aP6kd20EviwC+FYorvJF9mkK1cuv02KRzuC JznJEZvYiLdgeU0uV2FJUxWMcT3Ird4+P77rAZ7RLPNfbcW+TyHQv3UoyEfxZ7Zi KCeTjQksbJDM/sls651WaabdZkWIRLvQyiesRzPWs6C0xslkRlOkHdm0hS8ClMUh wfzCFRgKVXJRJguyCy4xU9b80Vc0yCrlpH5YWH3Xsb+Tjbca1EZ11qU5WEoEQdbi WDQxRVF51m2ZZ4QxUVdFleaGYauJLiH0kPt/n4r2tr9Xmz6bsnrGJjE84ag8fjru bAOtFBYVhhLokfAHUUhS1u7FAfS8Tvko/OMSNLtVPtkSpG+TAgMBAAGjggLxMIIC 7TAfBgNVHSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUqXBr eBXVEtLzNqvBjgHhFuukjwUwJQYDVR0RBB4wHIIaYXdzLXVzLWVhc3QtMWEtbG1z LnJieC5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipo dHRwOi8vY3JsLnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jcmwwdQYIKwYB BQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMi5hbWF6b250 cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDIuYW1hem9udHJ1 c3QuY29tL3IybTAyLmNlcjAMBgNVHRMBAf8EAjAAMIIBfAYKKwYBBAHWeQIEAgSC AWwEggFoAWYAdQBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAY0w 3hQZAAAEAwBGMEQCIFt64rH81NxujiOm5whFsE+G14Wz2j7XQWaNguRFpQZQAiAR fuezV4kwzENnLyqIG6vze7FgQ+SSkSmBWuG9JVoexAB1AH1ZHhLheCp7HGFnfF79 +NCHXBSgTpWeuQMv2Q6MLnm4AAABjTDeFAgAAAQDAEYwRAIgEMlSnz2BZFmaO7AQ 68a0dhW7xpAcDFnCNAMPMxZ2XlkCIHF+Cr3HkUIockFowBxD18RzeCFcZI6m0lNx MV/6dmmgAHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGNMN4U NgAABAMARzBFAiBbf3COstmqB5HM53sVa8gbqLJ5ZUdrjWsHOQ87234unAIhAIXp uVgn5WcMcNL2rwpmufHL4eQYZGKHZXpKgLSl835YMA0GCSqGSIb3DQEBCwUAA4IB AQCcgpbWoyhkGaJ7MrL5yVLANJI0OAm+W+fdPlr5A5UrI4fS/+zjJHAPvnjzw+o/ rqrPU8fTorSKwoQzcyJFnS6TM2dbE7dlK2oJUNnH5o7mw22Pp3jKhx6+OJUL7t9W mHwaJBkCmHcbtOccKqjW5aV3EKakvMMiCozjVTBmcigJXvp7hLAwMmQ4tD5U/T+P C6gyEWuBl6lBwsQaqMGx+yXJEgAUjqRw0F4JrPSXd1fexQG1PoCq5q8HQP3Tkj75 HC4RKGvkMO7bnaf9PW44uXQ2R2kbPNcy7dXiWf4TprX1HK6FfZ8kIfvkr/yaOD7u IZi9dDVPHgS7h1cX8YIVK0iY -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyOGj+pHdtBL4sAvhWKK7 yRfZpCtXLr9Nikc7gic5yRGb2Ii3YHlNLldhSVMVjHE9yK3ePj++6wGe0SzzX23F vk8h0L91KMhH8We2Yignk40JLGyQzP7JbOudVmmm3WZFiES70MonrEcz1rOgtMbJ ZEZTpB3ZtIUvApTFIcH8whUYClVyUSYLsgsuMVPW/NFXNMgq5aR+WFh917G/k423 GtRGddalOVhKBEHW4lg0MUVRedZtmWeEMVFXRZXmhmGriS4h9JD7f5+K9ra/V5s+ m7J6xiYxPOGoPH467mwDrRQWFYYS6JHwB1FIUtbuxQH0vE75KPzjEjS7VT7ZEqRv kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20844783519095743321254129355169357817 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aws-us-east-1a-lms.rbx.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25358928491538180937862025342241716960026768165930810564475149622061422829456218079317544228439275437548839976535730287044897678609704863337098043941907391219524520855633339951432016407798649646776523197220489321092001664397908690098225305797972420673190691228269911345134344635321958376452775664252598224254407150654422550662385043117234277841948750861570266010284323319115750849488391795127762911169193192002805158443318898851030808356053350692837382195869938094894184663481324869174817424003763319488118067846113403935123364884888622292723922330958874334544087195724945480452469645021352017817665336076104903192467 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a9706b7815d512d2f336abc18e01e116eba48f05 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aws-us-east-1a-lms.rbx.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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