*.makewonder.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 06:c0:e8:f3:86:a4:d6:d0:d7:38:06:f0:99:9f:01:4b was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.makewonder.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:c0:e8:f3:86:a4:d6:d0:d7:38:06:f0:99:9f:01:4bSerial Number (int): 8977013784689989885208381427095109963
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 3b:88:aa:f5:31:08:62:93:12:b6:62:99:36:6f:c2:da:e5:53:8d:b1
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 72:c3:16:bf:48:54:c5:6f:fa:c2:13:cb:32:c8:1e:76:e8:b0:24:a7
Fingerprint (sha256): 12:44:0b:8f:ea:8a:fd:12:fc:3b:b6:01:da:90:b0:6f:5c:16:a7:ef:c8:6a:dc:5a:2e:4f:50:58:50:d5:da:62
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate *.makewonder.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.makewonder.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.makewonder.com
*.alpha.makewonder.com
*.alpha.makewonder.com
Other certificates including the domain name makewonder.com
(limited to 100 certificates)
store.makewonder.com
store.makewonder.com
*.makewonder.com
developer.makewonder.com
play.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
j.ssl.shopify.com
prod.20.slot.cdn.salesforce-communities.com
store.makewonder.com
k.ssl.shopify.com
*.zulu.makewonder.com
www.starpass.io
alpha-store.makewonder.com
store.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
summer.makewonder.com
store.makewonder.com
j.ssl.shopify.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
content.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
j.ssl.shopify.com
prod.20.slot.cdn.salesforce-communities.com
*.makewonder.com
play.makewonder.com
www.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
help.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
k.ssl.shopify.com
store.makewonder.com
alpha-store.makewonder.com
*.makewonder.com
blog.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
*.makewonder.com
store.makewonder.com
store.makewonder.com
store.makewonder.com
kr.makewonder.com
*.makewonder.com
store.makewonder.com
*.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
store.makewonder.com
j.ssl.shopify.com
prod.20.slot.cdn.salesforce-communities.com
alpha-store.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
blog.makewonder.com
play.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
blog.makewonder.com
k.ssl.shopify.com
uk.makewonder.com
www.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
uk.makewonder.com
www.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
store.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
summer.makewonder.com
*.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
uk.makewonder.com
k.ssl.shopify.com
*.makewonder.com
kr.makewonder.com
store.makewonder.com
play.makewonder.com
uk.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
makewonder.com
uk.makewonder.com
*.makewonder.com
www.makewonder.com
k.ssl.shopify.com
play.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
store.makewonder.com
alpha-www.makewonder.com
www.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
*.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
k.ssl.shopify.com
j.ssl.shopify.com
developer.makewonder.com
*.zulu.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
j.ssl.shopify.com
store.makewonder.com
*.makewonder.com
developer.makewonder.com
play.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
j.ssl.shopify.com
prod.20.slot.cdn.salesforce-communities.com
store.makewonder.com
k.ssl.shopify.com
*.zulu.makewonder.com
www.starpass.io
alpha-store.makewonder.com
store.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
summer.makewonder.com
store.makewonder.com
j.ssl.shopify.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
content.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
j.ssl.shopify.com
prod.20.slot.cdn.salesforce-communities.com
*.makewonder.com
play.makewonder.com
www.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
help.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
k.ssl.shopify.com
store.makewonder.com
alpha-store.makewonder.com
*.makewonder.com
blog.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
*.makewonder.com
store.makewonder.com
store.makewonder.com
store.makewonder.com
kr.makewonder.com
*.makewonder.com
store.makewonder.com
*.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
store.makewonder.com
j.ssl.shopify.com
prod.20.slot.cdn.salesforce-communities.com
alpha-store.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
blog.makewonder.com
play.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
blog.makewonder.com
k.ssl.shopify.com
uk.makewonder.com
www.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
uk.makewonder.com
www.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
store.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
summer.makewonder.com
*.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
uk.makewonder.com
k.ssl.shopify.com
*.makewonder.com
kr.makewonder.com
store.makewonder.com
play.makewonder.com
uk.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
makewonder.com
uk.makewonder.com
*.makewonder.com
www.makewonder.com
k.ssl.shopify.com
play.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
store.makewonder.com
alpha-www.makewonder.com
www.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
*.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
k.ssl.shopify.com
j.ssl.shopify.com
developer.makewonder.com
*.zulu.makewonder.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
prod.20.slot.cdn.salesforce-communities.com
j.ssl.shopify.com
Certificate
The complete raw certificate details for *.makewonder.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5jCCBM6gAwIBAgIQBsDo84ak1tDXOAbwmZ8BSzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTEyMjAwMDAwMFoXDTI0MTIyMDIzNTk1OVowGzEZ MBcGA1UEAwwQKi5tYWtld29uZGVyLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANV1apdMhJ/WnAAhiObZykAtjl03DrsBpxow9EaOxTFkpOYKdQn0 MbyH2ryzWaJ+ZiI8ElXh4JgAAQzM2Ku07BntPdiRIwQm+HZWPWERq8yWzi+KEc6n THurm6ecAB8OEy8fPend0GJmrBYCLBjVhojl6ARmY5QojKjO6V9xUXtDXozBU2EJ 1Sdf3E294AQb5xQMaXS/3NBEGl42r7Mc3Idw1TZVO7fL/hC7/iItiRUr+7l8aSpT ula5Tpb5MYi1Z9arTJWaU1yMaEl1UVuH0J+eDEWNmRp6B6JuBz4zTzYmQQRg2T52 +6Oc5UHfsylRxubA0NB5nBjiiyOuj/+IYDkCAwEAAaOCAwMwggL/MB8GA1UdIwQY MBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBQ7iKr1MQhikxK2Ypk2 b8La5VONsTAzBgNVHREELDAqghAqLm1ha2V3b25kZXIuY29tghYqLmFscGhhLm1h a2V3b25kZXIuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6g LIYqaHR0cDovL2NybC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY3JsMHUG CCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDMuYW1h em9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAzLmFtYXpv bnRydXN0LmNvbS9yMm0wMy5jZXIwDAYDVR0TAQH/BAIwADCCAYAGCisGAQQB1nkC BAIEggFwBIIBbAFqAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsA AAGL9JDYLgAABAMASDBGAiEA8dfewBymAZABnv/u6k3muNS721tY0qeQzwpsBb9o uWQCIQCJ6w+DK5UBJqoaQaMiKVxvectGsZ9tUcy/RXlAVdEN2gB3AEiw42vapkc0 D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABi/SQ2CMAAAQDAEgwRgIhAP+zHspr kIDDjDQsJbe+k96aHjwzb/CxOTWGOKXVoFXDAiEA+gfBuGYeyp5pFKcKOEyH8NPL LU4UPuyInJvbWdRKqPwAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7 qwAAAYv0kNgcAAAEAwBHMEUCIQDjCA8Kh7kZxut3vczsoTrdi/abO9V/H+qnXB9s AZfXNgIgdAK6RIYXFS3LMRXfRJpEJTvo1UnM5Yg/XejkD8fO1+YwDQYJKoZIhvcN AQELBQADggEBABRc+bgCiqx9BxTf3ioRta/T320Q7v5hFk78kkWcKfKWZquIwEbf l0DnIxOcH78T7MCrRGpVNRJqsyu572Ra4ZdGvWUlzLPsjCBQiPC0ltwysf9U1l8S CoulGFL2Easl7xitFR0G6xhCl7Z9B4OeicmqjRFPuDL8HbH8e7D2LQ5+7aQOLJR6 hJARU7dVzJngW0LaGRoxNMj9f4qSdtfnRcNJzqKq/JGiAAoGivaWxaudDyWNmZIL jzNM0q9n5YNKNQM9l5t0yoVpcl9BOKDCMUa+ihal6sERnhgC/optdODCMhqtuwRg GLrqzabCaw627IPYrR/66IGUTJVeG2h54fM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1XVql0yEn9acACGI5tnK QC2OXTcOuwGnGjD0Ro7FMWSk5gp1CfQxvIfavLNZon5mIjwSVeHgmAABDMzYq7Ts Ge092JEjBCb4dlY9YRGrzJbOL4oRzqdMe6ubp5wAHw4TLx896d3QYmasFgIsGNWG iOXoBGZjlCiMqM7pX3FRe0NejMFTYQnVJ1/cTb3gBBvnFAxpdL/c0EQaXjavsxzc h3DVNlU7t8v+ELv+Ii2JFSv7uXxpKlO6VrlOlvkxiLVn1qtMlZpTXIxoSXVRW4fQ n54MRY2ZGnoHom4HPjNPNiZBBGDZPnb7o5zlQd+zKVHG5sDQ0HmcGOKLI66P/4hg OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8977013784689989885208381427095109963 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.makewonder.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26946659128347534592675498801258162785377415450357241680743440840337876228088547888087217265226347811668449864967096403847006555113487123677014795746673870973737029374405358671565649564465604140866694467930359107913223103854640519093554244109161163925542771738813552891119534751268244067522728734489463782238240154388445907721222729606810459792157422678536925992169779902769409962830942763209135198654538337447140730038304494880760901653851838667665287838621020911942012005543520275295639349057090176591013469088312271762610575850706627152288378283448182048002183892958298829249394415506780672748963478408404887167033 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3b88aaf53108629312b66299366fc2dae5538db1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.makewonder.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alpha.makewonder.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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