*.io.dev1.velocify.net
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 06:14:28:99:e0:a3:61:9a:87:44:e6:ce:fe:df:94:8f was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.io.dev1.velocify.net
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:14:28:99:e0:a3:61:9a:87:44:e6:ce:fe:df:94:8fSerial Number (int): 8080037399695360567927136917477364879
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: ec:0e:52:7e:79:23:de:b2:bc:30:25:be:0a:ab:01:cd:c8:76:17:53
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 4c:90:d4:7e:41:ad:a6:d4:1c:f4:13:0f:42:d0:6c:4e:56:09:92:e5
Fingerprint (sha256): 12:71:ae:0b:d4:a3:4a:7e:f0:be:b8:66:8d:41:f7:09:77:26:cb:75:23:16:60:9d:cf:bc:ca:1f:93:5a:84:67
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate *.io.dev1.velocify.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.io.dev1.velocify.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.io.dev1.velocify.net
*.api.io.dev1.velocify.net
*.api.io.dev1.velocify.net
Other certificates including the domain name velocify.net
(limited to 100 certificates)
ess.io.dev1.velocify.net
insights.elliemae.com
dialiqrouter.dev1.velocify.net
fieldtag-api.io.prod.velocify.net
pulse-api.qa.velocify.net
claims-provider.qa.velocify.net
insights.elliemae.com
securesend.dev1.velocify.net
insights.elliemae.com
nonprod01.elliemae.com
cdn.qa.velocify.net
insights.elliemae.com
cdn.peg.velocify.net
service.stg.velocify.net
leads-api.io.stg.velocify.net
lm.prod.velocify.net
timezone-api.dev1.velocify.net
security.dev2.velocify.net
sfadmin.io.dev1.velocify.net
webapi.qa.velocify.net
import.dev1.velocify.net
webapi.qa.velocify.net
pulseqasupport.io.stg.velocify.net
claims-provider.dev1.velocify.net
lm.dev1.velocify.net
service.stg.velocify.net
insights.elliemae.com
router.qa.velocify.net
velocify.net
cdn.peg.velocify.net
securesend.prod.velocify.net
workflow-api.qa.velocify.net
lm.dev1.velocify.net
dialiqrouter.peg.velocify.net
webapi.peg.velocify.net
leads-api.io.dev1.velocify.net
elliemae.com
encompass.prod.velocify.net
url2.io.dev1.velocify.net
dialiqrouter.peg.velocify.net
cdn.prod.velocify.net
pulse-api.prod.velocify.net
desktopprinting-api.io.dev1.velocify.net
splunk.io.peg.velocify.net
pulseautonsvc-api.io.stg.velocify.net
fieldtag-api.io.dev1.velocify.net
velocify.net
lmgateway.dev1.velocify.net
dialiqdashboard.io.dev1.velocify.net
integrations-api.dev2.velocify.net
splunk.io.dev1.velocify.net
service.dev2.velocify.net
core-api.io.prod.velocify.net
insights.elliemae.com
assetservice.peg.velocify.net
leadscorerecalc.io.qa.velocify.net
entities-api.dev1.velocify.net
entities-api.dev1.velocify.net
velocify.net
twilioify.stg.velocify.net
encompass.integrations.dev1.velocify.net
dialiqdashboard.io.peg.velocify.net
diagnosticv4sf.io.dev1.velocify.net
url3.dev1.velocify.net
email-api.io.dev1.velocify.net
qa.velocify.net
insights.elliemae.com
url2.io.dev01.velocify.net
pulse-api.peg.velocify.net
router.qa.velocify.net
emailservice-api.qa.velocify.net
webapi.peg.velocify.net
dialiqdashboard.io.dev1.velocify.net
lmgateway.qa.velocify.net
diqdashboardsvc.io.dev1.velocify.net
twilioify.prod.velocify.net
prioritization-api.peg.velocify.net
desktopprint-api.io.dev1.velocify.net
cdn.qa.velocify.net
pulse-api.prod.velocify.net
recurrcampaign-api.io.peg.velocify.net
elliemae.com
*.io.dev1.velocify.net
url3.dev01.velocify.net
*.io.dev1.velocify.net
pulse-api.prod.velocify.net
samltest.qa.velocify.net
entities-api.io.dev1.velocify.net
splunk.io.peg.velocify.net
insights.elliemae.com
assetservice.stg.velocify.net
lmgateway.stg.velocify.net
encompass.dev1.velocify.net
arnoldtest.dev01.velocify.net
diqdashboardsvc.io.dev1.velocify.net
assetservice.qa.velocify.net
dialiq.dev1.velocify.net
service.dev1.velocify.net
dialiqdashboard.io.dev1.velocify.net
entities-api.io.dev1.velocify.net
insights.elliemae.com
dialiqrouter.dev1.velocify.net
fieldtag-api.io.prod.velocify.net
pulse-api.qa.velocify.net
claims-provider.qa.velocify.net
insights.elliemae.com
securesend.dev1.velocify.net
insights.elliemae.com
nonprod01.elliemae.com
cdn.qa.velocify.net
insights.elliemae.com
cdn.peg.velocify.net
service.stg.velocify.net
leads-api.io.stg.velocify.net
lm.prod.velocify.net
timezone-api.dev1.velocify.net
security.dev2.velocify.net
sfadmin.io.dev1.velocify.net
webapi.qa.velocify.net
import.dev1.velocify.net
webapi.qa.velocify.net
pulseqasupport.io.stg.velocify.net
claims-provider.dev1.velocify.net
lm.dev1.velocify.net
service.stg.velocify.net
insights.elliemae.com
router.qa.velocify.net
velocify.net
cdn.peg.velocify.net
securesend.prod.velocify.net
workflow-api.qa.velocify.net
lm.dev1.velocify.net
dialiqrouter.peg.velocify.net
webapi.peg.velocify.net
leads-api.io.dev1.velocify.net
elliemae.com
encompass.prod.velocify.net
url2.io.dev1.velocify.net
dialiqrouter.peg.velocify.net
cdn.prod.velocify.net
pulse-api.prod.velocify.net
desktopprinting-api.io.dev1.velocify.net
splunk.io.peg.velocify.net
pulseautonsvc-api.io.stg.velocify.net
fieldtag-api.io.dev1.velocify.net
velocify.net
lmgateway.dev1.velocify.net
dialiqdashboard.io.dev1.velocify.net
integrations-api.dev2.velocify.net
splunk.io.dev1.velocify.net
service.dev2.velocify.net
core-api.io.prod.velocify.net
insights.elliemae.com
assetservice.peg.velocify.net
leadscorerecalc.io.qa.velocify.net
entities-api.dev1.velocify.net
entities-api.dev1.velocify.net
velocify.net
twilioify.stg.velocify.net
encompass.integrations.dev1.velocify.net
dialiqdashboard.io.peg.velocify.net
diagnosticv4sf.io.dev1.velocify.net
url3.dev1.velocify.net
email-api.io.dev1.velocify.net
qa.velocify.net
insights.elliemae.com
url2.io.dev01.velocify.net
pulse-api.peg.velocify.net
router.qa.velocify.net
emailservice-api.qa.velocify.net
webapi.peg.velocify.net
dialiqdashboard.io.dev1.velocify.net
lmgateway.qa.velocify.net
diqdashboardsvc.io.dev1.velocify.net
twilioify.prod.velocify.net
prioritization-api.peg.velocify.net
desktopprint-api.io.dev1.velocify.net
cdn.qa.velocify.net
pulse-api.prod.velocify.net
recurrcampaign-api.io.peg.velocify.net
elliemae.com
*.io.dev1.velocify.net
url3.dev01.velocify.net
*.io.dev1.velocify.net
pulse-api.prod.velocify.net
samltest.qa.velocify.net
entities-api.io.dev1.velocify.net
splunk.io.peg.velocify.net
insights.elliemae.com
assetservice.stg.velocify.net
lmgateway.stg.velocify.net
encompass.dev1.velocify.net
arnoldtest.dev01.velocify.net
diqdashboardsvc.io.dev1.velocify.net
assetservice.qa.velocify.net
dialiq.dev1.velocify.net
service.dev1.velocify.net
dialiqdashboard.io.dev1.velocify.net
entities-api.io.dev1.velocify.net
Certificate
The complete raw certificate details for *.io.dev1.velocify.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEhzCCA2+gAwIBAgIQBhQomeCjYZqHRObO/t+UjzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIwOTAwMDAwMFoXDTI1MDEwNTIzNTk1OVowITEf MB0GA1UEAwwWKi5pby5kZXYxLnZlbG9jaWZ5Lm5ldDCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAKYT6zXDpcLM79wrteHdYmgRfFdbAEauMyK5IAv6EL3w ZxOoAM9OpGK265zD2ecNojIXcdrundzl10Z3XQJbaYE4cUNd+g+dHhPFchkqfv0k /QdhR1YTjQq+1Exp5DPtYnW57fSNjIwfDowtVp23dUMhZ89XwZrjtYYXmYR6jz0M M+T4ty04Z1vMiYMH5NANXKfWw0bk25dVwkfukZ28/mJNN3q4EYByEqeLpkBFoQZn DqjsBJTeras7h1B3deXgCon5RWDPSgPm27AP+6oL4vMKZZVTHh7nE2HS7SPgge6F wht4eskMVhq6lTreyR+fStmrZp1sd74sCvhNidla4HcCAwEAAaOCAZ4wggGaMB8G A1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBTsDlJ+eSPe srwwJb4KqwHNyHYXUzA9BgNVHREENjA0ghYqLmlvLmRldjEudmVsb2NpZnkubmV0 ghoqLmFwaS5pby5kZXYxLnZlbG9jaWZ5Lm5ldDATBgNVHSAEDDAKMAgGBmeBDAEC ATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDMuYW1hem9udHJ1c3Qu Y29tL3IybTAzLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6 Ly9vY3NwLnIybTAzLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDov L2NydC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY2VyMAwGA1UdEwEB/wQC MAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAKR94uOc Ot86vHJ0XBsuikWe6EvRjBqsx6twmQiWbzt4b5WgR5ryDSem4NtX7L9zjyMRJltT sTfBDSrKcSX7hbPJJ02EaXOEBfPl5AFZW2w1NtKgGzi8+D38f3sPWuDfu474USBB XidtTk+Gd1NJrMnYHp0TGMjR7VuAio7ZzF+bRmSmBlHU2f/StmR5DLVeSfV+7Xl7 nildoKKONI4auqSsZrL/puEwcLyF5919jwc9VXqX+p7fAYJS03Xu+qyOROlb1mC5 B631ynmenYNuLMsFpIFbQkGNMoRLC/5jR5yrjweU0ago/6oN59uKQvZmVxWYQVV/ JTkStuZdyOJjd+I= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAphPrNcOlwszv3Cu14d1i aBF8V1sARq4zIrkgC/oQvfBnE6gAz06kYrbrnMPZ5w2iMhdx2u6d3OXXRnddAltp gThxQ136D50eE8VyGSp+/ST9B2FHVhONCr7UTGnkM+1idbnt9I2MjB8OjC1Wnbd1 QyFnz1fBmuO1hheZhHqPPQwz5Pi3LThnW8yJgwfk0A1cp9bDRuTbl1XCR+6Rnbz+ Yk03ergRgHISp4umQEWhBmcOqOwElN6tqzuHUHd15eAKiflFYM9KA+bbsA/7qgvi 8wpllVMeHucTYdLtI+CB7oXCG3h6yQxWGrqVOt7JH59K2atmnWx3viwK+E2J2Vrg dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8080037399695360567927136917477364879 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.io.dev1.velocify.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20965380945367330003299412482071831130706144446301549987725276557753361480508525483676129656981104023573887051966716547809108802464128991745607718007376579949867578202182571509451403274233361557444281881290331377642392667687045275773558346209565754883851599261384526510349835776391483801864964215191144952257147580572744801412698862773178917730208161261564091931353422858267789586409585126341413899665885357413950186292978643986261005751625843051696612939609522071278115151865765792020112604683941229975848923934333394103709552868426118769688728266621302933820039096035527998526909834278992568441339880654667033272439 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ec0e527e7923deb2bc3025be0aab01cdc8761753 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.io.dev1.velocify.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.io.dev1.velocify.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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