deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 09:89:03:36:ea:fc:5f:3c:d9:68:e6:08:86:f4:e0:dd was issued on by Amazon.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 09:89:03:36:ea:fc:5f:3c:d9:68:e6:08:86:f4:e0:ddSerial Number (int): 12674461829957692318552617333353144541
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d7:eb:41:11:ae:31:52:44:ec:c0:b3:8e:59:5d:0a:1e:69:a4:57:c1
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 9f:08:9c:d6:7b:93:8d:80:50:ec:8a:2a:ab:e4:15:6f:86:c9:22:53
Fingerprint (sha256): 12:db:73:e5:0b:b0:49:55:2a:39:05:49:a2:85:32:13:27:c8:ec:d7:7a:c1:68:a5:60:89:9f:c5:70:47:66:d1
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com
deploytestservice-ngb-ss2-us-east-2.outreach-staging.com
deploytestservice-stable-ngb-ss2-us-east-2.outreach-staging.com
deploytestservice-ngb-ss2-us-east-2.outreach-staging.com
deploytestservice-stable-ngb-ss2-us-east-2.outreach-staging.com
Other certificates including the domain name outreach-staging.com
(limited to 100 certificates)
deploytestservice-ngb-gs-us-east-2.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
cdn.outreach-staging.com
carspa.app
summit.outreach-staging.com
deploytestservice-canary-ngb-ops1-us-west-2.outreach-staging.com
staging1c.outreach-staging.com
deploytestservice-canary-ngb-ops1-us-west-2.outreach-staging.com
marketplace.outreach-staging.com
id.outreach-staging.com
deploytestservice-staging1a.outreach-staging.com
vanity.outreach-staging.com
id.us-east-2.outreach-staging.com
deploytestservice-ngb-gs-us-east-2.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
id.outreach-staging.com
deploytestservice-staging1a.outreach-staging.com
web.outreach-staging.com
deploytestservice-stable-ngb-ss2-us-east-2.outreach-staging.com
login-master.outreach-staging.com
www.sppetroleum.com
deploytestservice-stable-ngb-ss2-us-east-2.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
deploytestservice-stable-ngb-ss2-us-east-2.outreach-staging.com
telefork.staging1a.outreach-staging.com
controlplane.outreach-staging.com
storage.outreach-staging.com
staging2.outreach-staging.com
login-master.outreach-staging.com
outlook.outreach-staging.com
staging1c.outreach-staging.com
id.outreach-staging.com
staging1c.outreach-staging.com
staging1c.outreach-staging.com
staging2b.oats.outreach-staging.com
deploytestservice-ngb-ss2-us-east-2.outreach-staging.com
keycloak.outreach-staging.com
deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com
sidebar.outreach-staging.com
europeapp.wingchan.net
deploytestservice-canary-ngb-ops1-us-west-2.outreach-staging.com
deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
round1.io
staging1a.outreach-staging.com
plan-master-orca.outreach-staging.com
deploytestservice-staging1c.outreach-staging.com
deploytestservice-ngb-ops1-us-west-2.outreach-staging.com
deploytestservice-canary-ngb-gs-us-east-2.outreach-staging.com
staging1a.outreach-staging.com
staging1c.outreach-staging.com
staging1c.outreach-staging.com
deploytestservice-stable-ngb-ss2-us-east-2.outreach-staging.com
deploytestservice-ngb-ss2-us-east-2.outreach-staging.com
id.us-east-2.outreach-staging.com
deploytestservice-stable-staging2b.outreach-staging.com
oidctester.outreach-staging.com
accounts.outreach-staging.com
developers.outreach-staging.com
rolling.vi.outreach-staging.com
summit.outreach-staging.com
deploytestservice-stable-ngb-gs-us-east-2.outreach-staging.com
staging1a.outreach-staging.com
unleash.outreach-staging.com
staging1a.outreach-staging.com
developers.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
deploytestservice-canary-ngb-ops1-us-west-2.outreach-staging.com
www.lifebits.app
deploytestservice-canary-staging1a.outreach-staging.com
cdn.outreach-staging.com
id.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
id.outreach-staging.com
controlplane.outreach-staging.com
www.outreach-staging.com
deploytestservice-stable-staging1a.outreach-staging.com
id.outreach-staging.com
staging1a.outreach-staging.com
api.outreach-staging.com
staging1c.outreach-staging.com
outlook.outreach-staging.com
staging1a.outreach-staging.com
deploytestservice-stable-staging1a.outreach-staging.com
staging1a.outreach-staging.com
plan-staging.outreach-staging.com
deploytestservice-ngb-gs-us-east-2.outreach-staging.com
developer-master.outreach-staging.com
web-master.outreach-staging.com
deploytestservice-canary-ngb-gs-us-east-2.outreach-staging.com
www.outreach-staging.com
uat.panel.elfedu.pl
www.penelopepennybooks.com
staging1a.outreach-staging.com
developer.outreach-staging.com
id.us-east-2.outreach-staging.com
kaia-slack.staging1a.outreach-staging.com
api2.outreach-staging.com
accounts.outreach-staging.com
web.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
cdn.outreach-staging.com
carspa.app
summit.outreach-staging.com
deploytestservice-canary-ngb-ops1-us-west-2.outreach-staging.com
staging1c.outreach-staging.com
deploytestservice-canary-ngb-ops1-us-west-2.outreach-staging.com
marketplace.outreach-staging.com
id.outreach-staging.com
deploytestservice-staging1a.outreach-staging.com
vanity.outreach-staging.com
id.us-east-2.outreach-staging.com
deploytestservice-ngb-gs-us-east-2.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
id.outreach-staging.com
deploytestservice-staging1a.outreach-staging.com
web.outreach-staging.com
deploytestservice-stable-ngb-ss2-us-east-2.outreach-staging.com
login-master.outreach-staging.com
www.sppetroleum.com
deploytestservice-stable-ngb-ss2-us-east-2.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
deploytestservice-stable-ngb-ss2-us-east-2.outreach-staging.com
telefork.staging1a.outreach-staging.com
controlplane.outreach-staging.com
storage.outreach-staging.com
staging2.outreach-staging.com
login-master.outreach-staging.com
outlook.outreach-staging.com
staging1c.outreach-staging.com
id.outreach-staging.com
staging1c.outreach-staging.com
staging1c.outreach-staging.com
staging2b.oats.outreach-staging.com
deploytestservice-ngb-ss2-us-east-2.outreach-staging.com
keycloak.outreach-staging.com
deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com
sidebar.outreach-staging.com
europeapp.wingchan.net
deploytestservice-canary-ngb-ops1-us-west-2.outreach-staging.com
deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
round1.io
staging1a.outreach-staging.com
plan-master-orca.outreach-staging.com
deploytestservice-staging1c.outreach-staging.com
deploytestservice-ngb-ops1-us-west-2.outreach-staging.com
deploytestservice-canary-ngb-gs-us-east-2.outreach-staging.com
staging1a.outreach-staging.com
staging1c.outreach-staging.com
staging1c.outreach-staging.com
deploytestservice-stable-ngb-ss2-us-east-2.outreach-staging.com
deploytestservice-ngb-ss2-us-east-2.outreach-staging.com
id.us-east-2.outreach-staging.com
deploytestservice-stable-staging2b.outreach-staging.com
oidctester.outreach-staging.com
accounts.outreach-staging.com
developers.outreach-staging.com
rolling.vi.outreach-staging.com
summit.outreach-staging.com
deploytestservice-stable-ngb-gs-us-east-2.outreach-staging.com
staging1a.outreach-staging.com
unleash.outreach-staging.com
staging1a.outreach-staging.com
developers.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
deploytestservice-canary-ngb-ops1-us-west-2.outreach-staging.com
www.lifebits.app
deploytestservice-canary-staging1a.outreach-staging.com
cdn.outreach-staging.com
id.outreach-staging.com
deploytestservice-stable-ngb-ops1-us-west-2.outreach-staging.com
id.outreach-staging.com
controlplane.outreach-staging.com
www.outreach-staging.com
deploytestservice-stable-staging1a.outreach-staging.com
id.outreach-staging.com
staging1a.outreach-staging.com
api.outreach-staging.com
staging1c.outreach-staging.com
outlook.outreach-staging.com
staging1a.outreach-staging.com
deploytestservice-stable-staging1a.outreach-staging.com
staging1a.outreach-staging.com
plan-staging.outreach-staging.com
deploytestservice-ngb-gs-us-east-2.outreach-staging.com
developer-master.outreach-staging.com
web-master.outreach-staging.com
deploytestservice-canary-ngb-gs-us-east-2.outreach-staging.com
www.outreach-staging.com
uat.panel.elfedu.pl
www.penelopepennybooks.com
staging1a.outreach-staging.com
developer.outreach-staging.com
id.us-east-2.outreach-staging.com
kaia-slack.staging1a.outreach-staging.com
api2.outreach-staging.com
accounts.outreach-staging.com
web.outreach-staging.com
Certificate
The complete raw certificate details for deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIQCYkDNur8XzzZaOYIhvTg3TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIwOTAwMDAwMFoXDTI1MDEwNjIzNTk1OVowSjFI MEYGA1UEAxM/ZGVwbG95dGVzdHNlcnZpY2UtY2FuYXJ5LW5nYi1zczItdXMtZWFz dC0yLm91dHJlYWNoLXN0YWdpbmcuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAxrAdh2HafyKPCudsDxJU/gf4FJpp6lwnhwIGUXfQ7GqHJ9bHONZl kR8v149hoqR3+WmUnJSfCu6MphN7Vb/htysUM8VVLimbjjybuK1v3q1om/lEBUUv +UVs+EWf2MTeGlyAud08fkTotG8cFZ86aMK4eI27gyg9CVTqJmXDpCEJ+8EfE1QI yZrl7S8VoghCkBe4wz9oXQ1xYWea6n4pnOR4yngvog0JJYPhBUyjDzW2JPbQi98z MqxCwUSz68hzFBGVvWHylyzAbo5LbyG3Cli5GjZ8dTaJxBQlT+8CL5tOVatPls5l 6y7UJpVBuaoJeMJFZzzqSN8Ail3zAfVKSQIDAQABo4ICKTCCAiUwHwYDVR0jBBgw FoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFNfrQRGuMVJE7MCzjlld Ch5ppFfBMIHHBgNVHREEgb8wgbyCP2RlcGxveXRlc3RzZXJ2aWNlLWNhbmFyeS1u Z2Itc3MyLXVzLWVhc3QtMi5vdXRyZWFjaC1zdGFnaW5nLmNvbYI4ZGVwbG95dGVz dHNlcnZpY2UtbmdiLXNzMi11cy1lYXN0LTIub3V0cmVhY2gtc3RhZ2luZy5jb22C P2RlcGxveXRlc3RzZXJ2aWNlLXN0YWJsZS1uZ2Itc3MyLXVzLWVhc3QtMi5vdXRy ZWFjaC1zdGFnaW5nLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIw MKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNy bDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAy LmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMi5h bWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHW eQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAIDrTX11lCtVXUdmyXJKDrb6 aWr4QC6CrVO0tr1q/5SPvPZ6zdwjOisR1zg1Awt8LTIAA5RUmmfD50iLd21omc63 x1q+Nt54pJUq0x0qH213Cy2z3WEtsDQn+TZOn4TX6oB8pN63dRgiRWqLkQtw95yl BWnlmiKW/zARdHdw8I9Ty9PPTd1AIuAR3KnKXQJ8r0j8MWpzM1aM9i/xM/T3W4HM rqBW6cAF5xJ/9bPStdPr2YHrXyWJlZdG8mOOTkhPqwor36hrhupZe5afN02oKVQu 4fubMzAB01P4wEL/oXXOG0TuIir9LPfRlLNu7Hi48yQlw3a45Cgqxucbs1WjMLc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrAdh2HafyKPCudsDxJU /gf4FJpp6lwnhwIGUXfQ7GqHJ9bHONZlkR8v149hoqR3+WmUnJSfCu6MphN7Vb/h tysUM8VVLimbjjybuK1v3q1om/lEBUUv+UVs+EWf2MTeGlyAud08fkTotG8cFZ86 aMK4eI27gyg9CVTqJmXDpCEJ+8EfE1QIyZrl7S8VoghCkBe4wz9oXQ1xYWea6n4p nOR4yngvog0JJYPhBUyjDzW2JPbQi98zMqxCwUSz68hzFBGVvWHylyzAbo5LbyG3 Cli5GjZ8dTaJxBQlT+8CL5tOVatPls5l6y7UJpVBuaoJeMJFZzzqSN8Ail3zAfVK SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12674461829957692318552617333353144541 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25082030097678801190778488056559213188616937422533852395726635906224402260352277610517533885718293515357342935892021291202046965511154527703199057014870489104082416443621159459424320155454225647022781667725027721116109115866852733616217413695436927211944705869809974716716221319938978028899311548559843657945980352460147456336071947123158575168488939486256148167911650636437727146893263134431703161040470785999461903660704668962650352396542829900423825629318467651349218343366877004636562313913565502058424631209767803230458881469459195194325139672056948673704043639162219893737654932618257910477012576026143004904009 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d7eb4111ae315244ecc0b38e595d0a1e69a457c1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (191 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'deploytestservice-canary-ngb-ss2-us-east-2.outreach-staging.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'deploytestservice-ngb-ss2-us-east-2.outreach-staging.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'deploytestservice-stable-ngb-ss2-us-east-2.outreach-staging.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0080eb4d7d75942b555d4766c9724a0eb6fa696af8402e82ad53b4b6bd6aff948fbcf67acddc233a2b11d73835030b7c2d32000394549a67c3e7488b776d6899ceb7c75abe36de78a4952ad31d2a1f6d770b2db3dd612db03427f9364e9f84d7ea807ca4deb7751822456a8b910b70f79ca50569e59a2296ff3011747770f08f53cbd3cf4ddd4022e011dca9ca5d027caf48fc316a7333568cf62ff133f4f75b81ccaea056e9c005e7127ff5b3d2b5d3ebd981eb5f2589959746f2638e4e484fab0a2bdfa86b86ea597b969f374da829542ee1fb9b333001d353f8c042ffa175ce1b44ee222afd2cf7d194b36eec78b8f32425c376b8e4282ac6e71bb355a330b7