stfc.ukri.org
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0b:15:21:af:97:83:05:14:07:b5:62:7c:89:88:d0:3b was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=stfc.ukri.org
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:15:21:af:97:83:05:14:07:b5:62:7c:89:88:d0:3bSerial Number (int): 14731229418999296230239463253299744827
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: fa:f4:90:06:a6:d7:e3:46:55:d7:bc:bc:99:b4:88:ee:c8:79:53:eb
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): a8:fa:b5:f1:42:9a:13:a0:44:95:41:77:54:9b:db:24:21:54:a6:1a
Fingerprint (sha256): 13:23:c0:72:05:7b:a3:a2:f3:94:79:fa:62:a4:5b:af:86:ea:e2:65:81:f9:66:a2:2a:a5:81:c3:7b:78:37:9a
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate stfc.ukri.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stfc.ukri.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stfc.ukri.org
*.stfc.ukri.org
*.stfc.ukri.org
Other certificates including the domain name ukri.org
(limited to 100 certificates)
stfc.ukri.org
nerc.ukri.org
riinfrastructure.ukri.org.uk
ahrc.ukri.org
webhelpdesk.ukri.org
ahrc.ukri.org
store.apps.ukri.org
www.ukri.org
ithelpdesk.ukri.org
ukinnovationhub.ukri.org
*.api.rap-test.ukritfsdigstaging.services.ukri.org
training.ukri.org
uknqt.ukri.org
webhelpdesk.ukri.org
funding-service.ukri.org
bbsrc.ukri.org
guest.ukri.org
energycatalyst.ukri.org
internal.demo-1.ukristaging.services.ukri.org
ui.demo-1.ukristaging.services.ukri.org
www.innovateuk.ukri.org
ausoriwsvlrpm01.ukri.org
beta.innovateukedge.ukri.org
ukfoodsystems.ukri.org
dev.mhp.ukri.org
re.ukri.org
ausoriwsvlrpm01.ukri.org
epsrc.ukri.org
esrc.ukri.org
ukri.org
*.services.ukri.org
r4ri.ukri.org
*.staging.services.ukri.org
vpn.ukri.org
*.sil.uat.innovateuk.ukri.org
helloworld.default.ukristaging.services.ukri.org
portal.nerc.ac.uk
engagementhub.ukri.org
internal.infradev-1.ukristaging.services.ukri.org
*.apps.org-env-0.org.innovateuk.ukri.org
jenkins29skjdnchg.beta.ukri.org
*.api.dev.ukristaging.services.ukri.org
stfc.ukri.org
ahrc.ukri.org
*.dev.whp.ukri.org
nerc.ukri.org
go.innovateuk.ukri.org
*.services.ukri.org
*.dev-1.ukristaging.services.ukri.org
internal.dr-1.ukridr.services.ukri.org
esrc.ukri.org
esrc.ukri.org
testgow.epsrc.ukri.org
stfc.ukri.org
nerc.ukri.org
ahrc.ukri.org
www.mrc.ukri.org
mrc.ukri.org
sts.ukri.org
epsrc.ukri.org
dev.coronavirusexplained.ukri.org
ukri.org
reporting.services.ukri.org
ukfoodsystems.ukri.org
*.api.rap-test.ukritfsdigstaging.services.ukri.org
mrc.ukri.org
vpn.ukri.org
farminginnovation.ukri.org
engagementhub.ukri.org
*.dev.services.ukri.org
ukfoodsystems.ukri.org
san-13-s51.tlsprovisioning.exacttarget.com
san-13-s51.tlsprovisioning.exacttarget.com
gow.bbsrc.ukri.org
redataadmin-uat.services.ukri.org
*.nmgn.mrc.ukri.org
engagementhub.ukri.org
eduroam.ukri.org
anpr1.mscp.ukri.org
*.innovateuk.ukri.org
energycatalyst.ukri.org
anpr1.mscp.ukri.org
uatdirectory.apps.ukri.org
*.test-1.ukristaging.services.ukri.org
engagementhub.ukri.org
vpn.innovateuk.ukri.org
nerc.ukri.org
eduroam.ukri.org
app.info.innovateuk.org
*.api.dr-1.ukridr.services.ukri.org
webhelpdesk.ukri.org
www.bbsrc.ukri.org
epsrc.ukri.org
gow.epsrc.ukri.org
eds.ukri.org
coronavirusexplained.ukri.org
re.ukri.org
reporting.services.ukri.org
yopass.innovateuk.ukri.org
*.staging.innovateuk.ukri.org
nerc.ukri.org
riinfrastructure.ukri.org.uk
ahrc.ukri.org
webhelpdesk.ukri.org
ahrc.ukri.org
store.apps.ukri.org
www.ukri.org
ithelpdesk.ukri.org
ukinnovationhub.ukri.org
*.api.rap-test.ukritfsdigstaging.services.ukri.org
training.ukri.org
uknqt.ukri.org
webhelpdesk.ukri.org
funding-service.ukri.org
bbsrc.ukri.org
guest.ukri.org
energycatalyst.ukri.org
internal.demo-1.ukristaging.services.ukri.org
ui.demo-1.ukristaging.services.ukri.org
www.innovateuk.ukri.org
ausoriwsvlrpm01.ukri.org
beta.innovateukedge.ukri.org
ukfoodsystems.ukri.org
dev.mhp.ukri.org
re.ukri.org
ausoriwsvlrpm01.ukri.org
epsrc.ukri.org
esrc.ukri.org
ukri.org
*.services.ukri.org
r4ri.ukri.org
*.staging.services.ukri.org
vpn.ukri.org
*.sil.uat.innovateuk.ukri.org
helloworld.default.ukristaging.services.ukri.org
portal.nerc.ac.uk
engagementhub.ukri.org
internal.infradev-1.ukristaging.services.ukri.org
*.apps.org-env-0.org.innovateuk.ukri.org
jenkins29skjdnchg.beta.ukri.org
*.api.dev.ukristaging.services.ukri.org
stfc.ukri.org
ahrc.ukri.org
*.dev.whp.ukri.org
nerc.ukri.org
go.innovateuk.ukri.org
*.services.ukri.org
*.dev-1.ukristaging.services.ukri.org
internal.dr-1.ukridr.services.ukri.org
esrc.ukri.org
esrc.ukri.org
testgow.epsrc.ukri.org
stfc.ukri.org
nerc.ukri.org
ahrc.ukri.org
www.mrc.ukri.org
mrc.ukri.org
sts.ukri.org
epsrc.ukri.org
dev.coronavirusexplained.ukri.org
ukri.org
reporting.services.ukri.org
ukfoodsystems.ukri.org
*.api.rap-test.ukritfsdigstaging.services.ukri.org
mrc.ukri.org
vpn.ukri.org
farminginnovation.ukri.org
engagementhub.ukri.org
*.dev.services.ukri.org
ukfoodsystems.ukri.org
san-13-s51.tlsprovisioning.exacttarget.com
san-13-s51.tlsprovisioning.exacttarget.com
gow.bbsrc.ukri.org
redataadmin-uat.services.ukri.org
*.nmgn.mrc.ukri.org
engagementhub.ukri.org
eduroam.ukri.org
anpr1.mscp.ukri.org
*.innovateuk.ukri.org
energycatalyst.ukri.org
anpr1.mscp.ukri.org
uatdirectory.apps.ukri.org
*.test-1.ukristaging.services.ukri.org
engagementhub.ukri.org
vpn.innovateuk.ukri.org
nerc.ukri.org
eduroam.ukri.org
app.info.innovateuk.org
*.api.dr-1.ukridr.services.ukri.org
webhelpdesk.ukri.org
www.bbsrc.ukri.org
epsrc.ukri.org
gow.epsrc.ukri.org
eds.ukri.org
coronavirusexplained.ukri.org
re.ukri.org
reporting.services.ukri.org
yopass.innovateuk.ukri.org
*.staging.innovateuk.ukri.org
Certificate
The complete raw certificate details for stfc.ukri.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF2DCCBMCgAwIBAgIQCxUhr5eDBRQHtWJ8iYjQOzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDIyODAwMDAwMFoXDTI0MDIwNTIzNTk1OVowGDEW MBQGA1UEAxMNc3RmYy51a3JpLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAOT5ByKbIWvKTV/KP5E1lpcnvIP+FzmUWOxC7Kcu53OHU9YliUFxXoPi YAaWScpHj4nX6eGgejrazrpPDukxbSpaV0vFtKHBlP3ocjHhFTUTAdKGaC1SDU4b VCGlYllrkKGObwTR6eJsbqJQGpuGmkUEUt64hzbEC2zQIUZ96497/Yr8uXpIFc2R zctu3Klrkn6NqxxBUZNf+GCdBPVeDwslIR61MBPuLe5rdlaA0jDrmbAkJSu7HX3i XYo5a3oezH4GEFB1+Fo6iA+0KVdwzc0uGH1FsW77AJtgULVTrumq4vCc3FMKgq3e x/vFgsVqGTYZEWwDGTrRR4TJ4p28L4UCAwEAAaOCAvgwggL0MB8GA1UdIwQYMBaA FMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBT69JAGptfjRlXXvLyZtIju yHlT6zApBgNVHREEIjAggg1zdGZjLnVrcmkub3Jngg8qLnN0ZmMudWtyaS5vcmcw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7 BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFtYXpvbnRydXN0LmNv bS9yMm0wMi5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBn MC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMi5hbWF6b250cnVzdC5jb20w NgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDIuYW1hem9udHJ1c3QuY29tL3Iy bTAyLmNlcjAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkA dwDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYaXtt96AAAEAwBI MEYCIQDjYfMgDnVm0nq0ZLjwzlHjP+ompXpLAYpArLTL7LacHgIhAOBvHxOBmwOv 6NDMgLWzH8b5dPAiZ4RqROqyiWgor85hAHYAc9meiRtMlnigIH1HneayxhzQUV5x GSqMa4AQesF3crUAAAGGl7bfYwAABAMARzBFAiEAirKkokyRsbpnfo9xjgVN1atC FxHzwoaK0yz4x9L3Ts8CIC/fQwnJf/st+9oKmHkwNsV6JBahQDo89NQqj8k2EJ6q AHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGGl7bfSwAABAMA RzBFAiEA57kTUoeI7qfQrzs49R1i7G2qxpSMkFITPGycGofP1yMCIHYGJMvB/3ik pp8LbvhooqDOziBlh21zFUrRk7EQc1gYMA0GCSqGSIb3DQEBCwUAA4IBAQA4qP3D 1RavYSmXgovpGjHzPqh7hI5XSFMYBXfZ34kihpraDJbv+IbNObYV0q7RY3rdGF0d u6FSW6aMockSyVP52ymL8tafX4EXzIqHT2RfbJemTLzNw7yTE9Me/kKbMLLhK/AO TOwkm53aI5is3XXY8nktVZOSbTMbTDwhVlS6mkeyRQmsmNgVVHA67s4zD5rOW3N5 KFg98GbM+MCy2yLt967z6+k3FzCYpZvRQUkxaDs0oCZALie+hmE8FhB8uo4BWcj/ nqaQoYvpMId8038gZxIG4jBOlMMMsZWvYq34fGxkE0k1AwcwW6ft7KBmewfACX5Y Udjd4wcG+EOKMSb6 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5PkHIpsha8pNX8o/kTWW lye8g/4XOZRY7ELspy7nc4dT1iWJQXFeg+JgBpZJykePidfp4aB6OtrOuk8O6TFt KlpXS8W0ocGU/ehyMeEVNRMB0oZoLVINThtUIaViWWuQoY5vBNHp4mxuolAam4aa RQRS3riHNsQLbNAhRn3rj3v9ivy5ekgVzZHNy27cqWuSfo2rHEFRk1/4YJ0E9V4P CyUhHrUwE+4t7mt2VoDSMOuZsCQlK7sdfeJdijlreh7MfgYQUHX4WjqID7QpV3DN zS4YfUWxbvsAm2BQtVOu6ari8JzcUwqCrd7H+8WCxWoZNhkRbAMZOtFHhMninbwv hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14731229418999296230239463253299744827 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stfc.ukri.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28905133752670535233968979839933112298617571575776573835522397013908282391625193253347342560287739671801966974628244683217766778296078801225763945318194755719918342307515698539544864769167093968813412635516800389425532524545140009911288882522689854988943916274339715344993462334081784185377948727330002332390072011170655942986216851997389112185850929687471816548223820391651718720162373978377880461555598793739101543241871658433795200805869249278865974227577391199467812982458740818900613194102523818460939823173805187491322260362479948760439092262852293778687013695577735681993006178524291183619894649895647639777157 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) faf49006a6d7e34655d7bcbc99b488eec87953eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stfc.ukri.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stfc.ukri.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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