solar.withsecure.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 07:3b:c8:27:61:ff:59:bf:50:a3:6f:20:13:33:fe:16 was issued on by Amazon.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=solar.withsecure.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:3b:c8:27:61:ff:59:bf:50:a3:6f:20:13:33:fe:16Serial Number (int): 9615001087295780187231810014449761814
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: b7:c8:99:ff:2a:32:30:ff:c2:57:7c:34:28:9c:8b:a2:34:a2:af:05
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 61:e6:a5:b0:e1:68:f4:1f:d0:bb:de:98:b7:6e:b9:3d:93:14:a0:6e
Fingerprint (sha256): 17:7f:ee:22:62:14:b1:07:67:15:62:c7:0a:78:30:d5:95:e5:79:3d:1e:28:18:13:aa:03:27:ab:65:ef:fd:a9
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate solar.withsecure.com
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for solar.withsecure.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
solar.withsecure.com
cas-nordic.withsecure.com
directory-oyj.withsecure.com
cas-oyj.withsecure.com
desktop-nordics.withsecure.com
users-oyj.withsecure.com
timesheets.withsecure.com
desktop-nordic.withsecure.com
desktop-oyj.withsecure.com
users-nordic.withsecure.com
pulse-oyj.withsecure.com
cas-nordic.withsecure.com
directory-oyj.withsecure.com
cas-oyj.withsecure.com
desktop-nordics.withsecure.com
users-oyj.withsecure.com
timesheets.withsecure.com
desktop-nordic.withsecure.com
desktop-oyj.withsecure.com
users-nordic.withsecure.com
pulse-oyj.withsecure.com
Other certificates including the domain name withsecure.com
(limited to 100 certificates)
relay.stg.withsecure.com
internal-dev.connect.withsecure.com
withsecure.com
partnerportal.withsecure.com
portal.radar.elements-stg.withsecure.com
click.e.withsecure.com
api.elements.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
a.accounts-emea-stg.fsxt.net
download.withsecure.com
labs.f-secure.com
static.accounts-stg.fsxt.net
psblive.psb-stg.f-secure.com
help.withsecure.com
download.withsecure.com
relay.withsecure.com
foundry.withsecure.com
internal-ideas.withsecure.com
www3.withsecure.com
static.accounts.f-secure.com
static.accounts-stg.fsxt.net
san-10-s7.tlsprovisioning.exacttarget.com
static.accounts.f-secure.com
withsecure.com
*.elements.withsecure.com
elements.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
makingsenseofcents.withsecure.com
git.f-secure.com
eu-status.swrve.com
eu-status.swrve.com
portal.cp.elements-stg.withsecure.com
relay.withsecure.com
eu-status.swrve.com
withsecure.com
foundry.withsecure.com
eu-status.swrve.com
ue1gpgw01.withsecure.com
solar.withsecure.com
git.f-secure.com
labs.f-secure.com
corp-reg.withsecure.com
withsecure.com
redirects.f-secure.com
eu-status.swrve.com
ideas.withsecure.com
www.survey.withsecure.com
elements.withsecure.com
cnbc.withsecure.com
labs.f-secure.com
withsecure.com
solar.dev.withsecure.com
keys.f-secure.com
internal-ideas.withsecure.com
api.elements-stg.withsecure.com
*.elements.withsecure.com
eu-status.swrve.com
bloomberg.withsecure.com
community.withsecure.com
sst.withsecure.com
ideas.withsecure.com
ideas.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
ane1gpgw01.withsecure.com
labs.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
static.accounts-stg.fsxt.net
eu-status.swrve.com
elements.withsecure.com
elements.withsecure.com
download.withsecure.com
elements-stg.fsxt.net
sst.withsecure.com
solar.withsecure.com
withsecure.com
solar.withsecure.com
labs.withsecure.com
proxy.elements.withsecure.com
static.accounts.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
withsecure.com
api.elements.withsecure.com
onboardme.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
eu-status.swrve.com
psblive.psb-stg.f-secure.com
login.withsecure.com
internal-ideas.withsecure.com
withsecure.com
eu-status.swrve.com
soccer24.withsecure.com
www.survey.withsecure.com
accounts.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
www.survey.withsecure.com
accounts.f-secure.com
login-stg.withsecure.com
help.withsecure.com
download.withsecure.com
www.survey.withsecure.com
internal-dev.connect.withsecure.com
withsecure.com
partnerportal.withsecure.com
portal.radar.elements-stg.withsecure.com
click.e.withsecure.com
api.elements.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
a.accounts-emea-stg.fsxt.net
download.withsecure.com
labs.f-secure.com
static.accounts-stg.fsxt.net
psblive.psb-stg.f-secure.com
help.withsecure.com
download.withsecure.com
relay.withsecure.com
foundry.withsecure.com
internal-ideas.withsecure.com
www3.withsecure.com
static.accounts.f-secure.com
static.accounts-stg.fsxt.net
san-10-s7.tlsprovisioning.exacttarget.com
static.accounts.f-secure.com
withsecure.com
*.elements.withsecure.com
elements.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
makingsenseofcents.withsecure.com
git.f-secure.com
eu-status.swrve.com
eu-status.swrve.com
portal.cp.elements-stg.withsecure.com
relay.withsecure.com
eu-status.swrve.com
withsecure.com
foundry.withsecure.com
eu-status.swrve.com
ue1gpgw01.withsecure.com
solar.withsecure.com
git.f-secure.com
labs.f-secure.com
corp-reg.withsecure.com
withsecure.com
redirects.f-secure.com
eu-status.swrve.com
ideas.withsecure.com
www.survey.withsecure.com
elements.withsecure.com
cnbc.withsecure.com
labs.f-secure.com
withsecure.com
solar.dev.withsecure.com
keys.f-secure.com
internal-ideas.withsecure.com
api.elements-stg.withsecure.com
*.elements.withsecure.com
eu-status.swrve.com
bloomberg.withsecure.com
community.withsecure.com
sst.withsecure.com
ideas.withsecure.com
ideas.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
ane1gpgw01.withsecure.com
labs.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
static.accounts-stg.fsxt.net
eu-status.swrve.com
elements.withsecure.com
elements.withsecure.com
download.withsecure.com
elements-stg.fsxt.net
sst.withsecure.com
solar.withsecure.com
withsecure.com
solar.withsecure.com
labs.withsecure.com
proxy.elements.withsecure.com
static.accounts.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
withsecure.com
api.elements.withsecure.com
onboardme.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
eu-status.swrve.com
psblive.psb-stg.f-secure.com
login.withsecure.com
internal-ideas.withsecure.com
withsecure.com
eu-status.swrve.com
soccer24.withsecure.com
www.survey.withsecure.com
accounts.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
www.survey.withsecure.com
accounts.f-secure.com
login-stg.withsecure.com
help.withsecure.com
download.withsecure.com
www.survey.withsecure.com
Certificate
The complete raw certificate details for solar.withsecure.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIQBzvIJ2H/Wb9Qo28gEzP+FjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIwNDAwMDAwMFoXDTI1MDEwMTIzNTk1OVowHzEd MBsGA1UEAxMUc29sYXIud2l0aHNlY3VyZS5jb20wggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu3ivIUT7kjHNXjSzycCSequttlaF3F+FJHACfMKQDaCyn LZUbQfBEKCkxEvBipEWX90XOH1JR5HC9jyox1J0ykoTZIMvFS9RggXLe2387v76r M5nbicEL5Q2DgP4rQsGqUjUmGlysdm/7hK3fSneMdTxULUxJWciXapvoBQrCrsEZ 7WtEnUMXR2JIlshyqme/wA5DIG97Zld7mrG+Y3JQMSR7SIVlMAAgLyM41sJn7ZZk 9+vHLsbbc0y37Ij+TFzdxhN7wxBcY4J6EOspD/W/1HaQ9w6R/0h83WBBplDXQaPo kczQtcO5rTGNfbm+Nc1LaijZ8WaWHIghMl7mBBJpAgMBAAGjggKeMIICmjAfBgNV HSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUt8iZ/yoyMP/C V3w0KJyLojSirwUwggE7BgNVHREEggEyMIIBLoIUc29sYXIud2l0aHNlY3VyZS5j b22CGWNhcy1ub3JkaWMud2l0aHNlY3VyZS5jb22CHGRpcmVjdG9yeS1veWoud2l0 aHNlY3VyZS5jb22CFmNhcy1veWoud2l0aHNlY3VyZS5jb22CHmRlc2t0b3Atbm9y ZGljcy53aXRoc2VjdXJlLmNvbYIYdXNlcnMtb3lqLndpdGhzZWN1cmUuY29tghl0 aW1lc2hlZXRzLndpdGhzZWN1cmUuY29tgh1kZXNrdG9wLW5vcmRpYy53aXRoc2Vj dXJlLmNvbYIaZGVza3RvcC1veWoud2l0aHNlY3VyZS5jb22CG3VzZXJzLW5vcmRp Yy53aXRoc2VjdXJlLmNvbYIYcHVsc2Utb3lqLndpdGhzZWN1cmUuY29tMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0w Mi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggr BgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDIuYW1hem9udHJ1c3QuY29tMDYGCCsG AQUFBzAChipodHRwOi8vY3J0LnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5j ZXIwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0B AQsFAAOCAQEAPiu3LCnjlWiaV+B0Nap0GzMSCF7062mmmsxYgnrb/Xs5iEAcYP81 PkaEbhDANM5pe9R+oZtrfuknaNtSSHJ9UofzEVRaSlXaKzh4ANRmnxhMkHCg8tSS cS4SsBeluq/7kRYsE+zhMpUNjPATBsysPcB7dXMF3nbAuuscukdOD6o++CfQHbyv pP340yMd+paLRXHaaL3dQsnGZ+6ZZPD05KgQ5FVnRM77XIGjZJV8EzI0rZ4B0HQs 1SwHLScu09UjFgeK70kOSoFKY6cWTXiBztKUwbdcTTxeor+5SoIY1juBcbuf8Bq3 0zaqHHHSIgaA5ix2L7bcbgkMN6LcJjJZkg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArt4ryFE+5IxzV40s8nAk nqrrbZWhdxfhSRwAnzCkA2gspy2VG0HwRCgpMRLwYqRFl/dFzh9SUeRwvY8qMdSd MpKE2SDLxUvUYIFy3tt/O7++qzOZ24nBC+UNg4D+K0LBqlI1JhpcrHZv+4St30p3 jHU8VC1MSVnIl2qb6AUKwq7BGe1rRJ1DF0diSJbIcqpnv8AOQyBve2ZXe5qxvmNy UDEke0iFZTAAIC8jONbCZ+2WZPfrxy7G23NMt+yI/kxc3cYTe8MQXGOCehDrKQ/1 v9R2kPcOkf9IfN1gQaZQ10Gj6JHM0LXDua0xjX25vjXNS2oo2fFmlhyIITJe5gQS aQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9615001087295780187231810014449761814 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'solar.withsecure.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22075021679925488506845662066437701343764592897833612066808680724023329899436391168858711273372985207793167484049193221644306101381313335337179293857842957260220432151793758333680667629964330752463517873604725340878908971822409929084919894538331464473912584796816105075662122624741629180127123882376856554116526434991555888795471826018115881410723152226394869124603585858658576825239750133431608888624725453176169532813840080596836985506429645364941739480710975589081056270239987539578204181753110287052085039372662673619731051282650915207815167137983803254464936224221786487715613567663000599008547913562959204586089 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b7c899ff2a3230ffc2577c34289c8ba234a2af05 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (306 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'solar.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cas-nordic.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'directory-oyj.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cas-oyj.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'desktop-nordics.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'users-oyj.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'timesheets.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'desktop-nordic.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'desktop-oyj.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'users-nordic.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pulse-oyj.withsecure.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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