iqdnet.ahrq.gov
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 01:c0:e3:4c:87:b1:cb:61:1c:af:8a:56:94:8a:87:b8 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=iqdnet.ahrq.gov
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:c0:e3:4c:87:b1:cb:61:1c:af:8a:56:94:8a:87:b8Serial Number (int): 2330759162939399418608149678896351160
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 05:0c:f2:1e:e2:f1:9b:5d:e0:88:6d:36:26:cc:d0:5d:b8:5d:ac:71
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): db:4e:00:05:6d:37:f6:83:1a:07:74:09:94:84:1a:f9:7a:79:c2:49
Fingerprint (sha256): 1a:5e:7f:a7:96:1f:2d:a5:35:09:80:37:22:97:40:6d:5b:9d:7f:f6:ed:16:50:42:3e:fb:9a:bd:f3:26:a0:4e
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate iqdnet.ahrq.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for iqdnet.ahrq.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
iqdnet.ahrq.gov
Other certificates including the domain name ahrq.gov
(limited to 100 certificates)
*.ahrq.gov
owa.hhs.gov
dataviz.ahrq.gov
innovations.ahrq.gov
qualityindicators.ahrq.gov
lhspilot.ahrq.gov
www.hcup-us.ahrq.gov
www.ahrq.gov
arrs.ahrq.gov
hcupnet-archive.ahrq.gov
sdc3.ahrq.gov
srdr.training.ahrq.gov
*.ahrq.gov
www.cahps.ahrq.gov
www.ahrq.gov
info.ahrq.gov
nhqrnet.ahrq.gov
www.ahrq.gov
sopsdatabase.ahrq.gov
subscriptions.ahrq.gov
distributor.hcup-us.ahrq.gov
*.ahrq.gov
voltage-pp-0000.ahrq.gov
dam.ahrq.gov
gold.ahrq.gov
pso.ahrq.gov
ce.ahrq.gov
meps.ahrq.gov
ocdashboard.ahrq.gov
iqdnet.ahrq.gov
pso.ahrq.gov
srdrplus.ahrq.gov
sdc3.ahrq.gov
patientregistry.ahrq.gov
owa.hhs.gov
www.ahrq.gov
qsrs.ahrq.gov
arrs.ahrq.gov
effectivehealthcare.ahrq.gov
stage.ahrq.gov
www.ahrq.gov
www.ahrq.gov
owa.hhs.gov
ahrqivedhcupnet.ahrq.gov
epc-src.ahrq.gov
epssdata.ahrq.gov
innovations.ahrq.gov
accounts.ahrq.gov
iqdnet.ahrq.gov
cma.ahrq.gov
iqdnet.ahrq.gov
staging-nhqrnet.ahrq.gov
journal.ahrq.gov
jira.ahrq.gov
lhslc.ahrq.gov
info.ahrq.gov
cahpsdatabase.ahrq.gov
epc-src.ahrq.gov
gold.ahrq.gov
effectivehealthcare.ahrq.gov
jira.ahrq.gov
epssdata.ahrq.gov
www.hcup-us.ahrq.gov
www.hcup-us.ahrq.gov
qualitymeasures.ahrq.gov
jira.ahrq.gov
ahrq.gov
meps.ahrq.gov
*.ahrq.gov
ahrqpubs.ahrq.gov
confluence.ahrq.gov
cds-pass.ahrq.gov
ahrq.gov
subscriptions.ahrq.gov
confluence.ahrq.gov
www.ahrq.gov
www.distributor.hcup-us.ahrq.gov
docs.ahrq.gov
arrs.ahrq.gov
owa.hhs.gov
info.ahrq.gov
accounts.ahrq.gov
staging-nhqrnet.ahrq.gov
sopsdatabase.ahrq.gov
www.distributor.hcup-us.ahrq.gov
srdr.ahrq.gov
cahpsdatabase.ahrq.gov
www.hcup-us.ahrq.gov
ahrqpubs.ahrq.gov
www.ahrq.gov
primarycaremeasures.ahrq.gov
*.ahrq.gov
Owa.HHS.Gov
accounts.ahrq.gov
admin.ahrq.gov
nhqrnet.ahrq.gov
takeheart.ahrq.gov
www.sopsdatabase.ahrq.gov
search.ahrq.gov
hcupnet.ahrq.gov
owa.hhs.gov
dataviz.ahrq.gov
innovations.ahrq.gov
qualityindicators.ahrq.gov
lhspilot.ahrq.gov
www.hcup-us.ahrq.gov
www.ahrq.gov
arrs.ahrq.gov
hcupnet-archive.ahrq.gov
sdc3.ahrq.gov
srdr.training.ahrq.gov
*.ahrq.gov
www.cahps.ahrq.gov
www.ahrq.gov
info.ahrq.gov
nhqrnet.ahrq.gov
www.ahrq.gov
sopsdatabase.ahrq.gov
subscriptions.ahrq.gov
distributor.hcup-us.ahrq.gov
*.ahrq.gov
voltage-pp-0000.ahrq.gov
dam.ahrq.gov
gold.ahrq.gov
pso.ahrq.gov
ce.ahrq.gov
meps.ahrq.gov
ocdashboard.ahrq.gov
iqdnet.ahrq.gov
pso.ahrq.gov
srdrplus.ahrq.gov
sdc3.ahrq.gov
patientregistry.ahrq.gov
owa.hhs.gov
www.ahrq.gov
qsrs.ahrq.gov
arrs.ahrq.gov
effectivehealthcare.ahrq.gov
stage.ahrq.gov
www.ahrq.gov
www.ahrq.gov
owa.hhs.gov
ahrqivedhcupnet.ahrq.gov
epc-src.ahrq.gov
epssdata.ahrq.gov
innovations.ahrq.gov
accounts.ahrq.gov
iqdnet.ahrq.gov
cma.ahrq.gov
iqdnet.ahrq.gov
staging-nhqrnet.ahrq.gov
journal.ahrq.gov
jira.ahrq.gov
lhslc.ahrq.gov
info.ahrq.gov
cahpsdatabase.ahrq.gov
epc-src.ahrq.gov
gold.ahrq.gov
effectivehealthcare.ahrq.gov
jira.ahrq.gov
epssdata.ahrq.gov
www.hcup-us.ahrq.gov
www.hcup-us.ahrq.gov
qualitymeasures.ahrq.gov
jira.ahrq.gov
ahrq.gov
meps.ahrq.gov
*.ahrq.gov
ahrqpubs.ahrq.gov
confluence.ahrq.gov
cds-pass.ahrq.gov
ahrq.gov
subscriptions.ahrq.gov
confluence.ahrq.gov
www.ahrq.gov
www.distributor.hcup-us.ahrq.gov
docs.ahrq.gov
arrs.ahrq.gov
owa.hhs.gov
info.ahrq.gov
accounts.ahrq.gov
staging-nhqrnet.ahrq.gov
sopsdatabase.ahrq.gov
www.distributor.hcup-us.ahrq.gov
srdr.ahrq.gov
cahpsdatabase.ahrq.gov
www.hcup-us.ahrq.gov
ahrqpubs.ahrq.gov
www.ahrq.gov
primarycaremeasures.ahrq.gov
*.ahrq.gov
Owa.HHS.Gov
accounts.ahrq.gov
admin.ahrq.gov
nhqrnet.ahrq.gov
takeheart.ahrq.gov
www.sopsdatabase.ahrq.gov
search.ahrq.gov
hcupnet.ahrq.gov
Certificate
The complete raw certificate details for iqdnet.ahrq.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIQAcDjTIexy2Ecr4pWlIqHuDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDExNjAwMDAwMFoXDTI1MDIxNDIzNTk1OVowGjEY MBYGA1UEAxMPaXFkbmV0LmFocnEuZ292MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA3LhnPbeocyRUbU8N+1CN2WXDdqBDEk57osPwZS+o1ovG1OgdWHit 0onfxCcNs9dxREHwX0u9FRNcuq2ofMiT1xiG60YbQiZBP7kwxNxOZzAjr5Czmg8g NC9QXeN0ZoUNIhMTulN7RZ4ABtgUVIZWT720Km4EOC/k2UO1JPF1dc4/d46VYSp1 HjOqT5ychw25ZlIMed/61E+c+k0Py58dA9ag2pufktN1VtkWiYsDevo1kYnuMkQC ItG0oSW2thR++2tqgAe44SIWQwqZRNz7cHenzBhvJ1yuBeJeXXaZGpDTaIZbHgg0 k4bLeLGFKzCjdfhaWnHmtcJeX7nI6csQyQIDAQABo4IC6TCCAuUwHwYDVR0jBBgw FoAUVdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFAUM8h7i8Ztd4IhtNibM 0F24XaxxMBoGA1UdEQQTMBGCD2lxZG5ldC5haHJxLmdvdjATBgNVHSAEDDAKMAgG BmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDMuYW1hem9u dHJ1c3QuY29tL3IybTAzLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGG IWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYq aHR0cDovL2NydC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY2VyMAwGA1Ud EwEB/wQCMAAwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2AE51oydcmhDDOFts 1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjRDJU58AAAQDAEcwRQIhAJVpYhDSD74H TDKIBGl57ovIoeNmkp6e9E5lxfsrEYZPAiAyRV/oYq/CSmHHurQTSg+ZhZkDH9I3 oWCGVbuowZLHdgB3AH1ZHhLheCp7HGFnfF79+NCHXBSgTpWeuQMv2Q6MLnm4AAAB jRDJU50AAAQDAEgwRgIhALmaWv0FptRIVe4zKI1Ze0VqgBultJ40cCYE0JYIpExp AiEAvSY/4pj1tiUlfTEfsTLLGx8M1NRU8qBEr62OYFcEo9QAdgDm0jFjQHeMwRBB Btdxuc7B0kD2loSG+7qHMh39HjeOUAAAAY0QyVPDAAAEAwBHMEUCIHHsplPEjT3T pfvzEQGKdXqdfS6HlZOtp1OjhMukPXR2AiEAifhJCXjp4ABOK+xodxUpqmHcEmCF dsTJH9sNqqlHnQ4wDQYJKoZIhvcNAQELBQADggEBABz9EpVD+vYfoUFwz3adTTAo B16D9P3Wgacr89qDE/nFVEZmaF8/1LHq6jh2hVNlkOkwqDF9Ug1xU4k+CEk1yGxT ge2Hkc/767J/rJnAO82M7JswlyW+OBWDBLavzxEk8yl0Nf9wwuOLHkeso75b9jUY DD8XeebTaUi/FiGmbzjnwK22yq1Y3Ul4IVb9BvGzyo/QE+emCRUXpurunoXqSik9 VWbkPrIaZoFZGiUke99LEQep4nQ+7Kz/h5yKLfXvXJv9XgjvRTT4FbB6FqWDWK2X pk07oILFF2Gk39DrI6budqO5OXd1vSyNVeqnTRbIbVBVrJXpHLSxCIbZ5AKffe4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LhnPbeocyRUbU8N+1CN 2WXDdqBDEk57osPwZS+o1ovG1OgdWHit0onfxCcNs9dxREHwX0u9FRNcuq2ofMiT 1xiG60YbQiZBP7kwxNxOZzAjr5Czmg8gNC9QXeN0ZoUNIhMTulN7RZ4ABtgUVIZW T720Km4EOC/k2UO1JPF1dc4/d46VYSp1HjOqT5ychw25ZlIMed/61E+c+k0Py58d A9ag2pufktN1VtkWiYsDevo1kYnuMkQCItG0oSW2thR++2tqgAe44SIWQwqZRNz7 cHenzBhvJ1yuBeJeXXaZGpDTaIZbHgg0k4bLeLGFKzCjdfhaWnHmtcJeX7nI6csQ yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2330759162939399418608149678896351160 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'iqdnet.ahrq.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27863359741710812965427513175744831457728966334134875949237360406231212936029975898310825582720648137308975522634065820931005694131666945612814288176348696314512060956311122942760238934533781357275777686711342601332430946989053577963260160162966821724361258167602907077847134027899688818001557638056135385840043315930120341708313401478661060488728932147598477229145411164199030445377516896295658386920838730546665177431798462196605271199771535911796567235435360440723398155328929520619447202851757824411789985136408601596732112631820328124534525627905681096523403111734882039925057668970466867435085098329891685470409 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 050cf21ee2f19b5de0886d3626ccd05db85dac71 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iqdnet.ahrq.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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