staging-nhqrnet.ahrq.gov
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 06:b0:84:31:f0:c0:58:d7:d9:31:21:76:39:46:8c:2d was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=staging-nhqrnet.ahrq.gov
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:b0:84:31:f0:c0:58:d7:d9:31:21:76:39:46:8c:2dSerial Number (int): 8891893456568205783932333480011533357
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: f6:b5:80:80:4a:dc:a1:57:4b:8f:61:12:9e:f1:04:a3:49:d2:a9:b1
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): f7:d9:db:ef:7f:d0:f5:42:1d:46:23:7e:d9:ac:3e:60:a5:b8:95:c2
Fingerprint (sha256): 1a:d8:52:54:fe:45:f6:c3:76:d0:d5:b0:e4:ab:c3:b3:4b:66:42:08:c3:d9:9b:0a:11:29:06:f4:ba:39:60:0c
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate staging-nhqrnet.ahrq.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for staging-nhqrnet.ahrq.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
staging-nhqrnet.ahrq.gov
Other certificates including the domain name ahrq.gov
(limited to 100 certificates)
*.ahrq.gov
owa.hhs.gov
dataviz.ahrq.gov
innovations.ahrq.gov
qualityindicators.ahrq.gov
lhspilot.ahrq.gov
www.hcup-us.ahrq.gov
www.ahrq.gov
arrs.ahrq.gov
hcupnet-archive.ahrq.gov
sdc3.ahrq.gov
srdr.training.ahrq.gov
*.ahrq.gov
www.cahps.ahrq.gov
www.ahrq.gov
info.ahrq.gov
nhqrnet.ahrq.gov
www.ahrq.gov
sopsdatabase.ahrq.gov
subscriptions.ahrq.gov
distributor.hcup-us.ahrq.gov
*.ahrq.gov
voltage-pp-0000.ahrq.gov
dam.ahrq.gov
gold.ahrq.gov
pso.ahrq.gov
ce.ahrq.gov
meps.ahrq.gov
ocdashboard.ahrq.gov
iqdnet.ahrq.gov
pso.ahrq.gov
srdrplus.ahrq.gov
sdc3.ahrq.gov
patientregistry.ahrq.gov
owa.hhs.gov
www.ahrq.gov
qsrs.ahrq.gov
arrs.ahrq.gov
effectivehealthcare.ahrq.gov
stage.ahrq.gov
www.ahrq.gov
www.ahrq.gov
owa.hhs.gov
ahrqivedhcupnet.ahrq.gov
epc-src.ahrq.gov
epssdata.ahrq.gov
innovations.ahrq.gov
accounts.ahrq.gov
iqdnet.ahrq.gov
cma.ahrq.gov
iqdnet.ahrq.gov
staging-nhqrnet.ahrq.gov
journal.ahrq.gov
jira.ahrq.gov
lhslc.ahrq.gov
info.ahrq.gov
cahpsdatabase.ahrq.gov
epc-src.ahrq.gov
gold.ahrq.gov
effectivehealthcare.ahrq.gov
jira.ahrq.gov
epssdata.ahrq.gov
www.hcup-us.ahrq.gov
www.hcup-us.ahrq.gov
qualitymeasures.ahrq.gov
jira.ahrq.gov
ahrq.gov
meps.ahrq.gov
*.ahrq.gov
ahrqpubs.ahrq.gov
confluence.ahrq.gov
cds-pass.ahrq.gov
ahrq.gov
subscriptions.ahrq.gov
confluence.ahrq.gov
www.ahrq.gov
www.distributor.hcup-us.ahrq.gov
docs.ahrq.gov
arrs.ahrq.gov
owa.hhs.gov
info.ahrq.gov
accounts.ahrq.gov
staging-nhqrnet.ahrq.gov
sopsdatabase.ahrq.gov
www.distributor.hcup-us.ahrq.gov
srdr.ahrq.gov
cahpsdatabase.ahrq.gov
www.hcup-us.ahrq.gov
ahrqpubs.ahrq.gov
www.ahrq.gov
primarycaremeasures.ahrq.gov
*.ahrq.gov
Owa.HHS.Gov
accounts.ahrq.gov
admin.ahrq.gov
nhqrnet.ahrq.gov
takeheart.ahrq.gov
www.sopsdatabase.ahrq.gov
search.ahrq.gov
hcupnet.ahrq.gov
owa.hhs.gov
dataviz.ahrq.gov
innovations.ahrq.gov
qualityindicators.ahrq.gov
lhspilot.ahrq.gov
www.hcup-us.ahrq.gov
www.ahrq.gov
arrs.ahrq.gov
hcupnet-archive.ahrq.gov
sdc3.ahrq.gov
srdr.training.ahrq.gov
*.ahrq.gov
www.cahps.ahrq.gov
www.ahrq.gov
info.ahrq.gov
nhqrnet.ahrq.gov
www.ahrq.gov
sopsdatabase.ahrq.gov
subscriptions.ahrq.gov
distributor.hcup-us.ahrq.gov
*.ahrq.gov
voltage-pp-0000.ahrq.gov
dam.ahrq.gov
gold.ahrq.gov
pso.ahrq.gov
ce.ahrq.gov
meps.ahrq.gov
ocdashboard.ahrq.gov
iqdnet.ahrq.gov
pso.ahrq.gov
srdrplus.ahrq.gov
sdc3.ahrq.gov
patientregistry.ahrq.gov
owa.hhs.gov
www.ahrq.gov
qsrs.ahrq.gov
arrs.ahrq.gov
effectivehealthcare.ahrq.gov
stage.ahrq.gov
www.ahrq.gov
www.ahrq.gov
owa.hhs.gov
ahrqivedhcupnet.ahrq.gov
epc-src.ahrq.gov
epssdata.ahrq.gov
innovations.ahrq.gov
accounts.ahrq.gov
iqdnet.ahrq.gov
cma.ahrq.gov
iqdnet.ahrq.gov
staging-nhqrnet.ahrq.gov
journal.ahrq.gov
jira.ahrq.gov
lhslc.ahrq.gov
info.ahrq.gov
cahpsdatabase.ahrq.gov
epc-src.ahrq.gov
gold.ahrq.gov
effectivehealthcare.ahrq.gov
jira.ahrq.gov
epssdata.ahrq.gov
www.hcup-us.ahrq.gov
www.hcup-us.ahrq.gov
qualitymeasures.ahrq.gov
jira.ahrq.gov
ahrq.gov
meps.ahrq.gov
*.ahrq.gov
ahrqpubs.ahrq.gov
confluence.ahrq.gov
cds-pass.ahrq.gov
ahrq.gov
subscriptions.ahrq.gov
confluence.ahrq.gov
www.ahrq.gov
www.distributor.hcup-us.ahrq.gov
docs.ahrq.gov
arrs.ahrq.gov
owa.hhs.gov
info.ahrq.gov
accounts.ahrq.gov
staging-nhqrnet.ahrq.gov
sopsdatabase.ahrq.gov
www.distributor.hcup-us.ahrq.gov
srdr.ahrq.gov
cahpsdatabase.ahrq.gov
www.hcup-us.ahrq.gov
ahrqpubs.ahrq.gov
www.ahrq.gov
primarycaremeasures.ahrq.gov
*.ahrq.gov
Owa.HHS.Gov
accounts.ahrq.gov
admin.ahrq.gov
nhqrnet.ahrq.gov
takeheart.ahrq.gov
www.sopsdatabase.ahrq.gov
search.ahrq.gov
hcupnet.ahrq.gov
Certificate
The complete raw certificate details for staging-nhqrnet.ahrq.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3jCCBMagAwIBAgIQBrCEMfDAWNfZMSF2OUaMLTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDIyNDAwMDAwMFoXDTIzMTEwMzIzNTk1OVowIzEh MB8GA1UEAxMYc3RhZ2luZy1uaHFybmV0LmFocnEuZ292MIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAm9PhEfe4SdLZdUPiyS5fp6sH7U34J3nOhSYpngCy dVxLzuXfSoXqcfL4NcHgXJcOz0L5NBmbjJ/0/x3AFRAA2xxIL9Y7FECnrs6WoiSI NQ7RPG+nO/nt12MSE8zgRdRHT9CNWTkAU5YGXNw+55znNuTn6TLUPld98TdeZqkz i5X1p9jnKBEwuJ19rsxpc87hZZn9oyF4VQJjZTCSlADbfuJPu6VtPf34Ccr5vDVk cm3tPjE5NhX2SCC2z7/+qcyF68GnFMBgjDlbEbL88YqJduQCj/D5mt86yBej2/XZ 70zcsiMZaGkJzpNcKNz+uOotOouanqjwdpYvWZPnjFyIhQIDAQABo4IC8zCCAu8w HwYDVR0jBBgwFoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFPa1gIBK 3KFXS49hEp7xBKNJ0qmxMCMGA1UdEQQcMBqCGHN0YWdpbmctbmhxcm5ldC5haHJx LmdvdjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1 c3QuY29tL3IybTAyLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcB AQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0 LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5j b20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwggGABgorBgEEAdZ5AgQCBIIBcASC AWwBagB3AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABhoQvUtUA AAQDAEgwRgIhAJRq1U2WD0cHfNiYnVzsaMlNsIJ8PvaiP97H0QLPx24zAiEAstrt OrymH9xGl+803QxeZW9hrSa6frAA7GB7UhkMv/sAdgCzc3cH4YRQ+GOG1gWp3BEJ SnktsWcMC4fc8AMOeTalmgAAAYaEL1MzAAAEAwBHMEUCIBz9RN+dBV31ier8hQb1 ld2OWTj1eCK89cvHJvmqMC9SAiEA75dl9bTnYDcRSaw9H53XDR0Zwi1/8gR2D5YL udVpPUIAdwC3Pvsk35xNunXyOcW6WPRsXfxCz3qfNcSeHQmBJe20mQAAAYaEL1Lu AAAEAwBIMEYCIQCl3ANkJgTt1qDGTtbyvg5oE7e8YKFOfFTXxPkPNmmmngIhAMi3 626vtHr6Q6rW/9wpHzGhmzZNfP30cd22oscTTPdJMA0GCSqGSIb3DQEBCwUAA4IB AQAVl8gW3Th3v+Xip9Iqr++Rgjgh5jEjI5iainT6HVrv5LXv/j3yxiX3f/hjY50a 6CzXd9vTUCBraaC4p03+CUFGmu7aXh7OWbsu0DglfI/YT+oNdmkHIZ9DStA5HCZD ZFc6On311eXGPKbXfhCGBplPZ1f3AlCqlxXTal6qYgMH1c0v0Dvtifiv6wobnMvc WXlTxVoBMEGbBZ+ouDZR/DMkiUsHvnYJXGX4Heqr5i1bXBIVx3InotPrW4i7u5ab yDuIuxyPX3NyEU9YPv46buyXFtJlAEwMdkEKHxmWlVGNfEvlCTqqcO4K8uYrXQXL twFCe/l+LTKUI6503kjc7dfC -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9PhEfe4SdLZdUPiyS5f p6sH7U34J3nOhSYpngCydVxLzuXfSoXqcfL4NcHgXJcOz0L5NBmbjJ/0/x3AFRAA 2xxIL9Y7FECnrs6WoiSINQ7RPG+nO/nt12MSE8zgRdRHT9CNWTkAU5YGXNw+55zn NuTn6TLUPld98TdeZqkzi5X1p9jnKBEwuJ19rsxpc87hZZn9oyF4VQJjZTCSlADb fuJPu6VtPf34Ccr5vDVkcm3tPjE5NhX2SCC2z7/+qcyF68GnFMBgjDlbEbL88YqJ duQCj/D5mt86yBej2/XZ70zcsiMZaGkJzpNcKNz+uOotOouanqjwdpYvWZPnjFyI hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8891893456568205783932333480011533357 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging-nhqrnet.ahrq.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19671418787681061368037340848432047095168531214180816023086139848153366332665214300933921435032825535171796091659431339904477601066998055372909174626402528805961344000663232190782118051061758350605755270252445305625838836541838106082635744717726037128397089505960502509984018196861336098673344598643528704597348065000806189856201358434219218020546318344118388058987777887443449672727490777900960907202748383241644142551077764762922214913396764186618210889355879237039551049922129146615504915415181183206233891281514176379283336545014190926229846804363235772497637348951868827586912521325832140240778283318620756674693 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f6b580804adca1574b8f61129ef104a349d2a9b1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-nhqrnet.ahrq.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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