*.use1.huffpo.net
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 03:3a:f7:bf:8b:1c:1a:96:5c:1d:7a:32:25:78:fa:15 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.use1.huffpo.net
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:3a:f7:bf:8b:1c:1a:96:5c:1d:7a:32:25:78:fa:15Serial Number (int): 4293862135953301651543320924352215573
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 68:7c:1c:9a:65:28:55:90:99:fe:b8:64:3b:89:8e:d9:d1:8f:30:e6
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 90:3c:bb:d4:ff:56:e2:c1:84:a5:82:b0:36:cf:b6:76:d2:e4:34:e9
Fingerprint (sha256): 1b:e9:b9:46:68:a8:40:b2:10:f4:08:81:b9:cf:de:06:ef:c2:31:a3:4d:41:ca:54:c0:d4:a9:f3:ba:a1:12:fd
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.use1.huffpo.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.use1.huffpo.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.use1.huffpo.net
Other certificates including the domain name huffpo.net
(limited to 100 certificates)
qa-athena-mongo-image.huffpo.net
production-athenizer.use1.huffpo.net
staging-origin-life.huffpo.net
qa.mapi.huffpost.com
*.app-west.buzzfeed.io
production-athena-mongo-cms.huffpo.net
buildbot.office.aol.com
staging-content-transform.use1.huffpo.net
qa.mapi.huffpost.com
src5.yahoo.com
staging-origin-life.huffpo.net
production-modulous-tag-manager.use1.huffpo.net
beta-origin-cambria-alb.huffpo.net
production-kraken-valencia-preview.use1.huffpo.net
qa.preview.www.huffpost.com
*.utils.huffpo.net
qa.preview.www.huffpost.com
www.huffpost.com
origin-kraken.huffpo.net
origin-hanami.huffpo.net
beta-origin-cambria-alb.huffpo.net
qa.preview.www.huffpost.com
www.huffingtonpost.com
www.huffingtonpost.com
staging-modulous-api-lb.use1.huffpo.net
qa-origin-life.huffpo.net
staging-athena-mongo-cms.huffpo.net
beta.www.huffpost.com
src5.yahoo.com
src5.yahoo.com
qa-origin-life.huffpo.net
*.prod.buzzfeed.io
qa-origin-life.huffpo.net
origin-kraken.huffpo.net
src5.yahoo.com
staging-modulous-api-varnish.use1.huffpo.net
qa-origin-life.huffpo.net
staging-mtkiller-mongo.use1.huffpo.net
origin-identifiers.huffpost.net
www.huffingtonpost.com
staging-origin-hanami-alb.huffpo.net
origin-hanami-alb.huffpo.net
qa.preview.www.huffpost.com
production-athenizer.use1.huffpo.net
*.stage.buzzfeed.io
staging.modulous.aol.com
*.prod.buzzfeed.io
*.stage.buzzfeed.io
staging-athena-mongo-cms.huffpost.net
staging.preview.www.huffpost.com
*.use1.huffpo.net
preview.www.huffpost.com
preview.beta.www.huffpost.com
staging-athena-mongo-cms.huffpo.net
*.app-west.buzzfeed.io
*.edge.huffpo.net
qa.mapi.huffpost.com
beta.www.huffpost.com
preview.www.huffpost.com
origin-kraken.huffpo.net
qa-origin-life.huffpo.net
qa.www.huffpost.com
*.edge.huffpo.net
*.app-west.buzzfeed.io
src5.yahoo.com
www.huffpost.com
staging.preview.www.huffpost.com
origin-identifiers.huffpost.net
production-trait-manager.use1.huffpo.net
production-athenizer.use1.huffpo.net
production-kraken-valencia-preview.use1.huffpo.net
*.amp.edge.huffpo.net
*.prod.buzzfeed.io
qa-origin-life.huffpo.net
*.games.yahoo.com
src5.yahoo.com
www.huffpost.com
production-kraken-valencia-preview.use1.huffpo.net
*.cambria-production.huffpo.net
production-athenizer.use1.huffpo.net
www.huffingtonpost.com
qa.preview.www.huffpost.com
*.utils.huffpo.net
origin-hanami.huffpo.net
staging.preview.www.huffpost.com
modulous.aol.com
*.stage.buzzfeed.io
staging-audiogram.use1.huffpo.net
src5.yahoo.com
www.huffingtonpost.com
qa-athena-mongo-cms.huffpo.net
staging-content-transform.use1.huffpo.net
*.app-west.buzzfeed.io
*.use1.huffpo.net
src5.yahoo.com
origin-identifiers.huffpost.net
*.use1.huffpo.net
src5.yahoo.com
beta-preview-origin-cambria-alb.huffpo.net
*.app-west.buzzfeed.io
production-athenizer.use1.huffpo.net
staging-origin-life.huffpo.net
qa.mapi.huffpost.com
*.app-west.buzzfeed.io
production-athena-mongo-cms.huffpo.net
buildbot.office.aol.com
staging-content-transform.use1.huffpo.net
qa.mapi.huffpost.com
src5.yahoo.com
staging-origin-life.huffpo.net
production-modulous-tag-manager.use1.huffpo.net
beta-origin-cambria-alb.huffpo.net
production-kraken-valencia-preview.use1.huffpo.net
qa.preview.www.huffpost.com
*.utils.huffpo.net
qa.preview.www.huffpost.com
www.huffpost.com
origin-kraken.huffpo.net
origin-hanami.huffpo.net
beta-origin-cambria-alb.huffpo.net
qa.preview.www.huffpost.com
www.huffingtonpost.com
www.huffingtonpost.com
staging-modulous-api-lb.use1.huffpo.net
qa-origin-life.huffpo.net
staging-athena-mongo-cms.huffpo.net
beta.www.huffpost.com
src5.yahoo.com
src5.yahoo.com
qa-origin-life.huffpo.net
*.prod.buzzfeed.io
qa-origin-life.huffpo.net
origin-kraken.huffpo.net
src5.yahoo.com
staging-modulous-api-varnish.use1.huffpo.net
qa-origin-life.huffpo.net
staging-mtkiller-mongo.use1.huffpo.net
origin-identifiers.huffpost.net
www.huffingtonpost.com
staging-origin-hanami-alb.huffpo.net
origin-hanami-alb.huffpo.net
qa.preview.www.huffpost.com
production-athenizer.use1.huffpo.net
*.stage.buzzfeed.io
staging.modulous.aol.com
*.prod.buzzfeed.io
*.stage.buzzfeed.io
staging-athena-mongo-cms.huffpost.net
staging.preview.www.huffpost.com
*.use1.huffpo.net
preview.www.huffpost.com
preview.beta.www.huffpost.com
staging-athena-mongo-cms.huffpo.net
*.app-west.buzzfeed.io
*.edge.huffpo.net
qa.mapi.huffpost.com
beta.www.huffpost.com
preview.www.huffpost.com
origin-kraken.huffpo.net
qa-origin-life.huffpo.net
qa.www.huffpost.com
*.edge.huffpo.net
*.app-west.buzzfeed.io
src5.yahoo.com
www.huffpost.com
staging.preview.www.huffpost.com
origin-identifiers.huffpost.net
production-trait-manager.use1.huffpo.net
production-athenizer.use1.huffpo.net
production-kraken-valencia-preview.use1.huffpo.net
*.amp.edge.huffpo.net
*.prod.buzzfeed.io
qa-origin-life.huffpo.net
*.games.yahoo.com
src5.yahoo.com
www.huffpost.com
production-kraken-valencia-preview.use1.huffpo.net
*.cambria-production.huffpo.net
production-athenizer.use1.huffpo.net
www.huffingtonpost.com
qa.preview.www.huffpost.com
*.utils.huffpo.net
origin-hanami.huffpo.net
staging.preview.www.huffpost.com
modulous.aol.com
*.stage.buzzfeed.io
staging-audiogram.use1.huffpo.net
src5.yahoo.com
www.huffingtonpost.com
qa-athena-mongo-cms.huffpo.net
staging-content-transform.use1.huffpo.net
*.app-west.buzzfeed.io
*.use1.huffpo.net
src5.yahoo.com
origin-identifiers.huffpost.net
*.use1.huffpo.net
src5.yahoo.com
beta-preview-origin-cambria-alb.huffpo.net
*.app-west.buzzfeed.io
Certificate
The complete raw certificate details for *.use1.huffpo.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIQAzr3v4scGpZcHXoyJXj6FTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDIyODAwMDAwMFoXDTI0MDIxNTIzNTk1OVowHDEa MBgGA1UEAwwRKi51c2UxLmh1ZmZwby5uZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBZZcXbJGpG0ZxGgiQAfdUO4b962LCKsWhNnqrdZvPbf+phM7Y MCJDvf2MEDzhfFFoHNeC1ANdoJiu93hyX5O2lO4LGJeFNh7VcfLA2HbFYMe55HOQ upkCTE7BdL81sUCwRK07Asx0O32v0Xo8e9LCPG9zQH98IIBwdKE/TFVtMFUrXakg WkrQqDa0Gyuvaxn90VbthPwsp4O3bSMQOAi+cxzroo25ioqHsGYUHroMx8ufmMuu Mik1peIZW70CvmOF4N9tIj0zaUfTzj6hKd7lUCAzztHPBmpfC9MqnVEZGBzO9zFi jek+XBiaP+yoiGHLMaaZ6+V3MFqxIiZqQ7THAgMBAAGjggLrMIIC5zAfBgNVHSME GDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUaHwcmmUoVZCZ/rhk O4mO2dGPMOYwHAYDVR0RBBUwE4IRKi51c2UxLmh1ZmZwby5uZXQwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAy MDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5j cmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUF BzABhiFodHRwOi8vb2NzcC5yMm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUH MAKGKmh0dHA6Ly9jcnQucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAM BgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgDuzdBk1dsa zsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYaX7BHMAAAEAwBHMEUCIQC1zQZw hmCfgRdEtoNKg8zPUb2gRMolCh1irt86x0WfgwIgG+OAxrApBRo8cHVN6r3p1iZv kuY43cydy/CGiNKLPmAAdwBz2Z6JG0yWeKAgfUed5rLGHNBRXnEZKoxrgBB6wXdy tQAAAYaX7BHkAAAEAwBIMEYCIQCIkeNh9hME5tXjOGCu36/Wc72No37ZwN+fdycq +1RX8QIhAJE5l6gytDMOzvC4dxRvdLuZc6LA1rRm4B5S0nhHeuM0AHYASLDja9qm RzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGGl+wRrwAABAMARzBFAiAFRTiJ gTVRPrv/YGPM1+yCjU/oI1th8Xefliz0waqkmwIhAK6Ius9nspma1LvviG419Q60 7vRdtZjtSpjcTmiQUJStMA0GCSqGSIb3DQEBCwUAA4IBAQBOpa+1NGXSV8oomAks i6+cE/aGIdtvJskWTQxdttE30sEMH9d55tLBxYKm+mNC1J7jgSu8qh3Aamc6gc+l kvEld7fdFqBqynv1PvjRMuAQbcq10O8SiFrk/RgpJNn4E+kAJG9qy8CZqu/sUoo2 Be8RlRSLXQfZ+b9p78HUYife9N85TNp7r1XGPMpd1g5+ZtAx43HVhcs/34kJEANR y5gJqK6/tRSg4Wj6ikBQefostuYohGeyKoUmFga0FarB/0MZnUwOiZbc9w2e/zge mdK6s2AG2WmG6k1mAQGOZRJJll6CenWpXApvfyyUfLz+AUpf4huu3ufUJ3XLUA7T lwhq -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWWXF2yRqRtGcRoIkAH3 VDuG/etiwirFoTZ6q3Wbz23/qYTO2DAiQ739jBA84XxRaBzXgtQDXaCYrvd4cl+T tpTuCxiXhTYe1XHywNh2xWDHueRzkLqZAkxOwXS/NbFAsEStOwLMdDt9r9F6PHvS wjxvc0B/fCCAcHShP0xVbTBVK12pIFpK0Kg2tBsrr2sZ/dFW7YT8LKeDt20jEDgI vnMc66KNuYqKh7BmFB66DMfLn5jLrjIpNaXiGVu9Ar5jheDfbSI9M2lH084+oSne 5VAgM87RzwZqXwvTKp1RGRgczvcxYo3pPlwYmj/sqIhhyzGmmevldzBasSImakO0 xwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4293862135953301651543320924352215573 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.use1.huffpo.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24414088853751214141826937377300539760498594617802341627885467931195457829437603578413169452353209011925878792416978855304156370100865694244441828516592906082235599623751548980298990423578414483034076623889500496683434026956678296919382639567230674930295005573599142765593466196432740852838101306842292636124420406221897896364947581033232081131683787754667570701798353086837793070555777386519637162369285501800230287293431263389131071624686092703567559489164624201403282300269187638534948877014301734665553131102121236299591774600697414381347728129268738460610622135492531727075178606829865755096518430476339681408199 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 687c1c9a6528559099feb8643b898ed9d18f30e6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.use1.huffpo.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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