airview-kona-dev.dht.live
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 08:c7:a1:22:59:60:5f:5b:4b:77:14:46:12:82:cb:46 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=airview-kona-dev.dht.live
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 08:c7:a1:22:59:60:5f:5b:4b:77:14:46:12:82:cb:46Serial Number (int): 11670359230492144146923895147114711878
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 0d:98:ec:c0:5a:27:51:2e:c0:a6:5c:86:68:3c:b5:5d:f9:fe:55:95
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 49:0a:7c:95:e2:05:f4:be:9d:23:8e:8b:5d:e4:43:bc:2e:77:34:44
Fingerprint (sha256): 1d:57:41:2e:f2:a2:a7:e8:51:7a:1d:46:0c:13:d4:68:22:8d:63:03:0e:b6:60:fe:59:d1:fa:97:7e:b9:b3:ff
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate airview-kona-dev.dht.live
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for airview-kona-dev.dht.live
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
airview-kona-dev.dht.live
*.airview-kona-dev.dht.live
*.airview-kona-dev.dht.live
Other certificates including the domain name dht.live
(limited to 100 certificates)
static.showtime7-sbx.dht.live
green-mcs-d.messaging2-amr-prd.dht.live
static.showtime8-sbx.dht.live
green-iot-avx-a.airview-messaging-stg.dht.live
sc-2061-werewolf-api.honeybadgers-sbx.dht.live
avw.airview0-dev.dht.live
sc-1457-scui.honeybadgers-sbx.dht.live
green-iot-hub-c.messaging2-amr-prd.dht.live
support-api.showtime5-sbx.dht.live
monaco.airview0-dev.dht.live
external.showtime8-sbx.dht.live
support-api.showtime8-sbx.dht.live
artifactory-edge-amr.artifactory-shared.dht.live
api.aloe-dev.dht.live
avx-mock-amr.showtime6-sbx.dht.live
mobilequestionsui.sleep-concierge-qa.dht.live
docs.showtime8-sbx.dht.live
nexus-new.airview0-shared.dht.live
*.mgmt.paas.dht.live
docs.showtime2-sbx.dht.live
avx-mock-apac.showtime8-sbx.dht.live
data-platform-mock.showtime5-sbx.dht.live
data-platform-mock.showtime8-sbx.dht.live
green-iot-avx-d.airview-messaging-stg.dht.live
docs.showtime5-sbx.dht.live
peep-ws10.smart-coaching-dev.dht.live
bitbucket.prod.dht.live
sc-1470-mobilequestionsui.honeybadgers-sbx.dht.live
graphql.showtime8-sbx.dht.live
amr-stg-mcs-c.airview-messaging-stg.dht.live
graphql.showtime5-sbx.dht.live
green-mcspacific-a.messaging2-amr-prd.dht.live
external.myair-eu-dev.dht.live
docs.showtime7-sbx.dht.live
support-api.showtime6-sbx.dht.live
peep-ws5.smart-coaching-dev.dht.live
green-iot-mds-h.messaging2-amr-stg.dht.live
api.showtime4-sbx.dht.live
green-iot-mds-f.airview-messaging-stg.dht.live
api.hellosleep-prd.dht.live
opsmanager-amr-sbx.atlas-sbx.dht.live
nightowl.showtime6-sbx.dht.live
green-mcspacific-c.messaging2-amr-stg.dht.live
scui.sleep-concierge-prd.dht.live
api.showtime8-sbx.dht.live
sc-1457-werewolf-api.honeybadgers-sbx.dht.live
*.sre-dev-ave-qa.dht.live
support-api.showtime7-sbx.dht.live
green-dps-ebs-b.messaging2-amr-prd.dht.live
graphql.showtime8-sbx.dht.live
avx-mock-amr.showtime2-sbx.dht.live
data-platform-mock.myair-eu-dev.dht.live
content-ws4.smart-coaching-dev.dht.live
green-iot-mds-c.messaging2-amr-stg.dht.live
*.airview-icm-dev.dht.live
avw.airview0-dev.dht.live
data-platform-mock.myair-eu-dev.dht.live
avx-mock-apac.showtime9-sbx.dht.live
green-iot-avx-c.airview-messaging-stg.dht.live
dev.us-west-2.paas.dht.live
avx-mock-apac.myair-eu-dev.dht.live
green-iot-avx-b.airview-messaging-stg.dht.live
peep-ws3.smart-coaching-dev.dht.live
honeybadgers-sbx.dht.live
content-ws1.smart-coaching-dev.dht.live
docs.showtime5-sbx.dht.live
avx-mock-amr.showtime5-sbx.dht.live
nightowl-mock.showtime8-sbx.dht.live
green-iot-avx-e.airview-messaging-stg.dht.live
green-iot-avx-d.messaging2-amr-prd.dht.live
devjmqc-envoymq-hub.bouncer-dev.dht.live
amr-prod-hub-b.prod-messaging-prd.dht.live
green-iot-hub-a.machine-services-perf-stg.dht.live
sc-1428-survey-api.honeybadgers-sbx.dht.live
graphql.showtime5-sbx.dht.live
docs.showtime4-sbx.dht.live
data-platform-mock.showtime4-sbx.dht.live
amr-dev-mds-f.airview-messaging-dev.dht.live
green-mcs-e.messaging2-amr-prd.dht.live
avx-mock-amr.showtime2-sbx.dht.live
support-api.myair-eu-dev.dht.live
mcs2-dev.dht.live
graphql.showtime10-sbx.dht.live
green-iot-mds-h.airview-messaging-stg.dht.live
green-mcspacific-b.messaging2-amr-stg.dht.live
docs.showtime5-sbx.dht.live
airview-kona-dev.dht.live
artifactory-nexus.airview0-dev.dht.live
avx.eta.dht.live
mcs2-dev.dht.live
green-rhs-a.messaging2-apac-stg.dht.live
external.showtime2-sbx.dht.live
sc-tam-scui.honeybadgers-sbx.dht.live
static.showtime5-sbx.dht.live
avx-mock-eu.showtime7-sbx.dht.live
static.showtime5-sbx.dht.live
docs.showtime8-sbx.dht.live
green-envoymq-hub.messaging2-amr-stg.dht.live
green-iot-mds-a.airview-messaging-stg.dht.live
api.showtime7-sbx.dht.live
green-mcs-d.messaging2-amr-prd.dht.live
static.showtime8-sbx.dht.live
green-iot-avx-a.airview-messaging-stg.dht.live
sc-2061-werewolf-api.honeybadgers-sbx.dht.live
avw.airview0-dev.dht.live
sc-1457-scui.honeybadgers-sbx.dht.live
green-iot-hub-c.messaging2-amr-prd.dht.live
support-api.showtime5-sbx.dht.live
monaco.airview0-dev.dht.live
external.showtime8-sbx.dht.live
support-api.showtime8-sbx.dht.live
artifactory-edge-amr.artifactory-shared.dht.live
api.aloe-dev.dht.live
avx-mock-amr.showtime6-sbx.dht.live
mobilequestionsui.sleep-concierge-qa.dht.live
docs.showtime8-sbx.dht.live
nexus-new.airview0-shared.dht.live
*.mgmt.paas.dht.live
docs.showtime2-sbx.dht.live
avx-mock-apac.showtime8-sbx.dht.live
data-platform-mock.showtime5-sbx.dht.live
data-platform-mock.showtime8-sbx.dht.live
green-iot-avx-d.airview-messaging-stg.dht.live
docs.showtime5-sbx.dht.live
peep-ws10.smart-coaching-dev.dht.live
bitbucket.prod.dht.live
sc-1470-mobilequestionsui.honeybadgers-sbx.dht.live
graphql.showtime8-sbx.dht.live
amr-stg-mcs-c.airview-messaging-stg.dht.live
graphql.showtime5-sbx.dht.live
green-mcspacific-a.messaging2-amr-prd.dht.live
external.myair-eu-dev.dht.live
docs.showtime7-sbx.dht.live
support-api.showtime6-sbx.dht.live
peep-ws5.smart-coaching-dev.dht.live
green-iot-mds-h.messaging2-amr-stg.dht.live
api.showtime4-sbx.dht.live
green-iot-mds-f.airview-messaging-stg.dht.live
api.hellosleep-prd.dht.live
opsmanager-amr-sbx.atlas-sbx.dht.live
nightowl.showtime6-sbx.dht.live
green-mcspacific-c.messaging2-amr-stg.dht.live
scui.sleep-concierge-prd.dht.live
api.showtime8-sbx.dht.live
sc-1457-werewolf-api.honeybadgers-sbx.dht.live
*.sre-dev-ave-qa.dht.live
support-api.showtime7-sbx.dht.live
green-dps-ebs-b.messaging2-amr-prd.dht.live
graphql.showtime8-sbx.dht.live
avx-mock-amr.showtime2-sbx.dht.live
data-platform-mock.myair-eu-dev.dht.live
content-ws4.smart-coaching-dev.dht.live
green-iot-mds-c.messaging2-amr-stg.dht.live
*.airview-icm-dev.dht.live
avw.airview0-dev.dht.live
data-platform-mock.myair-eu-dev.dht.live
avx-mock-apac.showtime9-sbx.dht.live
green-iot-avx-c.airview-messaging-stg.dht.live
dev.us-west-2.paas.dht.live
avx-mock-apac.myair-eu-dev.dht.live
green-iot-avx-b.airview-messaging-stg.dht.live
peep-ws3.smart-coaching-dev.dht.live
honeybadgers-sbx.dht.live
content-ws1.smart-coaching-dev.dht.live
docs.showtime5-sbx.dht.live
avx-mock-amr.showtime5-sbx.dht.live
nightowl-mock.showtime8-sbx.dht.live
green-iot-avx-e.airview-messaging-stg.dht.live
green-iot-avx-d.messaging2-amr-prd.dht.live
devjmqc-envoymq-hub.bouncer-dev.dht.live
amr-prod-hub-b.prod-messaging-prd.dht.live
green-iot-hub-a.machine-services-perf-stg.dht.live
sc-1428-survey-api.honeybadgers-sbx.dht.live
graphql.showtime5-sbx.dht.live
docs.showtime4-sbx.dht.live
data-platform-mock.showtime4-sbx.dht.live
amr-dev-mds-f.airview-messaging-dev.dht.live
green-mcs-e.messaging2-amr-prd.dht.live
avx-mock-amr.showtime2-sbx.dht.live
support-api.myair-eu-dev.dht.live
mcs2-dev.dht.live
graphql.showtime10-sbx.dht.live
green-iot-mds-h.airview-messaging-stg.dht.live
green-mcspacific-b.messaging2-amr-stg.dht.live
docs.showtime5-sbx.dht.live
airview-kona-dev.dht.live
artifactory-nexus.airview0-dev.dht.live
avx.eta.dht.live
mcs2-dev.dht.live
green-rhs-a.messaging2-apac-stg.dht.live
external.showtime2-sbx.dht.live
sc-tam-scui.honeybadgers-sbx.dht.live
static.showtime5-sbx.dht.live
avx-mock-eu.showtime7-sbx.dht.live
static.showtime5-sbx.dht.live
docs.showtime8-sbx.dht.live
green-envoymq-hub.messaging2-amr-stg.dht.live
green-iot-mds-a.airview-messaging-stg.dht.live
api.showtime7-sbx.dht.live
Certificate
The complete raw certificate details for airview-kona-dev.dht.live in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEjjCCA3agAwIBAgIQCMehIllgX1tLdxRGEoLLRjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIwOTAwMDAwMFoXDTI1MDEwNzIzNTk1OVowJDEi MCAGA1UEAxMZYWlydmlldy1rb25hLWRldi5kaHQubGl2ZTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBALfU7bK/frLLLPH1+MwuGxXr+gocVtDiVLCHt3gs QMoFKTNlhscFGWkfTXjCFrkdMDCaenOxmfOucHnM1vMmXE2VeQGPKoTlmlHvVdLX h9gbxV8XLaamg7TcXa7uPCKrG+TF+ex5Cd9+R0U/eNv9US66Y+Xay6sN2mqZADop VfIeqgH7mPTi28K7CbC7H1QYMZuXr1iOvld5wgyq9adae09iQWhAPx3UxN0X99D4 y810oPTkpBOvxO50jgEF/JGRYD4Ve93v6Ty26Svpi+WQ0eeVfUA6iGx2L/tX/Vtu UZPIXDxcw9Pc5lNyVAZ9Z8R0fBRAzdb0xk/JXVTQMWu+ylsCAwEAAaOCAaIwggGe MB8GA1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBQNmOzA WidRLsCmXIZoPLVd+f5VlTBBBgNVHREEOjA4ghlhaXJ2aWV3LWtvbmEtZGV2LmRo dC5saXZlghsqLmFpcnZpZXcta29uYS1kZXYuZGh0LmxpdmUwEwYDVR0gBAwwCjAI BgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpv bnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzAB hiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKG Kmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNV HRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAq7nrI3gGePIbcVgALLgr09AR7l/Gl7VRxnQ26gFzTkMHqxLe9ob3KyP21QfZ+ x84J12YTwgnaIL7t57W20NrTANYwzoXHZPxiT0q+V2Yq1HR4EzGu4H38hvkWzu8+ KNPlAagmagLgkMMJbbaBOLccv/TLgJh9OIN0A3b4j38tCwqHL5JlXupPlraGI2ME aoDHsX7Nu2RHsDYfjdsRCkCnXJOfSVX+roggRC2H1hjRFpoJuNyntPw07LB4rFLT OJlklhAUFEoScvcelc4GSefGgpVlTAmNuRD5NvGV4l1gggMwmc/qwNv9GTWBk3xa hWpoCgS8fyOnuoj15GZwXbbR -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9Ttsr9+ssss8fX4zC4b Fev6ChxW0OJUsIe3eCxAygUpM2WGxwUZaR9NeMIWuR0wMJp6c7GZ865weczW8yZc TZV5AY8qhOWaUe9V0teH2BvFXxctpqaDtNxdru48Iqsb5MX57HkJ335HRT942/1R Lrpj5drLqw3aapkAOilV8h6qAfuY9OLbwrsJsLsfVBgxm5evWI6+V3nCDKr1p1p7 T2JBaEA/HdTE3Rf30PjLzXSg9OSkE6/E7nSOAQX8kZFgPhV73e/pPLbpK+mL5ZDR 55V9QDqIbHYv+1f9W25Rk8hcPFzD09zmU3JUBn1nxHR8FEDN1vTGT8ldVNAxa77K WwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11670359230492144146923895147114711878 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'airview-kona-dev.dht.live' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23206608769807590481185557420270367764497728783911506406002945341811771961259526137412717931094352166437494642523004419489765790762627611108059245174603816426756489470858334595365847112816759463091564094970637971798889354402919876599431375637207047064431543040535559881988308878110572345977564072277596357052261784613302445219242699214463248431914066611456400702958262137555865621515465636265163236405741400252764699886807735620324879976038058179179875392084972066306516867300304396637823946489167459825404130789448181135741489699242713668990809828950800350526636997677069742591473882409489555017011196151834993412699 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0d98ecc05a27512ec0a65c86683cb55df9fe5595 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'airview-kona-dev.dht.live' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.airview-kona-dev.dht.live' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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