*.coremedia.guj.digital
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 03:b6:6e:09:51:1f:74:ec:f9:aa:b9:a2:ae:da:ae:b6 was issued on by Amazon.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.coremedia.guj.digital
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:b6:6e:09:51:1f:74:ec:f9:aa:b9:a2:ae:da:ae:b6Serial Number (int): 4934913818824265221100658167572508342
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 3a:37:fd:1c:41:5b:81:9e:f6:27:72:25:12:da:33:33:00:02:64:3a
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 33:37:e6:7a:f2:dd:6a:38:c8:b2:fd:d7:e3:9c:7f:ce:8f:b5:56:13
Fingerprint (sha256): 1d:c1:28:ae:03:c4:a2:a2:dd:39:1c:da:44:98:06:b2:85:95:53:17:b4:db:fd:6d:71:73:60:59:21:a8:b3:04
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.coremedia.guj.digital
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.coremedia.guj.digital
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.coremedia.guj.digital
*.essen-und-trinken.de
coremedia.guj.digital
*.brigitte.de
*.guj.digital
*.gala.de
*.eltern.de
*.vip.de
*.schoener-wohnen.de
*.capital.de
*.stern.de
*.livingathome.de
*.geo.de
*.essen-und-trinken.de
coremedia.guj.digital
*.brigitte.de
*.guj.digital
*.gala.de
*.eltern.de
*.vip.de
*.schoener-wohnen.de
*.capital.de
*.stern.de
*.livingathome.de
*.geo.de
Other certificates including the domain name guj.digital
(limited to 100 certificates)
static.stern.de
static.stern.de
static.stern.de
www.guj.digital
assetcloud-stage.guj.digital
*.das-001-prod-eks2.guj.digital
static.stern.de
confluence.guj.digital
www.stage.stern.de
b0173.guj.digital
*.stage.mobile-toolkit.guj.digital
www.guj.digital
www.stage.stern.de
static.stern.de
www.guj.digital
ki.guj.digital
static.stern.de
static.stern.de
www.guj.digital
www.stage.stern.de
*.coremedia-dev.guj.digital
www.guj.digital
www.stage.stern.de
a0818.guj.digital
*.onecore-dev.guj.digital
www.guj.digital
*.harmony.guj.digital
*.das-001-prod-eks2.guj.digital
static.stern.de
www.guj.digital
static.stern.de
static.stern.de
a0162.guj.digital
static.stern.de
guj.digital
static.stern.de
*.coremedia.guj.digital
dcvtest.guj.digital
static.stern.de
a0127.guj.digital
static.stern.de
static.stern.de
static.stern.de
ck.neue-umgebung.de
api-warmup.paid.guj.digital
www.stage.stern.de
www.guj.digital
static.stern.de
static.stern.de
guj.digital
www.guj.digital
*.guj.digital
static.stern.de
*.harmony-dev.guj.digital
guj.digital
static.stern.de
static.stern.de
www.stage.stern.de
guj.digital
guj.digital
api.paid-dev.guj.digital
static.stern.de
www.stage.stern.de
static.stern.de
static.stern.de
das.guj.digital
static.stern.de
static.stern.de
*.harmony.guj.digital
www.stage.stern.de
static.stern.de
*.onecore-dev.guj.digital
www.guj.digital
konfi.guj.digital
www.stage.stern.de
www.stage.stern.de
static.stern.de
static.stern.de
static.stern.de
static.stern.de
*.harmony.guj.digital
www.guj.digital
static.stern.de
www.guj.digital
static.stern.de
static.stern.de
s3repo.guj.digital
guj.digital
www.guj.digital
static.stern.de
static.stern.de
diginet.guj.digital
static.stern.de
static.stern.de
static.stern.de
kam.das-001-dev.guj.digital
*.harmony-dev.guj.digital
paid-preview.stern.de
api.paid.guj.digital
static.stern.de
static.stern.de
static.stern.de
www.guj.digital
assetcloud-stage.guj.digital
*.das-001-prod-eks2.guj.digital
static.stern.de
confluence.guj.digital
www.stage.stern.de
b0173.guj.digital
*.stage.mobile-toolkit.guj.digital
www.guj.digital
www.stage.stern.de
static.stern.de
www.guj.digital
ki.guj.digital
static.stern.de
static.stern.de
www.guj.digital
www.stage.stern.de
*.coremedia-dev.guj.digital
www.guj.digital
www.stage.stern.de
a0818.guj.digital
*.onecore-dev.guj.digital
www.guj.digital
*.harmony.guj.digital
*.das-001-prod-eks2.guj.digital
static.stern.de
www.guj.digital
static.stern.de
static.stern.de
a0162.guj.digital
static.stern.de
guj.digital
static.stern.de
*.coremedia.guj.digital
dcvtest.guj.digital
static.stern.de
a0127.guj.digital
static.stern.de
static.stern.de
static.stern.de
ck.neue-umgebung.de
api-warmup.paid.guj.digital
www.stage.stern.de
www.guj.digital
static.stern.de
static.stern.de
guj.digital
www.guj.digital
*.guj.digital
static.stern.de
*.harmony-dev.guj.digital
guj.digital
static.stern.de
static.stern.de
www.stage.stern.de
guj.digital
guj.digital
api.paid-dev.guj.digital
static.stern.de
www.stage.stern.de
static.stern.de
static.stern.de
das.guj.digital
static.stern.de
static.stern.de
*.harmony.guj.digital
www.stage.stern.de
static.stern.de
*.onecore-dev.guj.digital
www.guj.digital
konfi.guj.digital
www.stage.stern.de
www.stage.stern.de
static.stern.de
static.stern.de
static.stern.de
static.stern.de
*.harmony.guj.digital
www.guj.digital
static.stern.de
www.guj.digital
static.stern.de
static.stern.de
s3repo.guj.digital
guj.digital
www.guj.digital
static.stern.de
static.stern.de
diginet.guj.digital
static.stern.de
static.stern.de
static.stern.de
kam.das-001-dev.guj.digital
*.harmony-dev.guj.digital
paid-preview.stern.de
api.paid.guj.digital
static.stern.de
Certificate
The complete raw certificate details for *.coremedia.guj.digital in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGmzCCBYOgAwIBAgIQA7ZuCVEfdOz5qrmirtqutjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDExMDAwMDAwMFoXDTI1MDIwNzIzNTk1OVowIjEg MB4GA1UEAwwXKi5jb3JlbWVkaWEuZ3VqLmRpZ2l0YWwwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQCpZ5HMxNnx5rAVNVNybERmO+8r08L3cXvD09UN0vIz qCIzNWtyDFRIQyV9+W0guQ5WKE4Jb3euTAJZ2QR+miU3PI7lBA0C0/XSnqN1L+5n zUHm6owXjbtMQuJI8A2652yvH/+yn/0ipefPecVTVFWUUugEHGuURod+aKHfbeY5 Ke/CeHxLjaI43svD5dFQSwjpODSlVVVssitOnPM1QeajYka18kFdReG1oOU61kfk Tt5GU/jf0HqBtEoKWIZgDlX8OXOjshn1aHEDiJnN6Fh3sQOAhaH7BpUdSuUkmDE0 vHwGVpVFjmH7k4oZhghkVIwTWzIoJ82z/wtApJYoOWUxAgMBAAGjggOxMIIDrTAf BgNVHSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUOjf9HEFb gZ72J3IlEtozMwACZDowgeAGA1UdEQSB2DCB1YIXKi5jb3JlbWVkaWEuZ3VqLmRp Z2l0YWyCFiouZXNzZW4tdW5kLXRyaW5rZW4uZGWCFWNvcmVtZWRpYS5ndWouZGln aXRhbIINKi5icmlnaXR0ZS5kZYINKi5ndWouZGlnaXRhbIIJKi5nYWxhLmRlggsq LmVsdGVybi5kZYIIKi52aXAuZGWCFCouc2Nob2VuZXItd29obmVuLmRlggwqLmNh cGl0YWwuZGWCCiouc3Rlcm4uZGWCESoubGl2aW5nYXRob21lLmRlgggqLmdlby5k ZTATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9j cmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRp MGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNv bTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20v cjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwggGABgorBgEEAdZ5AgQCBIIBcASCAWwB agB3AE51oydcmhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjPOQ3UwAAAQD AEgwRgIhANZ1tLANmnHhr6e5uRrz8OZY+ZJkbn4olyAQAHZTQaMLAiEAhVjUsZxP bYY9eOOomO4qYsyckDfVbUbg3qrWwfK+H4AAdgB9WR4S4XgqexxhZ3xe/fjQh1wU oE6VnrkDL9kOjC55uAAAAYzzkN18AAAEAwBHMEUCIGFq5f/xVdIfU8OlztPrLjBC nKeQB3aZKNdTRhBGyfkTAiEA7SrESSbxI4ywDenzsf1RZgbzjNdkDy8uSvM20Ni4 FOUAdwDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAYzzkN2pAAAE AwBIMEYCIQDN7qeviJrgzt7PYEjh287BIKgQhrdC0QyEy2VkzVBWfwIhAOVXY7nx KdaeNxigD0DtdJu7PfwrdufTjJ1ReSXLaoVLMA0GCSqGSIb3DQEBCwUAA4IBAQCi svya5aDmxbHe+sUGYyteTrg5moANUwI2O9lfXStvcNULvjA+qqezsg0MH9Td62fH 9Jj91sN0ZNvyHFODC7XUsLZBy7/Klj7zDKpj6fWBbhP3NDGe9yRb2HJSy9ZvZD+w L8siPBQLXEIH5wcYjgaztPk4MXAPotmJB47jrDe0iKJEkMF2ComsCmUfaOSyt6g6 orOLLwbgbpkiSV1wSFUd5GpfId0PqFBteyNjyGp6fBVLMCEIgc/qFesNObCy5LAw hEl+xYrnzPa0rq7dUyYdQrQ2G9Xyl0mYw3EuxLXmVOqd2+0kb04JbpASrlJ3rsq2 MycTu2lzH6Eg5O+PSVLO -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWeRzMTZ8eawFTVTcmxE ZjvvK9PC93F7w9PVDdLyM6giMzVrcgxUSEMlffltILkOVihOCW93rkwCWdkEfpol NzyO5QQNAtP10p6jdS/uZ81B5uqMF427TELiSPANuudsrx//sp/9IqXnz3nFU1RV lFLoBBxrlEaHfmih323mOSnvwnh8S42iON7Lw+XRUEsI6Tg0pVVVbLIrTpzzNUHm o2JGtfJBXUXhtaDlOtZH5E7eRlP439B6gbRKCliGYA5V/Dlzo7IZ9WhxA4iZzehY d7EDgIWh+waVHUrlJJgxNLx8BlaVRY5h+5OKGYYIZFSME1syKCfNs/8LQKSWKDll MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4934913818824265221100658167572508342 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.coremedia.guj.digital' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21385345578370627794852079963586321299941291532272252627745342292021787294437060142240559132340840892578164373203872084162133844335975971683384249780516809528396017677288788386249987677877738157477303411909899109158549444914836126174958677507049487862543910352411783613712568739758652502898515942533980652866846482446205541836796802744636822913306913715454702951198417837419366788178429631054431892209908259866725330366490857966612673486945923679412253949937449698994476975641777837601942964020828148560549933416005243865158557382454118672502749807286422601739528083511353023760834629883344081220801960696874507265329 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3a37fd1c415b819ef627722512da33330002643a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (216 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.coremedia.guj.digital' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.essen-und-trinken.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coremedia.guj.digital' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.brigitte.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.guj.digital' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gala.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.eltern.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.vip.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.schoener-wohnen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.capital.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stern.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.livingathome.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.geo.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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