www.theformationscompany.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0d:a6:ff:7e:b9:45:e2:54:25:59:44:15:08:fb:e2:58 was issued on by Amazon.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.theformationscompany.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:a6:ff:7e:b9:45:e2:54:25:59:44:15:08:fb:e2:58Serial Number (int): 18147067278257307212895332477936853592
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 07:e8:da:00:e3:c0:ac:4b:69:f7:24:27:a4:b0:be:23:60:e6:98:38
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 85:1e:2c:4c:88:64:c8:be:e2:c2:59:6d:35:04:1b:47:d4:81:68:c2
Fingerprint (sha256): 1d:dc:8f:25:c5:ad:bf:a5:08:0d:64:12:f4:f9:19:7a:3d:9c:ff:73:b5:b1:6a:c0:ed:54:3d:33:5b:ff:70:4c
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate www.theformationscompany.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.theformationscompany.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.theformationscompany.com
new.theformationscompany.com
beta.theformationscompany.com
formations.legalzoom.co.uk
theformationscompany.com
lzf-prod-wp.legalzoom.co.uk
new.theformationscompany.com
beta.theformationscompany.com
formations.legalzoom.co.uk
theformationscompany.com
lzf-prod-wp.legalzoom.co.uk
Other certificates including the domain name theformationscompany.com
(limited to 100 certificates)
landing.theformationscompany.com
www.theformationscompany.com
wpstage.theformationscompany.com
tfc-stage-aws.theformationscompany.com
www.theformationscompany.com
landing.theformationscompany.com
landing.theformationscompany.com
email.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
stage.api.nbis.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
new.theformationscompany.com
landing.theformationscompany.com
wpdev.theformationscompany.com
www.theformationscompany.com
landing.theformationscompany.com
beta.theformationscompany.com
v3.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
cms.theformationscompany.com
www.theformationscompany.com
beta.theformationscompany.com
wpstage.theformationscompany.com
tfc-stage-aws.theformationscompany.com
wpdev.theformationscompany.com
tfc-stage-aws.theformationscompany.com
landing.theformationscompany.com
landing.theformationscompany.com
tfc-stage-aws.theformationscompany.com
*.theformationscompany.com
beta.theformationscompany.com
cms.theformationscompany.com
new.theformationscompany.com
tfc-stage-aws.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
tfc-prod-aws.theformationscompany.com
lzf-stage-aws.legalzoom.co.uk
new.theformationscompany.com
tfc-stage-aws.theformationscompany.com
wpdev.theformationscompany.com
www.theformationscompany.com
landing.theformationscompany.com
stage.api.nbis.theformationscompany.com
prod-test.theformationscompany.com
theformationscompany.com
email.theformationscompany.com
www.theformationscompany.com
wpdev.theformationscompany.com
www.theformationscompany.com
new.theformationscompany.com
tfc-stage-aws.theformationscompany.com
stage.api.nbis.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
cms.theformationscompany.com
theformationscompany.com
cms.theformationscompany.com
www.theformationscompany.com
landing.theformationscompany.com
new.theformationscompany.com
wpdev.theformationscompany.com
cms.theformationscompany.com
landing.theformationscompany.com
wpdev.theformationscompany.com
cms.theformationscompany.com
www.theformationscompany.com
landing.theformationscompany.com
landing.theformationscompany.com
www.theformationscompany.com
wpdev.theformationscompany.com
landing.theformationscompany.com
tfc-stage-aws.theformationscompany.com
www.theformationscompany.com
wpdev.theformationscompany.com
wpdev.theformationscompany.com
email.theformationscompany.com
www.theformationscompany.com
wpstage.theformationscompany.com
stage.api.nbis.theformationscompany.com
theformationscompany.com
beta.theformationscompany.com
theformationscompany.com
wpstage.theformationscompany.com
www.theformationscompany.com
cms.theformationscompany.com
theformationscompany.com
www.theformationscompany.com
email.theformationscompany.com
www.theformationscompany.com
email.theformationscompany.com
landing.theformationscompany.com
new.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
wpstage.theformationscompany.com
tfc-stage-aws.theformationscompany.com
www.theformationscompany.com
landing.theformationscompany.com
landing.theformationscompany.com
email.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
stage.api.nbis.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
new.theformationscompany.com
landing.theformationscompany.com
wpdev.theformationscompany.com
www.theformationscompany.com
landing.theformationscompany.com
beta.theformationscompany.com
v3.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
cms.theformationscompany.com
www.theformationscompany.com
beta.theformationscompany.com
wpstage.theformationscompany.com
tfc-stage-aws.theformationscompany.com
wpdev.theformationscompany.com
tfc-stage-aws.theformationscompany.com
landing.theformationscompany.com
landing.theformationscompany.com
tfc-stage-aws.theformationscompany.com
*.theformationscompany.com
beta.theformationscompany.com
cms.theformationscompany.com
new.theformationscompany.com
tfc-stage-aws.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
tfc-prod-aws.theformationscompany.com
lzf-stage-aws.legalzoom.co.uk
new.theformationscompany.com
tfc-stage-aws.theformationscompany.com
wpdev.theformationscompany.com
www.theformationscompany.com
landing.theformationscompany.com
stage.api.nbis.theformationscompany.com
prod-test.theformationscompany.com
theformationscompany.com
email.theformationscompany.com
www.theformationscompany.com
wpdev.theformationscompany.com
www.theformationscompany.com
new.theformationscompany.com
tfc-stage-aws.theformationscompany.com
stage.api.nbis.theformationscompany.com
www.theformationscompany.com
www.theformationscompany.com
cms.theformationscompany.com
theformationscompany.com
cms.theformationscompany.com
www.theformationscompany.com
landing.theformationscompany.com
new.theformationscompany.com
wpdev.theformationscompany.com
cms.theformationscompany.com
landing.theformationscompany.com
wpdev.theformationscompany.com
cms.theformationscompany.com
www.theformationscompany.com
landing.theformationscompany.com
landing.theformationscompany.com
www.theformationscompany.com
wpdev.theformationscompany.com
landing.theformationscompany.com
tfc-stage-aws.theformationscompany.com
www.theformationscompany.com
wpdev.theformationscompany.com
wpdev.theformationscompany.com
email.theformationscompany.com
www.theformationscompany.com
wpstage.theformationscompany.com
stage.api.nbis.theformationscompany.com
theformationscompany.com
beta.theformationscompany.com
theformationscompany.com
wpstage.theformationscompany.com
www.theformationscompany.com
cms.theformationscompany.com
theformationscompany.com
www.theformationscompany.com
email.theformationscompany.com
www.theformationscompany.com
email.theformationscompany.com
landing.theformationscompany.com
new.theformationscompany.com
www.theformationscompany.com
Certificate
The complete raw certificate details for www.theformationscompany.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGdzCCBV+gAwIBAgIQDab/frlF4lQlWUQVCPviWDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDMxNTAwMDAwMFoXDTI1MDQxMjIzNTk1OVowJzEl MCMGA1UEAxMcd3d3LnRoZWZvcm1hdGlvbnNjb21wYW55LmNvbTCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAJEGzMryoMvpSPXAp1FNhS7zgDBkIG6u14zU uB1sG2DSzVMpTYQ3HwFfgdlpCfDs8LTEg+dmRpjkvuEKr5uVLhRF5Lav4XIs14wa xz5T6gn56KtW2oh3aFcfQJuBdQFWZc3NkjZAB12TX67qQ5drL/mRfgtvS0PkVQT5 YGTLzy72BtS9uhhvS4Ewh7QOwXXRd/QWx1KN2GdKAAkSkjGqDyG2ICMxcySHB0PZ aGA1dUZbXhWZOP1wlgoh3sYUH0pIE5+0UkeZPZ+ycKoO4RsFBPXtgh0nyAsKgaNt rbRWVf2IyPOy89jeD1KOvRm3qHe3YXZRyWdEENrD4nUOEcgys5cCAwEAAaOCA4gw ggOEMB8GA1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBQH 6NoA48CsS2n3JCeksL4jYOaYODCBuQYDVR0RBIGxMIGughx3d3cudGhlZm9ybWF0 aW9uc2NvbXBhbnkuY29tghxuZXcudGhlZm9ybWF0aW9uc2NvbXBhbnkuY29tgh1i ZXRhLnRoZWZvcm1hdGlvbnNjb21wYW55LmNvbYIaZm9ybWF0aW9ucy5sZWdhbHpv b20uY28udWuCGHRoZWZvcm1hdGlvbnNjb21wYW55LmNvbYIbbHpmLXByb2Qtd3Au bGVnYWx6b29tLmNvLnVrMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAw oC6gLIYqaHR0cDovL2NybC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY3Js MHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDMu YW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAzLmFt YXpvbnRydXN0LmNvbS9yMm0wMy5jZXIwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB 1nkCBAIEggFuBIIBagFoAHYAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87M OwgAAAGOQXxZ9wAABAMARzBFAiEAuoGiB4B29qvRHjZu7si09VMextrpWEsdmeKW 79PlG/ECICUuVsREimzFYFzlhevXdV0x2lEWm27K4y/TR3lDDjB+AHYAfVkeEuF4 KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGOQXxZ+gAABAMARzBFAiByKM+e Rx++SjzrGGYbnX98TrwEYZIAQ+IKM9kVHAyJhQIhANZ+ViNykGFDb5KLjqv9WUqg 5pN2HOZzylgK1FHI6TVRAHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43 jlAAAAGOQXxaEgAABAMARzBFAiA8atSi0ud0vej7XrscvgAKRpn5MpFKhAFfVl3B dxjT8AIhAL3TPcP21KSfaFOFj3TEQwGLBIzlfEYhNU+9sNe19H12MA0GCSqGSIb3 DQEBCwUAA4IBAQAs24XOTa0RUfNvRNhwcmjSyDE70NF/qSwQ9VoOIWuKigEl5JFQ N652VoMZIGBcCO0MMIGgQOQS4nI/y8bkgmRjgf+rSJzbz+1bgXrmeSyWRqqeGFIm 2qM5WvxC+mYCo1WTzxTGSg8vrNyGIdcn5H83YUAucRvI/41xIiCUiIK+XY92HVsR 6InYAS8BDeC69UN8/uGYfSJN1LFfZSjwofAvIg01qCK2eqm9Eg2AmPH67SWTcts8 IIFhQ85avfaHmtK+hVHd64r72pUJd6eirHg2lwDZBOjoYHO3hNJz9NhA3q5h3vhs X4vyybJambVD6frDM2CqhAmqrzIaZX0gJ5E+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQbMyvKgy+lI9cCnUU2F LvOAMGQgbq7XjNS4HWwbYNLNUylNhDcfAV+B2WkJ8OzwtMSD52ZGmOS+4Qqvm5Uu FEXktq/hcizXjBrHPlPqCfnoq1baiHdoVx9Am4F1AVZlzc2SNkAHXZNfrupDl2sv +ZF+C29LQ+RVBPlgZMvPLvYG1L26GG9LgTCHtA7BddF39BbHUo3YZ0oACRKSMaoP IbYgIzFzJIcHQ9loYDV1RlteFZk4/XCWCiHexhQfSkgTn7RSR5k9n7Jwqg7hGwUE 9e2CHSfICwqBo22ttFZV/YjI87Lz2N4PUo69Gbeod7dhdlHJZ0QQ2sPidQ4RyDKz lwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18147067278257307212895332477936853592 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.theformationscompany.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18307907411117231878693977650272629724986530905366060529507348070658672993438877870759158398390157985502180920889610994498200343972814737218662779229065324894203526041517987851436924296264697877089091512762075014895782016563397817712874285122406713317747461602460297912630248410722317405099756525504617488502434113726346003714492076839010379853522121992358075591651630949985849330062684427158414722447700029828398013709154180944372877523811535765375577135041032908267186702915959171637641657457316257630647092520645133418531088886964018061966582490015882935871832889561421666525522128089566956903826902000671789331351 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 07e8da00e3c0ac4b69f72427a4b0be2360e69838 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (177 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.theformationscompany.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'new.theformationscompany.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beta.theformationscompany.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'formations.legalzoom.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theformationscompany.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lzf-prod-wp.legalzoom.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 0168007600cf1156eed52e7caff3875bd9692e9be91a71674ab017ecac01d25b77cecc3b080000018e417c59f70000040300473045022100ba81a2078076f6abd11e366eeec8b4f5531ec6dae9584b1d99e296efd3e51bf10220252e56c4448a6cc5605ce585ebd7755d31da51169b6ecae32fd34779430e307e0076007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000018e417c59fa000004030047304502207228cf9e471fbe4a3ceb18661b9d7f7c4ebc0461920043e20a33d9151c0c8985022100d67e5623729061436f928b8eabfd594aa0e693761ce673ca580ad451c8e93551007600e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e500000018e417c5a12000004030047304502203c6ad4a2d2e774bde8fb5ebb1cbe000a4699f932914a84015f565dc17718d3f0022100bdd33dc3f6d4a49f6853858f74c443018b048ce57c4621354fbdb0d7b5f47d76 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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