solar.dev.withsecure.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 07:03:12:9a:9f:7b:b1:80:5d:18:fd:f8:40:33:5f:fb was issued on by Amazon.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=solar.dev.withsecure.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:03:12:9a:9f:7b:b1:80:5d:18:fd:f8:40:33:5f:fbSerial Number (int): 9320550194937561184153426932635230203
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 49:c0:eb:fb:bd:1a:67:e6:a8:64:34:b8:d4:71:3e:b1:79:67:6a:58
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 6e:c6:44:d1:61:47:ab:6c:06:ad:4f:97:bd:a0:71:e5:ed:72:87:28
Fingerprint (sha256): 1d:e0:b2:92:de:eb:12:ed:19:ae:a0:91:35:6f:c6:dc:61:a0:9f:30:21:1d:f5:2b:91:f7:08:d1:99:76:78:dd
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate solar.dev.withsecure.com
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for solar.dev.withsecure.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
solar.dev.withsecure.com
users-nordic.stg.withsecure.com
users-oyj.stg.withsecure.com
desktop-oyj.stg.withsecure.com
timesheets.stg.withsecure.com
directory-oyj.stg.withsecure.com
desktop-nordic.stg.withsecure.com
solar.stg.withsecure.com
pulse-oyj.stg.withsecure.com
cas-nordic.stg.withsecure.com
cas-oyj.stg.withsecure.com
desktop-nordics.stg.withsecure.com
users-nordic.stg.withsecure.com
users-oyj.stg.withsecure.com
desktop-oyj.stg.withsecure.com
timesheets.stg.withsecure.com
directory-oyj.stg.withsecure.com
desktop-nordic.stg.withsecure.com
solar.stg.withsecure.com
pulse-oyj.stg.withsecure.com
cas-nordic.stg.withsecure.com
cas-oyj.stg.withsecure.com
desktop-nordics.stg.withsecure.com
Other certificates including the domain name withsecure.com
(limited to 100 certificates)
relay.stg.withsecure.com
internal-dev.connect.withsecure.com
withsecure.com
partnerportal.withsecure.com
portal.radar.elements-stg.withsecure.com
click.e.withsecure.com
api.elements.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
a.accounts-emea-stg.fsxt.net
download.withsecure.com
labs.f-secure.com
static.accounts-stg.fsxt.net
psblive.psb-stg.f-secure.com
help.withsecure.com
download.withsecure.com
relay.withsecure.com
foundry.withsecure.com
internal-ideas.withsecure.com
www3.withsecure.com
static.accounts.f-secure.com
static.accounts-stg.fsxt.net
san-10-s7.tlsprovisioning.exacttarget.com
static.accounts.f-secure.com
withsecure.com
*.elements.withsecure.com
elements.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
makingsenseofcents.withsecure.com
git.f-secure.com
eu-status.swrve.com
eu-status.swrve.com
portal.cp.elements-stg.withsecure.com
relay.withsecure.com
eu-status.swrve.com
withsecure.com
foundry.withsecure.com
eu-status.swrve.com
ue1gpgw01.withsecure.com
solar.withsecure.com
git.f-secure.com
labs.f-secure.com
corp-reg.withsecure.com
withsecure.com
redirects.f-secure.com
eu-status.swrve.com
ideas.withsecure.com
www.survey.withsecure.com
elements.withsecure.com
cnbc.withsecure.com
labs.f-secure.com
withsecure.com
solar.dev.withsecure.com
keys.f-secure.com
internal-ideas.withsecure.com
api.elements-stg.withsecure.com
*.elements.withsecure.com
eu-status.swrve.com
bloomberg.withsecure.com
community.withsecure.com
sst.withsecure.com
ideas.withsecure.com
ideas.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
ane1gpgw01.withsecure.com
labs.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
static.accounts-stg.fsxt.net
eu-status.swrve.com
elements.withsecure.com
elements.withsecure.com
download.withsecure.com
elements-stg.fsxt.net
sst.withsecure.com
solar.withsecure.com
withsecure.com
solar.withsecure.com
labs.withsecure.com
proxy.elements.withsecure.com
static.accounts.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
withsecure.com
api.elements.withsecure.com
onboardme.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
eu-status.swrve.com
psblive.psb-stg.f-secure.com
login.withsecure.com
internal-ideas.withsecure.com
withsecure.com
eu-status.swrve.com
soccer24.withsecure.com
www.survey.withsecure.com
accounts.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
www.survey.withsecure.com
accounts.f-secure.com
login-stg.withsecure.com
help.withsecure.com
download.withsecure.com
www.survey.withsecure.com
internal-dev.connect.withsecure.com
withsecure.com
partnerportal.withsecure.com
portal.radar.elements-stg.withsecure.com
click.e.withsecure.com
api.elements.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
a.accounts-emea-stg.fsxt.net
download.withsecure.com
labs.f-secure.com
static.accounts-stg.fsxt.net
psblive.psb-stg.f-secure.com
help.withsecure.com
download.withsecure.com
relay.withsecure.com
foundry.withsecure.com
internal-ideas.withsecure.com
www3.withsecure.com
static.accounts.f-secure.com
static.accounts-stg.fsxt.net
san-10-s7.tlsprovisioning.exacttarget.com
static.accounts.f-secure.com
withsecure.com
*.elements.withsecure.com
elements.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
makingsenseofcents.withsecure.com
git.f-secure.com
eu-status.swrve.com
eu-status.swrve.com
portal.cp.elements-stg.withsecure.com
relay.withsecure.com
eu-status.swrve.com
withsecure.com
foundry.withsecure.com
eu-status.swrve.com
ue1gpgw01.withsecure.com
solar.withsecure.com
git.f-secure.com
labs.f-secure.com
corp-reg.withsecure.com
withsecure.com
redirects.f-secure.com
eu-status.swrve.com
ideas.withsecure.com
www.survey.withsecure.com
elements.withsecure.com
cnbc.withsecure.com
labs.f-secure.com
withsecure.com
solar.dev.withsecure.com
keys.f-secure.com
internal-ideas.withsecure.com
api.elements-stg.withsecure.com
*.elements.withsecure.com
eu-status.swrve.com
bloomberg.withsecure.com
community.withsecure.com
sst.withsecure.com
ideas.withsecure.com
ideas.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
ane1gpgw01.withsecure.com
labs.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
static.accounts-stg.fsxt.net
eu-status.swrve.com
elements.withsecure.com
elements.withsecure.com
download.withsecure.com
elements-stg.fsxt.net
sst.withsecure.com
solar.withsecure.com
withsecure.com
solar.withsecure.com
labs.withsecure.com
proxy.elements.withsecure.com
static.accounts.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
withsecure.com
api.elements.withsecure.com
onboardme.withsecure.com
san-10-s7.tlsprovisioning.exacttarget.com
eu-status.swrve.com
psblive.psb-stg.f-secure.com
login.withsecure.com
internal-ideas.withsecure.com
withsecure.com
eu-status.swrve.com
soccer24.withsecure.com
www.survey.withsecure.com
accounts.f-secure.com
san-10-s7.tlsprovisioning.exacttarget.com
www.survey.withsecure.com
accounts.f-secure.com
login-stg.withsecure.com
help.withsecure.com
download.withsecure.com
www.survey.withsecure.com
Certificate
The complete raw certificate details for solar.dev.withsecure.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIQBwMSmp97sYBdGP34QDNf+zANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIwNDAwMDAwMFoXDTI1MDEwMTIzNTk1OVowIzEh MB8GA1UEAxMYc29sYXIuZGV2LndpdGhzZWN1cmUuY29tMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAtilGWi2l/U5NlU4Qk3Mzf7ZA9NQl0dMSHnMdN3kL +kO+iwuEs/bE3kg/AZk/nwhjyWm/Ouzycf02FPsgH7xXrO584PHIYQFHSCy7OjjS BDoLQ+Yt3ehni+Tvxm7b9UUMuU7/rraRjTxXYcq3fwO2SYg5XKcReUTRiNtE0Jck qPURST6hbkmpBTy25tXkFpE8VZWHJLuyL0tA2+1tXQJKgKD6OQ4NhnzAEC2eI3tD giME4Ue67SKinliveYG9I8S47v4duRm3pirkmjxTtbxnWahbPzIhvoAVNpc519CF e1/K9y3AXHoBI4f2jPqCJn3BQTkpwM7uMQA38kqC2M9xRQIDAQABo4IC5DCCAuAw HwYDVR0jBBgwFoAUVdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFEnA6/u9 GmfmqGQ0uNRxPrF5Z2pYMIIBgQYDVR0RBIIBeDCCAXSCGHNvbGFyLmRldi53aXRo c2VjdXJlLmNvbYIfdXNlcnMtbm9yZGljLnN0Zy53aXRoc2VjdXJlLmNvbYIcdXNl cnMtb3lqLnN0Zy53aXRoc2VjdXJlLmNvbYIeZGVza3RvcC1veWouc3RnLndpdGhz ZWN1cmUuY29tgh10aW1lc2hlZXRzLnN0Zy53aXRoc2VjdXJlLmNvbYIgZGlyZWN0 b3J5LW95ai5zdGcud2l0aHNlY3VyZS5jb22CIWRlc2t0b3Atbm9yZGljLnN0Zy53 aXRoc2VjdXJlLmNvbYIYc29sYXIuc3RnLndpdGhzZWN1cmUuY29tghxwdWxzZS1v eWouc3RnLndpdGhzZWN1cmUuY29tgh1jYXMtbm9yZGljLnN0Zy53aXRoc2VjdXJl LmNvbYIaY2FzLW95ai5zdGcud2l0aHNlY3VyZS5jb22CImRlc2t0b3Atbm9yZGlj cy5zdGcud2l0aHNlY3VyZS5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8E NDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRydXN0LmNvbS9yMm0w My5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5y Mm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJt MDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMBAf8EAjAAMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA9zOmkImkqViq0cbDK N6OkZteth5WjX2sTWKEYjhGcGodWIpJSxYoY8iLGAwV7G+z+SXct8mxYYmSoW7YG AuxdiuWbkathOao8vBJBV+d8UB4TzL9BdbGSTx/B2PT3Ei1f4UeZp1O/cW+0yB5J ZfG4Oq8+VXgedNG62w+7E98nuKc24ooFiJd5xiZrirX9q5sq7eX3VMZvXt9Uajci TGCuh0GKXSLRMOl+TIk6Ha7HAg3PAgAPRk/Axzyie4Qas4ehyeRwNJst9WxDR2Os ugQQIKePcjdeIr+rG7qMC5g1LaYX6i8GDKZNGUYvvbioxM0GsmoMGYnuSHZ+IePj P7MQ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtilGWi2l/U5NlU4Qk3Mz f7ZA9NQl0dMSHnMdN3kL+kO+iwuEs/bE3kg/AZk/nwhjyWm/Ouzycf02FPsgH7xX rO584PHIYQFHSCy7OjjSBDoLQ+Yt3ehni+Tvxm7b9UUMuU7/rraRjTxXYcq3fwO2 SYg5XKcReUTRiNtE0JckqPURST6hbkmpBTy25tXkFpE8VZWHJLuyL0tA2+1tXQJK gKD6OQ4NhnzAEC2eI3tDgiME4Ue67SKinliveYG9I8S47v4duRm3pirkmjxTtbxn WahbPzIhvoAVNpc519CFe1/K9y3AXHoBI4f2jPqCJn3BQTkpwM7uMQA38kqC2M9x RQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9320550194937561184153426932635230203 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'solar.dev.withsecure.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22995724872945829035159927282961490786693110696817190256998656094485820361931281411331633919961671794423515617094078945396466858776239145519838956514367022391067705762333921864066559860235629924413141420268544586830826999958760070152462699493833343859931557888535081096286195220484835878097654074728052413690945448352804940278045725755396773250644962322095938248267585753504921610188414096438011606302713039823912659236541922722327937929400428646150113975965766882192131581866296411395178715740590596920607292664121198533192768680856088818482092592380906578239140370456878106459328041134354633157667525088342562533701 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 49c0ebfbbd1a67e6a86434b8d4713eb179676a58 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (376 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'solar.dev.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'users-nordic.stg.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'users-oyj.stg.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'desktop-oyj.stg.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'timesheets.stg.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'directory-oyj.stg.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'desktop-nordic.stg.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'solar.stg.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pulse-oyj.stg.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cas-nordic.stg.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cas-oyj.stg.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'desktop-nordics.stg.withsecure.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 003dcce9a422692a562ab471b0ca37a3a466d7ad8795a35f6b1358a1188e119c1a8756229252c58a18f222c603057b1becfe49772df26c586264a85bb60602ec5d8ae59b91ab6139aa3cbc124157e77c501e13ccbf4175b1924f1fc1d8f4f7122d5fe14799a753bf716fb4c81e4965f1b83aaf3e55781e74d1badb0fbb13df27b8a736e28a05889779c6266b8ab5fdab9b2aede5f754c66f5edf546a37224c60ae87418a5d22d130e97e4c893a1daec7020dcf02000f464fc0c73ca27b841ab387a1c9e470349b2df56c434763acba041020a78f72375e22bfab1bba8c0b98352da617ea2f060ca64d19462fbdb8a8c4cd06b26a0c1989ee48767e21e3e33fb310