beta.20min.ch
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0c:59:7d:89:2b:8b:30:6e:6a:97:10:57:fc:f3:32:1c was issued on by Amazon.
With 18 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=beta.20min.ch
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0c:59:7d:89:2b:8b:30:6e:6a:97:10:57:fc:f3:32:1cSerial Number (int): 16415396538763435868460065539663016476
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 7d:ab:cb:cc:f1:1b:7c:51:d2:21:3e:b4:c3:4f:89:2f:ee:16:ae:cf
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 71:e6:17:c4:91:a5:28:d7:40:79:5f:81:51:7c:4c:19:78:15:4e:1a
Fingerprint (sha256): 1e:46:e7:91:f3:b6:9f:82:be:fa:72:59:9a:27:4f:e7:0c:04:5d:bb:29:3d:5c:2d:2f:84:b7:d5:be:c7:5f:78
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate beta.20min.ch
18
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for beta.20min.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
beta.20min.ch
*.beta.20min.ch
friday-magazine.ch
lessentiel.lu
lematin.ch
*.lessentiel.20min.ch
*.lessentiel.lu
20minutes.ch
*.lematin.ch
20minuten.ch
*.lematin.20min.ch
*.friday-magazine.ch
lessentiel.20min.ch
lematin.20min.ch
*.20min.ch
*.20minuten.ch
*.20minutes.ch
20min.ch
*.beta.20min.ch
friday-magazine.ch
lessentiel.lu
lematin.ch
*.lessentiel.20min.ch
*.lessentiel.lu
20minutes.ch
*.lematin.ch
20minuten.ch
*.lematin.20min.ch
*.friday-magazine.ch
lessentiel.20min.ch
lematin.20min.ch
*.20min.ch
*.20minuten.ch
*.20minutes.ch
20min.ch
Other certificates including the domain name 20min.ch
(limited to 100 certificates)
booking.20min.ch
deal.20min.ch
deal.20min.ch
*.formilija1234.beta.20min.ch
deal.20min.ch
fussball.20min.ch
*.beta.20min.ch
*.grafanafixitt.sbx-prometheus.20min.ch
fooby.20min.ch
dreixdrei.20min.ch
sandboxx-laurent.sbx-prometheus.20min.ch
deal.20min.ch
sni.cloudflaressl.com
api.beta.20min.ch
branding.20min.ch
fernweh.20min.ch
tagesdeal.20min.ch
booking.20min.ch
dreixdrei.20min.ch
api.beta.20min.ch
unchained.20min.ch
milijadisco.sbx-prometheus.20min.ch
zweipunktnull.20min.ch
*.dnsworkaround.beta.20min.ch
fooby.20min.ch
zurichpride.20min.ch
story.20min.ch
niemolsnie.20min.ch
dealdujour.20min.ch
gutscheine.20min.ch
apis.20min.ch
dreixdrei.20min.ch
mediadaten.20min.ch
www.20min.ch
dreixdrei.20min.ch
myshop.20min.ch
youthlab.20min.ch
zweipunktnull.20min.ch
pcm-imaginary.20min.ch
my.20min.ch
mongodb.sbx-prometheus.20min.ch
rendezvous.20min.ch
deal.20min.ch
20min.ch
beta.20min.ch
beta.20min.ch
20min.ch
unchained.20min.ch
fooby.20min.ch
youthlab.20min.ch
apis.20min.ch
story.20min.ch
*.milijapett.beta.20min.ch
sandboxx-laurent.sbx-prometheus.20min.ch
zurichpride.20min.ch
rendezvous.20min.ch
unchained.20min.ch
beta.20min.ch
spiele.20min.ch
deal.20min.ch
beta.20min.ch
sma-studio.20min.ch
www.20min.ch
fernweh.20min.ch
cp.lifestyle.20min.ch
booking.20min.ch
rendezvous.20min.ch
sma-studio.20min.ch
spiele.20min.ch
twch.20min.ch
deal.20min.ch
wiki.20min.ch
mediadaten.20min.ch
deal.20min.ch
*.moninorlmo.beta.20min.ch
*.grafanafixx.sbx-prometheus.20min.ch
vv.20min.ch
my.20min.ch
fussball.20min.ch
rendezvous.20min.ch
nwost.20min.ch
*.sbx-prometheus.20min.ch
dealdujour.20min.ch
remote.20min.ch
deal.20min.ch
source.cuisineactuelle.fr
youthlab.20min.ch
zweipunktnull.20min.ch
youthlab.20min.ch
*.formilija1234.beta.20min.ch
*.beta.20min.ch
bodyandsoul.20min.ch
fooby.20min.ch
cp.20min.ch
spiele.20min.ch
youthlab.20min.ch
*.sandbox-laurent.sbx-prometheus.20min.ch
blackbeard.prod.tda.link
dreixdrei.20min.ch
dealdujour.20min.ch
deal.20min.ch
deal.20min.ch
*.formilija1234.beta.20min.ch
deal.20min.ch
fussball.20min.ch
*.beta.20min.ch
*.grafanafixitt.sbx-prometheus.20min.ch
fooby.20min.ch
dreixdrei.20min.ch
sandboxx-laurent.sbx-prometheus.20min.ch
deal.20min.ch
sni.cloudflaressl.com
api.beta.20min.ch
branding.20min.ch
fernweh.20min.ch
tagesdeal.20min.ch
booking.20min.ch
dreixdrei.20min.ch
api.beta.20min.ch
unchained.20min.ch
milijadisco.sbx-prometheus.20min.ch
zweipunktnull.20min.ch
*.dnsworkaround.beta.20min.ch
fooby.20min.ch
zurichpride.20min.ch
story.20min.ch
niemolsnie.20min.ch
dealdujour.20min.ch
gutscheine.20min.ch
apis.20min.ch
dreixdrei.20min.ch
mediadaten.20min.ch
www.20min.ch
dreixdrei.20min.ch
myshop.20min.ch
youthlab.20min.ch
zweipunktnull.20min.ch
pcm-imaginary.20min.ch
my.20min.ch
mongodb.sbx-prometheus.20min.ch
rendezvous.20min.ch
deal.20min.ch
20min.ch
beta.20min.ch
beta.20min.ch
20min.ch
unchained.20min.ch
fooby.20min.ch
youthlab.20min.ch
apis.20min.ch
story.20min.ch
*.milijapett.beta.20min.ch
sandboxx-laurent.sbx-prometheus.20min.ch
zurichpride.20min.ch
rendezvous.20min.ch
unchained.20min.ch
beta.20min.ch
spiele.20min.ch
deal.20min.ch
beta.20min.ch
sma-studio.20min.ch
www.20min.ch
fernweh.20min.ch
cp.lifestyle.20min.ch
booking.20min.ch
rendezvous.20min.ch
sma-studio.20min.ch
spiele.20min.ch
twch.20min.ch
deal.20min.ch
wiki.20min.ch
mediadaten.20min.ch
deal.20min.ch
*.moninorlmo.beta.20min.ch
*.grafanafixx.sbx-prometheus.20min.ch
vv.20min.ch
my.20min.ch
fussball.20min.ch
rendezvous.20min.ch
nwost.20min.ch
*.sbx-prometheus.20min.ch
dealdujour.20min.ch
remote.20min.ch
deal.20min.ch
source.cuisineactuelle.fr
youthlab.20min.ch
zweipunktnull.20min.ch
youthlab.20min.ch
*.formilija1234.beta.20min.ch
*.beta.20min.ch
bodyandsoul.20min.ch
fooby.20min.ch
cp.20min.ch
spiele.20min.ch
youthlab.20min.ch
*.sandbox-laurent.sbx-prometheus.20min.ch
blackbeard.prod.tda.link
dreixdrei.20min.ch
dealdujour.20min.ch
Certificate
The complete raw certificate details for beta.20min.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG4zCCBcugAwIBAgIQDFl9iSuLMG5qlxBX/PMyHDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIyODAwMDAwMFoXDTI1MDEyNTIzNTk1OVowGDEW MBQGA1UEAxMNYmV0YS4yMG1pbi5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAOV0nbRPSTJIUM3z2SM/p3O35M/IoedQbNs1qBjNZgUezvWFQKKg/jF9 YBM4BN796M+uZJXhTdSpSJx7FEipT0jm+G5oZvai5iOMCcp85LKbxVzYwbBPemwA uTDLfHrvE30ma2U6W9rFPQJ82ZL/OgJNm8kiV8ZyF5nwc112IhLheFky0ycnaaoP SjXAKOjF+CdCTuj0aLV3WU/Hk+H++fMpfNQ5hidbHUaTYirCXMBtT5BdCIOQAuSI fc2CHYdsbHXciitix7M4EQvN0Mj7o69az6QASAs0b5Z+d1QuRImIHFdiXzPnw3EA 6SZoJSCx4S7w2K9/Daz+cUNWZBfAcT8CAwEAAaOCBAMwggP/MB8GA1UdIwQYMBaA FMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBR9q8vM8Rt8UdIhPrTDT4kv 7hauzzCCATUGA1UdEQSCASwwggEogg1iZXRhLjIwbWluLmNogg8qLmJldGEuMjBt aW4uY2iCEmZyaWRheS1tYWdhemluZS5jaIINbGVzc2VudGllbC5sdYIKbGVtYXRp bi5jaIIVKi5sZXNzZW50aWVsLjIwbWluLmNogg8qLmxlc3NlbnRpZWwubHWCDDIw bWludXRlcy5jaIIMKi5sZW1hdGluLmNoggwyMG1pbnV0ZW4uY2iCEioubGVtYXRp bi4yMG1pbi5jaIIUKi5mcmlkYXktbWFnYXppbmUuY2iCE2xlc3NlbnRpZWwuMjBt aW4uY2iCEGxlbWF0aW4uMjBtaW4uY2iCCiouMjBtaW4uY2iCDiouMjBtaW51dGVu LmNogg4qLjIwbWludXRlcy5jaIIIMjBtaW4uY2gwEwYDVR0gBAwwCjAIBgZngQwB AgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFtYXpvbnRydXN0 LmNvbS9yMm0wMi5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRw Oi8vb2NzcC5yMm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6 Ly9jcnQucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMBAf8E AjAAMIIBfAYKKwYBBAHWeQIEAgSCAWwEggFoAWYAdQBOdaMnXJoQwzhbbNTfP1Lr HfDgjhuNacCx+mSxYpo53wAAAYyvSb2aAAAEAwBGMEQCIAbFt4ZWwB9v5cvyFej9 N/10BgP7f0YYwawG0IB7KzGgAiBr5nfIgp0uLW9Cro7Oiq4SHc2CBb20zetialBV 1PU7IgB1AH1ZHhLheCp7HGFnfF79+NCHXBSgTpWeuQMv2Q6MLnm4AAABjK9JvZgA AAQDAEYwRAIgBKZ/uK2zfTWriA1VPKVxaeYRy3ouSBNDysfgq0oh4D4CIDlk47D8 CB6Zl4ESsnKHh9C2FJ92Xz6CpvxcP/XqSHxFAHYA5tIxY0B3jMEQQQbXcbnOwdJA 9paEhvu6hzId/R43jlAAAAGMr0m9vAAABAMARzBFAiEA4mmU+1HRzaCACleN1dd0 OBxn9byLQgmD9cIeSnOggJACIFM1GeOv881pyWyt/rk3+hx26Ds+psvrkSsBGzTN seX4MA0GCSqGSIb3DQEBCwUAA4IBAQCbN16hMBXYPdg9S7vN/T7t7kya4rba1Z3h e59UF7CapuxMznPn3CHDps1ms2fT5ao3k5QFumit/BEeMIS/5gV4EUS8NmDG54P3 2R0BVyVx3pqUXe5YQE+Nh/lph7PXnPuGlARhKXydoZbCitwtaY/UQzpBYfLiVGLR 773a7pSprx2aBm2ednijm8emcDIwsBPcF1rHn7+DH6qgkvcxR4mszrRhc8ncdCd+ Ykv9ARypThJMHOo+7r67AhMB+PtwdrCZ4Wbl25lQ8G96l6f2dUychDBBq8Kzqr8s vk6a58Jy6imz0oOTXTiiQb78xNLgoz5KTRIrRZ9jvQs5LmxxLg7w -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5XSdtE9JMkhQzfPZIz+n c7fkz8ih51Bs2zWoGM1mBR7O9YVAoqD+MX1gEzgE3v3oz65kleFN1KlInHsUSKlP SOb4bmhm9qLmI4wJynzkspvFXNjBsE96bAC5MMt8eu8TfSZrZTpb2sU9AnzZkv86 Ak2bySJXxnIXmfBzXXYiEuF4WTLTJydpqg9KNcAo6MX4J0JO6PRotXdZT8eT4f75 8yl81DmGJ1sdRpNiKsJcwG1PkF0Ig5AC5Ih9zYIdh2xsddyKK2LHszgRC83QyPuj r1rPpABICzRvln53VC5EiYgcV2JfM+fDcQDpJmglILHhLvDYr38NrP5xQ1ZkF8Bx PwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16415396538763435868460065539663016476 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'beta.20min.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28966077346141363942537015979178192957447038242053588215359728485731454016949742626601247682106858678219696668693693787719867782755697750826497239140554694265928782585528896432518507278147006215593453728533503537019473902415215920028769288276176830409505882761264198998063166148408059308327762224757925489759565506922949509902991231779849623989576814789156686666634786612510988556286514460052952888307859166413434371279106069715305601558875001315436211487036358368861581654295721792947215960620747859509227349795835434668663235868225360184719889981714949452107821075835083207374617126113339519210267314735654492991807 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7dabcbccf11b7c51d2213eb4c34f892fee16aecf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (300 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beta.20min.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.beta.20min.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'friday-magazine.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lessentiel.lu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lematin.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lessentiel.20min.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lessentiel.lu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '20minutes.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lematin.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '20minuten.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lematin.20min.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.friday-magazine.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lessentiel.20min.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lematin.20min.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.20min.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.20minuten.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.20minutes.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '20min.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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