terraform-aws-vpn.oss.champtest.net
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 04:63:78:f4:21:de:89:65:31:6d:26:13:0f:72:e3:72 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=terraform-aws-vpn.oss.champtest.net
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:63:78:f4:21:de:89:65:31:6d:26:13:0f:72:e3:72Serial Number (int): 5833402603440738794738678146979259250
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: e0:ce:58:c6:c1:b5:7f:69:e0:28:e8:69:58:87:c3:ab:1a:68:a4:68
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): dc:4b:d9:78:c6:bd:73:45:24:d8:50:ba:e0:bf:e8:c3:5c:8b:8d:43
Fingerprint (sha256): 20:ba:bf:01:79:1d:c8:36:43:57:77:f6:48:8f:f6:8d:51:cd:ca:f0:2e:5d:01:f0:f7:c1:98:26:a1:0b:33:50
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate terraform-aws-vpn.oss.champtest.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for terraform-aws-vpn.oss.champtest.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
terraform-aws-vpn.oss.champtest.net
Other certificates including the domain name champtest.net
(limited to 100 certificates)
*.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-app-bf13.oss.champtest.net
keycloak-mobjn.oss.champtest.net
terraform-aws-app-ebee.oss.champtest.net
*.oss.champtest.net
terraform-aws-app-960d.oss.champtest.net
*.oss.champtest.net
*.oss.champtest.net
terraform-aws-app.oss.champtest.net
terraform-aws-api-gateway2-atkf1.oss.champtest.net
terraform-aws-api-gateway2-utqep.oss.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-acm.oss.champtest.net
keycloak-y1pmu.oss.champtest.net
terraform-aws-api-gateway-taxay.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
keycloak-qzlr2.oss.champtest.net
terraform-aws-metabase.oss.champtest.net
terraform-aws-app-bb04.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-api-gateway-0pjo3.oss.champtest.net
gemini.oss.champtest.net
terraform-aws-app-77ed.oss.champtest.net
terraform-aws-lambda-375b.oss.champtest.net
terraform-aws-alb.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-lambda-062e.oss.champtest.net
terraform-aws-core.oss.champtest.net
cade.ephemeral.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-api-gateway-rgvk7.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-app-83a3.oss.champtest.net
terraform-aws-lambda-b54c.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-app-2fe1.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-lambda-4942.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
ws-ledger-atrs.ephemeral.champtest.net
tf-r53-health-check.oss.champtest.net
terraform-aws-api-gateway-iguqf.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-core.oss.champtest.net
*.oss.champtest.net
terraform-aws-api-gateway-3st0n.oss.champtest.net
terraform-aws-api-gateway-1java.oss.champtest.net
tf-r53-health-check.oss.champtest.net
lambda-mono-repo-template.ephemeral.champtest.net
ws-ledger-atrs.ephemeral.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-lambda-3477.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-api-gateway-6yph6.oss.champtest.net
terraform-aws-app-0f7f.oss.champtest.net
*.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-lambda-35f1.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-metabase.oss.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-api-gateway-nihxj.oss.champtest.net
terraform-aws-lambda.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-api-gateway-xous5.oss.champtest.net
terraform-aws-lambda-b614.oss.champtest.net
terraform-aws-lambda-a703.oss.champtest.net
terraform-aws-api-gateway-e9fbg.oss.champtest.net
terraform-aws-app-12e5.oss.champtest.net
keycloak-pab8x.oss.champtest.net
terraform-aws-api-gateway-w453f.oss.champtest.net
keycloak-6k58m.oss.champtest.net
cade.ephemeral.champtest.net
terraform-aws-app-5d7f.oss.champtest.net
terraform-aws-acm.oss.champtest.net
*.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-api-gateway-npx68.oss.champtest.net
keycloak-waj09.oss.champtest.net
terraform-aws-app-6b4a.oss.champtest.net
terraform-aws-api-gateway-tkp0p.oss.champtest.net
*.oss.champtest.net
terraform-aws-metabase.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
*.oss.champtest.net
terraform-aws-lambda-773d.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-app.oss.champtest.net
terraform-aws-lambda-22c9.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-app-bf13.oss.champtest.net
keycloak-mobjn.oss.champtest.net
terraform-aws-app-ebee.oss.champtest.net
*.oss.champtest.net
terraform-aws-app-960d.oss.champtest.net
*.oss.champtest.net
*.oss.champtest.net
terraform-aws-app.oss.champtest.net
terraform-aws-api-gateway2-atkf1.oss.champtest.net
terraform-aws-api-gateway2-utqep.oss.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-acm.oss.champtest.net
keycloak-y1pmu.oss.champtest.net
terraform-aws-api-gateway-taxay.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
keycloak-qzlr2.oss.champtest.net
terraform-aws-metabase.oss.champtest.net
terraform-aws-app-bb04.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-api-gateway-0pjo3.oss.champtest.net
gemini.oss.champtest.net
terraform-aws-app-77ed.oss.champtest.net
terraform-aws-lambda-375b.oss.champtest.net
terraform-aws-alb.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-lambda-062e.oss.champtest.net
terraform-aws-core.oss.champtest.net
cade.ephemeral.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-api-gateway-rgvk7.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-app-83a3.oss.champtest.net
terraform-aws-lambda-b54c.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-app-2fe1.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-lambda-4942.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
ws-ledger-atrs.ephemeral.champtest.net
tf-r53-health-check.oss.champtest.net
terraform-aws-api-gateway-iguqf.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-core.oss.champtest.net
*.oss.champtest.net
terraform-aws-api-gateway-3st0n.oss.champtest.net
terraform-aws-api-gateway-1java.oss.champtest.net
tf-r53-health-check.oss.champtest.net
lambda-mono-repo-template.ephemeral.champtest.net
ws-ledger-atrs.ephemeral.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-lambda-3477.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-api-gateway-6yph6.oss.champtest.net
terraform-aws-app-0f7f.oss.champtest.net
*.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-lambda-35f1.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-metabase.oss.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-api-gateway-nihxj.oss.champtest.net
terraform-aws-lambda.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-api-gateway-xous5.oss.champtest.net
terraform-aws-lambda-b614.oss.champtest.net
terraform-aws-lambda-a703.oss.champtest.net
terraform-aws-api-gateway-e9fbg.oss.champtest.net
terraform-aws-app-12e5.oss.champtest.net
keycloak-pab8x.oss.champtest.net
terraform-aws-api-gateway-w453f.oss.champtest.net
keycloak-6k58m.oss.champtest.net
cade.ephemeral.champtest.net
terraform-aws-app-5d7f.oss.champtest.net
terraform-aws-acm.oss.champtest.net
*.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-api-gateway-npx68.oss.champtest.net
keycloak-waj09.oss.champtest.net
terraform-aws-app-6b4a.oss.champtest.net
terraform-aws-api-gateway-tkp0p.oss.champtest.net
*.oss.champtest.net
terraform-aws-metabase.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
*.oss.champtest.net
terraform-aws-lambda-773d.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-app.oss.champtest.net
terraform-aws-lambda-22c9.oss.champtest.net
Certificate
The complete raw certificate details for terraform-aws-vpn.oss.champtest.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEhTCCA22gAwIBAgIQBGN49CHeiWUxbSYTD3LjcjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIyMTIxMjAwMDAwMFoXDTI0MDExMDIzNTk1OVowLjEs MCoGA1UEAxMjdGVycmFmb3JtLWF3cy12cG4ub3NzLmNoYW1wdGVzdC5uZXQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCit9Ci3W8hxEfq4GerQJd38IR0 ae0Vl71KrUNgFsxzu080ZTJyvPz4zrizGShUUlTd0KP2CIOaM3G27mEQiPOY9S87 BPYctCS+iYq9DD5KeAYsoeAuDdW7s7T3idbwrPm9xaexL123UcaTSS6L8Biw4+Pz pUkSx3WXCy+r60HOfGPa79y/PHiFjQKGDyEnzrfgfC31b1fH8MwXJilOC35qgS4i +HOWkv8qmLUH/4esvCxGcrLH9zDZuY5vQ503qYA/VZ4/Xc4cK3zm8gZvxxeTliPy WheAs1PUxrX3iCfoqx+AZru7OapR6SHf+IoMlR+XU1cA4Bh6Ha+a4g10MQj5AgMB AAGjggGPMIIBizAfBgNVHSMEGDAWgBSBuA5jiokSGOX6OztQlZ/m5ZAThTAdBgNV HQ4EFgQU4M5YxsG1f2ngKOhpWIfDqxpopGgwLgYDVR0RBCcwJYIjdGVycmFmb3Jt LWF3cy12cG4ub3NzLmNoYW1wdGVzdC5uZXQwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRw Oi8vY3JsLnIybTAxLmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jcmwwEwYDVR0gBAww CjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8v b2NzcC5yMm0wMS5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9j cnQucjJtMDEuYW1hem9udHJ1c3QuY29tL3IybTAxLmNlcjAMBgNVHRMBAf8EAjAA MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAt8XtHKArl 9RatFA/NvS3VnZUkWZZi73wPgoSgesPXnr7LXNfYnYwN78lwmhc6g5flCae3QJMI r7M2AP2QDYdx2cJDMI0cJ8Yy4L2FEd0Ku0Wkq1t0Vf4AsrDQVIH5y+kj5KS4gvU0 IqFc0/2Jl+Bhs02/YtvRRK3Dka5P4ueHz+pPcY27GaKIMlZmDw47/YRls85EDdx2 wtcqk71JX92mfwQLkhibLZY/S4uM6k33kTJtHu9qpF1kfuvCdmxcL/gW3JH2k4Lt y7HlptxLyxu1wIaUgzusrboGjwSoLbm8gEFQOx/eE4U9jgJlv34UetfBicuCDd1a ml8YNFwcGUs5 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAorfQot1vIcRH6uBnq0CX d/CEdGntFZe9Sq1DYBbMc7tPNGUycrz8+M64sxkoVFJU3dCj9giDmjNxtu5hEIjz mPUvOwT2HLQkvomKvQw+SngGLKHgLg3Vu7O094nW8Kz5vcWnsS9dt1HGk0kui/AY sOPj86VJEsd1lwsvq+tBznxj2u/cvzx4hY0Chg8hJ8634Hwt9W9Xx/DMFyYpTgt+ aoEuIvhzlpL/Kpi1B/+HrLwsRnKyx/cw2bmOb0OdN6mAP1WeP13OHCt85vIGb8cX k5Yj8loXgLNT1Ma194gn6KsfgGa7uzmqUekh3/iKDJUfl1NXAOAYeh2vmuINdDEI +QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5833402603440738794738678146979259250 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-10 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'terraform-aws-vpn.oss.champtest.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20541247951959325573056615353713542069013084815444936233497259902855008385012654820313100499858746944913324469664598746317060066337885243794891772603632486143622501818086913708737435252092577710699753411928723694494424352282442514695685159948967505501731852805910191895896094123039986834584644917547159206684757120100344804340794084517064448394580360255053242955505988594439813025556911068074976452856989565780206012966354892057803932801546162302507823317218411197088826800442039019208620614753074007874426338076594536517445741419091706838210563594549626199835240527452529386196230165079421180705682185486705118742777 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e0ce58c6c1b57f69e028e8695887c3ab1a68a468 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'terraform-aws-vpn.oss.champtest.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002df17b47280ae5f516ad140fcdbd2dd59d9524599662ef7c0f8284a07ac3d79ebecb5cd7d89d8c0defc9709a173a8397e509a7b7409308afb33600fd900d8771d9c243308d1c27c632e0bd8511dd0abb45a4ab5b7455fe00b2b0d05481f9cbe923e4a4b882f53422a15cd3fd8997e061b34dbf62dbd144adc391ae4fe2e787cfea4f718dbb19a2883256660f0e3bfd8465b3ce440ddc76c2d72a93bd495fdda67f040b92189b2d963f4b8b8cea4df791326d1eef6aa45d647eebc2766c5c2ff816dc91f69382edcbb1e5a6dc4bcb1bb5c08694833bacadba068f04a82db9bc8041503b1fde13853d8e0265bf7e147ad7c189cb820ddd5a9a5f18345c1c194b39