equity-gateway.highbond.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 06:5b:fb:18:55:91:81:b1:06:55:c8:15:7c:ce:be:00 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=equity-gateway.highbond.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:5b:fb:18:55:91:81:b1:06:55:c8:15:7c:ce:be:00Serial Number (int): 8452959801604713992704564767392448000
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 13:62:05:f8:b5:1f:0e:72:e4:e5:8f:72:f6:08:4d:54:5b:dd:23:b6
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 5d:23:14:82:93:81:f0:0c:4e:3c:e5:f2:75:e1:6e:d4:3a:a6:16:f0
Fingerprint (sha256): 22:83:0d:0f:c3:1a:8a:ee:51:87:2a:d3:74:48:0b:12:02:64:7c:b3:99:d7:10:3a:e0:0b:19:03:82:c5:71:00
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate equity-gateway.highbond.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for equity-gateway.highbond.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
equity-gateway.highbond.com
*.equity-gateway.highbond.com
*.equity-gateway.highbond.com
Other certificates including the domain name highbond.com
(limited to 100 certificates)
*.projects.highbond.com
api-status.360cities.net
api-status.360cities.net
andrei.sterda.com
*.extractor-sa.highbond.com
highbond-combined-eu.aclgrc.com
captable.highbond.com
api-status.360cities.net
api-status.360cities.net
*.hub-ap.highbond.com
*.asset-types-api-sa.highbond.com
contributor.be-importhub-eu.highbond.com
*.hub-ap.highbond.com
highbond-combined-au.aclgrc.com
boardeffect.highbond.com
*.hub-eu.highbond.com
risks-assets-api-jp.highbond.com
equity-appapi.highbond.com
*.web-components-af.highbond.com
api-status.360cities.net
be-manage-eu.highbond.com
sdk-toolkits-api-eu.highbond.com
au.be-wopi.highbond.com
*.hub-ca.highbond.com
gallery.highbond.com
sdk-toolkits-api-au.highbond.com
highbond-combined.aclgrc.com
api-status.360cities.net
andrei.sterda.com
api-status.360cities.net
andrei.sterda.com
*.projects-au.highbond.com
api-status.360cities.net
*.roles-configuration.highbond.com
andrei.sterda.com
api-status.360cities.net
notifications-email-api-us.highbond.com
*.static.highbond.com
eu.be-wopi.highbond.com
*.bulkimportercdk1.highbond.com
downloads.highbond.com
*.highbond.com
*.cdkbulkimporter-eu.highbond.com
equity-gateway.highbond.com
notifications-email-api-ca.highbond.com
*.results.highbond.com
audit-eu-api.highbond.com
importer-cdkgateway-eu.highbond.com
*.risks.highbond.com
*.highbond.com
*.hub-af.highbond.com
andrei.sterda.com
api-status.360cities.net
andrei.sterda.com
*.highbond.com
highbond-combined-eu.aclgrc.com
api-status.360cities.net
*.results-ca.highbond.com
*.cdkbulkimporter.highbond.com
api-status.360cities.net
*.email-configuration-sa.highbond.com
api-status.360cities.net
highbond-combined-eu.aclgrc.com
api-status.360cities.net
*.cdkbulkimporter-af.highbond.com
*.highbond.com
be-manage.highbond.com
equity-portal.highbond.com
api-status.360cities.net
*.web-components.highbond.com
*.robots-ap.highbond.com
api-status.360cities.net
*.hub-au.highbond.com
compliance-library-api-af.highbond.com
*.asset-inventory-af.highbond.com
importer-cdkgateway-au.highbond.com
gallery.highbond.com
integration-service-api-au.highbond.com
api.dmi.highbond.com
api-status.360cities.net
highbond-combined-eu.aclgrc.com
andrei.sterda.com
highbond-combined-au.aclgrc.com
api-status.360cities.net
highbond-combined-au.aclgrc.com
assessments-jp.highbond.com
*.highbond.com
equity-gateway.highbond.com
*.cdkbulkimporter-sa.highbond.com
audit-af-api.highbond.com
highbond-combined.aclgrc.com
*.cdkbulkimporter.highbond.com
api-status.360cities.net
andrei.sterda.com
be-manage-ca.highbond.com
highbond-combined.aclgrc.com
andrei.sterda.com
*.projects-ap.highbond.com
gallery.highbond.com
andrei.sterda.com
api-status.360cities.net
api-status.360cities.net
andrei.sterda.com
*.extractor-sa.highbond.com
highbond-combined-eu.aclgrc.com
captable.highbond.com
api-status.360cities.net
api-status.360cities.net
*.hub-ap.highbond.com
*.asset-types-api-sa.highbond.com
contributor.be-importhub-eu.highbond.com
*.hub-ap.highbond.com
highbond-combined-au.aclgrc.com
boardeffect.highbond.com
*.hub-eu.highbond.com
risks-assets-api-jp.highbond.com
equity-appapi.highbond.com
*.web-components-af.highbond.com
api-status.360cities.net
be-manage-eu.highbond.com
sdk-toolkits-api-eu.highbond.com
au.be-wopi.highbond.com
*.hub-ca.highbond.com
gallery.highbond.com
sdk-toolkits-api-au.highbond.com
highbond-combined.aclgrc.com
api-status.360cities.net
andrei.sterda.com
api-status.360cities.net
andrei.sterda.com
*.projects-au.highbond.com
api-status.360cities.net
*.roles-configuration.highbond.com
andrei.sterda.com
api-status.360cities.net
notifications-email-api-us.highbond.com
*.static.highbond.com
eu.be-wopi.highbond.com
*.bulkimportercdk1.highbond.com
downloads.highbond.com
*.highbond.com
*.cdkbulkimporter-eu.highbond.com
equity-gateway.highbond.com
notifications-email-api-ca.highbond.com
*.results.highbond.com
audit-eu-api.highbond.com
importer-cdkgateway-eu.highbond.com
*.risks.highbond.com
*.highbond.com
*.hub-af.highbond.com
andrei.sterda.com
api-status.360cities.net
andrei.sterda.com
*.highbond.com
highbond-combined-eu.aclgrc.com
api-status.360cities.net
*.results-ca.highbond.com
*.cdkbulkimporter.highbond.com
api-status.360cities.net
*.email-configuration-sa.highbond.com
api-status.360cities.net
highbond-combined-eu.aclgrc.com
api-status.360cities.net
*.cdkbulkimporter-af.highbond.com
*.highbond.com
be-manage.highbond.com
equity-portal.highbond.com
api-status.360cities.net
*.web-components.highbond.com
*.robots-ap.highbond.com
api-status.360cities.net
*.hub-au.highbond.com
compliance-library-api-af.highbond.com
*.asset-inventory-af.highbond.com
importer-cdkgateway-au.highbond.com
gallery.highbond.com
integration-service-api-au.highbond.com
api.dmi.highbond.com
api-status.360cities.net
highbond-combined-eu.aclgrc.com
andrei.sterda.com
highbond-combined-au.aclgrc.com
api-status.360cities.net
highbond-combined-au.aclgrc.com
assessments-jp.highbond.com
*.highbond.com
equity-gateway.highbond.com
*.cdkbulkimporter-sa.highbond.com
audit-af-api.highbond.com
highbond-combined.aclgrc.com
*.cdkbulkimporter.highbond.com
api-status.360cities.net
andrei.sterda.com
be-manage-ca.highbond.com
highbond-combined.aclgrc.com
andrei.sterda.com
*.projects-ap.highbond.com
gallery.highbond.com
andrei.sterda.com
Certificate
The complete raw certificate details for equity-gateway.highbond.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIElDCCA3ygAwIBAgIQBlv7GFWRgbEGVcgVfM6+ADANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIxMjAwMDAwMFoXDTI1MDEwOTIzNTk1OVowJjEk MCIGA1UEAxMbZXF1aXR5LWdhdGV3YXkuaGlnaGJvbmQuY29tMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyefo0Bfdtj67znhlUYxNPAW8MLC++gEWRtlk Nqjv0TlggKTQN53xd0hEJ/nza/FYnPUJ6ZvmWLNAMYLZfG/JZxc3D1pVMI13SsAv DR+xnuPOGnWNgAEi6YLhM+NoMA7RQJneBh7AKydCOFKbBE4fAGYYNybijV9FAoSW KMlMVQPdEqKcNjFc7N+P8A1LJkt5YeB2bzGq01JxvSPzEJoPcDcvNhMa4lMwtRR4 +DCnHdn8OuOJEniYryOQFnwLe9WhpOCCcL9hHzTIAxR4GpnV8konEzEMbGS+6PjB ++NZZR5Jwli117HtT6J7N8EiNpmBoH3WmhjCPS7e56ucDyFaswIDAQABo4IBpjCC AaIwHwYDVR0jBBgwFoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFBNi Bfi1Hw5y5OWPcvYITVRb3SO2MEUGA1UdEQQ+MDyCG2VxdWl0eS1nYXRld2F5Lmhp Z2hib25kLmNvbYIdKi5lcXVpdHktZ2F0ZXdheS5oaWdoYm9uZC5jb20wEwYDVR0g BAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAy LmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsG AQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYB BQUHMAKGKmh0dHA6Ly9jcnQucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNl cjAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNbdma0DDjElvYQYlJAfqTt7VtTZ9PKqUGkVA0YhJCnzuneXRxY8SM i+xn5VgcmT4hjkhilfAaHyR4TWi7bPtXSZwW/FeGrWK22HwcktFJO+mHMXyIl8r8 8xyFNNtI6x76tuTT6LJ+e7GCigBzM8pf4P+IKdDy+WUIl4CoYM/LlbQe/1e7wpCE r0khSDOi63lirfH6yFiQ48kJ6vDNT0t14y4LsCWOZ87G8xs1/nmB3gwu5uXUFo82 OGRc64rFzVvRlSOy5ufJ3KK0wjwMIG7nC08FuhvXYlL+a/zljJZ57HeyVqlfv+FT 1yKNhVXGgz+NpeAD+CUpg/Eres30oAJ0 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyefo0Bfdtj67znhlUYxN PAW8MLC++gEWRtlkNqjv0TlggKTQN53xd0hEJ/nza/FYnPUJ6ZvmWLNAMYLZfG/J Zxc3D1pVMI13SsAvDR+xnuPOGnWNgAEi6YLhM+NoMA7RQJneBh7AKydCOFKbBE4f AGYYNybijV9FAoSWKMlMVQPdEqKcNjFc7N+P8A1LJkt5YeB2bzGq01JxvSPzEJoP cDcvNhMa4lMwtRR4+DCnHdn8OuOJEniYryOQFnwLe9WhpOCCcL9hHzTIAxR4GpnV 8konEzEMbGS+6PjB++NZZR5Jwli117HtT6J7N8EiNpmBoH3WmhjCPS7e56ucDyFa swIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8452959801604713992704564767392448000 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'equity-gateway.highbond.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25488258097979717953977867319105747906507983674431220445870533502085271404666294473428192956270493588487128396116269839485416935435142421435144111228217534794585443567767782121342031134002373440855685974617973483537648678110494235654156622125870129427538800554259358938977417127480966131358671227909580908343165986623208484918480250445645091325664055057179222145982694805537803357312192390462932899918072272628405313912265517024356475291424255655292573466166998335091820238785337348495897480912380912477210378602484042799787191691946969985671371313326866145329866474811126806006139724386361155335719361423948084501171 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 136205f8b51f0e72e4e58f72f6084d545bdd23b6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'equity-gateway.highbond.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.equity-gateway.highbond.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008d6dd99ad030e3125bd841894901fa93b7b56d4d9f4f2aa5069150346212429f3ba779747163c48c8bec67e5581c993e218e486295f01a1f24784d68bb6cfb57499c16fc5786ad62b6d87c1c92d1493be987317c8897cafcf31c8534db48eb1efab6e4d3e8b27e7bb1828a007333ca5fe0ff8829d0f2f965089780a860cfcb95b41eff57bbc29084af49214833a2eb7962adf1fac85890e3c909eaf0cd4f4b75e32e0bb0258e67cec6f31b35fe7981de0c2ee6e5d4168f3638645ceb8ac5cd5bd19523b2e6e7c9dca2b4c23c0c206ee70b4f05ba1bd76252fe6bfce58c9679ec77b256a95fbfe153d7228d8555c6833f8da5e003f8252983f12b7acdf4a00274