stg-2.api.diy.gowhere.gov.sg
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 03:b0:6b:e3:50:85:07:6a:b5:39:d2:d9:18:8b:bc:da was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=stg-2.api.diy.gowhere.gov.sg
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:b0:6b:e3:50:85:07:6a:b5:39:d2:d9:18:8b:bc:daSerial Number (int): 4903716461996981692768088128494484698
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 6f:86:0b:ba:3b:e6:8f:3e:24:f7:31:56:3d:c5:3d:21:08:5f:7b:97
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): ad:51:ec:fe:98:8d:46:dd:a0:2b:c7:f8:84:02:01:fd:86:57:bb:78
Fingerprint (sha256): 22:e6:73:ad:d2:72:a8:31:e8:e2:0a:6d:56:f7:11:3b:1b:2a:3e:0c:11:f3:6a:50:95:c5:61:d6:f1:12:93:ae
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate stg-2.api.diy.gowhere.gov.sg
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stg-2.api.diy.gowhere.gov.sg
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stg-2.api.diy.gowhere.gov.sg
Other certificates including the domain name gowhere.gov.sg
(limited to 100 certificates)
stg.mask.gowhere.gov.sg
stg.flu.gowhere.gov.sg
stg.gowhere.gov.sg
stg.supermarkettrial.gowhere.gov.sg
stg.token.gowhere.gov.sg
uat.gowhere.gov.sg
stg.api.edit.gowhere.gov.sg
stg.token.gowhere.gov.sg
gowhere.gov.sg
prd-tmp.token.gowhere.gov.sg
stg.cdn.gowhere.gov.sg
stg-2.diy.gowhere.gov.sg
uat.flu.gowhere.gov.sg
stg-tmp.api.gowhere.gov.sg
stg.cdn.gowhere.gov.sg
gowhere.gov.sg
stg.api.gowhere.gov.sg
*.gowhere.gov.sg
stg.edit.gowhere.gov.sg
stg-2.api.diy.gowhere.gov.sg
uat.diy.gowhere.gov.sg
stg.gowhere.gov.sg
prd-tmp.flu.gowhere.gov.sg
stg.api.diy.gowhere.gov.sg
stg.react.gowhere.gov.sg
stg.review.diy.gowhere.gov.sg
gowhere.gov.sg
*.gowhere.gov.sg
stg-2.review.diy.gowhere.gov.sg
uat-2.api.diy.gowhere.gov.sg
stg.diy.gowhere.gov.sg
prd-tmp.token.gowhere.gov.sg
uat.api.gowhere.gov.sg
*.gowhere.gov.sg
prd-tmp.cdn.gowhere.gov.sg
stg.api.edit.gowhere.gov.sg
uat-2.review.diy.gowhere.gov.sg
support.gowhere.gov.sg
uat.token.gowhere.gov.sg
prd-tmp.cdn.gowhere.gov.sg
uat-2.diy.gowhere.gov.sg
stg.cdn.gowhere.gov.sg
support.gowhere.gov.sg
www.token.gowhere.gov.sg
api.diy.gowhere.gov.sg
stg.token.gowhere.gov.sg
uat.api.gowhere.gov.sg
prd-tmp.cdn.gowhere.gov.sg
stg.cam-api.gowhere.gov.sg
gowhere.gov.sg
flu.gowhere.gov.sg
*.gowhere.gov.sg
support.gowhere.gov.sg
gowhere.gov.sg
www.token.gowhere.gov.sg
uat-2.gowhere.gov.sg
prd-tmp.mask.gowhere.gov.sg
prd-tmp.react.gowhere.gov.sg
api.identity.gowhere.gov.sg
stg.mask.gowhere.gov.sg
prd-tmp.api.gowhere.gov.sg
uat.react.gowhere.gov.sg
support.gowhere.gov.sg
gowhere.gov.sg
cam-api.gowhere.gov.sg
stg.gowhere.gov.sg
stg.mask.gowhere.gov.sg
stg-tmp.mask.gowhere.gov.sg
prd-tmp.react.gowhere.gov.sg
stg.react.gowhere.gov.sg
uat.token.gowhere.gov.sg
stg.mask.gowhere.gov.sg
stg.flu.gowhere.gov.sg
prd-tmp.gowhere.gov.sg
prd-tmp.react.gowhere.gov.sg
www.token.gowhere.gov.sg
uat.api.diy.gowhere.gov.sg
gowhere.gov.sg
prd-tmp.api.gowhere.gov.sg
prd-tmp.gowhere.gov.sg
prd-tmp.mask.gowhere.gov.sg
cam-api.gowhere.gov.sg
stg.gowhere.gov.sg
stg-tmp.api.gowhere.gov.sg
prd-tmp.flu.gowhere.gov.sg
stg.react.gowhere.gov.sg
diy.gowhere.gov.sg
stg-2.gowhere.gov.sg
*.gowhere.gov.sg
stg.flu.gowhere.gov.sg
uat.token.gowhere.gov.sg
gowhere.gov.sg
uat.review.diy.gowhere.gov.sg
stg.flu.gowhere.gov.sg
stg.gowhere.gov.sg
stg.supermarkettrial.gowhere.gov.sg
stg.token.gowhere.gov.sg
uat.gowhere.gov.sg
stg.api.edit.gowhere.gov.sg
stg.token.gowhere.gov.sg
gowhere.gov.sg
prd-tmp.token.gowhere.gov.sg
stg.cdn.gowhere.gov.sg
stg-2.diy.gowhere.gov.sg
uat.flu.gowhere.gov.sg
stg-tmp.api.gowhere.gov.sg
stg.cdn.gowhere.gov.sg
gowhere.gov.sg
stg.api.gowhere.gov.sg
*.gowhere.gov.sg
stg.edit.gowhere.gov.sg
stg-2.api.diy.gowhere.gov.sg
uat.diy.gowhere.gov.sg
stg.gowhere.gov.sg
prd-tmp.flu.gowhere.gov.sg
stg.api.diy.gowhere.gov.sg
stg.react.gowhere.gov.sg
stg.review.diy.gowhere.gov.sg
gowhere.gov.sg
*.gowhere.gov.sg
stg-2.review.diy.gowhere.gov.sg
uat-2.api.diy.gowhere.gov.sg
stg.diy.gowhere.gov.sg
prd-tmp.token.gowhere.gov.sg
uat.api.gowhere.gov.sg
*.gowhere.gov.sg
prd-tmp.cdn.gowhere.gov.sg
stg.api.edit.gowhere.gov.sg
uat-2.review.diy.gowhere.gov.sg
support.gowhere.gov.sg
uat.token.gowhere.gov.sg
prd-tmp.cdn.gowhere.gov.sg
uat-2.diy.gowhere.gov.sg
stg.cdn.gowhere.gov.sg
support.gowhere.gov.sg
www.token.gowhere.gov.sg
api.diy.gowhere.gov.sg
stg.token.gowhere.gov.sg
uat.api.gowhere.gov.sg
prd-tmp.cdn.gowhere.gov.sg
stg.cam-api.gowhere.gov.sg
gowhere.gov.sg
flu.gowhere.gov.sg
*.gowhere.gov.sg
support.gowhere.gov.sg
gowhere.gov.sg
www.token.gowhere.gov.sg
uat-2.gowhere.gov.sg
prd-tmp.mask.gowhere.gov.sg
prd-tmp.react.gowhere.gov.sg
api.identity.gowhere.gov.sg
stg.mask.gowhere.gov.sg
prd-tmp.api.gowhere.gov.sg
uat.react.gowhere.gov.sg
support.gowhere.gov.sg
gowhere.gov.sg
cam-api.gowhere.gov.sg
stg.gowhere.gov.sg
stg.mask.gowhere.gov.sg
stg-tmp.mask.gowhere.gov.sg
prd-tmp.react.gowhere.gov.sg
stg.react.gowhere.gov.sg
uat.token.gowhere.gov.sg
stg.mask.gowhere.gov.sg
stg.flu.gowhere.gov.sg
prd-tmp.gowhere.gov.sg
prd-tmp.react.gowhere.gov.sg
www.token.gowhere.gov.sg
uat.api.diy.gowhere.gov.sg
gowhere.gov.sg
prd-tmp.api.gowhere.gov.sg
prd-tmp.gowhere.gov.sg
prd-tmp.mask.gowhere.gov.sg
cam-api.gowhere.gov.sg
stg.gowhere.gov.sg
stg-tmp.api.gowhere.gov.sg
prd-tmp.flu.gowhere.gov.sg
stg.react.gowhere.gov.sg
diy.gowhere.gov.sg
stg-2.gowhere.gov.sg
*.gowhere.gov.sg
stg.flu.gowhere.gov.sg
uat.token.gowhere.gov.sg
gowhere.gov.sg
uat.review.diy.gowhere.gov.sg
Certificate
The complete raw certificate details for stg-2.api.diy.gowhere.gov.sg in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5TCCBM2gAwIBAgIQA7Br41CFB2q1OdLZGIu82jANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTEyMDAwMDAwMFoXDTI0MTIxODIzNTk1OVowJzEl MCMGA1UEAxMcc3RnLTIuYXBpLmRpeS5nb3doZXJlLmdvdi5zZzCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBANDtDCv/qDhyoJIeW7qT+E8czBuZvTgP8iq4 gK5xy79Ll92lk4fURvmGf0jPc3QvdCLpgA6LZbI6JKXWDktFZvkGJPsG8XmyZWkc F5tsyTZI5cm+hviXAXnofFGmYrO3+pULjQ45GUmiWITLGLK8DvNJ7ByVJWKO+2OT dUY1du0YE4ZZ50VdOeXnHe/3lDnHKTkwd6I/KEA8IUNwzFjfXuXPEl7ElxpSEZAo ++NzDG1tpoLlJN2ftmtfFWjJV/o3j/oTZG8aeSwPLi9DbvMTRHg4uCpRLeHmXo1E /wh875DEvjekXM1Z0I8kKKRpUIqhOuSM0XVcxqLzyJCiutboeWcCAwEAAaOCAvYw ggLyMB8GA1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBRv hgu6O+aPPiT3MVY9xT0hCF97lzAnBgNVHREEIDAeghxzdGctMi5hcGkuZGl5Lmdv d2hlcmUuZ292LnNnMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6g LIYqaHR0cDovL2NybC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY3JsMHUG CCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDMuYW1h em9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAzLmFtYXpv bnRydXN0LmNvbS9yMm0wMy5jZXIwDAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkC BAIEggFvBIIBawFpAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsA AAGL685QjQAABAMASDBGAiEAyRysIckdPURXzeZYBpDR/qw3OcRfrRTi3dXryiEY yIYCIQC7BFosYuRIoAgbJiekZPMwvT2Xl27f2KQYnU1ip3Z03wB3AEiw42vapkc0 D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABi+vOUK4AAAQDAEgwRgIhAJ2nbGMg 3SvfBV+wpY+5ik8NQWBEkM2EjRvwk+dn984TAiEA5iUAy8h51EFH3M1cwlWftOvU ZFkqTXDe0FP3jd2tBGUAdQDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7 qwAAAYvrzlC2AAAEAwBGMEQCIGwffKtMU+5n14q2HCN0yPdzZPqKo95gyU8kvYxw IW9yAiBKPuC5nVXfxaOqjSTeDcVWTm3ZCC+rqfuPTloyBcficDANBgkqhkiG9w0B AQsFAAOCAQEAlZuxLuGoBeWqwpajg0vlNuuQ5oKOuMIt/+UUFmrouVDMtszNmcak TkcxN3ak/iRmXdfu2mA5E+XkzxFehju5xeUW74JlkqAxf8OPgwUUZgd5pEIPzRIc nzE82Y1fIAlt2zxjcdiq2ItSNq8K7IhhaC8ky+9G0FunFEfBqMa4PfkJHl8UDF8R 04Q+GhAITfdAr+Uz61g2uZo4SkDgFt+xlMjz/0wZEchPhbtkolL5MugPa1PcuL4K pdxJmqdoX/tTxRyGKBAGbwUvr8wJzpaKOUGdcoitW+38cu0NQFFd0kdx7nBxNRiH DmIIHZnCFSOcpyL5tsXsf834g2atS8PyCg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0O0MK/+oOHKgkh5bupP4 TxzMG5m9OA/yKriArnHLv0uX3aWTh9RG+YZ/SM9zdC90IumADotlsjokpdYOS0Vm +QYk+wbxebJlaRwXm2zJNkjlyb6G+JcBeeh8UaZis7f6lQuNDjkZSaJYhMsYsrwO 80nsHJUlYo77Y5N1RjV27RgThlnnRV055ecd7/eUOccpOTB3oj8oQDwhQ3DMWN9e 5c8SXsSXGlIRkCj743MMbW2mguUk3Z+2a18VaMlX+jeP+hNkbxp5LA8uL0Nu8xNE eDi4KlEt4eZejUT/CHzvkMS+N6RczVnQjyQopGlQiqE65IzRdVzGovPIkKK61uh5 ZwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4903716461996981692768088128494484698 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stg-2.api.diy.gowhere.gov.sg' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26374459934696609452573190094453341114460641406190501761978045850908732555021713622416299799802290327120984359243429964246692790658856738746767813522847835756217606185643309232033635452700061193427196149308325322135395359034689000125935862236859583801860034536422212201928214197512783102536528354864049809203478296323599664199994271003581185787944980223047737643048454436476598045318570517270109672227738385717531802432014685913279005754867225357621217654485748333660249658055661813482363598213403706409552813565784429042580753919960981616351123001556999740293968312932574802316345083174423851990827860159573374040423 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6f860bba3be68f3e24f731563dc53d21085f7b97 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-2.api.diy.gowhere.gov.sg' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 0169007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018bebce508d0000040300483046022100c91cac21c91d3d4457cde6580690d1feac3739c45fad14e2ddd5ebca2118c886022100bb045a2c62e448a0081b2627a464f330bd3d97976edfd8a4189d4d62a77674df00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bebce50ae00000403004830460221009da76c6320dd2bdf055fb0a58fb98a4f0d41604490cd848d1bf093e767f7ce13022100e62500cbc879d44147dccd5cc2559fb4ebd464592a4d70ded053f78dddad0465007500dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018bebce50b6000004030046304402206c1f7cab4c53ee67d78ab61c2374c8f77364fa8aa3de60c94f24bd8c70216f7202204a3ee0b99d55dfc5a3aa8d24de0dc5564e6dd9082faba9fb8f4e5a3205c7e270 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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