dali.lightstream.euw.frdstr.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 01:e5:80:08:8f:90:b8:14:4c:4a:de:1b:26:e5:e2:b6 was issued on by Amazon.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=dali.lightstream.euw.frdstr.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:e5:80:08:8f:90:b8:14:4c:4a:de:1b:26:e5:e2:b6Serial Number (int): 2520860803075269940108288137256886966
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 64:b6:a6:f9:a8:1c:9b:e0:a4:e6:2a:e5:f2:69:eb:cf:25:77:26:0c
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 2e:c1:c9:02:a4:94:70:31:fc:76:c8:a4:f0:9e:86:de:fd:d8:fb:cb
Fingerprint (sha256): 23:b3:4d:b3:b3:f0:ef:08:15:1d:31:84:f7:14:e1:01:c7:ff:73:94:fa:a9:6f:97:b6:b7:8c:de:03:65:61:f5
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate dali.lightstream.euw.frdstr.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dali.lightstream.euw.frdstr.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dali.lightstream.euw.frdstr.com
lightstream-dali.frdstr.com
dali.lightstream.frdstr.com
lightstream-dali.frdstr.com
dali.lightstream.frdstr.com
Other certificates including the domain name frdstr.com
(limited to 100 certificates)
redash.frdstr.com
prod-accounts-es-writer.frdstr.com
orizon.coleta.relatoweb.com.br
monitor.frdstr.com
storm.frdstr.com
rfpxer.frdstr.com
stagingportal.frdstr.com
hq.frdstr.com
artifactory.frdstr.com
cr0n.frdstr.com
three-ds-new.frdstr.com
sites.use.frdstr.com
tableau.frdstr.com
dev.atlas.frdstr.com
prod-enrichment.frdstr.com
squid.frdstr.com
prodreindex.es.frdstr.com
*.es.frdstr.com
toolbox.frdstr.com
docu.frdstr.com
hq.frdstr.com
prod-sessions-es-writer-f.frdstr.com
squid.frdstr.com
spectator.frdstr.com
ptrend.frdstr.com
chuck.usw.frdstr.com
prod-sessions-es-writer-l.frdstr.com
monitor.usw.frdstr.com
geocodio.frdstr.com
estest.frdstr.com
redash.frdstr.com
hq.frdstr.com
sessions-persistence.frdstr.com
prod-enrichment.frdstr.com
sites.usw.frdstr.com
cr0n.frdstr.com
prodintents-euw.es.frdstr.com
artifactory.frdstr.com
cr0n.usw.frdstr.com
cr0n.frdstr.com
rugatkins.use.frdstr.com
stagingportal.frdstr.com
prod-vault-helm.pcimon.frdstr.com
prod-vault-helm.euw.frdstr.com
accounts-storm-realtime.frdstr.com
historun-enrichment-google-proxy.frdstr.com
prodfp.usw.frdstr.com
academy.frdstr.com
portal.frdstr.com
docu.frdstr.com
dev-consul-api-gwsame-vpc.frdstr.com
claims.frdstr.com
prod-consul-api-gwsame-vpc.frdstr.com
dev-vault-k8s.frdstr.com
monitor.frdstr.com
prod-sessions-es-writer-l.frdstr.com
confetti-ui.use.frdstr.com
squid.frdstr.com
tableau.frdstr.com
prod-kafka-rest-proxy.frdstr.com
techradar.frdstr.com
dev-confetti.frdstr.com
artifactory.frdstr.com
cr0n.use.frdstr.com
smart-logic-policy-payload-maintainer.frdstr.com
develop-netservices.frdstr.com
stagingportal.usw.frdstr.com
dali.lightstream.euw.frdstr.com
gozer2.frdstr.com
thanos-querier.use.frdstr.com
gozer.frdstr.com
adaptive-auth.frdstr.com
prodintents-euw.es.frdstr.com
sigmund.frdstr.com
logging-kibana-public.frdstr.com
prod-tasks-md-writer-high.frdstr.com
redactor-staging.frdstr.com
enrichments.frdstr.com
sigmund.use.frdstr.com
batchman.frdstr.com
confetti.frdstr.com
squid.frdstr.com
*.es.frdstr.com
o11y-cert-frdstr.frdstr.com
pushgateway.use.frdstr.com
stagingportal.frdstr.com
dev-cyber-ip-enrichment.frdstr.com
status.use.frdstr.com
portal.frdstr.com
historun-enrichment-google-proxy.frdstr.com
prod-eh-a-tp-es-portal-w.frdstr.com
heimdall-dashboard.frdstr.com
alertmanager.use.frdstr.com
stagingportal.frdstr.com
prod-consul-api-gw-okta.frdstr.com
stagingportal.use.frdstr.com
stagingportal.frdstr.com
dev-consul-api-gw.frdstr.com
redash.frdstr.com
stagingportal.frdstr.com
prod-accounts-es-writer.frdstr.com
orizon.coleta.relatoweb.com.br
monitor.frdstr.com
storm.frdstr.com
rfpxer.frdstr.com
stagingportal.frdstr.com
hq.frdstr.com
artifactory.frdstr.com
cr0n.frdstr.com
three-ds-new.frdstr.com
sites.use.frdstr.com
tableau.frdstr.com
dev.atlas.frdstr.com
prod-enrichment.frdstr.com
squid.frdstr.com
prodreindex.es.frdstr.com
*.es.frdstr.com
toolbox.frdstr.com
docu.frdstr.com
hq.frdstr.com
prod-sessions-es-writer-f.frdstr.com
squid.frdstr.com
spectator.frdstr.com
ptrend.frdstr.com
chuck.usw.frdstr.com
prod-sessions-es-writer-l.frdstr.com
monitor.usw.frdstr.com
geocodio.frdstr.com
estest.frdstr.com
redash.frdstr.com
hq.frdstr.com
sessions-persistence.frdstr.com
prod-enrichment.frdstr.com
sites.usw.frdstr.com
cr0n.frdstr.com
prodintents-euw.es.frdstr.com
artifactory.frdstr.com
cr0n.usw.frdstr.com
cr0n.frdstr.com
rugatkins.use.frdstr.com
stagingportal.frdstr.com
prod-vault-helm.pcimon.frdstr.com
prod-vault-helm.euw.frdstr.com
accounts-storm-realtime.frdstr.com
historun-enrichment-google-proxy.frdstr.com
prodfp.usw.frdstr.com
academy.frdstr.com
portal.frdstr.com
docu.frdstr.com
dev-consul-api-gwsame-vpc.frdstr.com
claims.frdstr.com
prod-consul-api-gwsame-vpc.frdstr.com
dev-vault-k8s.frdstr.com
monitor.frdstr.com
prod-sessions-es-writer-l.frdstr.com
confetti-ui.use.frdstr.com
squid.frdstr.com
tableau.frdstr.com
prod-kafka-rest-proxy.frdstr.com
techradar.frdstr.com
dev-confetti.frdstr.com
artifactory.frdstr.com
cr0n.use.frdstr.com
smart-logic-policy-payload-maintainer.frdstr.com
develop-netservices.frdstr.com
stagingportal.usw.frdstr.com
dali.lightstream.euw.frdstr.com
gozer2.frdstr.com
thanos-querier.use.frdstr.com
gozer.frdstr.com
adaptive-auth.frdstr.com
prodintents-euw.es.frdstr.com
sigmund.frdstr.com
logging-kibana-public.frdstr.com
prod-tasks-md-writer-high.frdstr.com
redactor-staging.frdstr.com
enrichments.frdstr.com
sigmund.use.frdstr.com
batchman.frdstr.com
confetti.frdstr.com
squid.frdstr.com
*.es.frdstr.com
o11y-cert-frdstr.frdstr.com
pushgateway.use.frdstr.com
stagingportal.frdstr.com
dev-cyber-ip-enrichment.frdstr.com
status.use.frdstr.com
portal.frdstr.com
historun-enrichment-google-proxy.frdstr.com
prod-eh-a-tp-es-portal-w.frdstr.com
heimdall-dashboard.frdstr.com
alertmanager.use.frdstr.com
stagingportal.frdstr.com
prod-consul-api-gw-okta.frdstr.com
stagingportal.use.frdstr.com
stagingportal.frdstr.com
dev-consul-api-gw.frdstr.com
redash.frdstr.com
stagingportal.frdstr.com
Certificate
The complete raw certificate details for dali.lightstream.euw.frdstr.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEtzCCA5+gAwIBAgIQAeWACI+QuBRMSt4bJuXitjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIxNDAwMDAwMFoXDTI1MDExMTIzNTk1OVowKjEo MCYGA1UEAxMfZGFsaS5saWdodHN0cmVhbS5ldXcuZnJkc3RyLmNvbTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKUUH4+Kpusjt58erWgXnraHuTV0fSEp mF8jEpFBOS+hO1KjkHE0vOVbhwIwlhPGZo5y3E8UcO3TzdSxlKOOijI9uZ+z5jgY AYeYsqADcA/3NIofG/p1kavndHAVbebP2N2S/i1w4Iae2Eze0qmlRtTkrL4TnrYi 9BsSNBNpksGwHZZVtuAk9K/jyeFMo72++3JJrneukEqn1XWYqIV+zTvOEwZwJy3X hGRSGSFpvHi1qagVOv7ZtZTrUWmhyUuZ8xOPTvXsgOYlkysJjCoke8UXSZXub3Vx OkSGp+9o1tGI0EwI4VLgGqRl8OiPKcx/ADzMCH14K3qe3oQYz+sevTMCAwEAAaOC AcUwggHBMB8GA1UdIwQYMBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQW BBRktqb5qByb4KTmKuXyaevPJXcmDDBkBgNVHREEXTBbgh9kYWxpLmxpZ2h0c3Ry ZWFtLmV1dy5mcmRzdHIuY29tghtsaWdodHN0cmVhbS1kYWxpLmZyZHN0ci5jb22C G2RhbGkubGlnaHRzdHJlYW0uZnJkc3RyLmNvbTATBgNVHSAEDDAKMAgGBmeBDAEC ATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3Qu Y29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6 Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDov L2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQC MAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBALR0Yk7h Pdpymo+l3EM5V6wfusWBdfgxEOmjHw7z3eNeIL8xm+N6eFyuANvwI4ebVb5pTWrv lkXaT2cmcKkZIvmMZMjfnW8osK3ODS24BhO9v3tHWga7/8q6IDZvfVid9LoYneYv VU2Iv6Dst1rEnIgpNPxR8x9gI+snegeSsFiUOr5G+ioxveqbnJofdfc1pbbpy16y 4Cjw5YIINfNx46be41keZaCFjqcqNBZvcP7fChQq1PGjEOr0DTwTuInzpEY8juI5 Ry7xy9+2Cyv/KMy2zAIbeYvgYj2eXdse9sy6sZzpVl6Elo+681p9geBjzWnqTepL T8Tq6ewbqvmZmag= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRQfj4qm6yO3nx6taBee toe5NXR9ISmYXyMSkUE5L6E7UqOQcTS85VuHAjCWE8ZmjnLcTxRw7dPN1LGUo46K Mj25n7PmOBgBh5iyoANwD/c0ih8b+nWRq+d0cBVt5s/Y3ZL+LXDghp7YTN7SqaVG 1OSsvhOetiL0GxI0E2mSwbAdllW24CT0r+PJ4Uyjvb77ckmud66QSqfVdZiohX7N O84TBnAnLdeEZFIZIWm8eLWpqBU6/tm1lOtRaaHJS5nzE49O9eyA5iWTKwmMKiR7 xRdJle5vdXE6RIan72jW0YjQTAjhUuAapGXw6I8pzH8APMwIfXgrep7ehBjP6x69 MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2520860803075269940108288137256886966 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dali.lightstream.euw.frdstr.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20839243480591779585577952595861072422651925796479853795608009696916745163233789916134934715228960562723095409860060208167746319169202325857274730587147888801059024454483455628844320516864182386404945660781973420823613466086195061509397885447698907860882617762181604301417579927557520193546284038331716390253755727299317981443446069276582344194224517886092119402380969992659290114228209084937091355918094508268109089932053492311582088460532165965176553001681489974870202132747394148606148010593226536596737403044699767147293551811586871218406946791612024246148068339146707994959597812139387997289165123604233391619379 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 64b6a6f9a81c9be0a4e62ae5f269ebcf2577260c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dali.lightstream.euw.frdstr.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lightstream-dali.frdstr.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dali.lightstream.frdstr.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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