oto.com
Issued by Amazon
About this certificate
This digital certificate with serial number 09:ed:dc:86:b4:0e:1c:41:42:dc:33:ec:ab:18:10:07 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=oto.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:ed:dc:86:b4:0e:1c:41:42:dc:33:ec:ab:18:10:07Serial Number (int): 13198099119947937442444882215769214983
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f5:84:0b:ac:55:a6:b9:d0:7f:28:3a:42:bd:56:f4:8a:b8:51:c0:09
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 02:5e:a0:10:5e:dd:65:7e:f6:63:ce:d9:81:74:75:e6:53:ed:20:92
Fingerprint (sha256): 24:03:b0:83:17:6e:4f:b0:86:b5:51:3b:82:10:df:c5:02:b0:2c:0b:71:df:cb:93:5b:8e:f6:2e:08:b9:4b:2a
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate oto.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for oto.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
oto.com
*.oto.com
*.oto.com
Other certificates including the domain name oto.com
(limited to 100 certificates)
www.cardekho.com
testingmedia.cardekho.com
testingmedia.cardekho.com
www.oto.com
staging.oto.com
dwapi.oto.com
paymentboxbeta.oto.com
refinance.oto.com
www.cardekho.com
crm-beta.oto.com
testingmedia.cardekho.com
lmscars-qa.oto.com
www.cardekho.com
testingmedia.cardekho.com
testadmin.oto.com
paymentboxnewk.oto.com
otonet.oto.com
testingmedia.cardekho.com
newcarsadmin.carbay.com
www.cardekho.com
otonet.oto.com
staging.oto.com
www.cardekho.com
www.cardekho.com
www.oto.com
www.cardekho.com
newmyapi.oto.com
www.cardekho.com
lms.oto.com
lms.oto.com
lmscars-qa.oto.com
testingmedia.cardekho.com
testingmedia.cardekho.com
newmyapi.oto.com
uccrm.oto.com
www.cardekho.com
stage-externalapi.oto.com
sfa-node-stage.oto.com
imamhondabdg.com
www.cardekho.com
promotoyotamobilsurabaya.com
promotoyotamobilsurabaya.com
www.cardekho.com
hrmbeta.oto.com
newcarsadmin.carbay.com
dev.oto.com
gaadicdn.com
gaadicdn.com
oto.com
testingmedia.cardekho.com
lmscars-qa.oto.com
www.cardekho.com
lms.oto.com
testingmedia.cardekho.com
sfacdn.oto.com
newcarsadmin.carbay.com
www.oto.com
stageapi.carmudi.com.ph
lms.oto.com
www.cardekho.com
staging.oto.com
preprod-paymentbox.oto.com
newcarsadmin.carbay.com
lmscars-qa.oto.com
testingmedia.cardekho.com
hrm.oto.com
www.cardekho.com
*.oto.com
stageapi.carmudi.com.ph
sfacdn.oto.com
qcapi.oto.com
crm-beta.oto.com
newmyapi.oto.com
www.cardekho.com
stageapi.carmudi.com.ph
inspection-beta.oto.com
newmyapi.oto.com
staging.oto.com
testingmedia.cardekho.com
sfacdn.oto.com
oto.com
www.cardekho.com
sfa.oto.com
preprod-paymentbox.oto.com
www.cardekho.com
www.oto.com
staging.oto.com
www.oto.com
testingmedia.cardekho.com
short.oto.com
images.oto.com
sfacdn.oto.com
staging.oto.com
lms.oto.com
www.cardekho.com
www.oto.com
sfacdn.oto.com
newcarsadmin.carbay.com
stageapi.carmudi.com.ph
staging.oto.com
testingmedia.cardekho.com
testingmedia.cardekho.com
www.oto.com
staging.oto.com
dwapi.oto.com
paymentboxbeta.oto.com
refinance.oto.com
www.cardekho.com
crm-beta.oto.com
testingmedia.cardekho.com
lmscars-qa.oto.com
www.cardekho.com
testingmedia.cardekho.com
testadmin.oto.com
paymentboxnewk.oto.com
otonet.oto.com
testingmedia.cardekho.com
newcarsadmin.carbay.com
www.cardekho.com
otonet.oto.com
staging.oto.com
www.cardekho.com
www.cardekho.com
www.oto.com
www.cardekho.com
newmyapi.oto.com
www.cardekho.com
lms.oto.com
lms.oto.com
lmscars-qa.oto.com
testingmedia.cardekho.com
testingmedia.cardekho.com
newmyapi.oto.com
uccrm.oto.com
www.cardekho.com
stage-externalapi.oto.com
sfa-node-stage.oto.com
imamhondabdg.com
www.cardekho.com
promotoyotamobilsurabaya.com
promotoyotamobilsurabaya.com
www.cardekho.com
hrmbeta.oto.com
newcarsadmin.carbay.com
dev.oto.com
gaadicdn.com
gaadicdn.com
oto.com
testingmedia.cardekho.com
lmscars-qa.oto.com
www.cardekho.com
lms.oto.com
testingmedia.cardekho.com
sfacdn.oto.com
newcarsadmin.carbay.com
www.oto.com
stageapi.carmudi.com.ph
lms.oto.com
www.cardekho.com
staging.oto.com
preprod-paymentbox.oto.com
newcarsadmin.carbay.com
lmscars-qa.oto.com
testingmedia.cardekho.com
hrm.oto.com
www.cardekho.com
*.oto.com
stageapi.carmudi.com.ph
sfacdn.oto.com
qcapi.oto.com
crm-beta.oto.com
newmyapi.oto.com
www.cardekho.com
stageapi.carmudi.com.ph
inspection-beta.oto.com
newmyapi.oto.com
staging.oto.com
testingmedia.cardekho.com
sfacdn.oto.com
oto.com
www.cardekho.com
sfa.oto.com
preprod-paymentbox.oto.com
www.cardekho.com
www.oto.com
staging.oto.com
www.oto.com
testingmedia.cardekho.com
short.oto.com
images.oto.com
sfacdn.oto.com
staging.oto.com
lms.oto.com
www.cardekho.com
www.oto.com
sfacdn.oto.com
newcarsadmin.carbay.com
stageapi.carmudi.com.ph
staging.oto.com
Certificate
The complete raw certificate details for oto.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgIQCe3chrQOHEFC3DPsqxgQBzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTEwMjQwMDAwMDBaFw0yMDExMjQx MjAwMDBaMBIxEDAOBgNVBAMTB290by5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBEBNrqm+YUL2O9ict9ZXuJt8zoXuvNosnJEJqyPfY997wPOWJ aLWTzgARdlzvoQ8U0uTsgN29JiEl7sEb99/2lxrwK6lDaXL+UZeGIX6RknKYMdS3 PM2Sp60zkW/qPsh1VE5A4H3USukCz0zgd7qapA/SpUca/FTHxkd/+aE+YkgBlUUc f9GbgA+X92bb6uiPGroLzry96vYiDXpKMqS8xtY00eSfmeCmTdsJXCeHuW/NAPI8 I8rd4tpc0a+9cKSGTncFkgpkspASsUFVD+gdJxpiIIQ7IJ1CtHlWPnuHShLLe8/L NJsQtt3XZ2CLfpeMOdxuPLGqqPcv31XecX/5AgMBAAGjggJ+MIICejAfBgNVHSME GDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQU9YQLrFWmudB/KDpC vVb0irhRwAkwHQYDVR0RBBYwFIIHb3RvLmNvbYIJKi5vdG8uY29tMA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQw MjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIu Y3JsMCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEFBQcB AQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0 LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5j b20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdgCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAAAW37IFb/AAAE AwBHMEUCIQCP4BtbWLoKDwDU5SK1mzywt0jltGj2YnIVEex9irg9GQIgF0dPXe6+ BPAdhy+NFQCMc5Jn5uRQVQPs3DwcXEliowwAdgCHdb/nWXz4jEOZX73zbv9WjUdW Nv9KtWDBtOr/XqCDDwAAAW37IFd7AAAEAwBHMEUCIQDd2jmkt8AL05iBn5phNwdP DV78DriiNJReVTYe6mn8pgIgPS5hEwgdB0mJ4yUzh7OgG6nFyd3+guTfbHIS6+8j qz8wDQYJKoZIhvcNAQELBQADggEBAIIwUsNdEhIIwOSybitp+Lc5TnE7TdH+9Oep bP6OThft8Uj9QSshl+6XB/ni5SshR09kwOIByPX3eZ3kslCUcpqzl2vZTBS/8bry 7HUkpx8yXxH1Ryq3e3WOCpaoBVqk4kcr8DSvYvYaVx0b5SZqYkkFl315kT7cLD41 hWrq0w8YaTr9eARaZ0Tu9E4ekDTi+ITf6iL2f2IDpkJR0ne19E9Gt2me3+Pn0ldR JJjVvY4Q7dAZM/dZhdKRc8SRwJjgW8IdhDhaJBstXhiEmAbb3nHAXyN0mZDMEYLD 5d+xjloJPlqpEaaRZdEM9KntRt/zSvUPP+fslUBD95IzmAZk9gE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRATa6pvmFC9jvYnLfWV 7ibfM6F7rzaLJyRCasj32Pfe8DzliWi1k84AEXZc76EPFNLk7IDdvSYhJe7BG/ff 9pca8CupQ2ly/lGXhiF+kZJymDHUtzzNkqetM5Fv6j7IdVROQOB91ErpAs9M4He6 mqQP0qVHGvxUx8ZHf/mhPmJIAZVFHH/Rm4APl/dm2+rojxq6C868ver2Ig16SjKk vMbWNNHkn5ngpk3bCVwnh7lvzQDyPCPK3eLaXNGvvXCkhk53BZIKZLKQErFBVQ/o HScaYiCEOyCdQrR5Vj57h0oSy3vPyzSbELbd12dgi36XjDncbjyxqqj3L99V3nF/ +QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13198099119947937442444882215769214983 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-24 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'oto.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24371920161258502444798349472510683865490900242492587789713605826538293142022656101912159781534787718740156790182045637949914830412621010789763832563145328051036157204190013941035380559519285322121048210971123081381849818740609212082077898226198500828695164158789341301465757671154120503997199495721995299087300226764163576116142597103925724242401158951190570558656017518955895125823288029045880326515774872521530643262023594716154640353781663745889619199610353503229528605808225883471316537538910088320134665410178437882839872223737543503807663155654494940803701703974345126535023865820963813524205602098756935843833 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f5840bac55a6b9d07f283a42bd56f48ab851c009 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.oto.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016dfb2056ff00000403004730450221008fe01b5b58ba0a0f00d4e522b59b3cb0b748e5b468f662721511ec7d8ab83d19022017474f5deebe04f01d872f8d15008c739267e6e4505503ecdc3c1c5c4962a30c0076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016dfb20577b0000040300473045022100ddda39a4b7c00bd398819f9a6137074f0d5efc0eb8a234945e55361eea69fca602203d2e6113081d074989e3253387b3a01ba9c5c9ddfe82e4df6c7212ebef23ab3f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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