www.kpn.net
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0e:60:a5:3a:f0:5a:74:b3:6c:3d:17:90:67:ae:6b:65 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.kpn.net
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0e:60:a5:3a:f0:5a:74:b3:6c:3d:17:90:67:ae:6b:65Serial Number (int): 19111003706611950811110509444724583269
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 81:6f:35:6e:2c:c5:43:17:df:65:58:91:31:46:b0:c2:da:25:1f:d6
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 4f:e7:ad:68:4f:69:3f:bb:42:c9:e3:0b:e9:92:fe:e8:5b:50:8e:96
Fingerprint (sha256): 25:1f:02:bd:66:38:a7:99:ab:bf:65:6d:77:ab:3f:70:a5:33:13:aa:4f:80:a6:fb:02:6b:5b:3b:62:2c:87:08
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate www.kpn.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.kpn.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.kpn.net
kpn.net
kpn.net
Other certificates including the domain name kpn.net
(limited to 100 certificates)
rt2-vlg-1.pmr.kpn.net
zandvoort3.ZIPB.kpn.net
texel1.zipb.kpn.net
texel1.zipb.kpn.net
wopatest.kpn.net
www.kpn.net
test.diensten.monitoring.kpn.net
www.kpn.net
vlissingen1.ZIPB.kpn.net
zandvoort3.zipb.kpn.net
prmnp1.pmr.kpn.net
diensten.monitoring.kpn.net
zierikzee1.zipb.kpn.net
pem.kpn.net
zandvoort3.kpn.net
tenrvlissingen1.kpn.net
86-88-48-103.fixed.kpn.net
webmail.kpn.net
77-163-140-51.fixed.kpn.net
vpnaccess.oam.kpn.net
www.kpn.net
wdaht.pmr.kpn.net
pmht.pmr.kpn.net
prmnp2.pmr.kpn.net
gemnr2.pmr.kpn.net
wopa.kpn.net
tenrzandvoort3.kpn.net
webmail.kpn.net
diensten.monitoring.kpn.net
zandvoort1.kpn.net
dot.kpn.com
asd2-vlg-1.pmr.kpn.net
vlissingen1.kpn.net
citrixportal.ttrc.oam.kpn.net
gouda0-rt.cust.kpn.net
test.diensten.monitoring.kpn.net
zandvoort3.kpn.net
www.kpn.net
zandvoort3.kpn.net
gemnp1.pmr.kpn.net
test.diensten.monitoring.kpn.net
vlissingen1.ZIPB.kpn.net
www.kpn.net
wopa.kpn.net
wopatest.kpn.net
texel1.zipb.kpn.net
wopatest.kpn.net
tenrzandvoort3.zipb.kpn.net
77-169-194-218.fixed.kpn.net
gemnp2.pmr.kpn.net
89-163-151-197.mobile.kpn.net
77-163-140-51.fixed.kpn.net
gemnr1.pmr.kpn.net
213-10-121-183.fixed.kpn.net
prmnr1.pmr.kpn.net
www.kpn.net
www.kpn.net
www.kpn.net
86-84-188-139.fixed.kpn.net
aht.pmr.kpn.net
rt2-vlg-1.pmr.kpn.net
vlissingen1.zipb.kpn.net
zierikzee1.zipb.kpn.net
texel1.zipb.kpn.net
wopa.kpn.net
wopatest.kpn.net
zandvoort3.zipb.kpn.net
prmnr2.pmr.kpn.net
tenrzandvoort1.zipb.kpn.net
gst.pmr.kpn.net
gouda0-asd.cust.kpn.net
diensten.monitoring.kpn.net
clht.pmr.kpn.net
www.kpn.net
plht.pmr.kpn.net
*.pmr.kpn.net
www.kpn.net
pst.pmr.kpn.net
vpnaccess.oam.kpn.net
wopa.kpn.net
citrixportal.oam.kpn.net
www.kpn.net
test.diensten.monitoring.kpn.net
www.kpn.net
groningen1-rt.cust.kpn.net
vlissingen1.kpn.net
vpnaccess.oam.kpn.net
diensten.monitoring.kpn.net
tenrtexel1.zipb.kpn.net
texel1.zipb.kpn.net
test.diensten.monitoring.kpn.net
tenrzandvoort1.kpn.net
vlissingen1.kpn.net
avds.monitoring.kpn.net
zierikzee1.zipb.kpn.net
groningen1-asd.cust.kpn.net
cri.pmr.kpn.net
sntpf.pmr.kpn.net
wopa.kpn.net
texel1.zipb.kpn.net
zandvoort3.ZIPB.kpn.net
texel1.zipb.kpn.net
texel1.zipb.kpn.net
wopatest.kpn.net
www.kpn.net
test.diensten.monitoring.kpn.net
www.kpn.net
vlissingen1.ZIPB.kpn.net
zandvoort3.zipb.kpn.net
prmnp1.pmr.kpn.net
diensten.monitoring.kpn.net
zierikzee1.zipb.kpn.net
pem.kpn.net
zandvoort3.kpn.net
tenrvlissingen1.kpn.net
86-88-48-103.fixed.kpn.net
webmail.kpn.net
77-163-140-51.fixed.kpn.net
vpnaccess.oam.kpn.net
www.kpn.net
wdaht.pmr.kpn.net
pmht.pmr.kpn.net
prmnp2.pmr.kpn.net
gemnr2.pmr.kpn.net
wopa.kpn.net
tenrzandvoort3.kpn.net
webmail.kpn.net
diensten.monitoring.kpn.net
zandvoort1.kpn.net
dot.kpn.com
asd2-vlg-1.pmr.kpn.net
vlissingen1.kpn.net
citrixportal.ttrc.oam.kpn.net
gouda0-rt.cust.kpn.net
test.diensten.monitoring.kpn.net
zandvoort3.kpn.net
www.kpn.net
zandvoort3.kpn.net
gemnp1.pmr.kpn.net
test.diensten.monitoring.kpn.net
vlissingen1.ZIPB.kpn.net
www.kpn.net
wopa.kpn.net
wopatest.kpn.net
texel1.zipb.kpn.net
wopatest.kpn.net
tenrzandvoort3.zipb.kpn.net
77-169-194-218.fixed.kpn.net
gemnp2.pmr.kpn.net
89-163-151-197.mobile.kpn.net
77-163-140-51.fixed.kpn.net
gemnr1.pmr.kpn.net
213-10-121-183.fixed.kpn.net
prmnr1.pmr.kpn.net
www.kpn.net
www.kpn.net
www.kpn.net
86-84-188-139.fixed.kpn.net
aht.pmr.kpn.net
rt2-vlg-1.pmr.kpn.net
vlissingen1.zipb.kpn.net
zierikzee1.zipb.kpn.net
texel1.zipb.kpn.net
wopa.kpn.net
wopatest.kpn.net
zandvoort3.zipb.kpn.net
prmnr2.pmr.kpn.net
tenrzandvoort1.zipb.kpn.net
gst.pmr.kpn.net
gouda0-asd.cust.kpn.net
diensten.monitoring.kpn.net
clht.pmr.kpn.net
www.kpn.net
plht.pmr.kpn.net
*.pmr.kpn.net
www.kpn.net
pst.pmr.kpn.net
vpnaccess.oam.kpn.net
wopa.kpn.net
citrixportal.oam.kpn.net
www.kpn.net
test.diensten.monitoring.kpn.net
www.kpn.net
groningen1-rt.cust.kpn.net
vlissingen1.kpn.net
vpnaccess.oam.kpn.net
diensten.monitoring.kpn.net
tenrtexel1.zipb.kpn.net
texel1.zipb.kpn.net
test.diensten.monitoring.kpn.net
tenrzandvoort1.kpn.net
vlissingen1.kpn.net
avds.monitoring.kpn.net
zierikzee1.zipb.kpn.net
groningen1-asd.cust.kpn.net
cri.pmr.kpn.net
sntpf.pmr.kpn.net
wopa.kpn.net
texel1.zipb.kpn.net
Certificate
The complete raw certificate details for www.kpn.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIQDmClOvBadLNsPReQZ65rZTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTEyOTAwMDAwMFoXDTI0MTIyNzIzNTk1OVowFjEU MBIGA1UEAxMLd3d3Lmtwbi5uZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCLh9nvW4QZDz0CMzobZZP+wPc7WbQwpD/ZIvUJNQVTNGxec2a4Fyh/Idv1 nqvcutD8cPwDV5cW6KIMQxpCpSptMFrEBqDZ32lXInoBDPn2kv7J1jv1SRfUChQv g8etrccu3NwWbA8DIGxx1XL7UU32oBMLCNP0FnBAIWFYYbKqENvdUXdnsKRvxA61 ix/Yy5aLf2x6PwaPiux4Jc9wHQk0n9jSK0GDOJG0snbt+buCWV3wbp2zj/7TZ9Uw 62wrEoWUBChQg9MpiNhw+pQIy4LO4fYeopx60t3XgUluQeP+j554T9kmnhjVoP5A ZHYYa+Tq/0M4IoDz0bpPjTMJtMBFAgMBAAGjggLtMIIC6TAfBgNVHSMEGDAWgBTA MVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUgW81bizFQxffZViRMUawwtol H9YwHwYDVR0RBBgwFoILd3d3Lmtwbi5uZXSCB2twbi5uZXQwEwYDVR0gBAwwCjAI BgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFtYXpv bnRydXN0LmNvbS9yMm0wMi5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzAB hiFodHRwOi8vb2NzcC5yMm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKG Kmh0dHA6Ly9jcnQucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNV HRMBAf8EAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgDuzdBk1dsazsVc t520zROiModGfLzs3sNRSFlGcR+1mwAAAYwavctnAAAEAwBHMEUCIQDZ+sGLcye/ gr0c1R1UtO2Id7hv0GwY83PoEetQ+GpufAIgUjEekdqVX0vgNMztc/hp+HR7ouOv YUUehZrm+1ZsmSUAdQBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAA AYwavcsuAAAEAwBGMEQCIC2n5dyMrZDvSWU9mIwGKe8U1TT8qZvTZg3F0fuOmXiI AiA6uvpi4QmeGbrOUnGDZzIf74WbksTrEogUN9BvdJiLnAB3ANq2v2s/tbYin5vC u1xr6HCRcWy7UYSFNL2kPTBI1/urAAABjBq9yyAAAAQDAEgwRgIhAOP/BSOhYkiP nXtPAX3en7GEN1klLKylnZMH1YlyV3/SAiEA5nZaFXm7Q268nR6KN2zkA+MNVoU2 BdEzYRL9A2p0OFAwDQYJKoZIhvcNAQELBQADggEBALHpNSoHn+yti824anzodnIm UfNwB3KqNw7aGSBju7SRFK86t4umMgQzWA752W/n3KXB1WBzqkvt0vFo776anDZz fmjHqwkGZRPq+lZW/bRj8vaJ/470jbxcetK68W/B07vtgkkYfCjdSnEDIS1/h92x tO8HOsom/Z1nEFrMypNbYhSEslYvC5byXLbhii60RnkdEGSmIyU33AAhXwH7+Hfs YNxf2RCwd63ojvv3uaAkkYugln2ZzACSeqdVvDVbP1FlsFRNUNMMGbkF3C9TSC9P l5iQ/Q+gFrmvDFTMIA6/Oi6GHanRRPWHnojitsulqtK5SsSSSI/OAXNT7rksT0U= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi4fZ71uEGQ89AjM6G2WT /sD3O1m0MKQ/2SL1CTUFUzRsXnNmuBcofyHb9Z6r3LrQ/HD8A1eXFuiiDEMaQqUq bTBaxAag2d9pVyJ6AQz59pL+ydY79UkX1AoUL4PHra3HLtzcFmwPAyBscdVy+1FN 9qATCwjT9BZwQCFhWGGyqhDb3VF3Z7Ckb8QOtYsf2MuWi39sej8Gj4rseCXPcB0J NJ/Y0itBgziRtLJ27fm7glld8G6ds4/+02fVMOtsKxKFlAQoUIPTKYjYcPqUCMuC zuH2HqKcetLd14FJbkHj/o+eeE/ZJp4Y1aD+QGR2GGvk6v9DOCKA89G6T40zCbTA RQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19111003706611950811110509444724583269 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.kpn.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17614115167311251236729488541234132009619522409390834749232853992131243583144267035636339845914805197497700923024809121794603611461806617140303981111680995666440299781415885389228575521304240769781486919067189299253407370625607367445001684924083957217269339775453445870379445966563723289324099726439403409702834859675191926412707151761451182665978318167040147441686934521394351884077477354287387464166451019651195310633233986403975820728049408192836300168702038786669210333666703914377483021414144488318260361250536447196220039387015018446427941506495110945416670880446149405423233764604057097581135216754642168102981 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 816f356e2cc54317df6558913146b0c2da251fd6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kpn.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kpn.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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