us-west-2.jwk.signin.aws
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 09:1f:51:29:9e:9d:ea:29:4f:d9:9d:83:94:d9:38:af was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=us-west-2.jwk.signin.aws
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:1f:51:29:9e:9d:ea:29:4f:d9:9d:83:94:d9:38:afSerial Number (int): 12125659337300920084040209336807012527
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 1b:74:b8:35:fc:5a:56:e6:bf:5f:ab:dd:36:46:f7:b7:6f:bc:4e:f8
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): f0:71:e9:4b:1e:94:f1:34:de:46:67:fe:6e:ff:b5:22:0d:2a:68:b8
Fingerprint (sha256): 26:cd:76:9a:b9:2e:20:f7:78:37:7f:29:d0:d7:d8:99:17:dc:2b:16:ea:89:94:ea:f4:96:cf:62:8d:60:fc:c5
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate us-west-2.jwk.signin.aws
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for us-west-2.jwk.signin.aws
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
us-west-2.jwk.signin.aws
Other certificates including the domain name signin.aws
(limited to 100 certificates)
ap-east-1.signin.aws
ap-southeast-1.signin.aws
eu-central-1.signin.aws
eu-central-2.jwk.signin.aws
ap-southeast-4.prodish.jwk.signin.aws
ca-central-1.prodish.jwk.signin.aws
us-east-2.prodish.jwk.signin.aws
ap-east-1.alpha.dev.signin.aws
us-east-1.alpha.dev.signin.aws
eu-south-2.jwk.signin.aws
af-south-1.signin.aws
eu-north-1.jwk.signin.aws
eu-north-1.jwk.signin.aws
ap-northeast-2.prodish.signin.aws
ap-northeast-2.prodish.jwk.signin.aws
eu-north-1.jwk.signin.aws
ca-west-1.jwk.signin.aws
ap-south-2.jwk.signin.aws
eu-west-2.jwk.signin.aws
sa-east-1.jwk.signin.aws
eu-west-3.signin.aws
sa-east-1.signin.aws
credentials.beta.signin.aws
ap-northeast-2.signin.aws
eu-central-1.signin.aws
ap-south-2.prodish.jwk.signin.aws
us-west-2.alpha.dev.signin.aws
eu-west-3.signin.aws
ap-southeast-2.signin.aws
eu-west-1.prodish.jwk.signin.aws
eu-west-1.jwk.signin.aws
eu-south-2.prodish.signin.aws
ap-southeast-3.prodish.jwk.signin.aws
af-south-1.signin.aws
ca-central-1.signin.aws
us-east-2.prodish.signin.aws
us-west-1.prodish.jwk.signin.aws
eu-south-1.signin.aws
me-central-1.prodish.signin.aws
ap-southeast-3.prodish.signin.aws
ap-northeast-1.signin.aws
credentials.beta.signin.aws
ap-south-2.prodish.signin.aws
ca-central-1.prodish.signin.aws
us-east-1.signin.aws
eu-central-2.signin.aws
us-east-1.jwk.signin.aws
us-west-1.prodish.signin.aws
ap-southeast-1.jwk.signin.aws
eu-south-1.prodish.jwk.signin.aws
ap-south-2.prodish.signin.aws
eu-west-1.prodish.jwk.signin.aws
ca-central-1.prodish.jwk.signin.aws
ap-east-1.prodish.jwk.signin.aws
ap-southeast-2.jwk.signin.aws
ap-southeast-2.prodish.jwk.signin.aws
eu-central-2.signin.aws
ap-northeast-1.prodish.signin.aws
ap-northeast-1.jwk.signin.aws
ap-east-1.jwk.signin.aws
ca-central-1.signin.aws
ap-southeast-2.prodish.signin.aws
af-south-1.jwk.signin.aws
eu-south-1.prodish.jwk.signin.aws
eu-south-2.prodish.jwk.signin.aws
us-west-2.alpha.dev.signin.aws
eu-central-2.prodish.signin.aws
us-west-1.prodish.signin.aws
ap-northeast-1.prodish.jwk.signin.aws
eu-central-2.signin.aws
ap-south-2.jwk.signin.aws
us-east-1.alpha.dev.signin.aws
ca-central-1.signin.aws
us-west-2.jwk.signin.aws
us-west-2.signin.aws
eu-west-3.signin.aws
ap-southeast-2.prodish.jwk.signin.aws
ap-southeast-3.prodish.jwk.signin.aws
me-south-1.jwk.signin.aws
ap-southeast-3.signin.aws
eu-west-2.jwk.signin.aws
ap-southeast-1.jwk.signin.aws
us-east-1.prodish.jwk.signin.aws
eu-west-3.prodish.jwk.signin.aws
eu-west-1.signin.aws
me-south-1.prodish.jwk.signin.aws
us-west-1.signin.aws
ap-northeast-3.prodish.signin.aws
us-west-2.jwk.signin.aws
us-east-2.signin.aws
eu-north-1.prodish.signin.aws
us-east-2.jwk.signin.aws
ap-northeast-3.prodish.jwk.signin.aws
ap-south-1.signin.aws
us-east-2.prodish.signin.aws
ca-central-1.jwk.signin.aws
eu-west-3.prodish.signin.aws
us-east-1.signin.aws
me-central-1.prodish.signin.aws
eu-south-2.prodish.signin.aws
ap-southeast-1.signin.aws
eu-central-1.signin.aws
eu-central-2.jwk.signin.aws
ap-southeast-4.prodish.jwk.signin.aws
ca-central-1.prodish.jwk.signin.aws
us-east-2.prodish.jwk.signin.aws
ap-east-1.alpha.dev.signin.aws
us-east-1.alpha.dev.signin.aws
eu-south-2.jwk.signin.aws
af-south-1.signin.aws
eu-north-1.jwk.signin.aws
eu-north-1.jwk.signin.aws
ap-northeast-2.prodish.signin.aws
ap-northeast-2.prodish.jwk.signin.aws
eu-north-1.jwk.signin.aws
ca-west-1.jwk.signin.aws
ap-south-2.jwk.signin.aws
eu-west-2.jwk.signin.aws
sa-east-1.jwk.signin.aws
eu-west-3.signin.aws
sa-east-1.signin.aws
credentials.beta.signin.aws
ap-northeast-2.signin.aws
eu-central-1.signin.aws
ap-south-2.prodish.jwk.signin.aws
us-west-2.alpha.dev.signin.aws
eu-west-3.signin.aws
ap-southeast-2.signin.aws
eu-west-1.prodish.jwk.signin.aws
eu-west-1.jwk.signin.aws
eu-south-2.prodish.signin.aws
ap-southeast-3.prodish.jwk.signin.aws
af-south-1.signin.aws
ca-central-1.signin.aws
us-east-2.prodish.signin.aws
us-west-1.prodish.jwk.signin.aws
eu-south-1.signin.aws
me-central-1.prodish.signin.aws
ap-southeast-3.prodish.signin.aws
ap-northeast-1.signin.aws
credentials.beta.signin.aws
ap-south-2.prodish.signin.aws
ca-central-1.prodish.signin.aws
us-east-1.signin.aws
eu-central-2.signin.aws
us-east-1.jwk.signin.aws
us-west-1.prodish.signin.aws
ap-southeast-1.jwk.signin.aws
eu-south-1.prodish.jwk.signin.aws
ap-south-2.prodish.signin.aws
eu-west-1.prodish.jwk.signin.aws
ca-central-1.prodish.jwk.signin.aws
ap-east-1.prodish.jwk.signin.aws
ap-southeast-2.jwk.signin.aws
ap-southeast-2.prodish.jwk.signin.aws
eu-central-2.signin.aws
ap-northeast-1.prodish.signin.aws
ap-northeast-1.jwk.signin.aws
ap-east-1.jwk.signin.aws
ca-central-1.signin.aws
ap-southeast-2.prodish.signin.aws
af-south-1.jwk.signin.aws
eu-south-1.prodish.jwk.signin.aws
eu-south-2.prodish.jwk.signin.aws
us-west-2.alpha.dev.signin.aws
eu-central-2.prodish.signin.aws
us-west-1.prodish.signin.aws
ap-northeast-1.prodish.jwk.signin.aws
eu-central-2.signin.aws
ap-south-2.jwk.signin.aws
us-east-1.alpha.dev.signin.aws
ca-central-1.signin.aws
us-west-2.jwk.signin.aws
us-west-2.signin.aws
eu-west-3.signin.aws
ap-southeast-2.prodish.jwk.signin.aws
ap-southeast-3.prodish.jwk.signin.aws
me-south-1.jwk.signin.aws
ap-southeast-3.signin.aws
eu-west-2.jwk.signin.aws
ap-southeast-1.jwk.signin.aws
us-east-1.prodish.jwk.signin.aws
eu-west-3.prodish.jwk.signin.aws
eu-west-1.signin.aws
me-south-1.prodish.jwk.signin.aws
us-west-1.signin.aws
ap-northeast-3.prodish.signin.aws
us-west-2.jwk.signin.aws
us-east-2.signin.aws
eu-north-1.prodish.signin.aws
us-east-2.jwk.signin.aws
ap-northeast-3.prodish.jwk.signin.aws
ap-south-1.signin.aws
us-east-2.prodish.signin.aws
ca-central-1.jwk.signin.aws
eu-west-3.prodish.signin.aws
us-east-1.signin.aws
me-central-1.prodish.signin.aws
eu-south-2.prodish.signin.aws
Certificate
The complete raw certificate details for us-west-2.jwk.signin.aws in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3DCCBMSgAwIBAgIQCR9RKZ6d6ilP2Z2DlNk4rzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDIwOTAwMDAwMFoXDTIzMTIyMDIzNTk1OVowIzEh MB8GA1UEAxMYdXMtd2VzdC0yLmp3ay5zaWduaW4uYXdzMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAjU5w6Td7BAkGxIEKXeJoZOVwVM9KLJ4GbcJbkLgE up4t0V/KDX2h9IPR0p4UE5gKevYypaH3ViMaY7Za4k1HrzBluUTIueS1cb0p6GT7 Tlv56ViZY3h7mMnRSdUkR1qcQZni7bdHTDehnA69qxCMSi4tOW1kGEH+YbZb4URr b6xlevoSBZl6PJXWNAFKzOH+bo5fPthszc940Vo3N2kwAAzIEGUvDdZ32lyIkV/e 0AhvD5IM6t4i5PM6h4nodTok2wbe+jjmkyS6EPd6jaSyjnyVysab6pVkJGqxNmhs IjW2lHELGPOrqpAHWH3B4d34Pnhfh2Ode7TUNIpkZ8jhgQIDAQABo4IC8TCCAu0w HwYDVR0jBBgwFoAUgbgOY4qJEhjl+js7UJWf5uWQE4UwHQYDVR0OBBYEFBt0uDX8 Wlbmv1+r3TZG97dvvE74MCMGA1UdEQQcMBqCGHVzLXdlc3QtMi5qd2suc2lnbmlu LmF3czAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDEuYW1hem9udHJ1 c3QuY29tL3IybTAxLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcB AQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAxLmFtYXpvbnRydXN0 LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMS5hbWF6b250cnVzdC5j b20vcjJtMDEuY2VyMAwGA1UdEwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSC AWoBaAB3AK33vvp8/xDIi509nB4+GGq0Zyldz7EMJMqFhjTr3IKKAAABhjZFwogA AAQDAEgwRgIhAPS6sVY/gUBCnK/3WnpJwuIKQDRMHvhpwrwV0xOQQu4RAiEAkf6m KBqCwg8BIYT03yCJFdwOHL2rV9DgP3hWvxXbtAgAdgCzc3cH4YRQ+GOG1gWp3BEJ SnktsWcMC4fc8AMOeTalmgAAAYY2RcKeAAAEAwBHMEUCIQDuUF0nW5kk1E6Up4qu NYsQuJH39xvIZ58Z5QrY3LTbhQIgOIbMXSPR5pvzszTiKjHj9oyB+puUxWCj9x9i Fsy8n1AAdQC3Pvsk35xNunXyOcW6WPRsXfxCz3qfNcSeHQmBJe20mQAAAYY2RcJy AAAEAwBGMEQCICXkh+AuJTAFWG8ev7mYwG8tpOCsJ/mfwb9NZrsnmB+KAiB9fpbI /HlBLs7fxrZ7QiGRrxFf2a4b+PQ3PexeraI1SzANBgkqhkiG9w0BAQsFAAOCAQEA lzJF1LopdqDndzN5s9D0UApUGTvvYUB2MHqou4Fywhd5US+aYze1qPTUmajbEOaA bxlI9sKdtuJPiB1psfdSy10W72OKeWnweLy+rHnmTCg57yfu5O/Oel31hLYpyR6U zuXPMWwYdJcra1ZseeiMpV3tDO+zij/kmApWD5Cdv0TwbY0/2xvPDcmh5/9y+zyR XYKAi20VAB/inXeoi+T/SIyO3gmmotdkOi4unXeAmNfmHI0Qoa+DLCmdM4wqe2Dj 9Pwcy02NuLWrz2CXd1CpIiyQxi6GR5kJFCOFnXlZW4AdiF7CNdyO9mZuqRomY/9u t1O+Tqo+3ECcSVChB/7j7Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjU5w6Td7BAkGxIEKXeJo ZOVwVM9KLJ4GbcJbkLgEup4t0V/KDX2h9IPR0p4UE5gKevYypaH3ViMaY7Za4k1H rzBluUTIueS1cb0p6GT7Tlv56ViZY3h7mMnRSdUkR1qcQZni7bdHTDehnA69qxCM Si4tOW1kGEH+YbZb4URrb6xlevoSBZl6PJXWNAFKzOH+bo5fPthszc940Vo3N2kw AAzIEGUvDdZ32lyIkV/e0AhvD5IM6t4i5PM6h4nodTok2wbe+jjmkyS6EPd6jaSy jnyVysab6pVkJGqxNmhsIjW2lHELGPOrqpAHWH3B4d34Pnhfh2Ode7TUNIpkZ8jh gQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12125659337300920084040209336807012527 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'us-west-2.jwk.signin.aws' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17838281727862729661675375787474174277299181329194528703427824842266727015691602659744694856524342447342312936812806500307942785946779811184141733230995543871155282043518364981733316660789646162490712883564184434414661891143473023141934980191857956347248513063042883588325990091684569252277510381852736848275640423157672318362548344361265840706722279897473318576288670631269859068196511336629409189361683577122357683491308302096666351763884346892880654525526431139877242493645257331551664069095332611849295110136511508095987488367517673853165476403229300775534849506519111261881682282379285702479797791536746638926209 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1b74b835fc5a56e6bf5fabdd3646f7b76fbc4ef8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'us-west-2.jwk.signin.aws' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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