*.twilio.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0f:48:6b:fb:a6:34:f1:32:04:49:10:d8:24:b2:f6:bd was issued on by Amazon.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.twilio.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0f:48:6b:fb:a6:34:f1:32:04:49:10:d8:24:b2:f6:bdSerial Number (int): 20314455466123142277827013940666889917
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c7:02:bd:b3:ed:12:64:e6:ba:31:7a:42:55:c6:69:3b:3b:55:99:ef
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 57:76:58:5c:51:11:77:fb:a0:56:d1:0b:a1:e3:3c:d2:6a:6c:ba:91
Fingerprint (sha256): 27:9b:a9:62:ec:1e:12:67:32:5a:f1:74:1a:74:c6:36:60:c1:47:24:64:37:cc:ff:31:f9:97:b2:65:64:8c:b0
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate *.twilio.com
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.twilio.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.twilio.com
*.internal.us1.twilio.com
*.twilio.org
*.au1.twilio.com
*.internal.ie1.twilio.com
*.internal.au1.twilio.com
*.internal.twilio.com
*.ie1.twilio.com
twilio.com
*.us1.twilio.com
*.internal.us1.twilio.com
*.twilio.org
*.au1.twilio.com
*.internal.ie1.twilio.com
*.internal.au1.twilio.com
*.internal.twilio.com
*.ie1.twilio.com
twilio.com
*.us1.twilio.com
Other certificates including the domain name twilio.com
(limited to 100 certificates)
*.stage-in1.twilio.com
statuspage.io
*.dev-us2.twilio.com
statuspage.io
payments.callback.prod.twilio.com
statuspage.io
rainbow.stage.twilio.com
www.temporal-apig.dev.twilio.com
statuspage.io
eventgw.twilio.com
incapsula.com
gateway1-mv1.corp.twilio.com
flex-v2.stage.twilio.com
security.twilio.com
realtime-wormhole.us1.twilio.com
support.twilio.com
thiscertisfortestingonly.twilio.com
chickentreat.craveable.support
cds.twilio.com
boxconfig.outside.twilio.com
*.br1.twilio.com
*.vss.stage.twilio.com
statuspage.io
dashboard.waas.corp.twilio.com
ct-spam-labs.us1.twilio.com
*.twilio.com
understand.stage-us1.eak.twilio.com
8f876c29f4e5ddcd1ba13f3b40e889bbc3822cd2.console.dev.twilio.com
chickentreat.craveable.support
*.stage-us1.twilio.com
chickentreat.craveable.support
*.turn.dev.twilio.com
*.stage.twilio.com
incapsula.com
internal.status.twilio.com
wireless.us1.eak.twilio.com
mqtt-sync.stage-us1.twilio.com
*.ie1.twilio.com
incapsula.com
rtd-notify-log.dev-us1.eak.twilio.com
wiki.hq.twilio.com
platform-slackapp.corp.twilio.com
*.de1.twilio.com
statuspage.io
build.twilio.com
incapsula.com
headsup.twilio.com
webhooks.twilio.com
chickentreat.craveable.support
tsock.twilio.com
pf-voice.dev-us1.eak.twilio.com
*.vss.twilio.com
*.dev.twilio.com
postflight-sms.us1.eak.twilio.com
*.stage-us2.twilio.com
statuspage.io
statuspage.io
*.turn.dev.twilio.com
*.dev-us2.twilio.com
statuspage.io
statuspage.io
doers.twilio.com
akamaisecure4.qualtrics.com
video.us1.eak.twilio.com
support.twilio.com
aproposalfrom.freeman.com
assets.cdn.prod.twilio.com
statuspage.io
*.code.hq.twilio.com
*.help.dev.twilio.com
chunderm.gll.dev.twilio.com
go.twilio.com
*.br1.twilio.com
5271ba7d4eb049ae104fa6533b878d7de1b133d9.console.dev.twilio.com
*.stage.twilio.com
signal.twilio.com
console.ie1.twilio.com
statuspage.io
networktest.twilio.com
partnerportal.kornferry.com
incapsula.com
sales.twilio.com
jp.twilio.com
aproposalfrom.freeman.com
statuspage.io
*.stage-au1.twilio.com
ecs.stage-us1.twilio.com
statuspage.io
*.vss.twilio.com
chunderw-vpc-gll-stage-us2-ix.stage.twilio.com
statuspage.io
statuspage.io
mqtt-sync.us1.twilio.com
*.stage-us2.twilio.com
*.stage-us1.twilio.com
support.twilio.com
console.ireland.stage-ie1.twilio.com
rtd-kibana-6.us1.eak.twilio.com
landria.corp.twilio.com
akamaisecure4.qualtrics.com
statuspage.io
*.dev-us2.twilio.com
statuspage.io
payments.callback.prod.twilio.com
statuspage.io
rainbow.stage.twilio.com
www.temporal-apig.dev.twilio.com
statuspage.io
eventgw.twilio.com
incapsula.com
gateway1-mv1.corp.twilio.com
flex-v2.stage.twilio.com
security.twilio.com
realtime-wormhole.us1.twilio.com
support.twilio.com
thiscertisfortestingonly.twilio.com
chickentreat.craveable.support
cds.twilio.com
boxconfig.outside.twilio.com
*.br1.twilio.com
*.vss.stage.twilio.com
statuspage.io
dashboard.waas.corp.twilio.com
ct-spam-labs.us1.twilio.com
*.twilio.com
understand.stage-us1.eak.twilio.com
8f876c29f4e5ddcd1ba13f3b40e889bbc3822cd2.console.dev.twilio.com
chickentreat.craveable.support
*.stage-us1.twilio.com
chickentreat.craveable.support
*.turn.dev.twilio.com
*.stage.twilio.com
incapsula.com
internal.status.twilio.com
wireless.us1.eak.twilio.com
mqtt-sync.stage-us1.twilio.com
*.ie1.twilio.com
incapsula.com
rtd-notify-log.dev-us1.eak.twilio.com
wiki.hq.twilio.com
platform-slackapp.corp.twilio.com
*.de1.twilio.com
statuspage.io
build.twilio.com
incapsula.com
headsup.twilio.com
webhooks.twilio.com
chickentreat.craveable.support
tsock.twilio.com
pf-voice.dev-us1.eak.twilio.com
*.vss.twilio.com
*.dev.twilio.com
postflight-sms.us1.eak.twilio.com
*.stage-us2.twilio.com
statuspage.io
statuspage.io
*.turn.dev.twilio.com
*.dev-us2.twilio.com
statuspage.io
statuspage.io
doers.twilio.com
akamaisecure4.qualtrics.com
video.us1.eak.twilio.com
support.twilio.com
aproposalfrom.freeman.com
assets.cdn.prod.twilio.com
statuspage.io
*.code.hq.twilio.com
*.help.dev.twilio.com
chunderm.gll.dev.twilio.com
go.twilio.com
*.br1.twilio.com
5271ba7d4eb049ae104fa6533b878d7de1b133d9.console.dev.twilio.com
*.stage.twilio.com
signal.twilio.com
console.ie1.twilio.com
statuspage.io
networktest.twilio.com
partnerportal.kornferry.com
incapsula.com
sales.twilio.com
jp.twilio.com
aproposalfrom.freeman.com
statuspage.io
*.stage-au1.twilio.com
ecs.stage-us1.twilio.com
statuspage.io
*.vss.twilio.com
chunderw-vpc-gll-stage-us2-ix.stage.twilio.com
statuspage.io
statuspage.io
mqtt-sync.us1.twilio.com
*.stage-us2.twilio.com
*.stage-us1.twilio.com
support.twilio.com
console.ireland.stage-ie1.twilio.com
rtd-kibana-6.us1.eak.twilio.com
landria.corp.twilio.com
akamaisecure4.qualtrics.com
Certificate
The complete raw certificate details for *.twilio.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGgDCCBWigAwIBAgIQD0hr+6Y08TIESRDYJLL2vTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDIyNzAwMDAwMFoXDTI1MDMyNzIzNTk1OVowFzEV MBMGA1UEAwwMKi50d2lsaW8uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAseRvK4WFhQDdp//qL0W2P6px/ThhQN1fYm/SbHg2P0BjOQmdu9vytCAs 1Uw1Iqxw7zbK+3qQSE0GPyoRGAtouS2vA5/Guobs2XdET8M+D5evPPVDxyxY5NHM KFcJWk4LUSLIW5Uo6rgxxGVq/o47jBxvUX6GwJL9bVHxW0qJs8CwGNATq1Y/lkG9 jfvwkgmqVr+Uz4Tkpq/mRYPML2+Rl4IlxlsHr8HANEtxK7iAhJpO+Yd1xSlfoChi 9h+vdNQzPLklBddOsN3Z+L9x4aqdMuiB8LgjeiVd0Lv5yonLT35QU0cvoB82CPkh FKupIp655WJmKfNdkrmPOtR0PDIu4QIDAQABo4IDoTCCA50wHwYDVR0jBBgwFoAU VdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFMcCvbPtEmTmujF6QlXGaTs7 VZnvMIHRBgNVHREEgckwgcaCDCoudHdpbGlvLmNvbYIZKi5pbnRlcm5hbC51czEu dHdpbGlvLmNvbYIMKi50d2lsaW8ub3JnghAqLmF1MS50d2lsaW8uY29tghkqLmlu dGVybmFsLmllMS50d2lsaW8uY29tghkqLmludGVybmFsLmF1MS50d2lsaW8uY29t ghUqLmludGVybmFsLnR3aWxpby5jb22CECouaWUxLnR3aWxpby5jb22CCnR3aWxp by5jb22CECoudXMxLnR3aWxpby5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNV HR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRydXN0LmNvbS9y Mm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2Nz cC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQu cjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMBAf8EAjAAMIIB fwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdwBOdaMnXJoQwzhbbNTfP1LrHfDgjhuN acCx+mSxYpo53wAAAY3rCtwKAAAEAwBIMEYCIQCF/8D6ylzr0zL46YlyC86gKb8O Dp8zGd6dIQvTcrzdSgIhAKQ1Rq4ek3qt/+TxBBhmrLiabm9hUktP52QsWaF4EeSg AHUAfVkeEuF4KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGN6wrcGAAABAMA RjBEAiAFnNvWGGQqY/41K8WGW1xsGNEfhB8MQ1Gngi9B/gudZwIgJQo+paxsYDpF 79B1KKXti99goH4UcsZkXIfViU+q5fwAdwDm0jFjQHeMwRBBBtdxuc7B0kD2loSG +7qHMh39HjeOUAAAAY3rCtxMAAAEAwBIMEYCIQCy49JTjXwkDw0OWKJkW6FxyFvB vaXpMjzD0xiZ7EvutgIhAPy66h8UpszLOArYs+ft5HP/DRQZC5knCaup6BMmAa1k MA0GCSqGSIb3DQEBCwUAA4IBAQBndgk7R5I8yQ4YuT2m2sb7SHAGzaVCFCD3NQby EdfB4lQa9UreUxaFrlRMStD9LzjUVgQQ++j0O56W8b/4wUjsPjPdf7a35pKdaZJj wEv48mPFoOV0mprKTQpM3NQ8wjTMf4lJa9fl76o+0q/kOOM5l+nYdgOWklffCR5e QipQ6Aa5CWqFIuI6d0nF1TtC8w3kxa8Isij7r+NN+7C4Ktb83W7PYaMOShB8Y+Yo 3G5hg89tGkAFQADsvaZdDrlXr1eAfhdK9yqH70X7w62Du1RsUAzg442IHi3kKMtL W44q3bF/PsTLoV+Z4DafjLxgdTzu2fqTgzm8CavYJXjC1kdO -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAseRvK4WFhQDdp//qL0W2 P6px/ThhQN1fYm/SbHg2P0BjOQmdu9vytCAs1Uw1Iqxw7zbK+3qQSE0GPyoRGAto uS2vA5/Guobs2XdET8M+D5evPPVDxyxY5NHMKFcJWk4LUSLIW5Uo6rgxxGVq/o47 jBxvUX6GwJL9bVHxW0qJs8CwGNATq1Y/lkG9jfvwkgmqVr+Uz4Tkpq/mRYPML2+R l4IlxlsHr8HANEtxK7iAhJpO+Yd1xSlfoChi9h+vdNQzPLklBddOsN3Z+L9x4aqd MuiB8LgjeiVd0Lv5yonLT35QU0cvoB82CPkhFKupIp655WJmKfNdkrmPOtR0PDIu 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20314455466123142277827013940666889917 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.twilio.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22456825109873044632057335393320087328366927676713902559903478528918748913266644401240219789044356831486833861843168815706079179331150679078039668949338496057822678981927510149074514531991255936174501821682234847744317436576761008281510604812888059784365295721071185907660450533673616087661209178175251793619117731374393546971060075792759231408518067082150394314680883007412587351877453636140516483624817820287228943313557558106916283406588902599460708927839757257743356282746530400121691853194492549000632275348468435843357668881097752798371244663459334059319278772367679870874645768719306981516726731058142118031073 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c702bdb3ed1264e6ba317a4255c6693b3b5599ef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (201 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.twilio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.internal.us1.twilio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.twilio.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.au1.twilio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.internal.ie1.twilio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.internal.au1.twilio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.internal.twilio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ie1.twilio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'twilio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.us1.twilio.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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