avakin.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 05:96:34:e1:5e:99:1f:af:d8:68:1b:5a:27:55:35:c8 was issued on by Amazon.
With 16 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=avakin.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 05:96:34:e1:5e:99:1f:af:d8:68:1b:5a:27:55:35:c8Serial Number (int): 7426057048617465315879013921064302024
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 22:ae:14:a1:5c:1b:29:d2:82:f4:b5:dd:0a:e3:6c:ae:9c:9e:d5:d0
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 78:65:16:f3:4a:ff:54:a3:5e:1b:18:8d:0d:65:9a:a5:ac:fe:7a:c6
Fingerprint (sha256): 27:f8:5d:e5:27:81:b1:c8:26:52:7b:0c:3e:56:21:b3:45:ea:70:02:58:ad:12:d0:b0:51:67:d4:3c:3e:cd:82
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate avakin.com
16
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for avakin.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
avakin.com
*.api.avkn.co
*.avkn.co
*.avakin.com
*.lockwood-publishing.com
lockwood-publishing.com
*.lkwd.net
*.lockwoodpublishing.com
*.api.avakin.com
*.staging.avkn.co
lockwoodpublishing.com
*.gdpr.avakin.life
*.dev.avakin.life
*.dev.avkn.co
*.dev.avakin.com
*.avakin.life
*.api.avkn.co
*.avkn.co
*.avakin.com
*.lockwood-publishing.com
lockwood-publishing.com
*.lkwd.net
*.lockwoodpublishing.com
*.api.avakin.com
*.staging.avkn.co
lockwoodpublishing.com
*.gdpr.avakin.life
*.dev.avakin.life
*.dev.avkn.co
*.dev.avakin.com
*.avakin.life
Other certificates including the domain name avakin.com
(limited to 100 certificates)
avakin.com
avakin.com
get.avakin.com
avakin.com
dev.avkn.co
lkwd-wmdash.data-prod.avakin.com
get.avakin.com
get.avakin.com
avkn.co
governor.data-staging.avakin.com
lkwd-wmdash.data-dev.avakin.com
*.avakin.life
avakin.com
grafana-prod.data-prod.avakin.com
avakin.com
crucible.data-dev.avakin.com
www.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
avakin.com
avakin.com
avakin.com
www.avakin.com
status.avakin.com
avkn.co
get.avakin.com
avakin.com
governor.data-dev.avakin.com
www.avakin.com
get.avakin.com
get.avakin.com
get.avakin.com
*.avakin.life
lkwd-wmdash.data-prod.avakin.com
backend02.avakin.com
get.avakin.com
avakin.com
status.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
status.avakin.com
avakin.com
get.avakin.com
governor.data-dev.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
insights-writer.data-prod.avakin.com
ip2asn-api.data-dev.avakin.com
*.avakin.life
get.avakin.com
api.avakin.com
crucible-admin.data-dev.avakin.com
backend.avakin.com
*.avakin.life
avkn.co
www.dev.avakin.com
get.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
avakin.com
avakin.com
backend.avakin.com
avakin.com
insights-writer.data-staging.avakin.com
ingestion.data-prod.avakin.com
www.dev.avakin.com
avkn.co
get.avakin.com
ingestion.data-prod.avakin.com
avakin.com
link.avakin.com
backend.avakin.com
get.avakin.com
*.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
*.avakin.com
*.avakin.life
avakin.com
insights-config.data-staging.avakin.com
get.avakin.com
avakin.com
governor.data-staging.avakin.com
avakin.com
avakin.com
get.avakin.com
governor.data-prod.avakin.com
*.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
avkn.co
get.avakin.com
avakin.com
ugc.prod.avakin.com
avakin.com
store.avakin.com
avakin.com
ingestion.data-dev.avakin.com
avakin.com
get.avakin.com
avakin.com
dev.avkn.co
lkwd-wmdash.data-prod.avakin.com
get.avakin.com
get.avakin.com
avkn.co
governor.data-staging.avakin.com
lkwd-wmdash.data-dev.avakin.com
*.avakin.life
avakin.com
grafana-prod.data-prod.avakin.com
avakin.com
crucible.data-dev.avakin.com
www.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
avakin.com
avakin.com
avakin.com
www.avakin.com
status.avakin.com
avkn.co
get.avakin.com
avakin.com
governor.data-dev.avakin.com
www.avakin.com
get.avakin.com
get.avakin.com
get.avakin.com
*.avakin.life
lkwd-wmdash.data-prod.avakin.com
backend02.avakin.com
get.avakin.com
avakin.com
status.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
status.avakin.com
avakin.com
get.avakin.com
governor.data-dev.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
insights-writer.data-prod.avakin.com
ip2asn-api.data-dev.avakin.com
*.avakin.life
get.avakin.com
api.avakin.com
crucible-admin.data-dev.avakin.com
backend.avakin.com
*.avakin.life
avkn.co
www.dev.avakin.com
get.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
avakin.com
avakin.com
backend.avakin.com
avakin.com
insights-writer.data-staging.avakin.com
ingestion.data-prod.avakin.com
www.dev.avakin.com
avkn.co
get.avakin.com
ingestion.data-prod.avakin.com
avakin.com
link.avakin.com
backend.avakin.com
get.avakin.com
*.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
*.avakin.com
*.avakin.life
avakin.com
insights-config.data-staging.avakin.com
get.avakin.com
avakin.com
governor.data-staging.avakin.com
avakin.com
avakin.com
get.avakin.com
governor.data-prod.avakin.com
*.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
avkn.co
get.avakin.com
avakin.com
ugc.prod.avakin.com
avakin.com
store.avakin.com
avakin.com
ingestion.data-dev.avakin.com
Certificate
The complete raw certificate details for avakin.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG2zCCBcOgAwIBAgIQBZY04V6ZH6/YaBtaJ1U1yDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDYzMDAwMDAwMFoXDTI0MDcyNzIzNTk1OVowFTET MBEGA1UEAxMKYXZha2luLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALL0cUL2qwsm8sO1GGpX0wft1n0xsA9xmPVJeTWgdzIPZDKzqABMckFeCfuc 1Ncc47R6Yhhd3WMMKMVuXnvEjEnND6tbuqOH5UGIg24g8oB2b6g+/wz2X7lcB6Av DnXmsqAI7jdI1jqheiYkLxR5hUeBJMLtFo121FhVi10NfUYXeW8g3iLhXs4a3p5p sn0ptde/xG0JFj/QBdXbUAr39xQHpJs8pDikTWQZ2frBMnfN7xVjHXISl9HmzaOH vBbxq3INzAEl47UdpqoZ5ym3hzTQEyVLc6rbhpEkg/L94ucSrIDPBVeSdyXxMvHX SI/dCIOB7NKjCzV48PYi+zDkt5sCAwEAAaOCA/4wggP6MB8GA1UdIwQYMBaAFMAx Us1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBQirhShXBsp0oL0td0K42yunJ7V 0DCCAS8GA1UdEQSCASYwggEiggphdmFraW4uY29tgg0qLmFwaS5hdmtuLmNvggkq LmF2a24uY2+CDCouYXZha2luLmNvbYIZKi5sb2Nrd29vZC1wdWJsaXNoaW5nLmNv bYIXbG9ja3dvb2QtcHVibGlzaGluZy5jb22CCioubGt3ZC5uZXSCGCoubG9ja3dv b2RwdWJsaXNoaW5nLmNvbYIQKi5hcGkuYXZha2luLmNvbYIRKi5zdGFnaW5nLmF2 a24uY2+CFmxvY2t3b29kcHVibGlzaGluZy5jb22CEiouZ2Rwci5hdmFraW4ubGlm ZYIRKi5kZXYuYXZha2luLmxpZmWCDSouZGV2LmF2a24uY2+CECouZGV2LmF2YWtp bi5jb22CDSouYXZha2luLmxpZmUwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3Js LnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jcmwwEwYDVR0gBAwwCjAIBgZn gQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5y Mm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJt MDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMBAf8EAjAAMIIBfQYK KwYBBAHWeQIEAgSCAW0EggFpAWcAdQDuzdBk1dsazsVct520zROiModGfLzs3sNR SFlGcR+1mwAAAYkLWeDeAAAEAwBGMEQCIBXRqN4ihHU0KXcNAZa5hhPf6CPhwe2W FVyJaFsd7s3bAiAK2g4FpniZaR7rZpdkRDAmr3mU9u1+Kuv6flrPbUO6gQB1AEiw 42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABiQtZ4T0AAAQDAEYwRAIg KNU2c7aLdPvS41WXosOxroz6Gm73sbh2pNBwHWBNsswCIFnF5nHtFYM5CDKYocDW n0pEy+/fDqXDD+2RorwSVQDEAHcA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9 MEjX+6sAAAGJC1nhDQAABAMASDBGAiEA6+QKYQt3PYmX1ji/c9AUlNr9LdDMHSPC 7YCsZMDsMnICIQDHM2Z6IeUm+c25oik/cWeR8wai2ew6nYOKYrJlc0smBzANBgkq hkiG9w0BAQsFAAOCAQEAF5wwWbYPgM/yQbzTj20qAWNxz3QA83q/wsHBde1p8P/O AfTWshPHT2bWceAfCff/e8kO3OaO3051udoiUiYZCGlK45RS/JthJ83+iHZXomRF maOIEOj9/m38Zf1f81O1iJvuZyCEYNyigGZAZMKRw11+tPdwQCzzcxoTAt3KpiST nqldpx0nzhc/xorEksA5cRy8hviSfOeAAW7FGLm3sw5DBVZ3M+2gAYEsdLNRShJj xmmCsM+ksZwjXw6N5NdBIjNMvpxE6o55ZFh4WRW+cxnaIv30WWYo4lqnlFViCXzp oHbz0ZtK9ZEoePeyOfQqZrvkpP9RG1LJ/lwo+2w+Cg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvRxQvarCybyw7UYalfT B+3WfTGwD3GY9Ul5NaB3Mg9kMrOoAExyQV4J+5zU1xzjtHpiGF3dYwwoxW5ee8SM Sc0Pq1u6o4flQYiDbiDygHZvqD7/DPZfuVwHoC8OdeayoAjuN0jWOqF6JiQvFHmF R4Ekwu0WjXbUWFWLXQ19Rhd5byDeIuFezhrenmmyfSm117/EbQkWP9AF1dtQCvf3 FAekmzykOKRNZBnZ+sEyd83vFWMdchKX0ebNo4e8FvGrcg3MASXjtR2mqhnnKbeH NNATJUtzqtuGkSSD8v3i5xKsgM8FV5J3JfEy8ddIj90Ig4Hs0qMLNXjw9iL7MOS3 mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7426057048617465315879013921064302024 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'avakin.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22590957337773391275167090203477578578265007152041348106649874245707358523513588231813788710880736754517888171233319473601785275159841760366600346066265471616392005137053621967669783480939912709605475108169535793725091847794184787358157168728067963529517013049061176557763292211613025058460150278220166717049774107853911199275868110098387257553143734726286794149159120381771065183493026783376509707260776547303389213239983888688849835795543198038853048157272279208750711710294389021548744733963209202035886615144040458656244696592890595880401389367408304892923278038643810423161263373374403733258839081505442003990427 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 22ae14a15c1b29d282f4b5dd0ae36cae9c9ed5d0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (294 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lockwood-publishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockwood-publishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lkwd.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lockwoodpublishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.staging.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockwoodpublishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gdpr.avakin.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.avakin.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avakin.life' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00179c3059b60f80cff241bcd38f6d2a016371cf7400f37abfc2c1c175ed69f0ffce01f4d6b213c74f66d671e01f09f7ff7bc90edce68edf4e75b9da2252261908694ae39452fc9b6127cdfe887657a2644599a38810e8fdfe6dfc65fd5ff353b5889bee67208460dca280664064c291c35d7eb4f770402cf3731a1302ddcaa624939ea95da71d27ce173fc68ac492c039711cbc86f8927ce780016ec518b9b7b30e4305567733eda001812c74b3514a1263c66982b0cfa4b19c235f0e8de4d74122334cbe9c44ea8e796458785915be7319da22fdf4596628e25aa7945562097ce9a076f3d19b4af5912878f7b239f42a66bbe4a4ff511b52c9fe5c28fb6c3e0a