cc-cade.ephemeral.champtest.net
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 05:56:a6:e5:6c:da:8d:ca:50:44:fc:06:f3:1a:20:8a was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cc-cade.ephemeral.champtest.net
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 05:56:a6:e5:6c:da:8d:ca:50:44:fc:06:f3:1a:20:8aSerial Number (int): 7096062565690592959478011170888753290
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 18:b1:b5:fb:09:85:83:73:c5:7e:e6:4d:a3:5c:8e:e7:4b:dc:de:5e
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): a0:9d:d2:f0:6a:93:e3:17:a2:ee:a2:bf:5c:df:c7:55:91:40:51:c8
Fingerprint (sha256): 29:07:9c:5a:d2:a2:aa:71:b0:40:93:46:f6:56:2a:11:46:21:66:a8:45:35:b9:af:ed:f3:dd:4f:99:49:6c:fb
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate cc-cade.ephemeral.champtest.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cc-cade.ephemeral.champtest.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cc-cade.ephemeral.champtest.net
Other certificates including the domain name champtest.net
(limited to 100 certificates)
*.oss.champtest.net
*.oss.champtest.net
terraform-aws-app-960d.oss.champtest.net
*.oss.champtest.net
terraform-aws-app.oss.champtest.net
terraform-aws-api-gateway2-atkf1.oss.champtest.net
terraform-aws-api-gateway2-utqep.oss.champtest.net
terraform-aws-acm.oss.champtest.net
keycloak-y1pmu.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-api-gateway-0pjo3.oss.champtest.net
gemini.oss.champtest.net
terraform-aws-alb.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-alb.oss.champtest.net
cade.ephemeral.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-api-gateway-rgvk7.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-app-83a3.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-lambda-4942.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
tf-r53-health-check.oss.champtest.net
terraform-aws-alb.oss.champtest.net
*.oss.champtest.net
terraform-aws-api-gateway-3st0n.oss.champtest.net
terraform-aws-api-gateway-1java.oss.champtest.net
lambda-mono-repo-template.ephemeral.champtest.net
ws-ledger-atrs.ephemeral.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-api-gateway-6yph6.oss.champtest.net
terraform-aws-app-0f7f.oss.champtest.net
terraform-aws-lambda-35f1.oss.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-api-gateway-nihxj.oss.champtest.net
terraform-aws-lambda.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-api-gateway-xous5.oss.champtest.net
terraform-aws-lambda-b614.oss.champtest.net
terraform-aws-api-gateway-e9fbg.oss.champtest.net
terraform-aws-api-gateway-w453f.oss.champtest.net
keycloak-6k58m.oss.champtest.net
cade.ephemeral.champtest.net
terraform-aws-app-5d7f.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-api-gateway-npx68.oss.champtest.net
keycloak-waj09.oss.champtest.net
terraform-aws-app-6b4a.oss.champtest.net
terraform-aws-api-gateway-tkp0p.oss.champtest.net
terraform-aws-metabase.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
*.oss.champtest.net
terraform-aws-lambda-773d.oss.champtest.net
terraform-aws-app.oss.champtest.net
terraform-aws-acm.oss.champtest.net
tf-r53-health-check.oss.champtest.net
terraform-aws-api-gateway2-6bom4.oss.champtest.net
cade.ephemeral.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-lambda-2da3.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
*.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-lambda-0f1b.oss.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-app-e44a.oss.champtest.net
keycloak-6f0p6.oss.champtest.net
terraform-aws-core.oss.champtest.net
tf-r53-health-check.oss.champtest.net
terraform-aws-api-gateway-5tec9.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-app-b32b.oss.champtest.net
keycloak-me1sy.oss.champtest.net
keycloak-rafp4.oss.champtest.net
tf-r53-health-check.oss.champtest.net
terraform-aws-app-947b.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-api-gateway-crx4j.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
*.dtrs-prod-ky.champtest.net
terraform-aws-api-gateway-smd7j.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-acm.oss.champtest.net
keycloak-c84nr.oss.champtest.net
terraform-aws-app-4d70.oss.champtest.net
barcode-reader.ephemeral.champtest.net
terraform-aws-app-d4d7.oss.champtest.net
*.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-acm.oss.champtest.net
*.oss.champtest.net
terraform-aws-app-960d.oss.champtest.net
*.oss.champtest.net
terraform-aws-app.oss.champtest.net
terraform-aws-api-gateway2-atkf1.oss.champtest.net
terraform-aws-api-gateway2-utqep.oss.champtest.net
terraform-aws-acm.oss.champtest.net
keycloak-y1pmu.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-api-gateway-0pjo3.oss.champtest.net
gemini.oss.champtest.net
terraform-aws-alb.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-alb.oss.champtest.net
cade.ephemeral.champtest.net
terraform-aws-cdn.oss.champtest.net
terraform-aws-api-gateway-rgvk7.oss.champtest.net
keycloak.oss.champtest.net
terraform-aws-app-83a3.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-lambda-4942.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
tf-r53-health-check.oss.champtest.net
terraform-aws-alb.oss.champtest.net
*.oss.champtest.net
terraform-aws-api-gateway-3st0n.oss.champtest.net
terraform-aws-api-gateway-1java.oss.champtest.net
lambda-mono-repo-template.ephemeral.champtest.net
ws-ledger-atrs.ephemeral.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-api-gateway-6yph6.oss.champtest.net
terraform-aws-app-0f7f.oss.champtest.net
terraform-aws-lambda-35f1.oss.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-api-gateway-nihxj.oss.champtest.net
terraform-aws-lambda.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-api-gateway-xous5.oss.champtest.net
terraform-aws-lambda-b614.oss.champtest.net
terraform-aws-api-gateway-e9fbg.oss.champtest.net
terraform-aws-api-gateway-w453f.oss.champtest.net
keycloak-6k58m.oss.champtest.net
cade.ephemeral.champtest.net
terraform-aws-app-5d7f.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-api-gateway-npx68.oss.champtest.net
keycloak-waj09.oss.champtest.net
terraform-aws-app-6b4a.oss.champtest.net
terraform-aws-api-gateway-tkp0p.oss.champtest.net
terraform-aws-metabase.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
*.oss.champtest.net
terraform-aws-lambda-773d.oss.champtest.net
terraform-aws-app.oss.champtest.net
terraform-aws-acm.oss.champtest.net
tf-r53-health-check.oss.champtest.net
terraform-aws-api-gateway2-6bom4.oss.champtest.net
cade.ephemeral.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-lambda-2da3.oss.champtest.net
terraform-aws-cdn.oss.champtest.net
*.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-lambda-0f1b.oss.champtest.net
terraform-aws-core.oss.champtest.net
terraform-aws-app-e44a.oss.champtest.net
keycloak-6f0p6.oss.champtest.net
terraform-aws-core.oss.champtest.net
tf-r53-health-check.oss.champtest.net
terraform-aws-api-gateway-5tec9.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-app-b32b.oss.champtest.net
keycloak-me1sy.oss.champtest.net
keycloak-rafp4.oss.champtest.net
tf-r53-health-check.oss.champtest.net
terraform-aws-app-947b.oss.champtest.net
terraform-aws-acm.oss.champtest.net
terraform-aws-api-gateway-crx4j.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
*.dtrs-prod-ky.champtest.net
terraform-aws-api-gateway-smd7j.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-redirect.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-acm.oss.champtest.net
keycloak-c84nr.oss.champtest.net
terraform-aws-app-4d70.oss.champtest.net
barcode-reader.ephemeral.champtest.net
terraform-aws-app-d4d7.oss.champtest.net
*.oss.champtest.net
terraform-aws-vpn.oss.champtest.net
terraform-aws-alb.oss.champtest.net
terraform-aws-acm.oss.champtest.net
Certificate
The complete raw certificate details for cc-cade.ephemeral.champtest.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEfTCCA2WgAwIBAgIQBVam5WzajcpQRPwG8xogijANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDUyNTAwMDAwMFoXDTI0MDYyMjIzNTk1OVowKjEo MCYGA1UEAxMfY2MtY2FkZS5lcGhlbWVyYWwuY2hhbXB0ZXN0Lm5ldDCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALvnTlxiWIRPyhokU8kqoFKF2sECswfu tfIajbLJUkF6WDaKbIZtymh/ypFqs2iMeJj1thu+Idubehc7I4809XsTWtleblS2 u4fjEcnNQbCCLLFSBZfRSkevE3EDT4sIN5JwbiD+3I5C2ytp9V3YQkoU1uPa1FhY LmZNc1bY/JcvKgSsAE3fX9l56XaU1A3DMt/9gnod8BA5AKeyoqzRvdoQ3c3WixG2 wMHtJ6excY93OZz0RHV82uPzcC3LEDT/HTd1NMDfaxLHZ0vmLniu6fIN2NS7BnTl uT2Qx9teQxec199DmTJWiISBQVW6LERYxAeYDlketshmoPw0r0x2dakCAwEAAaOC AYswggGHMB8GA1UdIwQYMBaAFIG4DmOKiRIY5fo7O1CVn+blkBOFMB0GA1UdDgQW BBQYsbX7CYWDc8V+5k2jXI7nS9zeXjAqBgNVHREEIzAhgh9jYy1jYWRlLmVwaGVt ZXJhbC5jaGFtcHRlc3QubmV0MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5y Mm0wMS5hbWF6b250cnVzdC5jb20vcjJtMDEuY3JsMBMGA1UdIAQMMAowCAYGZ4EM AQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJt MDEuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAx LmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jZXIwDAYDVR0TAQH/BAIwADATBgorBgEE AdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeg9utBuOidV0mNvutDJE W3Eq4vu+hfc8er+PUdXKBz7K6O46GKlPv2heBHXIQfKBGYPuf9u53YOkQsB3ueLQ DBlQgiIszMHglCQe0LNkSsil0sbCOFpq2/AshTyi8T1NcFKW/kvFB1s/N6L18ZNP wBc8l35M3hiyf1N0Oa7uwUsZPjGDapCszse8qC3ZC3PBThms8pRzIO+/ZE5TpewN dNPZevNPqKpQWr9b2B0KU1IxMGVF+IEnga8yJ+8t99WJqAcAlOwmPKJzTXAV+63l DSF67CvWBegJOebiDMrdhdaXQPo4gJjvGS5w0D+WhtIIAeBAMRj5QhusIVzI2Ke2 pw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+dOXGJYhE/KGiRTySqg UoXawQKzB+618hqNsslSQXpYNopshm3KaH/KkWqzaIx4mPW2G74h25t6FzsjjzT1 exNa2V5uVLa7h+MRyc1BsIIssVIFl9FKR68TcQNPiwg3knBuIP7cjkLbK2n1XdhC ShTW49rUWFguZk1zVtj8ly8qBKwATd9f2XnpdpTUDcMy3/2Ceh3wEDkAp7KirNG9 2hDdzdaLEbbAwe0np7Fxj3c5nPREdXza4/NwLcsQNP8dN3U0wN9rEsdnS+YueK7p 8g3Y1LsGdOW5PZDH215DF5zX30OZMlaIhIFBVbosRFjEB5gOWR62yGag/DSvTHZ1 qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7096062565690592959478011170888753290 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cc-cade.ephemeral.champtest.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23720624316290122962877121346849658772024757067389731215988039125052253379910361943030479821576786438712510391546376966800993614721175586125268581652152537648741363539266549603014442555484539900187324182287014845658659137869313463258598635477040770705817544595839548591409895760918296142530405925666347054447654271464817267553403305140027694722669744890440279372998826905277174001980714070514417054717932908015042228105954684272977445267711514875811543882341696143197936810701607722131735567209201466039725170187684397786088073247792289979568431511550830301735570635467031409450567994837907249348520286782000819762601 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 18b1b5fb09858373c57ee64da35c8ee74bdcde5e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (35 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cc-cade.ephemeral.champtest.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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