api.prod.greetz-nl.net
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 03:08:55:ef:7c:6f:52:41:a3:25:c2:7d:ed:b4:34:f6 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=api.prod.greetz-nl.net
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:08:55:ef:7c:6f:52:41:a3:25:c2:7d:ed:b4:34:f6Serial Number (int): 4030965341080897969572374235567109366
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 42:92:a3:6d:54:b5:56:9d:8c:20:eb:8c:18:6b:68:de:e9:27:c6:87
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 69:0b:21:bc:b7:0a:64:f1:1c:e1:8c:fa:77:c5:74:c5:f8:7c:12:0d
Fingerprint (sha256): 2a:1e:dc:6c:6d:2e:22:d8:6a:5c:3f:f1:8e:8b:bb:ca:00:d9:9a:20:6b:87:cf:1c:80:83:8f:42:ad:25:7e:23
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate api.prod.greetz-nl.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api.prod.greetz-nl.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.prod.greetz-nl.net
api.greetz.nl
api.greetz.nl
Other certificates including the domain name greetz-nl.net
(limited to 100 certificates)
*.suggestions.uat.greetz-nl.net
*.renderer.uat.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.web-explore-server.prod.greetz-nl.net
*.promotions.dev.greetz-nl.net
*.devrepo.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.renderer.uat.greetz-nl.net
*.web-flags.dev.greetz-nl.net
*.content.uat.greetz-nl.net
*.renderer.uat.greetz-nl.net
*.consignments.dev.greetz-nl.net
*.web-purchase-server.uat.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.consignments.dev.greetz-nl.net
*.reviews.dev.greetz-nl.net
*.consignments.uat.greetz-nl.net
*.web-flags.uat.greetz-nl.net
*.web-personalise-server.prod.greetz-nl.net
*.renderer.prod.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.deliveryconfiguration.uat.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.prod.greetz-nl.net
*.content.dev.greetz-nl.net
api.prod.greetz-nl.net
*.product.dev.greetz-nl.net
*.deliveryconfiguration.prod.greetz-nl.net
*.web-explore-server.uat.greetz-nl.net
*.deliveries.prod.greetz-nl.net
*.studio.uat.greetz-nl.net
*.suggestions.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.renderer.prod.greetz-nl.net
*.promotions.prod.greetz-nl.net
*.favourites.prod.greetz-nl.net
*.studio.dev.greetz-nl.net
www.greetz.nl
*.customer-services.uat.greetz-nl.net
*.content.uat.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.web-customer-server.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.deliveryconfiguration.dev.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.deliveries.uat.greetz-nl.net
*.deliveryconfiguration.uat.greetz-nl.net
*.consignments.uat.greetz-nl.net
*.web-personalise-server.prod.greetz-nl.net
*.web-explore-server.prod.greetz-nl.net
*.web-personalise-server.dev.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.design.prod.greetz-nl.net
*.product.dev.greetz-nl.net
*.favourites.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.content.uat.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.web-explore.prod.greetz-nl.net
*.reviews.prod.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.web-flags.dev.greetz-nl.net
*.deliveryconfiguration.dev.greetz-nl.net
*.deliveryconfiguration.dev.greetz-nl.net
*.ui-events.uat.greetz-nl.net
*.content.uat.greetz-nl.net
*.web-customer-server.prod.greetz-nl.net
*.addresses.prod.greetz-nl.net
*.product.dev.greetz-nl.net
*.suggested-messages.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.template.uat.greetz-nl.net
*.webhook-v2.content.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.authentication.dev.greetz-nl.net
*.favourites.uat.greetz-nl.net
webhook-v2.content.prod.greetz-nl.net
api.uat.greetz-nl.net
*.web-personalise-server.uat.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.content.prod.greetz-nl.net
*.web-explore-server.uat.greetz-nl.net
*.product.dev.greetz-nl.net
*.web-purchase-server.uat.greetz-nl.net
*.promotions.dev.greetz-nl.net
*.aichatbot.dev.greetz-nl.net
*.web-purchase-server.prod.greetz-nl.net
*.web-explore-server.dev.greetz-nl.net
*.ui-events.prod.greetz-nl.net
*.content.uat.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.ui-events.prod.greetz-nl.net
*.renderer.uat.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.web-explore-server.prod.greetz-nl.net
*.promotions.dev.greetz-nl.net
*.devrepo.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.renderer.uat.greetz-nl.net
*.web-flags.dev.greetz-nl.net
*.content.uat.greetz-nl.net
*.renderer.uat.greetz-nl.net
*.consignments.dev.greetz-nl.net
*.web-purchase-server.uat.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.consignments.dev.greetz-nl.net
*.reviews.dev.greetz-nl.net
*.consignments.uat.greetz-nl.net
*.web-flags.uat.greetz-nl.net
*.web-personalise-server.prod.greetz-nl.net
*.renderer.prod.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.deliveryconfiguration.uat.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.product.prod.greetz-nl.net
*.content.dev.greetz-nl.net
api.prod.greetz-nl.net
*.product.dev.greetz-nl.net
*.deliveryconfiguration.prod.greetz-nl.net
*.web-explore-server.uat.greetz-nl.net
*.deliveries.prod.greetz-nl.net
*.studio.uat.greetz-nl.net
*.suggestions.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.renderer.prod.greetz-nl.net
*.promotions.prod.greetz-nl.net
*.favourites.prod.greetz-nl.net
*.studio.dev.greetz-nl.net
www.greetz.nl
*.customer-services.uat.greetz-nl.net
*.content.uat.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.web-customer-server.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.deliveryconfiguration.dev.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.deliveries.uat.greetz-nl.net
*.deliveryconfiguration.uat.greetz-nl.net
*.consignments.uat.greetz-nl.net
*.web-personalise-server.prod.greetz-nl.net
*.web-explore-server.prod.greetz-nl.net
*.web-personalise-server.dev.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.design.prod.greetz-nl.net
*.product.dev.greetz-nl.net
*.favourites.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.content.uat.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.web-explore.prod.greetz-nl.net
*.reviews.prod.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.web-flags.dev.greetz-nl.net
*.deliveryconfiguration.dev.greetz-nl.net
*.deliveryconfiguration.dev.greetz-nl.net
*.ui-events.uat.greetz-nl.net
*.content.uat.greetz-nl.net
*.web-customer-server.prod.greetz-nl.net
*.addresses.prod.greetz-nl.net
*.product.dev.greetz-nl.net
*.suggested-messages.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.template.uat.greetz-nl.net
*.webhook-v2.content.dev.greetz-nl.net
*.product.dev.greetz-nl.net
*.authentication.dev.greetz-nl.net
*.favourites.uat.greetz-nl.net
webhook-v2.content.prod.greetz-nl.net
api.uat.greetz-nl.net
*.web-personalise-server.uat.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.content.prod.greetz-nl.net
*.web-explore-server.uat.greetz-nl.net
*.product.dev.greetz-nl.net
*.web-purchase-server.uat.greetz-nl.net
*.promotions.dev.greetz-nl.net
*.aichatbot.dev.greetz-nl.net
*.web-purchase-server.prod.greetz-nl.net
*.web-explore-server.dev.greetz-nl.net
*.ui-events.prod.greetz-nl.net
*.content.uat.greetz-nl.net
*.products-lookup.dev.greetz-nl.net
*.ui-events.prod.greetz-nl.net
Certificate
The complete raw certificate details for api.prod.greetz-nl.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5zCCBM+gAwIBAgIQAwhV73xvUkGjJcJ97bQ09jANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDQxMzAwMDAwMFoXDTI0MDUxMjIzNTk1OVowITEf MB0GA1UEAxMWYXBpLnByb2QuZ3JlZXR6LW5sLm5ldDCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAOLkONtXteLmJsRVc1/EP0BdIEQYwRfs0GU3gCxmujxr xif6ptKK5jMOhKDCbA2opW/95Udo9jVxXWAeTJzkSTjqhhiaqblAALE6gxLqjTQK GrftAZCiEy2vFI21T4gXwn4/Z1xENnQtzTUtc/WIyAFEhQe9IJFtYl/f8B/ein+y dfCq55yODsv666M5g6/uzFt8a385PMCSgNFjbrhpfRusQo9BvduVqK3Fej8mPZgm 522wNtN2QJWaUVjK5d4zyEy6YPw/9fzgWAvkovtIeNbcNOgu7ld5GcIxfYYIa8xI 0Q89bJzN0By1swA1cUEComjdlrLBQuwpCDjEDXGiuMcCAwEAAaOCAv4wggL6MB8G A1UdIwQYMBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBRCkqNtVLVW nYwg64wYa2je6SfGhzAwBgNVHREEKTAnghZhcGkucHJvZC5ncmVldHotbmwubmV0 gg1hcGkuZ3JlZXR6Lm5sMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0w Mi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIB MHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDIu YW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAyLmFt YXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB 1nkCBAIEggFuBIIBagFoAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEf tZsAAAGHeI4tPgAABAMARzBFAiEAlHp5F22EdR9ZmZaKw6kHTjPwfHO4ajq0brHr wPgv2kUCICVOCQ4wEQ27aajmAQaeOx7wWo8DkOmdzjkXdlb42sIvAHcAc9meiRtM lnigIH1HneayxhzQUV5xGSqMa4AQesF3crUAAAGHeI4thAAABAMASDBGAiEAtiM6 e/YgHgSCXmNb4c+q2W67z/dWZvmH1rAzJGXnOT8CIQDVxCVzsJlJOMjIDlKyaTLu V4s3MvQKudPhOzDlmyO03gB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s5 2IRzAAABh3iOLVIAAAQDAEYwRAIgH/6nOpmbFgqkc97zIg1/6RMg/fOxDh9KbRRT oP3WbM4CIAfTZUYEbhLXu82ZbUSNbERrVJakme2XkrEnLtIrR2/iMA0GCSqGSIb3 DQEBCwUAA4IBAQA4K2J6DixT056jmX9P/0ng63S+l2/L6UoXZGTYPjLM6cil1Ov3 RsqfMRVlNanIyYd7CpClkVJ/jlOkGM+/7NA1JlLnDRvlSt3Khuj6PUpSqrLPRFIK l6DIgCYrwb27yHvZlmhCiuCrC8sCB3hzYbfAyqumAbhwTZwoolV0pHCgaxruwPRi ssraRHWQrdf888axYv8bpqsaFEkXnk7u0S2AoAVY7Yvk0yF5NLalzFLreVTDUlnc Or7oqS1HAhsVVR4TSbpf3z8uHJt/HfYNJBBZ0xXwTwgApQqXQhnf4vPQV9MiMTdy 57KotBf9+frWcxpnOgaKu8i6TI1Q4HYSSnYl -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4uQ421e14uYmxFVzX8Q/ QF0gRBjBF+zQZTeALGa6PGvGJ/qm0ormMw6EoMJsDailb/3lR2j2NXFdYB5MnORJ OOqGGJqpuUAAsTqDEuqNNAoat+0BkKITLa8UjbVPiBfCfj9nXEQ2dC3NNS1z9YjI AUSFB70gkW1iX9/wH96Kf7J18KrnnI4Oy/rrozmDr+7MW3xrfzk8wJKA0WNuuGl9 G6xCj0G925WorcV6PyY9mCbnbbA203ZAlZpRWMrl3jPITLpg/D/1/OBYC+Si+0h4 1tw06C7uV3kZwjF9hghrzEjRDz1snM3QHLWzADVxQQKiaN2WssFC7CkIOMQNcaK4 xwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4030965341080897969572374235567109366 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.prod.greetz-nl.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28642397432754263020690638686812967424146417797578647150381864995383481163033192852024627913673647328691959342877409375728585098213708086243184722935868448685952481833004909427953182464678790521019587787036548776557557449389476954029108263175425102614460459912254497870176438949074735317525264015534381920234697332213291451993636363217377846290580287024329297192062474257176080605479819843302671608040411227189703087829715113546845772712657587711097561824222746946046899445443717826727953811992470467850424000759353661263291806116254615120592193042133968447991251665628677722050195520673715993154282531514861897300167 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4292a36d54b5569d8c20eb8c186b68dee927c687 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (41 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.prod.greetz-nl.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.greetz.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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