afford.smcm.edu
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 08:19:d2:ce:e2:d1:f3:e7:75:68:d7:98:5a:52:ea:57 was issued on by Amazon.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=afford.smcm.edu
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 08:19:d2:ce:e2:d1:f3:e7:75:68:d7:98:5a:52:ea:57Serial Number (int): 10767907084958371983823202412670413399
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 78:4f:5e:ef:fe:9c:1c:69:98:45:aa:ea:e3:8c:73:4e:81:e6:fb:99
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 6f:f9:dc:2a:eb:af:13:fe:30:b7:c5:a9:2c:f4:9f:40:e1:21:51:cb
Fingerprint (sha256): 2b:7f:ae:52:78:26:bc:a0:dc:08:db:a8:64:e4:6b:16:33:a5:3f:b8:eb:f3:51:aa:bd:2a:f1:86:31:bd:f4:bb
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate afford.smcm.edu
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for afford.smcm.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
afford.smcm.edu
discover.smcm.edu
ready.smcm.edu
*.ready.smcm.edu
scholarships.smcm.edu
*.scholarships.smcm.edu
*.discover.smcm.edu
*.afford.smcm.edu
discover.smcm.edu
ready.smcm.edu
*.ready.smcm.edu
scholarships.smcm.edu
*.scholarships.smcm.edu
*.discover.smcm.edu
*.afford.smcm.edu
Other certificates including the domain name smcm.edu
(limited to 100 certificates)
ithelpdesk.endologix.com
clearpass2.smcm.edu
libanswers.smcm.edu
helpdesk.enableinjections.com
*.smcm.edu
*.smcm.edu
helpdesk.dpsgroupglobal.com
inside.smcm.edu
libguides.smcm.edu
apply.smcm.edu
*.smcm.edu
*.smcm.edu
ithelpdesk.endologix.com
openhouse.smcm.edu
support.unpri.org
afford.smcm.edu
ithelpdesk.endologix.com
*.smcm.edu
afford.smcm.edu
*.smcm.edu
*.smcm.edu
afford.smcm.edu
ithelpdesk.endologix.com
ithelpdesk.endologix.com
*.smcm.edu
blackboard.smcm.edu
seahawks.smcm.edu
helpdesk.dpsgroupglobal.com
*.smcm.edu
*.smcm.edu
webmail.smcm.edu
*.smcm.edu
helpdesk.dpsgroupglobal.com
ithelpdesk.endologix.com
support.smcm.edu
*.smcm.edu
*.smcm.edu
support.unpri.org
ithelpdesk.endologix.com
*.smcm.edu
info.nysid.edu
blackboard.smcm.edu
clearpass2.smcm.edu
support.unpri.org
*.smcm.edu
*.smcm.edu
*.smcm.edu
ithelpdesk.endologix.com
ithelpdesk.endologix.com
netradius.smcm.edu
*.smcm.edu
*.smcm.edu
www.smcm.edu
apply.smcm.edu
helpdesk.dpsgroupglobal.com
blackboard.smcm.edu
*.smcm.edu
*.smcm.edu
clearpass1.smcm.edu
*.smcm.edu
ithelpdesk.endologix.com
support.unpri.org
*.smcm.edu
*.smcm.edu
*.smcm.edu
inside.smcm.edu
libguides.smcm.edu
*.smcm.edu
WWW.SMCM.EDU
webmail.smcm.edu
*.smcm.edu
helpdesk.dpsgroupglobal.com
ithelpdesk.endologix.com
libguides.smcm.edu
*.smcm.edu
helpdesk.dpsgroupglobal.com
blackboard.smcm.edu
*.smcm.edu
*.smcm.edu
community.smcm.edu
*.smcm.edu
servicedesk.acdlabs.com
*.smcm.edu
*.smcm.edu
netradius2.smcm.edu
*.smcm.edu
apply.smcm.edu
ithelpdesk.endologix.com
ithelpdesk.endologix.com
*.smcm.edu
openhouse.smcm.edu
ithelpdesk.endologix.com
admitted.smcm.edu
ithelpdesk.endologix.com
*.smcm.edu
*.smcm.edu
support.unpri.org
inside.smcm.edu
servicedesk.smcm.edu
helpdesk.icebreaker.com
clearpass2.smcm.edu
libanswers.smcm.edu
helpdesk.enableinjections.com
*.smcm.edu
*.smcm.edu
helpdesk.dpsgroupglobal.com
inside.smcm.edu
libguides.smcm.edu
apply.smcm.edu
*.smcm.edu
*.smcm.edu
ithelpdesk.endologix.com
openhouse.smcm.edu
support.unpri.org
afford.smcm.edu
ithelpdesk.endologix.com
*.smcm.edu
afford.smcm.edu
*.smcm.edu
*.smcm.edu
afford.smcm.edu
ithelpdesk.endologix.com
ithelpdesk.endologix.com
*.smcm.edu
blackboard.smcm.edu
seahawks.smcm.edu
helpdesk.dpsgroupglobal.com
*.smcm.edu
*.smcm.edu
webmail.smcm.edu
*.smcm.edu
helpdesk.dpsgroupglobal.com
ithelpdesk.endologix.com
support.smcm.edu
*.smcm.edu
*.smcm.edu
support.unpri.org
ithelpdesk.endologix.com
*.smcm.edu
info.nysid.edu
blackboard.smcm.edu
clearpass2.smcm.edu
support.unpri.org
*.smcm.edu
*.smcm.edu
*.smcm.edu
ithelpdesk.endologix.com
ithelpdesk.endologix.com
netradius.smcm.edu
*.smcm.edu
*.smcm.edu
www.smcm.edu
apply.smcm.edu
helpdesk.dpsgroupglobal.com
blackboard.smcm.edu
*.smcm.edu
*.smcm.edu
clearpass1.smcm.edu
*.smcm.edu
ithelpdesk.endologix.com
support.unpri.org
*.smcm.edu
*.smcm.edu
*.smcm.edu
inside.smcm.edu
libguides.smcm.edu
*.smcm.edu
WWW.SMCM.EDU
webmail.smcm.edu
*.smcm.edu
helpdesk.dpsgroupglobal.com
ithelpdesk.endologix.com
libguides.smcm.edu
*.smcm.edu
helpdesk.dpsgroupglobal.com
blackboard.smcm.edu
*.smcm.edu
*.smcm.edu
community.smcm.edu
*.smcm.edu
servicedesk.acdlabs.com
*.smcm.edu
*.smcm.edu
netradius2.smcm.edu
*.smcm.edu
apply.smcm.edu
ithelpdesk.endologix.com
ithelpdesk.endologix.com
*.smcm.edu
openhouse.smcm.edu
ithelpdesk.endologix.com
admitted.smcm.edu
ithelpdesk.endologix.com
*.smcm.edu
*.smcm.edu
support.unpri.org
inside.smcm.edu
servicedesk.smcm.edu
helpdesk.icebreaker.com
Certificate
The complete raw certificate details for afford.smcm.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWTCCBUGgAwIBAgIQCBnSzuLR8+d1aNeYWlLqVzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDkwMzAwMDAwMFoXDTI0MTAwMTIzNTk1OVowGjEY MBYGA1UEAxMPYWZmb3JkLnNtY20uZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAkLusCl3cSTjXRNJOe5Cas/yMOZFV0i6VMVj8LqUVoxp38hQ7fXGG klJTiOBarhpqNrGyD0ATqf2itN0p+y88ipEIvdjjiRHD0NiMx+2dw6c5TOzAR/BA y4wVsLaoG5aQHMd/ItbxHvlc+uCr6IB1kKchzrY5wU5gBVHBTtYUIawzTqIU4s8J EAm61nt4Witnb96dz8BF4iSe6+U4HG8BpID4y6JNuJ3D0r54JO3qfCPpIFCePUdH lBRJHmBD0gZgvN8HTlfopKweTF4NTjQe4BThZbjWaidUnrGwIYXyq6ZgWvTrf01N hdFvUqiOzRHi8h7BygX72NaIaNeuD5DEQwIDAQABo4IDdzCCA3MwHwYDVR0jBBgw FoAUgbgOY4qJEhjl+js7UJWf5uWQE4UwHQYDVR0OBBYEFHhPXu/+nBxpmEWq6uOM c06B5vuZMIGpBgNVHREEgaEwgZ6CD2FmZm9yZC5zbWNtLmVkdYIRZGlzY292ZXIu c21jbS5lZHWCDnJlYWR5LnNtY20uZWR1ghAqLnJlYWR5LnNtY20uZWR1ghVzY2hv bGFyc2hpcHMuc21jbS5lZHWCFyouc2Nob2xhcnNoaXBzLnNtY20uZWR1ghMqLmRp c2NvdmVyLnNtY20uZWR1ghEqLmFmZm9yZC5zbWNtLmVkdTAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAu oCyGKmh0dHA6Ly9jcmwucjJtMDEuYW1hem9udHJ1c3QuY29tL3IybTAxLmNybDAT BgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGG IWh0dHA6Ly9vY3NwLnIybTAxLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYq aHR0cDovL2NydC5yMm0wMS5hbWF6b250cnVzdC5jb20vcjJtMDEuY2VyMAwGA1Ud EwEB/wQCMAAwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB1AO7N0GTV2xrOxVy3 nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABiloRiH0AAAQDAEYwRAIgPMfYkeCUhXXa TacGI4Y/hhZp+azY9XYL80IjreTbPYYCICRoinBw0UcZCSE1Nnps76f2cS1Zv3Dc Ig349OAFa00HAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGK WhGIgAAABAMASDBGAiEA/2q/DbZ+U+Ye9EPdEV8tw/asHul6PmkunNkdHCl1acUC IQCl/0s/2zisCw/x5M65d899kAQ4nOgtRfPyxoDIWGHFPwB1ANq2v2s/tbYin5vC u1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiloRiEkAAAQDAEYwRAIgZU/4pms4Kry3 0bqbi1IdPWxnAYITbHV/HInVw6mUMBYCIEE6InChAyEU5FIakSjXta7nhPUrweIN rjgDGihRKmt8MA0GCSqGSIb3DQEBCwUAA4IBAQDHN0cuxzCnLTcNxEumzd0EzADb Ew1X9gMMiepcQ711nn2m94A+yv3K4s3fMhz+df4pQPlgnkHemiAbPDHkyPy4Mbsl vsHNUpa87Vsd4xouMSRgrij4oV/Vk98SwZgFQ9vbMwoGJd5w7VEPqMjswRP2rNkt E5Q49mcqj7aFsXLBf3O67n4DW7xANmsFQheANU5IeQ2uB5+J4bhYGUBYtumiq1EG x2GTI++cWviJokZ8geF0CXOAjEPRRc6phm3nKEhGthx3Gq3TOkVkYpQ5Zzy2CHgr TRK9NzXf83zJId0hoZhOOIXTuEA4Omvf36PNJfc74OUZG2tCi/NcfMjJ0p/Q -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkLusCl3cSTjXRNJOe5Ca s/yMOZFV0i6VMVj8LqUVoxp38hQ7fXGGklJTiOBarhpqNrGyD0ATqf2itN0p+y88 ipEIvdjjiRHD0NiMx+2dw6c5TOzAR/BAy4wVsLaoG5aQHMd/ItbxHvlc+uCr6IB1 kKchzrY5wU5gBVHBTtYUIawzTqIU4s8JEAm61nt4Witnb96dz8BF4iSe6+U4HG8B pID4y6JNuJ3D0r54JO3qfCPpIFCePUdHlBRJHmBD0gZgvN8HTlfopKweTF4NTjQe 4BThZbjWaidUnrGwIYXyq6ZgWvTrf01NhdFvUqiOzRHi8h7BygX72NaIaNeuD5DE QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10767907084958371983823202412670413399 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'afford.smcm.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18270860443856510317405314864966701164512564112186027685319575724164662284606773028236129299464903123586911867252249377542619426626903784498210733870154771134041584563263700057455634206224065303895614148230599030872398347763395941512229776416001185786759111122182719698147568062397270501963734699197748352098813177463565836863934980100057145538921645200260335465243163112637217772042415345425057258133199431245678618978785796522394290037500357366190267998741721752573414859278900036580012446230303892223373745210902670133535273711021307499747000837753741399349680755052250247690194586139509770103315661822395080033347 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 784f5eeffe9c1c699845aaeae38c734e81e6fb99 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (161 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'afford.smcm.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'discover.smcm.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ready.smcm.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ready.smcm.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scholarships.smcm.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.scholarships.smcm.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.discover.smcm.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.afford.smcm.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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