preprod-sponsoring.royalcanin.fr
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 01:16:b0:09:da:5a:aa:64:f5:34:9e:ae:fb:d8:79:47 was issued on by Amazon.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=preprod-sponsoring.royalcanin.fr
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:16:b0:09:da:5a:aa:64:f5:34:9e:ae:fb:d8:79:47Serial Number (int): 1447029011393727532569089568480459079
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: d1:7e:5f:30:34:4b:a0:ba:43:12:eb:46:11:53:66:0c:03:09:df:c2
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 70:2e:34:08:f3:9d:88:8a:b1:99:e0:fb:74:d9:1b:00:1f:9e:f0:52
Fingerprint (sha256): 2d:e3:28:a7:cf:3c:c0:58:ec:ad:0e:5a:d5:b4:cd:5c:e4:62:ce:dc:c1:86:6a:73:7a:f2:f2:a0:57:a9:93:69
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate preprod-sponsoring.royalcanin.fr
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for preprod-sponsoring.royalcanin.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
preprod-sponsoring.royalcanin.fr
preprod-adoption.royalcanin.com
preprod.wikichien.fr
preprod-content.royalcanin.fr
preprod-mon.royalcanin.fr
preprod.achetermonchat.com
preprod.achetermonchien.com
preprod.wikichat.fr
preprod-adoption.royalcanin.com
preprod.wikichien.fr
preprod-content.royalcanin.fr
preprod-mon.royalcanin.fr
preprod.achetermonchat.com
preprod.achetermonchien.com
preprod.wikichat.fr
Other certificates including the domain name royalcanin.fr
(limited to 100 certificates)
incapsula.com
*.royalcanin.dk
aws-cf-rd18.mars-inc.com
*.royalcanin.fr
*.royalcanin.dk
*.royalcanin.fr
www.royalcanin.fr
lambda-redirect6.mars-inc.com
aws-cf-rd18.mars-inc.com
lambda-redirect6.mars-inc.com
operation.royalcanin.fr
nsprogress.royalcanin.fr
avent.royalcanin.fr
aws-cf-rd18.mars-inc.com
www.recommandation.royalcanin.fr
vetfollowup.royalcanin.com.au
shop.royalcanin.fr
csxd-02.contentsquare.net
aws-cf-rd24.mars-inc.com
lambda-redirect6.mars-inc.com
aws-cf-rd18.mars-inc.com
*.royalcanin.fr
royalcanin-com-redirect.mars-inc.com
incapsula.com
aws-cf-rd23.mars-inc.com
incapsula.com
jeu.royalcanin.fr
aws-cf-rd23.mars-inc.com
avent.royalcanin.fr
incapsula.com
aws-cf-rd18.mars-inc.com
csxd-02.contentsquare.net
*.royalcanin.fr
aws-cf-rd18.mars-inc.com
nsprogress.royalcanin.fr
preprod-sponsoring.royalcanin.fr
aws-cf-rd23.mars-inc.com
vetservices.royal-canin.at
vetservices.royalcanin.be
monvetoetmoi.royalcanin.fr
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
csxd-02.contentsquare.net
mon.royalcanin.fr
aws-cf-rd18.mars-inc.com
offres.royalcanin.fr
lambda-redirect6.mars-inc.com
incapsula.com
vetservices.royal-canin.at
aws-cf-rd24.mars-inc.com
*.mars.com
shop.royalcanin.fr
*.royalcanin.dk
futurexcellenceveterinaire.royalcanin.fr
*.mars.com
vetservices.royalcanin.be
incapsula.com
lambda-redirect6.mars-inc.com
csxd-02.contentsquare.net
aws-cf-rd18.mars-inc.com
aws-cf-rd23.mars-inc.com
*.royalcanin.fr
aws-cf-rd24.mars-inc.com
operation.royalcanin.fr
lambda-redirect6.mars-inc.com
aws-cf-rd23.mars-inc.com
nsprogress.royalcanin.fr
operation.royalcanin.fr
monvetoetmoi.royalcanin.fr
adminvfu.royalcanin.com
aws-cf-www-royalcanin-com-rd01.mars-inc.com
aws-cf-rd23.mars-inc.com
aws-cf-rd23.mars-inc.com
dev.shop.royalcanin.fr
aws-cf-rd24.mars-inc.com
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
avent.royalcanin.fr
aws-cf-rd18.mars-inc.com
*.mars.com
aws-cf-rd18.mars-inc.com
adminvfu.royalcanin.com
shop.royalcanin.fr
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
shop.royalcanin.fr
vetservices.royal-canin.at
csxd-02.contentsquare.net
aws-cf-rd18.mars-inc.com
offres.royalcanin.fr
aws-cf-rd23.mars-inc.com
csxd-02.contentsquare.net
incapsula.com
aws-cf-rd23.mars-inc.com
nsprogress.royalcanin.fr
www.recommandation.royalcanin.fr
www.recommandation.royalcanin.fr
aws-cf-rd24.mars-inc.com
aws-cf-rd18.mars-inc.com
*.royalcanin.dk
aws-cf-rd18.mars-inc.com
*.royalcanin.fr
*.royalcanin.dk
*.royalcanin.fr
www.royalcanin.fr
lambda-redirect6.mars-inc.com
aws-cf-rd18.mars-inc.com
lambda-redirect6.mars-inc.com
operation.royalcanin.fr
nsprogress.royalcanin.fr
avent.royalcanin.fr
aws-cf-rd18.mars-inc.com
www.recommandation.royalcanin.fr
vetfollowup.royalcanin.com.au
shop.royalcanin.fr
csxd-02.contentsquare.net
aws-cf-rd24.mars-inc.com
lambda-redirect6.mars-inc.com
aws-cf-rd18.mars-inc.com
*.royalcanin.fr
royalcanin-com-redirect.mars-inc.com
incapsula.com
aws-cf-rd23.mars-inc.com
incapsula.com
jeu.royalcanin.fr
aws-cf-rd23.mars-inc.com
avent.royalcanin.fr
incapsula.com
aws-cf-rd18.mars-inc.com
csxd-02.contentsquare.net
*.royalcanin.fr
aws-cf-rd18.mars-inc.com
nsprogress.royalcanin.fr
preprod-sponsoring.royalcanin.fr
aws-cf-rd23.mars-inc.com
vetservices.royal-canin.at
vetservices.royalcanin.be
monvetoetmoi.royalcanin.fr
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
csxd-02.contentsquare.net
mon.royalcanin.fr
aws-cf-rd18.mars-inc.com
offres.royalcanin.fr
lambda-redirect6.mars-inc.com
incapsula.com
vetservices.royal-canin.at
aws-cf-rd24.mars-inc.com
*.mars.com
shop.royalcanin.fr
*.royalcanin.dk
futurexcellenceveterinaire.royalcanin.fr
*.mars.com
vetservices.royalcanin.be
incapsula.com
lambda-redirect6.mars-inc.com
csxd-02.contentsquare.net
aws-cf-rd18.mars-inc.com
aws-cf-rd23.mars-inc.com
*.royalcanin.fr
aws-cf-rd24.mars-inc.com
operation.royalcanin.fr
lambda-redirect6.mars-inc.com
aws-cf-rd23.mars-inc.com
nsprogress.royalcanin.fr
operation.royalcanin.fr
monvetoetmoi.royalcanin.fr
adminvfu.royalcanin.com
aws-cf-www-royalcanin-com-rd01.mars-inc.com
aws-cf-rd23.mars-inc.com
aws-cf-rd23.mars-inc.com
dev.shop.royalcanin.fr
aws-cf-rd24.mars-inc.com
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
avent.royalcanin.fr
aws-cf-rd18.mars-inc.com
*.mars.com
aws-cf-rd18.mars-inc.com
adminvfu.royalcanin.com
shop.royalcanin.fr
aws-cf-rd18.mars-inc.com
aws-cf-rd18.mars-inc.com
shop.royalcanin.fr
vetservices.royal-canin.at
csxd-02.contentsquare.net
aws-cf-rd18.mars-inc.com
offres.royalcanin.fr
aws-cf-rd23.mars-inc.com
csxd-02.contentsquare.net
incapsula.com
aws-cf-rd23.mars-inc.com
nsprogress.royalcanin.fr
www.recommandation.royalcanin.fr
www.recommandation.royalcanin.fr
aws-cf-rd24.mars-inc.com
aws-cf-rd18.mars-inc.com
Certificate
The complete raw certificate details for preprod-sponsoring.royalcanin.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGrTCCBZWgAwIBAgIQARawCdpaqmT1NJ6u+9h5RzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDIxNTAwMDAwMFoXDTI1MDMxNTIzNTk1OVowKzEp MCcGA1UEAxMgcHJlcHJvZC1zcG9uc29yaW5nLnJveWFsY2FuaW4uZnIwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD9fs2MklrSTXpe28Stl1sgj87sIWmq QYBNN8n/rY6A6R8dN6ATwynfg0LZOVCsYWRYSOCnALjYRivdRBCodds7v/N6APsF SWE6UVLf13iF1Wick7LpaJ4pX9ASma34D7TV19Afs+0fHdhayQ4eDkX9pusrj4MM KruCpNSoo3AGz0QZ74l/ftmJD36xdr3mKEBEYJVUVNC8+7cDhLY2jWlQkX0qjhdV H/RGJ+CB1H/VDaFrK1HhDb4nquxFswccmbZIU9cEBymTAWlS0LZ6suxO0EfBBlCJ dkHRc0zVARD+QUbAs4+V1kovL+Ux+/BP2+Of/gHHA2YbhJDKvbNO/8CpAgMBAAGj ggO6MIIDtjAfBgNVHSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4E FgQU0X5fMDRLoLpDEutGEVNmDAMJ38IwgewGA1UdEQSB5DCB4YIgcHJlcHJvZC1z cG9uc29yaW5nLnJveWFsY2FuaW4uZnKCH3ByZXByb2QtYWRvcHRpb24ucm95YWxj YW5pbi5jb22CFHByZXByb2Qud2lraWNoaWVuLmZygh1wcmVwcm9kLWNvbnRlbnQu cm95YWxjYW5pbi5mcoIZcHJlcHJvZC1tb24ucm95YWxjYW5pbi5mcoIacHJlcHJv ZC5hY2hldGVybW9uY2hhdC5jb22CG3ByZXByb2QuYWNoZXRlcm1vbmNoaWVuLmNv bYITcHJlcHJvZC53aWtpY2hhdC5mcjATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1Ud HwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3Iy bTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3Nw LnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5y Mm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwggF9 BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB1AM8RVu7VLnyv84db2Wkum+kacWdKsBfs rAHSW3fOzDsIAAABja3eJa4AAAQDAEYwRAIgBr8Rawl16OZnlAwFQ1eaUksDGM4Z HysGzTJd6zVHrKkCIEXHkPpai2IKqJLY8ikagohQmqAY4sjsekS70cOxOZBVAHYA fVkeEuF4KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGNrd4ltAAABAMARzBF AiEAge4siBD88puV8xU+jU6zZPs1/XjOyk0N/RT34788Sd8CIHy8wLNXnGPG/EOi iv4EzzKZf4Dkx4k8JzRfy8FsoCerAHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6 hzId/R43jlAAAAGNrd4l3QAABAMARzBFAiB8ibvqrt0FWZD0DPo1hlYbsJX0abeG dwqoTftgtDtBCAIhAMV41mPkHs7uPe7S2hb/XFN3Mit+djYolpgZNoSo6IXlMA0G CSqGSIb3DQEBCwUAA4IBAQBjbhlJ8AhaYmGNSJ3dWAuTitn5/tlWvxJbm4V22KEB yP2IwKXd4FX301s21faGTdKdeCmISx60c2EXIB33+ub1u8AflLERw/itg507AurG IVvxCYguxzFZoWte3tq2MxFOPI4dDRIrR7NpQmuwHf4YiwIUSkwGtHaw5rm264re v3VaJQAx9ZZl6fxkFppmaDXRv10eHVmIS8AzovwI4YD3WbEDmZhUEd/4fbIslMEL khp5GVa+XbjK8BIo+5OgTrF99/FvmT1CUz8E7LeWleOzkyJJ2F1EgoVy1m7RFxfU PXyVI2dO7FIiTDrls7KJhS7HfDKQsnV5frAVhNo/O43D -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/X7NjJJa0k16XtvErZdb II/O7CFpqkGATTfJ/62OgOkfHTegE8Mp34NC2TlQrGFkWEjgpwC42EYr3UQQqHXb O7/zegD7BUlhOlFS39d4hdVonJOy6WieKV/QEpmt+A+01dfQH7PtHx3YWskOHg5F /abrK4+DDCq7gqTUqKNwBs9EGe+Jf37ZiQ9+sXa95ihARGCVVFTQvPu3A4S2No1p UJF9Ko4XVR/0RifggdR/1Q2haytR4Q2+J6rsRbMHHJm2SFPXBAcpkwFpUtC2erLs TtBHwQZQiXZB0XNM1QEQ/kFGwLOPldZKLy/lMfvwT9vjn/4BxwNmG4SQyr2zTv/A qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1447029011393727532569089568480459079 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'preprod-sponsoring.royalcanin.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 32000820009806251980333516465547310342462156130236292454957893398304636300844457200227426471657676843919842042066599179364569728182339172853812051288115332823999187309768932464276959835828812691227445278649760058919403000168153883367912991096963353051316363689750893384402221072842032047094639429932591625909226577595106764116076332528082020218530614973065792628481835252127338735962354704589868986519149396505689768342634845443038828479615852270257983425559411286385562156594618463844766061129438190178844684104730883936993947874319732366264513984308691529507380946095668273737312634763497703741947696959141095391401 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d17e5f30344ba0ba4312eb461153660c0309dfc2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (228 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod-sponsoring.royalcanin.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod-adoption.royalcanin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.wikichien.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod-content.royalcanin.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod-mon.royalcanin.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.achetermonchat.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.achetermonchien.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.wikichat.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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