marthastewart.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 0a:68:03:d9:cd:b2:c5:73:c0:c0:32:1d:01:35:8e:8a was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=marthastewart.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:68:03:d9:cd:b2:c5:73:c0:c0:32:1d:01:35:8e:8aSerial Number (int): 13832356934537405603506765091183103626
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 59:1c:d2:14:34:e1:c9:39:51:20:36:73:b9:d4:7a:03:0e:83:07:55
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 35:cc:18:90:87:e5:f1:17:fb:e0:5b:b0:fe:94:5b:fd:8c:eb:fd:fb
Fingerprint (sha256): 2f:39:25:c7:7a:69:af:d5:74:d7:d2:2f:21:6b:35:a3:ef:ea:fd:93:04:0f:a0:ef:c5:70:fe:e8:f6:4c:3c:a6
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate marthastewart.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for marthastewart.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
marthastewart.com
marthastewartweddings.com
*.marthastewartweddings.com
*.marthastewart.com
marthastewartweddings.com
*.marthastewartweddings.com
*.marthastewart.com
Other certificates including the domain name marthastewart.com
(limited to 100 certificates)
payments.meredith.com
qa4.ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
securemetrics.marthastewart.com
accounts.bhg.com
*.secure.meredith.com
secure.meredith.com
ssl.1.damoh.marthastewart.com
my.meredith.com
sli.dailypaws.com
sli.dailypaws.com
a-ue1.mydomaine.com
payments.meredith.com
gigya.marthastewart.com
www.meredith.com
images.marthastewart.com
qa4.ugc.marthastewart.com
specialoffers.meredith.com
qa3.my.marthastewart.com
resolute.digital
globalrunningday.org
images.marthastewart.com
sli.dailypaws.com
*.agriculture.com
dev.secure.meredith.com
ssl.1.damoh.marthastewart.com
sli.dailypaws.com
ssl.1.damoh.marthastewart.com
sli.dailypaws.com
secure.meredith.com
accounts.bhg.com
accounts.bhg.com
www.timeinclistrental.com
mywedding.com
secure.meredith.com
mywedding.com
qa2.ugc.marthastewart.com
www.meredith.com
a-uw2.mydomaine.com
mdp.api.meredith.com
secure.meredith.com
accounts.bhg.com
www.timeinclistrental.com
marthastewart.com
a-ue1.mydomaine.com
qa4.ugc.marthastewart.com
ugc.marthastewart.com
secure.meredith.com
marthastewart.com
globalrunningday.org
test.payments.meredith.com
secure.meredith.com
sli.dailypaws.com
a-ue1.mydomaine.com
resolute.digital
qa3.ugc.marthastewart.com
ugc.marthastewart.com
sli.dailypaws.com
test.secure.meredith.com
ssl.1.damoh.marthastewart.com
qa3.ugc.marthastewart.com
marthastewart.com
ugc.marthastewart.com
images.marthastewart.com
www.timeinclistrental.com
links.allrecipes.com
sli.dailypaws.com
win.bhg.com
cr-iframe.magazine.store
secure.meredith.com
payments.meredith.com
*.marthastewart.com
*.secure.meredith.com
accounts.marthastewart.com
win.bhg.com
gigya.marthastewart.com
www.timeinclistrental.com
secure.meredith.com
ssl.1.damoh.marthastewart.com
marthastewart.com
www.meredith.com
qa3.ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
cr-iframe.magazine.store
api.meredith.com
ssl.1.damoh.marthastewart.com
payments.meredith.com
qa.my.marthastewart.com
ugc.marthastewart.com
qa2.ugc.marthastewart.com
*.secure.meredith.com
ssl.1.damoh.marthastewart.com
metrics.marthastewart.com
secure.meredith.com
ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
accounts.bhg.com
www.marthastewart.com
my.meredith.com
test.payments.meredith.com
qa4.ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
securemetrics.marthastewart.com
accounts.bhg.com
*.secure.meredith.com
secure.meredith.com
ssl.1.damoh.marthastewart.com
my.meredith.com
sli.dailypaws.com
sli.dailypaws.com
a-ue1.mydomaine.com
payments.meredith.com
gigya.marthastewart.com
www.meredith.com
images.marthastewart.com
qa4.ugc.marthastewart.com
specialoffers.meredith.com
qa3.my.marthastewart.com
resolute.digital
globalrunningday.org
images.marthastewart.com
sli.dailypaws.com
*.agriculture.com
dev.secure.meredith.com
ssl.1.damoh.marthastewart.com
sli.dailypaws.com
ssl.1.damoh.marthastewart.com
sli.dailypaws.com
secure.meredith.com
accounts.bhg.com
accounts.bhg.com
www.timeinclistrental.com
mywedding.com
secure.meredith.com
mywedding.com
qa2.ugc.marthastewart.com
www.meredith.com
a-uw2.mydomaine.com
mdp.api.meredith.com
secure.meredith.com
accounts.bhg.com
www.timeinclistrental.com
marthastewart.com
a-ue1.mydomaine.com
qa4.ugc.marthastewart.com
ugc.marthastewart.com
secure.meredith.com
marthastewart.com
globalrunningday.org
test.payments.meredith.com
secure.meredith.com
sli.dailypaws.com
a-ue1.mydomaine.com
resolute.digital
qa3.ugc.marthastewart.com
ugc.marthastewart.com
sli.dailypaws.com
test.secure.meredith.com
ssl.1.damoh.marthastewart.com
qa3.ugc.marthastewart.com
marthastewart.com
ugc.marthastewart.com
images.marthastewart.com
www.timeinclistrental.com
links.allrecipes.com
sli.dailypaws.com
win.bhg.com
cr-iframe.magazine.store
secure.meredith.com
payments.meredith.com
*.marthastewart.com
*.secure.meredith.com
accounts.marthastewart.com
win.bhg.com
gigya.marthastewart.com
www.timeinclistrental.com
secure.meredith.com
ssl.1.damoh.marthastewart.com
marthastewart.com
www.meredith.com
qa3.ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
cr-iframe.magazine.store
api.meredith.com
ssl.1.damoh.marthastewart.com
payments.meredith.com
qa.my.marthastewart.com
ugc.marthastewart.com
qa2.ugc.marthastewart.com
*.secure.meredith.com
ssl.1.damoh.marthastewart.com
metrics.marthastewart.com
secure.meredith.com
ugc.marthastewart.com
ssl.1.damoh.marthastewart.com
accounts.bhg.com
www.marthastewart.com
my.meredith.com
test.payments.meredith.com
Certificate
The complete raw certificate details for marthastewart.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGzCCBQOgAwIBAgIQCmgD2c2yxXPAwDIdATWOijANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDUwMjAwMDAwMFoXDTI0MDUzMDIzNTk1OVowHDEa MBgGA1UEAxMRbWFydGhhc3Rld2FydC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCijoq8QpsNS9Tee4Itymj4meVmPjyEmW1m86803eOhXY81bySP 6arCqzIV2/VaImvQusaFkpFouIN2FX+lrOfL5bcLtVYs+ALY2w6Fi7FDXhzNPJhX Ou333XPtDoZrVd61IhzXT1FXDhroqLr3f2RtfMv7C4yJo7sMLCOP+8hUfNLT2Hz7 N5s4EYtVEB0emZLiV6C5LBt7aLST+7UirBVLb3H2xwCpLQNkMJadKpaSvFhZjxvY hBRVtKp9jFasRsyR1/rmSVZdgTqG5SyRUEeWcWd+/AFOcoDSFnt1pnhNlRQdazZo GkZboYAgIarA0PSQ5/taXlJs3JwhUhSfTqFjAgMBAAGjggM3MIIDMzAfBgNVHSME GDAWgBSBuA5jiokSGOX6OztQlZ/m5ZAThTAdBgNVHQ4EFgQUWRzSFDThyTlRIDZz udR6Aw6DB1UwaQYDVR0RBGIwYIIRbWFydGhhc3Rld2FydC5jb22CGW1hcnRoYXN0 ZXdhcnR3ZWRkaW5ncy5jb22CGyoubWFydGhhc3Rld2FydHdlZGRpbmdzLmNvbYIT Ki5tYXJ0aGFzdGV3YXJ0LmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwu cjJtMDEuYW1hem9udHJ1c3QuY29tL3IybTAxLmNybDATBgNVHSAEDDAKMAgGBmeB DAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIy bTAxLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0w MS5hbWF6b250cnVzdC5jb20vcjJtMDEuY2VyMAwGA1UdEwEB/wQCMAAwggF+Bgor BgEEAdZ5AgQCBIIBbgSCAWoBaAB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FI WUZxH7WbAAABh9qTQxUAAAQDAEcwRQIgPsuoTqJXTOqAB4fs9CsvoLuMHcta70zR okHyf8D7wA8CIQCockmOlKC7P+6H7nkEuZnCXpz4dtiFSXRKNH1Rjl9uYwB1AHPZ nokbTJZ4oCB9R53mssYc0FFecRkqjGuAEHrBd3K1AAABh9qTQ2cAAAQDAEYwRAIg TC7hGrMr2TQlsk4gkNc/qApp9FRx+m7/9bQXUlmHV0sCIH/5xc6XYAry/waYZEXv N7G9ebf0maUJJwwouUcEsF0YAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/ qznYhHMAAAGH2pNDNwAABAMASDBGAiEA5zvKo+ONvV1619MLvk0ScxOTdSO6ykyp Ig5wUuYCM8ICIQDkE1EqFyt9OwLRk9qgwkQB5PZuGRHL2gD4/CQ7/MqE3zANBgkq hkiG9w0BAQsFAAOCAQEApLORLD6HMiMAN2acyCEiQecdsRgHkmcxGO6qI8914DHZ S1tH8+QiN3Co1BKCwzfTA6SBtRu0g2kvFquaFZjytFdOkQOKuYgSrxjQm9ZLmw42 QxllqGy3LRZcB99FKeG26h4fMXG3nh94wzpRVim+/s23HmWY0GMtRrJ2djNQ2SNe DxlMMoabVSju1Ui/vIVfGMt/OtLOp0SGdjVWkTpoxU7vcyt/NKP3s50nFyuj2J7y Dd5/wpYVlMODebFHtAMoFzVgi+YndqiwG0YLg1n4YRL3xk1L/M6wRy2yKcVxAd4U BWdRJgryKJcbseb3vc/orde4MCfW5PCNwm8CIUoeZA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoo6KvEKbDUvU3nuCLcpo +JnlZj48hJltZvOvNN3joV2PNW8kj+mqwqsyFdv1WiJr0LrGhZKRaLiDdhV/pazn y+W3C7VWLPgC2NsOhYuxQ14czTyYVzrt991z7Q6Ga1XetSIc109RVw4a6Ki6939k bXzL+wuMiaO7DCwjj/vIVHzS09h8+zebOBGLVRAdHpmS4leguSwbe2i0k/u1IqwV S29x9scAqS0DZDCWnSqWkrxYWY8b2IQUVbSqfYxWrEbMkdf65klWXYE6huUskVBH lnFnfvwBTnKA0hZ7daZ4TZUUHWs2aBpGW6GAICGqwND0kOf7Wl5SbNycIVIUn06h YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13832356934537405603506765091183103626 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-30 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'marthastewart.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20520895452456291756108987963059912604035956520255818375410999333282727129617806520672387546902082717627868432928478113232273838403287658960593671534191335245787558242463811024004180606046905337591165429636366544234221443927435078360022083672798309842159627025506232840376132971740446968636384589856201149626777442151160238001820624510946030387241992237978419643259302829531417737710467664634714298743143814594146888863500079167531411286558557010462589104058623379692133446354705301811337324225942808176758173880762160299704434578309463322605102344567432395648720944857611553668767577871729042835648056556717568074083 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 591cd21434e1c93951203673b9d47a030e830755 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marthastewart.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marthastewartweddings.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.marthastewartweddings.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.marthastewart.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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