alstage.automat-it.io
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 07:b1:cd:43:57:1a:e6:82:24:0f:8d:5f:09:05:9d:ee was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=alstage.automat-it.io
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:b1:cd:43:57:1a:e6:82:24:0f:8d:5f:09:05:9d:eeSerial Number (int): 10227795743668429119457317113760685550
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 74:53:e6:0d:f2:54:90:21:d2:84:53:d9:90:0f:53:27:3b:c9:91:1c
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 6e:cd:03:19:a2:a7:90:cd:06:93:66:be:77:42:28:73:59:49:ef:87
Fingerprint (sha256): 30:f4:58:72:45:f8:43:19:b0:01:c9:08:03:1a:ab:43:06:93:78:c2:3f:8e:0a:53:e7:0c:1d:18:75:8a:67:33
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate alstage.automat-it.io
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for alstage.automat-it.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alstage.automat-it.io
*.alstage.automat-it.io
*.alstage.automat-it.io
Other certificates including the domain name automat-it.io
(limited to 100 certificates)
*.dev-sleep.itamar-online.automat-it.io
projectteam.oximio.com
returns.globalamerican.us
niwp.automat-it.io
partners.waveconnect.co
maxim.automat-it.io
automat-it.io
assistenza.3di.it
ifragasatt.support.automat-it.io
desk.mm-ict.com
aflac.automat-it.io
support.flylumo.co.uk
support.partofthejob.nl
eaas-docker.automat-it.io
automat-it.io
gitlab.iqvia-poc.automat-it.io
ifragasatt.support.automat-it.io
desk.ascent-makler.de
career-harmony.automat-it.io
*.xrhealth.automat-it.io
support.gmlabs.net
support.fr.fullwoodpacko.com
eaas-docker.automat-it.io
support.oddly.digital
automat-it.io
automat-it.io
assistenza.3di.it
automat-it.io
aldev.automat-it.io
alstage.automat-it.io
help.stashist.io
yardim.aidlinebilisim.com.tr
desk.ascent-makler.de
partners.waveconnect.co
gitlab.iqvia-poc.automat-it.io
aldev2.automat-it.io
support.creativesapp.com
stg-desk.amasty.net
customerportal.alphatronmarine.com
www.automat-it.io
propertymaintenance.ssphealth.com
support.baumann-sideloader.com
centrodeayuda.mynews.es
aivf-dev.automat-it.io
www.tcore.net
servicedesk.unisys.nl
www.automat-it.io
propertymaintenance.ssphealth.com
gitlab.medical-poc.automat-it.io
*.jmcl.automat-it.io
*.dev-sleep.itamar-online.automat-it.io
ait-eaas-vpn.automat-it.io
support.split-apartments-rooms.com
automat-it.io
auth.prod1.terraform-ci.automat-it.io
openvpn-statistic.automat-it.io
automat-it.io
att-test.automat-it.io
reklama.24ps.pl
*.dev-sleep.itamar-online.automat-it.io
dev-sleep.itamar-online.automat-it.io
partners.waveconnect.co
propertymaintenance.ssphealth.com
niwp.automat-it.io
desk.ascent-makler.de
ezbob.automat-it.io
aflac.automat-it.io
niwp-stg.automat-it.io
q8trade.automat-it.io
help.freex.shop
*.fyllo.automat-it.io
mykhailo.automat-it.io
support.fr.fullwoodpacko.com
automat-it.io
desk.ascent-makler.de
support.zynctech.co.uk
*.dev-sleep.itamar-online.automat-it.io
aldev2.automat-it.io
*.cobwebsrnd.automat-it.io
automat-it.io
fyllo.automat-it.io
support.flylumo.co.uk
q8trade.automat-it.io
ifragasatt.support.automat-it.io
*.raycatch.automat-it.io
support.flylumo.co.uk
support.felho.net
*.dev-sleep.itamar-online.automat-it.io
albatross.automat-it.io
support.earthhavenhealthcare.com
mykhailo.automat-it.io
proactive.phygitalbcn.com
supporto.sportconnect.it
*.dev-sleep.itamar-online.automat-it.io
partners.waveconnect.co
assistenza.3di.it
supporto.sportconnect.it
support.split-apartments-rooms.com
automat-it.io
*.xrhealth.automat-it.io
projectteam.oximio.com
returns.globalamerican.us
niwp.automat-it.io
partners.waveconnect.co
maxim.automat-it.io
automat-it.io
assistenza.3di.it
ifragasatt.support.automat-it.io
desk.mm-ict.com
aflac.automat-it.io
support.flylumo.co.uk
support.partofthejob.nl
eaas-docker.automat-it.io
automat-it.io
gitlab.iqvia-poc.automat-it.io
ifragasatt.support.automat-it.io
desk.ascent-makler.de
career-harmony.automat-it.io
*.xrhealth.automat-it.io
support.gmlabs.net
support.fr.fullwoodpacko.com
eaas-docker.automat-it.io
support.oddly.digital
automat-it.io
automat-it.io
assistenza.3di.it
automat-it.io
aldev.automat-it.io
alstage.automat-it.io
help.stashist.io
yardim.aidlinebilisim.com.tr
desk.ascent-makler.de
partners.waveconnect.co
gitlab.iqvia-poc.automat-it.io
aldev2.automat-it.io
support.creativesapp.com
stg-desk.amasty.net
customerportal.alphatronmarine.com
www.automat-it.io
propertymaintenance.ssphealth.com
support.baumann-sideloader.com
centrodeayuda.mynews.es
aivf-dev.automat-it.io
www.tcore.net
servicedesk.unisys.nl
www.automat-it.io
propertymaintenance.ssphealth.com
gitlab.medical-poc.automat-it.io
*.jmcl.automat-it.io
*.dev-sleep.itamar-online.automat-it.io
ait-eaas-vpn.automat-it.io
support.split-apartments-rooms.com
automat-it.io
auth.prod1.terraform-ci.automat-it.io
openvpn-statistic.automat-it.io
automat-it.io
att-test.automat-it.io
reklama.24ps.pl
*.dev-sleep.itamar-online.automat-it.io
dev-sleep.itamar-online.automat-it.io
partners.waveconnect.co
propertymaintenance.ssphealth.com
niwp.automat-it.io
desk.ascent-makler.de
ezbob.automat-it.io
aflac.automat-it.io
niwp-stg.automat-it.io
q8trade.automat-it.io
help.freex.shop
*.fyllo.automat-it.io
mykhailo.automat-it.io
support.fr.fullwoodpacko.com
automat-it.io
desk.ascent-makler.de
support.zynctech.co.uk
*.dev-sleep.itamar-online.automat-it.io
aldev2.automat-it.io
*.cobwebsrnd.automat-it.io
automat-it.io
fyllo.automat-it.io
support.flylumo.co.uk
q8trade.automat-it.io
ifragasatt.support.automat-it.io
*.raycatch.automat-it.io
support.flylumo.co.uk
support.felho.net
*.dev-sleep.itamar-online.automat-it.io
albatross.automat-it.io
support.earthhavenhealthcare.com
mykhailo.automat-it.io
proactive.phygitalbcn.com
supporto.sportconnect.it
*.dev-sleep.itamar-online.automat-it.io
partners.waveconnect.co
assistenza.3di.it
supporto.sportconnect.it
support.split-apartments-rooms.com
automat-it.io
*.xrhealth.automat-it.io
Certificate
The complete raw certificate details for alstage.automat-it.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8DCCBNigAwIBAgIQB7HNQ1ca5oIkD41fCQWd7jANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDUxNTAwMDAwMFoXDTI1MDYxNDIzNTk1OVowIDEe MBwGA1UEAxMVYWxzdGFnZS5hdXRvbWF0LWl0LmlvMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAuMUlxEu5Z26E5tjSm4Qz48sk/vzdowE43sKPidxR3glG n7svI2uZ3RrlEe7RovTobPyZ9Qk7fJOpqwPrI3xfFX1fLnb6qPEIXh7EOkIn805x GxJ3cCY3oNggWjQiE4jSZJfnNf3bV/Q7aUBvbhVwpEAhPkTctvoLqjcYKR3ojA0A tYOt+jZrYWlcFkPr1Ht8AYa9Aiybje7y7mbi+e2XJ+gAxglcATkUurYd9sZEA3af ygHh0mhw1yJZt/NUmtpiJMazZ4e5GeEnZcX0KABtSYdkdh2uIk9Hxox7S6Ql2KxT XV/mQPCc31UADtVDHbD7wyy3rJ+sl/3oiOxhWnDFEQIDAQABo4IDCDCCAwQwHwYD VR0jBBgwFoAUVdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFHRT5g3yVJAh 0oRT2ZAPUyc7yZEcMDkGA1UdEQQyMDCCFWFsc3RhZ2UuYXV0b21hdC1pdC5pb4IX Ki5hbHN0YWdlLmF1dG9tYXQtaXQuaW8wEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNV HR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRydXN0LmNvbS9y Mm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2Nz cC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQu cjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMBAf8EAjAAMIIB fwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdwBOdaMnXJoQwzhbbNTfP1LrHfDgjhuN acCx+mSxYpo53wAAAY96aqYQAAAEAwBIMEYCIQDQ/A9s/zoMBuuGN1d/5bfgZjkq z/sOBP2PcO6tA88lzAIhAIFViaVwbe3tCYw77P4MkDVvy2j0QR6MjIbl6xBf4u6a AHUAfVkeEuF4KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGPemqlwwAABAMA RjBEAiAc3vw+4wLNvVAfqk3e2/lyw90HKi6YbBmHstCDHZbnAgIgK1IAlwNmPtqb lIc9lVjbLTK14EomvgJt+hYJGSLEz6QAdwDm0jFjQHeMwRBBBtdxuc7B0kD2loSG +7qHMh39HjeOUAAAAY96aqXbAAAEAwBIMEYCIQCMUYHcYOgRDnATV7j/ltfT8R0A TMU/uajW7r9b5O5qPAIhALj6lFc/yUi8gZlDVC+Qg+sypAjl8Rjt9vJrnJ0npsf9 MA0GCSqGSIb3DQEBCwUAA4IBAQCelVn0fFLNDxclzL1ZJzxLNz78Un1oHkxVXjvr L1RT4GpzKkH4cdFcSeFREBZ/X2nmFgxCUs1H2H4lcXu9DEpHsx0YEEDUSbrv0VCf kJv190F2Kkg/YzTbcbV7vAVeE4wQoYNm+wdkPSF6M68delqDbau1wwvM6tZf22KI v8hCTEbYxjYGEUGJ65qSth8Ry2i3qKXSKys/TbCbCDt1MUnHKcijoqh7KGTyfqu9 w2F17PJTpoo0BI2vVs7hkH2K8WfNOWirhazQlrer5DgeElYcuLhJVYiDPlDTvQnz dZ5i9qPpn+z2cT8TSS2KEGXu195uxszfnNwPYVk0f4+jx6Lj -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMUlxEu5Z26E5tjSm4Qz 48sk/vzdowE43sKPidxR3glGn7svI2uZ3RrlEe7RovTobPyZ9Qk7fJOpqwPrI3xf FX1fLnb6qPEIXh7EOkIn805xGxJ3cCY3oNggWjQiE4jSZJfnNf3bV/Q7aUBvbhVw pEAhPkTctvoLqjcYKR3ojA0AtYOt+jZrYWlcFkPr1Ht8AYa9Aiybje7y7mbi+e2X J+gAxglcATkUurYd9sZEA3afygHh0mhw1yJZt/NUmtpiJMazZ4e5GeEnZcX0KABt SYdkdh2uIk9Hxox7S6Ql2KxTXV/mQPCc31UADtVDHbD7wyy3rJ+sl/3oiOxhWnDF EQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10227795743668429119457317113760685550 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'alstage.automat-it.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23325065182394886280444642377494923298562392458125331323383510699713077825055814275516045619673667507207318087626837518456224454372614745113965561908486860992489618751594710585335330497936827092862169818266492315990058690003626476923962547096132778386793077540000472300453659904787006390665732192318028934727687571674581270571024317805376579320206971132973951089592680642640882537076147875443396931878430046362162223993256118303588867402892437130659434867164148787276764345254588132752188367933224729372538557997694835477187681152126654039558870036379100200652272006119470522078565132322414659132717689736690500945169 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7453e60df2549021d28453d9900f53273bc9911c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alstage.automat-it.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alstage.automat-it.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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