*.flock.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 02:64:6a:b5:7e:bd:7c:60:bf:4f:53:ae:61:64:09:cf was issued on by Amazon.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.flock.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:64:6a:b5:7e:bd:7c:60:bf:4f:53:ae:61:64:09:cfSerial Number (int): 3179849992362902243083986071867099599
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 25:91:59:2f:cf:47:36:37:c3:6e:99:34:8d:2b:57:70:0f:46:35:7e
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 80:8b:cb:ff:9e:4e:25:fe:fe:00:4c:40:20:66:f5:00:8e:92:f9:17
Fingerprint (sha256): 32:29:13:4c:88:7f:64:be:ea:a9:62:cd:ed:73:49:b9:86:a6:a3:5b:8a:f6:87:87:33:62:3f:16:8f:4a:7f:9c
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate *.flock.com
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.flock.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.flock.com
talk.to
*.flock.co
flock.com
*.talk.to
*.go.to
flock.co
go.to
talk.to
*.flock.co
flock.com
*.talk.to
*.go.to
flock.co
go.to
Other certificates including the domain name flock.com
(limited to 100 certificates)
corporatestatus.tyro.com
support.flock.com
support.flock.com
pages.flock.com
webinar.flock.com
corporatestatus.tyro.com
pages.flock.com
enomstatus.com
corporatestatus.tyro.com
ent.flock.com
kb.flock.com
*.internal.flock.com
*.flock.com
corporatestatus.tyro.com
ent.flock.com
*.flock.com
support.flock.com
*.flock.com
faq.internal.flock.com
webinar.flock.com
blog.flock.com
corporatestatus.tyro.com
*.flock.co
blog.flock.com
corporatestatus.tyro.com
*.ops.flock.com
faq.internal.flock.com
corporatestatus.tyro.com
enomstatus.com
enomstatus.com
corporatestatus.tyro.com
*.flock.co
*.flock.com
support.flock.com
*.flock.com
enomstatus.com
*.flock.com
corporatestatus.tyro.com
webinar.flock.com
api.flock.com
enomstatus.com
ent.flock.com
www.flock.com
bugzilla.flock.com
kb.flock.com
*.flock.com
support.flock.com
monumentstatus.mambu.com
ent.flock.com
blog.flock.com
enomstatus.com
enomstatus.com
*.flock.com
corporatestatus.tyro.com
blog.flock.com
www.flock.com
enomstatus.com
staging.mail.flock.com
support.flock.com
*.flock.com
enomstatus.com
*.flock.com
enomstatus.com
*.i.flock.com
enomstatus.com
support.flock.com
*.flock.co
extensions.flock.com
corporatestatus.tyro.com
*.flock.com
enomstatus.com
vpn.flock.com
my.flock.com
enomstatus.com
corporatestatus.tyro.com
corporatestatus.tyro.com
enomstatus.com
blog.flock.com
update.flock.com
support.flock.com
enomstatus.com
ent.flock.com
corporatestatus.tyro.com
www.flock.com
ent.flock.com
corporatestatus.tyro.com
ent.flock.com
*.flock.co
*.flock.com
blog.flock.com
*.flock.com
support.flock.com
corporatestatus.tyro.com
support.flock.com
*.flock.com
webinar.flock.com
www.flock.com
pages.flock.com
support.flock.com
*.flock.com
support.flock.com
support.flock.com
pages.flock.com
webinar.flock.com
corporatestatus.tyro.com
pages.flock.com
enomstatus.com
corporatestatus.tyro.com
ent.flock.com
kb.flock.com
*.internal.flock.com
*.flock.com
corporatestatus.tyro.com
ent.flock.com
*.flock.com
support.flock.com
*.flock.com
faq.internal.flock.com
webinar.flock.com
blog.flock.com
corporatestatus.tyro.com
*.flock.co
blog.flock.com
corporatestatus.tyro.com
*.ops.flock.com
faq.internal.flock.com
corporatestatus.tyro.com
enomstatus.com
enomstatus.com
corporatestatus.tyro.com
*.flock.co
*.flock.com
support.flock.com
*.flock.com
enomstatus.com
*.flock.com
corporatestatus.tyro.com
webinar.flock.com
api.flock.com
enomstatus.com
ent.flock.com
www.flock.com
bugzilla.flock.com
kb.flock.com
*.flock.com
support.flock.com
monumentstatus.mambu.com
ent.flock.com
blog.flock.com
enomstatus.com
enomstatus.com
*.flock.com
corporatestatus.tyro.com
blog.flock.com
www.flock.com
enomstatus.com
staging.mail.flock.com
support.flock.com
*.flock.com
enomstatus.com
*.flock.com
enomstatus.com
*.i.flock.com
enomstatus.com
support.flock.com
*.flock.co
extensions.flock.com
corporatestatus.tyro.com
*.flock.com
enomstatus.com
vpn.flock.com
my.flock.com
enomstatus.com
corporatestatus.tyro.com
corporatestatus.tyro.com
enomstatus.com
blog.flock.com
update.flock.com
support.flock.com
enomstatus.com
ent.flock.com
corporatestatus.tyro.com
www.flock.com
ent.flock.com
corporatestatus.tyro.com
ent.flock.com
*.flock.co
*.flock.com
blog.flock.com
*.flock.com
support.flock.com
corporatestatus.tyro.com
support.flock.com
*.flock.com
webinar.flock.com
www.flock.com
pages.flock.com
support.flock.com
*.flock.com
Certificate
The complete raw certificate details for *.flock.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCDCCBPCgAwIBAgIQAmRqtX69fGC/T1OuYWQJzzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDEyNDAwMDAwMFoXDTI0MDIyMjIzNTk1OVowFjEU MBIGA1UEAwwLKi5mbG9jay5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC9SurCLK3r8vkMRd/hNWkTm7pXcVoqf3XfXe4mhnklu+gMbBWF0JEGIINo ncFlyvMrA0u+CTLqwcj82cZKlGAx/7D5pvYaYQtBPfToJSgXw17ii1FH1m7z/1CD LQ9n0BBvMXiMdGx/zvpLZJUnLzn5KnHi+zE9KI9AI0TlR+ruMJ1W+5hAKWGu89Wi LIoGFBpVF1PoU5BjNUs1iCf4l/PuTMTDCAiN6luBlS1Jgi8pDMNapav7wzSU/aDg Y+6Spa55SsKMK0QpXgYZg70062Gu/PgNK03F7XmeTd/6rJtAxTlApTJfcCY1qUrH B9Wb1jU47NUs8N76HHxaJVdaCoq/AgMBAAGjggMqMIIDJjAfBgNVHSMEGDAWgBSB uA5jiokSGOX6OztQlZ/m5ZAThTAdBgNVHQ4EFgQUJZFZL89HNjfDbpk0jStXcA9G NX4wWwYDVR0RBFQwUoILKi5mbG9jay5jb22CB3RhbGsudG+CCiouZmxvY2suY2+C CWZsb2NrLmNvbYIJKi50YWxrLnRvggcqLmdvLnRvgghmbG9jay5jb4IFZ28udG8w DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7 BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAxLmFtYXpvbnRydXN0LmNv bS9yMm0wMS5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBn MC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMS5hbWF6b250cnVzdC5jb20w NgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDEuYW1hem9udHJ1c3QuY29tL3Iy bTAxLmNlcjAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkA dwDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYXiR3AZAAAEAwBI MEYCIQDbrVjzv7+GK9Wi7yqvrF2x6lF+2FQiq4hoAxdAbO2m4gIhANCy0EwRIGGR Z0Gw5B3AxvYn54ZFN6pDuNauqeEShXqeAHYAc9meiRtMlnigIH1HneayxhzQUV5x GSqMa4AQesF3crUAAAGF4kdwhQAABAMARzBFAiEAwvfDmNg4B3QQxWhCIUoLsVh2 gKUHuF0cvEHNXL8P2mkCIA69Hshlx9BlReEl2mlmJ5utG9WkTfLHJx81UuI/S8Ga AHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGF4kdwVgAABAMA RzBFAiBkC5sSGIbJZaoZZSIBjQ2j1gvYVq+wBgczlzwk2F/udgIhAJbaqxYTDyke vbDvfLoD3cD4rAncSMPFA/Tip+lUoGVmMA0GCSqGSIb3DQEBCwUAA4IBAQDRYhiv EOLlJPVA+jrIsvIGUsex0wEd4WtTIR7d5HUBdtmTYabLyOHtl4leBUyBlofUrsD/ qnFsrJOXRHjdx4eBrz5nYyNxZHV+mBvmrklgP3Os5w3qb6ZKtew0M5UoNgSkly30 pvzm4IewLaXnc3kuCaTcRXQSifVL6JdWs/x1X7oBmUI6/awIX1u+Kjf9TQ48nVXS 33rT6NEmcxATyFqDB17SpM7EzySb2fG57WARZw7xVfd4LpbIf0+0iEYNrMSJ0J2J pguRhgS01byPHTl1aCfMEK6R8NJu//7ybft45n+4Kq52rrmYQ8AiPQ/tFT7Ed4gY 4sg/R6asezAVkvNV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUrqwiyt6/L5DEXf4TVp E5u6V3FaKn91313uJoZ5JbvoDGwVhdCRBiCDaJ3BZcrzKwNLvgky6sHI/NnGSpRg Mf+w+ab2GmELQT306CUoF8Ne4otRR9Zu8/9Qgy0PZ9AQbzF4jHRsf876S2SVJy85 +Spx4vsxPSiPQCNE5Ufq7jCdVvuYQClhrvPVoiyKBhQaVRdT6FOQYzVLNYgn+Jfz 7kzEwwgIjepbgZUtSYIvKQzDWqWr+8M0lP2g4GPukqWueUrCjCtEKV4GGYO9NOth rvz4DStNxe15nk3f+qybQMU5QKUyX3AmNalKxwfVm9Y1OOzVLPDe+hx8WiVXWgqK vwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3179849992362902243083986071867099599 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.flock.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23895982600677180592995356829695165306140490455845391832524414151860746028986989368188127988866441178589566466046269433120772020401573374102829149111496465555774184077115105574281290176304273206689781657161538591235419828069537681420876299480008666716387613812012573369825832075751401911918617304397713263050549677969419735695569932161218886042023930213363447131218788806519151181041317207414039256153214885700819906945368107160383684998706383295429310450440620673318558739916058146001726099070397107271695400870775484499991611051673831635113419583137870175776871140050016837576130063931358021966254051374997831322303 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2591592fcf473637c36e99348d2b57700f46357e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (84 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.flock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'talk.to' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.flock.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.talk.to' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.go.to' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flock.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'go.to' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 0169007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000185e24770190000040300483046022100dbad58f3bfbf862bd5a2ef2aafac5db1ea517ed85422ab88680317406ceda6e2022100d0b2d04c112061916741b0e41dc0c6f627e7864537aa43b8d6aea9e112857a9e00760073d99e891b4c9678a0207d479de6b2c61cd0515e71192a8c6b80107ac17772b500000185e24770850000040300473045022100c2f7c398d838077410c56842214a0bb1587680a507b85d1cbc41cd5cbf0fda6902200ebd1ec865c7d06545e125da6966279bad1bd5a44df2c7271f3552e23f4bc19a00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d8847300000185e247705600000403004730450220640b9b121886c965aa196522018d0da3d60bd856afb0060733973c24d85fee7602210096daab16130f291ebdb0ef7cba03ddc0f8ac09dc48c3c503f4e2a7e954a06566 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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