*.kia.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 03:07:2a:9b:31:83:83:a7:db:c5:88:8b:b7:4f:89:2e was issued on by Amazon.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.kia.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:07:2a:9b:31:83:83:a7:db:c5:88:8b:b7:4f:89:2eSerial Number (int): 4024894222256790983308422259806275886
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: cf:31:04:ba:43:0e:14:a9:97:7f:5c:de:a1:b4:30:c8:fd:b4:8e:55
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 75:1f:1e:0b:ff:21:71:3e:2a:3b:9b:49:71:57:1c:81:07:8a:7e:3d
Fingerprint (sha256): 33:74:c3:34:58:46:48:89:0d:18:83:1c:dc:18:0a:e0:45:26:9e:f7:98:bf:f0:06:61:78:62:6f:f2:14:77:89
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.kia.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.kia.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.kia.com
*.kia.co.kr
*.kia-corp.io
*.kia.co.kr
*.kia-corp.io
Other certificates including the domain name kia.com
(limited to 100 certificates)
ev9in.worldwide.kia.com
dashportal.hyundai.com
stg.cn-ccapi.hyundai.com
msos.kia.com
web1.prod.kia.us
ev9kr.worldwide.kia.com
adm.kia.com
ssl.ipaper.io
red.kia.com
dsoha2iqis.kia.com
ssl1.ipaper.io
ev9na-stg.worldwide.kia.com
ssl1.ipaper.io
dcmpass.hyundai.com
kevent.kia.com
press.accept.eu.kia.com
kcvg.kia.com
kdp.kia.com
prd.eu-ccapi.hyundai.com
mtalk.hyundai.com
ssl.ipaper.io
flex.kia.com
ksw.kia.co.kr
stg.cn-ccapi.hyundai.com
web.icps.kia.com
*.kia.com
mykia-quz.kia.com
prd.eu-ccapi.hyundai.com
adbsmetrics.kia.com
*.kia.com
*.hyundai.com
ssl1.ipaper.io
adplanner.kia.com
ssl1.ipaper.io
csr.kia.com
ci.kia.com
mobileautoq.kia.com
peardev3-eu.kia.com
ssl1.ipaper.io
ver-bluelinkmobile.hyundai.com
*.hyundai.com
eshop.kia.com
ephoto.kia.com
web1.prod.kia.us
kiaadmin.kia.com
prestudio-europe.kia.com
pr.kia.com
used-uk.kia.com
origin-military.kr.kia.com
san-4-s50.tlsprovisioning.exacttarget.com
www.kia.com
ssl1.ipaper.io
tstkgss.kia.com
eshop.kia.com
org1-www.kia.com
neuwagen.kia.com
org2-www.kia.com
stg.ind.hyundai.com
ev9in-stg.worldwide.kia.com
sip.kia.com
emss.kia.com
ws.eu.kia.com
insider.kia.com
*.kia.com
staging-press.kia.com
gpms.kia.com
career.kia.com
ckd.hmc.co.kr
dealership.kia.com
outlook.hmc.co.kr
pr.kia.com
ssl1.ipaper.io
dev.gbps.kia.com
domain.kia.com
api.kiavr.co
flex.kia.com
api.red.kia.com
eu-www.kia.com
ws.accept.eu.kia.com
ev9eu.worldwide.kia.com
wrms.kia.com
tkdcs.kia.com
ssl1.ipaper.io
csr.kia.com
ssl1.ipaper.io
sni.cloudflaressl.com
ssl.ipaper.io
mcrms.kia.com
api-kr.kia.com
csr.kia.com
*.kia.com
ssl.ipaper.io
preprod-eu-press.kia.com
eu-www.kia.com
cloud.eu.connect.kia.com
*.members.kia.com
view.eu.connect.kia.com
adplanner.kia.com
*.designmagazine.kia.com
api.red.kia.com
dashportal.hyundai.com
stg.cn-ccapi.hyundai.com
msos.kia.com
web1.prod.kia.us
ev9kr.worldwide.kia.com
adm.kia.com
ssl.ipaper.io
red.kia.com
dsoha2iqis.kia.com
ssl1.ipaper.io
ev9na-stg.worldwide.kia.com
ssl1.ipaper.io
dcmpass.hyundai.com
kevent.kia.com
press.accept.eu.kia.com
kcvg.kia.com
kdp.kia.com
prd.eu-ccapi.hyundai.com
mtalk.hyundai.com
ssl.ipaper.io
flex.kia.com
ksw.kia.co.kr
stg.cn-ccapi.hyundai.com
web.icps.kia.com
*.kia.com
mykia-quz.kia.com
prd.eu-ccapi.hyundai.com
adbsmetrics.kia.com
*.kia.com
*.hyundai.com
ssl1.ipaper.io
adplanner.kia.com
ssl1.ipaper.io
csr.kia.com
ci.kia.com
mobileautoq.kia.com
peardev3-eu.kia.com
ssl1.ipaper.io
ver-bluelinkmobile.hyundai.com
*.hyundai.com
eshop.kia.com
ephoto.kia.com
web1.prod.kia.us
kiaadmin.kia.com
prestudio-europe.kia.com
pr.kia.com
used-uk.kia.com
origin-military.kr.kia.com
san-4-s50.tlsprovisioning.exacttarget.com
www.kia.com
ssl1.ipaper.io
tstkgss.kia.com
eshop.kia.com
org1-www.kia.com
neuwagen.kia.com
org2-www.kia.com
stg.ind.hyundai.com
ev9in-stg.worldwide.kia.com
sip.kia.com
emss.kia.com
ws.eu.kia.com
insider.kia.com
*.kia.com
staging-press.kia.com
gpms.kia.com
career.kia.com
ckd.hmc.co.kr
dealership.kia.com
outlook.hmc.co.kr
pr.kia.com
ssl1.ipaper.io
dev.gbps.kia.com
domain.kia.com
api.kiavr.co
flex.kia.com
api.red.kia.com
eu-www.kia.com
ws.accept.eu.kia.com
ev9eu.worldwide.kia.com
wrms.kia.com
tkdcs.kia.com
ssl1.ipaper.io
csr.kia.com
ssl1.ipaper.io
sni.cloudflaressl.com
ssl.ipaper.io
mcrms.kia.com
api-kr.kia.com
csr.kia.com
*.kia.com
ssl.ipaper.io
preprod-eu-press.kia.com
eu-www.kia.com
cloud.eu.connect.kia.com
*.members.kia.com
view.eu.connect.kia.com
adplanner.kia.com
*.designmagazine.kia.com
api.red.kia.com
Certificate
The complete raw certificate details for *.kia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF2zCCBMOgAwIBAgIQAwcqmzGDg6fbxYiLt0+JLjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDgxODAwMDAwMFoXDTI0MDkxNjIzNTk1OVowFDES MBAGA1UEAwwJKi5raWEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NxbwvHxOt6PmT0E47qaDjh6l4oXHM5RGYJszUX5T9t92PSDGWmXzAWsgDbB Dks5SZGZsAvpEsRF1gtHS3ed3ufPfDJlGG7fZM3iwls7HpoK358ZCvVRF7C1Eaps RDCr8n4V6Pm16bsPsve9PKlLUlL+ERxS+tENpSl0HOuFLmkrtqW2RzdtBcE5wnEN CK/GQM6z8uQ0d0TnddZGik9yajVblhXBUeO16KDF6BSH4AxDahf5MKhfIQkIXVVp ig1CNyYl1lS40sew21va6UFOwXyqzHB+G/BAONuzw7XWmJAhI3I0viIqAsNOo9ck XLhcH9DdU1QNv6D13Nt4cEr9zwIDAQABo4IC/zCCAvswHwYDVR0jBBgwFoAUwDFS zVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFM8xBLpDDhSpl39c3qG0MMj9tI5V MDAGA1UdEQQpMCeCCSoua2lhLmNvbYILKi5raWEuY28ua3KCDSoua2lhLWNvcnAu aW8wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFtYXpvbnRydXN0 LmNvbS9yMm0wMi5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEE aTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMi5hbWF6b250cnVzdC5j b20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDIuYW1hem9udHJ1c3QuY29t L3IybTAyLmNlcjAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFr AWkAdQB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYoHOD9EAAAE AwBGMEQCIEAwFyYBO8/d0Hkl03JTBSy7BmrxUx1WSoEnJdqgPIloAiBoTsAnm8SU krW16yxbIKRmodAhHPSW0KTI39Qv0N3sjwB3AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABigc4Pw8AAAQDAEgwRgIhAPo+UiN3F895UsuTRHE5nMI/ 55+hYs9lQppQ56FfO8fKAiEAgjw85vuuvujX3p7cK0P7UdUbe0K6QZIiCPZym/8+ VtAAdwDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYoHOD7YAAAE AwBIMEYCIQClfFJtlw0dyinbX9m8ijEoG5z9k4CHLGJMzSBTwpNMgAIhAJA3Meba oB7XkZJNPWroHEdnKCydvce2CzME8CEB4VO3MA0GCSqGSIb3DQEBCwUAA4IBAQBW uRxlB48eQekJoMyhfhalILiIy4+8ahi4o8yrsezltbNhOp2E6+CSJpUMz6VXZQ+X yxRDV0dm8CDibY2c6yVL3JHundliPviHHxIwAV/ZK/D/uN1YXiw+/yQIt/vLHsqt PM8KB/JjVtZFGpH/ESVvMeUjX4xLtZCzc6cQGMsYx9Wl4aHbL7tM6T9IRf8KNr0E KPKtnHlhsm7zbZZ6qURPkUWZ7CHPUTliqzcjfoekOoG6KnyNBHWLe2U9h75LTu0f rVnE8H+wEIo/fCLLtmQt85hBxM67SdpD7egK4aehDe25KIVfRGk6wKgKPtUWI55x i53jnraVxy7JGUjpsLQ6 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2NxbwvHxOt6PmT0E47qa Djh6l4oXHM5RGYJszUX5T9t92PSDGWmXzAWsgDbBDks5SZGZsAvpEsRF1gtHS3ed 3ufPfDJlGG7fZM3iwls7HpoK358ZCvVRF7C1EapsRDCr8n4V6Pm16bsPsve9PKlL UlL+ERxS+tENpSl0HOuFLmkrtqW2RzdtBcE5wnENCK/GQM6z8uQ0d0TnddZGik9y ajVblhXBUeO16KDF6BSH4AxDahf5MKhfIQkIXVVpig1CNyYl1lS40sew21va6UFO wXyqzHB+G/BAONuzw7XWmJAhI3I0viIqAsNOo9ckXLhcH9DdU1QNv6D13Nt4cEr9 zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4024894222256790983308422259806275886 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.kia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27376136671015306192388712700153481410197083808263571551000349961689263423909700790891757601922330437379792577575019799504894508297772856819584462400213493108124430690313948883766009548659216493693914332617971344709679474827283860624873608996263060931833810268929935458967993313480387020449703894916522139939164141269135433083016745687662600278676044114925798820114559302346597629518984095696173622040595384662378253266948029834894794003657783929034433449248472038149177740579383147905307976512594119098982028808465954844924493560569164767172474352503188783571233930664030996010867273458803678336135796243997114695119 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cf3104ba430e14a9977f5cdea1b430c8fdb48e55 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (41 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kia.co.kr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kia-corp.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 016900750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018a07383f440000040300463044022040301726013bcfddd07925d37253052cbb066af1531d564a812725daa03c89680220684ec0279bc49492b5b5eb2c5b20a466a1d0211cf496d0a4c8dfd42fd0ddec8f00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018a07383f0f0000040300483046022100fa3e52237717cf7952cb934471399cc23fe79fa162cf65429a50e7a15f3bc7ca022100823c3ce6fbaebee8d7de9edc2b43fb51d51b7b42ba41922208f6729bff3e56d0007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018a07383ed80000040300483046022100a57c526d970d1dca29db5fd9bc8a31281b9cfd9380872c624ccd2053c2934c80022100903731e6daa01ed791924d3d6ae81c4767282c9dbdc7b60b3304f02101e153b7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0056b91c65078f1e41e909a0cca17e16a520b888cb8fbc6a18b8a3ccabb1ece5b5b3613a9d84ebe09226950ccfa557650f97cb1443574766f020e26d8d9ceb254bdc91ee9dd9623ef8871f1230015fd92bf0ffb8dd585e2c3eff2408b7fbcb1ecaad3ccf0a07f26356d6451a91ff11256f31e5235f8c4bb590b373a71018cb18c7d5a5e1a1db2fbb4ce93f4845ff0a36bd0428f2ad9c7961b26ef36d967aa9444f914599ec21cf513962ab37237e87a43a81ba2a7c8d04758b7b653d87be4b4eed1fad59c4f07fb0108a3f7c22cbb6642df39841c4cebb49da43ede80ae1a7a10dedb928855f44693ac0a80a3ed516239e718b9de39eb695c72ec91948e9b0b43a