psblive.psb-stg.f-secure.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 0c:37:d3:70:98:6e:b8:10:ad:2c:a1:61:cc:5b:48:2f was issued on by Amazon.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=psblive.psb-stg.f-secure.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:37:d3:70:98:6e:b8:10:ad:2c:a1:61:cc:5b:48:2fSerial Number (int): 16240600785794550650541464326820808751
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 86:6b:67:98:3d:22:7b:8e:92:9c:04:3e:05:02:6e:e5:d0:a4:d5:1d
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): f0:3f:b8:96:73:cc:b4:44:01:4d:cc:e6:05:77:89:de:92:a3:6a:22
Fingerprint (sha256): 34:c1:b0:39:0b:d3:17:21:80:7b:3b:96:3c:ec:5f:99:e1:79:f6:30:68:b7:a3:10:5d:e9:45:07:63:55:06:d8
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate psblive.psb-stg.f-secure.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for psblive.psb-stg.f-secure.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
psblive.psb-stg.f-secure.com
live.epp.elements-stg.withsecure.com
psblive.psb-stg.fsxt.net
live.epp.elements-stg.withsecure.com
psblive.psb-stg.fsxt.net
Other certificates including the domain name f-secure.com
(limited to 100 certificates)
oneid.btinteg.ob.f-secure.com
fsio-d4eb-test.sp.f-secure.com
avain-tp.sp.f-secure.com
eu1.analytics.psb.f-secure.com
FSMSG0265.sp.f-secure.com
*.679.tp.cloud.f-secure.com
spi-tp.sp.f-secure.com
digital-life-test.f-secure.com
spi.f-secure.com
portal.radar.f-secure.com
internal-dev.connect.withsecure.com
services.sp.f-secure.com
ew1-rds-be-prd-rabbitmq-03.rds.f-secure.com
fsmsg0445.sp.f-secure.com
igbackup.ob.f-secure.com
guts.sp.f-secure.com
*.679.tp.cloud.f-secure.com
fsmsg0457.sp.f-secure.com
updates-api.radar.f-secure.com
frdm-stats.nc.f-secure.com
en.riws.status.ricoh.com
cgi.f-secure.com
helrdomaster02.fi.f-secure.com
fsmsg0757.sp.f-secure.com
se1gpgw01.f-secure.com
vivo.ob.f-secure.com
obus.sp.f-secure.com
scl.partners.f-secure.com
splunk.ci.infra-services.f-secure.com
fsmsg0071.sp.f-secure.com
*.safeavenue.f-secure.com
akamaisecure2.qualtrics.com
FSMSG0353.sp.f-secure.com
reliance-portal.sp.f-secure.com
secure05.stage.lithium.com
fsmsg0233.sp.f-secure.com
api.elements.f-secure.com
secure01.lithium.com
sebereports.sp.f-secure.com
fsmsg0031.sp.f-secure.com
freedome.f-secure.com
telia-portal.sp.f-secure.com
tsf-portal.sp.f-secure.com
beta.f-secure.com
uk.safeandsavvy.f-secure.com
*.smi.sp.f-secure.com
noms2.sp.f-secure.com
san-8-s51.tlsprovisioning.exacttarget.com
partnerportal.f-secure.com
FSMSG0259.sp.f-secure.com
www.backup.f-secureusa.com
fsmsg0121.sp.f-secure.com
movistar.pa.ob.f-secure.com
psb-live.sp.f-secure.com
test.www.europe.f-secure.com
ew1-rds-be-prd-rabbitmq-04.rds.f-secure.com
stg-download.f-secure.com
vip.f-secure.com
emea.psb.f-secure.com
msp-int.f-secure.com
researchblog.f-secure.com
mts.sp.f-secure.com
secure05.stage.lithium.com
labs.f-secure.com
mobile-dl.sp.f-secure.com
fsbwserver-pp.f-secure.com
secure01.lithium.com
f-secure.com
fsmsg0349.sp.f-secure.com
fsmsg0417.sp.f-secure.com
fsjira.f-secure.com
spi.f-secure.com
jenkins-staging.fi.f-secure.com
san-8-s51.tlsprovisioning.exacttarget.com
akamai-san18.exacttarget.com
cbeyond.sp.f-secure.com
fsmsg0275.sp.f-secure.com
guts2.sp.f-secure.com
*.business.f-secure.com
fsbwserver.f-secure.com
safeavenue-tp.sp.f-secure.com
en.riws.status.ricoh.com
fsbwserver.f-secure.com
doorman.sp.f-secure.com
FSMSG0123.sp.f-secure.com
iaps-tp.sp.f-secure.com
safeavenue.f-secure.com
oh-ci.fsxt.net
redirects.f-secure.com
cgi.f-secure.com
karhu2.nsense.net
smiws-internal.sp.f-secure.com
ticket.btstaging.ob.f-secure.com
fsmsg0267.sp.f-secure.com
clp-st-gw-nl.nc.f-secure.com
hibiki.f-secure.com
location-api.f-secure.com
partnersps.f-secure.com
cgi.f-secure.com
*.fusion.f-secure.com
fsio-d4eb-test.sp.f-secure.com
avain-tp.sp.f-secure.com
eu1.analytics.psb.f-secure.com
FSMSG0265.sp.f-secure.com
*.679.tp.cloud.f-secure.com
spi-tp.sp.f-secure.com
digital-life-test.f-secure.com
spi.f-secure.com
portal.radar.f-secure.com
internal-dev.connect.withsecure.com
services.sp.f-secure.com
ew1-rds-be-prd-rabbitmq-03.rds.f-secure.com
fsmsg0445.sp.f-secure.com
igbackup.ob.f-secure.com
guts.sp.f-secure.com
*.679.tp.cloud.f-secure.com
fsmsg0457.sp.f-secure.com
updates-api.radar.f-secure.com
frdm-stats.nc.f-secure.com
en.riws.status.ricoh.com
cgi.f-secure.com
helrdomaster02.fi.f-secure.com
fsmsg0757.sp.f-secure.com
se1gpgw01.f-secure.com
vivo.ob.f-secure.com
obus.sp.f-secure.com
scl.partners.f-secure.com
splunk.ci.infra-services.f-secure.com
fsmsg0071.sp.f-secure.com
*.safeavenue.f-secure.com
akamaisecure2.qualtrics.com
FSMSG0353.sp.f-secure.com
reliance-portal.sp.f-secure.com
secure05.stage.lithium.com
fsmsg0233.sp.f-secure.com
api.elements.f-secure.com
secure01.lithium.com
sebereports.sp.f-secure.com
fsmsg0031.sp.f-secure.com
freedome.f-secure.com
telia-portal.sp.f-secure.com
tsf-portal.sp.f-secure.com
beta.f-secure.com
uk.safeandsavvy.f-secure.com
*.smi.sp.f-secure.com
noms2.sp.f-secure.com
san-8-s51.tlsprovisioning.exacttarget.com
partnerportal.f-secure.com
FSMSG0259.sp.f-secure.com
www.backup.f-secureusa.com
fsmsg0121.sp.f-secure.com
movistar.pa.ob.f-secure.com
psb-live.sp.f-secure.com
test.www.europe.f-secure.com
ew1-rds-be-prd-rabbitmq-04.rds.f-secure.com
stg-download.f-secure.com
vip.f-secure.com
emea.psb.f-secure.com
msp-int.f-secure.com
researchblog.f-secure.com
mts.sp.f-secure.com
secure05.stage.lithium.com
labs.f-secure.com
mobile-dl.sp.f-secure.com
fsbwserver-pp.f-secure.com
secure01.lithium.com
f-secure.com
fsmsg0349.sp.f-secure.com
fsmsg0417.sp.f-secure.com
fsjira.f-secure.com
spi.f-secure.com
jenkins-staging.fi.f-secure.com
san-8-s51.tlsprovisioning.exacttarget.com
akamai-san18.exacttarget.com
cbeyond.sp.f-secure.com
fsmsg0275.sp.f-secure.com
guts2.sp.f-secure.com
*.business.f-secure.com
fsbwserver.f-secure.com
safeavenue-tp.sp.f-secure.com
en.riws.status.ricoh.com
fsbwserver.f-secure.com
doorman.sp.f-secure.com
FSMSG0123.sp.f-secure.com
iaps-tp.sp.f-secure.com
safeavenue.f-secure.com
oh-ci.fsxt.net
redirects.f-secure.com
cgi.f-secure.com
karhu2.nsense.net
smiws-internal.sp.f-secure.com
ticket.btstaging.ob.f-secure.com
fsmsg0267.sp.f-secure.com
clp-st-gw-nl.nc.f-secure.com
hibiki.f-secure.com
location-api.f-secure.com
partnersps.f-secure.com
cgi.f-secure.com
*.fusion.f-secure.com
Certificate
The complete raw certificate details for psblive.psb-stg.f-secure.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGJTCCBQ2gAwIBAgIQDDfTcJhuuBCtLKFhzFtILzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDMwMTAwMDAwMFoXDTIzMTAyNzIzNTk1OVowJzEl MCMGA1UEAxMccHNibGl2ZS5wc2Itc3RnLmYtc2VjdXJlLmNvbTCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAMlDLnkGvYjvjIpB+ElSPSSORqHd+HWwFGWJ emkGEMFk4x5vblDSSqT00mGT6o8GI7KW4HdJPGc3W0x8l95zwzo+9SHMumeC2wxh 31LSpXrhUO62gh0nUHKdu+c98n6l73j+Yc1C29z5SlVcNr8fpTqEQOuB8m7q1wQP N37ZITsEIva0g3+7G68MzuOAOpTArSsWqrKXRl/J7qReOW1rCp2B7tNAaBhOviO6 qveftK+6fIjULpSA9zSLkEm24ZWP5uscmuLiCk++escrR7DNOl6/8MowujCJo9Og Ww2L2zpVJeAid8fsVEV/oMJ5KdhwmGjjw1P8vbrz9Q93S77LfWMCAwEAAaOCAzYw ggMyMB8GA1UdIwQYMBaAFIG4DmOKiRIY5fo7O1CVn+blkBOFMB0GA1UdDgQWBBSG a2eYPSJ7jpKcBD4FAm7l0KTVHTBnBgNVHREEYDBeghxwc2JsaXZlLnBzYi1zdGcu Zi1zZWN1cmUuY29tgiRsaXZlLmVwcC5lbGVtZW50cy1zdGcud2l0aHNlY3VyZS5j b22CGHBzYmxpdmUucHNiLXN0Zy5mc3h0Lm5ldDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0 dHA6Ly9jcmwucjJtMDEuYW1hem9udHJ1c3QuY29tL3IybTAxLmNybDATBgNVHSAE DDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6 Ly9vY3NwLnIybTAxLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDov L2NydC5yMm0wMS5hbWF6b250cnVzdC5jb20vcjJtMDEuY2VyMAwGA1UdEwEB/wQC MAAwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB3AK33vvp8/xDIi509nB4+GGq0 Zyldz7EMJMqFhjTr3IKKAAABhpwV6JYAAAQDAEgwRgIhANU9mH7QZAhHWYOzG+l0 JixNFby1KG+6QTxx5jwmBiwDAiEAlQDvPqdqSpnzPv4badwaqxNna4NOnYPDbvfE BUJa160AdQCzc3cH4YRQ+GOG1gWp3BEJSnktsWcMC4fc8AMOeTalmgAAAYacFeiZ AAAEAwBGMEQCIArFtp+fFVST7xMqEjcCbySXyGVczZVr6UMdnmOuf1y9AiBspkP7 WCKBvr1todzor7uTKPFSGPN/TgqdOnC/qKnMAAB3ALc++yTfnE26dfI5xbpY9Gxd /ELPep81xJ4dCYEl7bSZAAABhpwV6E4AAAQDAEgwRgIhALYNdHy3YyhDndjiHXIH cX9PJcS/PCm8zZEs9BYxSw9KAiEAkGsGX5bvCKnar0gVPrdhqq3x120Tj/FxIiG9 k//UeRYwDQYJKoZIhvcNAQELBQADggEBAKblEcfip/YxCHratwtA7aKoAvDfeUM+ UL4Z46cftOVwOlFGwY9g/bsBqkBFR9XU5oG2S9sWE1LLZ8vrflBgwANeCYPmlZ3G VNO863iQ5dQGLKtzyGHXGkL3QdAT3pYoJ8uAdkt79Q9vi1BNqVf6yjz70HPZjNBL RhGeJTk8G1Lng+HiSIO+y2NEEMbNsyZ+d980VUbujT1R3h8QJRKmT0wxWPgX2kpE 22LOo6cvb8KsvMPN8ZIjmVVTeEd3PP/RfxoahsT3nuytgORbVPJSgYT1sWvmKz5U YG4HKdlD9nsknM+8Je1huImSJjypJUwNGL1p7H8cG+sHTVYuEiEKQLU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUMueQa9iO+MikH4SVI9 JI5God34dbAUZYl6aQYQwWTjHm9uUNJKpPTSYZPqjwYjspbgd0k8ZzdbTHyX3nPD Oj71Icy6Z4LbDGHfUtKleuFQ7raCHSdQcp275z3yfqXveP5hzULb3PlKVVw2vx+l OoRA64HyburXBA83ftkhOwQi9rSDf7sbrwzO44A6lMCtKxaqspdGX8nupF45bWsK nYHu00BoGE6+I7qq95+0r7p8iNQulID3NIuQSbbhlY/m6xya4uIKT756xytHsM06 Xr/wyjC6MImj06BbDYvbOlUl4CJ3x+xURX+gwnkp2HCYaOPDU/y9uvP1D3dLvst9 YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16240600785794550650541464326820808751 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'psblive.psb-stg.f-secure.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25407027747413526853714495131423489326155839344791547567674459911582875359601009461622931770133999664552396429382072229390912794427651447441206674297424455237541934497826571183841066336528376783932711748347358487996706775434864974907358907245375452517326950893974479614156993716251990587244270552237235513390650310132006608175806933548805783606287320283991068061941134927011742160516385816155863956002703931568072795671820531267832062670523775140037555966948320510185584118395473912573273702781198995083314301109958459891753522857935749071650936895098483007182236002279297289942452543851623004269530665744774709607779 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 866b67983d227b8e929c043e05026ee5d0a4d51d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psblive.psb-stg.f-secure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.epp.elements-stg.withsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psblive.psb-stg.fsxt.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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