sem-ui-staging-1426.capstage.net
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 01:7e:63:b2:94:f0:5b:d9:85:a0:1c:b6:cd:09:8d:01 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sem-ui-staging-1426.capstage.net
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:7e:63:b2:94:f0:5b:d9:85:a0:1c:b6:cd:09:8d:01Serial Number (int): 1985479507218350606711425907114478849
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: a0:34:ae:88:4c:4b:4d:4f:99:72:63:51:a4:5c:bc:72:b9:ca:b2:97
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 22:41:70:64:bc:ea:12:58:09:0e:6b:1e:c7:ef:b6:d6:be:67:85:9d
Fingerprint (sha256): 34:ff:93:1a:f1:99:8f:25:66:72:99:48:23:2b:0f:cf:1a:2b:d6:f5:23:8d:cd:ad:f7:59:51:2b:23:36:f8:59
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate sem-ui-staging-1426.capstage.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sem-ui-staging-1426.capstage.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sem-ui-staging-1426.capstage.net
Other certificates including the domain name capstage.net
(limited to 100 certificates)
pr1307.reviews.capstage.net
spotlight-ui-staging-1752.capstage.net
public-api-dev.capstage.net
sem-ui-staging-909.capstage.net
sem-ui-staging-885.capstage.net
spotlight-dev.capstage.net
spotlight-ui-staging-1759.capstage.net
spotlight-ui-staging-2057.capstage.net
pr1306.reviews.capstage.net
user-workspace-staging-2005.capstage.net
vendor-page-dev.capstage.net
compare-ui-staging-885.capstage.net
spotlight-ui-staging-1754.capstage.net
search-dev.capstage.net
spotlight-ui-staging-1741.capstage.net
main.capstage.net
pr1946.reviews.capstage.net
user-workspace-staging-2004.capstage.net
spotlight-ui-staging-1754.capstage.net
dirpa-ui-staging-2308.capstage.net
user-workspace-staging-2004.capstage.net
sem-ui-staging-895.capstage.net
search-staging-694.capstage.net
spotlight-ui-staging-2320.capstage.net
dirpa-ui-staging-2308.capstage.net
dirpa-ui-staging-2330.capstage.net
*.capstage.net
spotlight-ui-staging-2061.capstage.net
spotlight-ui-staging-1757.capstage.net
sem-ui-staging-1429.capstage.net
pr1286.reviews.capstage.net
spotlight-ui-staging-1756.capstage.net
dirpa-ui-staging-2325.capstage.net
reviews.capstage.net
spotlight-ui-staging-1751.capstage.net
colin.capstage.net
spotlight-dev.capstage.net
vendor-page.capstage.net
spotlight-ui-staging-1745.capstage.net
reviews-dev.capstage.net
dirpa-ui-staging-2329.capstage.net
sa-ppl-form.capstage.net
pr1831.reviews.capstage.net
spotlight-ui-staging-1765.capstage.net
dirpa-ui-staging-2319.capstage.net
spotlight-ui-staging-2055.capstage.net
sem-ui-staging-1426.capstage.net
pr1832.reviews.capstage.net
spotlight-ui-staging-2063.capstage.net
sem-ui-staging-907.capstage.net
colin.capstage.net
spotlight-ui-staging-1763.capstage.net
spotlight-ui-staging-1746.capstage.net
sem-ui-staging-910.capstage.net
spotlight-ui-staging-1760.capstage.net
*.capstage.net
sem-ui-staging-908.capstage.net
sem-ui-staging-1191.capstage.net
user-workspace-staging-1997.capstage.net
user-workspace-staging-2008.capstage.net
user-workspace-staging-2002.capstage.net
*.capstage.net
search-staging-692.capstage.net
spotlight-ui-staging-2056.capstage.net
reviews-dev.capstage.net
dirpa-ui-staging-2333.capstage.net
vp-ppl-qa.capstage.net
search.capstage.net
spotlight-ui-staging-1756.capstage.net
spotlight-ui-staging-2068.capstage.net
sem-ui-staging-1425.capstage.net
dirpa-ui-staging-2332.capstage.net
reviews.capstage.net
dirpa-ui-staging-2045.capstage.net
sem-ui-staging-1205.capstage.net
capterra.com
spotlight-ui-staging-1762.capstage.net
spotlight-ui-staging-1744.capstage.net
sem-ui-staging-1209.capstage.net
sem-ui-staging-908.capstage.net
sem-ui-staging-900.capstage.net
sem-ui-staging-1427.capstage.net
workspace-dev.capstage.net
sem-ui-staging-909.capstage.net
search-staging-696.capstage.net
spotlight-ui-staging-1759.capstage.net
*.capstage.net
sem-ui-staging-907.capstage.net
capterra.com
sem-ui-staging-911.capstage.net
dirpa-ui-staging-1402.capstage.net
pr1244.reviews.capstage.net
spotlight-ui-staging-2058.capstage.net
homepage-ui-staging-469.capstage.net
dirpa-ui-staging-1403.capstage.net
spotlight-ui-staging-1762.capstage.net
user-workspace-staging-2002.capstage.net
workspace-dev.capstage.net
nginx-latency.capstage.net
homepage-ui-staging-203.capstage.net
spotlight-ui-staging-1752.capstage.net
public-api-dev.capstage.net
sem-ui-staging-909.capstage.net
sem-ui-staging-885.capstage.net
spotlight-dev.capstage.net
spotlight-ui-staging-1759.capstage.net
spotlight-ui-staging-2057.capstage.net
pr1306.reviews.capstage.net
user-workspace-staging-2005.capstage.net
vendor-page-dev.capstage.net
compare-ui-staging-885.capstage.net
spotlight-ui-staging-1754.capstage.net
search-dev.capstage.net
spotlight-ui-staging-1741.capstage.net
main.capstage.net
pr1946.reviews.capstage.net
user-workspace-staging-2004.capstage.net
spotlight-ui-staging-1754.capstage.net
dirpa-ui-staging-2308.capstage.net
user-workspace-staging-2004.capstage.net
sem-ui-staging-895.capstage.net
search-staging-694.capstage.net
spotlight-ui-staging-2320.capstage.net
dirpa-ui-staging-2308.capstage.net
dirpa-ui-staging-2330.capstage.net
*.capstage.net
spotlight-ui-staging-2061.capstage.net
spotlight-ui-staging-1757.capstage.net
sem-ui-staging-1429.capstage.net
pr1286.reviews.capstage.net
spotlight-ui-staging-1756.capstage.net
dirpa-ui-staging-2325.capstage.net
reviews.capstage.net
spotlight-ui-staging-1751.capstage.net
colin.capstage.net
spotlight-dev.capstage.net
vendor-page.capstage.net
spotlight-ui-staging-1745.capstage.net
reviews-dev.capstage.net
dirpa-ui-staging-2329.capstage.net
sa-ppl-form.capstage.net
pr1831.reviews.capstage.net
spotlight-ui-staging-1765.capstage.net
dirpa-ui-staging-2319.capstage.net
spotlight-ui-staging-2055.capstage.net
sem-ui-staging-1426.capstage.net
pr1832.reviews.capstage.net
spotlight-ui-staging-2063.capstage.net
sem-ui-staging-907.capstage.net
colin.capstage.net
spotlight-ui-staging-1763.capstage.net
spotlight-ui-staging-1746.capstage.net
sem-ui-staging-910.capstage.net
spotlight-ui-staging-1760.capstage.net
*.capstage.net
sem-ui-staging-908.capstage.net
sem-ui-staging-1191.capstage.net
user-workspace-staging-1997.capstage.net
user-workspace-staging-2008.capstage.net
user-workspace-staging-2002.capstage.net
*.capstage.net
search-staging-692.capstage.net
spotlight-ui-staging-2056.capstage.net
reviews-dev.capstage.net
dirpa-ui-staging-2333.capstage.net
vp-ppl-qa.capstage.net
search.capstage.net
spotlight-ui-staging-1756.capstage.net
spotlight-ui-staging-2068.capstage.net
sem-ui-staging-1425.capstage.net
dirpa-ui-staging-2332.capstage.net
reviews.capstage.net
dirpa-ui-staging-2045.capstage.net
sem-ui-staging-1205.capstage.net
capterra.com
spotlight-ui-staging-1762.capstage.net
spotlight-ui-staging-1744.capstage.net
sem-ui-staging-1209.capstage.net
sem-ui-staging-908.capstage.net
sem-ui-staging-900.capstage.net
sem-ui-staging-1427.capstage.net
workspace-dev.capstage.net
sem-ui-staging-909.capstage.net
search-staging-696.capstage.net
spotlight-ui-staging-1759.capstage.net
*.capstage.net
sem-ui-staging-907.capstage.net
capterra.com
sem-ui-staging-911.capstage.net
dirpa-ui-staging-1402.capstage.net
pr1244.reviews.capstage.net
spotlight-ui-staging-2058.capstage.net
homepage-ui-staging-469.capstage.net
dirpa-ui-staging-1403.capstage.net
spotlight-ui-staging-1762.capstage.net
user-workspace-staging-2002.capstage.net
workspace-dev.capstage.net
nginx-latency.capstage.net
homepage-ui-staging-203.capstage.net
Certificate
The complete raw certificate details for sem-ui-staging-1426.capstage.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEfzCCA2egAwIBAgIQAX5jspTwW9mFoBy2zQmNATANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIxMTAwMDAwMFoXDTI1MDEwODIzNTk1OVowKzEp MCcGA1UEAxMgc2VtLXVpLXN0YWdpbmctMTQyNi5jYXBzdGFnZS5uZXQwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpRn645qPTYKZg2ZCiTmshAde6EGcG FFnmJHOLSLWtVRRugJqbb8EO+HeJoh7HASN9lab9SgiRwpxk7r0o10r14EcNSA46 kA8IAjvDWL0ui4C2RjSxEmHlDedVfGKzWhaSU5Wf8BnIvUk2eMqem9S+iEVdfFvV C43pihVd2Qd6UGkt/xC/+8yF+QJLCHyjEt5hb+1jASa0JgnRFTDqK+zG2cjjlEf2 O/uvsAINqKzKUY0+QUUMqG1ZD9D8PtjRRGv4K7ds4xCi66cRseiN60NEtNrFKaKL fhjFh/WNN59PJTzo2fgUAo/pRcc9R2F/ZZmdTUBqsu6wa+S3uEkvM0uTAgMBAAGj ggGMMIIBiDAfBgNVHSMEGDAWgBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4E FgQUoDSuiExLTU+ZcmNRpFy8crnKspcwKwYDVR0RBCQwIoIgc2VtLXVpLXN0YWdp bmctMTQyNi5jYXBzdGFnZS5uZXQwEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8E NDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRydXN0LmNvbS9yMm0w My5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5y Mm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJt MDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMBAf8EAjAAMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA891/V9NUpYHGVRq9k xiyVnk9Iaza2fSR0fTgoA+gEX7fwx2sed3i6KLgccrN+fGEpb3WTiPL4KjaP14E/ BHgXrmIdes8/BfdRJhTiYrswe2SZn3+EEmiOSg7sCG/Miv+z3BQCs9lwrybRJW6S tFVpl3joFX4o2DROznfbsh0PUfTQgiwwaeNF9P3OVWivzZEKL/HjwTeb/PN/gXRT Md8Eh3g7udEIL8Le1+pJjkII0VRYdZAps3wRCLJFjYmuhWf2lWgUV0B1w+j3zrD+ StlhuKXTtOfQrR+fzbjv6ntjIN85NCOdGgTVwlUotTq2rn9NtFQKk37ydo1nGMw+ ud2/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUZ+uOaj02CmYNmQok5r IQHXuhBnBhRZ5iRzi0i1rVUUboCam2/BDvh3iaIexwEjfZWm/UoIkcKcZO69KNdK 9eBHDUgOOpAPCAI7w1i9LouAtkY0sRJh5Q3nVXxis1oWklOVn/AZyL1JNnjKnpvU vohFXXxb1QuN6YoVXdkHelBpLf8Qv/vMhfkCSwh8oxLeYW/tYwEmtCYJ0RUw6ivs xtnI45RH9jv7r7ACDaisylGNPkFFDKhtWQ/Q/D7Y0URr+Cu3bOMQouunEbHojetD RLTaxSmii34YxYf1jTefTyU86Nn4FAKP6UXHPUdhf2WZnU1AarLusGvkt7hJLzNL kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1985479507218350606711425907114478849 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sem-ui-staging-1426.capstage.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21369035923746755063461664080122298712829202961889978245370599477623594176294146416259939293479244442942220430552533371730278553940047624454286862140619752615781734972243488201905220624154098665789228632342512739201202747779948558626737772855319942545198213473664970349547916084359873744347983118229245949334098983371387704046063494285189948165278479768030140539777374697646614054857353316820762718583881921187706087858907833306824424567273869096174514734199601327179435080915778028981354514004484973897449998506762274654356230532037550655944203673622493344751788451310119636704510407343685088138338581292153681693587 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a034ae884c4b4d4f99726351a45cbc72b9cab297 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sem-ui-staging-1426.capstage.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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