pso.ahrq.gov
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 0e:5d:da:0b:c6:16:e7:0c:93:54:d2:ba:98:d8:da:bc was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=pso.ahrq.gov
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:5d:da:0b:c6:16:e7:0c:93:54:d2:ba:98:d8:da:bcSerial Number (int): 19096498046941664322459428174704466620
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ed:55:48:c6:e5:c3:6b:d5:58:22:3d:fd:4d:1b:96:a1:c2:31:ea:72
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 58:d3:b4:db:10:b2:b7:e8:39:27:d0:70:d2:e4:85:16:3f:b8:72:4d
Fingerprint (sha256): 36:54:14:7a:48:79:a6:cb:81:fe:c8:90:32:88:e0:28:46:28:59:0c:e0:52:c1:d1:9c:a9:5a:97:68:20:95:9b
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate pso.ahrq.gov
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pso.ahrq.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pso.ahrq.gov
www.pso.ahrq.gov
www.pso.ahrq.gov
Other certificates including the domain name ahrq.gov
(limited to 100 certificates)
*.ahrq.gov
owa.hhs.gov
dataviz.ahrq.gov
innovations.ahrq.gov
qualityindicators.ahrq.gov
lhspilot.ahrq.gov
www.hcup-us.ahrq.gov
www.ahrq.gov
arrs.ahrq.gov
hcupnet-archive.ahrq.gov
sdc3.ahrq.gov
srdr.training.ahrq.gov
*.ahrq.gov
www.cahps.ahrq.gov
www.ahrq.gov
info.ahrq.gov
nhqrnet.ahrq.gov
www.ahrq.gov
sopsdatabase.ahrq.gov
subscriptions.ahrq.gov
distributor.hcup-us.ahrq.gov
*.ahrq.gov
voltage-pp-0000.ahrq.gov
dam.ahrq.gov
gold.ahrq.gov
pso.ahrq.gov
ce.ahrq.gov
meps.ahrq.gov
ocdashboard.ahrq.gov
iqdnet.ahrq.gov
pso.ahrq.gov
srdrplus.ahrq.gov
sdc3.ahrq.gov
patientregistry.ahrq.gov
owa.hhs.gov
www.ahrq.gov
qsrs.ahrq.gov
arrs.ahrq.gov
effectivehealthcare.ahrq.gov
stage.ahrq.gov
www.ahrq.gov
www.ahrq.gov
owa.hhs.gov
ahrqivedhcupnet.ahrq.gov
epc-src.ahrq.gov
epssdata.ahrq.gov
innovations.ahrq.gov
accounts.ahrq.gov
iqdnet.ahrq.gov
cma.ahrq.gov
iqdnet.ahrq.gov
staging-nhqrnet.ahrq.gov
journal.ahrq.gov
jira.ahrq.gov
lhslc.ahrq.gov
info.ahrq.gov
cahpsdatabase.ahrq.gov
epc-src.ahrq.gov
gold.ahrq.gov
effectivehealthcare.ahrq.gov
jira.ahrq.gov
epssdata.ahrq.gov
www.hcup-us.ahrq.gov
www.hcup-us.ahrq.gov
qualitymeasures.ahrq.gov
jira.ahrq.gov
ahrq.gov
meps.ahrq.gov
*.ahrq.gov
ahrqpubs.ahrq.gov
confluence.ahrq.gov
cds-pass.ahrq.gov
ahrq.gov
subscriptions.ahrq.gov
confluence.ahrq.gov
www.ahrq.gov
www.distributor.hcup-us.ahrq.gov
docs.ahrq.gov
arrs.ahrq.gov
owa.hhs.gov
info.ahrq.gov
accounts.ahrq.gov
staging-nhqrnet.ahrq.gov
sopsdatabase.ahrq.gov
www.distributor.hcup-us.ahrq.gov
srdr.ahrq.gov
cahpsdatabase.ahrq.gov
www.hcup-us.ahrq.gov
ahrqpubs.ahrq.gov
www.ahrq.gov
primarycaremeasures.ahrq.gov
*.ahrq.gov
Owa.HHS.Gov
accounts.ahrq.gov
admin.ahrq.gov
nhqrnet.ahrq.gov
takeheart.ahrq.gov
www.sopsdatabase.ahrq.gov
search.ahrq.gov
hcupnet.ahrq.gov
owa.hhs.gov
dataviz.ahrq.gov
innovations.ahrq.gov
qualityindicators.ahrq.gov
lhspilot.ahrq.gov
www.hcup-us.ahrq.gov
www.ahrq.gov
arrs.ahrq.gov
hcupnet-archive.ahrq.gov
sdc3.ahrq.gov
srdr.training.ahrq.gov
*.ahrq.gov
www.cahps.ahrq.gov
www.ahrq.gov
info.ahrq.gov
nhqrnet.ahrq.gov
www.ahrq.gov
sopsdatabase.ahrq.gov
subscriptions.ahrq.gov
distributor.hcup-us.ahrq.gov
*.ahrq.gov
voltage-pp-0000.ahrq.gov
dam.ahrq.gov
gold.ahrq.gov
pso.ahrq.gov
ce.ahrq.gov
meps.ahrq.gov
ocdashboard.ahrq.gov
iqdnet.ahrq.gov
pso.ahrq.gov
srdrplus.ahrq.gov
sdc3.ahrq.gov
patientregistry.ahrq.gov
owa.hhs.gov
www.ahrq.gov
qsrs.ahrq.gov
arrs.ahrq.gov
effectivehealthcare.ahrq.gov
stage.ahrq.gov
www.ahrq.gov
www.ahrq.gov
owa.hhs.gov
ahrqivedhcupnet.ahrq.gov
epc-src.ahrq.gov
epssdata.ahrq.gov
innovations.ahrq.gov
accounts.ahrq.gov
iqdnet.ahrq.gov
cma.ahrq.gov
iqdnet.ahrq.gov
staging-nhqrnet.ahrq.gov
journal.ahrq.gov
jira.ahrq.gov
lhslc.ahrq.gov
info.ahrq.gov
cahpsdatabase.ahrq.gov
epc-src.ahrq.gov
gold.ahrq.gov
effectivehealthcare.ahrq.gov
jira.ahrq.gov
epssdata.ahrq.gov
www.hcup-us.ahrq.gov
www.hcup-us.ahrq.gov
qualitymeasures.ahrq.gov
jira.ahrq.gov
ahrq.gov
meps.ahrq.gov
*.ahrq.gov
ahrqpubs.ahrq.gov
confluence.ahrq.gov
cds-pass.ahrq.gov
ahrq.gov
subscriptions.ahrq.gov
confluence.ahrq.gov
www.ahrq.gov
www.distributor.hcup-us.ahrq.gov
docs.ahrq.gov
arrs.ahrq.gov
owa.hhs.gov
info.ahrq.gov
accounts.ahrq.gov
staging-nhqrnet.ahrq.gov
sopsdatabase.ahrq.gov
www.distributor.hcup-us.ahrq.gov
srdr.ahrq.gov
cahpsdatabase.ahrq.gov
www.hcup-us.ahrq.gov
ahrqpubs.ahrq.gov
www.ahrq.gov
primarycaremeasures.ahrq.gov
*.ahrq.gov
Owa.HHS.Gov
accounts.ahrq.gov
admin.ahrq.gov
nhqrnet.ahrq.gov
takeheart.ahrq.gov
www.sopsdatabase.ahrq.gov
search.ahrq.gov
hcupnet.ahrq.gov
Certificate
The complete raw certificate details for pso.ahrq.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF1zCCBL+gAwIBAgIQDl3aC8YW5wyTVNK6mNjavDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDMwMTAwMDAwMFoXDTI0MDIwNTIzNTk1OVowFzEV MBMGA1UEAxMMcHNvLmFocnEuZ292MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAnnDJGY62V7fQhQQyXAsfM4uDMfILize/dxm7eCFwAbeGaWW6MXdZ9bla zmZfeJiHRaEvg/HimwRNl7ERjpdJNZw+WufibLXN6btr0Q40vRqRRNJCOHDJbzrL kYW5+guhku/4+tH8kw+A4ZaJeFiPOF4AYXjJmUX8/gbrtDs3xMvdWjt65ZVOM8jc /OfiWnaLdUiAXCWIwvPPAQWna5Stg+mFukk6rSSficMN+W0IhwWr8ch3/7Pyr5fL j6f+/0Ib/9Nu+hzlSgyeIfFb8TP5/kcbG27Kb/lK3mO5HPvl9Cmpq2PpUZLmdvqG 3Epr3a1SLCw8+cVKtgy0SvAEE+Bq8wIDAQABo4IC+DCCAvQwHwYDVR0jBBgwFoAU gbgOY4qJEhjl+js7UJWf5uWQE4UwHQYDVR0OBBYEFO1VSMblw2vVWCI9/U0blqHC MepyMCkGA1UdEQQiMCCCDHBzby5haHJxLmdvdoIQd3d3LnBzby5haHJxLmdvdjAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsG A1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDEuYW1hem9udHJ1c3QuY29t L3IybTAxLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcw LQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAxLmFtYXpvbnRydXN0LmNvbTA2 BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMS5hbWF6b250cnVzdC5jb20vcjJt MDEuY2VyMAwGA1UdEwEB/wQCMAAwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2 AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABhp363DcAAAQDAEcw RQIhAKPE3XfXIF2mghB+A1fycqEw6zvckbLI6qXu0wZVAnc7AiAxg4X+OCQx1I8+ 66hQYvs+k9RGix53nMC7onU5d38mQwB2AHPZnokbTJZ4oCB9R53mssYc0FFecRkq jGuAEHrBd3K1AAABhp363C8AAAQDAEcwRQIhAJSpYBDRGPzsQ0Qb3f0yzbHd2Ehx VBtEYhwmNt4ywBGrAiARn2mSvwjvd+GP9KptRwG01Y/hRr4facNktvFIh1oEJwB3 AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABhp362/IAAAQDAEgw RgIhAPXup+zv8Y7fRRwHKZ50H/lRO3Y5AWWpvomjkfr9QKcfAiEA4Krk5p4dGZF3 MmS666/6sEQkRj88ODjLzHuM3vtX8dUwDQYJKoZIhvcNAQELBQADggEBAG3wNVFr 36dftF1UezDAOBlC23Rlpzu/vHOuXT+u4GR054I3yt9iGx9qPDaiqkg/ncQE4s2l qO74sB1I2wNvpLUozj0iXdRhe5Q5xYK+IAqwjJOBbp34P6+qBErH2FUQF4NZa6xl RHVjtUv4LSyrHB9YsQSPGhc+d0sYxHay8nOGf4JXU/w5rMXdoVG5BSgcqwuS2Arb sPMLCj4YrtkO2NDUkl8nydo+9o8Fm67Nz8XmZiWtAVmktkWSJQ410MBvf3UVNP38 B5SfwD8amab0Zt+xFjUzLC6rihZVZrEgjfsqdNLavZMpNNa2zECK9bfhn6DjcWs/ q5PH0Cugz+LVx70= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnnDJGY62V7fQhQQyXAsf M4uDMfILize/dxm7eCFwAbeGaWW6MXdZ9blazmZfeJiHRaEvg/HimwRNl7ERjpdJ NZw+WufibLXN6btr0Q40vRqRRNJCOHDJbzrLkYW5+guhku/4+tH8kw+A4ZaJeFiP OF4AYXjJmUX8/gbrtDs3xMvdWjt65ZVOM8jc/OfiWnaLdUiAXCWIwvPPAQWna5St g+mFukk6rSSficMN+W0IhwWr8ch3/7Pyr5fLj6f+/0Ib/9Nu+hzlSgyeIfFb8TP5 /kcbG27Kb/lK3mO5HPvl9Cmpq2PpUZLmdvqG3Epr3a1SLCw8+cVKtgy0SvAEE+Bq 8wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19096498046941664322459428174704466620 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pso.ahrq.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20001268810341350113614115702088376569831091108509103712891938511563029922959107049867715971593105918384618807717372905418661272559340298406059477599135345377385371296577379776389636639031857230467894988731708501412960399252390186826382983379001900101485713103954589584080779895060542921268820750679244460841265947257639017573471034706238456518796431708183716464164714428643331292156746939524040499398680120359225023062599731459699081194960742280937330378803975934955307449278375066368083872168521678353676268662718753716347903537872936993179004453820682702804117260657743762191994032881009466363153122013187087035123 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ed5548c6e5c36bd558223dfd4d1b96a1c231ea72 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pso.ahrq.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pso.ahrq.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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