*.dsoautomation.net
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 0f:78:41:4f:39:e0:f0:23:71:2e:7b:b2:0d:a9:e1:e3 was issued on by Amazon.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.dsoautomation.net
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:78:41:4f:39:e0:f0:23:71:2e:7b:b2:0d:a9:e1:e3Serial Number (int): 20562820193359572359598861052027724259
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 43:fd:9a:f3:be:24:b0:5f:73:b0:5a:08:9f:80:d1:36:65:38:f8:7b
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): e0:a5:55:83:d2:27:99:87:82:5e:b8:7f:05:d9:8f:6c:b2:77:cd:21
Fingerprint (sha256): 37:e2:5d:87:a6:b5:dc:f6:03:3a:8a:d4:fa:77:86:f4:81:a5:26:4f:f2:31:6b:f3:8a:fd:da:c6:95:bd:49:28
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate *.dsoautomation.net
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.dsoautomation.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.dsoautomation.net
qa.tams.api.bcg.com
*.tams-qa.eu-central-1.eks.dsoautomation.net
qa.tams.api.bcg.com
*.tams-qa.eu-central-1.eks.dsoautomation.net
Other certificates including the domain name dsoautomation.net
(limited to 100 certificates)
*.dsoautomation.net
*.dev.eu-central-1.eks.dsoautomation.net
*.dsoautomation.net
enrich-legacy-dev.dsoautomation.net
*.dsoautomation.net
enrich-cms-docviz.bcg.com
*.dsoautomation.net
enrich-legacy-dev.dsoautomation.net
*.dsoautomation.net
dev2.newnavigator.bcg.com
pages-qa.navigator.bcg.com
pages-dev.navigator.bcg.com
*.kbi-dev.eu-central-1.eks.dsoautomation.net
enrich-jarvis.api.bcg.com
tams-dev.bcg.com
*.dsoautomation.net
pages.navigator.bcg.com
dev1.newnavigator.bcg.com
*.dsoautomation.net
jarvis.dsoautomation.net
kbi-video-streaming-stg.dsoautomation.net
qa.newnavigator.bcg.com
prodnew-tier1.bcg.com
enrich-cms-docviz-qa.bcg.com
*.dsoautomation.net
qa.navigator.bcg.com
devnew-chargetrack.bcg.com
*.dsoautomation.net
profiles2-dev.navigator.bcg.com
pages.navigator.bcg.com
pages-stg.navigator.bcg.com
enrich-cms-docviz-stg.bcg.com
*.dsoautomation.net
*.dsoautomation.net
enrich-cms-materials-qa.bcg.com
*.dsoautomation.net
*.dsoautomation.net
enrich-jenkins.bcg.com
*.dev.eu-central-1.eks.dsoautomation.net
profiles2-stg.navigator.bcg.com
enrich-cms-materials-dev.bcg.com
enrich-jarvis.api.bcg.com
devnew-chargetrack.bcg.com
api-protected.integration.dsoautomation.net
dev-pacontacts-navigator.bcg.com
*.prod.ap-southeast-1.eks.dsoautomation.net
*.dsoautomation.net
newnavigator.bcg.com
*.dsoautomation.net
enrich-cms-docviz-dev.bcg.com
enrich-legacy-dev.dsoautomation.net
*.dsoautomation.net
sinequa-test.dsoautomation.net
profiles.navigator.bcg.com
*.dsoautomation.net
newnavigator.bcg.com
pages.navigator.bcg.com
*.dsoautomation.net
profiles-stg.navigator.bcg.com
qanew-chargetrack.bcg.com
ktdashboard-dev.bcg.com
tams-qa.bcg.com
pipepack-dev.bcg.com
*.dsoautomation.net
pa-affiliation-dev.bcg.com
enrich-cms-materials.bcg.com
dev-pacontacts-navigator.bcg.com
*.dsoautomation.net
enrich-cms-materials-dev.bcg.com
sinequa-test.enrich.dsoautomation.net
*.dsoautomation.net
cfstools.bcg.com
*.dsoautomation.net
cfs-tools-stg.bcg.com
enrich.api.bcg.com
*.dsoautomation.net
cfs-tools-dev.bcg.com
cfs-tools-qa.bcg.com
*.dsoautomation.net
enrich-cms-materials-stg.bcg.com
enrich-cms-materials.bcg.com
enrich-cms-docviz.bcg.com
*.dsoautomation.net
enrich.api.bcg.com
*.eu-central-1.sitecore.internalstg.dsoautomation.net
stg.newnavigator.bcg.com
profiles2-qa.navigator.bcg.com
enrich-cms-materials.bcg.com
jarvis.dsoautomation.net
*.dsoautomation.net
dev5.newnavigator.bcg.com
pipepack-qa.bcg.com
testtemporary.dsoautomation.net
*.dsoautomation.net
profiles.navigator.bcg.com
newnavigator.bcg.com
*.eu-central-1.sitecore.internalstg.dsoautomation.net
enrich-cms-docviz-stg.bcg.com
enrich-cms-materials-stg.bcg.com
*.sitecore.dsoautomation.net
*.dev.eu-central-1.eks.dsoautomation.net
*.dsoautomation.net
enrich-legacy-dev.dsoautomation.net
*.dsoautomation.net
enrich-cms-docviz.bcg.com
*.dsoautomation.net
enrich-legacy-dev.dsoautomation.net
*.dsoautomation.net
dev2.newnavigator.bcg.com
pages-qa.navigator.bcg.com
pages-dev.navigator.bcg.com
*.kbi-dev.eu-central-1.eks.dsoautomation.net
enrich-jarvis.api.bcg.com
tams-dev.bcg.com
*.dsoautomation.net
pages.navigator.bcg.com
dev1.newnavigator.bcg.com
*.dsoautomation.net
jarvis.dsoautomation.net
kbi-video-streaming-stg.dsoautomation.net
qa.newnavigator.bcg.com
prodnew-tier1.bcg.com
enrich-cms-docviz-qa.bcg.com
*.dsoautomation.net
qa.navigator.bcg.com
devnew-chargetrack.bcg.com
*.dsoautomation.net
profiles2-dev.navigator.bcg.com
pages.navigator.bcg.com
pages-stg.navigator.bcg.com
enrich-cms-docviz-stg.bcg.com
*.dsoautomation.net
*.dsoautomation.net
enrich-cms-materials-qa.bcg.com
*.dsoautomation.net
*.dsoautomation.net
enrich-jenkins.bcg.com
*.dev.eu-central-1.eks.dsoautomation.net
profiles2-stg.navigator.bcg.com
enrich-cms-materials-dev.bcg.com
enrich-jarvis.api.bcg.com
devnew-chargetrack.bcg.com
api-protected.integration.dsoautomation.net
dev-pacontacts-navigator.bcg.com
*.prod.ap-southeast-1.eks.dsoautomation.net
*.dsoautomation.net
newnavigator.bcg.com
*.dsoautomation.net
enrich-cms-docviz-dev.bcg.com
enrich-legacy-dev.dsoautomation.net
*.dsoautomation.net
sinequa-test.dsoautomation.net
profiles.navigator.bcg.com
*.dsoautomation.net
newnavigator.bcg.com
pages.navigator.bcg.com
*.dsoautomation.net
profiles-stg.navigator.bcg.com
qanew-chargetrack.bcg.com
ktdashboard-dev.bcg.com
tams-qa.bcg.com
pipepack-dev.bcg.com
*.dsoautomation.net
pa-affiliation-dev.bcg.com
enrich-cms-materials.bcg.com
dev-pacontacts-navigator.bcg.com
*.dsoautomation.net
enrich-cms-materials-dev.bcg.com
sinequa-test.enrich.dsoautomation.net
*.dsoautomation.net
cfstools.bcg.com
*.dsoautomation.net
cfs-tools-stg.bcg.com
enrich.api.bcg.com
*.dsoautomation.net
cfs-tools-dev.bcg.com
cfs-tools-qa.bcg.com
*.dsoautomation.net
enrich-cms-materials-stg.bcg.com
enrich-cms-materials.bcg.com
enrich-cms-docviz.bcg.com
*.dsoautomation.net
enrich.api.bcg.com
*.eu-central-1.sitecore.internalstg.dsoautomation.net
stg.newnavigator.bcg.com
profiles2-qa.navigator.bcg.com
enrich-cms-materials.bcg.com
jarvis.dsoautomation.net
*.dsoautomation.net
dev5.newnavigator.bcg.com
pipepack-qa.bcg.com
testtemporary.dsoautomation.net
*.dsoautomation.net
profiles.navigator.bcg.com
newnavigator.bcg.com
*.eu-central-1.sitecore.internalstg.dsoautomation.net
enrich-cms-docviz-stg.bcg.com
enrich-cms-materials-stg.bcg.com
*.sitecore.dsoautomation.net
Certificate
The complete raw certificate details for *.dsoautomation.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFjCCBP6gAwIBAgIQD3hBTzng8CNxLnuyDanh4zANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDIxNDAwMDAwMFoXDTIzMDcwNjIzNTk1OVowHjEc MBoGA1UEAwwTKi5kc29hdXRvbWF0aW9uLm5ldDCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMDfSTGsPFm02pI9iTPW0vOB2mM8+9BERDPQptzzsY/pfJHk 5lX0MhGMDIcfLglVlsNHRWlHpak0g4lGrStASNu5MSqaVT79rO/SS1789+vszAy8 poIA09VBKbj91l28P8k0mD8hICNfmXkxkttn4fImB/jLmn7FDlz9glOvm0oetqmP M8BvqAUe7+0HAmbJn9v0LAYpmbcLIEkkawdDe9ELrtUQKsPJokiPXuPcmrZNExAC s/9ZbW2NBZlxmSIjJPH+wZFzBPpu8NyQU9acNy4NFX7gMhz+WUCHipKAA8YOQ/5l LGivFVmRtWQb80hQ3DdTcxGAD/Wvyrmib5JMtCUCAwEAAaOCAzAwggMsMB8GA1Ud IwQYMBaAFIG4DmOKiRIY5fo7O1CVn+blkBOFMB0GA1UdDgQWBBRD/ZrzviSwX3Ow WgifgNE2ZTj4ezBhBgNVHREEWjBYghMqLmRzb2F1dG9tYXRpb24ubmV0ghNxYS50 YW1zLmFwaS5iY2cuY29tgiwqLnRhbXMtcWEuZXUtY2VudHJhbC0xLmVrcy5kc29h dXRvbWF0aW9uLm5ldDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDEu YW1hem9udHJ1c3QuY29tL3IybTAxLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1 BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAxLmFt YXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMS5hbWF6 b250cnVzdC5jb20vcjJtMDEuY2VyMAwGA1UdEwEB/wQCMAAwggF/BgorBgEEAdZ5 AgQCBIIBbwSCAWsBaQB3AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1u AAABhk06n6UAAAQDAEgwRgIhANEvuDvOomvzC5ylpqnMSRVVS4BW3BROTiYhfdTw /vBhAiEAsYZF7wgyPNlyPvJh6VyqcBGmh2zCB3DfzK1DaFSsFbUAdgCzc3cH4YRQ +GOG1gWp3BEJSnktsWcMC4fc8AMOeTalmgAAAYZNOqBTAAAEAwBHMEUCID9N89I+ o5ua3zg2rvYXir/nGGhcm4KMQIjsGXKAiUnzAiEA9FxwgAzdUqNwbEPmKHB1NxSj 0Iqp7pqPmf6RjegaG1cAdgC3Pvsk35xNunXyOcW6WPRsXfxCz3qfNcSeHQmBJe20 mQAAAYZNOp/ZAAAEAwBHMEUCIEgFUTjXNAoQCFoZhQcXCmyzTcj0U9gl8pHxDgia RAAoAiEA5nVpX36002r3174Co6ao6mJ2TZJv+HJrtxEGQkbG2JUwDQYJKoZIhvcN AQELBQADggEBAKdOJ4jBabSe1jaK0t9v6ToSMjfD99ikFLieG+0mjgI/UjTI3Q0+ dRbuGzgO4RV53zMw2GEDgAXSnEolbMnihxyE1SI4b2obSKhFWkOlmNAi4KXylsXn E6Oz/0tKTRp0Mu2bvwZ6Zr2ERHwUUSdl8INhHWq0ivE5AhKji30XLoZiRdnOGKIg vpRhccH5PHNdr8NkTS3HThkRAomMSuJU9y57vH/99dqWtlTEc2at/HcSQ2qqrE64 umJDAi2sRmr+X0bZsl9Fi8sX4D8j9GZym4IsoEPzKPscW6gTPfjDuE9VjGXmRT/4 oYZfAIqn04xnqW/k2QIKmvGDiUwI/QWJNMw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwN9JMaw8WbTakj2JM9bS 84HaYzz70EREM9Cm3POxj+l8keTmVfQyEYwMhx8uCVWWw0dFaUelqTSDiUatK0BI 27kxKppVPv2s79JLXvz36+zMDLymggDT1UEpuP3WXbw/yTSYPyEgI1+ZeTGS22fh 8iYH+MuafsUOXP2CU6+bSh62qY8zwG+oBR7v7QcCZsmf2/QsBimZtwsgSSRrB0N7 0Quu1RAqw8miSI9e49yatk0TEAKz/1ltbY0FmXGZIiMk8f7BkXME+m7w3JBT1pw3 Lg0VfuAyHP5ZQIeKkoADxg5D/mUsaK8VWZG1ZBvzSFDcN1NzEYAP9a/KuaJvkky0 JQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20562820193359572359598861052027724259 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.dsoautomation.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24347860941494935278705845154019386053448187825050227816487804867737517436356610628292216533138302452931706841776847727019969018040745375643699679728374742516026315893373229436343498023377891383267488784210990834253461554438543442801296454930735785297370689523229819715092508910891988402802333663469280218115979345792462182732599214015190750580672596483544363106177362503773337733031626519313216603007999481872789071808099999541240276200310845328914379206067440196306547901647260436957907613671556150005959622753101785912195547757063413143635811756230334112174008098039812469683915247871800842935728402176739679974437 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 43fd9af3be24b05f73b05a089f80d1366538f87b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dsoautomation.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.tams.api.bcg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tams-qa.eu-central-1.eks.dsoautomation.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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