my.sonnen.de
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 06:50:20:b0:83:37:3d:61:e4:a6:24:a8:7e:57:0f:a0 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=my.sonnen.de
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:50:20:b0:83:37:3d:61:e4:a6:24:a8:7e:57:0f:a0Serial Number (int): 8391414745265517888522800242410065824
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 01:2a:90:5b:d4:12:29:e6:58:c2:2b:8c:34:46:2a:e8:a5:b3:87:6f
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 48:7a:58:47:9f:f5:29:47:d6:0b:c2:6b:85:de:08:ad:9a:6a:20:6b
Fingerprint (sha256): 38:c3:d6:f0:c7:8a:17:55:76:46:59:4a:eb:9c:3c:34:22:bf:26:df:df:5b:79:09:d3:c6:26:fb:0c:e6:7a:eb
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate my.sonnen.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for my.sonnen.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
my.sonnen.de
my.sonnen.it
my.sonnen.it
Other certificates including the domain name sonnen.de
(limited to 100 certificates)
partner.sonnen.de
*.staging.sonnen.de
my.dev.sonnen.de
centralsystem.ocppdev.sonnen.de
*.account.sonnen.de
admin.ocppdev.sonnen.de
*.sonnen.de
my.sonnen.de
partner.dev.sonnen.de
enos-api-dev.sonnen.de
apigw.sonnen.de
my-api.sonnen.de
fleetview-dev.sonnen.de
*.sonnen.de
timeseries.iot.sonnen.de
gateway.ocpp.sonnen.de
atlantis.internal.sonnen.de
my.sonnen.de
preview.sonnen.de
storybook.sonnen.de
*.sonnen.de
*.sonnen.de
admin.ocppdev.sonnen.de
my.dev.sonnen.de
eservices-api.sonnen.de
*.sales.staging.sonnen.de
dp-contract.sonnen.de
my.sonnen.de
*.sonnen.de
admin.ocppdev.sonnen.de
service-dev.sonnen.de
*.eservices-api.sonnen.de
www.my-dev.sonnen.de
*.analytics.sonnen.de
enos-api-dev.sonnen.de
wiki.sonnenbatterie.de
my.dev.sonnen.de
my-api.sonnen.de
my.staging.sonnen.de
*.analytics.sonnen.de
service.sonnen.de
my-staging.sonnen.de
my-dev.sonnen.de
my.sonnen.de
free.sonnen.de
gateway.ocppdev.sonnen.de
gateway.ocpptest.sonnen.de
partner.dev.sonnen.de
vault.sonnen.de
partner.preprod.sonnen.de
gateway.ocppdev.sonnen.de
*.sonnen.de
documents.sonnen.de
fleetview.sonnen.de
partner.preprod.sonnen.de
bitwarden.sonnen.de
*.analytics.sonnen.de
centralsystem.ocpp.sonnen.de
partner.dev.sonnen.de
*.account.sonnen.de
gateway.ocppdev.sonnen.de
preview.sonnen.de
fleetview.sonnen.de
*.analytics.sonnen.de
live.komplett.sonnen.ims.de
components.sonnen.de
timeseries-dev.iot.sonnen.de
vault.sonnen.de
centralsystem.ocpp.sonnen.de
documents.sonnen.de
gateway.ocpp.sonnen.de
dp-billing.sonnen.de
analytics.sonnen.de
my.preprod.sonnen.de
service.sonnen.de
*.sales.sonnen.de
*.sales.staging.sonnen.de
preview.sonnen.de
centarlsystem.ocpptest.sonnen.de
dev.dlm.iot.sonnen.de
centralsystem.ocpp.sonnen.de
centarlsystem.ocpptest.sonnen.de
my.sonnen.de
dev.dp-billing.sonnen.de
*.staging.sonnen.de
live.komplett.sonnen.ims.de
jobs.sonnen.de
my.dev.sonnen.de
partner.dev.sonnen.de
account.sonnen.de
admin.ocppdev.sonnen.de
enos-api.sonnen.de
fleetview.sonnen.de
*.sonnen.de
admin.ocpp.sonnen.de
*.staging.sonnen.de
staging.dp-contract.sonnen.de
my.dev.sonnen.de
partner.dev.sonnen.de
gateway.ocppdev.sonnen.de
*.staging.sonnen.de
my.dev.sonnen.de
centralsystem.ocppdev.sonnen.de
*.account.sonnen.de
admin.ocppdev.sonnen.de
*.sonnen.de
my.sonnen.de
partner.dev.sonnen.de
enos-api-dev.sonnen.de
apigw.sonnen.de
my-api.sonnen.de
fleetview-dev.sonnen.de
*.sonnen.de
timeseries.iot.sonnen.de
gateway.ocpp.sonnen.de
atlantis.internal.sonnen.de
my.sonnen.de
preview.sonnen.de
storybook.sonnen.de
*.sonnen.de
*.sonnen.de
admin.ocppdev.sonnen.de
my.dev.sonnen.de
eservices-api.sonnen.de
*.sales.staging.sonnen.de
dp-contract.sonnen.de
my.sonnen.de
*.sonnen.de
admin.ocppdev.sonnen.de
service-dev.sonnen.de
*.eservices-api.sonnen.de
www.my-dev.sonnen.de
*.analytics.sonnen.de
enos-api-dev.sonnen.de
wiki.sonnenbatterie.de
my.dev.sonnen.de
my-api.sonnen.de
my.staging.sonnen.de
*.analytics.sonnen.de
service.sonnen.de
my-staging.sonnen.de
my-dev.sonnen.de
my.sonnen.de
free.sonnen.de
gateway.ocppdev.sonnen.de
gateway.ocpptest.sonnen.de
partner.dev.sonnen.de
vault.sonnen.de
partner.preprod.sonnen.de
gateway.ocppdev.sonnen.de
*.sonnen.de
documents.sonnen.de
fleetview.sonnen.de
partner.preprod.sonnen.de
bitwarden.sonnen.de
*.analytics.sonnen.de
centralsystem.ocpp.sonnen.de
partner.dev.sonnen.de
*.account.sonnen.de
gateway.ocppdev.sonnen.de
preview.sonnen.de
fleetview.sonnen.de
*.analytics.sonnen.de
live.komplett.sonnen.ims.de
components.sonnen.de
timeseries-dev.iot.sonnen.de
vault.sonnen.de
centralsystem.ocpp.sonnen.de
documents.sonnen.de
gateway.ocpp.sonnen.de
dp-billing.sonnen.de
analytics.sonnen.de
my.preprod.sonnen.de
service.sonnen.de
*.sales.sonnen.de
*.sales.staging.sonnen.de
preview.sonnen.de
centarlsystem.ocpptest.sonnen.de
dev.dlm.iot.sonnen.de
centralsystem.ocpp.sonnen.de
centarlsystem.ocpptest.sonnen.de
my.sonnen.de
dev.dp-billing.sonnen.de
*.staging.sonnen.de
live.komplett.sonnen.ims.de
jobs.sonnen.de
my.dev.sonnen.de
partner.dev.sonnen.de
account.sonnen.de
admin.ocppdev.sonnen.de
enos-api.sonnen.de
fleetview.sonnen.de
*.sonnen.de
admin.ocpp.sonnen.de
*.staging.sonnen.de
staging.dp-contract.sonnen.de
my.dev.sonnen.de
partner.dev.sonnen.de
gateway.ocppdev.sonnen.de
Certificate
The complete raw certificate details for my.sonnen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF0TCCBLmgAwIBAgIQBlAgsIM3PWHkpiSoflcPoDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIyNTAwMDAwMFoXDTI1MDEyMTIzNTk1OVowFzEV MBMGA1UEAxMMbXkuc29ubmVuLmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAvV1HqrGSG2+WMrGxKmc/G9qjmAsYjBz7Yq9l5KTgE5O0VKo1tcGBQlM4 G8SurOP55PteHuOy+D4KxArRBYFpjZwhTxaJ/KBUbNLOGUwc7Q19RYT7LWArjXFJ LwqMYGQxCHhDzmLsCxulN/6hKXZ3qhSR0rsE2ajdInFaNOOFt0sjv+jYCmj7WkZN MyWUHSYTn1k7SQJq6UYZnvMrmRfP+aElWjCNuvTQICb//GZVuJ46+dhpDZV09bbD bC55h4qss0qwyTeWjB5V1piWk/PNh6mELQZstTNdq2cCzG4CWV8Ed1YIUSPlpX4b UcXm7eO/sG24hyD0Kjy84iY3WoINBQIDAQABo4IC8jCCAu4wHwYDVR0jBBgwFoAU wDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFAEqkFvUEinmWMIrjDRGKuil s4dvMCUGA1UdEQQeMByCDG15LnNvbm5lbi5kZYIMbXkuc29ubmVuLml0MBMGA1Ud IAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0w Mi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggr BgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDIuYW1hem9udHJ1c3QuY29tMDYGCCsG AQUFBzAChipodHRwOi8vY3J0LnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5j ZXIwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYATnWj J1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGMn+7aJAAABAMARzBFAiBu TlqagjVvpgslu20dT8xYBvW4RucN0Uw3Kme7CrY0jgIhALNouYGH9tIfqWDlMG8n whCwmAqFEYE87HQYNMJIrJs5AHYAfVkeEuF4KnscYWd8Xv340IdcFKBOlZ65Ay/Z DowuebgAAAGMn+7Z/gAABAMARzBFAiEApCAkG7IpnQY1eQkWdXMhyFvtLOvCnuLP SBUaLe7q5IkCIGe5pttNwRjdcr7jZmSuZK2b/0KM/oIs0XAtV6O6UDSSAHUA5tIx Y0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGMn+7aJgAABAMARjBEAiAf 6A/CDrJB8mqiCIjzXTH4LZmBXMPk/XinZ/kmaNABIQIgXFpt35RfII2AWQLxMacj jqORmUoRCpcDpXYdpImtGvowDQYJKoZIhvcNAQELBQADggEBABv2q/KkveOJI070 lbuuI5NLJBohCXZdcUXRlJP3qdEODJ8VHy8G24YEiO7NnbN79ffiyzo+PeY3u+1F dAfusmTm0Oomt4pZZb4VcpXwzcw1tZVqgfP0KMdDRCS0p25U4SnvIU0N/On8vW2I O4HH9yzq0plV7bo+hr1bFZiuBu6M0N18gIfMrOsCplXSyiFjYd+UA3Nt4xQGFreH RPmd4HvNNQTJD8d7ObTrHriG4jlmXSfhmQfVQ52d35x67uNF9yeoZ6xDAZCtMwGm 1suIn3JlO9WfaKi01l8w9+P6jOYF5lpKMCJuahsl8MDGBDb+06dysaug9nPAiUAJ pHKDLpo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvV1HqrGSG2+WMrGxKmc/ G9qjmAsYjBz7Yq9l5KTgE5O0VKo1tcGBQlM4G8SurOP55PteHuOy+D4KxArRBYFp jZwhTxaJ/KBUbNLOGUwc7Q19RYT7LWArjXFJLwqMYGQxCHhDzmLsCxulN/6hKXZ3 qhSR0rsE2ajdInFaNOOFt0sjv+jYCmj7WkZNMyWUHSYTn1k7SQJq6UYZnvMrmRfP +aElWjCNuvTQICb//GZVuJ46+dhpDZV09bbDbC55h4qss0qwyTeWjB5V1piWk/PN h6mELQZstTNdq2cCzG4CWV8Ed1YIUSPlpX4bUcXm7eO/sG24hyD0Kjy84iY3WoIN BQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8391414745265517888522800242410065824 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'my.sonnen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23905037695476763594316923905333742848305401027705814943837108829417330505567618222909735526178260504385795800201958406691800906992927039693480296336255896862030811461298576791551992743034552562189488419767335352873073146866980893624477584116420090416547366328368052438192411557755517739126936785574627069183918182119844197369422027794747356254937361567864164954373965416920732920578603323124418946726784806164015095280375298340067864613625081411589731703967043961666312842345292903377029423455687624899329203470408508848489333771554038062879481204358007374137415023431534410979519351547218291337482191092182287518981 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 012a905bd41229e658c22b8c34462ae8a5b3876f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.sonnen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.sonnen.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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