*.aimatch.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 09:39:97:cb:00:07:b2:ef:78:ed:52:b4:10:80:6d:f3 was issued on by Amazon.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.aimatch.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 09:39:97:cb:00:07:b2:ef:78:ed:52:b4:10:80:6d:f3Serial Number (int): 12262091610177177308311847962664791539
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 7e:a4:39:22:a3:c7:51:9b:79:c4:b8:26:d6:2c:e8:37:45:0f:f7:5f
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): ed:9f:09:98:d1:82:94:2f:60:5e:62:1f:fb:7a:fa:29:be:f7:6d:93
Fingerprint (sha256): 3e:f3:7c:ca:4a:f8:f9:1e:a8:a1:b9:d5:13:97:02:d9:e3:eb:9e:bb:2d:44:ac:23:39:f1:7c:01:f0:ec:36:29
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.aimatch.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.aimatch.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.aimatch.com
*.aimatch.net
*.bi.aimatch.com
*.aimatch.net
*.bi.aimatch.com
Other certificates including the domain name aimatch.com
(limited to 100 certificates)
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
content.dev.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.dev.aimatch.com
content.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
*.aimatch.com
*.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
content.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
*.aimatch.com
*.dev.aimatch.com
*.dev.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
*.aimatch.com
*.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
cdn.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
*.aimatch.com
*.dev.aimatch.com
content.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
foghorn.dev.aimatch.com
*.aimatch.com
*.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
*.aimatch.com
*.aimatch.com
content.dev.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
*.aimatch.com
*.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
content.dev.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
content.dev.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.dev.aimatch.com
content.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
*.aimatch.com
*.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
content.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
*.aimatch.com
*.dev.aimatch.com
*.dev.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
*.aimatch.com
*.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
content.aimatch.com
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
cdn.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
*.aimatch.com
*.aimatch.com
*.dev.aimatch.com
content.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
tier4-usw2.oregon.delivery.dev.aimatch.net
*.aimatch.com
content.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
foghorn.dev.aimatch.com
*.aimatch.com
*.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
*.aimatch.com
*.aimatch.com
content.dev.aimatch.com
tier4-usw2.oregon.delivery.dev.aimatch.net
*.aimatch.com
*.aimatch.com
*.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
content.aimatch.com
*.aimatch.com
content.dev.aimatch.com
*.aimatch.com
content.aimatch.com
Certificate
The complete raw certificate details for *.aimatch.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5zCCBM+gAwIBAgIQCTmXywAHsu947VK0EIBt8zANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDExNzAwMDAwMFoXDTI1MDIxNDIzNTk1OVowGDEW MBQGA1UEAwwNKi5haW1hdGNoLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAKfULcB9olvn22/MlO4MQKxhTv3m4shhzHuvdUyF7fgT0Hr//vng6gWf j/TKGtj7EC/AufFJgMlu467/c/uc7m0GVL1chIadXIeKdYman2pVnVqg0odo68Bz Rha2ec7nK5VOTFYvEhF95biLasbEvc64qMjL4JmfKlrxIvTw9ytBTXZVoCnJiq5B gOzAEkX/AAVVjSlk/7c/o8fAjzIuzPbn8ha10Qn42VghGmZyE6nhU66RG1OBkUNZ QNLXZPQx0Iun+t+wdzliSogYfD+Pftr1lSF5u2wdKjjGdQlvdqHQGofDJ3gkfLff C8ZvFMhaG7mreWs9SmrIwAzlbQdEIfMCAwEAAaOCAwcwggMDMB8GA1UdIwQYMBaA FMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBR+pDkio8dRm3nEuCbWLOg3 RQ/3XzA5BgNVHREEMjAwgg0qLmFpbWF0Y2guY29tgg0qLmFpbWF0Y2gubmV0ghAq LmJpLmFpbWF0Y2guY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAw oC6gLIYqaHR0cDovL2NybC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3Js MHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDIu YW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAyLmFt YXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB 1nkCBAIEggFuBIIBagFoAHYAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87M OwgAAAGNFREe2gAABAMARzBFAiBLU+rF4NEB/rS45TACHD1lFeEaDnSEfsIsZC8/ 6HyriwIhAKHMmztv62zU27aVtGREWqBl0K1yStotf+8tgC9eib+cAHYAfVkeEuF4 KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGNFREezAAABAMARzBFAiBWOFov lzGqJHLhwoHCbHSZEJZhSjgly3WjEcnvuUiqIQIhAJkJo+05/+9++yX4S9i9ibfQ cGqQmLLMAgrnYnlXJHOTAHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43 jlAAAAGNFREe9QAABAMARzBFAiBlBje3QOF0Hq51O8k8Ou7Lm1D4slFACl9niIGe /pOcmAIhALszf9i+/bRGQc/eVgVkW7nSvohVLE0xqitkNG0HHs2JMA0GCSqGSIb3 DQEBCwUAA4IBAQA83+bJBaVJMyo1ZbJk/ZYIqQGNLRhhssh6YshCOTf8qBURhXKl pKQn4XEhMOD/i3uUVa7ZyKy8vwiGKwqvFJBR4PNriCNruFkPNdi1c2YBDJvVsi2J wBkXMBHhqZ6AfrtY3vLdnCpAh9uh54JTk5xmlpfBVpyFFLl+CpcxRypEs4H7aThU HBzEEIHGRQP+wNTafNgkk8r+2MpmsoMfNHC9MrC51RfHJ4qXtxWodyktQizwLILu okR1jaK5BDIXgQjmQoWB2dTKMfTnMi8r5vZoxyjim1JhNwbVePtsbJp61YTI74WE Xu1MxSpNz4bILuICPgMvoD/q6xIK6AlLBYB0 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9QtwH2iW+fbb8yU7gxA rGFO/ebiyGHMe691TIXt+BPQev/++eDqBZ+P9Moa2PsQL8C58UmAyW7jrv9z+5zu bQZUvVyEhp1ch4p1iZqfalWdWqDSh2jrwHNGFrZ5zucrlU5MVi8SEX3luItqxsS9 zrioyMvgmZ8qWvEi9PD3K0FNdlWgKcmKrkGA7MASRf8ABVWNKWT/tz+jx8CPMi7M 9ufyFrXRCfjZWCEaZnITqeFTrpEbU4GRQ1lA0tdk9DHQi6f637B3OWJKiBh8P49+ 2vWVIXm7bB0qOMZ1CW92odAah8MneCR8t98Lxm8UyFobuat5az1KasjADOVtB0Qh 8wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12262091610177177308311847962664791539 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.aimatch.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21186426154972235498222972208418570095794803654912800623712815772568677935797863886352031812461806512458920732543230058598247402275061653753544283904847882874041258723310912004359803293323913846002023392235579447200692601720171281508693574868195131567040624790129712157177799551175832833704348365083616450045104472637247679776160163254498524952562585605521135704020734926949240857670342020116792232526159810261883625166410129806222946439148276672746415082553564799862051291792041208623277195673404329018446165321445327456441250721660724353311068918970591889904695452105007634174190935116422166275589994283412536697331 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7ea43922a3c7519b79c4b826d62ce837450ff75f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aimatch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aimatch.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bi.aimatch.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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