nexus.dev.cloud.jewels.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 03:68:55:c5:47:3c:cf:df:c8:c7:c7:15:e5:c0:92:b9 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=nexus.dev.cloud.jewels.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:68:55:c5:47:3c:cf:df:c8:c7:c7:15:e5:c0:92:b9Serial Number (int): 4529422495453648298585145552142373561
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: b0:42:af:a8:8d:05:53:8e:20:6b:94:cf:74:32:d3:a7:1d:7f:41:ef
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 67:dd:64:1a:16:bc:07:b5:1b:b1:e6:74:71:74:5f:77:e0:ef:2a:76
Fingerprint (sha256): 51:49:41:e5:0c:5b:5b:24:59:c9:04:25:4c:1f:de:89:b5:18:24:be:0b:3a:25:9e:bd:7e:62:db:89:1e:ba:a3
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate nexus.dev.cloud.jewels.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nexus.dev.cloud.jewels.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nexus.dev.cloud.jewels.com
navigation-api.nexus.dev.cloud.jewels.com
navigation-api.nexus.dev.cloud.jewels.com
Other certificates including the domain name jewels.com
(limited to 100 certificates)
qlqw10app00.jewels.com
srsprod.jewels.com
imperva.com
skuserviceapi.dev.cloud.jewels.com
rmm.test.cloud.jewels.com
signet-identity-provider-test.jewels.com
plcosatadm01.jewels.com
skuserviceapi.dev.cloud.jewels.com
credithub-test.azusnc-test.jewels.com
workordersapi-dev.jewels.com
skuserviceapi.dev.cloud.jewels.com
sapbpcuxp.jewels.com
autosys-ui.caf.dev.cloud.jewels.com
gp-akr.jewels.com
uluf20app00.jewels.com
skuserviceapi.dev.cloud.jewels.com
sigctbanner.jewels.com
signet-cltin-prod-informatica-alb.cltin.cloud.jewels.com
sapfinance.jewels.com
*.jewels.com
jira.jewels.com
dldf10app00.jewels.com
credithub-dev.azusnc-test.jewels.com
credithub-test.azusnc-test.jewels.com
web01-sigcapdev.jewels.com
archiva.jewels.com
vpn.jewels.com
skuserviceapi.dev.cloud.jewels.com
plpb20app00.jewels.com
guest.jewels.com
PWAKSEPAPP01.jewels.com
credpmtcalc-dev.jewels.com
srsprod.jewels.com
credpmtcalc-dev.jewels.com
cc.stage.cloud.jewels.com
signethierarchyprovider.jewels.com
skuserviceapi.dev.cloud.jewels.com
worswebdev.jewels.com
vhsigdi1ci.sap.jewels.com
dldw10app00.jewels.com
worswebuat.jewels.com
srsvendorportal.jewels.com
perf-creditapis.jewels.com
vhsigdi1ci.sap.jewels.com
signet-identity-provider-prod.jewels.com
data.jewels.com
mypc.jewels.com
*.jewels.com
dev1digitalapi.jewels.com
PWAKSEPAPP01.jewels.com
api4.jewels.com
vhsigdi1ci.sap.jewels.com
xconnect.jewels.com
dwakivrweb01.jewels.com
skuserviceapi.dev.cloud.jewels.com
workordersapi.jewels.com
vpn.jewels.com
ukecomapigreen.jewels.com
vhsigdj1ci.sap.jewels.com
rmm.stage.cloud.jewels.com
skuserviceapi.dev.cloud.jewels.com
worsweb.jewels.com
uluw20app01.jewels.com
sappouxp.jewels.com
cc.dev.cloud.jewels.com
kay.ercol.test.cloud.jewels.com
uk-alt.ecesb.test.cloud.jewels.com
test.sslvpn.jewels.com
skuserviceapi.dev.cloud.jewels.com
credpmtcalc-prod.jewels.com
sjim-asa-vpn.jewels.com
ecomapigreen.jewels.com
signet-cltin-dev-inform-int-alb.cltin.dev.cloud.jewels.com
skuserviceapi.dev.cloud.jewels.com
skuserviceapi.dev.cloud.jewels.com
fed01.jewels.com
skuserviceapi.dev.cloud.jewels.com
creditapis.jewels.com
CAR-C1-ISE-1.jewels.com
sigctbanner.jewels.com
pacoclearpass01.jewels.com
credithub-test.azusnc-test.jewels.com
api4dev.zalecorp.com
xconnect.jewels.com
dlde10app00.jewels.com
www.kay.com
posapigateway-perf.jewels.com
dlde10app00.jewels.com
edu-sams-interface.store-ops.cloud.jewels.com
saps4huxp.jewels.com
plpf20app00.jewels.com
sjim-asa-vpn.jewels.com
stage-repair.jewels.com
nexus.dev.cloud.jewels.com
autosys-ui.caf.dev.cloud.jewels.com
credithub-dev.azusnc-test.jewels.com
vpn.jewels.com
sma.jewels.com
autosys-ui.caf.dev.cloud.jewels.com
PWAKRPAAPP01.jewels.com
srsprod.jewels.com
imperva.com
skuserviceapi.dev.cloud.jewels.com
rmm.test.cloud.jewels.com
signet-identity-provider-test.jewels.com
plcosatadm01.jewels.com
skuserviceapi.dev.cloud.jewels.com
credithub-test.azusnc-test.jewels.com
workordersapi-dev.jewels.com
skuserviceapi.dev.cloud.jewels.com
sapbpcuxp.jewels.com
autosys-ui.caf.dev.cloud.jewels.com
gp-akr.jewels.com
uluf20app00.jewels.com
skuserviceapi.dev.cloud.jewels.com
sigctbanner.jewels.com
signet-cltin-prod-informatica-alb.cltin.cloud.jewels.com
sapfinance.jewels.com
*.jewels.com
jira.jewels.com
dldf10app00.jewels.com
credithub-dev.azusnc-test.jewels.com
credithub-test.azusnc-test.jewels.com
web01-sigcapdev.jewels.com
archiva.jewels.com
vpn.jewels.com
skuserviceapi.dev.cloud.jewels.com
plpb20app00.jewels.com
guest.jewels.com
PWAKSEPAPP01.jewels.com
credpmtcalc-dev.jewels.com
srsprod.jewels.com
credpmtcalc-dev.jewels.com
cc.stage.cloud.jewels.com
signethierarchyprovider.jewels.com
skuserviceapi.dev.cloud.jewels.com
worswebdev.jewels.com
vhsigdi1ci.sap.jewels.com
dldw10app00.jewels.com
worswebuat.jewels.com
srsvendorportal.jewels.com
perf-creditapis.jewels.com
vhsigdi1ci.sap.jewels.com
signet-identity-provider-prod.jewels.com
data.jewels.com
mypc.jewels.com
*.jewels.com
dev1digitalapi.jewels.com
PWAKSEPAPP01.jewels.com
api4.jewels.com
vhsigdi1ci.sap.jewels.com
xconnect.jewels.com
dwakivrweb01.jewels.com
skuserviceapi.dev.cloud.jewels.com
workordersapi.jewels.com
vpn.jewels.com
ukecomapigreen.jewels.com
vhsigdj1ci.sap.jewels.com
rmm.stage.cloud.jewels.com
skuserviceapi.dev.cloud.jewels.com
worsweb.jewels.com
uluw20app01.jewels.com
sappouxp.jewels.com
cc.dev.cloud.jewels.com
kay.ercol.test.cloud.jewels.com
uk-alt.ecesb.test.cloud.jewels.com
test.sslvpn.jewels.com
skuserviceapi.dev.cloud.jewels.com
credpmtcalc-prod.jewels.com
sjim-asa-vpn.jewels.com
ecomapigreen.jewels.com
signet-cltin-dev-inform-int-alb.cltin.dev.cloud.jewels.com
skuserviceapi.dev.cloud.jewels.com
skuserviceapi.dev.cloud.jewels.com
fed01.jewels.com
skuserviceapi.dev.cloud.jewels.com
creditapis.jewels.com
CAR-C1-ISE-1.jewels.com
sigctbanner.jewels.com
pacoclearpass01.jewels.com
credithub-test.azusnc-test.jewels.com
api4dev.zalecorp.com
xconnect.jewels.com
dlde10app00.jewels.com
www.kay.com
posapigateway-perf.jewels.com
dlde10app00.jewels.com
edu-sams-interface.store-ops.cloud.jewels.com
saps4huxp.jewels.com
plpf20app00.jewels.com
sjim-asa-vpn.jewels.com
stage-repair.jewels.com
nexus.dev.cloud.jewels.com
autosys-ui.caf.dev.cloud.jewels.com
credithub-dev.azusnc-test.jewels.com
vpn.jewels.com
sma.jewels.com
autosys-ui.caf.dev.cloud.jewels.com
PWAKRPAAPP01.jewels.com
Certificate
The complete raw certificate details for nexus.dev.cloud.jewels.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEnjCCA4agAwIBAgIQA2hVxUc8z9/Ix8cV5cCSuTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDUzMDAwMDAwMFoXDTI1MDYyODIzNTk1OVowJTEj MCEGA1UEAxMabmV4dXMuZGV2LmNsb3VkLmpld2Vscy5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDB2i83wcjPjM+qIJjYEzNDSnwkvCK80r1Cglej 9qICjDCMXX09vw8zrTNz4BkLP7ycsKluUmi/POF2aiqDF9fco956x0dpJJMrsZFh 6NUztLfrVOEz+UQsH2JLGjvoKuhbZc+j4oyCqJbsZlvKBqcG+m+mG0vQ7hQR73An +k0wh8UZSKXB4IPa4tE2XFG+kYdc3R1LLJ7oTCDwNkU21WxgkiJtRWqaLyRmAb01 tE7Opmn54FegIuLEUPQme3XiAZiCcWZ4FCVxBUHOX18p5PaOLm+zXRcljhcV+8W4 Rcnr3C/oDH2O997srH5+WrpdPlEdYvMeHmu3cMF/CK80EUN9AgMBAAGjggGxMIIB rTAfBgNVHSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUsEKv qI0FU44ga5TPdDLTpx1/Qe8wUAYDVR0RBEkwR4IabmV4dXMuZGV2LmNsb3VkLmpl d2Vscy5jb22CKW5hdmlnYXRpb24tYXBpLm5leHVzLmRldi5jbG91ZC5qZXdlbHMu Y29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDov L2NybC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3JsMHUGCCsGAQUFBwEB BGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDIuYW1hem9udHJ1c3Qu Y29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAyLmFtYXpvbnRydXN0LmNv bS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADAN BgkqhkiG9w0BAQsFAAOCAQEAmeM13LIEc8t6ZpMaHI+exnF1YBAcYIu+YhZwtsfp ItB5Fmd1+s5hmsziSW+xRJ96ByVuiNGNTAwGoF9pHiltFHFqgDH30DoOlMMcVVaz NreQlKGZqTuiZmwVzFpC7xv50TcQqFcALpzB94u5haIzfoHwIaJRHr4PQ7FM2RsE KrvGj75WY8beE517NUvketcz1SXJnd101UVxbeYvkRGs5FRg4iFYsnz0in6SxTAA jgWQnUdAdNocBs0g/qNyG7Vpdh2pK4kN9PFXQbiFpDtLQLPtjmQhJhrx4gL/9n3i 3OFCPXHuK1uFJVk6tyHFgz0fiAxZ4nctl/zpsj+X5ZVJyA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdovN8HIz4zPqiCY2BMz Q0p8JLwivNK9QoJXo/aiAowwjF19Pb8PM60zc+AZCz+8nLCpblJovzzhdmoqgxfX 3KPeesdHaSSTK7GRYejVM7S361ThM/lELB9iSxo76CroW2XPo+KMgqiW7GZbygan BvpvphtL0O4UEe9wJ/pNMIfFGUilweCD2uLRNlxRvpGHXN0dSyye6Ewg8DZFNtVs YJIibUVqmi8kZgG9NbROzqZp+eBXoCLixFD0Jnt14gGYgnFmeBQlcQVBzl9fKeT2 ji5vs10XJY4XFfvFuEXJ69wv6Ax9jvfe7Kx+flq6XT5RHWLzHh5rt3DBfwivNBFD fQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4529422495453648298585145552142373561 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-28 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nexus.dev.cloud.jewels.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24471583618011479058312528973719573521985299062716784688092486918246377181547645947117435933217712865295061423208358607617412767236124728860018098674189533653971450735784788618984833081104045560606108527238438055806503363735056959036600799605533244623797589466403786524045848821468715571651987786078167156447955872641175841593218913405985227965530723405639612464749280203909192668518874405299147510550298761178431930455080574441046631676751452400030590747999067510519009327534282463180083556334978490986627364567589686953252931643423703022015490447619133708512644995381337091353527982492945475890763136766697435906941 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b042afa88d05538e206b94cf7432d3a71d7f41ef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nexus.dev.cloud.jewels.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'navigation-api.nexus.dev.cloud.jewels.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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