mapp-crm-nightly-new.api.capillarytech.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0b:ee:9c:ab:94:f4:c6:d2:78:ac:df:31:84:4d:64:23 was issued on by Amazon.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=mapp-crm-nightly-new.api.capillarytech.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:ee:9c:ab:94:f4:c6:d2:78:ac:df:31:84:4d:64:23Serial Number (int): 15860452255979021441940473799619994659
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 90:e9:60:a8:25:ec:06:3f:a1:23:44:2d:e2:65:ec:0f:13:d0:cd:60
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 86:09:d9:4b:dd:31:e3:97:19:1b:82:02:bb:64:36:05:25:05:df:a5
Fingerprint (sha256): 54:f9:a4:50:5d:8a:67:7b:ab:00:c9:4c:e7:f9:23:72:a1:f0:2c:75:29:52:73:59:ea:f6:a7:68:d0:3d:28:77
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate mapp-crm-nightly-new.api.capillarytech.com
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mapp-crm-nightly-new.api.capillarytech.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mapp-crm-nightly-new.api.capillarytech.com
mapp-tatacrm.api.capillarytech.com
mapp-sgcrm.api.capillarytech.com
mapp-incrm.api.capillarytech.com
mapp-crm-staging-new.api.capillarytech.com
mapp-eucrm.api.capillarytech.com
mapp-uscrm.api.capillarytech.com
mapp-tatacrm.api.capillarytech.com
mapp-sgcrm.api.capillarytech.com
mapp-incrm.api.capillarytech.com
mapp-crm-staging-new.api.capillarytech.com
mapp-eucrm.api.capillarytech.com
mapp-uscrm.api.capillarytech.com
Other certificates including the domain name capillarytech.com
(limited to 100 certificates)
vulcan-uat.global.dev.intouch.capillarytech.com
fdus-56.freshdesk.com
support.doctricks.com
fdus-56.freshdesk.com
helpdesk.appareluae.com
helpdesk.appareluae.com
support.nature.com
support.nature.com
fdus-56.freshdesk.com
helpdesk.appareluae.com
sni.cloudflaressl.com
*.capillarytech.com
*.capillarytech.com
fdus-56.freshdesk.com
*.capillarytech.com
*.capillarytech.com
helpdesk.appareluae.com
dev.rewardsplus.capillarytech.com
support.nature.com
fdus-56.freshdesk.com
helpdesk.appareluae.com
*.capillarytech.com
fsus-24.freshservice.com
*.capillarytech.com
fdus-56.freshdesk.com
support.nature.com
capillarytech.com
fdus-56.freshdesk.com
helpdesk.appareluae.com
helpdesk.appareluae.com
helpdesk.appareluae.com
apac.api.capillarytech.com
helpdesk.appareluae.com
helpdesk.appareluae.com
fsus-24.freshservice.com
*.capillarytech.com
helpdesk.appareluae.com
apac2.api.capillarytech.com
dev.rewardsplus.capillarytech.com
capillarytech.com
apac2-lms.capillarytech.com
marketing.capillarytech.com
support.doctricks.com
sgcrm.cctools.capillarytech.com
apac2.api.capillarytech.com
status.capillarytech.com
helpdesk.appareluae.com
tools-a-crm-tatacrm.cc.capillarytech.com
getdemo.capillarytech.com
status.qtplatform.com
tools-a-crm-crm-nightly-new.cc.capillarytech.com
support.doctricks.com
status.qtplatform.com
apac.api.capillarytech.com
eu.intouch.capillarytech.com
assist.capillarytech.com
helpdesk.appareluae.com
apac.api.capillarytech.com
helpdesk.appareluae.com
apac.api.capillarytech.com
capillarytech.com
getdemo.capillarytech.com
support.nature.com
fsus-24.freshservice.com
getdemo.capillarytech.com
*.capillarytech.com
helpdesk.appareluae.com
*.capillarytech.com
survey.capillarytech.com
mapp-crm-nightly-new.api.capillarytech.com
support.nature.com
support.nature.com
helpdesk.appareluae.com
helpdesk.appareluae.com
fdus-56.freshdesk.com
capillarytech.com
intouch-a-crm-crm-nightly-new.cc.capillarytech.com
getdemo.capillarytech.com
*.capillarytech.com
*.capillarytech.com
fdus-56.freshdesk.com
helpdesk.appareluae.com
tms1-ota-status.bbpos.com
helpdesk.appareluae.com
*.capillarytech.com
ecom-assist.capillarytech.com
eu.intouch.capillarytech.com
helpdesk.appareluae.com
*.capillarytech.com
eu.intouch.capillarytech.com
fsus-24.freshservice.com
*.capillarytech.com
support.doctricks.com
*.capillarytech.com
fdus-56.freshdesk.com
*.capillarytech.com
getdemo.capillarytech.com
helpdesk.appareluae.com
*.capillarytech.com
eu.intouch.capillarytech.com
fdus-56.freshdesk.com
support.doctricks.com
fdus-56.freshdesk.com
helpdesk.appareluae.com
helpdesk.appareluae.com
support.nature.com
support.nature.com
fdus-56.freshdesk.com
helpdesk.appareluae.com
sni.cloudflaressl.com
*.capillarytech.com
*.capillarytech.com
fdus-56.freshdesk.com
*.capillarytech.com
*.capillarytech.com
helpdesk.appareluae.com
dev.rewardsplus.capillarytech.com
support.nature.com
fdus-56.freshdesk.com
helpdesk.appareluae.com
*.capillarytech.com
fsus-24.freshservice.com
*.capillarytech.com
fdus-56.freshdesk.com
support.nature.com
capillarytech.com
fdus-56.freshdesk.com
helpdesk.appareluae.com
helpdesk.appareluae.com
helpdesk.appareluae.com
apac.api.capillarytech.com
helpdesk.appareluae.com
helpdesk.appareluae.com
fsus-24.freshservice.com
*.capillarytech.com
helpdesk.appareluae.com
apac2.api.capillarytech.com
dev.rewardsplus.capillarytech.com
capillarytech.com
apac2-lms.capillarytech.com
marketing.capillarytech.com
support.doctricks.com
sgcrm.cctools.capillarytech.com
apac2.api.capillarytech.com
status.capillarytech.com
helpdesk.appareluae.com
tools-a-crm-tatacrm.cc.capillarytech.com
getdemo.capillarytech.com
status.qtplatform.com
tools-a-crm-crm-nightly-new.cc.capillarytech.com
support.doctricks.com
status.qtplatform.com
apac.api.capillarytech.com
eu.intouch.capillarytech.com
assist.capillarytech.com
helpdesk.appareluae.com
apac.api.capillarytech.com
helpdesk.appareluae.com
apac.api.capillarytech.com
capillarytech.com
getdemo.capillarytech.com
support.nature.com
fsus-24.freshservice.com
getdemo.capillarytech.com
*.capillarytech.com
helpdesk.appareluae.com
*.capillarytech.com
survey.capillarytech.com
mapp-crm-nightly-new.api.capillarytech.com
support.nature.com
support.nature.com
helpdesk.appareluae.com
helpdesk.appareluae.com
fdus-56.freshdesk.com
capillarytech.com
intouch-a-crm-crm-nightly-new.cc.capillarytech.com
getdemo.capillarytech.com
*.capillarytech.com
*.capillarytech.com
fdus-56.freshdesk.com
helpdesk.appareluae.com
tms1-ota-status.bbpos.com
helpdesk.appareluae.com
*.capillarytech.com
ecom-assist.capillarytech.com
eu.intouch.capillarytech.com
helpdesk.appareluae.com
*.capillarytech.com
eu.intouch.capillarytech.com
fsus-24.freshservice.com
*.capillarytech.com
support.doctricks.com
*.capillarytech.com
fdus-56.freshdesk.com
*.capillarytech.com
getdemo.capillarytech.com
helpdesk.appareluae.com
*.capillarytech.com
eu.intouch.capillarytech.com
Certificate
The complete raw certificate details for mapp-crm-nightly-new.api.capillarytech.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIQC+6cq5T0xtJ4rN8xhE1kIzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIxMTAwMDAwMFoXDTI1MDEwODIzNTk1OVowNTEz MDEGA1UEAxMqbWFwcC1jcm0tbmlnaHRseS1uZXcuYXBpLmNhcGlsbGFyeXRlY2gu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9ieHi8tnoCV/YaF GoulUHDMqcFDE7bmJbwKwaknDqzeqYCvgmXdwS45/XsksTGCbe9fIdwyygqyWZTJ B83SCKqlyr1m8XV/e3iWWzSLmUrJ1VhxNC9fayDmFhHgKaLi9q/dvMVEzxrYU3Dq lCiEWx50hWDEf/6tWoxJwvP3xswxKbCwVC2hBRT0dmSGyKvsvsZb38vqtujJGZpF 5+A3XaBEBdOkwaACWeXe8xX8AYOq4eyuWtQ/Hf4dWYLy6G5Xvr6vadbSIq3ZSJOh x1Q3jw8MwKvokhsJNEb/3EIXoYrX8pxtbWGxqEPRNukySC89yVe8Z7A/W2fa2P0z fe89HQIDAQABo4ICdDCCAnAwHwYDVR0jBBgwFoAUwDFSzVpQw4J8dHHOy+mc+Xrr guIwHQYDVR0OBBYEFJDpYKgl7AY/oSNELeJl7A8T0M1gMIIBEQYDVR0RBIIBCDCC AQSCKm1hcHAtY3JtLW5pZ2h0bHktbmV3LmFwaS5jYXBpbGxhcnl0ZWNoLmNvbYIi bWFwcC10YXRhY3JtLmFwaS5jYXBpbGxhcnl0ZWNoLmNvbYIgbWFwcC1zZ2NybS5h cGkuY2FwaWxsYXJ5dGVjaC5jb22CIG1hcHAtaW5jcm0uYXBpLmNhcGlsbGFyeXRl Y2guY29tgiptYXBwLWNybS1zdGFnaW5nLW5ldy5hcGkuY2FwaWxsYXJ5dGVjaC5j b22CIG1hcHAtZXVjcm0uYXBpLmNhcGlsbGFyeXRlY2guY29tgiBtYXBwLXVzY3Jt LmFwaS5jYXBpbGxhcnl0ZWNoLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1Ud HwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3Iy bTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3Nw LnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5y Mm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwEwYK KwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAAzPpoRlxY+xd1v9 4+67AMnKeoKy2VlRlyoVm+POLRJ5Ndhz2QzS2zzIuYGLFd3E1b+yJRCZboKSWNmB yJYSrB6Mi0g1moc42WMy7ki9E/KkQJg6f6UAefYL1wieMwSQbWE/HtcakcNJTVmY WILrUqketw9l0OWW0KKipnHKaexR7DkHC8RIQs/DmoAe17GdWnstw2FBK3vLJbp+ OZMMEupYPswxJbDPQKUoOILclKHBSWTGkPsJIxiWwqIFC6K3NWA3RJzIIfFSYwj4 StkWsHUNr/oAoFHVbWx5qtboMuLWzDkrwibHu3V06JKUOA7+/CxfrdT6qIh7ccHC q7b048I= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9ieHi8tnoCV/YaFGoul UHDMqcFDE7bmJbwKwaknDqzeqYCvgmXdwS45/XsksTGCbe9fIdwyygqyWZTJB83S CKqlyr1m8XV/e3iWWzSLmUrJ1VhxNC9fayDmFhHgKaLi9q/dvMVEzxrYU3DqlCiE Wx50hWDEf/6tWoxJwvP3xswxKbCwVC2hBRT0dmSGyKvsvsZb38vqtujJGZpF5+A3 XaBEBdOkwaACWeXe8xX8AYOq4eyuWtQ/Hf4dWYLy6G5Xvr6vadbSIq3ZSJOhx1Q3 jw8MwKvokhsJNEb/3EIXoYrX8pxtbWGxqEPRNukySC89yVe8Z7A/W2fa2P0zfe89 HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15860452255979021441940473799619994659 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mapp-crm-nightly-new.api.capillarytech.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22198521512493118495426250340910896863578262974875079027058329113732865168007468946962900391680668602109466505502715781190263217127639355868942339293194144827509069179690130763762320199528203012335927187595856031245879226766468359392277260673875824579037591518599916007527961437436013946451346891873320722233355144030229416848879029232990040863906821609253280496079661206317723573092430029534123977134717110875632204671255897356058012432511231007274343672203595669588177903151209256195813471491373720063554508136223487342913900451785162757675302798476392541380948333922425719425012691326380178236374318710100730002717 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 90e960a825ec063fa123442de265ec0f13d0cd60 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (264 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mapp-crm-nightly-new.api.capillarytech.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mapp-tatacrm.api.capillarytech.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mapp-sgcrm.api.capillarytech.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mapp-incrm.api.capillarytech.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mapp-crm-staging-new.api.capillarytech.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mapp-eucrm.api.capillarytech.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mapp-uscrm.api.capillarytech.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000ccfa68465c58fb1775bfde3eebb00c9ca7a82b2d95951972a159be3ce2d127935d873d90cd2db3cc8b9818b15ddc4d5bfb22510996e829258d981c89612ac1e8c8b48359a8738d96332ee48bd13f2a440983a7fa50079f60bd7089e3304906d613f1ed71a91c3494d59985882eb52a91eb70f65d0e596d0a2a2a671ca69ec51ec39070bc44842cfc39a801ed7b19d5a7b2dc361412b7bcb25ba7e39930c12ea583ecc3125b0cf40a5283882dc94a1c14964c690fb09231896c2a2050ba2b7356037449cc821f1526308f84ad916b0750daffa00a051d56d6c79aad6e832e2d6cc392bc226c7bb7574e89294380efefc2c5fadd4faa8887b71c1c2abb6f4e3c2