www.mahi.ngaitahu.iwi.nz
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 06:f8:d2:69:26:49:15:48:df:4d:b9:fe:23:f2:3b:30 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.mahi.ngaitahu.iwi.nz
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:f8:d2:69:26:49:15:48:df:4d:b9:fe:23:f2:3b:30Serial Number (int): 9267325232448745809838297351986494256
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 23:76:0d:e0:9e:e4:3f:28:19:a2:0f:18:dc:88:d9:31:17:15:78:a8
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 7f:5d:a1:74:a6:97:b1:71:95:47:7a:fb:c0:bb:a9:62:35:c3:61:13
Fingerprint (sha256): 5c:57:9b:cf:9a:bd:aa:ee:84:1b:5c:32:de:e2:4f:f1:d2:7e:97:9e:ae:1b:9b:b1:b5:13:1b:8c:80:47:f1:b8
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate www.mahi.ngaitahu.iwi.nz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.mahi.ngaitahu.iwi.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.mahi.ngaitahu.iwi.nz
mahi.ngaitahu.iwi.nz
mahi.ngaitahu.iwi.nz
Other certificates including the domain name ngaitahu.iwi.nz
(limited to 100 certificates)
ssl388199.cloudflaressl.com
communitynet.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
leadersonline.ngaitahu.iwi.nz
webmail.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388198.cloudflaressl.com
ssl388199.cloudflaressl.com
*.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
tekereme.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
sni.cloudflaressl.com
ssl388198.cloudflaressl.com
communitynet.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
sts.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
www.mahi.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388197.cloudflaressl.com
ssl388198.cloudflaressl.com
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
ngaitahu.iwi.nz
tekereme.ngaitahu.iwi.nz
mahi.ngaitahu.iwi.nz
sni.cloudflaressl.com
ssl388199.cloudflaressl.com
mahi.ngaitahu.iwi.nz
sts.ngaitahu.iwi.nz
sts.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
www.mahi.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl388197.cloudflaressl.com
webmail.ngaitahu.iwi.nz
sts.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
mahi.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
mahi.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
webmail.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
mahi.ngaitahu.iwi.nz
mahi.ngaitahu.iwi.nz
communitynet.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
leadersonline.ngaitahu.iwi.nz
webmail.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388198.cloudflaressl.com
ssl388199.cloudflaressl.com
*.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
tekereme.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
sni.cloudflaressl.com
ssl388198.cloudflaressl.com
communitynet.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
sts.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
www.mahi.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388197.cloudflaressl.com
ssl388198.cloudflaressl.com
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
ngaitahu.iwi.nz
tekereme.ngaitahu.iwi.nz
mahi.ngaitahu.iwi.nz
sni.cloudflaressl.com
ssl388199.cloudflaressl.com
mahi.ngaitahu.iwi.nz
sts.ngaitahu.iwi.nz
sts.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
www.mahi.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl388197.cloudflaressl.com
webmail.ngaitahu.iwi.nz
sts.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
mahi.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
mahi.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
webmail.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
mahi.ngaitahu.iwi.nz
mahi.ngaitahu.iwi.nz
Certificate
The complete raw certificate details for www.mahi.ngaitahu.iwi.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8jCCBNqgAwIBAgIQBvjSaSZJFUjfTbn+I/I7MDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMDkwOTAwMDAwMFoXDTI0MTAwNzIzNTk1OVowIzEh MB8GA1UEAxMYd3d3Lm1haGkubmdhaXRhaHUuaXdpLm56MIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEApNUdpDbKBV4WLCfvV/dPvfyJ6DrAzqt/bNEygd9/ MXcAo/Fw8YxB2iKaP6YNv4p3/sF8HalGDySuH6/mEyJ91naG2At+c6C1apxAhKNN qYOeKXOeS+Jg2kvHz558gstNQLtortSDLjGMwHUh31ehjjyb7Ck7RGuzE73+qnZ1 ROXy9UWpr7Q8nVG2+iUpm6j03ODAsHhM2hn1r+1FA7yvuJcmTlHGTaCH/A+y0hUq lyVEJdHbCUTtyKBb3CFdea+JxCGUNgWVmOugpZiAPSHVDuhoBj6JWRQJgYG8UWID /zns1E9TbWBIfBhr/52LrwQP/+t+cHiM/OWzEt9vSjq62wIDAQABo4IDBzCCAwMw HwYDVR0jBBgwFoAUVdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFCN2DeCe 5D8oGaIPGNyI2TEXFXioMDkGA1UdEQQyMDCCGHd3dy5tYWhpLm5nYWl0YWh1Lml3 aS5ueoIUbWFoaS5uZ2FpdGFodS5pd2kubnowEwYDVR0gBAwwCjAIBgZngQwBAgEw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATA7 BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRydXN0LmNv bS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8v b2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9j cnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMBAf8EAjAA MIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgDuzdBk1dsazsVct520zROiModG fLzs3sNRSFlGcR+1mwAAAYp3QRemAAAEAwBHMEUCIQCeZS18ITfphkwIvPrnPWLO Cx1ecxPt5UXGOTvhs3zX8QIgcQ3kdu3mvgzY7kiDsvwQSEkUfk0c8F/FbQEz+F1u 8/IAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYp3QRfnAAAE AwBHMEUCIQC0jbM8iGNoQnuDmkl3/n8Yz8GDRg3mvyiI4qLOkEVVUAIgfgR6yV5B c7vvPw7wCp8hBz5ibOlq4yLSyWmENpg4YGQAdgDatr9rP7W2Ip+bwrtca+hwkXFs u1GEhTS9pD0wSNf7qwAAAYp3QRe5AAAEAwBHMEUCIFgzI0cTU4Lo21szqvrZxeAJ US0tKPT5ecQtARzXeaaOAiEA22n6QHPY3srrPxUvCtxo715yLUIXIC8XE+MHI+Wx K/cwDQYJKoZIhvcNAQELBQADggEBAFLQzbgySHvr1a5HBefEnGbCsnkO9o/NrLZC Lad8/L5a1oaaAjH6xNfSisvkMtcpWZDspABa1ARwU90tYzYDdCbfAyyKavQrZX/+ Dln+4ITQrVfH7tZNTFmykip8BXLdmBinO1LVRBo+zfN2WD1yFwcL47Gw/8ZwRQ2o w06eMiO9R+WPMPcSgMfnS42J+ZHhpKdX/9vor+9XHTigJLguhqCoa7Vwrzlz0xaG 5RXaB47jQ6+F5yNP/EubfTDejLn/YnG2iaK66o5FMaTLXPXssCPI8mAGZ80MDcBi CzG8WCwwIRerHnw+4xgqa4kNd7pFl81SjuizuK9gBalLEfSGeio= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNUdpDbKBV4WLCfvV/dP vfyJ6DrAzqt/bNEygd9/MXcAo/Fw8YxB2iKaP6YNv4p3/sF8HalGDySuH6/mEyJ9 1naG2At+c6C1apxAhKNNqYOeKXOeS+Jg2kvHz558gstNQLtortSDLjGMwHUh31eh jjyb7Ck7RGuzE73+qnZ1ROXy9UWpr7Q8nVG2+iUpm6j03ODAsHhM2hn1r+1FA7yv uJcmTlHGTaCH/A+y0hUqlyVEJdHbCUTtyKBb3CFdea+JxCGUNgWVmOugpZiAPSHV DuhoBj6JWRQJgYG8UWID/zns1E9TbWBIfBhr/52LrwQP/+t+cHiM/OWzEt9vSjq6 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9267325232448745809838297351986494256 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mahi.ngaitahu.iwi.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20808173325788970216046862916035322664073764746337138170500042604514682608395895671801189127708222826062738842427622222949990580668589487890883907684568338044675101078591020955149355329833850537587096481211730472899842006388506114787030493765084718468851656855715566930565682057205527735166916370524559334910502370918043336889724315426940380838701085679210303916626685154317806052931008657888015175030494617169372006369430383190482093639180860482850811549346049261856335443283977797180713792512186581230467487749492367100086950122188804023032637332474937533356272576287468973529064910468191651789964586697288496888539 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 23760de09ee43f2819a20f18dc88d931171578a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mahi.ngaitahu.iwi.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mahi.ngaitahu.iwi.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 0168007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018a774117a600000403004730450221009e652d7c2137e9864c08bcfae73d62ce0b1d5e7313ede545c6393be1b37cd7f10220710de476ede6be0cd8ee4883b2fc104849147e4d1cf05fc56d0133f85d6ef3f200760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018a774117e70000040300473045022100b48db33c886368427b839a4977fe7f18cfc183460de6bf2888e2a2ce9045555002207e047ac95e4173bbef3f0ef00a9f21073e626ce96ae322d2c969843698386064007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018a774117b90000040300473045022058332347135382e8db5b33aafad9c5e009512d2d28f4f979c42d011cd779a68e022100db69fa4073d8decaeb3f152f0adc68ef5e722d4217202f1713e30723e5b12bf7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0052d0cdb832487bebd5ae4705e7c49c66c2b2790ef68fcdacb6422da77cfcbe5ad6869a0231fac4d7d28acbe432d7295990eca4005ad4047053dd2d6336037426df032c8a6af42b657ffe0e59fee084d0ad57c7eed64d4c59b2922a7c0572dd9818a73b52d5441a3ecdf376583d7217070be3b1b0ffc670450da8c34e9e3223bd47e58f30f71280c7e74b8d89f991e1a4a757ffdbe8afef571d38a024b82e86a0a86bb570af3973d31686e515da078ee343af85e7234ffc4b9b7d30de8cb9ff6271b689a2baea8e4531a4cb5cf5ecb023c8f2600667cd0c0dc0620b31bc582c302117ab1e7c3ee3182a6b890d77ba4597cd528ee8b3b8af6005a94b11f4867a2a