espnsb.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 09:96:4a:af:0a:4c:e6:ad:de:6b:1c:04:8d:b7:61:c6 was issued on by Amazon.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=espnsb.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:96:4a:af:0a:4c:e6:ad:de:6b:1c:04:8d:b7:61:c6Serial Number (int): 12743411257271395032393170738180743622
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 02:08:dc:52:64:a9:98:9b:ad:28:d5:5b:83:ff:d9:67:34:94:48:82
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 94:1b:18:22:49:99:80:a8:e6:89:cd:03:eb:26:39:73:2f:82:9b:c3
Fingerprint (sha256): 5d:47:1e:7d:f4:18:c5:0c:8a:07:46:a2:cb:e0:6b:1f:f8:68:3c:50:5e:29:45:e6:0c:d6:2b:a7:7c:0f:50:c1
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate espnsb.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for espnsb.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
espnsb.com
*.geo.hosted.espnsb.com
*.geo.internal.espnsb.com
*.espnsb.com
*.us-east-1.aws.hosted.espnsb.com
*.internal.espnsb.com
*.geo.hosted.espnsb.com
*.geo.internal.espnsb.com
*.espnsb.com
*.us-east-1.aws.hosted.espnsb.com
*.internal.espnsb.com
Other certificates including the domain name espnsb.com
(limited to 100 certificates)
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
ESPNFuseDevCluster-04.hosted.aws.espnsb.com
dcs7deportes.geo.hosted.espn.com
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
creativearchive.espnsb.com
espnsb.com
internal.espnsb.com
cfa.content.espnsb.com
espnsb.com
kwese.espnsb.com
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
*.geo.hosted.espnsb.com
pro.creativearchive.espnsb.com
espnsb.com
espnsb.com
client-api.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
internal.espnsb.com
espnsb.com
creativearchive.espnsb.com
*.espnsb.com
www.espnsb.com
www.espnsb.com
espnsb.com
espnsb.com
espnsb.com
editions.espnsb.com
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
client-api.espnsb.com
espnsb.com
*.espnsb.com
editions.espnsb.com
www.malt.internal.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
espnsb.com
espnsb.com
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
kwese.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
creativestudio.espnsb.com
espnsb.com
www.espnsb.com
*.cms.internal.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
editions.espnsb.com
portal.creativearchive.espnsb.com
*.espnsb.com
www.espnsb.com
*.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
editions.espnsb.com
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
www.espnsb.com
www.espnsb.com
ESPNFuseDevCluster04.hosted.aws.espnsb.com
client-api.espnsb.com
espnsb.com
dcs7deportes.geo.hosted.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
www.espnsb.com
espnsb.com
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
www.espnsb.com
client-api.espnsb.com
espnsb.com
www.espnsb.com
espnsb.com
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
ESPNFuseDevCluster-04.hosted.aws.espnsb.com
dcs7deportes.geo.hosted.espn.com
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
creativearchive.espnsb.com
espnsb.com
internal.espnsb.com
cfa.content.espnsb.com
espnsb.com
kwese.espnsb.com
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
*.geo.hosted.espnsb.com
pro.creativearchive.espnsb.com
espnsb.com
espnsb.com
client-api.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
internal.espnsb.com
espnsb.com
creativearchive.espnsb.com
*.espnsb.com
www.espnsb.com
www.espnsb.com
espnsb.com
espnsb.com
espnsb.com
editions.espnsb.com
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
client-api.espnsb.com
espnsb.com
*.espnsb.com
editions.espnsb.com
www.malt.internal.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
espnsb.com
espnsb.com
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
kwese.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
creativestudio.espnsb.com
espnsb.com
www.espnsb.com
*.cms.internal.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
editions.espnsb.com
portal.creativearchive.espnsb.com
*.espnsb.com
www.espnsb.com
*.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
editions.espnsb.com
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
www.espnsb.com
www.espnsb.com
ESPNFuseDevCluster04.hosted.aws.espnsb.com
client-api.espnsb.com
espnsb.com
dcs7deportes.geo.hosted.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
www.espnsb.com
espnsb.com
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
www.espnsb.com
client-api.espnsb.com
espnsb.com
www.espnsb.com
espnsb.com
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
Certificate
The complete raw certificate details for espnsb.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGPjCCBSagAwIBAgIQCZZKrwpM5q3eaxwEjbdhxjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDMyNDAwMDAwMFoXDTI0MDQyMTIzNTk1OVowFTET MBEGA1UEAxMKZXNwbnNiLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ7Vt67g49rGlTF/nyntmBIO35UKhIW71ncQNGz/eTdelrZt7nTIEPzeR0Ky p0/0NWxB8SWpJFh+RCb8jxvIlH9CVXT/nrY9T5gS5s5k6semlwucXTKbev1olEqP 48EZBbsExfmoOpbknNx80mTIOqFJO8rwQqvQWlwbQ8yKNZjmMIvUi7hI1gYxJiBV pLe/5uA7mOV1rFt4ruLVtK4DPv8uy65k2IvB3QEjiH1r3WKUc00s53nZ+Z1PgAKT jSLgshPBcZB4yzOZXswQ14HqQlKLI+5ZFLjVnTy5Tv+NnknLVhg5ipWzBL5JwWli 2cy0LyfZ/tJhFtW2uJ1UTxWJ5ycCAwEAAaOCA2EwggNdMB8GA1UdIwQYMBaAFMAx Us1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBQCCNxSZKmYm60o1VuD/9lnNJRI gjCBkwYDVR0RBIGLMIGIggplc3Buc2IuY29tghcqLmdlby5ob3N0ZWQuZXNwbnNi LmNvbYIZKi5nZW8uaW50ZXJuYWwuZXNwbnNiLmNvbYIMKi5lc3Buc2IuY29tgiEq LnVzLWVhc3QtMS5hd3MuaG9zdGVkLmVzcG5zYi5jb22CFSouaW50ZXJuYWwuZXNw bnNiLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9u dHJ1c3QuY29tL3IybTAyLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEF BQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRy dXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVz dC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwggF9BgorBgEEAdZ5AgQCBIIB bQSCAWkBZwB1AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABhxHE 27EAAAQDAEYwRAIgesrAU+tFLPDtPknHNMU5O9vlzUor+FzT5A3RR7I0CO4CICHJ OuaLBYfMt54S7bqZyvzAE1uOeTgxT4ev7O1MjTgnAHYASLDja9qmRzQP5WoC+p0w 6xxSActW3SyB2bu/qznYhHMAAAGHEcTb0QAABAMARzBFAiEApdq9S09iT9IC127D Pjxdx1xQEaPQqIeGHzbipTGi3AACIA1wJvX0AHidvV2jd+pNTDIXd5DjXv6JU9nM TkQBZktfAHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGHEcTb nwAABAMARzBFAiEA7SBm9RpR0zyDKhNbp0kZrwi/JzQyAjxaUWmDashhME0CIB2t XarRdgP4YWSxfixWB1UBWBTk9u5xP9H5X5JehnMXMA0GCSqGSIb3DQEBCwUAA4IB AQCmwxeQeN6O4Wvdt42ibCaDqoUDT0c0DUzokoz8TW2OKegDP16+Wf3AYVxk2nna i2+hU/UvSEUyYw9eV2eeKleGFSMIgYeWkOW6XgkjNNmf4Q4qEK+k8cqJMGy5gN3V aVbB27mMvpuZbW1He4CQ/nFjJyIlMU1ko2qEVLyg7Uykj68IkHSHEDLIaWGw52vh jj/rh+QnHmWDEQr7Pa1bXpV913ss4/GyaM7xLxt5K+rJyTOdAxewpIdrkV7KEzvQ +b3JyA6AWrnOLGrqAZsjTGaubX+YaWmp32ZAMDwFDH7JJpI1/qtioqMJWOxbsk/E T0wK992rdwtSfIXMwTcJi0mY -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntW3ruDj2saVMX+fKe2Y Eg7flQqEhbvWdxA0bP95N16Wtm3udMgQ/N5HQrKnT/Q1bEHxJakkWH5EJvyPG8iU f0JVdP+etj1PmBLmzmTqx6aXC5xdMpt6/WiUSo/jwRkFuwTF+ag6luSc3HzSZMg6 oUk7yvBCq9BaXBtDzIo1mOYwi9SLuEjWBjEmIFWkt7/m4DuY5XWsW3iu4tW0rgM+ /y7LrmTYi8HdASOIfWvdYpRzTSznedn5nU+AApONIuCyE8FxkHjLM5lezBDXgepC Uosj7lkUuNWdPLlO/42eSctWGDmKlbMEvknBaWLZzLQvJ9n+0mEW1ba4nVRPFYnn JwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12743411257271395032393170738180743622 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'espnsb.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20051040217760873585380964565822287357345945209260004896927815337113561988930715333855947955323590277234545751300575265793904256399812344519392241374469573057619775736254578236699354903677798077269615896776710730524258320254252382554519704918511983149518548952489742500753192544516315184959015627796757996017837476429982269026059904027647708196588925049758224862060769179521478370074282490709048715442552734726719607412935911233607463908847302694411229444315488998173457808900506803029767226233236016286747707187425614017456170602138425909320588452433415852709526404325656791372105175535695509296332781093901679847207 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0208dc5264a9989bad28d55b83ffd96734944882 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (139 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'espnsb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.geo.hosted.espnsb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.geo.internal.espnsb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.espnsb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.us-east-1.aws.hosted.espnsb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.internal.espnsb.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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