appstream2.us-gov-east-1.aws.amazon.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 09:1e:66:a0:70:a6:d3:33:61:87:f4:ff:ac:e0:64:dd was issued on by Amazon.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=appstream2.us-gov-east-1.aws.amazon.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:1e:66:a0:70:a6:d3:33:61:87:f4:ff:ac:e0:64:ddSerial Number (int): 12120902384969862590853800536056030429
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 74:c6:6f:1a:e1:fa:ba:35:92:06:68:f1:bd:04:5d:3b:17:6e:5b:9c
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 26:77:4e:df:0c:17:d2:7d:f2:61:ac:b7:0d:e1:f2:2e:69:db:01:47
Fingerprint (sha256): 64:ad:c4:5f:8b:9c:b3:dc:44:8c:8f:88:81:4e:53:db:fb:7b:52:a2:3d:11:1f:2f:46:8e:57:0c:10:cb:47:e4
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate appstream2.us-gov-east-1.aws.amazon.com
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for appstream2.us-gov-east-1.aws.amazon.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
appstream2.us-gov-east-1.aws.amazon.com
*.appstream2.us-gov-east-1.aws.amazon.com
stream.us-gov-east-1.amazonappstream.com
*.stream.us-gov-east-1.amazonappstream.com
portal-appstream2.us-gov-east-1.amazonaws.com
*.portal-appstream2.us-gov-east-1.amazonaws.com
appstream2.us-gov-east-1.amazonaws-us-gov.com
*.appstream2.us-gov-east-1.amazonaws-us-gov.com
*.appstream2.us-gov-east-1.aws.amazon.com
stream.us-gov-east-1.amazonappstream.com
*.stream.us-gov-east-1.amazonappstream.com
portal-appstream2.us-gov-east-1.amazonaws.com
*.portal-appstream2.us-gov-east-1.amazonaws.com
appstream2.us-gov-east-1.amazonaws-us-gov.com
*.appstream2.us-gov-east-1.amazonaws-us-gov.com
Other certificates including the domain name amazon.com
(limited to 100 certificates)
fresh.amazon.com
aea-console-canary.aea.amazon.com
charlie-kernel-console-alpha.aws.amazon.com
ap-southeast-1.console.aws.amazon.com
routingtools-jlb-l-dub.dub.proxy.amazon.com
us-west-1.awsc-integ.aws.amazon.com
aea-console-canary.aea.amazon.com
d2ysdk431fhvtm.cloudfront.net
check.integ.aftx.amazon.com
iq-test.console.aws.amazon.com
forums.aws.amazon.com
aea-console-canary.aea.amazon.com
ldap.cpt.amazon.com
bom-s-orca.amazon.com
media-service-fe.amazon.com
aea-console-canary.aea.amazon.com
a4k.amazon.com
d336t989k2uvmt.cloudfront.net
*.stage-business.amazon.com
smartshelf-productfinder.amazon.com
brickviewer-gamma.corp.amazon.com
beta.amazongames.com
aea-console-canary.aea.amazon.com
aea-console-canary.aea.amazon.com
umass.amazon.com
rds-access-syd.corp.amazon.com
aea-console-canary.aea.amazon.com
readynow-agg-preprod-eu.amazon.com
locard-alpha.corp.amazon.com
lender-central-eu.dub.amazon.com
bitrium-na.amazon.com
emf-operator-console-prod-sin-cell2.corp.amazon.com
aea-console-canary.aea.amazon.com
kindlepublishing.amazon.com
mrwiz-nrt-prod.corp.amazon.com
accesspoints-api-na.amazon.com
harbor-cn.amazon.com
firs-ta-g7g-preprod.amazon.com
firmware.hkg.amazon.com
zappos-ask-na.amazon.com
mas-ext.amazon.com
aax-eu.amazon.com
aea-console-canary.aea.amazon.com
registrar-website-backend-gamma.amazon.com
fra-w-orca.amazon.com
otsms-na-master-extern.amazon.com
*.peg.a2z.com
sellercentral.amazon.com
tmga.aea.amazon.com
syd-g-orca.amazon.com
bob-dispatch-preprod-eu.amazon.com
cpt-b-orca.amazon.com
ap-east-1.signin.aws
grappler.corp.amazon.com
ap-southeast-1.signin.aws
match-visualsearch-it.amazon.com
rewrite-ssl.amazon.com
preview-flex-capacity-jp.amazon.com
echoheaders.amazon.com
occentral-preprod.integ.amazon.com
edge-customer-troubleshooting.amazon.com
pharmacy.amazon.com
fls-na.amazon.com
tmga.aea.amazon.com
foxhound.amazon.com
logistics-platform-preprod.amazon.com
aftlite-portal-eu.amazon.com
es-preprod-aw.amazon.com
shm.amazon.com
devicemessaging-preprod.us-east-1.amazon.com
daols-opf-eu.amazon.com
fctools.corp.amazon.com
recordprep-aftx.dub.amazon.com
paragon-eu.amazon.com
advertising-api-test.amazon.com
aea-console-canary.aea.amazon.com
org.amazon.com
sars-cn.amazon.com
aea-console-canary.aea.amazon.com
a.cdn.haileygu.console-alpha.aws-dev.amazon.com
ca-central-1.beta.acm-certificates.amazon.com
pay-api.amazon.com
match-visualsearch-in.amazon.com
warpspeed.eu-west-1.aws.amazon.com
dcs-envy-ui-gamma.corp.amazon.com
taapi-ui-alpha.corp.amazon.com
amp.aka.amazon.com
tmga.aea.amazon.com
merch-eu.amazon.com
glimpse-publish-eu.amazon.com
cde-ta-g7g.amazon.com
tmga.aea.amazon.com
flashui-alpha-na.integ.amazon.com
dp-rsm-preprod.amazon.com
emf-operator-console-prod-sin-cell3.corp.amazon.com
lab-central.amazon.com
cs-ext-eu-preprod.amazon.com
raven.studios.a2z.amazon.com
dp-rsm-prod.amazon.com
adg-order-eu.amazon.com
aea-console-canary.aea.amazon.com
charlie-kernel-console-alpha.aws.amazon.com
ap-southeast-1.console.aws.amazon.com
routingtools-jlb-l-dub.dub.proxy.amazon.com
us-west-1.awsc-integ.aws.amazon.com
aea-console-canary.aea.amazon.com
d2ysdk431fhvtm.cloudfront.net
check.integ.aftx.amazon.com
iq-test.console.aws.amazon.com
forums.aws.amazon.com
aea-console-canary.aea.amazon.com
ldap.cpt.amazon.com
bom-s-orca.amazon.com
media-service-fe.amazon.com
aea-console-canary.aea.amazon.com
a4k.amazon.com
d336t989k2uvmt.cloudfront.net
*.stage-business.amazon.com
smartshelf-productfinder.amazon.com
brickviewer-gamma.corp.amazon.com
beta.amazongames.com
aea-console-canary.aea.amazon.com
aea-console-canary.aea.amazon.com
umass.amazon.com
rds-access-syd.corp.amazon.com
aea-console-canary.aea.amazon.com
readynow-agg-preprod-eu.amazon.com
locard-alpha.corp.amazon.com
lender-central-eu.dub.amazon.com
bitrium-na.amazon.com
emf-operator-console-prod-sin-cell2.corp.amazon.com
aea-console-canary.aea.amazon.com
kindlepublishing.amazon.com
mrwiz-nrt-prod.corp.amazon.com
accesspoints-api-na.amazon.com
harbor-cn.amazon.com
firs-ta-g7g-preprod.amazon.com
firmware.hkg.amazon.com
zappos-ask-na.amazon.com
mas-ext.amazon.com
aax-eu.amazon.com
aea-console-canary.aea.amazon.com
registrar-website-backend-gamma.amazon.com
fra-w-orca.amazon.com
otsms-na-master-extern.amazon.com
*.peg.a2z.com
sellercentral.amazon.com
tmga.aea.amazon.com
syd-g-orca.amazon.com
bob-dispatch-preprod-eu.amazon.com
cpt-b-orca.amazon.com
ap-east-1.signin.aws
grappler.corp.amazon.com
ap-southeast-1.signin.aws
match-visualsearch-it.amazon.com
rewrite-ssl.amazon.com
preview-flex-capacity-jp.amazon.com
echoheaders.amazon.com
occentral-preprod.integ.amazon.com
edge-customer-troubleshooting.amazon.com
pharmacy.amazon.com
fls-na.amazon.com
tmga.aea.amazon.com
foxhound.amazon.com
logistics-platform-preprod.amazon.com
aftlite-portal-eu.amazon.com
es-preprod-aw.amazon.com
shm.amazon.com
devicemessaging-preprod.us-east-1.amazon.com
daols-opf-eu.amazon.com
fctools.corp.amazon.com
recordprep-aftx.dub.amazon.com
paragon-eu.amazon.com
advertising-api-test.amazon.com
aea-console-canary.aea.amazon.com
org.amazon.com
sars-cn.amazon.com
aea-console-canary.aea.amazon.com
a.cdn.haileygu.console-alpha.aws-dev.amazon.com
ca-central-1.beta.acm-certificates.amazon.com
pay-api.amazon.com
match-visualsearch-in.amazon.com
warpspeed.eu-west-1.aws.amazon.com
dcs-envy-ui-gamma.corp.amazon.com
taapi-ui-alpha.corp.amazon.com
amp.aka.amazon.com
tmga.aea.amazon.com
merch-eu.amazon.com
glimpse-publish-eu.amazon.com
cde-ta-g7g.amazon.com
tmga.aea.amazon.com
flashui-alpha-na.integ.amazon.com
dp-rsm-preprod.amazon.com
emf-operator-console-prod-sin-cell3.corp.amazon.com
lab-central.amazon.com
cs-ext-eu-preprod.amazon.com
raven.studios.a2z.amazon.com
dp-rsm-prod.amazon.com
adg-order-eu.amazon.com
Certificate
The complete raw certificate details for appstream2.us-gov-east-1.aws.amazon.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHQzCCBiugAwIBAgIQCR5moHCm0zNhh/T/rOBk3TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDMxNzAwMDAwMFoXDTIzMTEyNzIzNTk1OVowMjEw MC4GA1UEAxMnYXBwc3RyZWFtMi51cy1nb3YtZWFzdC0xLmF3cy5hbWF6b24uY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvF53Un0TWvmV8Anh44Fy ICkDwenKcRh9hv44QEy08y0i6vafYt8Tx3C8oRwb1mRHN2gyw1bAxvDgHNvZKqYT HrjxoU2r3jp0cc3+QKPA69vYgfsug7g1P+E5OJop4zknXTconHn7Ze/xMPPxvltN LGbB1cvJFPR5suSxBsOKX5nKlmmNeBgP8YVaBeIuiSArwIgk1vfm5kPvknStnTeA sl8sQJleavnmxMtOOpTypRdMbhZqVA2tWCG4xcCowWn43561fBnbp89AXI+giNLI HSWrPAuE4aPI7C4395WXdmq8mR+BuQfQ53S/zzhiQXlmcqh9xf2b+xmBTui7x5iZ HwIDAQABo4IESTCCBEUwHwYDVR0jBBgwFoAUgbgOY4qJEhjl+js7UJWf5uWQE4Uw HQYDVR0OBBYEFHTGbxrh+ro1kgZo8b0EXTsXblucMIIBdwYDVR0RBIIBbjCCAWqC J2FwcHN0cmVhbTIudXMtZ292LWVhc3QtMS5hd3MuYW1hem9uLmNvbYIpKi5hcHBz dHJlYW0yLnVzLWdvdi1lYXN0LTEuYXdzLmFtYXpvbi5jb22CKHN0cmVhbS51cy1n b3YtZWFzdC0xLmFtYXpvbmFwcHN0cmVhbS5jb22CKiouc3RyZWFtLnVzLWdvdi1l YXN0LTEuYW1hem9uYXBwc3RyZWFtLmNvbYItcG9ydGFsLWFwcHN0cmVhbTIudXMt Z292LWVhc3QtMS5hbWF6b25hd3MuY29tgi8qLnBvcnRhbC1hcHBzdHJlYW0yLnVz LWdvdi1lYXN0LTEuYW1hem9uYXdzLmNvbYItYXBwc3RyZWFtMi51cy1nb3YtZWFz dC0xLmFtYXpvbmF3cy11cy1nb3YuY29tgi8qLmFwcHN0cmVhbTIudXMtZ292LWVh c3QtMS5hbWF6b25hd3MtdXMtZ292LmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6 Ly9jcmwucjJtMDEuYW1hem9udHJ1c3QuY29tL3IybTAxLmNybDATBgNVHSAEDDAK MAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9v Y3NwLnIybTAxLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2Ny dC5yMm0wMS5hbWF6b250cnVzdC5jb20vcjJtMDEuY2VyMAwGA1UdEwEB/wQCMAAw ggGABgorBgEEAdZ5AgQCBIIBcASCAWwBagB3AOg+0No+9QY1MudXKLyJa8kD08vR EWvs62nhd31tBr1uAAABhuzt5UcAAAQDAEgwRgIhAPSJ9UXXWY/UQEVq++AOzgwY WbH9mMfUbSqBc6TaY52uAiEA6bj7a0XwZKbHVhIfxvZM++THs0LGnxiNG+EtFj+x w7IAdgCzc3cH4YRQ+GOG1gWp3BEJSnktsWcMC4fc8AMOeTalmgAAAYbs7eWsAAAE AwBHMEUCIFtVnZT1CySL8ZXf7/kaUl703pc4A9v0kh55Y+LbehKhAiEAjj7x1WZm L376TueP+2F9QsiJ7abl2TMrzUV9oo/wt1IAdwC3Pvsk35xNunXyOcW6WPRsXfxC z3qfNcSeHQmBJe20mQAAAYbs7eVuAAAEAwBIMEYCIQD7jd5DIgjamJl8hUmWeMrE Q1TUR3S0Fb3q8vIpdKaSsAIhALjuS/c88yiXdlG9bEsnC6bkGM4JjlHZ1rXTAYdS Mp2KMA0GCSqGSIb3DQEBCwUAA4IBAQBzIGWM3EMWa/2EvJiB6EhDqNxqOG9e7w64 kCbI7snsXpmcNbA1dz38X6F3W64yzPa00hQSAhszE8KsiclOuDqPMfxGNvbNdWg9 RAqtQbkXu5sp8xmLB5wppUtQEabOQzUOrtM0PucnUAeE0fGGegslrChRV4JFe5Al U9hnSodPx/We1F1UMeCAnihS3hK7rd616eNnGWBX8qYDA1dyoiHF6bVUW4B23bFa lk0krwOQqz4Wyh1CEJCQQctv2HS9/clpZtb7l4x8YhDoP8FekEyM5yZxaMCdqcMh hwGiXoI0AK1YaWUOjSn/r0L3GcV2D7r8K7itwGHYw+Yr2xKly8R1 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvF53Un0TWvmV8Anh44Fy ICkDwenKcRh9hv44QEy08y0i6vafYt8Tx3C8oRwb1mRHN2gyw1bAxvDgHNvZKqYT HrjxoU2r3jp0cc3+QKPA69vYgfsug7g1P+E5OJop4zknXTconHn7Ze/xMPPxvltN LGbB1cvJFPR5suSxBsOKX5nKlmmNeBgP8YVaBeIuiSArwIgk1vfm5kPvknStnTeA sl8sQJleavnmxMtOOpTypRdMbhZqVA2tWCG4xcCowWn43561fBnbp89AXI+giNLI HSWrPAuE4aPI7C4395WXdmq8mR+BuQfQ53S/zzhiQXlmcqh9xf2b+xmBTui7x5iZ HwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12120902384969862590853800536056030429 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'appstream2.us-gov-east-1.aws.amazon.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23779384304896293795827369614890208786846280236805437737814138067493112967703315182841285841351151346116502904444729249501226665512385628151700058273871349456001301445135556929264204446526790662014765853003481959940898515235151444328178189243514998497948255172234452319149775218596934256973532965718899740504992493311113916579916792227775851289035697715138197847068684529444939857123777391147500591801638291145751978743106206215188049683072312054955585186676538671790053063048950907077603896033648852997702044608108690060427623135667684111994591638538860125454994737571261418416492408286209568478118636497509476243743 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 74c66f1ae1faba35920668f1bd045d3b176e5b9c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'appstream2.us-gov-east-1.aws.amazon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.appstream2.us-gov-east-1.aws.amazon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stream.us-gov-east-1.amazonappstream.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stream.us-gov-east-1.amazonappstream.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal-appstream2.us-gov-east-1.amazonaws.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.portal-appstream2.us-gov-east-1.amazonaws.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'appstream2.us-gov-east-1.amazonaws-us-gov.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.appstream2.us-gov-east-1.amazonaws-us-gov.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007320658cdc43166bfd84bc9881e84843a8dc6a386f5eef0eb89026c8eec9ec5e999c35b035773dfc5fa1775bae32ccf6b4d21412021b3313c2ac89c94eb83a8f31fc4636f6cd75683d440aad41b917bb9b29f3198b079c29a54b5011a6ce43350eaed3343ee727500784d1f1867a0b25ac28515782457b902553d8674a874fc7f59ed45d5431e0809e2852de12bbaddeb5e9e367196057f2a603035772a221c5e9b5545b8076ddb15a964d24af0390ab3e16ca1d4210909041cb6fd874bdfdc96966d6fb978c7c6210e83fc15e904c8ce7267168c09da9c3218701a25e823400ad5869650e8d29ffaf42f719c5760fbafc2bb8adc061d8c3e62bdb12a5cbc475