activecorp.com.br
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 01:a5:e5:db:2f:d8:9b:26:d4:8b:8e:b6:fe:5b:d8:62 was issued on by Amazon.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=activecorp.com.br
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:a5:e5:db:2f:d8:9b:26:d4:8b:8e:b6:fe:5b:d8:62Serial Number (int): 2190619015017645409764945463449737314
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 56:aa:ae:92:a7:5e:c1:e3:2a:99:d8:47:76:26:a7:21:48:39:48:6e
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): ae:2f:50:37:5a:00:ce:9b:39:f3:f5:b3:28:f1:9a:6f:e3:c3:44:00
Fingerprint (sha256): 65:30:0a:fd:e5:64:46:4d:3b:b2:da:9d:a0:d4:60:c0:b1:e1:d2:09:33:da:8c:7f:6d:0e:21:dd:f5:b4:d5:ee
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate activecorp.com.br
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for activecorp.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
activecorp.com.br
tudoentregue.com.br
*.tudoentregue.com.br
freteapp.com.br
*.tudoentregue.com
activeonsupply.com.br
*.freteapp.com.br
*.activecorp.com.br
tudoentregue.com
*.activeonsupply.com.br
tudoentregue.com.br
*.tudoentregue.com.br
freteapp.com.br
*.tudoentregue.com
activeonsupply.com.br
*.freteapp.com.br
*.activecorp.com.br
tudoentregue.com
*.activeonsupply.com.br
Other certificates including the domain name activecorp.com.br
(limited to 100 certificates)
status.pipeimob.com.br
www.activecorp.com.br
status.markiiieb.com
status.ngxnetworks.com
conteudo.activecorp.com.br
shw.rmt.status.descartes.com
shw.rmt.status.descartes.com
iq.syncd.tech
status.us.premium.salusconnect.io
disponibilidade.activecorp.com.br
shw.rmt.status.descartes.com
status.quarklink.io
status.5starcoms.net
shw.rmt.status.descartes.com
status.anywhere.asolvi.app
status.mapworks.io
shw.rmt.status.descartes.com
status.pipeimob.com.br
status.doccle.be
status.lenderdock.com
shw.rmt.status.descartes.com
shw.rmt.status.descartes.com
iq.syncd.tech
status.nwtc.edu
status.5starcoms.net
activecorp.com.br
activecorp.com.br
iq.syncd.tech
shw.rmt.status.descartes.com
activecorp.com.br
status.prokurio.com
www.activecorp.com.br
status.rapidsos.com
status.whatgoesaroundnyc.com
status.bozic.io
status.buyerlink.com
status.dayonebio.com
status.prokurio.com
status.zeasn.io
status.dealerexpert.ca
activecorp.com.br
status.ssw.edu
hahttpstatus.myvfirst.com
status.zeasn.io
status.naviscloudops.com
disponibilidade.activecorp.com.br
status.orangecityfl.gov
shw.rmt.status.descartes.com
status.us.premium.salusconnect.io
status.rapidsos.com
fretebrasil.activecorp.com.br
shw.rmt.status.descartes.com
status.cubiksonline.com
disponibilidade.activecorp.com.br
conteudo.activecorp.com.br
www.activecorp.com.br
shw.rmt.status.descartes.com
shw.rmt.status.descartes.com
activecorp.com.br
activecorp.com.br
status.us.premium.salusconnect.io
activecorp.com.br
status.5starcoms.net
shw.rmt.status.descartes.com
status.us.premium.salusconnect.io
shw.rmt.status.descartes.com
status.anywhere.asolvi.app
conteudo.activecorp.com.br
status.whatgoesaroundnyc.com
status.intellecommerce.com
fretebrasil.activecorp.com.br
status.prokurio.com
activecorp.com.br
status.intellecommerce.com
status.anywhere.asolvi.app
www.activecorp.com.br
disponibilidade.activecorp.com.br
shw.rmt.status.descartes.com
status.nwtc.edu
shw.rmt.status.descartes.com
iq.syncd.tech
www.activecorp.com.br
status.mapworks.io
shw.rmt.status.descartes.com
status.lenderdock.com
shw.rmt.status.descartes.com
status.facm.cl
shw.rmt.status.descartes.com
status.ngxnetworks.com
status.dayonebio.com
status.apptrana.com
status.tronixtrm.com
shw.rmt.status.descartes.com
iq.syncd.tech
activecorp.com.br
status.apptrana.com
shw.rmt.status.descartes.com
conteudo.activecorp.com.br
shw.rmt.status.descartes.com
hahttpstatus.myvfirst.com
www.activecorp.com.br
status.markiiieb.com
status.ngxnetworks.com
conteudo.activecorp.com.br
shw.rmt.status.descartes.com
shw.rmt.status.descartes.com
iq.syncd.tech
status.us.premium.salusconnect.io
disponibilidade.activecorp.com.br
shw.rmt.status.descartes.com
status.quarklink.io
status.5starcoms.net
shw.rmt.status.descartes.com
status.anywhere.asolvi.app
status.mapworks.io
shw.rmt.status.descartes.com
status.pipeimob.com.br
status.doccle.be
status.lenderdock.com
shw.rmt.status.descartes.com
shw.rmt.status.descartes.com
iq.syncd.tech
status.nwtc.edu
status.5starcoms.net
activecorp.com.br
activecorp.com.br
iq.syncd.tech
shw.rmt.status.descartes.com
activecorp.com.br
status.prokurio.com
www.activecorp.com.br
status.rapidsos.com
status.whatgoesaroundnyc.com
status.bozic.io
status.buyerlink.com
status.dayonebio.com
status.prokurio.com
status.zeasn.io
status.dealerexpert.ca
activecorp.com.br
status.ssw.edu
hahttpstatus.myvfirst.com
status.zeasn.io
status.naviscloudops.com
disponibilidade.activecorp.com.br
status.orangecityfl.gov
shw.rmt.status.descartes.com
status.us.premium.salusconnect.io
status.rapidsos.com
fretebrasil.activecorp.com.br
shw.rmt.status.descartes.com
status.cubiksonline.com
disponibilidade.activecorp.com.br
conteudo.activecorp.com.br
www.activecorp.com.br
shw.rmt.status.descartes.com
shw.rmt.status.descartes.com
activecorp.com.br
activecorp.com.br
status.us.premium.salusconnect.io
activecorp.com.br
status.5starcoms.net
shw.rmt.status.descartes.com
status.us.premium.salusconnect.io
shw.rmt.status.descartes.com
status.anywhere.asolvi.app
conteudo.activecorp.com.br
status.whatgoesaroundnyc.com
status.intellecommerce.com
fretebrasil.activecorp.com.br
status.prokurio.com
activecorp.com.br
status.intellecommerce.com
status.anywhere.asolvi.app
www.activecorp.com.br
disponibilidade.activecorp.com.br
shw.rmt.status.descartes.com
status.nwtc.edu
shw.rmt.status.descartes.com
iq.syncd.tech
www.activecorp.com.br
status.mapworks.io
shw.rmt.status.descartes.com
status.lenderdock.com
shw.rmt.status.descartes.com
status.facm.cl
shw.rmt.status.descartes.com
status.ngxnetworks.com
status.dayonebio.com
status.apptrana.com
status.tronixtrm.com
shw.rmt.status.descartes.com
iq.syncd.tech
activecorp.com.br
status.apptrana.com
shw.rmt.status.descartes.com
conteudo.activecorp.com.br
shw.rmt.status.descartes.com
hahttpstatus.myvfirst.com
Certificate
The complete raw certificate details for activecorp.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGizCCBXOgAwIBAgIQAaXl2y/YmybUi462/lvYYjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDMxMzAwMDAwMFoXDTI1MDQxMTIzNTk1OVowHDEa MBgGA1UEAxMRYWN0aXZlY29ycC5jb20uYnIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnLpxXo4TBU2otEe2+iOxnvp51EGFz9Pm2JGEzP7GELTylIp8A VSoaywzsTzvyOoawfJmC+uZ9yDA6NFml54p+AqUkuvCdnNqypqUN3AlY3MPUrtt2 XIFptZS2CPFKV+MgAR5GLa4lZhoXkQW1kUUhoXqMuF28lw7tiqFqA5onPyAVnM/p 6S3xz+eHrsBqF1GsFXARjjSRFuy+FxVgPqYe1xz6dmB8TeCRQrUZGqYcvxULjpa9 TYW6EIhNT5AUhehl+jsMVbUx8bi45+M/xrndb+nrOLcc8geqEp4oPUhl/6BRTmLq VPLGOBN9tvzXKjKkXTTFuckKkS3/2PCQfmslAgMBAAGjggOnMIIDozAfBgNVHSME GDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUVqqukqdeweMqmdhH dianIUg5SG4wgdkGA1UdEQSB0TCBzoIRYWN0aXZlY29ycC5jb20uYnKCE3R1ZG9l bnRyZWd1ZS5jb20uYnKCFSoudHVkb2VudHJlZ3VlLmNvbS5icoIPZnJldGVhcHAu Y29tLmJyghIqLnR1ZG9lbnRyZWd1ZS5jb22CFWFjdGl2ZW9uc3VwcGx5LmNvbS5i coIRKi5mcmV0ZWFwcC5jb20uYnKCEyouYWN0aXZlY29ycC5jb20uYnKCEHR1ZG9l bnRyZWd1ZS5jb22CFyouYWN0aXZlb25zdXBwbHkuY29tLmJyMBMGA1UdIAQMMAow CAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMi5hbWF6 b250cnVzdC5jb20vcjJtMDIuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcw AYYhaHR0cDovL29jc3AucjJtMDIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAC hipodHRwOi8vY3J0LnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYD VR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYATnWjJ1yaEMM4 W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGONSvF1wAABAMARzBFAiAXxOPyyUVC nN/Z8wFkhoi5U7G/TGpoCbQJvaV4k807LwIhAK4qpOUUVmb4o5zSRqdlJ+E0LLAj edIpEotaqj4KG/6wAHUAfVkeEuF4KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgA AAGONSvGOgAABAMARjBEAiAdOrO48//9pG2aI9/5U1Vqe5CqqB8O+SEgWhsAJ9iT SwIgV3XpfM0WIQT3J3T4eZfXR7WN+zdVEyeT1q/jhfXtkCUAdgDm0jFjQHeMwRBB Btdxuc7B0kD2loSG+7qHMh39HjeOUAAAAY41K8ZBAAAEAwBHMEUCIQCBexpG34st VRy/ooMeLhf7uMaLeOgU4epebxq7vuXpYAIgKQeAnEi9qDh/lmUTyg4LSH3ln21T J1Jqqc7M0qNmnUAwDQYJKoZIhvcNAQELBQADggEBAEhHJoZUfyX/sJZdNG5D7lpE EEqHEKq3p21KlOwBbkqLtajOn2NHiWmKeP/8SIdL6YmtE5+MJOTA63uB6wSwRkwq ZXYylRbsRzjauSd4jaTfpSpaNFpJRnI7ov5ftl03sNOXfsaDL66d/BlexQLrA/Ow blLKNYqpRVHrKhldXrxyrE9T+WJn3/eQ0E+Dcd0cbdHx53BglIS3Q7/9kIOI+vKa +P0vjk3Hz99LWWsKWUS/rm9a21g3FrHfHTe/NWG1kjJ4epaPrazvu0vZOMePCypu 8i8pbSZesDF0WEFXuy1rSxNtRWWLp3vG4QJTihyQiDbqUPvZ6xapKU80LDb9LRI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApy6cV6OEwVNqLRHtvojs Z76edRBhc/T5tiRhMz+xhC08pSKfAFUqGssM7E878jqGsHyZgvrmfcgwOjRZpeeK fgKlJLrwnZzasqalDdwJWNzD1K7bdlyBabWUtgjxSlfjIAEeRi2uJWYaF5EFtZFF IaF6jLhdvJcO7YqhagOaJz8gFZzP6ekt8c/nh67AahdRrBVwEY40kRbsvhcVYD6m Htcc+nZgfE3gkUK1GRqmHL8VC46WvU2FuhCITU+QFIXoZfo7DFW1MfG4uOfjP8a5 3W/p6zi3HPIHqhKeKD1IZf+gUU5i6lTyxjgTfbb81yoypF00xbnJCpEt/9jwkH5r JQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2190619015017645409764945463449737314 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'activecorp.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21104781528195476811171459677817405979907522856983922349213482510453541074480971469036307981219120731397153660867400258041760958025999544382258892501202148038840260293754100635366857921974823201302544009713201704329883480167087271857557327807810705431764971229329421494559428392974338941919294750346371810251789661926761941207948429212254392408853268107333576393905966749323725805946644959516936792662250982982197868236536984709865822857418017257443767366475216947305213303233912095115825998546808299191233953345192451759615265520359318929368124797481871873096870565509073531535689164216452667232015625669180013832997 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 56aaae92a75ec1e32a99d8477626a7214839486e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (209 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'activecorp.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tudoentregue.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tudoentregue.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freteapp.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tudoentregue.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'activeonsupply.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.freteapp.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.activecorp.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tudoentregue.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.activeonsupply.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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