d14.strollonet.avassa.dev
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 01:c5:b5:a5:50:fd:6b:34:af:96:54:51:52:21:9c:08 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=d14.strollonet.avassa.dev
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:c5:b5:a5:50:fd:6b:34:af:96:54:51:52:21:9c:08Serial Number (int): 2355794690766518004853610699879980040
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: c7:1f:07:46:22:37:fe:89:4b:18:cf:98:0a:ad:c1:b6:be:3b:30:3b
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 73:8d:b1:38:22:48:8b:86:24:5c:17:52:dc:2c:d7:c5:3c:85:bf:b7
Fingerprint (sha256): 74:80:22:e2:4f:7b:3d:cd:5b:a5:76:e2:09:91:40:b5:d6:be:6c:44:0d:82:9e:24:2f:cb:7e:0b:c5:55:7d:cc
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate d14.strollonet.avassa.dev
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for d14.strollonet.avassa.dev
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
d14.strollonet.avassa.dev
*.d14.strollonet.avassa.dev
*.d14.strollonet.avassa.dev
Other certificates including the domain name avassa.dev
(limited to 100 certificates)
sitestorm.mattias-korvkiosk.avassa.dev
devtest.mattias-korvkiosk.avassa.dev
topdc-j3y5yg1qvv36o.avassa.dev
dec08t1dev.pingu.avassa.dev
topdc-cmcyabgnverqp.avassa.dev
topdc-m85lh06exd3qx.avassa.dev
topdc-4pt8psxspxtgq.avassa.dev
dev.mattias-korvkiosk.avassa.dev
topdc-ccwogn2ltu8dn.avassa.dev
topdc-1txspmnksch54.avassa.dev
topdc-8zlwtv5fttcyk.avassa.dev
topdc-nvrifp3cgxp7f.avassa.dev
e2e-5657129.hodr-son-of-odin.avassa.dev
e2e-3711361.hodr-son-of-odin.avassa.dev
test.testtest.avassa.dev
obelix.merovingian.avassa.dev
topdc-khpqwcu6oyanc.avassa.dev
topdc-94jfgz0mckx9q.avassa.dev
test.testtest.avassa.dev
e2e-573121.yet-a-new-org.avassa.dev
topdc-394z9fr28ng38.avassa.dev
dec6t3.pingu-ab.avassa.dev
topdc-feul9jycugmbg.avassa.dev
topdc-ppro9fvw6k3m2.avassa.dev
topdc-aosecxk64qwac.avassa.dev
pen3.bi.avassa.dev
hangman.merovingian.avassa.dev
dec6t2.pingu-ab.avassa.dev
topdc-296k80z0sdifm.avassa.dev
topdc-ewcvvnide2g5n.avassa.dev
topdc-a5b7uxiwfvl3y.avassa.dev
topdc-z5pez17e60kfj.avassa.dev
topdc-a8lbzmej9377g.avassa.dev
topdc-unnjxrx817fxl.avassa.dev
12dec.thomas-testar.avassa.dev
topdc-e1o7ddijmodoi.avassa.dev
topdc-soj4wobzi6lpl.avassa.dev
topdc-3t2sa2e3nhgiz.avassa.dev
development.mattias-korvkiosk.avassa.dev
e2e-4518140.hodr-son-of-odin.avassa.dev
topdc-rb6soadngvf0z.avassa.dev
topdc-c6a8mo94o7gpp.avassa.dev
topdc-amxj5o2h224q3.avassa.dev
topdc-owss8ktvlhx12.avassa.dev
e2e-14119.hodr-son-of-odin.avassa.dev
topdc-gbbxz6jiqn9r6.avassa.dev
krokodil.rotmos-och-elektronik.avassa.dev
topdc-ms1io3rizr5j3.avassa.dev
ma-0523.mattias-korvkiosk.avassa.dev
topdc-3dp6gc0umwzls.avassa.dev
topdc-z5mtlhuanhsbh.avassa.dev
topdc-wyxbripxvw6oa.avassa.dev
blubb.helmut-kohl-ab.avassa.dev
topdc-fhdyox0i6t7mh.avassa.dev
cluster-test.the-company.avassa.dev
topdc-0idf7eg8wh15w.avassa.dev
topdc-8yrvnc0ji0om5.avassa.dev
topdc-uyjum55kmxmq6.avassa.dev
topdc-tyd4aghudygel.avassa.dev
e2e-518204.yet-an-org.avassa.dev
e2e-34563.hodr-son-of-odin.avassa.dev
topdc-w8hih701hegot.avassa.dev
topdc-ubcbe74em5rg1.avassa.dev
washme.eveon.avassa.dev
topdc-ca2x9w3oo8eip.avassa.dev
topdc-liatbjn0hmv2f.avassa.dev
gangerolf.merovingian.avassa.dev
topdc-o7z8hbvrsezrv.avassa.dev
topdc-vrnfeg55sb6ea.avassa.dev
dec3prod2.yet-an-org.avassa.dev
topdc-8r7h7bqwlsfi9.avassa.dev
washme2.eveon.avassa.dev
topdc-wpy7lw86c0o3r.avassa.dev
topdc-k754303lg72je.avassa.dev
topdc-j482hsj1f3tev.avassa.dev
topdc-u45xcksu4u821.avassa.dev
e2e-3342152.yet-a-new-org.avassa.dev
topdc-kz1a4f6zb32ou.avassa.dev
topdc-xwdkl04v7pf37.avassa.dev
sdf.eveon.avassa.dev
m23.strollonet.avassa.dev
topdc-e6p2sa9rht1xx.avassa.dev
dec3.yet-an-org.avassa.dev
topdc-g96c1voybgfy9.avassa.dev
topdc-pdlyhwyz36uj8.avassa.dev
d14.strollonet.avassa.dev
10000.mattias-korvkiosk.avassa.dev
dec6p2.pingu-ab.avassa.dev
topdc-ncnq53djjg0o0.avassa.dev
topdc-7cgn9ns2qamxp.avassa.dev
nikita.merovingian.avassa.dev
topdc-x2c2zofqxjvna.avassa.dev
topdc-wvagl2qkragf6.avassa.dev
tjohej.tomas-fisk.avassa.dev
topdc-5c3pz9dmbvaff.avassa.dev
demo-2.the-company.avassa.dev
detest.mattias-korvkiosk.avassa.dev
topdc-immtf2j3dfb0v.avassa.dev
development.mattias-korvkiosk.avassa.dev
tport.bi.avassa.dev
devtest.mattias-korvkiosk.avassa.dev
topdc-j3y5yg1qvv36o.avassa.dev
dec08t1dev.pingu.avassa.dev
topdc-cmcyabgnverqp.avassa.dev
topdc-m85lh06exd3qx.avassa.dev
topdc-4pt8psxspxtgq.avassa.dev
dev.mattias-korvkiosk.avassa.dev
topdc-ccwogn2ltu8dn.avassa.dev
topdc-1txspmnksch54.avassa.dev
topdc-8zlwtv5fttcyk.avassa.dev
topdc-nvrifp3cgxp7f.avassa.dev
e2e-5657129.hodr-son-of-odin.avassa.dev
e2e-3711361.hodr-son-of-odin.avassa.dev
test.testtest.avassa.dev
obelix.merovingian.avassa.dev
topdc-khpqwcu6oyanc.avassa.dev
topdc-94jfgz0mckx9q.avassa.dev
test.testtest.avassa.dev
e2e-573121.yet-a-new-org.avassa.dev
topdc-394z9fr28ng38.avassa.dev
dec6t3.pingu-ab.avassa.dev
topdc-feul9jycugmbg.avassa.dev
topdc-ppro9fvw6k3m2.avassa.dev
topdc-aosecxk64qwac.avassa.dev
pen3.bi.avassa.dev
hangman.merovingian.avassa.dev
dec6t2.pingu-ab.avassa.dev
topdc-296k80z0sdifm.avassa.dev
topdc-ewcvvnide2g5n.avassa.dev
topdc-a5b7uxiwfvl3y.avassa.dev
topdc-z5pez17e60kfj.avassa.dev
topdc-a8lbzmej9377g.avassa.dev
topdc-unnjxrx817fxl.avassa.dev
12dec.thomas-testar.avassa.dev
topdc-e1o7ddijmodoi.avassa.dev
topdc-soj4wobzi6lpl.avassa.dev
topdc-3t2sa2e3nhgiz.avassa.dev
development.mattias-korvkiosk.avassa.dev
e2e-4518140.hodr-son-of-odin.avassa.dev
topdc-rb6soadngvf0z.avassa.dev
topdc-c6a8mo94o7gpp.avassa.dev
topdc-amxj5o2h224q3.avassa.dev
topdc-owss8ktvlhx12.avassa.dev
e2e-14119.hodr-son-of-odin.avassa.dev
topdc-gbbxz6jiqn9r6.avassa.dev
krokodil.rotmos-och-elektronik.avassa.dev
topdc-ms1io3rizr5j3.avassa.dev
ma-0523.mattias-korvkiosk.avassa.dev
topdc-3dp6gc0umwzls.avassa.dev
topdc-z5mtlhuanhsbh.avassa.dev
topdc-wyxbripxvw6oa.avassa.dev
blubb.helmut-kohl-ab.avassa.dev
topdc-fhdyox0i6t7mh.avassa.dev
cluster-test.the-company.avassa.dev
topdc-0idf7eg8wh15w.avassa.dev
topdc-8yrvnc0ji0om5.avassa.dev
topdc-uyjum55kmxmq6.avassa.dev
topdc-tyd4aghudygel.avassa.dev
e2e-518204.yet-an-org.avassa.dev
e2e-34563.hodr-son-of-odin.avassa.dev
topdc-w8hih701hegot.avassa.dev
topdc-ubcbe74em5rg1.avassa.dev
washme.eveon.avassa.dev
topdc-ca2x9w3oo8eip.avassa.dev
topdc-liatbjn0hmv2f.avassa.dev
gangerolf.merovingian.avassa.dev
topdc-o7z8hbvrsezrv.avassa.dev
topdc-vrnfeg55sb6ea.avassa.dev
dec3prod2.yet-an-org.avassa.dev
topdc-8r7h7bqwlsfi9.avassa.dev
washme2.eveon.avassa.dev
topdc-wpy7lw86c0o3r.avassa.dev
topdc-k754303lg72je.avassa.dev
topdc-j482hsj1f3tev.avassa.dev
topdc-u45xcksu4u821.avassa.dev
e2e-3342152.yet-a-new-org.avassa.dev
topdc-kz1a4f6zb32ou.avassa.dev
topdc-xwdkl04v7pf37.avassa.dev
sdf.eveon.avassa.dev
m23.strollonet.avassa.dev
topdc-e6p2sa9rht1xx.avassa.dev
dec3.yet-an-org.avassa.dev
topdc-g96c1voybgfy9.avassa.dev
topdc-pdlyhwyz36uj8.avassa.dev
d14.strollonet.avassa.dev
10000.mattias-korvkiosk.avassa.dev
dec6p2.pingu-ab.avassa.dev
topdc-ncnq53djjg0o0.avassa.dev
topdc-7cgn9ns2qamxp.avassa.dev
nikita.merovingian.avassa.dev
topdc-x2c2zofqxjvna.avassa.dev
topdc-wvagl2qkragf6.avassa.dev
tjohej.tomas-fisk.avassa.dev
topdc-5c3pz9dmbvaff.avassa.dev
demo-2.the-company.avassa.dev
detest.mattias-korvkiosk.avassa.dev
topdc-immtf2j3dfb0v.avassa.dev
development.mattias-korvkiosk.avassa.dev
tport.bi.avassa.dev
Certificate
The complete raw certificate details for d14.strollonet.avassa.dev in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEjjCCA3agAwIBAgIQAcW1pVD9azSvllRRUiGcCDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIxNDAwMDAwMFoXDTI1MDExMTIzNTk1OVowJDEi MCAGA1UEAxMZZDE0LnN0cm9sbG9uZXQuYXZhc3NhLmRldjCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAMu7Obo0m1CsSJR4uQ11bGYb+zece0IngX6P5HL5 wJ50qEQsqtnfEPbfG9eyCt1la9ufaHWy2W3UGSUCKjiffTomWfpeqh8gHxb6/pa6 ghJeF1p4PEnlz0HmayRdC7lpgVVZy3elZ5ee6QiQSAa4tXy6IyrqMA8SRMRZ5a4x 53vJ9nT2vT4M/97eUWgtVbu5kzpiGipZ4151s+U4p0dCX/ZLUZtu9oRV6/Gv99Wf 82YPZqZX4OVVRb9NmtQQZLQeZYz6HuI+Gove6JMO3pMisZm7aj22b3U4ZlroUK0E gQz6mhabyEJLevqoetHsGbKzJtyq/43hgDuVEtffOWvMjD0CAwEAAaOCAaIwggGe MB8GA1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBTHHwdG Ijf+iUsYz5gKrcG2vjswOzBBBgNVHREEOjA4ghlkMTQuc3Ryb2xsb25ldC5hdmFz c2EuZGV2ghsqLmQxNC5zdHJvbGxvbmV0LmF2YXNzYS5kZXYwEwYDVR0gBAwwCjAI BgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpv bnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzAB hiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKG Kmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNV HRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBXxMWjV/3OygmJ242CUKh7sMLJ75BcLir9UGozk9jsr87uXh8bLEWN9gS9azQ4 tOw0jPWMkfrUf/OXr+LKy4za+gD4pPe8pv0PXfb0vXu+2rs7Ur5nPQZu15u+JV9u OgChbexRGGxtuJ3hN/8HWN4XHztpNXyajiS3ntNBn0h/kEk+2lsWQoozxfcMDPKg jD3jPRrLFur9vpw2jSllh4eUgAvm9/rxDMs4uSIkN4BEuyP2xhBnj/fLCb2h3YAz uDSFOY+ZG1N6ofbJPsQND5UjuTseD3z2j8q1/Bs6YJKFBNVMaaVWwFk5td7I9n3P rhSq0Z/l6hH2PNht3Jn3x7Qe -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7s5ujSbUKxIlHi5DXVs Zhv7N5x7QieBfo/kcvnAnnSoRCyq2d8Q9t8b17IK3WVr259odbLZbdQZJQIqOJ99 OiZZ+l6qHyAfFvr+lrqCEl4XWng8SeXPQeZrJF0LuWmBVVnLd6Vnl57pCJBIBri1 fLojKuowDxJExFnlrjHne8n2dPa9Pgz/3t5RaC1Vu7mTOmIaKlnjXnWz5TinR0Jf 9ktRm272hFXr8a/31Z/zZg9mplfg5VVFv02a1BBktB5ljPoe4j4ai97okw7ekyKx mbtqPbZvdThmWuhQrQSBDPqaFpvIQkt6+qh60ewZsrMm3Kr/jeGAO5US1985a8yM PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2355794690766518004853610699879980040 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'd14.strollonet.avassa.dev' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25718700241912237933318950753223815176753090150119770379363496515651632281669344749358455565014641180479738730538114275194211770897994457203113919666762001737548226794871260432531971170838600806974305254397209975210765401106510532338203196636202400506292459645990148419375581827425985547374214044037986202648547753652808277876884138521962509675041902675496669849362809589378178031037441802629061718324172188155074858813922775217777793519072584000910609411503101830484637308031142905665376048227500612840456714895723012733219580765069699329747585472181126870454351894595835426516813535723760852234724105731585893764157 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c71f07462237fe894b18cf980aadc1b6be3b303b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'd14.strollonet.avassa.dev' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.d14.strollonet.avassa.dev' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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