pbskids.org
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 09:8a:d3:69:a2:63:a9:cf:4b:47:40:65:ae:7c:aa:c2 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pbskids.org
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 09:8a:d3:69:a2:63:a9:cf:4b:47:40:65:ae:7c:aa:c2Serial Number (int): 12683876886182540720122124959374682818
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 39:43:71:be:a4:65:cb:9e:e5:88:77:9a:9d:8c:6f:68:c1:b8:b8:29
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): d8:94:f2:d8:0f:bb:4f:fb:5d:9b:f3:05:72:a6:c5:26:c9:73:ee:d4
Fingerprint (sha256): 74:e9:4d:58:f1:4e:82:71:a3:d7:2c:ec:06:42:17:b7:af:e6:69:9c:71:10:9d:f5:3b:d4:86:d4:d3:b4:3b:e2
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate pbskids.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pbskids.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pbskids.org
*.pbskids.org
*.pbskids.org
Other certificates including the domain name pbskids.org
(limited to 100 certificates)
*.pbskids.org
*.services.pbskids.org
help.pbskids.org
shop.pbskids.org
*.playground.pbskids.org
springroll-stage.pbskids.org
fdus-48.freshdesk.com
help.pbskids.org
*.playground.pbskids.org
pbskids.org
*.services.prod.pbskids.org
*.springroll-qa.pbskids.org
pbskids.org
pbskids.org
pbskids.org
springroll-stage.pbskids.org
*.prod.pbskids.org
pbskids.org
das.pbskids.org
measureup.pbskids.org
springroll-stage.pbskids.org
help.pbskids.org
shop.pbskids.org
help.pbskids.org
*.console.pbskids.org
*.services.pbskids.org
measureup.pbskids.org
fdus-48.freshdesk.com
*.springroll-qa.pbskids.org
*.playground.pbskids.org
measureup-playground.pbskids.org
*.services.preprod.pbskids.org
pbskids.org
help.pbskids.org
secure.shop.pbskids.org
*.preprod.pbskids.org
shop.pbskids.org
pbskids.org
*.prod.pbskids.org
*.shop.pbskids.org
*.shop.pbskids.org
shop.pbskids.org
*.playground.pbskids.org
shop.pbskids.org
help.pbskids.org
study.supervision.pbskids.org
*.services.pbskids.org
*.preprod.pbskids.org
*.playground.pbskids.org
pbskids.org
livestream.pbskids.org
pbskids.org
help.pbskids.org
*.preprod.pbskids.org
pbskids.org
*.prod.pbskids.org
pbskids.org
help.pbskids.org
pbskids.org
image.pbs.org
pbskids.org
pbskids.org
livestream.pbskids.org
help.pbskids.org
qoe.pbskids.org
pbskids.org
*.prod.pbskids.org
help.pbskids.org
help.pbskids.org
help.pbskids.org
*.preprod.pbskids.org
help.pbskids.org
*.pbskids.org
pbskids.org
*.prod.pbskids.org
study.supervision.pbskids.org
fdus-48.freshdesk.com
pbskids.org
teach.pbskids.org
live.pbskids.org
jenkins.springroll.pbskids.org
*.playground.pbskids.org
pbskids.org
pbskids.org
*.pbs-kids-playground.pbskids.org
supervision.pbskids.org
*.services.pbskids.org
pbskids.org
help.pbskids.org
*.playground.pbskids.org
pbskids.org
livestream.pbskids.org
help.pbskids.org
livestream.pbskids.org
help.pbskids.org
local.pbskids.org
*.preprod.pbskids.org
shop.pbskids.org
*.services.pbskids.org
help.pbskids.org
*.services.pbskids.org
help.pbskids.org
shop.pbskids.org
*.playground.pbskids.org
springroll-stage.pbskids.org
fdus-48.freshdesk.com
help.pbskids.org
*.playground.pbskids.org
pbskids.org
*.services.prod.pbskids.org
*.springroll-qa.pbskids.org
pbskids.org
pbskids.org
pbskids.org
springroll-stage.pbskids.org
*.prod.pbskids.org
pbskids.org
das.pbskids.org
measureup.pbskids.org
springroll-stage.pbskids.org
help.pbskids.org
shop.pbskids.org
help.pbskids.org
*.console.pbskids.org
*.services.pbskids.org
measureup.pbskids.org
fdus-48.freshdesk.com
*.springroll-qa.pbskids.org
*.playground.pbskids.org
measureup-playground.pbskids.org
*.services.preprod.pbskids.org
pbskids.org
help.pbskids.org
secure.shop.pbskids.org
*.preprod.pbskids.org
shop.pbskids.org
pbskids.org
*.prod.pbskids.org
*.shop.pbskids.org
*.shop.pbskids.org
shop.pbskids.org
*.playground.pbskids.org
shop.pbskids.org
help.pbskids.org
study.supervision.pbskids.org
*.services.pbskids.org
*.preprod.pbskids.org
*.playground.pbskids.org
pbskids.org
livestream.pbskids.org
pbskids.org
help.pbskids.org
*.preprod.pbskids.org
pbskids.org
*.prod.pbskids.org
pbskids.org
help.pbskids.org
pbskids.org
image.pbs.org
pbskids.org
pbskids.org
livestream.pbskids.org
help.pbskids.org
qoe.pbskids.org
pbskids.org
*.prod.pbskids.org
help.pbskids.org
help.pbskids.org
help.pbskids.org
*.preprod.pbskids.org
help.pbskids.org
*.pbskids.org
pbskids.org
*.prod.pbskids.org
study.supervision.pbskids.org
fdus-48.freshdesk.com
pbskids.org
teach.pbskids.org
live.pbskids.org
jenkins.springroll.pbskids.org
*.playground.pbskids.org
pbskids.org
pbskids.org
*.pbs-kids-playground.pbskids.org
supervision.pbskids.org
*.services.pbskids.org
pbskids.org
help.pbskids.org
*.playground.pbskids.org
pbskids.org
livestream.pbskids.org
help.pbskids.org
livestream.pbskids.org
help.pbskids.org
local.pbskids.org
*.preprod.pbskids.org
shop.pbskids.org
*.services.pbskids.org
help.pbskids.org
Certificate
The complete raw certificate details for pbskids.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF0DCCBLigAwIBAgIQCYrTaaJjqc9LR0BlrnyqwjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDQxMDAwMDAwMFoXDTI1MDUwODIzNTk1OVowFjEU MBIGA1UEAxMLcGJza2lkcy5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDETR0pWr44DYRPKfE1ruS/FjLpMsOs/G7/4zE7fDKT/nY0bfo3wsHJeAii BJPjmQV/8ZJl4NfLX7bTIvGQ9j76hswRU9VYirb+DDElb/A6OSICwz3Lup8dF0yx +H2sa3LCM6Xh3U8/PessDGK8Q3dvTPqpdk+VuJstwF0/TFkL0AKZT32l1Uq6DFbs yvEpQP7gOo5v1LZsOL789rz+ADHs1MDc8oeEqZ1o4X7038ukGSMW9QQ2RwUlo9Yh oVW8Wx/V00M0Wf9vuk3onOMJpptH/AbkKczvtfE6QMY3ZAzR/M/gf2Uo2IWSFx/h GMrxh34j1C2P5ZNtPGIiwJHxNDfrAgMBAAGjggLyMIIC7jAfBgNVHSMEGDAWgBRV 2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQUOUNxvqRly57liHeanYxvaMG4 uCkwJQYDVR0RBB4wHIILcGJza2lkcy5vcmeCDSoucGJza2lkcy5vcmcwEwYDVR0g BAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAz LmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsG AQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYB BQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNl cjAMBgNVHRMBAf8EAjAAMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdwDPEVbu 1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAY7HHr+JAAAEAwBIMEYCIQDw IPINaHEuLZrTa9xVKxmpFaz9FrnepFV3dw4IdLJ68gIhAN0ImwGwR0GPvliG6NRa GpZpKjBinxX70YbaKYjWmSPKAHUAfVkeEuF4KnscYWd8Xv340IdcFKBOlZ65Ay/Z DowuebgAAAGOxx6/UwAABAMARjBEAiAlf3U4IHTcZtPdumuHGlFpkHJieZ6lI1Xs wqKpmrYk9QIgGz4FcM1jL2o72Ss/pYiaNyqkBGcDv0DFZKE4DCmZqc4AdQDm0jFj QHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAY7HHr9bAAAEAwBGMEQCIATf MfnTrM6uZLi7t/mK5awzboja0RTfQqGDrvVa7BVBAiAmluZTDvTzTPspcQPURoq9 wo+YiLKrBXsQVP+NeM/eEDANBgkqhkiG9w0BAQsFAAOCAQEAi7Rs/G3bYI3FdRcj /23p+AzVHwYya1tk4vy/diHsZ509t4vAdaCvbdZE2EWRMYpabSuX2rVI7Hpi8svI fdOKYSPqe1zGUnZiw2qr1j1Hv+HQA87sq195B2Tw3bREGtqvrmuM67WE9lYs8F+T lnpOu8ZKRwjNC9jEPz+s8dTcdLqTwwIWAgLpv4Nx1nMEL8TCS32nJenvKxevC0mi kG1Ro0xOM0CBkyzMJ3pG0Pl8+/EMLdxVKYRTtrlbb9wPsZYerXKUZAZXOJ3GjgGt cEDZx/6RmnJfoQjE5yS04VxN97wam5lymruDSmzDKkZkZsG6gbiudzNfy3rx4YJu IUArXw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxE0dKVq+OA2ETynxNa7k vxYy6TLDrPxu/+MxO3wyk/52NG36N8LByXgIogST45kFf/GSZeDXy1+20yLxkPY+ +obMEVPVWIq2/gwxJW/wOjkiAsM9y7qfHRdMsfh9rGtywjOl4d1PPz3rLAxivEN3 b0z6qXZPlbibLcBdP0xZC9ACmU99pdVKugxW7MrxKUD+4DqOb9S2bDi+/Pa8/gAx 7NTA3PKHhKmdaOF+9N/LpBkjFvUENkcFJaPWIaFVvFsf1dNDNFn/b7pN6JzjCaab R/wG5CnM77XxOkDGN2QM0fzP4H9lKNiFkhcf4RjK8Yd+I9Qtj+WTbTxiIsCR8TQ3 6wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12683876886182540720122124959374682818 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pbskids.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24780734060746502789681274943347593752525055574478257757544271744834267701198619139592598129174905497902029382731863289066429628347325184795278428938432230936451993206521405392040596131758881052681359739847907078019560817731334156701109227869238495375810554126890688439211429658117982694582876353272621032935030398242762150496669462017218458038372621695608414527281291433495047179383360478822978694744114361924868920130835406571404993438685996367528857446790479678675528993006056188255946899276466539638299592627354671759197406873597822554561689427916493008354475408564313020076216412772821826625148012411914936399851 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 394371bea465cb9ee588779a9d8c6f68c1b8b829 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pbskids.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pbskids.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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