slow-no-cdn.us.rhapsode.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0b:bb:2b:d4:de:1e:e5:fc:09:98:7c:26:e6:ce:c4:e1 was issued on by Amazon.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=slow-no-cdn.us.rhapsode.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:bb:2b:d4:de:1e:e5:fc:09:98:7c:26:e6:ce:c4:e1Serial Number (int): 15593356474906523440467446944798524641
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ed:47:6a:e5:a4:c1:8e:4a:a8:76:62:dd:bb:ab:14:b1:a1:e9:6a:36
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 41:ae:1a:36:5e:86:41:17:67:5e:65:62:93:3c:fa:2a:28:34:fe:a4
Fingerprint (sha256): 7f:e1:66:6a:13:f7:0f:b6:68:99:45:79:f0:8c:69:3e:03:88:6c:ff:f6:31:a4:e9:2f:12:0a:9f:9d:cf:90:01
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate slow-no-cdn.us.rhapsode.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for slow-no-cdn.us.rhapsode.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
slow-no-cdn.us.rhapsode.com
area9.us.rhapsode.com
mks.us.rhapsode.com
area9.us.rhapsode.com
mks.us.rhapsode.com
Other certificates including the domain name rhapsode.com
(limited to 100 certificates)
rhapsode.dev.area9lyceum.com
*.curator.rhapsode.com
eu.rhapsode.com
ris.us.rhapsode.com
dev.eu.rhapsode.com
rhapsode.com
elb.rhapsode.area9lyceum.com
rhapsode.com
rhapsode.com
rhapsode.com
rhapsode.dev2.area9lyceum.com
*.curator.rhapsode.com
rhapsode.com
rhapsode.qa.area9lyceum.com
rhapsode.area9lyceum.com
hotfix.rhapsode.com
rhapsode.area9lyceum.com
rhapsode.qa.area9lyceum.com
external-content-qa-eu.rhapsode.com
rhapsode.area9lyceum.com
rhapsode.dev2.area9lyceum.com
rhapsode.dev.area9lyceum.com
aitest.rhapsode.com
rhapsode.com
slow-no-cdn.us.rhapsode.com
rhapsode.dev.area9lyceum.com
mks.dev.eu.rhapsode.com
rhapsode.com
eu.rhapsode.com
rhapsode.com
rhapsode.qa.area9lyceum.com
rhapsode.dev.area9lyceum.com
rhapsode.dev.area9lyceum.com
eu.rhapsode.com
us.rhapsode.com
eu.rhapsode.com
rhapsode.area9lyceum.com
rhapsode.dev.area9lyceum.com
slow-no-cdn.us.rhapsode.com
*.curator.rhapsode.com
rhapsode.dev2.area9lyceum.com
rhapsode.com
rhapsode.com
rhapsode.com
br.uat.sg.rhapsode.com
rhapsode.qa.area9lyceum.com
rhapsode.area9lyceum.com
slow-no-cdn.us.rhapsode.com
rhapsode.area9lyceum.com
rhapsode.area9lyceum.com
curator.rhapsode.com
rhapsode.qa.area9lyceum.com
aitest.rhapsode.com
rhapsode.com
rhapsode.com
rhapsode.com
rhapsode.area9lyceum.com
rhapsode.com
rhapsode.com
eu.rhapsode.com
rhapsode.dev2.area9lyceum.com
*.curator.rhapsode.com
rhapsode.qa.area9lyceum.com
hotfix.rhapsode.com
rhapsode.dev.area9lyceum.com
uat.us.rhapsode.com
dev.eu.rhapsode.com
rhapsode.area9lyceum.com
rhapsode.com
eu.rhapsode.com
aitest.rhapsode.com
rhapsode.com
monitoring.eu.rhapsode.com
rhapsode.dev.area9lyceum.com
rhapsode.com
rhapsode.area9lyceum.com
us.rhapsode.com
rhapsode.dev.area9lyceum.com
reports-mks.us.rhapsode.com
eu.rhapsode.com
rhapsode.dev.area9lyceum.com
mks.dev2.eu.rhapsode.com
rhapsode.dev.area9lyceum.com
*.curator.rhapsode.com
eu.rhapsode.com
ris.us.rhapsode.com
dev.eu.rhapsode.com
rhapsode.com
elb.rhapsode.area9lyceum.com
rhapsode.com
rhapsode.com
rhapsode.com
rhapsode.dev2.area9lyceum.com
*.curator.rhapsode.com
rhapsode.com
rhapsode.qa.area9lyceum.com
rhapsode.area9lyceum.com
hotfix.rhapsode.com
rhapsode.area9lyceum.com
rhapsode.qa.area9lyceum.com
external-content-qa-eu.rhapsode.com
rhapsode.area9lyceum.com
rhapsode.dev2.area9lyceum.com
rhapsode.dev.area9lyceum.com
aitest.rhapsode.com
rhapsode.com
slow-no-cdn.us.rhapsode.com
rhapsode.dev.area9lyceum.com
mks.dev.eu.rhapsode.com
rhapsode.com
eu.rhapsode.com
rhapsode.com
rhapsode.qa.area9lyceum.com
rhapsode.dev.area9lyceum.com
rhapsode.dev.area9lyceum.com
eu.rhapsode.com
us.rhapsode.com
eu.rhapsode.com
rhapsode.area9lyceum.com
rhapsode.dev.area9lyceum.com
slow-no-cdn.us.rhapsode.com
*.curator.rhapsode.com
rhapsode.dev2.area9lyceum.com
rhapsode.com
rhapsode.com
rhapsode.com
br.uat.sg.rhapsode.com
rhapsode.qa.area9lyceum.com
rhapsode.area9lyceum.com
slow-no-cdn.us.rhapsode.com
rhapsode.area9lyceum.com
rhapsode.area9lyceum.com
curator.rhapsode.com
rhapsode.qa.area9lyceum.com
aitest.rhapsode.com
rhapsode.com
rhapsode.com
rhapsode.com
rhapsode.area9lyceum.com
rhapsode.com
rhapsode.com
eu.rhapsode.com
rhapsode.dev2.area9lyceum.com
*.curator.rhapsode.com
rhapsode.qa.area9lyceum.com
hotfix.rhapsode.com
rhapsode.dev.area9lyceum.com
uat.us.rhapsode.com
dev.eu.rhapsode.com
rhapsode.area9lyceum.com
rhapsode.com
eu.rhapsode.com
aitest.rhapsode.com
rhapsode.com
monitoring.eu.rhapsode.com
rhapsode.dev.area9lyceum.com
rhapsode.com
rhapsode.area9lyceum.com
us.rhapsode.com
rhapsode.dev.area9lyceum.com
reports-mks.us.rhapsode.com
eu.rhapsode.com
rhapsode.dev.area9lyceum.com
mks.dev2.eu.rhapsode.com
rhapsode.dev.area9lyceum.com
Certificate
The complete raw certificate details for slow-no-cdn.us.rhapsode.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDzCCBPegAwIBAgIQC7sr1N4e5fwJmHwm5s7E4TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDUwMzAwMDAwMFoXDTI1MDYwMTIzNTk1OVowJjEk MCIGA1UEAxMbc2xvdy1uby1jZG4udXMucmhhcHNvZGUuY29tMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLMJQSxCSTI54TZsw7WFkvM2xDD6o0fOrJDw sgXIA8Xp2+uCGHKTW4zMAbxIdFSaBoYKmGdCMVsw717u8NzUFVNUwKwO8ZEK2Aom dlRBz08dBGpbEkYEMFtd7+r49o2Al9BFM3mnAsXdk0e005K01+jMRKwAjuZlc3HK BWEwgYujl1S6E0OcBrExZIX1wqBrjxgYGU1xfkVkyeMGNpyWUd3WaHzja2vxO+1t 0/+lKmIIdHNZqUII4dfSN8CEJMdnGYnzF+pW3crLe/DNyTp7AhYYg2GHvud1Qkf6 lT7dAC8QdYbLsD0CNVIZPkw5OV97817gHv2O5hh0VKPFyJp0BwIDAQABo4IDITCC Ax0wHwYDVR0jBBgwFoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFO1H auWkwY5KqHZi3burFLGh6Wo2MFIGA1UdEQRLMEmCG3Nsb3ctbm8tY2RuLnVzLnJo YXBzb2RlLmNvbYIVYXJlYTkudXMucmhhcHNvZGUuY29tghNta3MudXMucmhhcHNv ZGUuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0 cDovL2NybC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3JsMHUGCCsGAQUF BwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDIuYW1hem9udHJ1 c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAyLmFtYXpvbnRydXN0 LmNvbS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIEggFv BIIBawFpAHYATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGPPIhS SAAABAMARzBFAiB3QpZ0Duk0F/IyDGzK9yUuV3G/iXdwWG9Yj3SzSDT+aQIhAMQ6 xIxf4aU3EE+QpQx0duRbJrBk/Ja9IPRtMW3P9VpIAHcAfVkeEuF4KnscYWd8Xv34 0IdcFKBOlZ65Ay/ZDowuebgAAAGPPIhShQAABAMASDBGAiEAoNBe3ed3WCX4CRdJ Y3GvW3CXBqSqnRfcd3O5pUgfv8ECIQC8aoIwzVenOCHuurcLodnY0/1HCw+rPQ7s qOxXfwUw9AB2AObSMWNAd4zBEEEG13G5zsHSQPaWhIb7uocyHf0eN45QAAABjzyI UrwAAAQDAEcwRQIgLN08npM1gdWiaU4UyC9Yl64knv9b6VCztje+jyJF+9YCIQD2 XpVqwCyzMMcMxbNHvUcr287qSXxM9Pna1HklyY4CNzANBgkqhkiG9w0BAQsFAAOC AQEAV2JE2WIwnCv/enMG+h+BxXqbODCdcAEHw8dgn8QbPkXBo86qSUyJLtp/OuNR 8ILN4cbhL7xmNTc2GTQVg1N8KiHXyNF3J+asouDrii1IxeAIsD51g0aqjGG4oo0N Vjl2WWRnEv498lrem29J0GTgdOc/5GcVDu7F2PDMDL1PQdJi2MYCZt2Tv+tezfg9 CNBKX6Fu6fqgsYFiTGxHjPMwcW0fgTX30n/o7jGgXt46dQ63Wuh+Y5WzVht1yY9Z yTxbPJhYqhBkLlIpbrSyfoGjNuD7Eb4YNVkF50y6P5GJyAtcgxtXnjREQLGhWzvX DBE9lYvDYnZZEgvoq8UFK83B2g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLMJQSxCSTI54TZsw7WF kvM2xDD6o0fOrJDwsgXIA8Xp2+uCGHKTW4zMAbxIdFSaBoYKmGdCMVsw717u8NzU FVNUwKwO8ZEK2AomdlRBz08dBGpbEkYEMFtd7+r49o2Al9BFM3mnAsXdk0e005K0 1+jMRKwAjuZlc3HKBWEwgYujl1S6E0OcBrExZIX1wqBrjxgYGU1xfkVkyeMGNpyW Ud3WaHzja2vxO+1t0/+lKmIIdHNZqUII4dfSN8CEJMdnGYnzF+pW3crLe/DNyTp7 AhYYg2GHvud1Qkf6lT7dAC8QdYbLsD0CNVIZPkw5OV97817gHv2O5hh0VKPFyJp0 BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15593356474906523440467446944798524641 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'slow-no-cdn.us.rhapsode.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25840900229455620007868706503077448873221838182608172574358668961890525007488231141700829257225040447621270953239315665862396512841980466935296838026186598666786696699759489623516389866577786905731857533693183335908302513420577577636258055678605291465962232354068945380849240703697416511496543046476916063178017007267663406680048685263695427686765848099265199632831427894175553795614822865639735192032002581182489110598000986364168857073971096827782814800730673855127172564842639273931633631112635977373519750769555347311689601650755229274156028219224287577616047209731267033583346933341476351102184493066258791166983 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ed476ae5a4c18e4aa87662ddbbab14b1a1e96a36 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'slow-no-cdn.us.rhapsode.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'area9.us.rhapsode.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mks.us.rhapsode.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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