carsgenius.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 07:f2:5d:2b:f6:f0:21:6f:e7:8b:0c:b6:2c:4a:31:58 was issued on by Amazon.
With 21 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=carsgenius.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:f2:5d:2b:f6:f0:21:6f:e7:8b:0c:b6:2c:4a:31:58Serial Number (int): 10563021557587579630272341159761817944
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 16:9c:5e:e3:08:ea:1f:82:1a:21:c9:96:e6:86:f1:52:d6:dc:cb:7b
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): af:af:45:4a:a0:93:91:08:50:66:be:cc:c6:35:c8:e5:ce:63:e5:40
Fingerprint (sha256): 87:52:3f:d1:51:c2:9a:c0:ef:10:df:3c:6c:6e:90:ef:81:0f:92:bf:fc:e7:11:33:c9:0f:df:90:fd:d4:c3:44
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate carsgenius.com
21
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for carsgenius.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
carsgenius.com
*.intelligentintent.net
*.stage.blog.s1-sp.com
*.travel.s1-mq.com
system1.com
*.blog.s1-sp.com
*.stage.forkly.com
*.stage.system1.com
*.stage.intelligentintent.net
blog.s1-sp.com
travel.s1-mq.com
intelligentintent.net
*.startpage-cms.com
*.system1.com
*.stage.startpage-cms.com
*.stage.wealthversed.com
forkly.com
*.stage.travel.s1-mq.com
*.wealthversed.com
wealthversed.com
*.forkly.com
*.intelligentintent.net
*.stage.blog.s1-sp.com
*.travel.s1-mq.com
system1.com
*.blog.s1-sp.com
*.stage.forkly.com
*.stage.system1.com
*.stage.intelligentintent.net
blog.s1-sp.com
travel.s1-mq.com
intelligentintent.net
*.startpage-cms.com
*.system1.com
*.stage.startpage-cms.com
*.stage.wealthversed.com
forkly.com
*.stage.travel.s1-mq.com
*.wealthversed.com
wealthversed.com
*.forkly.com
Other certificates including the domain name carsgenius.com
(limited to 100 certificates)
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
cdn.buy.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
pubwp-admin-prod.k.system1.company
carsgenius.com
carsgenius.com
*.myloveluxe.com
content.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
goto.net
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
cdn.buy.carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
goto.net
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
wealthversed.com
search.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
wealthversed.com
carsgenius.com
carsgenius.com
carsgenius.com
search.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
cdn.buy.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
pubwp-admin-prod.k.system1.company
carsgenius.com
carsgenius.com
*.myloveluxe.com
content.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
goto.net
carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
cdn.buy.carsgenius.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
carsgenius.com
carsgenius.com
*.myloveluxe.com
goto.net
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
wealthversed.com
search.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
wealthversed.com
carsgenius.com
carsgenius.com
carsgenius.com
search.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
*.carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
carsgenius.com
Certificate
The complete raw certificate details for carsgenius.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHZjCCBk6gAwIBAgIQB/JdK/bwIW/niwy2LEoxWDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDUyMjAwMDAwMFoXDTI0MDYxOTIzNTk1OVowGTEX MBUGA1UEAxMOY2Fyc2dlbml1cy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDdaJfygGQqmMsBzHZCdKzHcTFKtezacEh7JbYyGWefUngC5k1jQyOA sfKYAN27P8ggwO9oR4g5IbV16IyOpSdUik6ubANXHLnnwUTSxAP4uTLcawV7WPl8 yL4/TPeL/KdoM9nxrTwT4RT1ZE9GrWYOHebWcBRahT/JUQorF5W7/qSlbfyHnbhA +joxBnb3TWB/2Rzu7SMj9XCA408dBhaD/U1WexEXTkxUqXao0swLF6dukRkpDSAv 4LNqwcF/g7K1KYb16iqJV4lYeHwOoB6Sg93W5uAJAMdnaKuWX+g+8Gtor6SqeW3C 76qwUDAEOyqiXj8RQCeAh02HWGWxirN9AgMBAAGjggSFMIIEgTAfBgNVHSMEGDAW gBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUFpxe4wjqH4IaIcmW5obx Utbcy3swggG1BgNVHREEggGsMIIBqIIOY2Fyc2dlbml1cy5jb22CFyouaW50ZWxs aWdlbnRpbnRlbnQubmV0ghYqLnN0YWdlLmJsb2cuczEtc3AuY29tghIqLnRyYXZl bC5zMS1tcS5jb22CC3N5c3RlbTEuY29tghAqLmJsb2cuczEtc3AuY29tghIqLnN0 YWdlLmZvcmtseS5jb22CEyouc3RhZ2Uuc3lzdGVtMS5jb22CHSouc3RhZ2UuaW50 ZWxsaWdlbnRpbnRlbnQubmV0gg5ibG9nLnMxLXNwLmNvbYIQdHJhdmVsLnMxLW1x LmNvbYIVaW50ZWxsaWdlbnRpbnRlbnQubmV0ghMqLnN0YXJ0cGFnZS1jbXMuY29t gg0qLnN5c3RlbTEuY29tghkqLnN0YWdlLnN0YXJ0cGFnZS1jbXMuY29tghgqLnN0 YWdlLndlYWx0aHZlcnNlZC5jb22CCmZvcmtseS5jb22CGCouc3RhZ2UudHJhdmVs LnMxLW1xLmNvbYISKi53ZWFsdGh2ZXJzZWQuY29tghB3ZWFsdGh2ZXJzZWQuY29t ggwqLmZvcmtseS5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAy LmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEw dQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMi5h bWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDIuYW1h em9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMBAf8EAjAAMIIBfgYKKwYBBAHW eQIEAgSCAW4EggFqAWgAdQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1 mwAAAYhCJGh0AAAEAwBGMEQCIDW6RId0f0ir+UONQjs1/nyId5y9nJMH3JuG7Za1 8wc7AiBUY1+WXo0h2+PclffVfbNLsrvEXPaSlUwJyBAXyd9RhwB2AEiw42vapkc0 D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABiEIkaF8AAAQDAEcwRQIgSlVDlV8E m1/VGxYnXrqKi86A0KmjRwBWFDNdW2QWfasCIQCMWlwLgLsZbylfrOpTUBI6hQpb FTu+aLDS9hrGTyIRogB3ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/ur AAABiEIkaC8AAAQDAEgwRgIhAJ/WmzPFATIUk2/U/+x16y/jk2j+rZvkqoYjAMJX A7YNAiEA9D696AQShLM3w48+et/M3WcCRa6gmxMQ1KukBWo+eRswDQYJKoZIhvcN AQELBQADggEBAH4ilsdRgqaE7NSSr73bxEegpLQN9Mh3U96oPfNFlwibNJO975R/ Z+aJoAfi7RDw0pU8RaZ1N3QKvijzurgcjACId5SAqipP9AWRU4XHHcJ7zxKwh57+ acs/ktVaSlIpF1fLDOU+oKBfQkvpo4tYxSKn+WrhdjSLmvQJa2nCDw7llARlzZ8m sH1gZVEkkdx//LV1bAscs0U2zHTXj9eBJVx7RlGAapHRYcMbCBxrfDefI7rjSmKO 8Psk8/EeX1QbhfnaGM+gErWi65oNKpNN78ga4rLGr+sNMGBwHnibZTK4hmyhbTLO Wzp3zYcQ8sZKG6EusmzX310UbRsw+dVGWjU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3WiX8oBkKpjLAcx2QnSs x3ExSrXs2nBIeyW2Mhlnn1J4AuZNY0MjgLHymADduz/IIMDvaEeIOSG1deiMjqUn VIpOrmwDVxy558FE0sQD+Lky3GsFe1j5fMi+P0z3i/ynaDPZ8a08E+EU9WRPRq1m Dh3m1nAUWoU/yVEKKxeVu/6kpW38h524QPo6MQZ2901gf9kc7u0jI/VwgONPHQYW g/1NVnsRF05MVKl2qNLMCxenbpEZKQ0gL+CzasHBf4OytSmG9eoqiVeJWHh8DqAe koPd1ubgCQDHZ2irll/oPvBraK+kqnltwu+qsFAwBDsqol4/EUAngIdNh1hlsYqz fQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10563021557587579630272341159761817944 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'carsgenius.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27950242396361058230832179890845754795768717699653626319472429810824296015911566971903719079936623142242544447090140473402723656015178069555242573089851840773349493597162198431065172864508907041648984469281135049884206515986728541230254474252110075891241604134692963177731085614848501099035786086035405175486330162067904322670862865710674628667222547070351528061101403112197386532327534675750822300359129864507971166133812418644942037099749293562321177696477442485397962251594367752912029358528333851074749436147150975118179041889008522977756521654413491602718475247767543450120405877071930946404805593982893833237373 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 169c5ee308ea1f821a21c996e686f152d6dccb7b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (428 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'carsgenius.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.intelligentintent.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage.blog.s1-sp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.travel.s1-mq.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'system1.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.blog.s1-sp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage.forkly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage.system1.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage.intelligentintent.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.s1-sp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'travel.s1-mq.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intelligentintent.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.startpage-cms.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.system1.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage.startpage-cms.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage.wealthversed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'forkly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage.travel.s1-mq.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wealthversed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wealthversed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.forkly.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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