onespot.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0e:37:14:bf:42:9d:bc:0e:cc:8a:69:7a:8c:ca:62:70 was issued on by Amazon.
With 22 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=onespot.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:37:14:bf:42:9d:bc:0e:cc:8a:69:7a:8c:ca:62:70Serial Number (int): 18895189069596051077899612001042850416
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 06:be:bc:cd:f4:a8:f5:6c:a6:9f:bf:e9:fa:35:fa:b1:df:c5:de:eb
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 0f:69:9d:94:ee:32:c0:66:34:7f:61:1a:89:9b:f6:a3:59:d7:c6:c6
Fingerprint (sha256): 8f:a8:d4:4f:f7:3a:cd:3c:b8:84:b3:8a:e5:ce:7d:a1:10:0e:ec:17:f7:71:a9:ed:68:83:f7:75:da:d7:34:96
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate onespot.com
22
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for onespot.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
onespot.com
alterpoint.com
gensym.com
everestsoftwareinc.com
*.bespeakinc.com
bespeakinc.com
*.epmlive.com
prologic.com
*.gensym.com
biznessapps.com
*.prologic.com
eti.com
*.everestsoftwareinc.com
ecora.com
epmlive.com
*.onespot.com
*.biznessapps.com
*.auto-trol.com
*.alterpoint.com
*.ecora.com
auto-trol.com
*.eti.com
alterpoint.com
gensym.com
everestsoftwareinc.com
*.bespeakinc.com
bespeakinc.com
*.epmlive.com
prologic.com
*.gensym.com
biznessapps.com
*.prologic.com
eti.com
*.everestsoftwareinc.com
ecora.com
epmlive.com
*.onespot.com
*.biznessapps.com
*.auto-trol.com
*.alterpoint.com
*.ecora.com
auto-trol.com
*.eti.com
Other certificates including the domain name onespot.com
(limited to 100 certificates)
onespot.com
preview.onespot.com
support.engineyard.com
*.staging.onespot.com
pages.onespot.com
onespot.com
onespot.com
*.onespot.com
*.dashboard.onespot.com
*.onespot.com
hello.onespot.com
preview.onespot.com
*.dashboard.onespot.com
support.infinio.com
auth.onespot.com
onespot.com
preview.onespot.com
hello.onespot.com
*.dashboard.onespot.com
onespot.com
hello.onespot.com
*.dashboard.onespot.com
www.onespot.com
preview.onespot.com
*.dev.onespot.com
*.qa.onespot.com
preview.onespot.com
*.dev.onespot.com
www.onespot.com
pages.onespot.com
preview.onespot.com
hello.onespot.com
*.onespot.com
support.onespot.com
preview.onespot.com
*.onespot.com
onespot.com
*.onespot.com
*.onespot.com
preview.onespot.com
*.onespot.com
*.onespot.com
*.onespot.com
www.onespot.com
*.staging.onespot.com
onespot.com
auth.onespot.com
support.engineyard.com
support.onespot.com
onespot.com
onespot.com
*.stage.onespot.com
*.onespot.com
www.onespot.com
*.stage.onespot.com
support.onespot.com
pages.onespot.com
www.onespot.com
www.onespot.com
www.onespot.com
*.onespot.com
*.dashboard.onespot.com
www.onespot.com
pages.onespot.com
onespot.com
www.onespot.com
*.qa.onespot.com
preview.onespot.com
support.engineyard.com
support.engineyard.com
*.onespot.com
*.onespot.com
*.onespot.com
preview.onespot.com
*.dashboard.onespot.com
pages.onespot.com
www.onespot.com
auth.onespot.com
*.stage.onespot.com
*.dev.onespot.com
*.onespot.com
*.dashboard.onespot.com
www.onespot.com
*.staging.onespot.com
*.stage.onespot.com
pages.onespot.com
pages.onespot.com
preview.onespot.com
*.onespot.com
image.onespot.com
image.onespot.com
*.onespot.com
dashboard.onespot.com
onespot.com
onespot.com
*.staging.onespot.com
hello.onespot.com
preview.onespot.com
*.onespot.com
*.onespot.com
preview.onespot.com
support.engineyard.com
*.staging.onespot.com
pages.onespot.com
onespot.com
onespot.com
*.onespot.com
*.dashboard.onespot.com
*.onespot.com
hello.onespot.com
preview.onespot.com
*.dashboard.onespot.com
support.infinio.com
auth.onespot.com
onespot.com
preview.onespot.com
hello.onespot.com
*.dashboard.onespot.com
onespot.com
hello.onespot.com
*.dashboard.onespot.com
www.onespot.com
preview.onespot.com
*.dev.onespot.com
*.qa.onespot.com
preview.onespot.com
*.dev.onespot.com
www.onespot.com
pages.onespot.com
preview.onespot.com
hello.onespot.com
*.onespot.com
support.onespot.com
preview.onespot.com
*.onespot.com
onespot.com
*.onespot.com
*.onespot.com
preview.onespot.com
*.onespot.com
*.onespot.com
*.onespot.com
www.onespot.com
*.staging.onespot.com
onespot.com
auth.onespot.com
support.engineyard.com
support.onespot.com
onespot.com
onespot.com
*.stage.onespot.com
*.onespot.com
www.onespot.com
*.stage.onespot.com
support.onespot.com
pages.onespot.com
www.onespot.com
www.onespot.com
www.onespot.com
*.onespot.com
*.dashboard.onespot.com
www.onespot.com
pages.onespot.com
onespot.com
www.onespot.com
*.qa.onespot.com
preview.onespot.com
support.engineyard.com
support.engineyard.com
*.onespot.com
*.onespot.com
*.onespot.com
preview.onespot.com
*.dashboard.onespot.com
pages.onespot.com
www.onespot.com
auth.onespot.com
*.stage.onespot.com
*.dev.onespot.com
*.onespot.com
*.dashboard.onespot.com
www.onespot.com
*.staging.onespot.com
*.stage.onespot.com
pages.onespot.com
pages.onespot.com
preview.onespot.com
*.onespot.com
image.onespot.com
image.onespot.com
*.onespot.com
dashboard.onespot.com
onespot.com
onespot.com
*.staging.onespot.com
hello.onespot.com
preview.onespot.com
*.onespot.com
*.onespot.com
Certificate
The complete raw certificate details for onespot.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHEDCCBfigAwIBAgIQDjcUv0KdvA7Miml6jMpicDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDIyNDAwMDAwMFoXDTIzMDgyNDIzNTk1OVowFjEU MBIGA1UEAxMLb25lc3BvdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDaUxf2cGzmC3ycL8puPbzSifemKD/WuCcePW7ObG47K/YJw61meT4KPjBM sPrB6S46PPmWUVhzy57tdt/bYohzMBE/HIviI7bQWgelAglWwDFeUw3BoeV4iS9V OZ+csv9CUeIiN3Bgsn3x0tjfSTNtCSa1kRKvawctaRaaHUfM0Za66YpJsEGEG8rJ SEysTOJEzZG2RpGOm5WYQ9euYtQT2DJgZfiV6xwdVcs0Audd5WjfEwinqzdmPm/Z kVpGD3S0DV7WJ2KwCn8IqNVPzrtkuqwD//RkDgRXHXueCaoOScZUjjqZQE8M2qNm a4Cg9JoZ+368JFFHyXNf4YMjlsKDAgMBAAGjggQyMIIELjAfBgNVHSMEGDAWgBTA MVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUBr68zfSo9Wymn7/p+jX6sd/F 3uswggFjBgNVHREEggFaMIIBVoILb25lc3BvdC5jb22CDmFsdGVycG9pbnQuY29t ggpnZW5zeW0uY29tghZldmVyZXN0c29mdHdhcmVpbmMuY29tghAqLmJlc3BlYWtp bmMuY29tgg5iZXNwZWFraW5jLmNvbYINKi5lcG1saXZlLmNvbYIMcHJvbG9naWMu Y29tggwqLmdlbnN5bS5jb22CD2Jpem5lc3NhcHBzLmNvbYIOKi5wcm9sb2dpYy5j b22CB2V0aS5jb22CGCouZXZlcmVzdHNvZnR3YXJlaW5jLmNvbYIJZWNvcmEuY29t ggtlcG1saXZlLmNvbYINKi5vbmVzcG90LmNvbYIRKi5iaXpuZXNzYXBwcy5jb22C DyouYXV0by10cm9sLmNvbYIQKi5hbHRlcnBvaW50LmNvbYILKi5lY29yYS5jb22C DWF1dG8tdHJvbC5jb22CCSouZXRpLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6 Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNybDATBgNVHSAEDDAK MAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9v Y3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2Ny dC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAw ggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB2AOg+0No+9QY1MudXKLyJa8kD08vR EWvs62nhd31tBr1uAAABhoNymUgAAAQDAEcwRQIgPgMriMzXj4UlWVxYQSlsAjHp +wFrO0YwkY+vRx0sQZQCIQDNfJwc/EicRcEzf7cr9fImLLrAM2Oy1Qw2B0xd4hlB AAB2ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAABhoNymUYAAAQD AEcwRQIgJgMOhCLu8+SL1HWLn8KHei6Mvvv9y78O6Dz029e5IZECIQDo7f+ZyPqt j2TzCQqDow8VeglFPurHPWwwRaW9QiXqTgB1ALc++yTfnE26dfI5xbpY9Gxd/ELP ep81xJ4dCYEl7bSZAAABhoNymP0AAAQDAEYwRAIgTg9uD86+GP9mEtrIfYeoc6f3 vgsRwMAqQXEcWkdbejQCIEhsiaGh+Nw6X+jln/yBsgIvjx9DYP5pqDSQERHAIdqe MA0GCSqGSIb3DQEBCwUAA4IBAQCk7vccpBVpopI5Wbs545o0V25I9SyMfVGHmTYK 7GQPplw6nwCxeoJNyfL5VTt+4VGBnLV9htJl2CoINFLLdz5SzERw0n8CqvHAutGe eiGBAXETdch8xWrNyK7YQt2/pZueBTWf5C97TFantooYgxwgtXZZCt88HCbHN6b2 c1GRFgXZSAO7BoZx1URIBt6mgoGJ6svNUoK+66+e3VmnahhnYNVPs+P8mI8LpEB3 PThCYba5EqHsDGJKvuu3Sk5QGdniqCYKP4KTIAwusmnslTTncuJukX0sm+aGXHEj eigK5z9t9c36ItySmxfkKO184RZyLesAZ+1O1hVR5i2Gi7oY -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2lMX9nBs5gt8nC/Kbj28 0on3pig/1rgnHj1uzmxuOyv2CcOtZnk+Cj4wTLD6wekuOjz5llFYc8ue7Xbf22KI czARPxyL4iO20FoHpQIJVsAxXlMNwaHleIkvVTmfnLL/QlHiIjdwYLJ98dLY30kz bQkmtZESr2sHLWkWmh1HzNGWuumKSbBBhBvKyUhMrEziRM2RtkaRjpuVmEPXrmLU E9gyYGX4lescHVXLNALnXeVo3xMIp6s3Zj5v2ZFaRg90tA1e1idisAp/CKjVT867 ZLqsA//0ZA4EVx17ngmqDknGVI46mUBPDNqjZmuAoPSaGft+vCRRR8lzX+GDI5bC gwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18895189069596051077899612001042850416 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'onespot.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27560925465947534072684003428112809972121463622149539504971932623197783914505881668554896655871002122777981959534805625068686099366499457234580890791409269709545497159002897822636945648129324818530932686819951592220487830783165297600025099455720960693527034030726320594902534158223496130071036585338028983109914488136295721523186690178615722281376590769747865798893097390755497081935481990039512314506563654222692324970601961987484425683771552228692210928969298300471977927552955461556663528536207693569020346323932100685164315376215336705839800779714893788508105206183572639474952391606014136535491290455311455273603 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 06bebccdf4a8f56ca69fbfe9fa35fab1dfc5deeb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (346 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onespot.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alterpoint.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gensym.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'everestsoftwareinc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bespeakinc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bespeakinc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.epmlive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prologic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gensym.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'biznessapps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prologic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eti.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.everestsoftwareinc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ecora.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'epmlive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.onespot.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.biznessapps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.auto-trol.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alterpoint.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ecora.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'auto-trol.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.eti.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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