prime-ue2-dev-profile-curateapi.nsapps.aperturecvo.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 04:2b:ea:b8:b2:8c:b8:28:fc:0c:0f:33:b6:e8:d3:c8 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=prime-ue2-dev-profile-curateapi.nsapps.aperturecvo.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:2b:ea:b8:b2:8c:b8:28:fc:0c:0f:33:b6:e8:d3:c8Serial Number (int): 5544941465144269229569349844801737672
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 63:b2:1b:6f:90:a6:d7:a8:e6:71:c9:96:f0:42:6e:3c:84:54:b3:4f
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 21:a0:53:32:85:d7:31:c4:a8:0e:b5:b0:bd:e4:7e:2c:0c:14:cd:ca
Fingerprint (sha256): 93:86:72:52:a2:35:1d:6d:36:19:da:21:cf:93:2e:c5:75:02:43:2d:54:6e:5d:52:ee:ad:11:ff:21:d4:ff:4b
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate prime-ue2-dev-profile-curateapi.nsapps.aperturecvo.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for prime-ue2-dev-profile-curateapi.nsapps.aperturecvo.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
prime-ue2-dev-profile-curateapi.nsapps.aperturecvo.com
Other certificates including the domain name aperturecvo.com
(limited to 100 certificates)
aperturecvo.com
prime-ue2-prod-profile-primeapi.nsapps.aperturecvo.com
adv-ue2-dev-insights-api.corp.aperturecvo.com
api-np.aperturecvo.com
credforecast.corp.aperturecvo.com
*.nsapps.aperturecvo.com
*.aperturecvo.com
prime-ue2-qa-profile-curateweb.nsapps.aperturecvo.com
dcl-ue2-dev-dcm-api.nsapps.aperturecvo.com
ss-ue2-prod-central-authapi.nsapps.aperturecvo.com
adv-ue2-prod-advntgvs-veriapi.corp.aperturecvo.com
aperturecvo.com
ss-ue2-stage-central-confapi.nsapps.aperturecvo.com
prime-ue2-stage-popmon-api.nsapps.aperturecvo.com
remote.aperturecvo.com
www.aperturecvo.com
cm-uw2-dev-chkmdc-app.nsapps.aperturecvo.com
aperturecvo.com
ss-ue2-stage-central-authapi.nsapps.aperturecvo.com
prime-ue2-qa-profile-curateapi.nsapps.aperturecvo.com
*.aperturecvo.com
sip.aperturecvo.com
*.id.aperturecvo.com
outreach.aperturecvo.com
adv-ue2-dev-insights-api.corp.aperturecvo.com
credforecast-stage.corp.aperturecvo.com
adv-ue2-qa-insights-api.corp.aperturecvo.com
sip.aperturecvo.com
prime-ue2-qa-psv-psvorders.nsapps.aperturecvo.com
*.aperturecvo.com
adv-ue2-qa-npdb-webui.corp.aperturecvo.com
prime-ue2-stage-profile-api.nsapps.aperturecvo.com
prime-ue2-dev-profile-curateapi.nsapps.aperturecvo.com
ss-ue2-prod-central-confapi.nsapps.aperturecvo.com
*.pid.aperturecvo.com
adv-ue2-prod-insights-api.corp.aperturecvo.com
adv-ue2-dev-crdfcast-webapp2.corp.aperturecvo.com
adv-ue2-qa-insights-api.corp.aperturecvo.com
adv-ue2-qa-insights-webui.corp.aperturecvo.com
*.aperturecvo.com
adv-ue2-prod-advntgvs-veriapi.corp.aperturecvo.com
prime-ue2-dev-psv1-psvorders.nsapps.aperturecvo.com
sip.aperturecvo.com
adv-ue2-qa-insights-webui.corp.aperturecvo.com
srv-rdgw01.corp.aperturecvo.com
prime-ue2-qa-psv-provapi.nsapps.aperturecvo.com
prime-ue2-prod-profile-api.nsapps.aperturecvo.com
outreach.aperturecvo.com
cm-uw2-qa-chkmdc-app.nsapps.aperturecvo.com
prime-ue2-prod-popmon-api.nsapps.aperturecvo.com
alleng-ue2-dev-alleng-dev-webui.nsapps.aperturecvo.com
outreach.aperturecvo.com
adv-ue2-stage-insights-api.corp.aperturecvo.com
prime-ue2-dev-psv1-provapi.nsapps.aperturecvo.com
alleng-ue2-dev-alleng-dev-webui.nsapps.aperturecvo.com
prime-ue2-stage-profile-primeapi.nsapps.aperturecvo.com
adv-ue2-dev-insights-webui.corp.aperturecvo.com
sip.aperturecvo.com
sip.aperturecvo.com
outreach.aperturecvo.com
prime-ue2-prod-profile-primeapi.nsapps.aperturecvo.com
adv-ue2-dev-insights-api.corp.aperturecvo.com
api-np.aperturecvo.com
credforecast.corp.aperturecvo.com
*.nsapps.aperturecvo.com
*.aperturecvo.com
prime-ue2-qa-profile-curateweb.nsapps.aperturecvo.com
dcl-ue2-dev-dcm-api.nsapps.aperturecvo.com
ss-ue2-prod-central-authapi.nsapps.aperturecvo.com
adv-ue2-prod-advntgvs-veriapi.corp.aperturecvo.com
aperturecvo.com
ss-ue2-stage-central-confapi.nsapps.aperturecvo.com
prime-ue2-stage-popmon-api.nsapps.aperturecvo.com
remote.aperturecvo.com
www.aperturecvo.com
cm-uw2-dev-chkmdc-app.nsapps.aperturecvo.com
aperturecvo.com
ss-ue2-stage-central-authapi.nsapps.aperturecvo.com
prime-ue2-qa-profile-curateapi.nsapps.aperturecvo.com
*.aperturecvo.com
sip.aperturecvo.com
*.id.aperturecvo.com
outreach.aperturecvo.com
adv-ue2-dev-insights-api.corp.aperturecvo.com
credforecast-stage.corp.aperturecvo.com
adv-ue2-qa-insights-api.corp.aperturecvo.com
sip.aperturecvo.com
prime-ue2-qa-psv-psvorders.nsapps.aperturecvo.com
*.aperturecvo.com
adv-ue2-qa-npdb-webui.corp.aperturecvo.com
prime-ue2-stage-profile-api.nsapps.aperturecvo.com
prime-ue2-dev-profile-curateapi.nsapps.aperturecvo.com
ss-ue2-prod-central-confapi.nsapps.aperturecvo.com
*.pid.aperturecvo.com
adv-ue2-prod-insights-api.corp.aperturecvo.com
adv-ue2-dev-crdfcast-webapp2.corp.aperturecvo.com
adv-ue2-qa-insights-api.corp.aperturecvo.com
adv-ue2-qa-insights-webui.corp.aperturecvo.com
*.aperturecvo.com
adv-ue2-prod-advntgvs-veriapi.corp.aperturecvo.com
prime-ue2-dev-psv1-psvorders.nsapps.aperturecvo.com
sip.aperturecvo.com
adv-ue2-qa-insights-webui.corp.aperturecvo.com
srv-rdgw01.corp.aperturecvo.com
prime-ue2-qa-psv-provapi.nsapps.aperturecvo.com
prime-ue2-prod-profile-api.nsapps.aperturecvo.com
outreach.aperturecvo.com
cm-uw2-qa-chkmdc-app.nsapps.aperturecvo.com
prime-ue2-prod-popmon-api.nsapps.aperturecvo.com
alleng-ue2-dev-alleng-dev-webui.nsapps.aperturecvo.com
outreach.aperturecvo.com
adv-ue2-stage-insights-api.corp.aperturecvo.com
prime-ue2-dev-psv1-provapi.nsapps.aperturecvo.com
alleng-ue2-dev-alleng-dev-webui.nsapps.aperturecvo.com
prime-ue2-stage-profile-primeapi.nsapps.aperturecvo.com
adv-ue2-dev-insights-webui.corp.aperturecvo.com
sip.aperturecvo.com
sip.aperturecvo.com
outreach.aperturecvo.com
Certificate
The complete raw certificate details for prime-ue2-dev-profile-curateapi.nsapps.aperturecvo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEqzCCA5OgAwIBAgIQBCvquLKMuCj8DA8ztujTyDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDUyODAwMDAwMFoXDTI1MDYyNjIzNTk1OVowQTE/ MD0GA1UEAxM2cHJpbWUtdWUyLWRldi1wcm9maWxlLWN1cmF0ZWFwaS5uc2FwcHMu YXBlcnR1cmVjdm8uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA tjGRDOIH8olNj3iTEywS2QRsggyNFWqW4QN/G3oMsbPFyFq6Z/Dkkl1DAPxcmG6+ JPGCEYJ4E0IvpilnIVqmVN7Izt2Zy5GLWUYuFGaVVgCVo3/6rSOt/bFawY+eMSdz VMRHZzT9dCgyeTqm5aSjW48YVtqkpw/r8SmrqycaCXazCeFynQWFMimZE1jGpEd5 NqhrSOfsbNtPjmbwGhWE3FwVXOsCtnolSHKSgbJm16cGQGdaI5aJ5K5ptzdi3KPU EOwPOgrF0oCnl0B8TGMJVoHOdCry7E2GvfLrHo1eHqKk5lTSbasTMf7qoQoo2JUE 2q4HiVT9Uo0tCJWgYkO1nQIDAQABo4IBojCCAZ4wHwYDVR0jBBgwFoAUVdkYX9Ic zAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFGOyG2+Qpteo5nHJlvBCbjyEVLNPMEEG A1UdEQQ6MDiCNnByaW1lLXVlMi1kZXYtcHJvZmlsZS1jdXJhdGVhcGkubnNhcHBz LmFwZXJ0dXJlY3ZvLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIw MKAuoCyGKmh0dHA6Ly9jcmwucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNy bDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAz LmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMy5h bWF6b250cnVzdC5jb20vcjJtMDMuY2VyMAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHW eQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAEHpQf162afeT346V5MsWa3J tUd2Tzvzui/4g3Bm8vTRipjWlgfgt8QutvPiwgUH2aH6p1PzfGh7VAQ17KTNsVk9 d5s15dgi4JlAZbrTs5rVLzlTCmIxzuZPPujCssE3NznPb4pViomjRgZi4rk2f10Y a4C5LAiVbMaVtIYmAYc1gOzaKmdsdVoWjwVFy9YUT3+7hmtIU+Q4wDFs1D3ObhYp vxxSDTFH5ewGYtlYK4YlEZeFbb3aJ10Ls60uDYhZHaOqNe/Op7v9DmDJ83KSfipK t9NqwUTTTUUWIgZHJRhl3srEX/4tbJxRZ6Xg7G0XOmNdq6psZ4nvRcgn2H0Hp7Q= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjGRDOIH8olNj3iTEywS 2QRsggyNFWqW4QN/G3oMsbPFyFq6Z/Dkkl1DAPxcmG6+JPGCEYJ4E0IvpilnIVqm VN7Izt2Zy5GLWUYuFGaVVgCVo3/6rSOt/bFawY+eMSdzVMRHZzT9dCgyeTqm5aSj W48YVtqkpw/r8SmrqycaCXazCeFynQWFMimZE1jGpEd5NqhrSOfsbNtPjmbwGhWE 3FwVXOsCtnolSHKSgbJm16cGQGdaI5aJ5K5ptzdi3KPUEOwPOgrF0oCnl0B8TGMJ VoHOdCry7E2GvfLrHo1eHqKk5lTSbasTMf7qoQoo2JUE2q4HiVT9Uo0tCJWgYkO1 nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5544941465144269229569349844801737672 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-26 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'prime-ue2-dev-profile-curateapi.nsapps.aperturecvo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22999813706650515494487419959624621436348797451981224744724124049940271885488097454209318333268067947136150763378682749751403530753862192476246712738169454989369937354242633610944903162684340450600442725009057532192728569573925304799500326102390384672438481970661813656853243604172679304363297158829535285290065794793535761889618120109031145740703475777829612682605431687611377286430577532219958157257213625907789010907349881544694837841299073976202900374683295890831115589842166978102507644527103301260894892376446461173688862425205913592174804148766361088920564703059240847234806483472470852152837718028303844226461 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 63b21b6f90a6d7a8e671c996f0426e3c8454b34f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prime-ue2-dev-profile-curateapi.nsapps.aperturecvo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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