espnsb.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 07:64:5b:70:07:3f:e0:50:89:59:c8:5b:86:36:25:f6 was issued on by Amazon.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=espnsb.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:64:5b:70:07:3f:e0:50:89:59:c8:5b:86:36:25:f6Serial Number (int): 9825680231419644463908076499588490742
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 06:65:56:27:9c:60:09:11:76:d9:25:67:1c:cc:46:45:53:2d:c9:5a
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 85:2b:b8:13:ab:57:e6:7c:93:54:3a:e8:ad:ca:13:71:26:20:49:73
Fingerprint (sha256): a4:86:58:7a:e1:5a:83:bc:e3:12:35:fb:db:e0:ba:0f:a6:e9:25:12:9b:0b:8a:ff:c3:59:de:ae:a7:c9:79:b7
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate espnsb.com
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for espnsb.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
espnsb.com
*.geo.hosted.espnsb.com
*.geo.internal.espnsb.com
sandbox.espn.com
*.espnsb.com
*.us-east-1.aws.hosted.espnsb.com
*.internal.espnsb.com
*.geo.hosted.espnsb.com
*.geo.internal.espnsb.com
sandbox.espn.com
*.espnsb.com
*.us-east-1.aws.hosted.espnsb.com
*.internal.espnsb.com
Other certificates including the domain name espnsb.com
(limited to 100 certificates)
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
ESPNFuseDevCluster-04.hosted.aws.espnsb.com
dcs7deportes.geo.hosted.espn.com
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
creativearchive.espnsb.com
espnsb.com
internal.espnsb.com
cfa.content.espnsb.com
espnsb.com
kwese.espnsb.com
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
*.geo.hosted.espnsb.com
pro.creativearchive.espnsb.com
espnsb.com
espnsb.com
client-api.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
internal.espnsb.com
espnsb.com
creativearchive.espnsb.com
*.espnsb.com
www.espnsb.com
www.espnsb.com
espnsb.com
espnsb.com
espnsb.com
editions.espnsb.com
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
client-api.espnsb.com
espnsb.com
*.espnsb.com
editions.espnsb.com
www.malt.internal.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
espnsb.com
espnsb.com
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
kwese.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
creativestudio.espnsb.com
espnsb.com
www.espnsb.com
*.cms.internal.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
editions.espnsb.com
portal.creativearchive.espnsb.com
*.espnsb.com
www.espnsb.com
*.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
editions.espnsb.com
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
www.espnsb.com
www.espnsb.com
ESPNFuseDevCluster04.hosted.aws.espnsb.com
client-api.espnsb.com
espnsb.com
dcs7deportes.geo.hosted.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
www.espnsb.com
espnsb.com
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
www.espnsb.com
client-api.espnsb.com
espnsb.com
www.espnsb.com
espnsb.com
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
ESPNFuseDevCluster-04.hosted.aws.espnsb.com
dcs7deportes.geo.hosted.espn.com
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
creativearchive.espnsb.com
espnsb.com
internal.espnsb.com
cfa.content.espnsb.com
espnsb.com
kwese.espnsb.com
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
*.geo.hosted.espnsb.com
pro.creativearchive.espnsb.com
espnsb.com
espnsb.com
client-api.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
internal.espnsb.com
espnsb.com
creativearchive.espnsb.com
*.espnsb.com
www.espnsb.com
www.espnsb.com
espnsb.com
espnsb.com
espnsb.com
editions.espnsb.com
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
client-api.espnsb.com
espnsb.com
*.espnsb.com
editions.espnsb.com
www.malt.internal.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
espnsb.com
espnsb.com
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
kwese.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
creativestudio.espnsb.com
espnsb.com
www.espnsb.com
*.cms.internal.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
editions.espnsb.com
portal.creativearchive.espnsb.com
*.espnsb.com
www.espnsb.com
*.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
editions.espnsb.com
www.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
www.espnsb.com
www.espnsb.com
www.espnsb.com
ESPNFuseDevCluster04.hosted.aws.espnsb.com
client-api.espnsb.com
espnsb.com
dcs7deportes.geo.hosted.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
www.espnsb.com
espnsb.com
editions.espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
espnsb.com
www.espnsb.com
client-api.espnsb.com
espnsb.com
www.espnsb.com
espnsb.com
espnsb.com
cert-00001-cdnedge-bluemix.akamaized.net
cert-00001-cdnedge-bluemix.akamaized.net
Certificate
The complete raw certificate details for espnsb.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgIQB2RbcAc/4FCJWchbhjYl9jANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDQwODAwMDAwMFoXDTI1MDUwNzIzNTk1OVowFTET MBEGA1UEAxMKZXNwbnNiLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJNxBsNRfVmcWm3r7uJjO0OnwyWh3/ebgcZPrvfFdLbznYudDrpm6cEQuHK9 Sm1EpTDG/eqlcpF8d8+oYJejX53pNY79ApgxR3x7NJrNpi/x/Cj1ZTgE0YhOjOvJ QeDrA4RmIhMpDmiQtMHz/BMYTlH+jJKQKGMyIKTw9g5uVeSjYDtJ/Rb4aEBi7us6 Ctr7W72uuip0LKEEplnVKO8mLfHOIth/lUOG7fdCFS9+zER5RK1A3IukUl8piKFk oOpZForcGtciN0GvX58PYnXVWMWLfTEldQ+Iy5HgyfLQGX0psJ+7cRYdTANTnHnd qoWIK0r04USSxXdRh4eyR5rvcYMCAwEAAaOCA3QwggNwMB8GA1UdIwQYMBaAFMAx Us1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBQGZVYnnGAJEXbZJWcczEZFUy3J WjCBpQYDVR0RBIGdMIGaggplc3Buc2IuY29tghcqLmdlby5ob3N0ZWQuZXNwbnNi LmNvbYIZKi5nZW8uaW50ZXJuYWwuZXNwbnNiLmNvbYIQc2FuZGJveC5lc3BuLmNv bYIMKi5lc3Buc2IuY29tgiEqLnVzLWVhc3QtMS5hd3MuaG9zdGVkLmVzcG5zYi5j b22CFSouaW50ZXJuYWwuZXNwbnNiLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsG A1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29t L3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9v Y3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2Ny dC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAw ggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB3AE51oydcmhDDOFts1N8/Uusd8OCO G41pwLH6ZLFimjnfAAABjr+UXKEAAAQDAEgwRgIhALRgDhM+sg9CZJ+TFDmyz+V9 Dce/iOH5DP1OdNLrGLtmAiEA6T6h4cImQ52CO422BjKbcnlSgerYPg6tTUunY/Wb YPAAdgDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAY6/lFwsAAAE AwBHMEUCIQCLPSItGmJXm5mUGJqE4OYS4HpnHF4AgWQuX+Ox/8ItUAIgelny3ESO F1BX17b94FJO4mKbj2XH/ra0Ji1PpuhURuIAdQCi4wrkRe+9rZt+OO1HZ3dT14Jb hJTXK14bLMS5UKRH5wAAAY6/lFzjAAAEAwBGMEQCIHlczz4SgWI8QX1GYbTVZhcH WMCHJRNYuolfdUl7P027AiBV2qvI2XLI9Pms6+sjO7+gwfYBKxK5ERpkZPVkK8FE xjANBgkqhkiG9w0BAQsFAAOCAQEArT5MtBv7eUzVQI97wkmGTNjCnYcL9uD3pX9E ZaQIezdE8VbCP1SPNuHWVXLRIRCJIhvkplU1AGSio7IqHaN7wdgTt1lxYbkk5Kv2 S3IOW3xjlkwyATRAqWUpM+McJgBu+geXzD5v71V9Q/wiQObTgZXQ6L7UmTBRuSkb jIbesqJk8LoEWX2+KCv75GHNsjEfXTKRAbZOdyd0K+rucHetvC8zA7crgT4HjN1Z Hmeky7u/6FVkojUw2SmOJcOflWaXuiB7qZKjMQ65B9fVUztlwGYgMBu9zNtjvDjE 2rZQ1MUbMUMg/K7xjAeD09+LhNsFxJdgYtjLNur6nd63APdM1Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3EGw1F9WZxabevu4mM7 Q6fDJaHf95uBxk+u98V0tvOdi50OumbpwRC4cr1KbUSlMMb96qVykXx3z6hgl6Nf nek1jv0CmDFHfHs0ms2mL/H8KPVlOATRiE6M68lB4OsDhGYiEykOaJC0wfP8ExhO Uf6MkpAoYzIgpPD2Dm5V5KNgO0n9FvhoQGLu6zoK2vtbva66KnQsoQSmWdUo7yYt 8c4i2H+VQ4bt90IVL37MRHlErUDci6RSXymIoWSg6lkWitwa1yI3Qa9fnw9iddVY xYt9MSV1D4jLkeDJ8tAZfSmwn7txFh1MA1Oced2qhYgrSvThRJLFd1GHh7JHmu9x gwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9825680231419644463908076499588490742 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'espnsb.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18612766233925118214934973095960868040650330279028079886570327983529472623903947101575518838592639535699392069035820698360191869022985125633188886469534212465372870035368271837484282230494413931084186106996741833611970907290862174926144946401780652243024735557485213607117279760880730770442147325209022657163713055389676366567041033624673111616547596479052351118057477778018674528892590263025782446009719273597262406096686624460030084396594165544123618336399208397375715091081971949487043379536322745680426117693193333898005548230600456307493938846474603402744908538576070279986441103318606594175348462721422425289091 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 066556279c60091176d925671ccc4645532dc95a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (157 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'espnsb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.geo.hosted.espnsb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.geo.internal.espnsb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sandbox.espn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.espnsb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.us-east-1.aws.hosted.espnsb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.internal.espnsb.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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