keyassets-p2.timeincuk.net
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 01:ad:7c:1d:9b:d8:6c:4c:25:97:be:2a:92:93:69:64 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=keyassets-p2.timeincuk.net
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:ad:7c:1d:9b:d8:6c:4c:25:97:be:2a:92:93:69:64Serial Number (int): 2230012716950822693024730465799727460
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 70:be:2b:f6:f5:00:33:64:e7:b5:ae:a6:e9:77:26:6c:d2:77:61:65
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 44:7d:c3:a8:df:aa:f4:5d:50:ef:3c:6d:19:72:00:b2:e9:3f:17:b1
Fingerprint (sha256): a6:6c:f2:74:91:56:e8:13:31:70:8b:0d:93:51:2c:8e:51:3c:e8:f6:e5:51:90:1e:e0:cb:70:c8:f6:3d:34:9e
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate keyassets-p2.timeincuk.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for keyassets-p2.timeincuk.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
keyassets-p2.timeincuk.net
Other certificates including the domain name timeincuk.net
(limited to 100 certificates)
timeincuk.net
keystone.wp.timeincuk.net
ksassets.timeincuk.net
keyassets.timeincuk.net
campaign.ipcdigital.co.uk
keyassets-p2.timeincuk.net
*.ti-media.net
*.amateurgardening.com
wadeassets.timeincuk.net
keystone.ti-media.net
ti-media.map.fastly.net
keystone.ti-media.net
blogs.internal.timeincuk.net
ti-media.map.fastly.net
timeincuk.net
wadeassets.timeincuk.net
timeincuk.net
blogs.internal.timeincuk.net
ti-media.map.fastly.net
keystone.ti-media.net
keystone.wp.timeincuk.net
ti-media.map.fastly.net
cms2.ipcmediasecure.com
timeincuk.net
ksassets.timeincuk.net
keyassets-p2.timeincuk.net
keyassets.timeincuk.net
ksassets-preprod.timeincuk.net
ksassets.timeincuk.net
keystone.ti-media.net
*.amateurgardening.com
keystone.wp.timeincuk.net
timeincuk.net
campaign.ipcdigital.co.uk
keystone.ti-media.net
ksassets-preprod.timeincuk.net
cms2.ipcmediasecure.com
ti-media.map.fastly.net
*.ti-media.net
ti-media.map.fastly.net
campaign.ipcdigital.co.uk
wade.timeincuk.net
marieclaire.ipcmediasecure.com
ti-media.map.fastly.net
timeincuk.net
keystone.wp.timeincuk.net
secure.tablet.timeincuk.net
campaign.ipcdigital.co.uk
blogs.internal.timeincuk.net
assets.timeincuk.net
*.ti-media.net
ti-media.map.fastly.net
ti-media.map.fastly.net
ti-media.map.fastly.net
keystone.wp.timeincuk.net
timeincuk.net
ti-media.map.fastly.net
marieclaire.ipcmediasecure.com
keystone.wp.timeincuk.net
assets.timeincuk.net
keystone.wp.timeincuk.net
wade.timeincuk.net
ksassets.timeincuk.net
campaign.ipcdigital.co.uk
ksassets.timeincuk.net
keystone.wp.timeincuk.net
keystone.ti-media.net
keystone.ti-media.net
keystone.wp.timeincuk.net
campaign.ipcdigital.co.uk
*.timeincuk.net
marieclaire.ipcmediasecure.com
ti-media.map.fastly.net
campaign.ipcdigital.co.uk
keyassets-p2.timeincuk.net
campaign.ipcdigital.co.uk
keyassets-p1.timeincuk.net
assets.timeincuk.net
internal.timeincuk.net
marieclaire.ipcmediasecure.com
wpe.timeincuk.net
*.ti-media.net
*.amateurgardening.com
ti-media.map.fastly.net
timeincuk.net
*.amateurgardening.com
campaign.ipcdigital.co.uk
keyassets-p2.timeincuk.net
campaign.ipcdigital.co.uk
internal.timeincuk.net
marieclaire.ipcmediasecure.com
internal.timeincuk.net
keyassets.timeincuk.net
marieclaire.ipcmediasecure.com
ti-media.map.fastly.net
keystone.wp.timeincuk.net
ti-media.map.fastly.net
keyassets.timeincuk.net
timeincuk.net
timeincuk.net
keystone.wp.timeincuk.net
ksassets.timeincuk.net
keyassets.timeincuk.net
campaign.ipcdigital.co.uk
keyassets-p2.timeincuk.net
*.ti-media.net
*.amateurgardening.com
wadeassets.timeincuk.net
keystone.ti-media.net
ti-media.map.fastly.net
keystone.ti-media.net
blogs.internal.timeincuk.net
ti-media.map.fastly.net
timeincuk.net
wadeassets.timeincuk.net
timeincuk.net
blogs.internal.timeincuk.net
ti-media.map.fastly.net
keystone.ti-media.net
keystone.wp.timeincuk.net
ti-media.map.fastly.net
cms2.ipcmediasecure.com
timeincuk.net
ksassets.timeincuk.net
keyassets-p2.timeincuk.net
keyassets.timeincuk.net
ksassets-preprod.timeincuk.net
ksassets.timeincuk.net
keystone.ti-media.net
*.amateurgardening.com
keystone.wp.timeincuk.net
timeincuk.net
campaign.ipcdigital.co.uk
keystone.ti-media.net
ksassets-preprod.timeincuk.net
cms2.ipcmediasecure.com
ti-media.map.fastly.net
*.ti-media.net
ti-media.map.fastly.net
campaign.ipcdigital.co.uk
wade.timeincuk.net
marieclaire.ipcmediasecure.com
ti-media.map.fastly.net
timeincuk.net
keystone.wp.timeincuk.net
secure.tablet.timeincuk.net
campaign.ipcdigital.co.uk
blogs.internal.timeincuk.net
assets.timeincuk.net
*.ti-media.net
ti-media.map.fastly.net
ti-media.map.fastly.net
ti-media.map.fastly.net
keystone.wp.timeincuk.net
timeincuk.net
ti-media.map.fastly.net
marieclaire.ipcmediasecure.com
keystone.wp.timeincuk.net
assets.timeincuk.net
keystone.wp.timeincuk.net
wade.timeincuk.net
ksassets.timeincuk.net
campaign.ipcdigital.co.uk
ksassets.timeincuk.net
keystone.wp.timeincuk.net
keystone.ti-media.net
keystone.ti-media.net
keystone.wp.timeincuk.net
campaign.ipcdigital.co.uk
*.timeincuk.net
marieclaire.ipcmediasecure.com
ti-media.map.fastly.net
campaign.ipcdigital.co.uk
keyassets-p2.timeincuk.net
campaign.ipcdigital.co.uk
keyassets-p1.timeincuk.net
assets.timeincuk.net
internal.timeincuk.net
marieclaire.ipcmediasecure.com
wpe.timeincuk.net
*.ti-media.net
*.amateurgardening.com
ti-media.map.fastly.net
timeincuk.net
*.amateurgardening.com
campaign.ipcdigital.co.uk
keyassets-p2.timeincuk.net
campaign.ipcdigital.co.uk
internal.timeincuk.net
marieclaire.ipcmediasecure.com
internal.timeincuk.net
keyassets.timeincuk.net
marieclaire.ipcmediasecure.com
ti-media.map.fastly.net
keystone.wp.timeincuk.net
ti-media.map.fastly.net
keyassets.timeincuk.net
timeincuk.net
timeincuk.net
Certificate
The complete raw certificate details for keyassets-p2.timeincuk.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3jCCBMagAwIBAgIQAa18HZvYbEwll74qkpNpZDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTAzMTAwMDAwMFoXDTI0MTEyNjIzNTk1OVowJTEj MCEGA1UEAxMaa2V5YXNzZXRzLXAyLnRpbWVpbmN1ay5uZXQwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQChziaIRIf+ZM6hAppkOFJPra6/P+teFoW1GM7j SRnyzVpn7Sm83EJZgnU8TtCsUHIvfR/ZJlGk6zD0CPgEVzSROG3BcXrC00oVJLUg Nei8AS7v4mO2UTOvT5nYF/nm7qiURSdoPEoFn+TQiRvAjQp9dq+CpwVECxbtyjtQ A85LBExT0sCfm1AJ8dqK8UUe4o9z4IzDc+siZTyktZpDLdtppIUIeraI6fR+T8bE ZoonsVvPZ1CCfsefKYhanEocIZqhjYoWAB0mdTwX7bmDU6t/V338fm5fDPIPUUMz EFJEpu3Wk5WriELoIUTqoBtlSqkFmF/HvqhfrcaFa1G9dlZvAgMBAAGjggLxMIIC 7TAfBgNVHSMEGDAWgBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQUcL4r 9vUAM2Tnta6m6XcmbNJ3YWUwJQYDVR0RBB4wHIIaa2V5YXNzZXRzLXAyLnRpbWVp bmN1ay5uZXQwEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipo dHRwOi8vY3JsLnIybTAzLmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYB BQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250 cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1 c3QuY29tL3IybTAzLmNlcjAMBgNVHRMBAf8EAjAAMIIBfAYKKwYBBAHWeQIEAgSC AWwEggFoAWYAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYuE pYJnAAAEAwBHMEUCIQDcGwWxofi0fslT2G8NbpUKLOpEU60QQohKkxEzVH5IewIg X0BcxlzkzTa8l0v6zyqkjgRf8AzCmOvA15q6fu+En9MAdQBIsONr2qZHNA/lagL6 nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYuEpYJlAAAEAwBGMEQCIBBr6QI1S2bQrTCk NUjHnx1PMymv3ZIrC/0S0m+iN057AiAxnFdtb/1Ck0hoN+2WeRemBBg1bopz3IaD RxAOGOJLcwB1ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABi4Sl gpQAAAQDAEYwRAIgIQJotSPQu5WKCexW3ZZULme5p8ECgHIjoaLmWpqmyw0CIAdl 1zB2tSrCL8kdO49HAzz5cXCcf2i3ExNeMK5iWRPAMA0GCSqGSIb3DQEBCwUAA4IB AQCcmm8/EFZ4MwhPqE+FRHr/QGFsdPwS/GVF938UbRSrR89AON8yAXW7FrGKx8Mn Qj0ZpK8+0xPsVGC9qbBn+0EPWtrj0LQksj4V1Jn3ZeumUpp4rGkukC0cEzOIJuiM AwR/SAIdalbRhG2Njf6dSZl+tQFj7exy2kd4W9hWNJLIDj3iX5Hheln5rImISX4u ukPxJQCheK1K7L5/MrSq7p0Ni/qK0TR6Eb6gGUf3gixN/A+6gVzpV3DVaSmg9bFG tS1mAYroE78Q1Z4vFAn7/W3OBrUwhSzeM53SjRAadD/ztUt/RRE8kfacJPEskFPs 9omID4+OTdnLj9EMcLrVvL2i -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoc4miESH/mTOoQKaZDhS T62uvz/rXhaFtRjO40kZ8s1aZ+0pvNxCWYJ1PE7QrFByL30f2SZRpOsw9Aj4BFc0 kThtwXF6wtNKFSS1IDXovAEu7+JjtlEzr0+Z2Bf55u6olEUnaDxKBZ/k0IkbwI0K fXavgqcFRAsW7co7UAPOSwRMU9LAn5tQCfHaivFFHuKPc+CMw3PrImU8pLWaQy3b aaSFCHq2iOn0fk/GxGaKJ7Fbz2dQgn7HnymIWpxKHCGaoY2KFgAdJnU8F+25g1Or f1d9/H5uXwzyD1FDMxBSRKbt1pOVq4hC6CFE6qAbZUqpBZhfx76oX63GhWtRvXZW bwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2230012716950822693024730465799727460 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-31 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-26 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'keyassets-p2.timeincuk.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20426023708153390609071057865667387963940862179051272069185213090582240564582321173544293255479712911769297910999849498589123775205485580481676729141951977741996628259747239526933732078548700350087139986074390891655447921637913507702286762463571140071708303193119505059902716816816145340141506381845849771919730125892018203943836902852183932675802436589811021440081926296581247485522036600616073948790359462530540833216157916663593040666291633890208264665249063919353829783914110175463674675554706700026770710919132227741956857585683181663267706762054422654639186175797273591444532576980980080764335129933471750182511 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 70be2bf6f5003364e7b5aea6e977266cd2776165 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'keyassets-p2.timeincuk.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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