pa-affiliation-dev.bcg.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 04:8c:57:56:3f:06:b3:31:ae:30:7f:22:11:25:3a:77 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pa-affiliation-dev.bcg.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:8c:57:56:3f:06:b3:31:ae:30:7f:22:11:25:3a:77Serial Number (int): 6045604946097688675374406511599368823
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: de:09:13:eb:dc:41:80:26:ca:fb:68:c7:de:04:8c:b7:17:bf:df:83
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): b1:f8:a3:aa:a0:e7:d0:1a:29:de:fc:15:fd:f1:c5:6e:19:01:93:c8
Fingerprint (sha256): a8:d2:9f:e5:7f:7d:8f:5e:c7:be:8c:4f:1b:b9:99:7b:e3:b8:81:c4:81:ef:48:0d:2c:ae:27:60:45:10:a0:fe
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate pa-affiliation-dev.bcg.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pa-affiliation-dev.bcg.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pa-affiliation-dev.bcg.com
pa-affiliation-dev.dsoautomation.net
pa-affiliation-dev.dsoautomation.net
Other certificates including the domain name bcg.com
(limited to 100 certificates)
warchest-dev.bcg.com
signal.bcg.com
unsubscribe.bcg.com
internalmicrosites.bcg.com
tableau-15303-11.bcg.com
github-pages-webhook.github.gamma.bcg.com
clsnswtreasuryservice.bcg.com
tableau-305124-10.bcg.com
imd.bcg.com
ASP-GAMMA-SnA-Showcases.bcg.com
PSGBackOfficeDev.bcg.com
admin.staging.rover.io
stglab.bcg.com
meridian.stage.bcg.com
track.connect.bcg.com
gmd.bcg.com
teamsites-amr.bcg.com
tableau-298892-02.bcg.com
talent.bcg.com
remoteadmin.bcg.com
tracking.connect.bcg.com
fsgservice.bcg.com
www.jss.bcg.com
swptrial3.bcg.com
cfs.bcg.com
keystone2bcg.bcg.com
qliksensepoc.bcg.com
pdo.bcg.com
tableau-143243-72.bcg.com
digitalprocurement.bcg.com
sdcssl1.bcg.com
dvassets.bcg.com
eis.bcg.com
lukoil-komi.bcg.com
ombudsman.bcg.com
elections.bcg.com
eiumif.bcg.com
dartdev.bcg.com
nwc.bcg.com
juniper.enterprise.bcg.com
pdcvendor01.bcg.com
PSGAPIDev.bcg.com
orgcls.bcg.com
tableauha.bcg.com
tableau-15316-31test.bcg.com
internalmicrosites.bcg.com
www.gs-pwm.survey.bcg.com
stglab.bcg.com
production.smp.bcg.com
edcssl6.bcg.com
sandbox.egnyte.bcg.com
clscontent-tst.bcg.com
mpoint.bcg.com
onebenchmark.bcg.com
bcg-com-dev3.bcg.com
talent.bcg.com
leanmanagementtool.bcg.com
*.bcg.com
digitalclsservice.bcg.com
digitalcls.bcg.com
vote.bcg.com
bcgplatform-eur2.bcg.com
mycases-qa2.bcg.com
saasexcellence.bcg.com
containershipping.bcg.com
dai.bcg.com
gmd-internal.bcg.com
wwad.bcg.com
appsqa.bcg.com
esfbenchmarking.bcg.com
sinequa-prod.bcg.com
adcelapptv01L.bcg.com
sendsms.cc
partnerfeedbackdev.bcg.com
benchmarking.bcg.com
demo.mystudy.fit
tableau-horizonportal.bcg.com
track.connect.bcg.com
learningsims.bcg.com
wspexternal.bcg.com
minerva-dev.bcg.com
www.bcg.com
payablesapprovalprod-new.bcg.com
ivq.bcg.com
tableau-178780-45.bcg.com
CloudManager-staging.gamma.bcg.com
www.bcg.com
bcgplatform-amr.bcg.com
*.dsoautomation.net
tableau-261229-26.bcg.com
gdcssl1.bcg.com
covid-19.gamma.bcg.com
knowledgeanalytics-dev.bcg.com
adcvendor01.bcg.com
AMRMDCRMDYAPP2W.bcg.com
survey.bcg.com
owl.bcg.com
remoteatscale.bcg.com
mydevices.bcg.com
retail360.bcg.com
signal.bcg.com
unsubscribe.bcg.com
internalmicrosites.bcg.com
tableau-15303-11.bcg.com
github-pages-webhook.github.gamma.bcg.com
clsnswtreasuryservice.bcg.com
tableau-305124-10.bcg.com
imd.bcg.com
ASP-GAMMA-SnA-Showcases.bcg.com
PSGBackOfficeDev.bcg.com
admin.staging.rover.io
stglab.bcg.com
meridian.stage.bcg.com
track.connect.bcg.com
gmd.bcg.com
teamsites-amr.bcg.com
tableau-298892-02.bcg.com
talent.bcg.com
remoteadmin.bcg.com
tracking.connect.bcg.com
fsgservice.bcg.com
www.jss.bcg.com
swptrial3.bcg.com
cfs.bcg.com
keystone2bcg.bcg.com
qliksensepoc.bcg.com
pdo.bcg.com
tableau-143243-72.bcg.com
digitalprocurement.bcg.com
sdcssl1.bcg.com
dvassets.bcg.com
eis.bcg.com
lukoil-komi.bcg.com
ombudsman.bcg.com
elections.bcg.com
eiumif.bcg.com
dartdev.bcg.com
nwc.bcg.com
juniper.enterprise.bcg.com
pdcvendor01.bcg.com
PSGAPIDev.bcg.com
orgcls.bcg.com
tableauha.bcg.com
tableau-15316-31test.bcg.com
internalmicrosites.bcg.com
www.gs-pwm.survey.bcg.com
stglab.bcg.com
production.smp.bcg.com
edcssl6.bcg.com
sandbox.egnyte.bcg.com
clscontent-tst.bcg.com
mpoint.bcg.com
onebenchmark.bcg.com
bcg-com-dev3.bcg.com
talent.bcg.com
leanmanagementtool.bcg.com
*.bcg.com
digitalclsservice.bcg.com
digitalcls.bcg.com
vote.bcg.com
bcgplatform-eur2.bcg.com
mycases-qa2.bcg.com
saasexcellence.bcg.com
containershipping.bcg.com
dai.bcg.com
gmd-internal.bcg.com
wwad.bcg.com
appsqa.bcg.com
esfbenchmarking.bcg.com
sinequa-prod.bcg.com
adcelapptv01L.bcg.com
sendsms.cc
partnerfeedbackdev.bcg.com
benchmarking.bcg.com
demo.mystudy.fit
tableau-horizonportal.bcg.com
track.connect.bcg.com
learningsims.bcg.com
wspexternal.bcg.com
minerva-dev.bcg.com
www.bcg.com
payablesapprovalprod-new.bcg.com
ivq.bcg.com
tableau-178780-45.bcg.com
CloudManager-staging.gamma.bcg.com
www.bcg.com
bcgplatform-amr.bcg.com
*.dsoautomation.net
tableau-261229-26.bcg.com
gdcssl1.bcg.com
covid-19.gamma.bcg.com
knowledgeanalytics-dev.bcg.com
adcvendor01.bcg.com
AMRMDCRMDYAPP2W.bcg.com
survey.bcg.com
owl.bcg.com
remoteatscale.bcg.com
mydevices.bcg.com
retail360.bcg.com
Certificate
The complete raw certificate details for pa-affiliation-dev.bcg.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEmTCCA4GgAwIBAgIQBIxXVj8GszGuMH8iESU6dzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDYwNzAwMDAwMFoXDTI1MDcwNzIzNTk1OVowJTEj MCEGA1UEAxMacGEtYWZmaWxpYXRpb24tZGV2LmJjZy5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCbun+K2u1JcTImSx3gKsnvaElto8iyy4ibyaMw n3UQE7PniHGpQG4QtUKBKWz6RBWvCUxazajFI9PAewpnikWvIJ353+UHlvAM5i96 Q7ZqIplLAndAb4iOkj5hQvJ+/z/CsUIMT8bquJa4z5r4QU/qkjOC/q5zdLwy3XeO fSvc4Y+zaby+TLkzmGajMeQAynCXTgTCk3ATDetXcD6txIaQ4JZ2o94JnWxBoHU0 DrjUXSl/FbRUYV5l5mRnJgeLT+NM5VyghbAT1QwQaMYAteCPrJfjBDH9e1XXXyh+ W7XqQY97P/HQ12HIJNyhwW6q7YMDOSDTjZ0pskEn3XW0Yg3jAgMBAAGjggGsMIIB qDAfBgNVHSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQU3gkT 69xBgCbK+2jH3gSMtxe/34MwSwYDVR0RBEQwQoIacGEtYWZmaWxpYXRpb24tZGV2 LmJjZy5jb22CJHBhLWFmZmlsaWF0aW9uLWRldi5kc29hdXRvbWF0aW9uLm5ldDAT BgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwu cjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcw LQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2 BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJt MDIuY2VyMAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZI hvcNAQELBQADggEBACDpdXLAH3E58xAWtzhPUTzzb3tCE6cuXsxtGjuP/GbZJ+sc J95wU3YOVEX2pUDfJJx8i5W4RvmmlhtfTET1UXdLCBFImi8aJhjzMQnBx7FgVcuN dnPr5/DbeSrZ1PFn6js1bQ68ohRx5q0L2zu12W3UCQiAqePw37zyh77fSO3dVkz9 nntDssbRFHV+gdgW4PJFeJIu6iMl/5Yro1cAnjU6xNPd0CLxDDnthMpnrJXs43/E R6GWhxQ3UNP+gZRILfL1bxpMGGEpBfxNb9UvXh1dacRpqO1UQxelROMWg7CioY4M /O3/fdfhSdleBtCh92p8P4y3+DBvB7tqJRuRe/4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm7p/itrtSXEyJksd4CrJ 72hJbaPIssuIm8mjMJ91EBOz54hxqUBuELVCgSls+kQVrwlMWs2oxSPTwHsKZ4pF ryCd+d/lB5bwDOYvekO2aiKZSwJ3QG+IjpI+YULyfv8/wrFCDE/G6riWuM+a+EFP 6pIzgv6uc3S8Mt13jn0r3OGPs2m8vky5M5hmozHkAMpwl04EwpNwEw3rV3A+rcSG kOCWdqPeCZ1sQaB1NA641F0pfxW0VGFeZeZkZyYHi0/jTOVcoIWwE9UMEGjGALXg j6yX4wQx/XtV118oflu16kGPez/x0NdhyCTcocFuqu2DAzkg042dKbJBJ911tGIN 4wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6045604946097688675374406511599368823 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pa-affiliation-dev.bcg.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19658902965937166375407160936763547478132419704710811379915376645343782321205343983597376567350271734550328029259756998611378610559282283995812152882010553031041454599851616143076595222749610384251969920153717496489677644574246311920521244230159259487886019855628340528448066262580147079116325304884328472048720125654191644211577407737201750160128403654009445594229458133154271320642903682710821830196220878806116320776156701488886752377781004857435671307496391187360849931372944825184081206848621563811201192232441486203362172322186092555222960833014268142490913907228240192016353081595233300548660103717090830192099 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) de0913ebdc418026cafb68c7de048cb717bfdf83 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pa-affiliation-dev.bcg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pa-affiliation-dev.dsoautomation.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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