avakin.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 04:12:f5:06:3b:35:d6:42:90:df:2d:fa:6b:9c:14:e0 was issued on by Amazon.
With 16 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=avakin.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:12:f5:06:3b:35:d6:42:90:df:2d:fa:6b:9c:14:e0Serial Number (int): 5415343010639860596019160197642327264
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: d4:cd:10:84:92:65:e9:30:ff:39:58:08:80:79:25:1f:45:79:ac:e3
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 66:f8:29:ed:a0:83:e9:a9:ff:12:46:62:f4:f6:a6:42:aa:13:b6:50
Fingerprint (sha256): a9:8c:f5:c3:2b:30:5a:bd:5c:d8:68:35:ae:51:d3:ab:43:3e:03:42:39:c3:bf:2e:42:64:92:cf:ff:74:8d:df
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate avakin.com
16
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for avakin.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
avakin.com
*.api.avkn.co
*.avkn.co
*.avakin.com
*.lockwood-publishing.com
lockwood-publishing.com
*.lkwd.net
*.lockwoodpublishing.com
*.api.avakin.com
*.staging.avkn.co
lockwoodpublishing.com
*.gdpr.avakin.life
*.dev.avakin.life
*.dev.avkn.co
*.dev.avakin.com
*.avakin.life
*.api.avkn.co
*.avkn.co
*.avakin.com
*.lockwood-publishing.com
lockwood-publishing.com
*.lkwd.net
*.lockwoodpublishing.com
*.api.avakin.com
*.staging.avkn.co
lockwoodpublishing.com
*.gdpr.avakin.life
*.dev.avakin.life
*.dev.avkn.co
*.dev.avakin.com
*.avakin.life
Other certificates including the domain name avakin.com
(limited to 100 certificates)
avakin.com
avakin.com
get.avakin.com
avakin.com
dev.avkn.co
lkwd-wmdash.data-prod.avakin.com
get.avakin.com
get.avakin.com
avkn.co
governor.data-staging.avakin.com
lkwd-wmdash.data-dev.avakin.com
*.avakin.life
avakin.com
grafana-prod.data-prod.avakin.com
avakin.com
crucible.data-dev.avakin.com
www.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
avakin.com
avakin.com
avakin.com
www.avakin.com
status.avakin.com
avkn.co
get.avakin.com
avakin.com
governor.data-dev.avakin.com
www.avakin.com
get.avakin.com
get.avakin.com
get.avakin.com
*.avakin.life
lkwd-wmdash.data-prod.avakin.com
backend02.avakin.com
get.avakin.com
avakin.com
status.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
status.avakin.com
avakin.com
get.avakin.com
governor.data-dev.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
insights-writer.data-prod.avakin.com
ip2asn-api.data-dev.avakin.com
*.avakin.life
get.avakin.com
api.avakin.com
crucible-admin.data-dev.avakin.com
backend.avakin.com
*.avakin.life
avkn.co
www.dev.avakin.com
get.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
avakin.com
avakin.com
backend.avakin.com
avakin.com
insights-writer.data-staging.avakin.com
ingestion.data-prod.avakin.com
www.dev.avakin.com
avkn.co
get.avakin.com
ingestion.data-prod.avakin.com
avakin.com
link.avakin.com
backend.avakin.com
get.avakin.com
*.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
*.avakin.com
*.avakin.life
avakin.com
insights-config.data-staging.avakin.com
get.avakin.com
avakin.com
governor.data-staging.avakin.com
avakin.com
avakin.com
get.avakin.com
governor.data-prod.avakin.com
*.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
avkn.co
get.avakin.com
avakin.com
ugc.prod.avakin.com
avakin.com
store.avakin.com
avakin.com
ingestion.data-dev.avakin.com
avakin.com
get.avakin.com
avakin.com
dev.avkn.co
lkwd-wmdash.data-prod.avakin.com
get.avakin.com
get.avakin.com
avkn.co
governor.data-staging.avakin.com
lkwd-wmdash.data-dev.avakin.com
*.avakin.life
avakin.com
grafana-prod.data-prod.avakin.com
avakin.com
crucible.data-dev.avakin.com
www.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
avakin.com
avakin.com
avakin.com
www.avakin.com
status.avakin.com
avkn.co
get.avakin.com
avakin.com
governor.data-dev.avakin.com
www.avakin.com
get.avakin.com
get.avakin.com
get.avakin.com
*.avakin.life
lkwd-wmdash.data-prod.avakin.com
backend02.avakin.com
get.avakin.com
avakin.com
status.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
status.avakin.com
avakin.com
get.avakin.com
governor.data-dev.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
insights-writer.data-prod.avakin.com
ip2asn-api.data-dev.avakin.com
*.avakin.life
get.avakin.com
api.avakin.com
crucible-admin.data-dev.avakin.com
backend.avakin.com
*.avakin.life
avkn.co
www.dev.avakin.com
get.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
avakin.com
avakin.com
backend.avakin.com
avakin.com
insights-writer.data-staging.avakin.com
ingestion.data-prod.avakin.com
www.dev.avakin.com
avkn.co
get.avakin.com
ingestion.data-prod.avakin.com
avakin.com
link.avakin.com
backend.avakin.com
get.avakin.com
*.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
*.avakin.com
*.avakin.life
avakin.com
insights-config.data-staging.avakin.com
get.avakin.com
avakin.com
governor.data-staging.avakin.com
avakin.com
avakin.com
get.avakin.com
governor.data-prod.avakin.com
*.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
avkn.co
get.avakin.com
avakin.com
ugc.prod.avakin.com
avakin.com
store.avakin.com
avakin.com
ingestion.data-dev.avakin.com
Certificate
The complete raw certificate details for avakin.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG2zCCBcOgAwIBAgIQBBL1Bjs11kKQ3y36a5wU4DANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDIyMjAwMDAwMFoXDTIzMDgwNTIzNTk1OVowFTET MBEGA1UEAxMKYXZha2luLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZC4cPvfpS4CI+zG9XUiPpiic4+0Gpsj3vUoDHbmDgLgz6J5pLw2ea3cAc0 rtVSHBjthEfU8jfUI/w0F4nn3OEl7ECGt3id3h8OfR9LgbGMwEcD83hykbgbfsbS OWxDZX8WqJkk8ALcx9yV87uM7B84qT+ctiB3yKkUK1SD0vLMwjBhGc0k3H4gV2wR 8gdhm1A4pT4o1fRuzyAmym9kujmZoVfh15XAvVOA+f10eOjmK/N6B+YBbQtBGHnz AFHxM7ZJ0pDQgvveNKUG6FhTFmSRzT68IhtTU5s50LzH4JYiffo/aAkhSK1PdXM+ 90+RDibcR2t9wPhTP56kZPC9/ncCAwEAAaOCA/4wggP6MB8GA1UdIwQYMBaAFIG4 DmOKiRIY5fo7O1CVn+blkBOFMB0GA1UdDgQWBBTUzRCEkmXpMP85WAiAeSUfRXms 4zCCAS8GA1UdEQSCASYwggEiggphdmFraW4uY29tgg0qLmFwaS5hdmtuLmNvggkq LmF2a24uY2+CDCouYXZha2luLmNvbYIZKi5sb2Nrd29vZC1wdWJsaXNoaW5nLmNv bYIXbG9ja3dvb2QtcHVibGlzaGluZy5jb22CCioubGt3ZC5uZXSCGCoubG9ja3dv b2RwdWJsaXNoaW5nLmNvbYIQKi5hcGkuYXZha2luLmNvbYIRKi5zdGFnaW5nLmF2 a24uY2+CFmxvY2t3b29kcHVibGlzaGluZy5jb22CEiouZ2Rwci5hdmFraW4ubGlm ZYIRKi5kZXYuYXZha2luLmxpZmWCDSouZGV2LmF2a24uY2+CECouZGV2LmF2YWtp bi5jb22CDSouYXZha2luLmxpZmUwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3Js LnIybTAxLmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jcmwwEwYDVR0gBAwwCjAIBgZn gQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5y Mm0wMS5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJt MDEuYW1hem9udHJ1c3QuY29tL3IybTAxLmNlcjAMBgNVHRMBAf8EAjAAMIIBfQYK KwYBBAHWeQIEAgSCAW0EggFpAWcAdgDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp 4Xd9bQa9bgAAAYZ3fpVfAAAEAwBHMEUCIC5bEYgDkLJvQpM9MXOkzFJGV59uW/lm fxc94X6DGYPtAiEAmqaMxMMf+/Gg+ktwE3bd2TizN8PbnPuecDe8JjdvJB8AdQCz c3cH4YRQ+GOG1gWp3BEJSnktsWcMC4fc8AMOeTalmgAAAYZ3fpW/AAAEAwBGMEQC IEnI1S3iXqEOLhVBygHpXUoKJBCl7xL1+KpjnraaTXs5AiAc2HUyc4OGv7zaPntw QaL93BQgFn9w/FA3n8r5YVLH3QB2ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4d CYEl7bSZAAABhnd+lY4AAAQDAEcwRQIhAMERADlREwPKrha0iM1KPsegH9oJeNTL c/hTkMbK/n/KAiAOW7VS1rlPnQxjYibsphyRXpj5OMBwslgBsNkTVPdIRjANBgkq hkiG9w0BAQsFAAOCAQEAFUdcd9X5Xwey+8XvOlYcWsxe6Q0F7KDKgOrIbKx6KC6R REtLr0cd0A5PEb/1DJ2cY5cmcHd/NL5WVT67tBhqtXia9eEmWH5JmbRKhR3j4u/F yC6EV8NvmW+a3P+CiOU/Y+Sgh4yCWmPa6LIJPlTLm+giA1w1qaytu5ue/bTa9ppU nTVgFj/jpv80IN3l5Lj3sTkj+IU+dofvuN5Vf/cXysBW/rAa5KzAEa502ZTVFWww OH2LiDG3dAM8cbFxBu09NKALcyLmWwtmXbP1aEo6Mmwrh9de1IQPuUWUh1Pb1Ffi xzD301Ilb54PIZbmeVVMK46WVw1S26HxbTvajJ3QtA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkLhw+9+lLgIj7Mb1dSI +mKJzj7QamyPe9SgMduYOAuDPonmkvDZ5rdwBzSu1VIcGO2ER9TyN9Qj/DQXiefc 4SXsQIa3eJ3eHw59H0uBsYzARwPzeHKRuBt+xtI5bENlfxaomSTwAtzH3JXzu4zs HzipP5y2IHfIqRQrVIPS8szCMGEZzSTcfiBXbBHyB2GbUDilPijV9G7PICbKb2S6 OZmhV+HXlcC9U4D5/XR46OYr83oH5gFtC0EYefMAUfEztknSkNCC+940pQboWFMW ZJHNPrwiG1NTmznQvMfgliJ9+j9oCSFIrU91cz73T5EOJtxHa33A+FM/nqRk8L3+ dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5415343010639860596019160197642327264 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'avakin.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20988539316485061606493328599358643208617628080628268115582627458404967852324567491141484422306340067131382136734581920125567944323200453146706182510164681611551008998050941134503696571299609911809736968251978400742032466994561643460278282505973632756247257528766001429310759102396955095952072012668522167321535748213256156951972343728023888990360201666766999958262899869116754764059539635774236487769977775583859872991747562853026071439330019932961789987257831092710645310288701446309119570159550042615710951268072345705428191932564703142786996983247409762259170733600064201480030496072587942625755952596298630037111 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d4cd10849265e930ff3958088079251f4579ace3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (294 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lockwood-publishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockwood-publishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lkwd.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lockwoodpublishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.staging.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockwoodpublishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gdpr.avakin.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.avakin.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avakin.life' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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