searchlibrary.ohchr.org
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 02:4e:c2:6c:ce:5b:4d:4f:98:df:36:15:43:37:89:65 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=searchlibrary.ohchr.org
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:4e:c2:6c:ce:5b:4d:4f:98:df:36:15:43:37:89:65Serial Number (int): 3067398554504497628753259580196620645
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 0f:9e:05:9e:2b:63:fe:3e:ee:f0:a2:0f:f6:8f:ee:8a:0a:4e:84:04
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 7a:c5:9a:ee:65:ee:f4:ed:2b:e6:73:f8:4f:ed:39:25:da:93:d1:77
Fingerprint (sha256): b9:aa:b6:25:a7:86:51:80:f1:df:94:83:c8:81:a2:88:48:5b:5a:26:be:28:a6:cd:46:0b:12:2d:2a:d5:d3:7f
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate searchlibrary.ohchr.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for searchlibrary.ohchr.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
searchlibrary.ohchr.org
Other certificates including the domain name ohchr.org
(limited to 100 certificates)
*.prod.ohchr.un-icc.cloud
sm.ohchr.org
*.test.ohchr.un-icc.cloud
cambodia.ohchr.org
romena.ohchr.org
sm.ohchr.org
cambodia.ohchr.org
sm.ohchr.org
sm.ohchr.org
sm.ohchr.org
bangkok.ohchr.org
*.prod.ohchr.un-icc.cloud
digitalhub.ohchr.org
cambodia.ohchr.org
sm.ohchr.org
bangkok.ohchr.org
sm.ohchr.org
cambodia.ohchr.org
romena.ohchr.org
europe.ohchr.org
dreamlighthelper.com
digitalhub.ohchr.org
webmail2.ohchr.org
auth.kindo.staging.boik.dev
www.westafrica.ohchr.org
webmail.ohchr.org
testrightsview.ohchr.org
webmail.ohchr.org
sm.ohchr.org
remote.ohchr.org
cambodia.ohchr.org
digitalhub.ohchr.org
cambodia.ohchr.org
*.prod.ohchr.un-icc.cloud
seoul.ohchr.org
*.ohchr.org
sm.ohchr.org
sanctionsplatform.ohchr.org
seoul.ohchr.org
westafrica.ohchr.org
searchlibrary.ohchr.org
sm.ohchr.org
waps.ohchr.org
fifa.shapegames.dev
seoul.ohchr.org
ngopub.ohchr.org
cambodia.ohchr.org
sm.ohchr.org
seoul.ohchr.org
*.in.ohchr.org
login.ohchr.org
sm.ohchr.org
sanctionsplatform.ohchr.org
www.westafrica.ohchr.org
webmail.ohchr.org
romena.ohchr.org
westafrica.ohchr.org
cambodia.ohchr.org
www.westafrica.ohchr.org
extranet.ohchr.org
rightsview.ohchr.org
webmail.ohchr.org
sm.ohchr.org
*.ohchr.org
spdb.ohchr.org
easset.ohchr.org
grants.ohchr.org
esurvey.ohchr.org
www.fotoramausa.com
pms.ohchr.org
testrightsview.ohchr.org
rightsviewtest.ohchr.org
www.treadstonelabs.com
grants.ohchr.org
www.digitalbharati.org
*.ohchr.org
sm.ohchr.org
digitalhub.ohchr.org
bangkok.ohchr.org
sm.ohchr.org
ngopub.ohchr.org
sm.ohchr.org
uganda.ohchr.org
*.ohchr.org
cambodia.ohchr.org
rightsviewtest.ohchr.org
rightsview.ohchr.org
fieldsmail.ohchr.org
*.prod.ohchr.un-icc.cloud
sm.ohchr.org
cambodia.ohchr.org
share.ohchr.org
CSWEB.OHCHR.ORG
www.ohchr.org
romena.ohchr.org
sni.cloudflaressl.com
westafrica.ohchr.org
esurvey.ohchr.org
sm.ohchr.org
searchlibrary.ohchr.org
sm.ohchr.org
*.test.ohchr.un-icc.cloud
cambodia.ohchr.org
romena.ohchr.org
sm.ohchr.org
cambodia.ohchr.org
sm.ohchr.org
sm.ohchr.org
sm.ohchr.org
bangkok.ohchr.org
*.prod.ohchr.un-icc.cloud
digitalhub.ohchr.org
cambodia.ohchr.org
sm.ohchr.org
bangkok.ohchr.org
sm.ohchr.org
cambodia.ohchr.org
romena.ohchr.org
europe.ohchr.org
dreamlighthelper.com
digitalhub.ohchr.org
webmail2.ohchr.org
auth.kindo.staging.boik.dev
www.westafrica.ohchr.org
webmail.ohchr.org
testrightsview.ohchr.org
webmail.ohchr.org
sm.ohchr.org
remote.ohchr.org
cambodia.ohchr.org
digitalhub.ohchr.org
cambodia.ohchr.org
*.prod.ohchr.un-icc.cloud
seoul.ohchr.org
*.ohchr.org
sm.ohchr.org
sanctionsplatform.ohchr.org
seoul.ohchr.org
westafrica.ohchr.org
searchlibrary.ohchr.org
sm.ohchr.org
waps.ohchr.org
fifa.shapegames.dev
seoul.ohchr.org
ngopub.ohchr.org
cambodia.ohchr.org
sm.ohchr.org
seoul.ohchr.org
*.in.ohchr.org
login.ohchr.org
sm.ohchr.org
sanctionsplatform.ohchr.org
www.westafrica.ohchr.org
webmail.ohchr.org
romena.ohchr.org
westafrica.ohchr.org
cambodia.ohchr.org
www.westafrica.ohchr.org
extranet.ohchr.org
rightsview.ohchr.org
webmail.ohchr.org
sm.ohchr.org
*.ohchr.org
spdb.ohchr.org
easset.ohchr.org
grants.ohchr.org
esurvey.ohchr.org
www.fotoramausa.com
pms.ohchr.org
testrightsview.ohchr.org
rightsviewtest.ohchr.org
www.treadstonelabs.com
grants.ohchr.org
www.digitalbharati.org
*.ohchr.org
sm.ohchr.org
digitalhub.ohchr.org
bangkok.ohchr.org
sm.ohchr.org
ngopub.ohchr.org
sm.ohchr.org
uganda.ohchr.org
*.ohchr.org
cambodia.ohchr.org
rightsviewtest.ohchr.org
rightsview.ohchr.org
fieldsmail.ohchr.org
*.prod.ohchr.un-icc.cloud
sm.ohchr.org
cambodia.ohchr.org
share.ohchr.org
CSWEB.OHCHR.ORG
www.ohchr.org
romena.ohchr.org
sni.cloudflaressl.com
westafrica.ohchr.org
esurvey.ohchr.org
sm.ohchr.org
searchlibrary.ohchr.org
Certificate
The complete raw certificate details for searchlibrary.ohchr.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF2zCCBMOgAwIBAgIQAk7CbM5bTU+Y3zYVQzeJZTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDEyNjAwMDAwMFoXDTI0MDIyNTIzNTk1OVowIjEg MB4GA1UEAxMXc2VhcmNobGlicmFyeS5vaGNoci5vcmcwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQDL3cY/kygfxmMmmYM5Ej6A86sKsCJBZp2FT6u8rNxA lS81vGTn/KSN9pQkZfpRgOEqD/5n4dZy3bB6kXCMqh/PASR1Ijh/MY/vrDr+30pY wLk8CcatJ8RHGHuFI4w35qAWiJJYk7zQRPe0yQaw15DF841g4vuOvSxM9WqqMsYT SV8iFGn9hXWeunn6SQBJrdwqkCPfwgSl9yE1Ad5/cUMk9ylh2K3xN7cuIDcG0TyZ 7PQdHkc/Sf3djpL5UzzlPqelnYouJ2JbRq1F235CU+h32X2UVZbOoqzFfo4MV64l usOLmYGVL3jpHI3sIIbJDsK7NmrMKhoQ5GyjhRgnTPK3AgMBAAGjggLxMIIC7TAf BgNVHSMEGDAWgBSBuA5jiokSGOX6OztQlZ/m5ZAThTAdBgNVHQ4EFgQUD54Fnitj /j7u8KIP9o/uigpOhAQwIgYDVR0RBBswGYIXc2VhcmNobGlicmFyeS5vaGNoci5v cmcwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAxLmFtYXpvbnRydXN0 LmNvbS9yMm0wMS5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEE aTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMS5hbWF6b250cnVzdC5j b20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDEuYW1hem9udHJ1c3QuY29t L3IybTAxLmNlcjAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFr AWkAdwDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYXrfDh6AAAE AwBIMEYCIQCr9g5b1RXGTr13OAoq92gbrbVlJXojFhm4gAjln8N3bAIhAKXNGnY6 DLCub9ZoTb5RwUT/fNnkP0M5TdWClsZxECnNAHYAc9meiRtMlnigIH1HneayxhzQ UV5xGSqMa4AQesF3crUAAAGF63w4vgAABAMARzBFAiBTmXyYFQdTL+3syOstw48j ChEUPXsWEVQwKUBixi2hiQIhAM5l+ytugnZg/46m3gKRK9QEbtIGGcGhk7qA8O4L njoMAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGF63w4dQAA BAMARzBFAiEAm3Q1BoTsO++U9wPbCDQ2BELk5EAjG1tHcS/4bXO1JCICIDSIaweB lCvVU4+z9aDRZVSMc9erraWuJrkq9UggZgRHMA0GCSqGSIb3DQEBCwUAA4IBAQBc yDFuBlX6k9l+YTkNmRx20JNhUs5B/uvkvmyRAnE6FO7kfcr9L/VUBeKg9rU/FAoy QYdmwU7oYjGo8F9/E+0ZIlIz07s/6j3EeBrwxbeKZcHYQlwYlLSF3ItxULdou36I Jj7A6VBrIusghQoHIQJxBs5VshyMKyDLbc7DEuy8qYfBPIVWybZtwv1PfJ/7L5K1 0JFMPWTH1cd6cee3WhHCsQ9GveMDMs7s0f6ZkTAyiNfa67kE6itKldj9EbtV+gHK fiasRgW0MC7SUIBEsom6wgp3VslYXOcNiOoncTChojuuXuYPrspodFSHQtKwc94P FVKhKXeW8G8BeISOtdCc -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy93GP5MoH8ZjJpmDORI+ gPOrCrAiQWadhU+rvKzcQJUvNbxk5/ykjfaUJGX6UYDhKg/+Z+HWct2wepFwjKof zwEkdSI4fzGP76w6/t9KWMC5PAnGrSfERxh7hSOMN+agFoiSWJO80ET3tMkGsNeQ xfONYOL7jr0sTPVqqjLGE0lfIhRp/YV1nrp5+kkASa3cKpAj38IEpfchNQHef3FD JPcpYdit8Te3LiA3BtE8mez0HR5HP0n93Y6S+VM85T6npZ2KLidiW0atRdt+QlPo d9l9lFWWzqKsxX6ODFeuJbrDi5mBlS946RyN7CCGyQ7CuzZqzCoaEORso4UYJ0zy twIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3067398554504497628753259580196620645 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'searchlibrary.ohchr.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25735736944426743025720302227066461956217782865278932557805002393168423011240830089151077995283578951241590575379051571026444657909746900541234034803876102103028163186615100284877002408682056181509095340788708411307857433297651036666850841043522359207828495281349885274171768958754477027260771570812086249137632545658290519908718328737425213746035983175448679075493486898689942720131419487248755276453064487301157963694631085742968964123125588471493442252131318067814098727377007005411639133280450434460303827879591526092185209835708716603751245637888801892385540398373007047170732047211076705436394515562597272318647 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0f9e059e2b63fe3eeef0a20ff68fee8a0a4e8404 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'searchlibrary.ohchr.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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