accounts-tst.mica.edu
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 03:08:dd:2d:4c:39:69:8e:51:46:30:3e:b1:d2:2d:f9 was issued on by Amazon.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=accounts-tst.mica.edu
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:08:dd:2d:4c:39:69:8e:51:46:30:3e:b1:d2:2d:f9Serial Number (int): 4033708363603014392713589480303504889
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 13:22:fa:2a:f3:98:49:ea:8a:4b:8b:aa:a4:c1:c7:da:b8:cb:1f:71
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 88:48:fe:33:d7:16:91:77:ad:de:41:94:46:8d:47:7f:7a:40:7a:84
Fingerprint (sha256): c2:3a:19:c4:74:29:bc:99:b5:af:58:86:70:cc:06:e7:b7:5a:fc:27:d7:02:69:af:43:07:4e:fa:ce:34:d2:86
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate accounts-tst.mica.edu
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for accounts-tst.mica.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
accounts-tst.mica.edu
ia22478150438a4798bf81fc504258aa50.us003.ia.us003-rapididentity.com
mica-uat.us003.ia.us003-rapididentity.com
ia22478150438a4798bf81fc504258aa50.us003-rapididentity.com
mica-uat.us003-rapididentity.com
ia22478150438a4798bf81fc504258aa50.us003.ia.us003-rapididentity.com
mica-uat.us003.ia.us003-rapididentity.com
ia22478150438a4798bf81fc504258aa50.us003-rapididentity.com
mica-uat.us003-rapididentity.com
Other certificates including the domain name mica.edu
(limited to 100 certificates)
portal-sp.mica.edu
inside.mica.edu
libguides.mica.edu
*.ezproxy.mica.edu
www.mica.edu
discover.mica.edu
websupport.mica.edu
duo.mica.edu
medium.mica.edu
mica.edu
libguides.mica.edu
chesapeake.mica.edu
csprd90.mica.edu
CGWTest.mica.edu
ptprd85.mica.edu
gwprd.mica.edu
moodlerooms.com
moodlerooms.com
euphrates.mica.edu
shinultima.mica.edu
bahamut.mica.edu
mica2020.missionmedia.net
shop.mica.edu
new.mica.edu
danube.mica.edu
connect.mica.edu
apply.mica.edu
digitaldecker.mica.edu
tms.mica.edu
libguides.mica.edu
www.mica.edu
discover.mica.edu
plannedgiving.mica.edu
shop.mica.edu
sp.mica.edu
moodlerooms.com
shingraduate.mica.edu
ldapserver3.mica.edu
mica.edu
shop.mica.edu
shinomega.mica.edu
inside.mica.edu
shop.mica.edu
idp.mica.edu
commotion.mica.edu
accreditationpolicies.acr.org
libguides.mica.edu
moodlerooms.com
indus.mica.edu
kama.mica.edu
neckar.mica.edu
gwtst.mica.edu
gwprd.mica.edu
commtoolkit.mica.edu
inside.mica.edu
sp.mica.edu
info.mica.edu
velocity.mica.edu
moodlerooms.com
csprd90.mica.edu
webdev.mica.edu
classsearchtest.mica.edu
kalu.mica.edu
testing.mica.edu
moodlerooms.com
idp.mica.edu
velocity.mica.edu
www.mica.edu
online.mica.edu
mica.edu
ldapserver3.mica.edu
csprd92.mica.edu
mica.edu
sp.mica.edu
www.mica.edu
csprd90.mica.edu
velocity.mica.edu
idp.mica.edu
mica.edu
moodlerooms.com
medium.mica.edu
danube.mica.edu
online.mica.edu
duo.mica.edu
inside.mica.edu
discover.mica.edu
helpdesk.mica.edu
cstst90.mica.edu
inside.mica.edu
inside.mica.edu
jonesfalls.mica.edu
alertus.mica.edu
bahamut.mica.edu
mica.edu
Maryland Institute College of Art (THE MARYLAND INSTITUTE)
whatsupgold.mica.edu
libguides.mica.edu
vpn.mica.edu
csdev90.mica.edu
ptprd85.mica.edu
inside.mica.edu
libguides.mica.edu
*.ezproxy.mica.edu
www.mica.edu
discover.mica.edu
websupport.mica.edu
duo.mica.edu
medium.mica.edu
mica.edu
libguides.mica.edu
chesapeake.mica.edu
csprd90.mica.edu
CGWTest.mica.edu
ptprd85.mica.edu
gwprd.mica.edu
moodlerooms.com
moodlerooms.com
euphrates.mica.edu
shinultima.mica.edu
bahamut.mica.edu
mica2020.missionmedia.net
shop.mica.edu
new.mica.edu
danube.mica.edu
connect.mica.edu
apply.mica.edu
digitaldecker.mica.edu
tms.mica.edu
libguides.mica.edu
www.mica.edu
discover.mica.edu
plannedgiving.mica.edu
shop.mica.edu
sp.mica.edu
moodlerooms.com
shingraduate.mica.edu
ldapserver3.mica.edu
mica.edu
shop.mica.edu
shinomega.mica.edu
inside.mica.edu
shop.mica.edu
idp.mica.edu
commotion.mica.edu
accreditationpolicies.acr.org
libguides.mica.edu
moodlerooms.com
indus.mica.edu
kama.mica.edu
neckar.mica.edu
gwtst.mica.edu
gwprd.mica.edu
commtoolkit.mica.edu
inside.mica.edu
sp.mica.edu
info.mica.edu
velocity.mica.edu
moodlerooms.com
csprd90.mica.edu
webdev.mica.edu
classsearchtest.mica.edu
kalu.mica.edu
testing.mica.edu
moodlerooms.com
idp.mica.edu
velocity.mica.edu
www.mica.edu
online.mica.edu
mica.edu
ldapserver3.mica.edu
csprd92.mica.edu
mica.edu
sp.mica.edu
www.mica.edu
csprd90.mica.edu
velocity.mica.edu
idp.mica.edu
mica.edu
moodlerooms.com
medium.mica.edu
danube.mica.edu
online.mica.edu
duo.mica.edu
inside.mica.edu
discover.mica.edu
helpdesk.mica.edu
cstst90.mica.edu
inside.mica.edu
inside.mica.edu
jonesfalls.mica.edu
alertus.mica.edu
bahamut.mica.edu
mica.edu
Maryland Institute College of Art (THE MARYLAND INSTITUTE)
whatsupgold.mica.edu
libguides.mica.edu
vpn.mica.edu
csdev90.mica.edu
ptprd85.mica.edu
Certificate
The complete raw certificate details for accounts-tst.mica.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIQAwjdLUw5aY5RRjA+sdIt+TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDUyNjAwMDAwMFoXDTI1MDYyNTIzNTk1OVowIDEe MBwGA1UEAxMVYWNjb3VudHMtdHN0Lm1pY2EuZWR1MIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAmyR3O1ZtECkXAUFKPyFOasSmt566h3RqIjXJGSpivRF9 p144mwyrHmqJ0+oYOcKOFaz4UwoqV82VoB71KdKJ8u5Mw82ZFBn7MaNNKBFaa3Mj kgYebTy3o7kOoGvvGpyMkhI17IIaviSfYjyfVsk28TDW7/+ns9x8HGRBU5Ikh//W 1Lsbq5ChA/MuA+FYqBp5+ztp9taOtKjfIxvmuh6tiPY0eNamDkD4YRYHf/Ge8aIj Tq8etk+38XojZryqVobWkXpkscfKWRndddtUCJrwJeVSEa9vRXrvgDL/Ds9vchWc VwGnIPdGfD6QsSlEx1LZ3ey1HCoh5E9bmV5+RHMDZwIDAQABo4ICUjCCAk4wHwYD VR0jBBgwFoAUVdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFBMi+irzmEnq ikuLqqTBx9q4yx9xMIHwBgNVHREEgegwgeWCFWFjY291bnRzLXRzdC5taWNhLmVk dYJDaWEyMjQ3ODE1MDQzOGE0Nzk4YmY4MWZjNTA0MjU4YWE1MC51czAwMy5pYS51 czAwMy1yYXBpZGlkZW50aXR5LmNvbYIpbWljYS11YXQudXMwMDMuaWEudXMwMDMt cmFwaWRpZGVudGl0eS5jb22COmlhMjI0NzgxNTA0MzhhNDc5OGJmODFmYzUwNDI1 OGFhNTAudXMwMDMtcmFwaWRpZGVudGl0eS5jb22CIG1pY2EtdWF0LnVzMDAzLXJh cGlkaWRlbnRpdHkuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAw oC6gLIYqaHR0cDovL2NybC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY3Js MHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDMu YW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAzLmFt YXpvbnRydXN0LmNvbS9yMm0wMy5jZXIwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5 AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsEBqiWq+11U6Pe/wSX7vBg57 cen2vLB3Le1Yk/gMxw+zRViDVCe6ZYh58cfk4OkhckEOmvHU1e/tl5wPhbEaLmOV FMYx5SU6dc3sRH6bNBV2swc3bvIW77DtXIF1IbXWsjwCPVg7T8m4ZlsVxBHLAkyZ Q3Y8jCC+GRWcBCp0R2gAx5OsJwwQJIh5+i8+eFl5iyP8EOsmSszTulOHlZ8B5W08 0llupz/KhGKcN2g+hG6qDxpYzb02vtiANE+xf/CIb1PoFtzA8GbUoiTLMavCWJYC O6k2W7p36m7sNSwuxHFJbvVn96HpRJ69oEb+HHYnstWJCG7tjp9KLPHjVjh52Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmyR3O1ZtECkXAUFKPyFO asSmt566h3RqIjXJGSpivRF9p144mwyrHmqJ0+oYOcKOFaz4UwoqV82VoB71KdKJ 8u5Mw82ZFBn7MaNNKBFaa3MjkgYebTy3o7kOoGvvGpyMkhI17IIaviSfYjyfVsk2 8TDW7/+ns9x8HGRBU5Ikh//W1Lsbq5ChA/MuA+FYqBp5+ztp9taOtKjfIxvmuh6t iPY0eNamDkD4YRYHf/Ge8aIjTq8etk+38XojZryqVobWkXpkscfKWRndddtUCJrw JeVSEa9vRXrvgDL/Ds9vchWcVwGnIPdGfD6QsSlEx1LZ3ey1HCoh5E9bmV5+RHMD ZwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4033708363603014392713589480303504889 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'accounts-tst.mica.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19584919200850538076403894390367996297168475439417911204369180281713482732868655487470287505483367752749378803396516880420463905775164178748562031779152464508751270750673063251415882900692247524179617849560790386934299928540709761344731577210910424005693917146154229026194117630229298551126406287279293195768944009015575469502893322228485546442965559768738277935925255310514620817550954072016456924204441130422223044107500826580816536229525987405390706446362304615750626766393167188219570973660511524497299016350715951410951855916987037490628783543911674859565096058621867284860103532994510537598643575571768723833703 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1322fa2af39849ea8a4b8baaa4c1c7dab8cb1f71 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (232 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'accounts-tst.mica.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ia22478150438a4798bf81fc504258aa50.us003.ia.us003-rapididentity.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mica-uat.us003.ia.us003-rapididentity.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ia22478150438a4798bf81fc504258aa50.us003-rapididentity.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mica-uat.us003-rapididentity.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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