stg.newnavigator.bcg.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0e:aa:d0:e6:d7:ed:8f:bd:a7:fc:59:d5:5a:42:f7:48 was issued on by Amazon.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=stg.newnavigator.bcg.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0e:aa:d0:e6:d7:ed:8f:bd:a7:fc:59:d5:5a:42:f7:48Serial Number (int): 19496119437441152073533496615214708552
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: e7:c9:1e:00:cb:1b:a6:c9:e4:53:3e:a3:37:fc:f1:22:8a:8a:3f:26
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): ff:02:c4:e2:4e:55:1a:15:75:dd:43:23:fb:e8:33:d3:73:51:21:69
Fingerprint (sha256): ca:58:ca:5d:67:ac:4a:71:4e:03:f8:d6:94:18:cc:7c:56:95:ad:b0:e5:96:72:6f:97:3c:f9:ff:eb:00:9a:a3
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate stg.newnavigator.bcg.com
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stg.newnavigator.bcg.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stg.newnavigator.bcg.com
minerva-stg.dsoautomation.net
xfactory-stg.dsoautomation.net
minerva-stg-binaries.bcg.com
xfactory-stg.bcg.com
minerva-stg-binaries.dsoautomation.net
stg.newnavigator.dsoautomation.net
minerva-stg.bcg.com
minerva-stg.dsoautomation.net
xfactory-stg.dsoautomation.net
minerva-stg-binaries.bcg.com
xfactory-stg.bcg.com
minerva-stg-binaries.dsoautomation.net
stg.newnavigator.dsoautomation.net
minerva-stg.bcg.com
Other certificates including the domain name bcg.com
(limited to 100 certificates)
warchest-dev.bcg.com
signal.bcg.com
unsubscribe.bcg.com
internalmicrosites.bcg.com
tableau-15303-11.bcg.com
github-pages-webhook.github.gamma.bcg.com
clsnswtreasuryservice.bcg.com
tableau-305124-10.bcg.com
imd.bcg.com
ASP-GAMMA-SnA-Showcases.bcg.com
PSGBackOfficeDev.bcg.com
admin.staging.rover.io
stglab.bcg.com
meridian.stage.bcg.com
track.connect.bcg.com
gmd.bcg.com
teamsites-amr.bcg.com
tableau-298892-02.bcg.com
talent.bcg.com
remoteadmin.bcg.com
tracking.connect.bcg.com
fsgservice.bcg.com
www.jss.bcg.com
swptrial3.bcg.com
cfs.bcg.com
keystone2bcg.bcg.com
qliksensepoc.bcg.com
pdo.bcg.com
tableau-143243-72.bcg.com
digitalprocurement.bcg.com
sdcssl1.bcg.com
dvassets.bcg.com
eis.bcg.com
lukoil-komi.bcg.com
ombudsman.bcg.com
elections.bcg.com
eiumif.bcg.com
dartdev.bcg.com
nwc.bcg.com
juniper.enterprise.bcg.com
pdcvendor01.bcg.com
PSGAPIDev.bcg.com
orgcls.bcg.com
tableauha.bcg.com
tableau-15316-31test.bcg.com
internalmicrosites.bcg.com
www.gs-pwm.survey.bcg.com
stglab.bcg.com
production.smp.bcg.com
edcssl6.bcg.com
sandbox.egnyte.bcg.com
clscontent-tst.bcg.com
mpoint.bcg.com
onebenchmark.bcg.com
bcg-com-dev3.bcg.com
talent.bcg.com
leanmanagementtool.bcg.com
*.bcg.com
digitalclsservice.bcg.com
digitalcls.bcg.com
vote.bcg.com
bcgplatform-eur2.bcg.com
mycases-qa2.bcg.com
saasexcellence.bcg.com
containershipping.bcg.com
dai.bcg.com
gmd-internal.bcg.com
wwad.bcg.com
appsqa.bcg.com
esfbenchmarking.bcg.com
sinequa-prod.bcg.com
adcelapptv01L.bcg.com
sendsms.cc
partnerfeedbackdev.bcg.com
benchmarking.bcg.com
demo.mystudy.fit
tableau-horizonportal.bcg.com
track.connect.bcg.com
learningsims.bcg.com
wspexternal.bcg.com
minerva-dev.bcg.com
www.bcg.com
payablesapprovalprod-new.bcg.com
ivq.bcg.com
tableau-178780-45.bcg.com
CloudManager-staging.gamma.bcg.com
www.bcg.com
bcgplatform-amr.bcg.com
*.dsoautomation.net
tableau-261229-26.bcg.com
gdcssl1.bcg.com
covid-19.gamma.bcg.com
knowledgeanalytics-dev.bcg.com
adcvendor01.bcg.com
AMRMDCRMDYAPP2W.bcg.com
survey.bcg.com
owl.bcg.com
remoteatscale.bcg.com
mydevices.bcg.com
retail360.bcg.com
signal.bcg.com
unsubscribe.bcg.com
internalmicrosites.bcg.com
tableau-15303-11.bcg.com
github-pages-webhook.github.gamma.bcg.com
clsnswtreasuryservice.bcg.com
tableau-305124-10.bcg.com
imd.bcg.com
ASP-GAMMA-SnA-Showcases.bcg.com
PSGBackOfficeDev.bcg.com
admin.staging.rover.io
stglab.bcg.com
meridian.stage.bcg.com
track.connect.bcg.com
gmd.bcg.com
teamsites-amr.bcg.com
tableau-298892-02.bcg.com
talent.bcg.com
remoteadmin.bcg.com
tracking.connect.bcg.com
fsgservice.bcg.com
www.jss.bcg.com
swptrial3.bcg.com
cfs.bcg.com
keystone2bcg.bcg.com
qliksensepoc.bcg.com
pdo.bcg.com
tableau-143243-72.bcg.com
digitalprocurement.bcg.com
sdcssl1.bcg.com
dvassets.bcg.com
eis.bcg.com
lukoil-komi.bcg.com
ombudsman.bcg.com
elections.bcg.com
eiumif.bcg.com
dartdev.bcg.com
nwc.bcg.com
juniper.enterprise.bcg.com
pdcvendor01.bcg.com
PSGAPIDev.bcg.com
orgcls.bcg.com
tableauha.bcg.com
tableau-15316-31test.bcg.com
internalmicrosites.bcg.com
www.gs-pwm.survey.bcg.com
stglab.bcg.com
production.smp.bcg.com
edcssl6.bcg.com
sandbox.egnyte.bcg.com
clscontent-tst.bcg.com
mpoint.bcg.com
onebenchmark.bcg.com
bcg-com-dev3.bcg.com
talent.bcg.com
leanmanagementtool.bcg.com
*.bcg.com
digitalclsservice.bcg.com
digitalcls.bcg.com
vote.bcg.com
bcgplatform-eur2.bcg.com
mycases-qa2.bcg.com
saasexcellence.bcg.com
containershipping.bcg.com
dai.bcg.com
gmd-internal.bcg.com
wwad.bcg.com
appsqa.bcg.com
esfbenchmarking.bcg.com
sinequa-prod.bcg.com
adcelapptv01L.bcg.com
sendsms.cc
partnerfeedbackdev.bcg.com
benchmarking.bcg.com
demo.mystudy.fit
tableau-horizonportal.bcg.com
track.connect.bcg.com
learningsims.bcg.com
wspexternal.bcg.com
minerva-dev.bcg.com
www.bcg.com
payablesapprovalprod-new.bcg.com
ivq.bcg.com
tableau-178780-45.bcg.com
CloudManager-staging.gamma.bcg.com
www.bcg.com
bcgplatform-amr.bcg.com
*.dsoautomation.net
tableau-261229-26.bcg.com
gdcssl1.bcg.com
covid-19.gamma.bcg.com
knowledgeanalytics-dev.bcg.com
adcvendor01.bcg.com
AMRMDCRMDYAPP2W.bcg.com
survey.bcg.com
owl.bcg.com
remoteatscale.bcg.com
mydevices.bcg.com
retail360.bcg.com
Certificate
The complete raw certificate details for stg.newnavigator.bcg.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGtTCCBZ2gAwIBAgIQDqrQ5tftj72n/FnVWkL3SDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDkyMTAwMDAwMFoXDTI0MTAxODIzNTk1OVowIzEh MB8GA1UEAxMYc3RnLm5ld25hdmlnYXRvci5iY2cuY29tMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAroxi+vjNeZKvSug1RaC3kA3ScZQXi9R+SQNX/tl+ kgvyMjmFdj7mqa2LFTBZSCs88eCqgEu2KTbZWeuJ1h9sU6FM+MvaNyo79BWd9+xp kP3CMklEVkALi1DU1xLUOWDx4gwdXrGIMHcAmPcAMbkw03jpKdaKJqtpqHCLEvWj 30q3HwCsjentYzXV3EOKbjIs992DMGobkbM/cS3PPkKrsDMzU+5Ix6W9ODSVXciT HJ5RqLVwpuoNk8e755gNr4335IInzJKPnb8fiXxHJK6FCtax3HHE+qfrmlB9wIsM 5ivKKnoYCi6+GplL21jixMZenPDyZWRJlgtbxzXnINnThQIDAQABo4IDyjCCA8Yw HwYDVR0jBBgwFoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFOfJHgDL G6bJ5FM+ozf88SKKij8mMIH5BgNVHREEgfEwge6CGHN0Zy5uZXduYXZpZ2F0b3Iu YmNnLmNvbYIdbWluZXJ2YS1zdGcuZHNvYXV0b21hdGlvbi5uZXSCHnhmYWN0b3J5 LXN0Zy5kc29hdXRvbWF0aW9uLm5ldIIcbWluZXJ2YS1zdGctYmluYXJpZXMuYmNn LmNvbYIUeGZhY3Rvcnktc3RnLmJjZy5jb22CJm1pbmVydmEtc3RnLWJpbmFyaWVz LmRzb2F1dG9tYXRpb24ubmV0giJzdGcubmV3bmF2aWdhdG9yLmRzb2F1dG9tYXRp b24ubmV0ghNtaW5lcnZhLXN0Zy5iY2cuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIB MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw OwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMi5hbWF6b250cnVzdC5j b20vcjJtMDIuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDov L29jc3AucjJtMDIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8v Y3J0LnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIw ADCCAYAGCisGAQQB1nkCBAIEggFwBIIBbAFqAHcA7s3QZNXbGs7FXLedtM0TojKH Rny87N7DUUhZRnEftZsAAAGKtumumgAABAMASDBGAiEA/V2lhHtGhpX+lYKYGAFw MmQqmSAfaJHekoba9DjusBgCIQConXL0OBV9NhyAEsZf2Fehm2K3S4OnIvT9jjL7 WEJXPgB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABirbprrEA AAQDAEgwRgIhAJIIk1TwkiDz1S5OYOoJN3dRE4oWUgHH3FnSkZ/CUgYdAiEAquTo 7Vkc6uV1IMAaAX6q0M2ePJBwQFjB5q+muqbd1gQAdgDatr9rP7W2Ip+bwrtca+hw kXFsu1GEhTS9pD0wSNf7qwAAAYq26a5+AAAEAwBHMEUCIQC9Ycgh1E2lsqx+fMT0 1xSn5QjH4roX63+s8qmX0YwXxAIgcNXZmLzkzDuB0PlH5OE+j6VRf2fLL0KuB+Fr jUqj04swDQYJKoZIhvcNAQELBQADggEBADpWZojL0pencJk5Zu+Dj706dCAIP5lC SejG7uYK8BD1R9aCdhq/6pNDPhuybKagzeM7//fYqdRuWBwFEOj+oIUGl10h/3Gt SXdHIvHvSOVZPoB0S2uJu7/Xo7ZaOK4MHbe5VaWSVigGDbJua77kIjjTN/yKQuTs lbM5Pv4dQRle9IyhXBAyymElIMTzMac8a91B7q7MX++r+orjHowsdoUpwZO++xn3 LSHRYMXYbyegJ6JTOhHFkrMiPaJDNr86RbGdELDjk2IiOMr8vxH/4fh0w1U3JyuS 3+4YKos5tKlBpaFUxbgRBJtSyPH+K3rSgcSgTEsLwf7W49cBkIFyr/Q= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAroxi+vjNeZKvSug1RaC3 kA3ScZQXi9R+SQNX/tl+kgvyMjmFdj7mqa2LFTBZSCs88eCqgEu2KTbZWeuJ1h9s U6FM+MvaNyo79BWd9+xpkP3CMklEVkALi1DU1xLUOWDx4gwdXrGIMHcAmPcAMbkw 03jpKdaKJqtpqHCLEvWj30q3HwCsjentYzXV3EOKbjIs992DMGobkbM/cS3PPkKr sDMzU+5Ix6W9ODSVXciTHJ5RqLVwpuoNk8e755gNr4335IInzJKPnb8fiXxHJK6F Ctax3HHE+qfrmlB9wIsM5ivKKnoYCi6+GplL21jixMZenPDyZWRJlgtbxzXnINnT hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19496119437441152073533496615214708552 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stg.newnavigator.bcg.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22034692297412062376804164984922916994859418268439755875731186158862594162610754030909811329765739245231387347902804830363490330071032531715182835063164185067090146567853812049493220295982092025923634585176673917398326635072984514461426655787390917926495440886124749417430659566005453131752531806141336207300000106087811717581759878580616060690923499262407745563549196425682631745560436718246743477608348216683010065119286074530217188301502061603376000588150672940169351006546281774310546734679616929041462427045773477566613086758598032621242132884315734042287584753143623264293299101319273729791331277835113011467141 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e7c91e00cb1ba6c9e4533ea337fcf1228a8a3f26 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.newnavigator.bcg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minerva-stg.dsoautomation.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xfactory-stg.dsoautomation.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minerva-stg-binaries.bcg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xfactory-stg.bcg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minerva-stg-binaries.dsoautomation.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.newnavigator.dsoautomation.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minerva-stg.bcg.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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