avakin.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0a:d1:3c:f8:77:cb:63:96:67:79:c0:16:33:4f:50:30 was issued on by Amazon.
With 16 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=avakin.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:d1:3c:f8:77:cb:63:96:67:79:c0:16:33:4f:50:30Serial Number (int): 14378706631518058740053554281281703984
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 48:d9:b3:fb:b3:04:79:56:6b:3c:8a:0c:3c:b9:d4:6e:79:d8:fe:f9
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 47:89:9a:bf:54:15:49:7d:22:18:d7:2b:f7:70:0e:62:1b:26:ab:a7
Fingerprint (sha256): cd:fd:69:f4:e7:bd:fb:75:37:9b:21:b5:1f:e7:59:64:66:36:2b:b0:8a:8e:96:46:69:96:0b:11:dd:63:11:fe
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate avakin.com
16
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for avakin.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
avakin.com
*.api.avkn.co
*.avkn.co
*.avakin.com
*.lockwood-publishing.com
lockwood-publishing.com
*.lkwd.net
*.lockwoodpublishing.com
*.api.avakin.com
*.staging.avkn.co
lockwoodpublishing.com
*.gdpr.avakin.life
*.dev.avakin.life
*.dev.avkn.co
*.dev.avakin.com
*.avakin.life
*.api.avkn.co
*.avkn.co
*.avakin.com
*.lockwood-publishing.com
lockwood-publishing.com
*.lkwd.net
*.lockwoodpublishing.com
*.api.avakin.com
*.staging.avkn.co
lockwoodpublishing.com
*.gdpr.avakin.life
*.dev.avakin.life
*.dev.avkn.co
*.dev.avakin.com
*.avakin.life
Other certificates including the domain name avakin.com
(limited to 100 certificates)
avakin.com
avakin.com
get.avakin.com
avakin.com
dev.avkn.co
lkwd-wmdash.data-prod.avakin.com
get.avakin.com
get.avakin.com
avkn.co
governor.data-staging.avakin.com
lkwd-wmdash.data-dev.avakin.com
*.avakin.life
avakin.com
grafana-prod.data-prod.avakin.com
avakin.com
crucible.data-dev.avakin.com
www.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
avakin.com
avakin.com
avakin.com
www.avakin.com
status.avakin.com
avkn.co
get.avakin.com
avakin.com
governor.data-dev.avakin.com
www.avakin.com
get.avakin.com
get.avakin.com
get.avakin.com
*.avakin.life
lkwd-wmdash.data-prod.avakin.com
backend02.avakin.com
get.avakin.com
avakin.com
status.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
status.avakin.com
avakin.com
get.avakin.com
governor.data-dev.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
insights-writer.data-prod.avakin.com
ip2asn-api.data-dev.avakin.com
*.avakin.life
get.avakin.com
api.avakin.com
crucible-admin.data-dev.avakin.com
backend.avakin.com
*.avakin.life
avkn.co
www.dev.avakin.com
get.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
avakin.com
avakin.com
backend.avakin.com
avakin.com
insights-writer.data-staging.avakin.com
ingestion.data-prod.avakin.com
www.dev.avakin.com
avkn.co
get.avakin.com
ingestion.data-prod.avakin.com
avakin.com
link.avakin.com
backend.avakin.com
get.avakin.com
*.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
*.avakin.com
*.avakin.life
avakin.com
insights-config.data-staging.avakin.com
get.avakin.com
avakin.com
governor.data-staging.avakin.com
avakin.com
avakin.com
get.avakin.com
governor.data-prod.avakin.com
*.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
avkn.co
get.avakin.com
avakin.com
ugc.prod.avakin.com
avakin.com
store.avakin.com
avakin.com
ingestion.data-dev.avakin.com
avakin.com
get.avakin.com
avakin.com
dev.avkn.co
lkwd-wmdash.data-prod.avakin.com
get.avakin.com
get.avakin.com
avkn.co
governor.data-staging.avakin.com
lkwd-wmdash.data-dev.avakin.com
*.avakin.life
avakin.com
grafana-prod.data-prod.avakin.com
avakin.com
crucible.data-dev.avakin.com
www.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
avakin.com
avakin.com
avakin.com
www.avakin.com
status.avakin.com
avkn.co
get.avakin.com
avakin.com
governor.data-dev.avakin.com
www.avakin.com
get.avakin.com
get.avakin.com
get.avakin.com
*.avakin.life
lkwd-wmdash.data-prod.avakin.com
backend02.avakin.com
get.avakin.com
avakin.com
status.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
status.avakin.com
avakin.com
get.avakin.com
governor.data-dev.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
insights-writer.data-prod.avakin.com
ip2asn-api.data-dev.avakin.com
*.avakin.life
get.avakin.com
api.avakin.com
crucible-admin.data-dev.avakin.com
backend.avakin.com
*.avakin.life
avkn.co
www.dev.avakin.com
get.avakin.com
avakin.com
insights-reader.data-staging.avakin.com
avakin.com
avakin.com
backend.avakin.com
avakin.com
insights-writer.data-staging.avakin.com
ingestion.data-prod.avakin.com
www.dev.avakin.com
avkn.co
get.avakin.com
ingestion.data-prod.avakin.com
avakin.com
link.avakin.com
backend.avakin.com
get.avakin.com
*.avakin.com
get.avakin.com
lkwd-wmdash-prod.data-prod.avakin.com
get.avakin.com
*.avakin.com
*.avakin.life
avakin.com
insights-config.data-staging.avakin.com
get.avakin.com
avakin.com
governor.data-staging.avakin.com
avakin.com
avakin.com
get.avakin.com
governor.data-prod.avakin.com
*.avakin.com
lkwd-wmdash-dev.data-dev.avakin.com
avkn.co
get.avakin.com
avakin.com
ugc.prod.avakin.com
avakin.com
store.avakin.com
avakin.com
ingestion.data-dev.avakin.com
Certificate
The complete raw certificate details for avakin.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG5zCCBc+gAwIBAgIQCtE8+HfLY5ZnecAWM09QMDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMTA4MDYwMDAwMDBaFw0yMjA5MDQy MzU5NTlaMBUxEzARBgNVBAMTCmF2YWtpbi5jb20wggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaMyDOgXdcD4eamnEJdl4R8ESnwCOiB4g06yINkDSXVEhm qOzSzg1+kiUJJCdbFmlinVkNVsPNdMzO2E46LNouL6OvNxnnp5geNcfOwy+bNSiT FdDqHtvUXHvX6dzGhFPuI9l6WRHdXc8Wn5ddZfYJ2j99Owt4AFHvkPcCBZl0LO1O mWh+6rddRit5Fd2TAkZ0wfOfDwfgIRy0Z6rbrEy7a9SYZ3dzZFJ2ZPsR7yrFJFGX KFRn2eoYS4kdmMM6TYfxER0SSLrxLnueAnFsulChsrl8m1um2IvvdwTsv3+Onz18 YMzkrgEGIv6i5q0jC+No+s3FFVxBHYX4d4Oo1AutAgMBAAGjggQAMIID/DAfBgNV HSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQUSNmz+7MEeVZr PIoMPLnUbnnY/vkwggEvBgNVHREEggEmMIIBIoIKYXZha2luLmNvbYINKi5hcGku YXZrbi5jb4IJKi5hdmtuLmNvggwqLmF2YWtpbi5jb22CGSoubG9ja3dvb2QtcHVi bGlzaGluZy5jb22CF2xvY2t3b29kLXB1Ymxpc2hpbmcuY29tggoqLmxrd2QubmV0 ghgqLmxvY2t3b29kcHVibGlzaGluZy5jb22CECouYXBpLmF2YWtpbi5jb22CESou c3RhZ2luZy5hdmtuLmNvghZsb2Nrd29vZHB1Ymxpc2hpbmcuY29tghIqLmdkcHIu YXZha2luLmxpZmWCESouZGV2LmF2YWtpbi5saWZlgg0qLmRldi5hdmtuLmNvghAq LmRldi5hdmFraW4uY29tgg0qLmF2YWtpbi5saWZlMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYq aHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3JsMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0 cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRw Oi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/ BAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHYAKXm+8J45OSHwVnOfY6V3 5b5XfZxgCvj5TV0mXCVdx4QAAAF7Glf+gAAABAMARzBFAiEAssIz3LaRfGZND14F ltmYaawDmA1X4eIyjycHy2Gh1UcCICgGbqC1S7ICb/vaVp/MPOq0C53cgP/XzN2V lYweNwEyAHYAUaOw9f0BeZxWbbg3eI8MpHrMGyfL956IQpoN/tSLBeUAAAF7Glf+ 5AAABAMARzBFAiABezheQ/Ww2P7S4OfjM34xNX4N9l8rikedD8AcJK0XsgIhAJN2 3L9AndwW19BxinhRs4t2CVkGfWpZk69cOdmv7xXmAHcAQcjKsd8iRkoQxqE6CUKH Xk4xixsD6+tLx2jwkGKWBvYAAAF7Glf+YwAABAMASDBGAiEA5cquCG+qd/102RAq peM3TcL/YILIaYWNl7MwuxiycMYCIQDjpiuNQ2dH2WhGlJJ36Lip/te9Yz8hixNr hu4BGQIOOTANBgkqhkiG9w0BAQsFAAOCAQEAdACxvm81NAgkrjYcfxiplCYw8rHc zeHci4BlD0rcJJvyNRqrpEc7RhyM1DQuSjxvj2b5epc7FcDXzsNTmawqv+in/nxo UKQdjx/Ledy4ENbJNVaQfgIKxT8IWWJ0ErxPNnECVOBrOyAbmNf6X/euk4qVAloY yT/4v64vnQQsUfmtsdJTxzIqod5QGTmdrsGK5EO44nHP2vZ8btzN1vOfq/wfLU6B TtmRzmKCcc7yDWKGGc1fRNmJpmscXSt2Y570ykLEypcz8N+DJKHGpNSlkMWLl/Kb eFwhqu6Ci7vgvoP2tDlWzAsAamQUVHcgyVRmlUo7spxvalN68W5Tddvg4w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2jMgzoF3XA+HmppxCXZe EfBEp8AjogeINOsiDZA0l1RIZqjs0s4NfpIlCSQnWxZpYp1ZDVbDzXTMzthOOiza Li+jrzcZ56eYHjXHzsMvmzUokxXQ6h7b1Fx71+ncxoRT7iPZelkR3V3PFp+XXWX2 Cdo/fTsLeABR75D3AgWZdCztTplofuq3XUYreRXdkwJGdMHznw8H4CEctGeq26xM u2vUmGd3c2RSdmT7Ee8qxSRRlyhUZ9nqGEuJHZjDOk2H8REdEki68S57ngJxbLpQ obK5fJtbptiL73cE7L9/jp89fGDM5K4BBiL+ouatIwvjaPrNxRVcQR2F+HeDqNQL rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14378706631518058740053554281281703984 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-04 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'avakin.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27545162713545075062649659816503465303878175192347407121861280152537708661803897942601754978330341200262099923365747690165162908736383912092056872824682777685014920122473421235254844812783642216006347727690562446774874731488224892673802860633309242870676493956675782743409840388257192779413661603770887642356976057984484571947471323235699919567046072711118744275566395235566658570478956185783449674840314259888137861497056856615887978390847854984393715465591298191393444933443458671359171565305895547685650734021633608409036270434965192676218102143248637539736744431435563188301135924947363007491126906411161568414637 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 48d9b3fbb30479566b3c8a0c3cb9d46e79d8fef9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (294 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lockwood-publishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockwood-publishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lkwd.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lockwoodpublishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.staging.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockwoodpublishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gdpr.avakin.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.avakin.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.avkn.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.avakin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avakin.life' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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