twentyideas.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0f:01:90:f6:7a:87:f0:57:16:e7:11:b2:82:89:fe:b1 was issued on by Amazon.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=twentyideas.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0f:01:90:f6:7a:87:f0:57:16:e7:11:b2:82:89:fe:b1Serial Number (int): 19946552428664688429078736513968766641
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: cb:f6:75:ac:96:d9:7d:9b:88:96:6a:b2:62:e4:92:d2:32:8d:80:5d
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 03:26:b6:8f:72:47:c2:79:d3:71:80:c2:98:34:83:54:aa:85:a4:f4
Fingerprint (sha256): e5:0b:ec:8e:78:c1:d6:71:7d:09:28:b0:bf:1f:6a:2e:ff:68:01:f9:9b:2c:ec:f4:bc:66:3b:c8:a1:fd:7a:38
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate twentyideas.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for twentyideas.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
twentyideas.com
next.twentyideas.com
www.twentyideas.com
staging.twentyideas.com
dev.twentyideas.com
next.twentyideas.com
www.twentyideas.com
staging.twentyideas.com
dev.twentyideas.com
Other certificates including the domain name twentyideas.com
(limited to 100 certificates)
m-chemical.deepscholar.app
www.leonburger.fr
futuresoccerplayer.com
unifi2.twentyideas.com
clickcity.twentyideas.com
inoapp.com
lf-droner.dk
camwilcox.com
link.jokateszunk.hu
widget-sandbox.billmybank.com
www.sapp.mx
files.nulabs.it
xpop.twentyideas.com
www.mac-n.com
www.codein.ca
staging-www.masterytrack.twentyideas.com
jamieandlee.com
unifi2.twentyideas.com
xpop-staging.twentyideas.com
www.the-predictor.com
odyssee.jp
purrlocator.com
abdyaqbi.fun
xpop.twentyideas.com
sexbot.opendream.co.th
www.takealuke.com
recipeplanet.io
www.kspgindia.com
cevik.app
crtcheck1.task-connect.co.jp
door.twentyideas.com
angelo-fernandes-dev.fr
blog.sinanbolel.com
www.namanpujari.com
xpop.twentyideas.com
loggbok.net
www.fedtaxbiz.com
www.dhwani.app
referral.foodbus.app
heavenlytouchcs.econyse.com
clickcity-portal.twentyideas.com
unifi2.twentyideas.com
eliteresidencial.porcelanosapartners.com
www.marcelcominotto.be
memo-test.sunsuria.com
twentyideas.com
link.omrx.in
www.sofabot.ai
loggbok.net
anket.foodium.app
www.finn-veien.no
stxaviersvkm.talentester.com
www.drivedy.com
clickcity-dev.twentyideas.com
newssense.co
clickcity-portal-dev.twentyideas.com
diagonalconstructora.com
clickcity-portal-dev.twentyideas.com
theastrology.app
www.finn-veien.no
intellibaby.app
new.twentyideas.com
worker.link.alpha.gigsmart.com
twentyideas.com
www.bruiloft-bob-en-kimberly.nl
co-house.be
eql.ai
athikkal.com
battlefit.app
www.twentyideas.com
answerforwhostheceleb.africasunrise.com
nmbrs.pensioeninzichtelijk.nl
ifd-salzburg.at
www.japflip.com
givenswap.givenswap.com
www.sourcethe.coffee
www.dhwani.app
certificaciones.diazar.com
5club888-admin.minigame.pro
www.brainflick.ai
www.pollinate.work
resume.potateros.xyz
twentyideas.com
ktimes.app
twentyideas.com
talbotracing.ca
twentyideas.com
juhispeaks.com
account.snappyxo.io
amanjamin.com
jcysu.com
www.hughedwards.dev
staging-www.masterytrack.twentyideas.com
odyssee.jp
extendedu.org
abdyaqbi.fun
www.vertices.co.za
listus.app
io.deeploop.com
dealertouch.app
www.leonburger.fr
futuresoccerplayer.com
unifi2.twentyideas.com
clickcity.twentyideas.com
inoapp.com
lf-droner.dk
camwilcox.com
link.jokateszunk.hu
widget-sandbox.billmybank.com
www.sapp.mx
files.nulabs.it
xpop.twentyideas.com
www.mac-n.com
www.codein.ca
staging-www.masterytrack.twentyideas.com
jamieandlee.com
unifi2.twentyideas.com
xpop-staging.twentyideas.com
www.the-predictor.com
odyssee.jp
purrlocator.com
abdyaqbi.fun
xpop.twentyideas.com
sexbot.opendream.co.th
www.takealuke.com
recipeplanet.io
www.kspgindia.com
cevik.app
crtcheck1.task-connect.co.jp
door.twentyideas.com
angelo-fernandes-dev.fr
blog.sinanbolel.com
www.namanpujari.com
xpop.twentyideas.com
loggbok.net
www.fedtaxbiz.com
www.dhwani.app
referral.foodbus.app
heavenlytouchcs.econyse.com
clickcity-portal.twentyideas.com
unifi2.twentyideas.com
eliteresidencial.porcelanosapartners.com
www.marcelcominotto.be
memo-test.sunsuria.com
twentyideas.com
link.omrx.in
www.sofabot.ai
loggbok.net
anket.foodium.app
www.finn-veien.no
stxaviersvkm.talentester.com
www.drivedy.com
clickcity-dev.twentyideas.com
newssense.co
clickcity-portal-dev.twentyideas.com
diagonalconstructora.com
clickcity-portal-dev.twentyideas.com
theastrology.app
www.finn-veien.no
intellibaby.app
new.twentyideas.com
worker.link.alpha.gigsmart.com
twentyideas.com
www.bruiloft-bob-en-kimberly.nl
co-house.be
eql.ai
athikkal.com
battlefit.app
www.twentyideas.com
answerforwhostheceleb.africasunrise.com
nmbrs.pensioeninzichtelijk.nl
ifd-salzburg.at
www.japflip.com
givenswap.givenswap.com
www.sourcethe.coffee
www.dhwani.app
certificaciones.diazar.com
5club888-admin.minigame.pro
www.brainflick.ai
www.pollinate.work
resume.potateros.xyz
twentyideas.com
ktimes.app
twentyideas.com
talbotracing.ca
twentyideas.com
juhispeaks.com
account.snappyxo.io
amanjamin.com
jcysu.com
www.hughedwards.dev
staging-www.masterytrack.twentyideas.com
odyssee.jp
extendedu.org
abdyaqbi.fun
www.vertices.co.za
listus.app
io.deeploop.com
dealertouch.app
Certificate
The complete raw certificate details for twentyideas.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGJTCCBQ2gAwIBAgIQDwGQ9nqH8FcW5xGygon+sTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMDkyOTAwMDAwMFoXDTI0MTAyNzIzNTk1OVowGjEY MBYGA1UEAxMPdHdlbnR5aWRlYXMuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAzgxxo05TmjCmQPgfawXL0DNpdSIFy85fxzCsCp4xL50WDyn/t/y0 Kmh3eTTQeqz0yG2wSX4GZ0zWxFgjkkvqC311ebs3cieM7lpjhT8rQAPVN2JUUXV5 B/ZGMfrLVwSlqPeidvwCFG5g9qop43voe9l+1QEAXAVjIf9TgxUbXtRbcZOJ+DrI HePMFFLXtbssm/9ws8p4j4nUfy/a9FGQwJbBOS8eLLARaxIhLPVQO9vv+aZ9M97A ZaPTeHYuQXpxTPYosS3ZoVgKCUy596PO1mf3uGZPVJtAZ3RVgFqd2MJLFcwstvP9 Tv+sNs0N+let9PnuNsGPjHslKdWp+iVYDQIDAQABo4IDQzCCAz8wHwYDVR0jBBgw FoAUVdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFMv2dayW2X2biJZqsmLk ktIyjYBdMHMGA1UdEQRsMGqCD3R3ZW50eWlkZWFzLmNvbYIUbmV4dC50d2VudHlp ZGVhcy5jb22CE3d3dy50d2VudHlpZGVhcy5jb22CF3N0YWdpbmcudHdlbnR5aWRl YXMuY29tghNkZXYudHdlbnR5aWRlYXMuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIB MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw OwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMy5hbWF6b250cnVzdC5j b20vcjJtMDMuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDov L29jc3AucjJtMDMuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8v Y3J0LnIybTAzLmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jZXIwDAYDVR0TAQH/BAIw ADCCAYAGCisGAQQB1nkCBAIEggFwBIIBbAFqAHcA7s3QZNXbGs7FXLedtM0TojKH Rny87N7DUUhZRnEftZsAAAGK4z2KeQAABAMASDBGAiEAvscH0dOz4xHLzAdttNnp p8FLX9yTyr6RzND2knD6U2kCIQCF3sGtwRwFbV6Wbe631Cso9AgK5yoQeYLF2Yy/ GbxJLAB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABiuM9iiIA AAQDAEgwRgIhAMREoTNepqmGVJgzIpd/qrwAAT23asotS4/eO+6tFaadAiEAvBQd wBD/STadPiGX5j0IjM1zVYKIagFe/0XB1lg5UXIAdgDatr9rP7W2Ip+bwrtca+hw kXFsu1GEhTS9pD0wSNf7qwAAAYrjPYoAAAAEAwBHMEUCIC18JF9+3QZ8pmRJI4fU nnLvLjY/pjsOJPkrSnPRrK6GAiEA+f0eJWkeQGoHwMSCTFWE2Z2PhsuiimSJrdqh sUXFigQwDQYJKoZIhvcNAQELBQADggEBAIbH9PC+6XVUuxwnx5cT3V8tKPXXYZCf epkKvFm/aJGduTGy/HFxExJ9Jz/nDdTomYicakNi38iaJ+J1aZpRQVlF1wcIMCYE NHHAZBTk+12+qkVs6j7mek1NDeMeO3R5orQfBuAUnrU+VhZcyjC0YY9mfWcIkwfl c7Rw8ox8ljI+DK5IpzfwjSWfgvyt3FcZuM/Ad+tMSl5UdHR2cc0rcBqHE2tn/T+8 g+DHCGy3TEXCz76SXkJFxDCxq/lYVAlZidkxOJxgPe8TFjD+OLu1ic1xmCYfK2Df RxEYnw/Xr5WRPqFIcky59l99E3knOmCEE5DY1ozHRx3oIju8A1+KlOY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzgxxo05TmjCmQPgfawXL 0DNpdSIFy85fxzCsCp4xL50WDyn/t/y0Kmh3eTTQeqz0yG2wSX4GZ0zWxFgjkkvq C311ebs3cieM7lpjhT8rQAPVN2JUUXV5B/ZGMfrLVwSlqPeidvwCFG5g9qop43vo e9l+1QEAXAVjIf9TgxUbXtRbcZOJ+DrIHePMFFLXtbssm/9ws8p4j4nUfy/a9FGQ wJbBOS8eLLARaxIhLPVQO9vv+aZ9M97AZaPTeHYuQXpxTPYosS3ZoVgKCUy596PO 1mf3uGZPVJtAZ3RVgFqd2MJLFcwstvP9Tv+sNs0N+let9PnuNsGPjHslKdWp+iVY DQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19946552428664688429078736513968766641 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'twentyideas.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26011227137865386660044028575815460334786146494028659360642206735164528859698839964510718297959320661361392770979118486476289720869660072336181656486422319695079298803251307389610276019373246661473802052516668483789174651356034197781127371673895892493319075956354787443657914087970538817171674864670240386959757993082001970630569351858693578794600875033866104374653470684193318948308119682420885432014969617907794012949242994468988472729217616191929826710169077118515283015829538969821999117130085269020259850070158544304254519043914201960639381738293110726351081037720166459550137081060449511656017610057331278960653 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cbf675ac96d97d9b88966ab262e492d2328d805d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'twentyideas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'next.twentyideas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.twentyideas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.twentyideas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.twentyideas.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 016a007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ae33d8a790000040300483046022100bec707d1d3b3e311cbcc076db4d9e9a7c14b5fdc93cabe91ccd0f69270fa536902210085dec1adc11c056d5e966deeb7d42b28f4080ae72a107982c5d98cbf19bc492c00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ae33d8a220000040300483046022100c444a1335ea6a98654983322977faabc00013db76aca2d4b8fde3beead15a69d022100bc141dc010ff49369d3e2197e63d088ccd735582886a015eff45c1d658395172007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018ae33d8a00000004030047304502202d7c245f7edd067ca664492387d49e72ef2e363fa63b0e24f92b4a73d1acae86022100f9fd1e25691e406a07c0c4824c5584d99d8f86cba28a6489addaa1b145c58a04 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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