devtracker.fcdo.gov.uk
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0c:cc:68:81:d0:55:69:5a:ee:ff:f9:e1:c5:65:06:e1 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=devtracker.fcdo.gov.uk
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0c:cc:68:81:d0:55:69:5a:ee:ff:f9:e1:c5:65:06:e1Serial Number (int): 17012084164067977688305990025202697953
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 94:b0:06:c9:c5:d1:3e:a7:53:27:7c:86:dc:2f:76:b1:3c:32:bc:d7
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 2f:7a:f5:93:73:17:05:21:42:e8:fc:1f:33:c8:03:ec:26:7d:fc:3b
Fingerprint (sha256): eb:27:6c:6c:21:52:1d:6c:99:eb:b0:0c:6e:31:00:f8:db:39:42:0c:51:f8:18:86:a7:bb:dd:09:3b:d9:dd:04
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate devtracker.fcdo.gov.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for devtracker.fcdo.gov.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
devtracker.fcdo.gov.uk
Other certificates including the domain name fcdo.gov.uk
(limited to 100 certificates)
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
eapp.si.orbit-nonprod.consularhelp.fcdo.gov.uk
development-lwnnuo.forms.digital.fcdo.gov.uk
blogs.fcdo.gov.uk
*.api.hera.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
development-pgadmin-lwnnuo.forms.digital.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
api.hera.fcdo.gov.uk
protocol.fcdo.gov.uk
dev.lb.forms.digital.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
crisis.hub.fcdo.gov.uk
admin-development.forms.digital.fcdo.gov.uk
*.analytics.hera.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
crisis.integration.dev.hub.fcdo.gov.uk
protocol.fcdo.gov.uk
crisis.exercise.fcdo.gov.uk
devtracker.fcdo.gov.uk
pgadmin.hub.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
auth.broadband.fcdo.gov.uk
treaties.fcdo.gov.uk
www.cscuk.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
*.app.hera.fcdo.gov.uk
docs.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
post.hub.fcdo.gov.uk
preprodsu-cms.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
www-pgadmin-vmdock.forms.digital.fcdo.gov.uk
post.hub.fcdo.gov.uk
www-vmdock.forms.digital.fcdo.gov.uk
www.cscuk.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
*.pro.internal.hub.fcdo.gov.uk
app.hera.fcdo.gov.uk
*.fap.hera.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
*.app.hera.fcdo.gov.uk
blogs.fcdo.gov.uk
treaties.fcdo.gov.uk
contactcentre.hub.fcdo.gov.uk
contactcentre.hub.fcdo.gov.uk
blogs.fcdo.gov.uk
pgadmin.integration.dev.hub.fcdo.gov.uk
admin.forms.digital.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
*.app.hera.fcdo.gov.uk
*.int.internal.dev.hub.fcdo.gov.uk
devtracker.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
ftps.notprod.consular-hce.fcdo.gov.uk
aac.lb.forms.digital.fcdo.gov.uk
analytics.hera.fcdo.gov.uk
protocol.fcdo.gov.uk
*.fhp.hera.fcdo.gov.uk
devtracker.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
eapp.si.orbit-nonprod.consularhelp.fcdo.gov.uk
development-lwnnuo.forms.digital.fcdo.gov.uk
blogs.fcdo.gov.uk
*.api.hera.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
development-pgadmin-lwnnuo.forms.digital.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
api.hera.fcdo.gov.uk
protocol.fcdo.gov.uk
dev.lb.forms.digital.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
crisis.hub.fcdo.gov.uk
admin-development.forms.digital.fcdo.gov.uk
*.analytics.hera.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
crisis.integration.dev.hub.fcdo.gov.uk
protocol.fcdo.gov.uk
crisis.exercise.fcdo.gov.uk
devtracker.fcdo.gov.uk
pgadmin.hub.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
auth.broadband.fcdo.gov.uk
treaties.fcdo.gov.uk
www.cscuk.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
*.app.hera.fcdo.gov.uk
docs.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
post.hub.fcdo.gov.uk
preprodsu-cms.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
www-pgadmin-vmdock.forms.digital.fcdo.gov.uk
post.hub.fcdo.gov.uk
www-vmdock.forms.digital.fcdo.gov.uk
www.cscuk.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
*.pro.internal.hub.fcdo.gov.uk
app.hera.fcdo.gov.uk
*.fap.hera.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
*.app.hera.fcdo.gov.uk
blogs.fcdo.gov.uk
treaties.fcdo.gov.uk
contactcentre.hub.fcdo.gov.uk
contactcentre.hub.fcdo.gov.uk
blogs.fcdo.gov.uk
pgadmin.integration.dev.hub.fcdo.gov.uk
admin.forms.digital.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
blogs.fcdo.gov.uk
*.app.hera.fcdo.gov.uk
*.int.internal.dev.hub.fcdo.gov.uk
devtracker.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
ftps.notprod.consular-hce.fcdo.gov.uk
aac.lb.forms.digital.fcdo.gov.uk
analytics.hera.fcdo.gov.uk
protocol.fcdo.gov.uk
*.fhp.hera.fcdo.gov.uk
devtracker.fcdo.gov.uk
protocol.fcdo.gov.uk
protocol.fcdo.gov.uk
blogs.fcdo.gov.uk
Certificate
The complete raw certificate details for devtracker.fcdo.gov.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF1zCCBL+gAwIBAgIQDMxogdBVaVru//nhxWUG4TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDQxNTAwMDAwMFoXDTI1MDUxNDIzNTk1OVowITEf MB0GA1UEAxMWZGV2dHJhY2tlci5mY2RvLmdvdi51azCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAJUpxEEskEqUEZGTVfX3tiloRy/VaqXFCHFP7s+bFHKA i6OHL0fNYb6eGa4JcBPTJX5PdRE/9RrfdKUYJuloJrjMl0/cVVwnozM4Ph40LN52 QWBt394lqsxGXoxblt1HIFyKPbl0XVivYAhULvNqdlxFyFcgA2ZAOPYQS5REuKNV YXCZEyqcJ6PJAi3/4S6IXmf39IhcRye5sHzYqr7/9/a9gKJhA68aITkbEUPRL/Ni QjKN4wbagOoNXh2vWzZ+874Lljyswog6J1UfrYy2dPFVVEvbx32kPWp6+IACqERt mjXAU/al4oFYlsmztKwaA4ISwYYzf+0N+oo2j7kBek8CAwEAAaOCAu4wggLqMB8G A1UdIwQYMBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBSUsAbJxdE+ p1MnfIbcL3axPDK81zAhBgNVHREEGjAYghZkZXZ0cmFja2VyLmZjZG8uZ292LnVr MBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2Ny bC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3JsMHUGCCsGAQUFBwEBBGkw ZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDIuYW1hem9udHJ1c3QuY29t MDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAyLmFtYXpvbnRydXN0LmNvbS9y Mm0wMi5jZXIwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFn AHUATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGO3z1lfQAABAMA RjBEAiBBjMg42uAuyWWXbCVvHP9ygZjpOq5Y6NCc6bUtfjGlewIgCKjEPhSnbLEa ZiAMR7WEPgHML9oBOK+4llY8XQ1efl4AdgB9WR4S4XgqexxhZ3xe/fjQh1wUoE6V nrkDL9kOjC55uAAAAY7fPWV8AAAEAwBHMEUCIQDRti4UutrZlEwQEFIpJa4ncSeg i9n6jGB8T+y1hwM8jwIgZa0CWSOWFwBlE7S0AVpuj7lM7muxvS8gr/ZJoIsJmZAA dgDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAY7fPWWQAAAEAwBH MEUCIEl+iZI/FdWoeHA6cWYwSoG5TkSjHkYnIbBLTOr9mO2/AiEApcK9yGoXkcOU JNsYkvGQ9F7IYhYUqDi54WwiQsOae8cwDQYJKoZIhvcNAQELBQADggEBALSZRjaz wdV9Z6y3YNZNnptVpGBOLNT+7pJqGRMcEKAW6AAtg98AB23NTvybn7WiO6sSFzhb 43GimwnpBvPytxTr38K1LZl/MGolwf5fSFk/kUpsy2W1SgjSS9UX6fX4qaHdQvH5 6notrJ+wF/7ngeN9LLPME/lpASiagn4hZLvyr4JE+LRCWYwHoxI3zFmbVo+SkYay RYqFYMsfXhL/nEIy7zPjwgfBCbXMSd48MaZ+1Gu3U0ffV8sYwQw5TF3SPLWTh6h3 BYZImrWfR8TC2pxRLbNatDdhAlUD9Chwit04kSz3BYMsoqJGVW/mMIhcbWLoyHTj bUYLbG8KayNDGs4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlSnEQSyQSpQRkZNV9fe2 KWhHL9VqpcUIcU/uz5sUcoCLo4cvR81hvp4ZrglwE9Mlfk91ET/1Gt90pRgm6Wgm uMyXT9xVXCejMzg+HjQs3nZBYG3f3iWqzEZejFuW3UcgXIo9uXRdWK9gCFQu82p2 XEXIVyADZkA49hBLlES4o1VhcJkTKpwno8kCLf/hLoheZ/f0iFxHJ7mwfNiqvv/3 9r2AomEDrxohORsRQ9Ev82JCMo3jBtqA6g1eHa9bNn7zvguWPKzCiDonVR+tjLZ0 8VVUS9vHfaQ9anr4gAKoRG2aNcBT9qXigViWybO0rBoDghLBhjN/7Q36ijaPuQF6 TwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17012084164067977688305990025202697953 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'devtracker.fcdo.gov.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18830103327626330673058258515799444324854719321107423407736092599620382200649164137421880473504083282286356766613390874247956343018763194916120282157339212305395667254077499121752007899929245466548296601638268893305683247793988949676794934579819593643740113377736492852244772171140633949671770522878640317489570533577858369499009682270185314775555568023515184458561705582849565634380547795534411814071324633570313516286358579398584454887282635006918150344847457893974027435207172868940194843106391991602088473963009475949063089935749884774048397001487524170864901260454114466464606908939302119072351867262569715694159 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 94b006c9c5d13ea753277c86dc2f76b13c32bcd7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'devtracker.fcdo.gov.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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