forms.oui.sncf
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 06:a8:e4:a2:7c:8f:c3:39:de:b5:8c:cd:6a:ec:37:7d was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=forms.oui.sncf
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:a8:e4:a2:7c:8f:c3:39:de:b5:8c:cd:6a:ec:37:7dSerial Number (int): 8852311109845245709723455809615837053
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 40:a4:f7:e0:36:30:27:b2:35:6b:d6:8d:7e:82:3e:0c:85:c5:cf:ff
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): db:1d:d4:64:fd:0a:93:b7:90:c2:6e:3b:af:eb:76:ea:59:e4:ff:b8
Fingerprint (sha256): 00:c9:e5:8f:df:a0:c5:8f:00:32:12:79:60:42:fc:e9:c4:af:0a:3d:f6:6d:32:af:50:16:0a:72:fb:bf:84:e9
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate forms.oui.sncf
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for forms.oui.sncf
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
forms.oui.sncf
Other certificates including the domain name oui.sncf
(limited to 100 certificates)
hiflow.oui.sncf
kwsjy9.oui.sncf
ch.jeu.oui.sncf
allianz-travel.oui.sncf
forms.oui.sncf
mesbagages.oui.sncf
globe-ext2-cnit-gw.oui.sncf
hiflow.oui.sncf
da.oui.sncf
fr.jeu.oui.sncf
kwsjy9.oui.sncf
r1ztni.oui.sncf
zum7cc.oui.sncf
ch.hotel.oui.sncf
sstats.oui.sncf
it.hotel.oui.sncf
forms.oui.sncf
v.oui.sncf
v.oui.sncf
eu.jeu.oui.sncf
kwsjy9.oui.sncf
ch.jeu.oui.sncf
globe-ext2-cnit-gw.oui.sncf
mirror.avis.co.uk
sstats.oui.sncf
autotrain.oui.sncf
mirror.avis.co.uk
hotel.oui.sncf
lu.hotel.oui.sncf
autotrain.oui.sncf
*.fret.sncf.com
forms.oui.sncf
zum7cc.oui.sncf
partenariat.oui.sncf
inv3te.oui.sncf
presse.ouitalk.oui.sncf
*.oui.sncf
v.oui.sncf
abonnement.voyages-sncf.com
ao.oui.sncf
oui.sncf
v.oui.sncf
forms.oui.sncf
eu.jeu.oui.sncf
mirror.avis.co.uk
agence.voyages-sncf.com
zum7cc.oui.sncf
bagages.oui.sncf
es.jeu.oui.sncf
v.oui.sncf
be.hotel.oui.sncf
jobs.oui.sncf
nl.hotel.oui.sncf
tgvpop.oui.sncf
it.hotel.oui.sncf
ao.oui.sncf
mesbagages.oui.sncf
partenariat.oui.sncf
presse.ouitalk.oui.sncf
hiflow.oui.sncf
es.jeu.oui.sncf
ouitalk.oui.sncf
zum7cc.oui.sncf
autotrain.oui.sncf
secure.analytics.voyages-sncf.com
inv3te.oui.sncf
fl5dpe.oui.sncf
monchauffeur.oui.sncf
presse.ouitalk.oui.sncf
oui.sncf
oui.sncf
kwsjy9.oui.sncf
partenariat.oui.sncf
partenariat.oui.sncf
*.avis.fr
fl5dpe.oui.sncf
restaurationabord.oui.sncf
presse.ouitalk.oui.sncf
ch.jeu.oui.sncf
ch.jeu.oui.sncf
bagages.oui.sncf
kwsjy9.oui.sncf
presse.vous.sncf-connect.com
secure.analytics.voyages-sncf.com
r1ztni.oui.sncf
interrail.oui.sncf
lebartgv.oui.sncf
mesbagages.oui.sncf
v.oui.sncf
hiflow.oui.sncf
ch.jeu.oui.sncf
hiflow.oui.sncf
eu.jeu.oui.sncf
oui.sncf
*.fret.sncf.com
globe-cnit-gw.oui.sncf
presse.ouitalk.oui.sncf
mta.evtech.oui.sncf
oui.sncf
it.hotel.oui.sncf
kwsjy9.oui.sncf
ch.jeu.oui.sncf
allianz-travel.oui.sncf
forms.oui.sncf
mesbagages.oui.sncf
globe-ext2-cnit-gw.oui.sncf
hiflow.oui.sncf
da.oui.sncf
fr.jeu.oui.sncf
kwsjy9.oui.sncf
r1ztni.oui.sncf
zum7cc.oui.sncf
ch.hotel.oui.sncf
sstats.oui.sncf
it.hotel.oui.sncf
forms.oui.sncf
v.oui.sncf
v.oui.sncf
eu.jeu.oui.sncf
kwsjy9.oui.sncf
ch.jeu.oui.sncf
globe-ext2-cnit-gw.oui.sncf
mirror.avis.co.uk
sstats.oui.sncf
autotrain.oui.sncf
mirror.avis.co.uk
hotel.oui.sncf
lu.hotel.oui.sncf
autotrain.oui.sncf
*.fret.sncf.com
forms.oui.sncf
zum7cc.oui.sncf
partenariat.oui.sncf
inv3te.oui.sncf
presse.ouitalk.oui.sncf
*.oui.sncf
v.oui.sncf
abonnement.voyages-sncf.com
ao.oui.sncf
oui.sncf
v.oui.sncf
forms.oui.sncf
eu.jeu.oui.sncf
mirror.avis.co.uk
agence.voyages-sncf.com
zum7cc.oui.sncf
bagages.oui.sncf
es.jeu.oui.sncf
v.oui.sncf
be.hotel.oui.sncf
jobs.oui.sncf
nl.hotel.oui.sncf
tgvpop.oui.sncf
it.hotel.oui.sncf
ao.oui.sncf
mesbagages.oui.sncf
partenariat.oui.sncf
presse.ouitalk.oui.sncf
hiflow.oui.sncf
es.jeu.oui.sncf
ouitalk.oui.sncf
zum7cc.oui.sncf
autotrain.oui.sncf
secure.analytics.voyages-sncf.com
inv3te.oui.sncf
fl5dpe.oui.sncf
monchauffeur.oui.sncf
presse.ouitalk.oui.sncf
oui.sncf
oui.sncf
kwsjy9.oui.sncf
partenariat.oui.sncf
partenariat.oui.sncf
*.avis.fr
fl5dpe.oui.sncf
restaurationabord.oui.sncf
presse.ouitalk.oui.sncf
ch.jeu.oui.sncf
ch.jeu.oui.sncf
bagages.oui.sncf
kwsjy9.oui.sncf
presse.vous.sncf-connect.com
secure.analytics.voyages-sncf.com
r1ztni.oui.sncf
interrail.oui.sncf
lebartgv.oui.sncf
mesbagages.oui.sncf
v.oui.sncf
hiflow.oui.sncf
ch.jeu.oui.sncf
hiflow.oui.sncf
eu.jeu.oui.sncf
oui.sncf
*.fret.sncf.com
globe-cnit-gw.oui.sncf
presse.ouitalk.oui.sncf
mta.evtech.oui.sncf
oui.sncf
it.hotel.oui.sncf
Certificate
The complete raw certificate details for forms.oui.sncf in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEWzCCA0OgAwIBAgIQBqjkonyPwznetYzNauw3fTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTEyNzAwMDAwMFoXDTI0MTIyNTIzNTk1OVowGTEX MBUGA1UEAxMOZm9ybXMub3VpLnNuY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDq16Qv9sP66WZPsWS2xWYifXmvJtSmLk34mRCVKZi1ZCiel1pSqrpz inSJO2aPPQ5pgWr6Uyqjw5gtZQ1CiOtE5IZKWIiDfSZVqrEnUvakyqWijDlAJfIl tP8ZTEEudzqL0dtayJBcKYXoxkhCDB7Go/AhY7w9SBfo3Et4Jc1NALEyb6I/8lKj SxlqdwgO0E0KEKP3Qp2aSbQYHITqw9cwIXcGTQCTG6fgZnJDO2shwMBusqaKaRFh krjJ04jaUWcLuo87Qn+rY8WH2gEwCxFK4ztBcrnL+hLA0BL1u4AtfF8gROijehpa z0Rhf0xafu0DsGDI60ZMh//twjmVohOvAgMBAAGjggF6MIIBdjAfBgNVHSMEGDAW gBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQUQKT34DYwJ7I1a9aNfoI+ DIXFz/8wGQYDVR0RBBIwEIIOZm9ybXMub3VpLnNuY2YwEwYDVR0gBAwwCjAIBgZn gQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRy dXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFo dHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0 dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMB Af8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB1 m0DC7RnRWCXTRAGwNRICv6ZoJaVqu8pvVu5rrw76N6zUfAAE1qQLgUSlsCesCmBa 6WCI/mkC+k2mcj0yERrBf+IRNBuXyG/MjDW3svYZxKwU3/uv6IeZPGr+o0VD2obJ u9cXhtx7bG1ZqXBmXF+s8NSa6tuQFtGzNw0ehyhwf9uPU6VTZzGtewolO7un4Ujf 2MmFuAIvYOXUMDn0Vb59MRVSOuVmUYZbVo9VCm16t7KvSAqkjhFftSa8QtIR+gw3 o3ZY/+nwz9Pvr9aDOW++Y+iMY01y+yxNY7ggGWsrfIuv/gErfviTtjrOJfK01Y0i 1QsHhfCA6IRTx6LsF+NN -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6tekL/bD+ulmT7FktsVm In15rybUpi5N+JkQlSmYtWQonpdaUqq6c4p0iTtmjz0OaYFq+lMqo8OYLWUNQojr ROSGSliIg30mVaqxJ1L2pMqloow5QCXyJbT/GUxBLnc6i9HbWsiQXCmF6MZIQgwe xqPwIWO8PUgX6NxLeCXNTQCxMm+iP/JSo0sZancIDtBNChCj90Kdmkm0GByE6sPX MCF3Bk0Akxun4GZyQztrIcDAbrKmimkRYZK4ydOI2lFnC7qPO0J/q2PFh9oBMAsR SuM7QXK5y/oSwNAS9buALXxfIEToo3oaWs9EYX9MWn7tA7BgyOtGTIf/7cI5laIT rwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8852311109845245709723455809615837053 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'forms.oui.sncf' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29646100078354724986922341101287978412468514535655897855883459030694408524442437590042427724012138356033524682950786918981685408196942573194901425910571940146248696699591380406258792815908581640766248626865700069004631244281590330220551768893876642728500885951262065151238674685983589129900532289855337375128319081412387667922589564408751729814334044058987556279237501754361982662211256353931149659056025311617134054351095762543938897263641898786680031181530217249929062818641219970157911754661555111255182480898633394674212357302973238880052747956307126348396539699008817470333613897535590439059346362256695194948527 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 40a4f7e0363027b2356bd68d7e823e0c85c5cfff . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'forms.oui.sncf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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