proxy.uat.phoenix.si.siemens.cloud

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 06:32:ca:93:be:ad:97:c4:bd:05:63:9b:ed:13:a4:f9 was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=proxy.uat.phoenix.si.siemens.cloud

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 06:32:ca:93:be:ad:97:c4:bd:05:63:9b:ed:13:a4:f9
Serial Number (int): 8239091569928076592502678611696002297
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: ec:9f:39:2b:53:53:68:68:c7:9a:fa:95:0c:35:e1:7e:33:5c:80:3d
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): 55:36:56:ad:8e:94:4e:29:c4:e0:bc:4a:97:06:9a:d8:25:37:4f:a1
Fingerprint (sha256): 01:4f:0d:30:3a:98:50:e0:97:ac:cb:2d:fa:59:3e:16:af:d5:87:cc:97:82:74:6b:9e:0b:77:f0:f1:4e:f3:be

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate proxy.uat.phoenix.si.siemens.cloud

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for proxy.uat.phoenix.si.siemens.cloud

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

proxy.uat.phoenix.si.siemens.cloud
*.proxy.uat.phoenix.si.siemens.cloud

Other certificates including the domain name siemens.cloud

(limited to 100 certificates)
cache.sam.dev.phoenix.si.siemens.cloud
jira.gdmc.siemens.cloud
pilot2.helpmee.siemens.cloud
demo-frankfurt.iip.siemens.cloud
saleskits.siemens.cloud
*.scoreeks1.infra.score.siemens.cloud
cic-berlin.siemens.cloud
alb.internal.app-feat.sigreen-dev.siemens.cloud
*.stephan.sp275.tiat.siemens.cloud
fleetmanager.demo-evosoft.siemens.cloud
sn-189.opscenter-dev.siemens.cloud
annotation.theia.ct-rda-bam-mic.siemens.cloud
jira.siemens.cloud
cssfe.bt-dev.siemens.cloud
confluence.gdmc.siemens.cloud
api.sam.dev.phoenix.si.siemens.cloud
example.gwap-dev.siemens.cloud
co.siemens.cloud
api.joe.dev.phoenix.si.siemens.cloud

*.ecar-dev.masglobal.siemens.cloud
soc.siemens.cloud
sidriveiqtwin-lda-q.siemens.cloud
*.spicetest.siemens.cloud
pulse.siemens.cloud
tmb.security-int.siemens.cloud
sse-mc-pvt.smsv.siemens.cloud
sse.mc-pvt.smsq.siemens.cloud
nbm-dev.si.siemens.cloud
tms.daac-apps.siemens.cloud
idaas.siemens.cloud
rabbitmq.miqtest.daai.siemens.cloud
iot-apm-manager.mosaic-dev.siemens.cloud
sifrai.siemens.cloud
fair.navigator.gds-energy.siemens.cloud
*.naf-pipeline.nav2cloud-build.bt.siemens.cloud
proxy.uat.phoenix.si.siemens.cloud
simpleaccess-siemens-id.siemens.cloud
platform.int.360viewer.bpcloud.siemens.cloud
siemensfm.idea-company.siemens.cloud
*.eightfold.ai
evoawsesp.sap.siemens.cloud
alb.internal.app-ops-jio.sigreen-dev.siemens.cloud
contactdb-stage.api.singularity.eb.siemens.cloud
btssp-smtp.sz.bt.siemens.cloud
mr-1003.dev.phoenix.si.siemens.cloud
qa-dcs.apps.siemens.cloud
*.fleetmanager.emob-fleetportal-qa.siemens.cloud
soc-x.siemens.cloud
myid-test.hackathon.daai.siemens.cloud
snapp.scm.mosaic-qa.siemens.cloud
app1.mendix.siemens.cloud
allocation-uat.siemens.cloud
*.authorization.siveillance-dev.siemens.cloud
flex-ops-advisor-be.mosaic-qa.siemens.cloud
sj-299-nvme-uuid.opscenter-dev.siemens.cloud
portfolio.mosaic-dev.siemens.cloud
*.profiles.prod.dmp.siemens.cloud
siemens-apm-appdevelopment.mosaic-dev.siemens.cloud
genelba-apm-andsrv.mosaic-dev.siemens.cloud
redirects.dc.siemens.com
*.score01.itips.score.siemens.cloud
zero-engineering.apps.siemens.cloud
*.rpe.global.siemens.cloud
api.pages.playground.isec.siemens.cloud
*.k8.siveillance.siemens.cloud
*.idaas.siemens.cloud
app-ops-jio.sigreen-dev.siemens.cloud
*.istio.thomas.sp275.tiat.siemens.cloud
mlhub.ct-rda-bam-mic.siemens.cloud
*.test.starter-testing.xo.siemens.cloud
sse-mc-alb.smsv.siemens.cloud
jira-test.sz.bt.siemens.cloud
alfredo.siemens.cloud
silounge-poc.siemens.cloud
iot-apm-appsrv.mosaic-dev.siemens.cloud
access.bt.siemens.cloud
dcs.apps.siemens.cloud
api.aws.siemens.cloud
api.dev-ram.apps.siemens.cloud
evoawsesd.opscenter-dev.siemens.cloud
demo.burstdetection.apps.siemens.cloud
api.joe.dev.phoenix.si.siemens.cloud
sn-cops-72.opscenter-dev.siemens.cloud
qlik-test.si.siemens.cloud
*.ir.adminaccess.siemens.cloud
documentsservice.spicetest.siemens.cloud
acmdemo.apm.siemens.cloud
rancher.tiat.siemens.cloud
pl-cops-312.opscenter-dev.siemens.cloud
local-2380272-pvt.dev.planimporterapi.bpcloud.siemens.cloud
siemensfm.idea-company.siemens.cloud
data-commons.mobilityai.siemens.cloud
packages.hpc.siemens.cloud
*.siq-dev.apps.siemens.cloud
shell.playground.isec.siemens.cloud
*.naf-pipeline.nav2cloud-build.bt.siemens.cloud
app-ops-cicd.sigreen-dev.siemens.cloud
int.motion.siemens.cloud
*.vclustersample.infra.score.siemens.cloud

Certificate

The complete raw certificate details for proxy.uat.phoenix.si.siemens.cloud in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIEqTCCA5GgAwIBAgIQBjLKk76tl8S9BWOb7ROk+TANBgkqhkiG9w0BAQsFADA8
MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g
UlNBIDIwNDggTTAyMB4XDTIzMTIxNDAwMDAwMFoXDTI1MDExMTIzNTk1OVowLTEr
MCkGA1UEAxMicHJveHkudWF0LnBob2VuaXguc2kuc2llbWVucy5jbG91ZDCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOiVDPBkQ1M3m8gYECjMj6pud6Bp
LfiHvHn/idi/VvZq64hqLLDvsduUBQ7JLU3HF+ll8QrdZBgBdDxGqzRTAGWXyrMS
fCTWx6JpMUkRaX9dIgdVZjwJ894lEa8s2mLDUHvbQjUvWPV6VAMe1BfCNT+LzI1Q
f1HVAa08j7T82FKuMf7OsKnEo59zql6XrIxBh//Fe1rVGDKPxs62a2DF0dOfQUJh
Jln/x2yL9D0urnA+7J7yWGgh57MNCrr4JVTZ248far5BARRngsXITyqs0LSfoCzD
sWo4JKJyIwEepqoI3W45KkyeqoW6LQLo3Zod0j3mQbjJb+1BLYhSolGmL3sCAwEA
AaOCAbQwggGwMB8GA1UdIwQYMBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1Ud
DgQWBBTsnzkrU1NoaMea+pUMNeF+M1yAPTBTBgNVHREETDBKgiJwcm94eS51YXQu
cGhvZW5peC5zaS5zaWVtZW5zLmNsb3VkgiQqLnByb3h5LnVhdC5waG9lbml4LnNp
LnNpZW1lbnMuY2xvdWQwEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQD
AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCg
LqAshipodHRwOi8vY3JsLnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jcmww
dQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMi5h
bWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDIuYW1h
em9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkC
BAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB60XxCtiOrnfzPz9MVSg51W4y3
IezQ3skLFe3l1TdIAKwMEunX2hbVw3sxIaGl6Yscgw2DE6WpFd32Kch7vgiTBNF7
Q/jjvuGs2IlXGfCawKGJUoa8To5IgX+61Jh7pwnBHCrwfWq3VR2DFaBF9epa1RVA
94bs4pRAowzNlRwFO3oHAxQxrrlgZjktVJOnw0+igqnMrATKTsa7yLCZnPcWghSQ
dYQX7vT0moh38wF/G3lhwEL42P5o1qA8iTejaq9baRT6gj136aSfOXbFN+iVG1zM
Uutamvd8VrN6Dx7CZNTs75oDh7YgHhMVMeq5XDqLgSsX2+GMLJ3G4C8Ndf1I
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6JUM8GRDUzebyBgQKMyP
qm53oGkt+Ie8ef+J2L9W9mrriGossO+x25QFDsktTccX6WXxCt1kGAF0PEarNFMA
ZZfKsxJ8JNbHomkxSRFpf10iB1VmPAnz3iURryzaYsNQe9tCNS9Y9XpUAx7UF8I1
P4vMjVB/UdUBrTyPtPzYUq4x/s6wqcSjn3OqXpesjEGH/8V7WtUYMo/GzrZrYMXR
059BQmEmWf/HbIv0PS6ucD7snvJYaCHnsw0KuvglVNnbjx9qvkEBFGeCxchPKqzQ
tJ+gLMOxajgkonIjAR6mqgjdbjkqTJ6qhbotAujdmh3SPeZBuMlv7UEtiFKiUaYv
ewIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 8239091569928076592502678611696002297
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-11 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'proxy.uat.phoenix.si.siemens.cloud'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29360786314287263958758312469939294583323947323850428993076182608736272695396589474480286404864895598268948609243975560150836124527435331346585761219291757655968282420749664266113823888586986754800214082895285562732177644271757003885362764288629482710085704090726474173970546967857602678128400673534588324855191483285980406456518245509466651778188078887956443439330447744347136206780551394747312797086094605609220307364225728826163932254287484350518005420057538265506804085658039649242159059056149984017900133556664239128626892953042336087557550097629821139562197574394406435165033070022340018603772342992391150907259
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ec9f392b53536868c79afa950c35e17e335c803d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (76 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'proxy.uat.phoenix.si.siemens.cloud'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.proxy.uat.phoenix.si.siemens.cloud'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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