signin.fao.org
Issued by Amazon
About this certificate
This digital certificate with serial number 02:c8:fe:17:74:1e:49:3b:78:1d:37:bd:e4:6b:26:46 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=signin.fao.org
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:c8:fe:17:74:1e:49:3b:78:1d:37:bd:e4:6b:26:46Serial Number (int): 3702068953500737367511912667618682438
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 98:28:08:02:69:ec:d8:29:ff:7f:1f:4c:4f:6f:8c:4f:b4:0a:f7:02
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 5a:91:0f:3f:04:00:18:20:f8:f8:ab:e9:39:6d:de:72:82:49:49:b2
Fingerprint (sha256): 02:29:8d:1c:3e:b8:0f:d9:23:af:07:f8:2c:05:66:63:ea:d5:ee:60:e6:7b:0b:ac:5f:58:f9:ed:18:2e:ba:22
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate signin.fao.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for signin.fao.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
signin.fao.org
Other certificates including the domain name fao.org
(limited to 100 certificates)
cds4.cvent.com
*.fao.org
cognito-poc.apps.fao.org
*.fao.org
api-digital.apps.fao.org
mediabase.fao.org
sni.cloudflaressl.com
sni.cloudflaressl.com
signin.fao.org
*.fao.org
www.castleislandband.com
signin.fao.org
people.hivemint.xyz
sni.cloudflaressl.com
sni.cloudflaressl.com
*.fao.org
*.apps.fao.org
averyano.com
sni.cloudflaressl.com
accentreductiontampabay.com
www.anriar.com
merchant.engagesystems.io
auth.data.apps.fao.org
sni.cloudflaressl.com
keeptweaking.com
cds4.cvent.com
digital-assets.fao.org
cds4.cvent.com
mediabase.fao.org
gismgr.review.fao.org
www.emere.tk
api-digital-edge.review.fao.org
ciomsdev.apps.fao.org
fimisqa.fao.org
excitation.app
faolex.fao.org
gaez.fao.org
sni.cloudflaressl.com
forms.apps.fao.org
cds4.cvent.com
intro2db.mkss.net
cds4.cvent.com
www.qbila.org
scan.watdrinkje.be
sawickiphu.pl
cds4.cvent.com
cds4.cvent.com
heraldbox.com
alb-auth.aws.fao.org
*.fao.org
www.vaporpassadoria.com.br
*.fao.org
sincelast.app
petnoter.com
coact.space
agris.fao.org
miembros.marcelodaluz.com
link.trueid.net
*.fao.org
www.direct-law.co.kr
*.fao.org
netex-validation-reports.dev.entur.org
io.apps.fao.org
account.alwaseet-poultry.com
chintpatel.com
www.newbrains.net
*.fao.org
cds4.cvent.com
*.fao.org
mediabase.fao.org
www.utupay.africa
auth.data.review.fao.org
*.fao.org
mediabase.fao.org
www.ragstorichies.io
app.furbol.nai.dev
grablabs.com
cds4.cvent.com
bussiness.menupool.com
preportal.bee-fulfilment.nl
agris.fao.org
*.fao.org
assets.aims.fao.org
fapda.review.fao.org
sni.cloudflaressl.com
faolex.fao.org
api-globalrecord-staging.review.fao.org
co-fest.ideators.cc
submatch.io
canoe.orchidisland.tw
ciomsdev.apps.fao.org
invite.indiafintech.com
forms.apps.fao.org
fimis.fao.org
viewsme.com
sni.cloudflaressl.com
impuls.dev
sni.cloudflaressl.com
www.michelyraul.com
www.sudoku100.de
*.fao.org
cognito-poc.apps.fao.org
*.fao.org
api-digital.apps.fao.org
mediabase.fao.org
sni.cloudflaressl.com
sni.cloudflaressl.com
signin.fao.org
*.fao.org
www.castleislandband.com
signin.fao.org
people.hivemint.xyz
sni.cloudflaressl.com
sni.cloudflaressl.com
*.fao.org
*.apps.fao.org
averyano.com
sni.cloudflaressl.com
accentreductiontampabay.com
www.anriar.com
merchant.engagesystems.io
auth.data.apps.fao.org
sni.cloudflaressl.com
keeptweaking.com
cds4.cvent.com
digital-assets.fao.org
cds4.cvent.com
mediabase.fao.org
gismgr.review.fao.org
www.emere.tk
api-digital-edge.review.fao.org
ciomsdev.apps.fao.org
fimisqa.fao.org
excitation.app
faolex.fao.org
gaez.fao.org
sni.cloudflaressl.com
forms.apps.fao.org
cds4.cvent.com
intro2db.mkss.net
cds4.cvent.com
www.qbila.org
scan.watdrinkje.be
sawickiphu.pl
cds4.cvent.com
cds4.cvent.com
heraldbox.com
alb-auth.aws.fao.org
*.fao.org
www.vaporpassadoria.com.br
*.fao.org
sincelast.app
petnoter.com
coact.space
agris.fao.org
miembros.marcelodaluz.com
link.trueid.net
*.fao.org
www.direct-law.co.kr
*.fao.org
netex-validation-reports.dev.entur.org
io.apps.fao.org
account.alwaseet-poultry.com
chintpatel.com
www.newbrains.net
*.fao.org
cds4.cvent.com
*.fao.org
mediabase.fao.org
www.utupay.africa
auth.data.review.fao.org
*.fao.org
mediabase.fao.org
www.ragstorichies.io
app.furbol.nai.dev
grablabs.com
cds4.cvent.com
bussiness.menupool.com
preportal.bee-fulfilment.nl
agris.fao.org
*.fao.org
assets.aims.fao.org
fapda.review.fao.org
sni.cloudflaressl.com
faolex.fao.org
api-globalrecord-staging.review.fao.org
co-fest.ideators.cc
submatch.io
canoe.orchidisland.tw
ciomsdev.apps.fao.org
invite.indiafintech.com
forms.apps.fao.org
fimis.fao.org
viewsme.com
sni.cloudflaressl.com
impuls.dev
sni.cloudflaressl.com
www.michelyraul.com
www.sudoku100.de
Certificate
The complete raw certificate details for signin.fao.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEcjCCA1qgAwIBAgIQAsj+F3QeSTt4HTe95GsmRjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA0MjYwMDAwMDBaFw0yMDA1MjYx MjAwMDBaMBkxFzAVBgNVBAMTDnNpZ25pbi5mYW8ub3JnMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAy2JG5FU7WnEt6oau9Q4uxAtrHKOz2HX69Z2mJvsm YshX6sjIycpDrbgg0WxHeM3ohrOC9SvlYp5R3xY2wDd1d2JxrDTYJVSG3erSQ9u9 wK2s6y8PdrmCdbOD/7NK+59gRnr+neDSLCKxRpnzUSXANrfycqe0RQcpsItvzcvY Tud2msiFYCWqoCQ/OuQgZ7rXHh/WydiVVSAgdlIVMe9ojqAC8Nq6bd8pxNpDJ6Aq 4mAXG6pfC/pvJ/UQhUDOIg29SJl3XtTlLTV4AuNT2oCuS0fmszvdPMemPbGbI2MH 4UPada8GI4MM+3gpWznm3sBhI+xyGLx7Sue5KXGzwjLHywIDAQABo4IBhzCCAYMw HwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFJgoCAJp 7Ngp/38fTE9vjE+0CvcCMBkGA1UdEQQSMBCCDnNpZ25pbi5mYW8ub3JnMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0f BDQwMjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2Nh MWIuY3JsMCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEF BQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRy dXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVz dC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQC BQAwDQYJKoZIhvcNAQELBQADggEBAK9CV/0D6yhJhaRsMQEDfY4SUV3Wuc9S7gnW j38szq1Lu2zqadV1P5IP4f111haH5h8tXv18SftYUczGR6j86h+FGAfc3qN3vJdE PWvGWiSPuVMz1LBBXgr02vOjo2pX2Wg6m78XjGz4L3xIGpVJlqZw5K+CT2LL7sQ6 nfhe4AgxiW406uegEe0L44OZdmF250MwU4CFyqlQ3PU0DiHDe7SzGqqIf70dcOiw vfcyC77mPdkig59CRE/EERGvrVePl53Z0rWqt9P9CR7R2EWsXodJXC/yZDsI0H5V iajxXthVE156Vdlv3K47jxQpdrnl0QBX5E8XCLSpork9WIa09DM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2JG5FU7WnEt6oau9Q4u xAtrHKOz2HX69Z2mJvsmYshX6sjIycpDrbgg0WxHeM3ohrOC9SvlYp5R3xY2wDd1 d2JxrDTYJVSG3erSQ9u9wK2s6y8PdrmCdbOD/7NK+59gRnr+neDSLCKxRpnzUSXA Nrfycqe0RQcpsItvzcvYTud2msiFYCWqoCQ/OuQgZ7rXHh/WydiVVSAgdlIVMe9o jqAC8Nq6bd8pxNpDJ6Aq4mAXG6pfC/pvJ/UQhUDOIg29SJl3XtTlLTV4AuNT2oCu S0fmszvdPMemPbGbI2MH4UPada8GI4MM+3gpWznm3sBhI+xyGLx7Sue5KXGzwjLH ywIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3702068953500737367511912667618682438 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-26 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'signin.fao.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25674838064352328484778961228473538040452242564845824213680970519172277285755596855688703031215608896522789058444425137721027943484715578146533244664202086351804847073494885227214197882360078866839595117368723933981059419554213216416159135145228507217071686215497573942127443697919742718557189286066224130686226398165095421558845441648862366432737729342229507711392550251581450204376299920742123673251414556172545353992219436905122900972271047823422499752061944314006472899380330875006846966155888173522606001011648699275078946989588904919524993161782825617604722391513636108997813023848464445577603168825536532367307 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9828080269ecd829ff7f1f4c4f6f8c4fb40af702 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'signin.fao.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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