auth.son.co.za
- Media24 (Pty) Ltd -
Issued by thawte SHA256 SSL CA
About this certificate
This digital certificate with serial number 39:a7:5a:e1:5d:b5:ce:0b:a5:4c:19:34:53:7b:fc:3d was issued on by thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Media24 (Pty) Ltd
Organization:
Media24 (Pty) Ltd
Organization unit: 24.com
Organization unit: 24.com
State / Province:
Western Cape
Locality: Cape Town
Country: ZA
Locality: Cape Town
Country: ZA
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 39:a7:5a:e1:5d:b5:ce:0b:a5:4c:19:34:53:7b:fc:3dSerial Number (int): 76634952607318309838351627179727256637
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 2b:9a:35:ae:01:18:38:30:e1:70:7a:05:e0:11:76:a3:ce:bd:90:14
Fingerprint (sha1): a4:fc:d5:ff:34:fc:95:24:70:1c:c6:51:e8:75:bc:4f:8d:f7:ca:1a
Fingerprint (sha256): 03:cf:a7:63:ff:e3:63:dc:4e:d7:74:9d:24:40:79:ec:87:c9:91:f8:0d:f4:7b:24:7c:60:40:77:91:55:d7:0d
Issuing Certificate URL: http://tg.symcb.com/tg.crt
Revocation information
OCSP Server: http://tg.symcd.comCRL Distribution Point: http://tg.symcb.com/tg.crl
Check the revocation status for certificate auth.son.co.za
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for auth.son.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
auth.son.co.za
Other certificates including the domain name son.co.za
(limited to 100 certificates)
auth.son.co.za
nubivagant.in
agilitycoursemaster.com
son.co.za
devauth.son.co.za
*.son.co.za
ssl767204.cloudflaressl.com
ssl767205.cloudflaressl.com
stage.pt.nogamelabs.com
*.son.co.za
www.matthewtkrohn.com
easyworkbelgium.be
son.co.za
*.son.co.za
sni.cloudflaressl.com
*.son.co.za
son.co.za
son.co.za
son.co.za
*.son.co.za
www.tremendo.gay
ssl508613.cloudflaressl.com
son.co.za
son.co.za
receipts.cards.pe
api.giftdibs.com
son.co.za
ssl767203.cloudflaressl.com
www.turfxl.in
ssl508611.cloudflaressl.com
son.co.za
ssl508613.cloudflaressl.com
welldeliveryprocess.com
sni.cloudflaressl.com
ssl767205.cloudflaressl.com
devfest.gdgvalencia.es
ssl508611.cloudflaressl.com
*.son.co.za
ssl767205.cloudflaressl.com
ssl508612.cloudflaressl.com
ssl767204.cloudflaressl.com
ssl508612.cloudflaressl.com
ssl767203.cloudflaressl.com
nubivagant.in
agilitycoursemaster.com
son.co.za
devauth.son.co.za
*.son.co.za
ssl767204.cloudflaressl.com
ssl767205.cloudflaressl.com
stage.pt.nogamelabs.com
*.son.co.za
www.matthewtkrohn.com
easyworkbelgium.be
son.co.za
*.son.co.za
sni.cloudflaressl.com
*.son.co.za
son.co.za
son.co.za
son.co.za
*.son.co.za
www.tremendo.gay
ssl508613.cloudflaressl.com
son.co.za
son.co.za
receipts.cards.pe
api.giftdibs.com
son.co.za
ssl767203.cloudflaressl.com
www.turfxl.in
ssl508611.cloudflaressl.com
son.co.za
ssl508613.cloudflaressl.com
welldeliveryprocess.com
sni.cloudflaressl.com
ssl767205.cloudflaressl.com
devfest.gdgvalencia.es
ssl508611.cloudflaressl.com
*.son.co.za
ssl767205.cloudflaressl.com
ssl508612.cloudflaressl.com
ssl767204.cloudflaressl.com
ssl508612.cloudflaressl.com
ssl767203.cloudflaressl.com
Certificate
The complete raw certificate details for auth.son.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIQOada4V21zgulTBk0U3v8PTANBgkqhkiG9w0BAQsFADBD MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMR0wGwYDVQQDExR0 aGF3dGUgU0hBMjU2IFNTTCBDQTAeFw0xNzEwMjMwMDAwMDBaFw0xODEwMjMyMzU5 NTlaMH4xCzAJBgNVBAYTAlpBMRUwEwYDVQQIDAxXZXN0ZXJuIENhcGUxEjAQBgNV BAcMCUNhcGUgVG93bjEaMBgGA1UECgwRTWVkaWEyNCAoUHR5KSBMdGQxDzANBgNV BAsMBjI0LmNvbTEXMBUGA1UEAwwOYXV0aC5zb24uY28uemEwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCdd3i+1VXAARtkPjSxeCNwBZPG3CIbL/f08+NK K0fsUx8hAaLDnrqYzXzBwZBtDDuGTlQpVTVSHanmPSLK3NO9oUinXrJi49au2Tck dyEJvOdwDy6w0CyPRiSJ/eQY4MNK9gh1Cfl1olWMp91K9Gqk6DcGjyMfEjihLWXh SJWFPC+VOY23MkrURy73aVrEtZinazeBZo2kiknAK5rl6jwsAsX9R+OrWe59HXsO dqd32DTBAvs/tXycwslkKRAWuRbcmyUXfwS4suKryvfXiegQ+0a6lhIzRD0u5dYe JKlGbwaDyJTRMA/8841cm91a3sF5YubMe/1X/RRAUJm0cM1DAgMBAAGjggGFMIIB gTAZBgNVHREEEjAQgg5hdXRoLnNvbi5jby56YTAJBgNVHRMEAjAAMG4GA1UdIARn MGUwYwYGZ4EMAQICMFkwJgYIKwYBBQUHAgEWGmh0dHBzOi8vd3d3LnRoYXd0ZS5j b20vY3BzMC8GCCsGAQUFBwICMCMMIWh0dHBzOi8vd3d3LnRoYXd0ZS5jb20vcmVw b3NpdG9yeTAOBgNVHQ8BAf8EBAMCBaAwHwYDVR0jBBgwFoAUK5o1rgEYODDhcHoF 4BF2o869kBQwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL3RnLnN5bWNiLmNvbS90 Zy5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEB BEswSTAfBggrBgEFBQcwAYYTaHR0cDovL3RnLnN5bWNkLmNvbTAmBggrBgEFBQcw AoYaaHR0cDovL3RnLnN5bWNiLmNvbS90Zy5jcnQwEwYKKwYBBAHWeQIEAwEB/wQC BQAwDQYJKoZIhvcNAQELBQADggEBAAwhh9umFXJHEP+n2NHyUpuBYV7e1yu1mNGk 9lIO5NWX8WZSB4qk+cpXogM7LUCmkddJ18lKtlIccYnk5z4LKnvSWDFc2UUiqmtS 62WGyLSwIH6ujHjOkWSFqqd0sJyW6+djx71YZ38KIigeg2JtxlBvERfD+jPcHZVP qHFLBqCcFPvcM5W+xLwkCdWzQmEQK7tRvOQNBqHCFgHivacYehYqBKAY6J+ZC1lj KSwii7CQf6BvMOEiGZkkWwjbbzc/dijlbhlHntiVWABEUPZT0RXVg9b7FEmYARgM Q+M7kQHa0xqYMOPVXCCLYVQd8duP5fr8edMAgD1S2fNaeMVFX8w= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXd4vtVVwAEbZD40sXgj cAWTxtwiGy/39PPjSitH7FMfIQGiw566mM18wcGQbQw7hk5UKVU1Uh2p5j0iytzT vaFIp16yYuPWrtk3JHchCbzncA8usNAsj0Ykif3kGODDSvYIdQn5daJVjKfdSvRq pOg3Bo8jHxI4oS1l4UiVhTwvlTmNtzJK1Ecu92laxLWYp2s3gWaNpIpJwCua5eo8 LALF/Ufjq1nufR17Dnand9g0wQL7P7V8nMLJZCkQFrkW3JslF38EuLLiq8r314no EPtGupYSM0Q9LuXWHiSpRm8Gg8iU0TAP/PONXJvdWt7BeWLmzHv9V/0UQFCZtHDN QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 76634952607318309838351627179727256637 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SHA256 SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-23 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Western Cape' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Cape Town' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Media24 (Pty) Ltd' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '24.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'auth.son.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19878327551889664107225471538160681412463484937019601434092102481361559348359473694745952913617473714215725362025997601329458545945184531497010151537657034425167231231095914037858534180536445437583842697471786561659596795322334205453684569190947440324903835695793551609334919512327183939249694185479011744688709858285126172833389472020188717339127336752473723813496984501009317714651771744151103237990471404450139056137538168549262511332222407581000545175463973119514568990919979584704438825049649737714890088785851830615784063064497169038277292897884520948509116003285046716302736103863535234075271206950360012868931 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'auth.son.co.za' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2b9a35ae01183830e1707a05e01176a3cebd9014 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tg.symcb.com/tg.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tg.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tg.symcb.com/tg.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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