s1-sp.com
Issued by Amazon
About this certificate
This digital certificate with serial number 02:05:9d:01:04:c3:59:0a:a8:76:88:11:c4:2b:07:fd was issued on by Amazon.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=s1-sp.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:05:9d:01:04:c3:59:0a:a8:76:88:11:c4:2b:07:fdSerial Number (int): 2687601894872542771804852469199734781
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 3a:cf:be:d4:c6:9d:d7:e3:cc:4e:9d:54:28:c8:e1:26:73:dd:47:26
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 54:fc:f9:cb:01:72:9c:a4:dc:1c:1c:43:b6:39:89:28:d8:42:46:35
Fingerprint (sha256): 03:e5:d0:d4:c5:60:64:3f:c4:ba:8f:a9:6d:31:1e:09:6e:ee:2f:61:9f:f5:c8:a8:4b:2b:2b:87:af:1a:14:af
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate s1-sp.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for s1-sp.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
s1-sp.com
*.stage-azi.system1.company
*.system1.company
*.stage-azi.s1-sp.com
*.s1-sp.com
*.stage-azi.system1.company
*.system1.company
*.stage-azi.s1-sp.com
*.s1-sp.com
Other certificates including the domain name s1-sp.com
(limited to 100 certificates)
s1-sp.com
s1-sp.com
blog.s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
pubwp-admin-prod.k.system1.company
s1-sp.com
carsgenius.com
carsgenius.com
*.reviews.howstuffworks.com
static-stage.s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
blog.s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
carsgenius.com
s1-sp.com
search-us-east-1.platform-prod.system1.company
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
carsgenius.com
app.s1-sp.com
s1-sp.com
s1-sp.com
stage.blog.s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
carsgenius.com
*.reviews.howstuffworks.com
s1-sp.com
static-prod.s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
carsgenius.com
app.s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
add.s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
carsgenius.com
s1-sp.com
add.s1-sp.com
carsgenius.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
carsgenius.com
s1-sp.com
blog.s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
pubwp-admin-prod.k.system1.company
s1-sp.com
carsgenius.com
carsgenius.com
*.reviews.howstuffworks.com
static-stage.s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
blog.s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
carsgenius.com
s1-sp.com
search-us-east-1.platform-prod.system1.company
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
carsgenius.com
app.s1-sp.com
s1-sp.com
s1-sp.com
stage.blog.s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
carsgenius.com
*.reviews.howstuffworks.com
s1-sp.com
static-prod.s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
carsgenius.com
app.s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
s1-sp.com
add.s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
carsgenius.com
s1-sp.com
add.s1-sp.com
carsgenius.com
s1-sp.com
carsgenius.com
s1-sp.com
s1-sp.com
carsgenius.com
s1-sp.com
carsgenius.com
Certificate
The complete raw certificate details for s1-sp.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEsTCCA5mgAwIBAgIQAgWdAQTDWQqodogRxCsH/TANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjAyMTQwMDAwMDBaFw0yMzAzMTUy MzU5NTlaMBQxEjAQBgNVBAMTCXMxLXNwLmNvbTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKkyYMnGUQBFhsQbXs4nK4U2RgADApFDxX8PUWAvGRe+kExo ZQZketDws7Ga37QM0D+bUtjwzzzvL+BchgarTkf6YQOve4ttZjs9eHRZJVJaarnm FVImNf5+Cuv5QXuyP9mQ1YTYWWB1ufKNDxqzG07uITI08GA9FvTVi/ne247zgruo 52K2/0YpkPFjDdvCssEcHxdTpXW4KelX9Ppylzh4LkmxN3bwpubec0+WUW55gRW2 3e2VnT1w0CoMMfuZ3GBskEVoINRWI8rP1CC6Y+HArRZJx6N9Z1O3FbvkjThwmHMi EX5TjItqKo/6LFcVZyaLkR+42C/L+ENhlwSNEz8CAwEAAaOCAcswggHHMB8GA1Ud IwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBQ6z77Uxp3X48xO nVQoyOEmc91HJjBoBgNVHREEYTBfgglzMS1zcC5jb22CGyouc3RhZ2UtYXppLnN5 c3RlbTEuY29tcGFueYIRKi5zeXN0ZW0xLmNvbXBhbnmCFSouc3RhZ2UtYXppLnMx LXNwLmNvbYILKi5zMS1zcC5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjA9BgNVHR8ENjA0MDKgMKAuhixodHRwOi8vY3Js LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi0xLmNybDATBgNVHSAEDDAKMAgG BmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3Nw LnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5z Y2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYK KwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAFah0FkwWQ8kqq16 KiYGgUeRyVp4V+82iAKhD2DPRTZI86W0xh+m59h2THceIUoNFkf+hWcO8xjBLhBL fiyetVcxxgnVoaSxgGi03qZTDXuYG5ECTJFUlpOoqEnIQryfSr6y7OXx7WmrSt7B buFoDzFqKziytWRPUIuPnt8auV9B6OW94vnqUacnHNiP70EJ6Utm3uvBWu47jLIf vCTxj5bHmSzFJoyoHfGF7+jSCurYmFrIReN1Rquylek/lopCa4dREUZIpONfwdBU +Czdcr4y79fqJsuNbHBc+bWX0JjuA0Sp7tdhAdFnpV4++5DsZJBuVSXC7kpbNZm4 XCqVdo0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTJgycZRAEWGxBtezicr hTZGAAMCkUPFfw9RYC8ZF76QTGhlBmR60PCzsZrftAzQP5tS2PDPPO8v4FyGBqtO R/phA697i21mOz14dFklUlpqueYVUiY1/n4K6/lBe7I/2ZDVhNhZYHW58o0PGrMb Tu4hMjTwYD0W9NWL+d7bjvOCu6jnYrb/RimQ8WMN28KywRwfF1Oldbgp6Vf0+nKX OHguSbE3dvCm5t5zT5ZRbnmBFbbd7ZWdPXDQKgwx+5ncYGyQRWgg1FYjys/UILpj 4cCtFknHo31nU7cVu+SNOHCYcyIRflOMi2oqj/osVxVnJouRH7jYL8v4Q2GXBI0T PwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2687601894872542771804852469199734781 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 's1-sp.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21359115895825829696021363499587442903208811394472403214110513756124920457251047483976805955219307931464898978289312802607510736263496373375050157528911591398504294443087613233005784852983736925580624756832586167824710657817090457996934341867288222653101306593292943230931367776856568135657928288199168250369822233187716806761720148467869321773772191673161494430715498584141553167408696711940607246257105427942202970839990179210751149515004032457881802687781848696214053087998027756248120575430769258350167917555518082112777110415419050579147777656354135690779703798082109705589306902057755162800941852300580188132159 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3acfbed4c69dd7e3cc4e9d5428c8e12673dd4726 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (97 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's1-sp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage-azi.system1.company' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.system1.company' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage-azi.s1-sp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.s1-sp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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