*.yext.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0f:4e:b5:8d:fd:c0:88:ac:e3:8e:0c:14:38:49:99:41 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.yext.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0f:4e:b5:8d:fd:c0:88:ac:e3:8e:0c:14:38:49:99:41Serial Number (int): 20347101457581096785445838473055017281
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 49:c5:0e:c5:a0:26:f2:69:d2:00:b4:cf:85:fe:5a:38:ac:a0:b1:01
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 0b:58:09:c1:d6:88:99:82:7f:a6:5c:31:19:97:1d:a7:eb:47:be:0a
Fingerprint (sha256): 05:4a:15:6a:e8:ee:e0:04:1b:f7:b1:de:7e:2f:55:4d:b0:68:17:c7:b2:a9:34:c1:64:95:65:c0:a7:61:38:e3
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.yext.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.yext.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.yext.com
Other certificates including the domain name yext.com
(limited to 100 certificates)
agent-qa.travelers.com
dev2.streamflow.finance
sni.cloudflaressl.com
covid19.yext.com
faqs.yext.com
sni.cloudflaressl.com
grow.yext.com
*.tx1.yext.com
*.yext.com
covid19-gov.yext.com
*.yext.com
techops.yext.com
blog.catalog.fi
sni.cloudflaressl.com
app-qa.eu.yext.com
answers-texaneyecare.pagescdn.com
sni.cloudflaressl.com
news.yext.com
*.yext.com
onward.yext.com
start.yext.com
*.yext.com
events.biggestfantour.com
wiki.yext.com
sni.cloudflaressl.com
offers.yext.com
*.yext.com
covid19.yext.com
covid19-healthcare.yext.com
*.yext.com
for.yext.com
san1.yext-cdn.com
embed-answers.cority.com.pagescdn.com
yext.com
store.yext.com
start.yext.com
locations.yext.com
*.hitchhikers.dev
*.thefrabric.com
design-system.yext.com
cac-documentation.hitchhikers.yext.com
docker.jfrog-poc.office.yext.com
news.yext.com
answers-autozone.pagescdn.com
news.yext.com
sni.cloudflaressl.com
livepreviewwebsockets-qa.yext.com
events.biggestfantour.com
ssl910335.cloudflaressl.com
answers.romeospizza.com
grow.yext.com
help.yext.com
sni.cloudflaressl.com
*.interview.yext.com
*.interview.yext.com
help.yext.com
sustainability.yext.com
api.eu.yext.com
bvas.yext.com
publishers.yext.com
start.yext.com
mulesoft.farmers.yext.com
sni.cloudflaressl.com
design-system.yext.com
sni.cloudflaressl.com
*.youst.in
hitchhiker-answers.yext.com
cube.yext.com
sni.cloudflaressl.com
*.office.yext.com
physicians.florida-allergy.com
*.yext.com
plfeeds.eu.yext.com
app.eu.yext.com
*.yext.com
sni.cloudflaressl.com
help.yext.com
*.hitchhikers.dev
blog-hitchhikers.yext.com
answers-embed.reseau-stan.com.pagescdn.com
sni.cloudflaressl.com
san1.yext-cdn.com
design-system.yext.com
www.yext.com
*.hitchhikers.dev
search.yext.com
wiki.yext.com
sni.cloudflaressl.com
sni.cloudflaressl.com
amp.locations.yext.com
yext.com
ssl468786.cloudflaressl.com
*.office.yext.com
*.office.yext.com
*.yext.com
www.start.yext.com
wiki.yext.com
sni.cloudflaressl.com
app.eu.yext.com
sni.cloudflaressl.com
dev2.streamflow.finance
sni.cloudflaressl.com
covid19.yext.com
faqs.yext.com
sni.cloudflaressl.com
grow.yext.com
*.tx1.yext.com
*.yext.com
covid19-gov.yext.com
*.yext.com
techops.yext.com
blog.catalog.fi
sni.cloudflaressl.com
app-qa.eu.yext.com
answers-texaneyecare.pagescdn.com
sni.cloudflaressl.com
news.yext.com
*.yext.com
onward.yext.com
start.yext.com
*.yext.com
events.biggestfantour.com
wiki.yext.com
sni.cloudflaressl.com
offers.yext.com
*.yext.com
covid19.yext.com
covid19-healthcare.yext.com
*.yext.com
for.yext.com
san1.yext-cdn.com
embed-answers.cority.com.pagescdn.com
yext.com
store.yext.com
start.yext.com
locations.yext.com
*.hitchhikers.dev
*.thefrabric.com
design-system.yext.com
cac-documentation.hitchhikers.yext.com
docker.jfrog-poc.office.yext.com
news.yext.com
answers-autozone.pagescdn.com
news.yext.com
sni.cloudflaressl.com
livepreviewwebsockets-qa.yext.com
events.biggestfantour.com
ssl910335.cloudflaressl.com
answers.romeospizza.com
grow.yext.com
help.yext.com
sni.cloudflaressl.com
*.interview.yext.com
*.interview.yext.com
help.yext.com
sustainability.yext.com
api.eu.yext.com
bvas.yext.com
publishers.yext.com
start.yext.com
mulesoft.farmers.yext.com
sni.cloudflaressl.com
design-system.yext.com
sni.cloudflaressl.com
*.youst.in
hitchhiker-answers.yext.com
cube.yext.com
sni.cloudflaressl.com
*.office.yext.com
physicians.florida-allergy.com
*.yext.com
plfeeds.eu.yext.com
app.eu.yext.com
*.yext.com
sni.cloudflaressl.com
help.yext.com
*.hitchhikers.dev
blog-hitchhikers.yext.com
answers-embed.reseau-stan.com.pagescdn.com
sni.cloudflaressl.com
san1.yext-cdn.com
design-system.yext.com
www.yext.com
*.hitchhikers.dev
search.yext.com
wiki.yext.com
sni.cloudflaressl.com
sni.cloudflaressl.com
amp.locations.yext.com
yext.com
ssl468786.cloudflaressl.com
*.office.yext.com
*.office.yext.com
*.yext.com
www.start.yext.com
wiki.yext.com
sni.cloudflaressl.com
app.eu.yext.com
sni.cloudflaressl.com
Certificate
The complete raw certificate details for *.yext.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIQD061jf3AiKzjjgwUOEmZQTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDcxMzAwMDAwMFoXDTI0MDgwOTIzNTk1OVowFTET MBEGA1UEAwwKKi55ZXh0LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMC+g125sTu8LdVLQ+E9HJ7IUpHxbQA1o08vRMgr3FUzXH5UQiODVhVMI5+e BkEtxsFuMHAbVybQK4arejYPy9LTUEOj/hnWne6XuDAZvpKcBjYGxJwbCuka45TT umC2oKVabUZRsfQv1dw8iLZs/3E2grvnjRZIpp/crKLd3S2VX1hhx0PyNaiZFj/p HnCwkTbmVTIWEFNRbcUPRZZFzxsSbgA7Rcedfw3Ky0BQgCz0j6Njz+jjb0Yu6mAW vbcpw2fAVP4OsxGWkAWu+5byfXJSSUI4DfnSdG7CYbj+pvh0HOfZ6dqNRUGS+BgL pjE2HGFanUWC88xUrJPs2sqtHmsCAwEAAaOCAuMwggLfMB8GA1UdIwQYMBaAFMAx Us1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBRJxQ7FoCbyadIAtM+F/lo4rKCx ATAVBgNVHREEDjAMggoqLnlleHQuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDov L2NybC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3JsMBMGA1UdIAQMMAow CAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29j c3AucjJtMDIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0 LnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIwADCC AX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYA7s3QZNXbGs7FXLedtM0TojKHRny8 7N7DUUhZRnEftZsAAAGJTQd34AAABAMARzBFAiBfNxff2ROPYy/6Srd4cmDLZ52/ fpWKo/a96HuEgfUBnwIhALbum2xgJTIsDPhoS1jnXb9b9//Ow83Vh2SglNjqS8Ih AHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGJTQd3/QAABAMA RzBFAiBqulgwA/eVMqrx00wAWNRJ0ap+zjD9Q9+pHIA6PGSLugIhANUdK3SB/Xhj 1O7qkC4RMrWpQ2rCmBCY5jzXt1A8ReQrAHYAPxdLT9ciR1iUHWUchL4NEu2QN38f hWrrwb8ohez4ZG4AAAGJTQd4NAAABAMARzBFAiBJO8Vd8rb0YwYrVvkwKgnuLMU6 m1Qn5sZiQ6ezPG+GtAIhAKNjih6BuX5K8nMsJ7a1h/surgdgzt0xc7NzCRseDyfL MA0GCSqGSIb3DQEBCwUAA4IBAQC29tAvbkdRJ4k27lP/JFsbuEDrpvu4L8Mg4iva HgrScRPXvXOB2wRwRXacitcqAHBr18AcTF4eEN3c6BjaOin1bzBJz39MS/alJua3 t8Wre7wUZU25sTRQrq3/6jNCPc+I7Z4ePlcWK9H7SQ689RfnEFWnWV4Y16BjU4oG YtesTNEP78Lnx1esz0IcsoWhmMKaeSN0t2NxZzC/rTMd3iP74qkDKLg65jdoCHnR 1FcsTVDzsIv7okul625+QHnITuFgEjKgEpOu5vv1l0N415ZhnLrpqUqCrfyh+Z/Q aGvot0egGFvPDNCZ9EhYWTXokbn7Fn6Oo9EctbUNS7Aog77F -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwL6DXbmxO7wt1UtD4T0c nshSkfFtADWjTy9EyCvcVTNcflRCI4NWFUwjn54GQS3GwW4wcBtXJtArhqt6Ng/L 0tNQQ6P+Gdad7pe4MBm+kpwGNgbEnBsK6RrjlNO6YLagpVptRlGx9C/V3DyItmz/ cTaCu+eNFkimn9ysot3dLZVfWGHHQ/I1qJkWP+kecLCRNuZVMhYQU1FtxQ9FlkXP GxJuADtFx51/DcrLQFCALPSPo2PP6ONvRi7qYBa9tynDZ8BU/g6zEZaQBa77lvJ9 clJJQjgN+dJ0bsJhuP6m+HQc59np2o1FQZL4GAumMTYcYVqdRYLzzFSsk+zayq0e awIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20347101457581096785445838473055017281 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.yext.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24331700088596743056114074882965567147375379426125346308671339433746827171729160182092317260606124228469225314620952524543803736974908125029549750793162481155702126295753664854806729848361943969184956689184010722635798909090837410587548000588053723824551038702159187858000770120970880747285352462097006709762767026913781678491251907726235687725155357019281863092895762738534206352422628893187706363383081427856192102797509856959680255603243265724404588730317453817386709589461259517594174098185093720060411528882761340443158892471855889716046770642932668221756097121279456905654506439820928560711796026313498608606827 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 49c50ec5a026f269d200b4cf85fe5a38aca0b101 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.yext.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00b6f6d02f6e4751278936ee53ff245b1bb840eba6fbb82fc320e22bda1e0ad27113d7bd7381db047045769c8ad72a00706bd7c01c4c5e1e10dddce818da3a29f56f3049cf7f4c4bf6a526e6b7b7c5ab7bbc14654db9b13450aeadffea33423dcf88ed9e1e3e57162bd1fb490ebcf517e71055a7595e18d7a063538a0662d7ac4cd10fefc2e7c757accf421cb285a198c29a792374b763716730bfad331dde23fbe2a90328b83ae637680879d1d4572c4d50f3b08bfba24ba5eb6e7e4079c84ee1601232a01293aee6fbf5974378d796619cbae9a94a82adfca1f99fd0686be8b747a0185bcf0cd099f448585935e891b9fb167e8ea3d11cb5b50d4bb02883bec5