epix.ap.org
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 02:ab:f0:07:ad:97:97:90:85:f0:b1:fb:b8:48:dc:4a was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=epix.ap.org
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:ab:f0:07:ad:97:97:90:85:f0:b1:fb:b8:48:dc:4aSerial Number (int): 3551207141005471512214415009485741130
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: af:4e:08:28:4c:82:f3:bf:47:06:63:fe:a3:48:ce:dd:bb:e5:c6:4a
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): f5:d2:b3:5f:98:91:3f:6c:e4:eb:3e:91:1c:3d:66:86:95:1e:ac:23
Fingerprint (sha256): 0c:6c:ba:2d:6b:3e:29:1a:c4:e3:26:33:de:70:0f:d9:03:09:09:49:0a:c6:04:7a:55:eb:79:85:3c:da:0a:40
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate epix.ap.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for epix.ap.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
epix.ap.org
epix.associatedpress.com
epix.associatedpress.com
Other certificates including the domain name ap.org
(limited to 100 certificates)
feedback.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
playbook.ap.org
ervaring.nedvice.nl
www.ap.org
help.ap.org
nycwlcdmz1.ap.org
ap.org
apipreview.ap.org
careers.ap.org
appbnom11.ap.org
ervaring.nedvice.nl
ctchive01.ap.org
inside.ap.org
cwa-ctc.ap.org
ap.org
partners.apvideohub.ap.org
discover.ap.org
ASSP-EXPC-P.ap.org
ap.org
ap.org
epix.ap.org
mail-ctc.ap.org
ap.org
ap.org
ervaring.nedvice.nl
backup.ap.org
ervaring.nedvice.nl
eapws.ap.org
developer.ap.org
ervaring.nedvice.nl
datakit.ap.org
login.ap.org
kibana.associatedpress.com
api.ap.org
DeveloperAPIPreview.ap.org
ap.org
blog.ap.org
sunshine.ap.org
ipdlonbackhaul.ap.org
approdpbnom11.ap.org
careers.ap.org
easyvista.ap.org
ap.org
ssrpm.ap.org
vault.ap.org
tokive01.ap.org
login.ap.org
ctcgsscasper01.ap.org
ap.org
easyvista.ap.org
crmgw.ap.org
api.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
preview.apvideohub.ap.org
ervaring.nedvice.nl
ap.org
sunshine.ap.org
store.ap.org
store.ap.org
origin.hosted.ap.org
ap.org
ap.org
blog.ap.org
store.ap.org
tokive01.ap.org
ap.org
approdpbnom12.ap.org
apipreview.ap.org
ap.org
apvideohub.ap.org
Developerapi.ap.org
eapadmin2.ap.org
ervaring.nedvice.nl
mysap.ap.org
blog.ap.org
discover.ap.org
inside.ap.org
wfm.ap.org
ap.org
discover.ap.org
IMSIPAPGW01.ap.org
ap.org
api-qa.ap.org
ap.org
partners.apvideohub.ap.org
blog.ap.org
store.ap.org
apvideohub.ap.org
sports.ap.org
bejive01.ap.org
discover.ap.org
gamestream.ap.org
apipreview.ap.org
ervaring.nedvice.nl
discover.ap.org
tokive01.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
ervaring.nedvice.nl
playbook.ap.org
ervaring.nedvice.nl
www.ap.org
help.ap.org
nycwlcdmz1.ap.org
ap.org
apipreview.ap.org
careers.ap.org
appbnom11.ap.org
ervaring.nedvice.nl
ctchive01.ap.org
inside.ap.org
cwa-ctc.ap.org
ap.org
partners.apvideohub.ap.org
discover.ap.org
ASSP-EXPC-P.ap.org
ap.org
ap.org
epix.ap.org
mail-ctc.ap.org
ap.org
ap.org
ervaring.nedvice.nl
backup.ap.org
ervaring.nedvice.nl
eapws.ap.org
developer.ap.org
ervaring.nedvice.nl
datakit.ap.org
login.ap.org
kibana.associatedpress.com
api.ap.org
DeveloperAPIPreview.ap.org
ap.org
blog.ap.org
sunshine.ap.org
ipdlonbackhaul.ap.org
approdpbnom11.ap.org
careers.ap.org
easyvista.ap.org
ap.org
ssrpm.ap.org
vault.ap.org
tokive01.ap.org
login.ap.org
ctcgsscasper01.ap.org
ap.org
easyvista.ap.org
crmgw.ap.org
api.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
preview.apvideohub.ap.org
ervaring.nedvice.nl
ap.org
sunshine.ap.org
store.ap.org
store.ap.org
origin.hosted.ap.org
ap.org
ap.org
blog.ap.org
store.ap.org
tokive01.ap.org
ap.org
approdpbnom12.ap.org
apipreview.ap.org
ap.org
apvideohub.ap.org
Developerapi.ap.org
eapadmin2.ap.org
ervaring.nedvice.nl
mysap.ap.org
blog.ap.org
discover.ap.org
inside.ap.org
wfm.ap.org
ap.org
discover.ap.org
IMSIPAPGW01.ap.org
ap.org
api-qa.ap.org
ap.org
partners.apvideohub.ap.org
blog.ap.org
store.ap.org
apvideohub.ap.org
sports.ap.org
bejive01.ap.org
discover.ap.org
gamestream.ap.org
apipreview.ap.org
ervaring.nedvice.nl
discover.ap.org
tokive01.ap.org
ervaring.nedvice.nl
Certificate
The complete raw certificate details for epix.ap.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3zCCBMegAwIBAgIQAqvwB62Xl5CF8LH7uEjcSjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDIyNDAwMDAwMFoXDTI0MDExOTIzNTk1OVowFjEU MBIGA1UEAxMLZXBpeC5hcC5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC+0EouNLCLlO0K14pZXQMU7F+yWdl+Mmmablewrb6luUh+y4Y8yP/dHeUe f9OxDd91PVb+kS2syhWiJW7zfNISmzk421lleS0O0buTkFbIPCMaBxffBazCsaa2 Ijb7naCSvtivG8eGI9Vl/04kMipfxhslrwT54NK0z5shnrE2mDyj3750dT1K2xk+ 1pVQjVFYz84wllVHdCjPuwrBp//dn+3hMkodd2u8gPz3aRAH1PSGwudIa7bYvUSS Ffj2FKzdHKd8aeZPIRIlBWwh7VYvbmLWDZ12M351CdbG3nICppqU5gfvn8y605F9 IYH8Ef+KRDXkiyHGeA+9lD7NhDx3AgMBAAGjggMBMIIC/TAfBgNVHSMEGDAWgBSB uA5jiokSGOX6OztQlZ/m5ZAThTAdBgNVHQ4EFgQUr04IKEyC879HBmP+o0jO3bvl xkowMAYDVR0RBCkwJ4ILZXBpeC5hcC5vcmeCGGVwaXguYXNzb2NpYXRlZHByZXNz LmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDEuYW1hem9udHJ1 c3QuY29tL3IybTAxLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcB AQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAxLmFtYXpvbnRydXN0 LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMS5hbWF6b250cnVzdC5j b20vcjJtMDEuY2VyMAwGA1UdEwEB/wQCMAAwggGBBgorBgEEAdZ5AgQCBIIBcQSC AW0BawB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABhoO/N4MA AAQDAEgwRgIhAKp2+p04IPAH7Ib1QPP6oGxzcgigHYxuv9t04LQGXViWAiEAoFyu KcM6IF/FrjgTbnQNZe7U2T4fDdno3pYepZBnY8QAdwBz2Z6JG0yWeKAgfUed5rLG HNBRXnEZKoxrgBB6wXdytQAAAYaDvzfGAAAEAwBIMEYCIQD8ibdkRUany/A3xmZ4 9dsNyoV091Eg/+oFCnTi4S6wNwIhAN0IhuQ2n0/sYBsrkMV7CLrQ3yMnhC0Qk1eX 6BxUFtPkAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGGg783 jAAABAMASDBGAiEAlo8vTmNgafh98LOjub1An8Sbp9OQwpQOmxtDQ7emtc4CIQCw qwr/Wglb8BGOUSVqkyKp+0J6yTZL4h6B/5V7Efa2gjANBgkqhkiG9w0BAQsFAAOC AQEAydbyUmF8aBOLHOrJD7yqtttjN6NA89aopNtQNWSjMN0mMwmt0U+6ohmLiA0x cPlSiX6Be409cext59Q/44zCbagoC+lS2liJCyT5k73G7vE4Bef435yz5LwXYwUK WPM4ZIecK8C/ke3TlTsCHCp7DcMUUojMFiDUSYQwb25rISRDP6gQ2sJJdzrnmVIH mSeVceWi+yA6Q3t+bGrSjQX8d8Z3Q9DB5fO8Ht/Nhf8WgjZeV8yWzMOuFWmK8D70 +g8H4rDAPNtL817+9ifQZd93jnpG0sbnVCLNGQAw9QHsc/ZmyZTZAFMJELTL7plu c2+G5n6Mk2WjpQvwRs8J7Sc15A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvtBKLjSwi5TtCteKWV0D FOxfslnZfjJpmm5XsK2+pblIfsuGPMj/3R3lHn/TsQ3fdT1W/pEtrMoVoiVu83zS Eps5ONtZZXktDtG7k5BWyDwjGgcX3wWswrGmtiI2+52gkr7YrxvHhiPVZf9OJDIq X8YbJa8E+eDStM+bIZ6xNpg8o9++dHU9StsZPtaVUI1RWM/OMJZVR3Qoz7sKwaf/ 3Z/t4TJKHXdrvID892kQB9T0hsLnSGu22L1EkhX49hSs3RynfGnmTyESJQVsIe1W L25i1g2ddjN+dQnWxt5yAqaalOYH75/MutORfSGB/BH/ikQ15IshxngPvZQ+zYQ8 dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3551207141005471512214415009485741130 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'epix.ap.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24087989456037995336432795351588437159025756903840336515462030126572372858854419404330887736025256766908491402549320977195373111585062860078002551665813563869178032912028094788650581964526011538674812833774714869650713898452397394456971748141970221806475804942687124303197245182871650175140643178217345550028257110007052908640674647894661573596689903410437787170043893249425086187974492835504502946370356972868747752786269762618609963346198572131726629188553733906789351388347764356217999881581416033018871461399704731823190212420002205691163626042766116364041996592959428868473987361025945029720702985722266439138423 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) af4e08284c82f3bf470663fea348ceddbbe5c64a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (41 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'epix.ap.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'epix.associatedpress.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (369 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00c9d6f252617c68138b1ceac90fbcaab6db6337a340f3d6a8a4db503564a330dd263309add14fbaa2198b880d3170f952897e817b8d3d71ec6de7d43fe38cc26da8280be952da58890b24f993bdc6eef13805e7f8df9cb3e4bc1763050a58f33864879c2bc0bf91edd3953b021c2a7b0dc3145288cc1620d44984306f6e6b2124433fa810dac249773ae799520799279571e5a2fb203a437b7e6c6ad28d05fc77c67743d0c1e5f3bc1edfcd85ff1682365e57cc96ccc3ae15698af03ef4fa0f07e2b0c03cdb4bf35efef627d065df778e7a46d2c6e75422cd190030f501ec73f666c994d900530910b4cbee996e736f86e67e8c9365a3a50bf046cf09ed2735e4