stage.blackbook.tilabs.tech
Issued by Amazon
About this certificate
This digital certificate with serial number 0f:37:2a:52:eb:d2:74:e5:f9:f2:3f:5c:85:83:71:17 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=stage.blackbook.tilabs.tech
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:37:2a:52:eb:d2:74:e5:f9:f2:3f:5c:85:83:71:17Serial Number (int): 20224854694889236919921868219231727895
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 77:73:07:74:c3:2a:19:40:4e:a8:cc:68:cd:2a:d4:0b:9b:2c:2f:33
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): cb:2c:09:85:c1:24:0c:7f:15:0f:0c:94:22:73:2c:95:c7:b2:a2:71
Fingerprint (sha256): 10:69:55:40:95:f1:93:c4:35:62:6b:81:87:0a:03:6e:3a:c7:ea:29:dc:3b:b7:96:57:b0:31:c9:2c:04:27:86
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate stage.blackbook.tilabs.tech
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stage.blackbook.tilabs.tech
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stage.blackbook.tilabs.tech
*.stage.blackbook.tilabs.tech
*.stage.blackbook.tilabs.tech
Other certificates including the domain name tilabs.tech
(limited to 100 certificates)
*.dev.tilabs.tech
auth.tilabs.tech
*.dev.tilabs.tech
stage.blackbook.tilabs.tech
stage.blackbook.tilabs.tech
*.dev.tilabs.tech
*.tilabs.tech
rvrentals.tilabs.tech
security.tilabs.tech
rentals.tilabs.tech
blackbook.tilabs.tech
*.dev.tilabs.tech
*.tilabs.tech
rentals.tilabs.tech
blackbook.tilabs.tech
*.tilabs.tech
*.tilabs.tech
*.rentals.tilabs.tech
*.dev.tilabs.tech
rvrentals.tilabs.tech
stage.blackbook.tilabs.tech
*.dev.tilabs.tech
*.dev.tilabs.tech
eu.dev.tilabs.tech
*.tilabs.tech
blackbook.tilabs.tech
blackbook.tilabs.tech
jupyter-dev.tilabs.tech
jupyter-dev.tilabs.tech
eu.dev.tilabs.tech
*.blackbook.tilabs.tech
*.rentals.tilabs.tech
*.dev.tilabs.tech
*.rentals.tilabs.tech
security.tilabs.tech
*.tilabs.tech
*.dev.tilabs.tech
*.tilabs.tech
rentals.tilabs.tech
*.rentals.tilabs.tech
security.tilabs.tech
eu.dev.tilabs.tech
*.blackbook.tilabs.tech
*.blackbook.tilabs.tech
*.tilabs.tech
rstudio-dev.tilabs.tech
*.tilabs.tech
*.rentals.tilabs.tech
blackbook.tilabs.tech
stage.blackbook.tilabs.tech
rentals.tilabs.tech
*.dev.tilabs.tech
*.tilabs.tech
security.tilabs.tech
*.dev.tilabs.tech
*.tilabs.tech
rvrentals.tilabs.tech
rstudio-dev.tilabs.tech
*.rentals.tilabs.tech
rentals.tilabs.tech
airflow-dev.tilabs.tech
dev.tilabs.tech
auth.tilabs.tech
eu.dev.tilabs.tech
*.blackbook.tilabs.tech
auth.tilabs.tech
*.dev.tilabs.tech
stage.blackbook.tilabs.tech
stage.blackbook.tilabs.tech
*.dev.tilabs.tech
*.tilabs.tech
rvrentals.tilabs.tech
security.tilabs.tech
rentals.tilabs.tech
blackbook.tilabs.tech
*.dev.tilabs.tech
*.tilabs.tech
rentals.tilabs.tech
blackbook.tilabs.tech
*.tilabs.tech
*.tilabs.tech
*.rentals.tilabs.tech
*.dev.tilabs.tech
rvrentals.tilabs.tech
stage.blackbook.tilabs.tech
*.dev.tilabs.tech
*.dev.tilabs.tech
eu.dev.tilabs.tech
*.tilabs.tech
blackbook.tilabs.tech
blackbook.tilabs.tech
jupyter-dev.tilabs.tech
jupyter-dev.tilabs.tech
eu.dev.tilabs.tech
*.blackbook.tilabs.tech
*.rentals.tilabs.tech
*.dev.tilabs.tech
*.rentals.tilabs.tech
security.tilabs.tech
*.tilabs.tech
*.dev.tilabs.tech
*.tilabs.tech
rentals.tilabs.tech
*.rentals.tilabs.tech
security.tilabs.tech
eu.dev.tilabs.tech
*.blackbook.tilabs.tech
*.blackbook.tilabs.tech
*.tilabs.tech
rstudio-dev.tilabs.tech
*.tilabs.tech
*.rentals.tilabs.tech
blackbook.tilabs.tech
stage.blackbook.tilabs.tech
rentals.tilabs.tech
*.dev.tilabs.tech
*.tilabs.tech
security.tilabs.tech
*.dev.tilabs.tech
*.tilabs.tech
rvrentals.tilabs.tech
rstudio-dev.tilabs.tech
*.rentals.tilabs.tech
rentals.tilabs.tech
airflow-dev.tilabs.tech
dev.tilabs.tech
auth.tilabs.tech
eu.dev.tilabs.tech
*.blackbook.tilabs.tech
Certificate
The complete raw certificate details for stage.blackbook.tilabs.tech in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIQDzcqUuvSdOX58j9chYNxFzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA3MjYwMDAwMDBaFw0yMDA4MjYx MjAwMDBaMCYxJDAiBgNVBAMTG3N0YWdlLmJsYWNrYm9vay50aWxhYnMudGVjaDCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKLXg+CBWBMighkahaWAR+j8 wUFXOnMf5wO1JDIe/HG536B5ox7P1ku430cVg8odnjrBhh2VP2PQbn/fMWp8d5Ii Sv2+zbNAM4Bi/1zcRpxL6WVbY2etHP31tKLj5L1flPg3Ha7yLk4t+2Aj3UDOH6Ql s9JKhg0UFy3FkbDYdB9YGLn13MY/+DaHHuDoh7g8ObRT0Dif58O+IBUKfqklgW7P 6PcrK6ZV59mLuk+Mm9UtnnxYVsgDYe5NovREsbncljByX6V/EB4B2vUyOr8bftOP l9Zjus4PjZPx3NjNd7BYM3KaoAu5lgAiUOfQoGuqppeON/sIlD41+E6epbVS0+sC AwEAAaOCAqUwggKhMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0G A1UdDgQWBBR3cwd0wyoZQE6ozGjNKtQLmywvMzBFBgNVHREEPjA8ghtzdGFnZS5i bGFja2Jvb2sudGlsYWJzLnRlY2iCHSouc3RhZ2UuYmxhY2tib29rLnRpbGFicy50 ZWNoMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVz dC5jb20vc2NhMWIuY3JsMCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeBDAEC ATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFi LmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5h bWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwggEDBgorBgEE AdZ5AgQCBIH0BIHxAO8AdQDuS723dc5guuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9 ywAAAWwrwtN0AAAEAwBGMEQCICLomPMCkdk3AfSJGdge+BXtFLvnQo0Ibl5cHn3d FUSyAiBhMasZ3lF1pvY4JhEVSFm1BPI+DI+hnNbCsd04uwG+GQB2AId1v+dZfPiM Q5lfvfNu/1aNR1Y2/0q1YMG06v9eoIMPAAABbCvC1BEAAAQDAEcwRQIgeg3Ru1jM PpLoUHop2Ih/F2Ya2ZwFtCEaQR/PqhxKHwUCIQD0GErAHAoWOMYXuP0OVy7wkjai G7YjcdXcmYRAQUWuxzANBgkqhkiG9w0BAQsFAAOCAQEAr8oU5BqyhcVcxyqyUrR+ P8swkhXHS+QzczY6bwsRpOleqILlgegle67EQoTK4WEkpVIdACBTbzEtMv6WwS8N LpfwZsDf3xhcd9rq8dwayAd/8W1lheB91g+wM+mmHdIfS5QLpmZb8HQ5hjWTURsP gOue3IoZOYhuz09sgjF1dINc/jyVmPpJ+4WEOWkBl2H++jvhvyS1Be1mnlj2V0Ja QFPSYCnuSdrCuO13QUvdZGB1NB8ePvWpo2jPXs8NemynKd+qxUa43xCW0BuGtNTu hH7GT3f05mb2HWKpLqBdaM34nW8IzEzmENs9PVZ1bsbaSHo7EWq09qGdS/b+NHUb Yg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoteD4IFYEyKCGRqFpYBH 6PzBQVc6cx/nA7UkMh78cbnfoHmjHs/WS7jfRxWDyh2eOsGGHZU/Y9Buf98xanx3 kiJK/b7Ns0AzgGL/XNxGnEvpZVtjZ60c/fW0ouPkvV+U+DcdrvIuTi37YCPdQM4f pCWz0kqGDRQXLcWRsNh0H1gYufXcxj/4Noce4OiHuDw5tFPQOJ/nw74gFQp+qSWB bs/o9ysrplXn2Yu6T4yb1S2efFhWyANh7k2i9ESxudyWMHJfpX8QHgHa9TI6vxt+ 04+X1mO6zg+Nk/Hc2M13sFgzcpqgC7mWACJQ59Cga6qml443+wiUPjX4Tp6ltVLT 6wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20224854694889236919921868219231727895 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-26 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stage.blackbook.tilabs.tech' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20556879883123130829665420120786043773526328019080783143501529443174555856175512864674139814694445523189878268889543736870430731047146509449501176158938082499067198937292680234745575467304281459510479280470252673142226280603692787937015175223391612395683295906745592592013488579397534358041658476382699428862952489376124646922407350334323535450291032992088226921832942597731118204767711194516768652000613586881649394844690473366890335678314149326215135715352762990026484965658546368086698618755543788956370173959647155142583276328079152549782783979331369266969146405632845516609597366366656824824247353556169057817579 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 77730774c32a19404ea8cc68cd2ad40b9b2c2f33 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.blackbook.tilabs.tech' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stage.blackbook.tilabs.tech' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000016c2bc2d3740000040300463044022022e898f30291d93701f48919d81ef815ed14bbe7428d086e5e5c1e7ddd1544b202206131ab19de5175a6f6382611154859b504f23e0c8fa19cd6c2b1dd38bb01be190076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016c2bc2d411000004030047304502207a0dd1bb58cc3e92e8507a29d8887f17661ad99c05b4211a411fcfaa1c4a1f05022100f4184ac01c0a1638c617b8fd0e572ef09236a21bb62371d5dc9984404145aec7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00afca14e41ab285c55cc72ab252b47e3fcb309215c74be43373363a6f0b11a4e95ea882e581e8257baec44284cae16124a5521d0020536f312d32fe96c12f0d2e97f066c0dfdf185c77daeaf1dc1ac8077ff16d6585e07dd60fb033e9a61dd21f4b940ba6665bf07439863593511b0f80eb9edc8a1939886ecf4f6c82317574835cfe3c9598fa49fb85843969019761fefa3be1bf24b505ed669e58f657425a4053d26029ee49dac2b8ed77414bdd646075341f1e3ef5a9a368cf5ecf0d7a6ca729dfaac546b8df1096d01b86b4d4ee847ec64f77f4e666f61d62a92ea05d68cdf89d6f08cc4ce610db3d3d56756ec6da487a3b116ab4f6a19d4bf6fe34751b62