rec-portail.afpa.fr
Issued by R3
About this certificate
This digital certificate with serial number 03:ea:3d:b4:5a:c4:80:68:2d:6d:33:ba:be:83:fb:f6:bb:0a was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=rec-portail.afpa.fr
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ea:3d:b4:5a:c4:80:68:2d:6d:33:ba:be:83:fb:f6:bb:0aSerial Number (int): 341044951016943080733031059114750335433482
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d5:17:09:32:77:75:23:13:88:d9:31:ec:c2:17:e2:8d:f6:8b:5d:20
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 08:eb:2b:eb:e1:25:61:f2:34:c4:80:71:c3:2c:1d:49:df:77:96:bd
Fingerprint (sha256): 15:ea:4f:ae:db:e0:07:5d:3c:e2:84:02:74:a9:22:d1:63:c5:53:37:dd:08:47:b3:38:59:9a:02:53:69:89:df
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate rec-portail.afpa.fr
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rec-portail.afpa.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rec-portail.afpa.fr
Other certificates including the domain name afpa.fr
(limited to 100 certificates)
mooc.afpa.fr
hebergement-afpa.fr
*.afpa.fr
access.afpa.fr
wconvivio.afpa.fr
*.afpa.fr
copilote-sept.afpa.fr
www.questionnaires.hebergement-afpa.fr
www.tsgp.afpa.fr
mooc.afpa.fr
convivio.afpa.fr
hebergement-afpa.fr
*.afpa.fr
manager.eforpro.afpa.fr
mooc.afpa.fr
www.pprod.tsgp.afpa.fr
*.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
moocfle.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
eforpro.afpa.fr
bnr.afpa.fr
www.certification.afpa.fr
mooc.afpa.fr
rec-portail.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
mooc.afpa.fr
*.afpa.fr
moocfle.afpa.fr
hebergement-afpa.fr
www.rapportactivite.hebergement-afpa.fr
evenement.afpa.fr
tr.infos.afpa.fr
mooc.afpa.fr
www.admin.di.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
convivio.afpa.fr
www.admin.di.afpa.fr
www.enquetes.afpa.fr
eforpro.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
wslync.afpa.fr
*.afpa.fr
mooc.afpa.fr
preprod-bnr.afpa.fr
stream.tsgp.afpa.fr
www.banque.di.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
rapportactivite.hebergement-afpa.fr
www.catalogues.afpa.fr
mooc.afpa.fr
www.enquetes.afpa.fr
tr.portail.afpa.fr
WWW.MONPARCOURS.TSGP.AFPA.FR
www.certification.afpa.fr
*.afpa.fr
hebergement-afpa.fr
access.afpa.fr
convivio.afpa.fr
www.enquetes.afpa.fr
moocfle.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
moocfle.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
moocfle.afpa.fr
www.afpa.fr
afpasupplierportail.afpa.fr
stream.tsgp.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
eforpro.afpa.fr
videos.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
www.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
www.afpa.fr
www.catalogues.afpa.fr
www.admin.di.afpa.fr
bnr.afpa.fr
tr.portail.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
habilitation.eforpro.afpa.fr
www.afpa.fr
moocfle.afpa.fr
*.afpa.fr
eforpro.afpa.fr
hebergement-afpa.fr
videos.afpa.fr
*.afpa.fr
*.afpa.fr
metis.afpa.fr
tr.portail.afpa.fr
www.banque.di.afpa.fr
bnr.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
mooc.afpa.fr
www.admin.di.afpa.fr
afpasupplierportail.afpa.fr
moocfle.afpa.fr
www.monparcours.tsgp.afpa.fr
www.afpa.fr
hebergement-afpa.fr
*.afpa.fr
access.afpa.fr
wconvivio.afpa.fr
*.afpa.fr
copilote-sept.afpa.fr
www.questionnaires.hebergement-afpa.fr
www.tsgp.afpa.fr
mooc.afpa.fr
convivio.afpa.fr
hebergement-afpa.fr
*.afpa.fr
manager.eforpro.afpa.fr
mooc.afpa.fr
www.pprod.tsgp.afpa.fr
*.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
moocfle.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
eforpro.afpa.fr
bnr.afpa.fr
www.certification.afpa.fr
mooc.afpa.fr
rec-portail.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
mooc.afpa.fr
*.afpa.fr
moocfle.afpa.fr
hebergement-afpa.fr
www.rapportactivite.hebergement-afpa.fr
evenement.afpa.fr
tr.infos.afpa.fr
mooc.afpa.fr
www.admin.di.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
convivio.afpa.fr
www.admin.di.afpa.fr
www.enquetes.afpa.fr
eforpro.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
wslync.afpa.fr
*.afpa.fr
mooc.afpa.fr
preprod-bnr.afpa.fr
stream.tsgp.afpa.fr
www.banque.di.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
rapportactivite.hebergement-afpa.fr
www.catalogues.afpa.fr
mooc.afpa.fr
www.enquetes.afpa.fr
tr.portail.afpa.fr
WWW.MONPARCOURS.TSGP.AFPA.FR
www.certification.afpa.fr
*.afpa.fr
hebergement-afpa.fr
access.afpa.fr
convivio.afpa.fr
www.enquetes.afpa.fr
moocfle.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
moocfle.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
moocfle.afpa.fr
www.afpa.fr
afpasupplierportail.afpa.fr
stream.tsgp.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
eforpro.afpa.fr
videos.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
www.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
www.afpa.fr
www.catalogues.afpa.fr
www.admin.di.afpa.fr
bnr.afpa.fr
tr.portail.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
habilitation.eforpro.afpa.fr
www.afpa.fr
moocfle.afpa.fr
*.afpa.fr
eforpro.afpa.fr
hebergement-afpa.fr
videos.afpa.fr
*.afpa.fr
*.afpa.fr
metis.afpa.fr
tr.portail.afpa.fr
www.banque.di.afpa.fr
bnr.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
mooc.afpa.fr
www.admin.di.afpa.fr
afpasupplierportail.afpa.fr
moocfle.afpa.fr
www.monparcours.tsgp.afpa.fr
www.afpa.fr
Certificate
The complete raw certificate details for rec-portail.afpa.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEADCCAuigAwIBAgISA+o9tFrEgGgtbTO6voP79rsKMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMDMxOTEzMjRaFw0yNDAzMDIxOTEzMjNaMB4xHDAaBgNVBAMT E3JlYy1wb3J0YWlsLmFmcGEuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDnFNRd8ykpV3/cNoeOLjJywVBlOwwJsgcfuCDWC49VuYsYiq7FlpdS+0U5 8y+HsubB2tMqn6WnA3DJ0dugZttW3whoulRgpqZCSuFQqbo29uTwfRMwn4zYYIBz QxitVWWRt31Yj6OtbvQG9h3ikPYNggKju/pW/ocix7h5DR4Z5K3jBhcjARRC7TM1 EbOTpuVaqseKTrmv6aE9YPiFvbj10JQPPPRkR5YID4G36s/501bXVQcPCwnQbrG7 Gyib0QpdWwuFfx7wWbYGvU5OImyzErsdg/747uiK8V3WQ0hmn59YjfrJ2FIspG11 UgA70+uA1xTxW2h38w3zZhYpRASlAgMBAAGjggEiMIIBHjAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFNUXCTJ3dSMTiNkx7MIX4o32i10gMB8GA1UdIwQYMBaAFBQusxe3 WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0 cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5j ci5vcmcvMB4GA1UdEQQXMBWCE3JlYy1wb3J0YWlsLmFmcGEuZnIwEwYDVR0gBAww CjAIBgZngQwBAgEwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQAD ggEBAFfJbTiiMXT5+5ud8WPyay79U09Z4xWPZUr2EQSFzK4dwYJxy4YnbfMR32QM 6IJMSIu9Re6ZvE4pKb4KMGkY+3wsVA2Da2Hjb8zqiOITjiaI6mJmmLD0i7ek1hMq ehDacnloFYv742CgbHddD39ufq2Cy9ZeRrvtw535gLeTZJ6DmVUFxs1ugLaEbGIs qAX1N0SDqpyJt1ghFp+CHlYuy7xm7zLeaXQje1SMygPk3h8nHgmGTE/jmBLeJvJw +tGjqKTBS/LmnXjf2C3vsvG8mfaeWR7r4rO1SNTvtlyJtVRAxN4h7WbcpPWwIePI l68vxu/JVb/Z/gPAJbL/FGeqX2g= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5xTUXfMpKVd/3DaHji4y csFQZTsMCbIHH7gg1guPVbmLGIquxZaXUvtFOfMvh7LmwdrTKp+lpwNwydHboGbb Vt8IaLpUYKamQkrhUKm6Nvbk8H0TMJ+M2GCAc0MYrVVlkbd9WI+jrW70BvYd4pD2 DYICo7v6Vv6HIse4eQ0eGeSt4wYXIwEUQu0zNRGzk6blWqrHik65r+mhPWD4hb24 9dCUDzz0ZEeWCA+Bt+rP+dNW11UHDwsJ0G6xuxsom9EKXVsLhX8e8Fm2Br1OTiJs sxK7HYP++O7oivFd1kNIZp+fWI36ydhSLKRtdVIAO9PrgNcU8Vtod/MN82YWKUQE pQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 341044951016943080733031059114750335433482 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-03 19:13:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-02 19:13:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rec-portail.afpa.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29171319885307661505858237212844123681804091341541241256578372685303311761097862053419650828076903914424210663997312216295581358860607013270826364804371286589513736848736434256754075511459607991327651394481575008476156312616133345310306878111006818658186017388361829262359262664675816634820359499012741930907283666479447772398034163463669701293184203897374561703886697878619030206416873873977324956435074519317845175961236014186209935425035169788812405090219596197554175427190586625970413218981376454791073182751563359491465076688411786668885192554404089098006848841855740836473461029686332003354215431157711431271589 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d51709327775231388d931ecc217e28df68b5d20 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rec-portail.afpa.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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