insurance.pb.ua
Issued by RapidSSL SHA256 CA
About this certificate
This digital certificate with serial number 05:0e:92:a4:42:ee:f9:0b:b1:8b:39:ac:1f:b4:98:80 was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=insurance.pb.ua
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:0e:92:a4:42:ee:f9:0b:b1:8b:39:ac:1f:b4:98:80Serial Number (int): 6721806380879763512790582099690428544
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 97:c2:27:50:9e:c2:c9:ec:0c:88:32:c8:7c:ad:e2:a6:01:4f:da:6f
Fingerprint (sha1): 32:c1:3c:ff:3d:0d:59:b8:d4:df:b5:8b:76:a6:e6:6c:92:70:34:c0
Fingerprint (sha256): 17:9f:4a:d2:a1:79:98:c6:64:6c:c9:15:a9:aa:50:5f:23:cf:01:5f:81:ce:24:ac:48:f4:b4:ba:ce:96:bb:20
Issuing Certificate URL: http://gp.symcb.com/gp.crt
Revocation information
OCSP Server: http://gp.symcd.comCRL Distribution Point: http://gp.symcb.com/gp.crl
Check the revocation status for certificate insurance.pb.ua
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for insurance.pb.ua
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
insurance.pb.ua
Other certificates including the domain name pb.ua
(limited to 100 certificates)
limit.pb.ua
900.pb.ua
bigbro.pb.ua
putivnykgp.pb.ua
m.pb.ua
cashback.pb.ua
rmweb.pb.ua
m.pb.ua
pb.ua
q.pb.ua
invoices.pb.ua
consolidator.nc.pb.ua
tp1-pbcom.pb.ua
limit.pb.ua
confluence.pb.ua
dm.pb.ua
rimsweb.pb.ua
my.pb.ua
sb.pb.ua
www.docs.pb.ua
tickets.pb.ua
sendmoney.pb.ua
inventpay.pb.ua
*.dm.pb.ua
*.acsk.pb.ua
bonus.pb.ua
srv2.pbcom.pb.ua
iknow.pb.ua
cm2.pbcom.pb.ua
tapi.nc.pb.ua
udesk.pb.ua
pass.pb.ua
fin.do.pb.ua
discount.pb.ua
vmark.pb.ua
help.pb.ua
stage.messaging-service.pb.ua
doc.pb.ua
rmweb.pb.ua
taxi.pb.ua
bok.pb.ua
messaging-service.pb.ua
riavisa.pb.ua
messaging-service.pb.ua
oplata.pb.ua
core.pb.ua
wrm.pb.ua
dhn.pb.ua
ifond.pb.ua
discount.pb.ua
stocktest.pb.ua
blago.pb.ua
cb.pb.ua
my.pb.ua
help.pb.ua
atmqrcode.pb.ua
old-juniorbank.pb.ua
gopay.pb.ua
stock.pb.ua
kviten.pb.ua
chast.pb.ua
holder.pb.ua
pax.pb.ua
slides.pb.ua
www.inkubator.pb.ua
doc.pb.ua
limits.pb.ua
q.pb.ua
webconstruct.pb.ua
blago.pb.ua
webconstruct.msb.pb.ua
taxi.pb.ua
testmms.pb.ua
insurance.pb.ua
perevodpm.pb.ua
bok.pb.ua
freelance.pb.ua
insurance.pb.ua
kpay.pb.ua
bigbro.pb.ua
www.auto.pb.ua
hotmessage.pb.ua
partpayment.pb.ua
s-port.pb.ua
dhn.pb.ua
brief.pb.ua
umark-next.pb.ua
udesk.pb.ua
cm2.pbcom.pb.ua
emulator.pb.ua
docs.pb.ua
*.dm.pb.ua
tapi.nc.pb.ua
sip2-pbcom.pb.ua
npsout.pb.ua
limit.pb.ua
ws.pb.ua
oplata.pb.ua
lot.pb.ua
oneclick.pb.ua
900.pb.ua
bigbro.pb.ua
putivnykgp.pb.ua
m.pb.ua
cashback.pb.ua
rmweb.pb.ua
m.pb.ua
pb.ua
q.pb.ua
invoices.pb.ua
consolidator.nc.pb.ua
tp1-pbcom.pb.ua
limit.pb.ua
confluence.pb.ua
dm.pb.ua
rimsweb.pb.ua
my.pb.ua
sb.pb.ua
www.docs.pb.ua
tickets.pb.ua
sendmoney.pb.ua
inventpay.pb.ua
*.dm.pb.ua
*.acsk.pb.ua
bonus.pb.ua
srv2.pbcom.pb.ua
iknow.pb.ua
cm2.pbcom.pb.ua
tapi.nc.pb.ua
udesk.pb.ua
pass.pb.ua
fin.do.pb.ua
discount.pb.ua
vmark.pb.ua
help.pb.ua
stage.messaging-service.pb.ua
doc.pb.ua
rmweb.pb.ua
taxi.pb.ua
bok.pb.ua
messaging-service.pb.ua
riavisa.pb.ua
messaging-service.pb.ua
oplata.pb.ua
core.pb.ua
wrm.pb.ua
dhn.pb.ua
ifond.pb.ua
discount.pb.ua
stocktest.pb.ua
blago.pb.ua
cb.pb.ua
my.pb.ua
help.pb.ua
atmqrcode.pb.ua
old-juniorbank.pb.ua
gopay.pb.ua
stock.pb.ua
kviten.pb.ua
chast.pb.ua
holder.pb.ua
pax.pb.ua
slides.pb.ua
www.inkubator.pb.ua
doc.pb.ua
limits.pb.ua
q.pb.ua
webconstruct.pb.ua
blago.pb.ua
webconstruct.msb.pb.ua
taxi.pb.ua
testmms.pb.ua
insurance.pb.ua
perevodpm.pb.ua
bok.pb.ua
freelance.pb.ua
insurance.pb.ua
kpay.pb.ua
bigbro.pb.ua
www.auto.pb.ua
hotmessage.pb.ua
partpayment.pb.ua
s-port.pb.ua
dhn.pb.ua
brief.pb.ua
umark-next.pb.ua
udesk.pb.ua
cm2.pbcom.pb.ua
emulator.pb.ua
docs.pb.ua
*.dm.pb.ua
tapi.nc.pb.ua
sip2-pbcom.pb.ua
npsout.pb.ua
limit.pb.ua
ws.pb.ua
oplata.pb.ua
lot.pb.ua
oneclick.pb.ua
Certificate
The complete raw certificate details for insurance.pb.ua in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEbzCCA1egAwIBAgIQBQ6SpELu+QuxizmsH7SYgDANBgkqhkiG9w0BAQsFADBC MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEbMBkGA1UEAxMS UmFwaWRTU0wgU0hBMjU2IENBMB4XDTE3MDQyNDAwMDAwMFoXDTE4MDcyNDIzNTk1 OVowGjEYMBYGA1UEAwwPaW5zdXJhbmNlLnBiLnVhMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEApOBRINX6TBi/W+mctP6FrdwpO4xUpWMJTuMab9KKQrfA gm9OemgRSACm64lif7FZRsiCzpdUxRFKaRk77LUv0thQomNwz++2za9OT867IKiC jIBhUdKmV7rx8KJ3RSVqBewQJMMx8Ke9zd4Lx27rDQDCh+Vm+3G1bQkMhZVOVcB6 KSJrGVsLnfFL4FffT8zsHxJp9sseozRhURdZDXVieb7kGadISF0qYey/7LLqEeIS Ybkk1H98rjWGx4KvzEh2okSpjbAtytUM6KIxciV2e8HoFDZ9GnKKAH5c5MRG6g/+ a/Z9ubUg4ihn3eN+XSAEHKrsGBqapLf8ldLielyzIQIDAQABo4IBhzCCAYMwGgYD VR0RBBMwEYIPaW5zdXJhbmNlLnBiLnVhMAkGA1UdEwQCMAAwKwYDVR0fBCQwIjAg oB6gHIYaaHR0cDovL2dwLnN5bWNiLmNvbS9ncC5jcmwwbwYDVR0gBGgwZjBkBgZn gQwBAgEwWjAqBggrBgEFBQcCARYeaHR0cHM6Ly93d3cucmFwaWRzc2wuY29tL2xl Z2FsMCwGCCsGAQUFBwICMCAMHmh0dHBzOi8vd3d3LnJhcGlkc3NsLmNvbS9sZWdh bDAfBgNVHSMEGDAWgBSXwidQnsLJ7AyIMsh8reKmAU/abzAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEsw STAfBggrBgEFBQcwAYYTaHR0cDovL2dwLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYa aHR0cDovL2dwLnN5bWNiLmNvbS9ncC5jcnQwEwYKKwYBBAHWeQIEAwEB/wQCBQAw DQYJKoZIhvcNAQELBQADggEBAAgTS+D3W5EEG+TbFvRYLaiHHSYg10xIkj/5Sj4S tu03x8Je28KDV5EeXWFbR3LVuYgz2+ZuTWGQoLRjAN6ZusxCqfEPRh4bw73P6b5+ Gl0JrIj7zlfVA1K7Cl6Hyhk9zSXSWMXpZuecrJq9KhitYwtujXCrL3ycdT1fM4Nu C1KEDBnMCQURCOq+x65AKD980xIMFZ7K1Z4pf/w7chXE09nwnl6hF5h1qqVy55Zr zDsMP3/JZCH9RSNRj7zC76aDii4fOP2+Nfm2KlaBeT+W0f94NEM1lxWrHWZVgfVB x2Cl44EdlZYhbBiWgMB7/3GUQ5xobJvBhBwZApDnvuva58U= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOBRINX6TBi/W+mctP6F rdwpO4xUpWMJTuMab9KKQrfAgm9OemgRSACm64lif7FZRsiCzpdUxRFKaRk77LUv 0thQomNwz++2za9OT867IKiCjIBhUdKmV7rx8KJ3RSVqBewQJMMx8Ke9zd4Lx27r DQDCh+Vm+3G1bQkMhZVOVcB6KSJrGVsLnfFL4FffT8zsHxJp9sseozRhURdZDXVi eb7kGadISF0qYey/7LLqEeISYbkk1H98rjWGx4KvzEh2okSpjbAtytUM6KIxciV2 e8HoFDZ9GnKKAH5c5MRG6g/+a/Z9ubUg4ihn3eN+XSAEHKrsGBqapLf8ldLielyz IQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6721806380879763512790582099690428544 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'insurance.pb.ua' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20813696804085672038557225172608672365313104458542831831346693261475512192317126928987691153322938097836250048266069543489651107248762840715996080960798246789723947534715815589742730436119520621920970032724695210330018572306830718856546596251572024682066527068981559905454856602456986570144788772324809318482849933970578326060868711464970488242997934149017584475269736543783828031576127721935516062862214859249622022408181538834368822418769109400495276322608267519582570690267775509075914494106425794972641664265621485872685956847266367418534904028842934203357089968824474835614281925563202836453074757434746578187041 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insurance.pb.ua' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 97c227509ec2c9ec0c8832c87cade2a6014fda6f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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