pren.gurkensalat.ch
Issued by Hostpoint DV SSL CA - G2
About this certificate
This digital certificate with serial number 5e:47:f1:28:1e:c8:ea:db:df:12:9a:d1:a1:09:92:2b was issued on by Hostpoint AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=pren.gurkensalat.ch
Hostpoint AG
Organization:
Hostpoint AG
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 5e:47:f1:28:1e:c8:ea:db:df:12:9a:d1:a1:09:92:2bSerial Number (int): 125320975920106489985960505716280758827
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: b4:e3:2a:8e:85:bb:b2:b7:27:3c:e9:ce:9a:a0:80:6f:0a:4b:02:48
Fingerprint (sha1): 34:4e:1c:76:34:26:99:12:c8:a9:bd:77:a8:7a:35:a0:f2:4e:f6:a2
Fingerprint (sha256): 19:0c:f0:42:b8:52:6e:f2:fb:b7:e8:37:82:b2:47:1e:5f:67:a5:40:9f:18:2b:0e:2d:22:23:d9:b3:91:33:5c
Issuing Certificate URL: http://hostpoint-aia.digitalcertvalidation.com/hostpointg2.crt
Revocation information
OCSP Server: http://hostpoint-ocsp.digitalcertvalidation.comCRL Distribution Point: http://hostpoint-crl.digitalcertvalidation.com/hostpointg2.crl
Check the revocation status for certificate pren.gurkensalat.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pren.gurkensalat.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pren.gurkensalat.ch
Other certificates including the domain name gurkensalat.ch
(limited to 100 certificates)
www.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
pren.gurkensalat.ch
www.pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.john.gurkensalat.ch
pren.gurkensalat.ch
john.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.pren.gurkensalat.ch
gurkensalat.ch
www.john.gurkensalat.ch
em.gurkensalat.ch
pren.gurkensalat.ch
gurkensalat.ch
api.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
www.pren.gurkensalat.ch
api.gurkensalat.ch
www.em.gurkensalat.ch
gurkensalat.ch
pren.gurkensalat.ch
pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
john.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
pren.gurkensalat.ch
www.pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.john.gurkensalat.ch
pren.gurkensalat.ch
john.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.pren.gurkensalat.ch
gurkensalat.ch
www.john.gurkensalat.ch
em.gurkensalat.ch
pren.gurkensalat.ch
gurkensalat.ch
api.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
www.pren.gurkensalat.ch
api.gurkensalat.ch
www.em.gurkensalat.ch
gurkensalat.ch
pren.gurkensalat.ch
pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
john.gurkensalat.ch
gurkensalat.ch
Certificate
The complete raw certificate details for pren.gurkensalat.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIQXkfxKB7I6tvfEprRoQmSKzANBgkqhkiG9w0BAQsFADBm MQswCQYDVQQGEwJDSDEVMBMGA1UEChMMSG9zdHBvaW50IEFHMR0wGwYDVQQLExRE b21haW4gVmFsaWRhdGVkIFNTTDEhMB8GA1UEAxMYSG9zdHBvaW50IERWIFNTTCBD QSAtIEcyMB4XDTE2MTExOTAwMDAwMFoXDTE3MTExOTIzNTk1OVowHjEcMBoGA1UE AwwTcHJlbi5ndXJrZW5zYWxhdC5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAKNexo3jDkd834ozLgbOorGXY2XDsWGSyxYA08+Jtk5VOT8piklAQplM JeM32t8L6BAFgamxbx02NE9yT6HWMEr7eaRFDFco94UsRMJsHGlAPtnAsPLyzzLe x3NDTSg/7dsAmrarMsVUpE+3qR/ibT8VJOM/lQK2FyhhObnn6xuc8JGqz/gjbdSU l/6QLKkG+roIW/Cl2duYVUWZOf0uHLCbSL9LvIOh2zkou7cUF/yXX19OpOH2YMlk ZOyqAZXnv43uzn72epr0NYBCJNhN6aSGJccAt2vzMRfA0oUsIpO/YxsK6tnOQwbh zyP9o4tKEQMB4JVOlpYIUOFYd6kMpoUCAwEAAaOCAiEwggIdMB4GA1UdEQQXMBWC E3ByZW4uZ3Vya2Vuc2FsYXQuY2gwCQYDVR0TBAIwADBPBgNVHR8ESDBGMESgQqBA hj5odHRwOi8vaG9zdHBvaW50LWNybC5kaWdpdGFsY2VydHZhbGlkYXRpb24uY29t L2hvc3Rwb2ludGcyLmNybDCBnQYDVR0gBIGVMIGSMIGPBgZngQwBAgEwgYQwPwYI KwYBBQUHAgEWM2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMvcmVw b3NpdG9yeS9sZWdhbDBBBggrBgEFBQcCAjA1DDNodHRwczovL3d3dy5nZW90cnVz dC5jb20vcmVzb3VyY2VzL3JlcG9zaXRvcnkvbGVnYWwwHwYDVR0jBBgwFoAUtOMq joW7srcnPOnOmqCAbwpLAkgwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjCBmQYIKwYBBQUHAQEEgYwwgYkwOwYIKwYBBQUHMAGG L2h0dHA6Ly9ob3N0cG9pbnQtb2NzcC5kaWdpdGFsY2VydHZhbGlkYXRpb24uY29t MEoGCCsGAQUFBzAChj5odHRwOi8vaG9zdHBvaW50LWFpYS5kaWdpdGFsY2VydHZh bGlkYXRpb24uY29tL2hvc3Rwb2ludGcyLmNydDATBgorBgEEAdZ5AgQDAQH/BAIF ADANBgkqhkiG9w0BAQsFAAOCAQEAV6uqKHlA39Dc/CQKoql0PCklSbPsNj+oZ62C wY2jBDellAGjItM5xJrlf61mKk1k+jclZbgOXuMTtqimxq+j9uLZTIYXj/WWMrc3 /fMTyTM/B29x/iP7zmAmVNNfi9j+KEaNqD/uuuFYd7gRm8D4jK9z5a6C/UJtzTzv IfzoFK0Hw6djRPjCiNIXZTvaENhjiYlCdLZPxgcTXBG4a+vsucw8sdtJ6WP5vVP1 WM1Mdz1P6TEXPMBB43SMS/0aCbbI4OqWzz1NwGj+ElZXpnRlKBLNT3qJs4p4M43E EuqVXAtu2XGcTKXg1C7H8Ziudw9HCsEpyCd0O2yIc+w6ZO8ZZQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo17GjeMOR3zfijMuBs6i sZdjZcOxYZLLFgDTz4m2TlU5PymKSUBCmUwl4zfa3wvoEAWBqbFvHTY0T3JPodYw Svt5pEUMVyj3hSxEwmwcaUA+2cCw8vLPMt7Hc0NNKD/t2wCatqsyxVSkT7epH+Jt PxUk4z+VArYXKGE5uefrG5zwkarP+CNt1JSX/pAsqQb6ughb8KXZ25hVRZk5/S4c sJtIv0u8g6HbOSi7txQX/JdfX06k4fZgyWRk7KoBlee/je7OfvZ6mvQ1gEIk2E3p pIYlxwC3a/MxF8DShSwik79jGwrq2c5DBuHPI/2ji0oRAwHglU6WlghQ4Vh3qQym hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 125320975920106489985960505716280758827 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hostpoint AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hostpoint DV SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'pren.gurkensalat.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20623579300930914140058371816216505819204340977117935718219680726614881145291583239955684005120556874000668664021329525429483005976946366066903626511858237163154889126628270768562944999767557025932819127536483824244460484648670952556765803220553593234382610465133564646287673071906350343348476603466234878146301077768059099074074703582130403862767512908792589120528295460783969726003163334141394521939235914452093345742523019852005026253163789872976159240602746250802127741585992046993485359947579514994364383658430362021211521015085505886761488318376415653894938612104287896605222847300999165232186080179476723705477 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pren.gurkensalat.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hostpoint-crl.digitalcertvalidation.com/hostpointg2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b4e32a8e85bbb2b7273ce9ce9aa0806f0a4b0248 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (140 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hostpoint-ocsp.digitalcertvalidation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hostpoint-aia.digitalcertvalidation.com/hostpointg2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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