*.hub-ap.aclgrc.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0e:67:36:14:ef:21:7a:ab:ba:20:b6:ac:e8:44:a3:bb was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.hub-ap.aclgrc.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:67:36:14:ef:21:7a:ab:ba:20:b6:ac:e8:44:a3:bbSerial Number (int): 19145095426107148137746406421377098683
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f8:c4:99:59:d1:cf:1d:4a:b7:99:11:9c:e2:2f:74:26:85:06:16:4a
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): e4:e1:2f:92:7c:cc:2f:01:76:5f:18:03:a2:d4:2b:0f:8d:5c:3a:d6
Fingerprint (sha256): 1a:28:f0:e7:41:9a:ee:b9:1a:2e:15:da:8e:36:ac:23:a6:ee:12:87:f1:7f:e2:b9:1d:13:28:c7:8a:bb:d8:cb
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.hub-ap.aclgrc.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.hub-ap.aclgrc.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.hub-ap.aclgrc.com
hub-ap.aclgrc.com
hub-ap.aclgrc.com
Other certificates including the domain name aclgrc.com
(limited to 100 certificates)
statuspage.io
status.aclgrc.com
statuspage.io
statuspage.io
*.risks-ap.aclgrc.com
statuspage.io
eu.status.grow.clio.com
statuspage.io
atlas-alerts.mit.edu
statuspage.io
statuspage.io
statuspage.io
*.results-ap.aclgrc.com
3down.mit.edu
highbond-combined-eu.aclgrc.com
statuspage.io
*.results-eu.aclgrc.com
atlas-alerts.mit.edu
statuspage.io
statuspage.io
eu.status.grow.clio.com
new-status.ucsd.edu
highbond-combined-au.aclgrc.com
statuspage.io
statuspage.io
*.results-ap.aclgrc.com
statuspage.io
*.results-au.aclgrc.com
*.risks-eu.aclgrc.com
eu.status.grow.clio.com
statuspage.io
statuspage.io
statuspage.io
atlas-alerts.mit.edu
statuspage.io
*.risks.aclgrc.com
statuspage.io
atlas-alerts.mit.edu
tardis.aclgrc.com
highbond-combined.aclgrc.com
tardis.aclgrc.com
statuspage.io
statuspage.io
statuspage.io
atlas-alerts.mit.edu
statuspage.io
statuspage.io
*.hub-au.aclgrc.com
accounts.aclgrc.com
statuspage.io
statuspage.io
statuspage.io
atlas-alerts.mit.edu
statuspage.io
new-status.ucsd.edu
statuspage.io
*.aclgrc.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
atlas-alerts.mit.edu
downloads.highbond.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
caloes.status.rapiddeploy.com
atlas-alerts.mit.edu
statuspage.io
statuspage.io
new-status.ucsd.edu
atlas-alerts.mit.edu
atlas-alerts.mit.edu
atlas-alerts.mit.edu
new-status.ucsd.edu
statuspage.io
statuspage.io
*.projects-au.aclgrc.com
statuspage.io
statuspage.io
highbond-combined-eu.aclgrc.com
*.projects-eu.aclgrc.com
statuspage.io
atlas-alerts.mit.edu
*.aclgrc.com
highbond-combined-eu.aclgrc.com
statuspage.io
*.robots-eu.aclgrc.com
statuspage.io
*.results-ap.aclgrc.com
*.aclgrc.com
statuspage.io
*.hub-ap.aclgrc.com
statuspage.io
statuspage.io
statuspage.io
*.projects-eu.aclgrc.com
atlas-alerts.mit.edu
status.aclgrc.com
statuspage.io
statuspage.io
*.risks-ap.aclgrc.com
statuspage.io
eu.status.grow.clio.com
statuspage.io
atlas-alerts.mit.edu
statuspage.io
statuspage.io
statuspage.io
*.results-ap.aclgrc.com
3down.mit.edu
highbond-combined-eu.aclgrc.com
statuspage.io
*.results-eu.aclgrc.com
atlas-alerts.mit.edu
statuspage.io
statuspage.io
eu.status.grow.clio.com
new-status.ucsd.edu
highbond-combined-au.aclgrc.com
statuspage.io
statuspage.io
*.results-ap.aclgrc.com
statuspage.io
*.results-au.aclgrc.com
*.risks-eu.aclgrc.com
eu.status.grow.clio.com
statuspage.io
statuspage.io
statuspage.io
atlas-alerts.mit.edu
statuspage.io
*.risks.aclgrc.com
statuspage.io
atlas-alerts.mit.edu
tardis.aclgrc.com
highbond-combined.aclgrc.com
tardis.aclgrc.com
statuspage.io
statuspage.io
statuspage.io
atlas-alerts.mit.edu
statuspage.io
statuspage.io
*.hub-au.aclgrc.com
accounts.aclgrc.com
statuspage.io
statuspage.io
statuspage.io
atlas-alerts.mit.edu
statuspage.io
new-status.ucsd.edu
statuspage.io
*.aclgrc.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
statuspage.io
atlas-alerts.mit.edu
downloads.highbond.com
statuspage.io
statuspage.io
statuspage.io
statuspage.io
caloes.status.rapiddeploy.com
atlas-alerts.mit.edu
statuspage.io
statuspage.io
new-status.ucsd.edu
atlas-alerts.mit.edu
atlas-alerts.mit.edu
atlas-alerts.mit.edu
new-status.ucsd.edu
statuspage.io
statuspage.io
*.projects-au.aclgrc.com
statuspage.io
statuspage.io
highbond-combined-eu.aclgrc.com
*.projects-eu.aclgrc.com
statuspage.io
atlas-alerts.mit.edu
*.aclgrc.com
highbond-combined-eu.aclgrc.com
statuspage.io
*.robots-eu.aclgrc.com
statuspage.io
*.results-ap.aclgrc.com
*.aclgrc.com
statuspage.io
*.hub-ap.aclgrc.com
statuspage.io
statuspage.io
statuspage.io
*.projects-eu.aclgrc.com
atlas-alerts.mit.edu
Certificate
The complete raw certificate details for *.hub-ap.aclgrc.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEjzCCA3egAwIBAgIQDmc2FO8hequ6ILas6ESjuzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTEwMDIwMDAwMDBaFw0yMDExMDIx MjAwMDBaMB4xHDAaBgNVBAMMEyouaHViLWFwLmFjbGdyYy5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWL/hK1HBeQgs1SDXP6yZIFJGWr0puPABY 2aylnYk7TxR91oXlbTdDzV9gg/F6LFpILfXIyDbALArrIPSCA1SWQku90XdiC01e 3w7qk7AXtSweBOZuHC6LUQosgzM7oG09Tpmo3YmjSbn0HjOOreR4bp+paB2L02kd NTHjN2uKYeKm6Aa59yYUp7HoduLDgc4KkndOfufotDLa6+V8bDtFJ8Nl0MXdhWlC CeL3dNK1+Bzgo3nBjmXgNllGfvkXo2Vu5uLVdVwGyq5CkiBcDYwIcfFtBSlnfOSg +CxRBUBI9yRDlHuT6qR6Vga95ab9FaoOu00AqEn5U+SJ1YKTYsK7AgMBAAGjggGf MIIBmzAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQU +MSZWdHPHUq3mRGc4i90JoUGFkowMQYDVR0RBCowKIITKi5odWItYXAuYWNsZ3Jj LmNvbYIRaHViLWFwLmFjbGdyYy5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8v Y3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkwFzAL BglghkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcw AYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAC hipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYD VR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOC AQEANODaVIvIAhbCZMw6iiNao8NPMC8B/gJ7oMjKZ8fWBTx+V1YMQIfJJbV+nl8D YEwM6Fs6awVWe/L3BMv+suGqip3NyrHWHJLL8HPoHggG6FskZzRQuZ5sXg1RI957 0i/E7u1iv2K5i88yCqYNkdoH84ZTaGNhrkFYp7de0p4ZDVY/zjRoue67xyprYhNc geDgXWHyxrBcTl31BzJpuEmTyyGFX2Q1CbOnCw8ArlohuEtonA5GKCkwHw/1RJf1 KZUWbuqmm1Lm+RP8LR5fTiIh5VHA6ChUyzqbXKcmlrZuo2UcABFgkQtO2Waw50tJ 1P/CCa5lSx45vjR5kAdkMLDfjQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAli/4StRwXkILNUg1z+sm SBSRlq9KbjwAWNmspZ2JO08UfdaF5W03Q81fYIPxeixaSC31yMg2wCwK6yD0ggNU lkJLvdF3YgtNXt8O6pOwF7UsHgTmbhwui1EKLIMzO6BtPU6ZqN2Jo0m59B4zjq3k eG6fqWgdi9NpHTUx4zdrimHipugGufcmFKex6Hbiw4HOCpJ3Tn7n6LQy2uvlfGw7 RSfDZdDF3YVpQgni93TStfgc4KN5wY5l4DZZRn75F6Nlbubi1XVcBsquQpIgXA2M CHHxbQUpZ3zkoPgsUQVASPckQ5R7k+qkelYGveWm/RWqDrtNAKhJ+VPkidWCk2LC uwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19145095426107148137746406421377098683 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-02 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.hub-ap.aclgrc.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18959400580189438918318396600736401569747127760212512909880894571992448239452576522020060263051243699696525624093655392651900950485317021136823002664558032555165210499517973087074623336101338447148530679641242953966374186255907465730865541314920428793501701855625064253911461104684173200377235608291468652506853832348057333056344945815975591575385050881317289992329117399979583016317676236757062499785846135966115841395346031360573886217179244934577882527498026992420455745452769027969757409617941636791082465005066700580350570342891012055161540443792564423486334835422816705148363230616598846513632756341491200344763 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f8c49959d1cf1d4ab799119ce22f74268506164a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hub-ap.aclgrc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hub-ap.aclgrc.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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