www.otb.org
- OTB S.P.A. -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 06:bd:42:6d:b6:b4:c3:94:4c:d9:5c:17:95:92:a7:61 was issued on by DigiCert Inc.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
OTB S.P.A.
Organization:
OTB S.P.A.
Locality:
Breganze
Country: IT
Country: IT
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:bd:42:6d:b6:b4:c3:94:4c:d9:5c:17:95:92:a7:61Serial Number (int): 8958059412420934756411161105159858017
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 80:53:f4:8f:73:60:3a:80:53:5a:c6:e1:cf:53:20:05:80:23:3f:00
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): f8:b8:e7:80:4a:f2:01:b4:dc:dd:68:21:fd:91:48:47:65:30:f7:0d
Fingerprint (sha256): 20:b7:8f:33:77:31:86:a7:7e:12:3b:a8:85:cf:86:04:c1:dc:00:71:e5:8f:98:ec:50:05:7a:62:5e:00:99:59
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate www.otb.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.otb.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.otb.org
Other certificates including the domain name otb.org
(limited to 100 certificates)
b2b.otb.org
b2b.otb.org
www.otb.org
www.otb.org
callmeado.otb.org
login.otb.org
www.otb.org
www.otb.org
www.otb.org
b2bself.otb.org
login.otb.org
loginext.otb.org
www.otb.org
www.otb.org
login.otb.org
b2b.otb.org
www.otb.org
login.otb.org
loginext.otb.org
login.otb.org
www.otb.org
loginext.otb.org
login.otb.org
loginext.otb.org
login.otb.org
callmeado.otb.org
b2b.otb.org
loginext.otb.org
login.otb.org
www.otb.org
login.otb.org
www.otb.org
b2b.otb.org
www.otb.org
loginext.otb.org
b2bself.otb.org
login.otb.org
callmeado.otb.org
b2b.otb.org
b2b.otb.org
login.otb.org
www.otb.org
b2b.otb.org
www.otb.org
www.otb.org
callmeado.otb.org
login.otb.org
www.otb.org
www.otb.org
www.otb.org
b2bself.otb.org
login.otb.org
loginext.otb.org
www.otb.org
www.otb.org
login.otb.org
b2b.otb.org
www.otb.org
login.otb.org
loginext.otb.org
login.otb.org
www.otb.org
loginext.otb.org
login.otb.org
loginext.otb.org
login.otb.org
callmeado.otb.org
b2b.otb.org
loginext.otb.org
login.otb.org
www.otb.org
login.otb.org
www.otb.org
b2b.otb.org
www.otb.org
loginext.otb.org
b2bself.otb.org
login.otb.org
callmeado.otb.org
b2b.otb.org
b2b.otb.org
login.otb.org
www.otb.org
Certificate
The complete raw certificate details for www.otb.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGszCCBZugAwIBAgIQBr1Cbba0w5RM2VwXlZKnYTANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjMw NTA5MDAwMDAwWhcNMjQwNTIxMjM1OTU5WjBLMQswCQYDVQQGEwJJVDERMA8GA1UE BxMIQnJlZ2FuemUxEzARBgNVBAoTCk9UQiBTLlAuQS4xFDASBgNVBAMTC3d3dy5v dGIub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0UO3qBUz5KoL 5u3z73arq3KIku0dYufhUQuFrGN7LymSO3ovRBFFT3a+ybAuejbXX6j1LE5btgLO V0IcmZrhyIUNHpkZBqsxv07MhuZYG6B0VyXLxWt6RBggsqgTeOx5VyOfx4TPvtJr TdK8TNvAJy4D0Qvp0glSwb42LgDEgrscV1Qy/Rd+4DD4q0EHgNL06BNH14GGq1+T r0eewQfw2pAiB+dAT78wX+dp1bJ1O48MRN1i7d4byA4XiayeId7aDYMuGVVJonOk gdyKyEFOU+OCXTTt7W3mQ1WHiGACua+yJsQ5x/CmJ5/BiY1xWngvlDYR6VnGE5jQ D9wNRr4wIQIDAQABo4IDgzCCA38wHwYDVR0jBBgwFoAUdIWAwGbH3zfez70pN6oD Hb7tzRcwHQYDVR0OBBYEFIBT9I9zYDqAU1rG4c9TIAWAIz8AMBYGA1UdEQQPMA2C C3d3dy5vdGIub3JnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCBlDBIoEagRIZCaHR0cDovL2NybDMuZGln aWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsRzJUTFNSU0FTSEEyNTYyMDIwQ0ExLTEu Y3JsMEigRqBEhkJodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9i YWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcmwwPgYDVR0gBDcwNTAzBgZngQwB AgIwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMIGH BggrBgEFBQcBAQR7MHkwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0 LmNvbTBRBggrBgEFBQcwAoZFaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0R2xvYmFsRzJUTFNSU0FTSEEyNTYyMDIwQ0ExLTEuY3J0MAkGA1UdEwQC MAAwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB2AO7N0GTV2xrOxVy3nbTNE6Iy h0Z8vOzew1FIWUZxH7WbAAABiACBx3cAAAQDAEcwRQIhAMaLJzjirv5af44pTL7K vP4Pl1yEGlcXgMq1rW1QjCM7AiBR35M4e6D+kEJ2wdpfOrqS864cacaW0JkoFY3d b9DNdAB1AHPZnokbTJZ4oCB9R53mssYc0FFecRkqjGuAEHrBd3K1AAABiACBx14A AAQDAEYwRAIgVusZpudwWwgthVWVnFe4dUKaXSS/LOTuXUhX3GJHb5YCIAmSpYFW 0CkKKArAPW8qqwNy+o0q4ZUe3QTpxHQdhSXPAHYASLDja9qmRzQP5WoC+p0w6xxS ActW3SyB2bu/qznYhHMAAAGIAIHHSAAABAMARzBFAiAHu8+HTOUzFnFEfIs1XMP1 U9I2ISOZVROjO09QL1B0ywIhAOgWSCsinwk+tM5oSefFn+WQB/SB2s81Npb15nHM F9A2MA0GCSqGSIb3DQEBCwUAA4IBAQB3efqqn6Kfn+nOBDSBqsFJQByziTjEMeXX +/dd2Mn3t/LIAuFnd/nE2TOi3WVrlKj/zpT+Lt7qHUkc3YfKXpyPDcJiNgU1Mqpj UAWJ0tSXRNWJHX2vT+nwXWaQ7X1cV9FjSksqBhtd3Uwtcn8I/ibxKIGP2AALVSMr QmuiE9tK5hU8Ah1Xc9+1m8n1KzOyQD+zTwe9KV/AwuSp+3COyvh+qKS5kXPozfQh 0tOCDR9vo8yvAIrJUm9iFnbPcnBa6w0lmlcNxOsmM44CLy7RjRexd7PDN6Hs61OF bZFx1Ajtgxhl/Uq6JldNg9BG1iUFnkpkHHQMDGwj/BLH817NBNI/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0UO3qBUz5KoL5u3z73ar q3KIku0dYufhUQuFrGN7LymSO3ovRBFFT3a+ybAuejbXX6j1LE5btgLOV0IcmZrh yIUNHpkZBqsxv07MhuZYG6B0VyXLxWt6RBggsqgTeOx5VyOfx4TPvtJrTdK8TNvA Jy4D0Qvp0glSwb42LgDEgrscV1Qy/Rd+4DD4q0EHgNL06BNH14GGq1+Tr0eewQfw 2pAiB+dAT78wX+dp1bJ1O48MRN1i7d4byA4XiayeId7aDYMuGVVJonOkgdyKyEFO U+OCXTTt7W3mQ1WHiGACua+yJsQ5x/CmJ5/BiY1xWngvlDYR6VnGE5jQD9wNRr4w IQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8958059412420934756411161105159858017 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Breganze' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OTB S.P.A.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.otb.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26417198436595763803216154900962620534477345687091077458551963278030014006133391070990609136780778745600973146868557216773859859639130188695703320787082643106533141089614008933161825774921296660042631660857217631538312560523100704063710144344830727627720239178669657386775113249993001356609849976742584659517127734336533299629359132085078975976713424214235917759613027479357681579778428161042362194560512789403277747017228312109481161613024819554515233314261297133018094339488691888695254813912223990156466579114026821144571954915162777316810575243068862578755382608019393869573306601607397324279436429787770610659361 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8053f48f73603a80535ac6e1cf53200580233f00 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.otb.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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