lma-prd.us-west-2.k8s.lllext.com
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 0a:91:06:38:07:a0:a1:60:28:4c:20:97:85:41:30:46 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=lma-prd.us-west-2.k8s.lllext.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0a:91:06:38:07:a0:a1:60:28:4c:20:97:85:41:30:46Serial Number (int): 14045289135932016718683102425427030086
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 1c:43:91:d6:e1:d6:6a:6c:fb:34:f1:a7:67:75:cf:39:0c:12:0b:b3
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 77:2b:ff:e1:d3:80:ab:92:c3:95:99:a3:e4:67:cb:5b:63:04:31:2b
Fingerprint (sha256): 21:99:70:52:6a:cb:23:2c:9f:6e:7a:5e:02:8a:35:f1:b2:25:28:f3:f8:6e:7b:23:e6:af:02:a5:94:c0:33:2f
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate lma-prd.us-west-2.k8s.lllext.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lma-prd.us-west-2.k8s.lllext.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lma-prd.us-west-2.k8s.lllext.com
lma-prd.k8s.lllext.com
lma-prd.k8s.lllext.com
Other certificates including the domain name lllext.com
(limited to 100 certificates)
*.np.rcsvcs.lllext.com
prod.apis.lllext.com
prod.apis.lllext.com
lma-prd.us-west-2.k8s.lllext.com
preview.apis.lllext.com
ek8s-sbx.us-east-1.k8s.lllext.com
prd-rmcosting.prd-product-systems.aws.lllext.com
ngc-prd.us-west-2.k8s.lllext.com
ngc-npd.us-east-1.k8s.lllext.com
lma-npd-main.us-west-2.k8s.lllext.com
qa-plm-svc.aws.lllext.com
stg-plm-svc.aws.lllext.com
ek8s-npd.us-west-2.k8s.lllext.com
stg-plm-svc.aws.lllext.com
ek8s-npd.us-east-1.k8s.lllext.com
prod-mtls.apis.lllext.com
ek8s-npd-rancher.us-west-2.k8s.lllext.com
sandbox-dev.apis.lllext.com
api.npd-nettools.lllext.com
dev-mtls.apis.lllext.com
stage.apis.lllext.com
ek8s-sbx.us-west-2.k8s.lllext.com
stage-mtls.apis.lllext.com
ek8s-prd.us-east-1.k8s.lllext.com
preview.apis.lllext.com
sandbox-mtls.apis.lllext.com
ngc-prd.us-east-1.k8s.lllext.com
prod-plm-svc.aws.lllext.com
api.nettools.lllext.com
ek8s-npd.us-west-2.k8s.lllext.com
cmmrfidinnovation.aws.lllext.com
prod.apis.lllext.com
api.plim-dev.aws.lllext.com
prd-psci.prd-product-systems.aws.lllext.com
ngc-npd.us-west-2.k8s.lllext.com
dev-psci.npd-product-systems.aws.lllext.com
sandbox.apis.lllext.com
preview-mtls.apis.lllext.com
prod.apis.lllext.com
stage.apis.lllext.com
ek8s-prd.us-west-2.k8s.lllext.com
ek8s-npd.us-east-1.k8s.lllext.com
dev.apis.lllext.com
api.plim-qas.aws.lllext.com
mock.apis.lllext.com
mock.apis.lllext.com
test.apis.lllext.com
prod.apis.lllext.com
prod.apis.lllext.com
lma-prd.us-west-2.k8s.lllext.com
preview.apis.lllext.com
ek8s-sbx.us-east-1.k8s.lllext.com
prd-rmcosting.prd-product-systems.aws.lllext.com
ngc-prd.us-west-2.k8s.lllext.com
ngc-npd.us-east-1.k8s.lllext.com
lma-npd-main.us-west-2.k8s.lllext.com
qa-plm-svc.aws.lllext.com
stg-plm-svc.aws.lllext.com
ek8s-npd.us-west-2.k8s.lllext.com
stg-plm-svc.aws.lllext.com
ek8s-npd.us-east-1.k8s.lllext.com
prod-mtls.apis.lllext.com
ek8s-npd-rancher.us-west-2.k8s.lllext.com
sandbox-dev.apis.lllext.com
api.npd-nettools.lllext.com
dev-mtls.apis.lllext.com
stage.apis.lllext.com
ek8s-sbx.us-west-2.k8s.lllext.com
stage-mtls.apis.lllext.com
ek8s-prd.us-east-1.k8s.lllext.com
preview.apis.lllext.com
sandbox-mtls.apis.lllext.com
ngc-prd.us-east-1.k8s.lllext.com
prod-plm-svc.aws.lllext.com
api.nettools.lllext.com
ek8s-npd.us-west-2.k8s.lllext.com
cmmrfidinnovation.aws.lllext.com
prod.apis.lllext.com
api.plim-dev.aws.lllext.com
prd-psci.prd-product-systems.aws.lllext.com
ngc-npd.us-west-2.k8s.lllext.com
dev-psci.npd-product-systems.aws.lllext.com
sandbox.apis.lllext.com
preview-mtls.apis.lllext.com
prod.apis.lllext.com
stage.apis.lllext.com
ek8s-prd.us-west-2.k8s.lllext.com
ek8s-npd.us-east-1.k8s.lllext.com
dev.apis.lllext.com
api.plim-qas.aws.lllext.com
mock.apis.lllext.com
mock.apis.lllext.com
test.apis.lllext.com
Certificate
The complete raw certificate details for lma-prd.us-west-2.k8s.lllext.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBDCCBOygAwIBAgIQCpEGOAegoWAoTCCXhUEwRjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDcxMDAwMDAwMFoXDTI0MDgwNzIzNTk1OVowKzEp MCcGA1UEAxMgbG1hLXByZC51cy13ZXN0LTIuazhzLmxsbGV4dC5jb20wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSijbwuZPU79iu/reV6eJ5/0MCPJEC 2Ak8L0A//Nmo6g9ePhhHrGrEeDF5riIF5pXUyvJLj4YAkli9y2NP5S6JfyFcFRhS edsM6qocJq9icAauxZ6VMHLT4/Gtm5KBlSfjA/vZmgWjXJK2v28icm2LZGtEJZ0d +Hc/EyrVTNbtgAbPweihmuL8RMqMckF68ZNiuWT0wUiwCKdtfXszNm2DeGdulwaS t1HyxfEsjn+SO1Q7AzT8EPEoVy2KAEE3xF9NgBF0KFJ+Vl8KaQCiS+gO1ed7tKS1 5izQOTJCTBwP8tLyceQfHDWfc7sLY61KWQ8k6tDv+rHHN+n7bqUId3xRAgMBAAGj ggMRMIIDDTAfBgNVHSMEGDAWgBSBuA5jiokSGOX6OztQlZ/m5ZAThTAdBgNVHQ4E FgQUHEOR1uHWamz7NPGnZ3XPOQwSC7MwQwYDVR0RBDwwOoIgbG1hLXByZC51cy13 ZXN0LTIuazhzLmxsbGV4dC5jb22CFmxtYS1wcmQuazhzLmxsbGV4dC5jb20wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNV HR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAxLmFtYXpvbnRydXN0LmNvbS9y Mm0wMS5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0G CCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMS5hbWF6b250cnVzdC5jb20wNgYI KwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDEuYW1hem9udHJ1c3QuY29tL3IybTAx LmNlcjAMBgNVHRMBAf8EAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgDu zdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYlAm8l5AAAEAwBHMEUC IQDkNg73+bbUUkwVHCgC8lIVMpxrLI232PCmWNiIUm1wlQIgflPzZweLQ7vWX1D3 jDP/EMT9sobhJGeedax3otcGneMAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZ u7+rOdiEcwAAAYlAm8m9AAAEAwBHMEUCIFtMJgOMek34U/0h/lmaa5RoC+O9kcXY kZTniYI/afk3AiEAuyiElF13i1XHkzES8cIEn+zX8eyw8kkqOQV5zq1pHnMAdgDa tr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYlAm8luAAAEAwBHMEUC IQCBbRD9FUWYjoEXjIvLuk2xQYGxf1WO1/cS/cO3e2+mIwIgY7fpIT2n7PZXGwzP AI1iEthJjvBkJDeEjsZCiuxfyyQwDQYJKoZIhvcNAQELBQADggEBACg4iLtv0tkm CKeDflzZxvZdCxZuPecvYxpkD46Ow4XibINp/JLahRLBQ/Nbl2eJAoZoH8leblVD nL8zhxunibOFa+AeKc2NL7z+yfg7Ku7JAVK+XlZ0VeE9oVYT7jpXXP3obWHKbmqF tHAsaOWbx9ghruQGm0AvyGqS9KPu4JicS3W8gqcXsycDFX6OrEj4xgmKKEONqaQQ RSvPX/GwInuZSlv2MIZw+iUVTlMZkV3DZSAD4HpevDlHFrtt880YQj/wLN1pT5/j 1Mik8AjblcXwMejlObzZFv/Rnef9rq2Jv7sbbHvWEA+UonLWy+3qFWMrhBGLDWAp cQLu3mTLj8U= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkoo28LmT1O/Yrv63leni ef9DAjyRAtgJPC9AP/zZqOoPXj4YR6xqxHgxea4iBeaV1MryS4+GAJJYvctjT+Uu iX8hXBUYUnnbDOqqHCavYnAGrsWelTBy0+PxrZuSgZUn4wP72ZoFo1yStr9vInJt i2RrRCWdHfh3PxMq1UzW7YAGz8HooZri/ETKjHJBevGTYrlk9MFIsAinbX17MzZt g3hnbpcGkrdR8sXxLI5/kjtUOwM0/BDxKFctigBBN8RfTYARdChSflZfCmkAokvo DtXne7SkteYs0DkyQkwcD/LS8nHkHxw1n3O7C2OtSlkPJOrQ7/qxxzfp+26lCHd8 UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14045289135932016718683102425427030086 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lma-prd.us-west-2.k8s.lllext.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18498948689781305283178070819645562579260974167768724466673542922863589221599888060629870043049735981506843737482003012098138632502335877852970821687154271110117916068648453485017111221923525651300514770982365020011679575076353914388633148749215449013802002753983018626873852346254242716730093036546300003440441141519338999972117043056928686245057337439255801808714809155583684715759707684272429567779905533714232832361476093559386471752833873138091509169286238446867435881226643366283920222930643821606049265907749128604756274068884835012372863977066614854420138496536051954196841872889811506326789550604899654794321 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1c4391d6e1d66a6cfb34f1a76775cf390c120bb3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lma-prd.us-west-2.k8s.lllext.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lma-prd.k8s.lllext.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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