*.op100.bastille.cloud
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 08:bb:a3:14:01:4a:ac:a4:5c:f9:d7:5a:7d:f4:8b:aa was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.op100.bastille.cloud
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 08:bb:a3:14:01:4a:ac:a4:5c:f9:d7:5a:7d:f4:8b:aaSerial Number (int): 11608091096553746056805046567992331178
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a3:3c:1d:15:ed:d3:ec:53:71:00:fe:c7:23:be:3c:f6:af:ce:a2:d1
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): ae:ec:73:9b:a8:4d:fe:c0:bf:72:b5:17:f8:33:5b:ef:95:2b:c2:83
Fingerprint (sha256): 23:2b:1c:61:b4:df:21:f7:55:2b:49:35:b6:aa:ed:ad:04:72:c3:95:fb:37:ba:d6:b9:4d:29:e6:f0:3a:ee:ab
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate *.op100.bastille.cloud
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.op100.bastille.cloud
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.op100.bastille.cloud
Other certificates including the domain name bastille.cloud
(limited to 100 certificates)
www.oxidanes.com
*.op1031.bastille.cloud
harimart.in
painel.appsuabreja.com
*.op1030.bastille.cloud
drinksome.beer
fantasyfightnow.com
*.op1033.bastille.cloud
*.op1001.bastille.cloud
op1032.bastille.cloud
copyhaste.com
*.op1030.bastille.cloud
*.op1030.bastille.cloud
*.op1026.bastille.cloud
*.op1032.bastille.cloud
albertodenatale.com
arisahirata.com
howbusy.live
anilrv.com
api.m2io.net
autonum.app
*.op1030.bastille.cloud
*.op100.bastille.cloud
*.op1026.bastille.cloud
links.bucleinfinito.com.ar
autonum.app
impact.academyservices.com.au
op1001.bastille.cloud
rapnext.app
admin.op1026.bastille.cloud
*.op1026.bastille.cloud
app.haroldwaste.com
dentologicom.smartcom.mx
op1030.bastille.cloud
*.op1001.bastille.cloud
asset.renzha.net
op1032.bastille.cloud
6ixpods.ca
eu-geo.acasus.com
www.finesse.ltd
op1033.bastille.cloud
*.op1030.bastille.cloud
gibsonia.cc
*.op1032.bastille.cloud
op1001.bastille.cloud
42sanantonio.com
*.op1032.bastille.cloud
www.methodist.tk
diagnostics.op1001.bastille.cloud
*.op1033.bastille.cloud
op1026.bastille.cloud
breezebox.asia
*.op1030.bastille.cloud
*.op42.bastille.cloud
go2kart.com.br
www.rschipstech.com
www.canwork.io
*.op1026.bastille.cloud
*.op1032.bastille.cloud
www.duecentodigregorio.it
uk-vh-mob-megapush.okcupid.pp.ua
*.op100.bastille.cloud
servicemall.in
*.op1001.bastille.cloud
diagnostics.op1026.bastille.cloud
www.emcantomeu.com.br
*.bastille.cloud
jobban.info
op1030.bastille.cloud
admin.op42.bastille.cloud
*.op42.bastille.cloud
*.op1026.bastille.cloud
kuyllur.com
stories.thecompasschurch.net
partner.plumboard.io
diagnostics.op1026.bastille.cloud
www.ugurvurgun.com
*.op42.bastille.cloud
asset.renzha.net
*.op1001.bastille.cloud
tonybrands.com
nicolaas.dev
studioscreation.com
42sanantonio.com
www.vishalsingh.xyz
*.op1031.bastille.cloud
op42.bastille.cloud
*.op1026.bastille.cloud
*.op1032.bastille.cloud
www.casperhalloweenparty.com
mattchessman.com
op1031.bastille.cloud
www.morphylabs.com
fb-gm.club
approvals.shineweddinginvitations.com
op42.bastille.cloud
kateandalex.weddingcheckin.com
alexshaw.tv
miitapp.co
www.malexcob.com
*.op1031.bastille.cloud
harimart.in
painel.appsuabreja.com
*.op1030.bastille.cloud
drinksome.beer
fantasyfightnow.com
*.op1033.bastille.cloud
*.op1001.bastille.cloud
op1032.bastille.cloud
copyhaste.com
*.op1030.bastille.cloud
*.op1030.bastille.cloud
*.op1026.bastille.cloud
*.op1032.bastille.cloud
albertodenatale.com
arisahirata.com
howbusy.live
anilrv.com
api.m2io.net
autonum.app
*.op1030.bastille.cloud
*.op100.bastille.cloud
*.op1026.bastille.cloud
links.bucleinfinito.com.ar
autonum.app
impact.academyservices.com.au
op1001.bastille.cloud
rapnext.app
admin.op1026.bastille.cloud
*.op1026.bastille.cloud
app.haroldwaste.com
dentologicom.smartcom.mx
op1030.bastille.cloud
*.op1001.bastille.cloud
asset.renzha.net
op1032.bastille.cloud
6ixpods.ca
eu-geo.acasus.com
www.finesse.ltd
op1033.bastille.cloud
*.op1030.bastille.cloud
gibsonia.cc
*.op1032.bastille.cloud
op1001.bastille.cloud
42sanantonio.com
*.op1032.bastille.cloud
www.methodist.tk
diagnostics.op1001.bastille.cloud
*.op1033.bastille.cloud
op1026.bastille.cloud
breezebox.asia
*.op1030.bastille.cloud
*.op42.bastille.cloud
go2kart.com.br
www.rschipstech.com
www.canwork.io
*.op1026.bastille.cloud
*.op1032.bastille.cloud
www.duecentodigregorio.it
uk-vh-mob-megapush.okcupid.pp.ua
*.op100.bastille.cloud
servicemall.in
*.op1001.bastille.cloud
diagnostics.op1026.bastille.cloud
www.emcantomeu.com.br
*.bastille.cloud
jobban.info
op1030.bastille.cloud
admin.op42.bastille.cloud
*.op42.bastille.cloud
*.op1026.bastille.cloud
kuyllur.com
stories.thecompasschurch.net
partner.plumboard.io
diagnostics.op1026.bastille.cloud
www.ugurvurgun.com
*.op42.bastille.cloud
asset.renzha.net
*.op1001.bastille.cloud
tonybrands.com
nicolaas.dev
studioscreation.com
42sanantonio.com
www.vishalsingh.xyz
*.op1031.bastille.cloud
op42.bastille.cloud
*.op1026.bastille.cloud
*.op1032.bastille.cloud
www.casperhalloweenparty.com
mattchessman.com
op1031.bastille.cloud
www.morphylabs.com
fb-gm.club
approvals.shineweddinginvitations.com
op42.bastille.cloud
kateandalex.weddingcheckin.com
alexshaw.tv
miitapp.co
www.malexcob.com
Certificate
The complete raw certificate details for *.op100.bastille.cloud in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEazCCA1OgAwIBAgIQCLujFAFKrKRc+ddaffSLqjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIxMDAwMDAwMFoXDTI1MDEwNzIzNTk1OVowITEf MB0GA1UEAwwWKi5vcDEwMC5iYXN0aWxsZS5jbG91ZDCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAL2lBo3hW9SSAHuLRUM0DhCtIxCfu62Fol5Q29tuj0Ff 9ua9H39k8nF/ZNEEKi9/dD26kfbk63ZiXBkypWRmwT9wS8JIap9pug959gc7jIWe T3jRxx3Jh2jXpxElG9jNqByslq5nSlVDD8Mc0EjV9gGO0cjNLxC7icQLVZGDglcD ry17bDaz77Mt0W2EuvYMLLeRI5oEscRup9f7d4OglknUNSXjWMP/RkMvSQVxK4uH JMVMOBgIWef9IBvEWSShOV7cEBRmD01i0S9mrFln1oAYctT2XgN4kpKTsvFU4vfi gHp1crWyi3eL/H7T/g2UnDWYQzkmbO+HK0WS9sdwXXsCAwEAAaOCAYIwggF+MB8G A1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBSjPB0V7dPs U3EA/scjvjz2r86i0TAhBgNVHREEGjAYghYqLm9wMTAwLmJhc3RpbGxlLmNsb3Vk MBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2Ny bC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY3JsMHUGCCsGAQUFBwEBBGkw ZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDMuYW1hem9udHJ1c3QuY29t MDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAzLmFtYXpvbnRydXN0LmNvbS9y Mm0wMy5jZXIwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkq hkiG9w0BAQsFAAOCAQEAaFjpwZcGvT2Gkd7f6SqyQ3nr0dtdqYeOTIQa7TcBYnxz KJ/HWT4eMhr0KykbzKHECIugfsfnIO5t5JA63PGfbjsxihtuFZYPn23v5U7Q49X2 RVgGUO1HsfifLU6JqI/Cpagjdtnq1ZHVOo7zMLG26ERcY2YGFXU7hW9KdwDNXqO1 0ve30vL4rFdif6eP1uyz2/A2YoKlG+loUG3UUcW2r8LBFUZNeTQf6VDKCGcok3yC T//v/+SJJ3Cw1bRCIh3Qnr7t/5/WYcE5JMeAABbU5ST3E+zeNzvqKa5LoJ0rmKU7 gziZQMqiIzXiMrPoSmieLN5rOx2Wgm5dBY1YnDTPiw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvaUGjeFb1JIAe4tFQzQO EK0jEJ+7rYWiXlDb226PQV/25r0ff2TycX9k0QQqL390PbqR9uTrdmJcGTKlZGbB P3BLwkhqn2m6D3n2BzuMhZ5PeNHHHcmHaNenESUb2M2oHKyWrmdKVUMPwxzQSNX2 AY7RyM0vELuJxAtVkYOCVwOvLXtsNrPvsy3RbYS69gwst5EjmgSxxG6n1/t3g6CW SdQ1JeNYw/9GQy9JBXEri4ckxUw4GAhZ5/0gG8RZJKE5XtwQFGYPTWLRL2asWWfW gBhy1PZeA3iSkpOy8VTi9+KAenVytbKLd4v8ftP+DZScNZhDOSZs74crRZL2x3Bd ewIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11608091096553746056805046567992331178 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.op100.bastille.cloud' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23940416796107407978844093230763643236774740750292378807666370047268464896622189961554159018754153965018785577166886030537411412534361930417780784394459250922925518898704595156445384811156489060941109257783061843460452850926196446541363924536989374736285812359980541477285810715749863524728507451973770855058013655723742036547118621240612334084576132808942767794362548849413867886232831370822302719251880725274608815171381500172396619124426468747196075985579444516501375071795197829075724821805097914726660210557034356414426552448843401648063227018240126681339903371791550639772605839407270177996782383430269949468027 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a33c1d15edd3ec537100fec723be3cf6afcea2d1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.op100.bastille.cloud' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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