tap.idg.de
Issued by Amazon
About this certificate
This digital certificate with serial number 0e:34:33:53:7e:86:ca:7c:29:13:c4:a9:df:fc:92:e5 was issued on by Amazon.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tap.idg.de
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:34:33:53:7e:86:ca:7c:29:13:c4:a9:df:fc:92:e5Serial Number (int): 18880232395617971682172095618057278181
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 44:93:ed:61:56:04:6e:76:71:7e:d3:dd:2c:72:bb:3e:78:f5:e3:5a
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 34:ce:16:4d:7d:f7:a6:aa:50:89:73:15:02:dd:62:1f:e5:e3:03:0d
Fingerprint (sha256): 24:49:07:d6:3a:64:c3:63:dd:bb:4e:de:ba:72:32:7b:4f:ff:36:b0:7a:51:75:ec:df:b2:3d:94:41:1b:2d:be
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate tap.idg.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tap.idg.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tap.idg.de
alb.frontend.tap.idg.zone
t.idg.de
alb.frontend.tap.idg.zone
t.idg.de
Other certificates including the domain name idg.de
(limited to 100 certificates)
cp.idg.de
beta.idg.de
cloud.idg.de
*.idg.de
webcast.idg.de
webcast.idg.de
*.idg.de
*.idg.de
w.idg.de
www.mobile-enterprise-day.de
w.idg.de
idg.de
10jahre.cio.de
cloud.idg.de
computerworld.idg.de
cloud.idg.de
10jahre.cio.de
*.idg.de
amazon.idg.de
adserver.idg.de
beyond.idg.de
cmp2.channelpartner.de
s.idg.de
beyond.idg.de
syndication.contimate.idg.de
tap.idg.de
w.idg.de
beyond.idg.de
beyond.idg.de
10jahre.cio.de
w.idg.de
tap.idg.de
cmp.idg.de
computerworld.idg.de
*.idg.de
adserver.idg.de
cmp2.channelpartner.de
beta.idg.de
cloud.idg.de
amazon.idg.de
tap.idg.de
webcast.idg.de
docs.idg.de
w.idg.de
citrix.idg.de
cmp2.channelpartner.de
tap.idg.de
access.idg.de
idg.de
idg.de
cmp2.channelpartner.de
amazon.idg.de
beyond.idg.de
tap.idg.de
idg.de
beyond.idg.de
idg.de
*.idg.de
cmp.idg.de
w.idg.de
tap.idg.de
computerworld.idg.de
beyond.idg.de
w.idg.de
w.idg.de
10jahre.cio.de
webcast.idg.de
10jahre.cio.de
cmp.idg.de
10jahre.cio.de
webcast.idg.de
tap.idg.de
webcast.idg.de
*.idg.de
w.idg.de
beyond.idg.de
*.idg.de
adserver.idg.de
computerworld.idg.de
computerworld.idg.de
syndication.idg.de
cloud.idg.de
syndication.idg.de
w.idg.de
webcast.idg.de
w.idg.de
cmp2.channelpartner.de
10jahre.cio.de
w.idg.de
syndication.idg.de
beta.idg.de
adserver.idg.de
10jahre.cio.de
webcast.idg.de
beta.idg.de
w.idg.de
w.idg.de
w.idg.de
webcast.idg.de
webcast.idg.de
beta.idg.de
cloud.idg.de
*.idg.de
webcast.idg.de
webcast.idg.de
*.idg.de
*.idg.de
w.idg.de
www.mobile-enterprise-day.de
w.idg.de
idg.de
10jahre.cio.de
cloud.idg.de
computerworld.idg.de
cloud.idg.de
10jahre.cio.de
*.idg.de
amazon.idg.de
adserver.idg.de
beyond.idg.de
cmp2.channelpartner.de
s.idg.de
beyond.idg.de
syndication.contimate.idg.de
tap.idg.de
w.idg.de
beyond.idg.de
beyond.idg.de
10jahre.cio.de
w.idg.de
tap.idg.de
cmp.idg.de
computerworld.idg.de
*.idg.de
adserver.idg.de
cmp2.channelpartner.de
beta.idg.de
cloud.idg.de
amazon.idg.de
tap.idg.de
webcast.idg.de
docs.idg.de
w.idg.de
citrix.idg.de
cmp2.channelpartner.de
tap.idg.de
access.idg.de
idg.de
idg.de
cmp2.channelpartner.de
amazon.idg.de
beyond.idg.de
tap.idg.de
idg.de
beyond.idg.de
idg.de
*.idg.de
cmp.idg.de
w.idg.de
tap.idg.de
computerworld.idg.de
beyond.idg.de
w.idg.de
w.idg.de
10jahre.cio.de
webcast.idg.de
10jahre.cio.de
cmp.idg.de
10jahre.cio.de
webcast.idg.de
tap.idg.de
webcast.idg.de
*.idg.de
w.idg.de
beyond.idg.de
*.idg.de
adserver.idg.de
computerworld.idg.de
computerworld.idg.de
syndication.idg.de
cloud.idg.de
syndication.idg.de
w.idg.de
webcast.idg.de
w.idg.de
cmp2.channelpartner.de
10jahre.cio.de
w.idg.de
syndication.idg.de
beta.idg.de
adserver.idg.de
10jahre.cio.de
webcast.idg.de
beta.idg.de
w.idg.de
w.idg.de
w.idg.de
webcast.idg.de
webcast.idg.de
Certificate
The complete raw certificate details for tap.idg.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIQDjQzU36GynwpE8Sp3/yS5TANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA1MjIwMDAwMDBaFw0yMDA2MjIx MjAwMDBaMBUxEzARBgNVBAMTCnRhcC5pZGcuZGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsYfe52yJaYHtukX+LYLrqfe7w59fIOG7vDS/tDRp0tXyE PxtCywDpqJgv+NNtvVn/tSw4SvzH/YRuFFZh8muxkxMY9nZk+g/+WrtDaa+ykonY cPWkwK8H5DJgeMXt1a4EmTjp4+ng8zVIXKyUQ5dn2YW4d41sQPdXwckYem1qXjU9 NEJLBL72Utwjz8Iod+On5/ubG13vUFzoZkE9c7NOLciVORkNMXcpNQGV/uvrCxMC WcFHQNMKffdDzlFNugjQnOAwr2EDp9Vf31CtIXbBJ6EOo1rwvEesDiPwGy0eDuYo pjDoL1YaYLnOSBKBITXKHD/5pJimSXEz7garBRTbAgMBAAGjggKaMIICljAfBgNV HSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQURJPtYVYEbnZx ftPdLHK7Pnj141owOgYDVR0RBDMwMYIKdGFwLmlkZy5kZYIZYWxiLmZyb250ZW5k LnRhcC5pZGcuem9uZYIIdC5pZGcuZGUwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8v Y3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkwFzAL BglghkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcw AYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAC hipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYD VR0TAQH/BAIwADCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1ALvZ37wfinG1k5Qj l6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABauBe+w0AAAQDAEYwRAIgVytkhwM27JpE njj/fnf2CPszdFkcoUdApIP+COuj8YMCIEkDIz4TTX2kk/zA0UpBRKHGdqTWjRG9 Sai3nKH7E2jdAHYAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16ggw8AAAFq 4F78BgAABAMARzBFAiArEALYbdHEwOcGOCboi9KcVodqq9qvdOAcl0eqqBMWBQIh ANjP56MrIT6VZcVc+KhhVKvAhYWJkm6IlCPlbYjc94Z8MA0GCSqGSIb3DQEBCwUA A4IBAQCEcj85dTT3pZyUWdcyc6H1OW4MKToBSQbIsYfYWONM4QNYrHKlJvH67Uki 85mPYB7gKlBLDQRBtmEb++DxvI9pstGdJpvz8xOjUu+BcpaI+g8a8/nsOSoRsWAq 1UeHNgEUz6jEeOMUfOS6T4WPxcYJYpGjUyGMq32HoLxQbHxAYfb8kpmZ2Ligtnmy WYx5DLvSCGO6p9G3SsPZIX5hzqrkDWLkBAjieNoDzbBwEhYIsQywEyI3Vrp26jK7 30RdlnBLHW/Wp1NXYrFclNjRbcf3vUqlVkcc6Zrzv0o7W467SPxsbwCBUccK2/N5 EmdL/dCjc9zXTKtSmfdWg/DZG6HM -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGH3udsiWmB7bpF/i2C6 6n3u8OfXyDhu7w0v7Q0adLV8hD8bQssA6aiYL/jTbb1Z/7UsOEr8x/2EbhRWYfJr sZMTGPZ2ZPoP/lq7Q2mvspKJ2HD1pMCvB+QyYHjF7dWuBJk46ePp4PM1SFyslEOX Z9mFuHeNbED3V8HJGHptal41PTRCSwS+9lLcI8/CKHfjp+f7mxtd71Bc6GZBPXOz Ti3IlTkZDTF3KTUBlf7r6wsTAlnBR0DTCn33Q85RTboI0JzgMK9hA6fVX99QrSF2 wSehDqNa8LxHrA4j8BstHg7mKKYw6C9WGmC5zkgSgSE1yhw/+aSYpklxM+4GqwUU 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18880232395617971682172095618057278181 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-22 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tap.idg.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21761298117541747733770025806468172281161417103900695497112111470172262536410263768100176272370975071112635316876908507085472645409469988629261542836350831214048817872130573579923093713767151106080408999912223342304416151887727116467522160586063110368649552242598723644569412293342896313781285883877367036078062241488855852390284523099735812879477517773386607394733030063495185461810943040929898510214104596374110416020060056384922587886415739291196814274011581530498294833338851197157808712911237288484016857898482016495520218530297004275838000391487885207019943523409356880424629558531288158096138208085658623612123 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4493ed6156046e76717ed3dd2c72bb3e78f5e35a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tap.idg.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alb.frontend.tap.idg.zone' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 't.idg.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016ae05efb0d00000403004630440220572b64870336ec9a449e38ff7e77f608fb3374591ca14740a483fe08eba3f18302204903233e134d7da493fcc0d14a4144a1c676a4d68d11bd49a8b79ca1fb1368dd0076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016ae05efc06000004030047304502202b1002d86dd1c4c0e7063826e88bd29c56876aabdaaf74e01c9747aaa8131605022100d8cfe7a32b213e9565c55cf8a86154abc0858589926e889423e56d88dcf7867c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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