cdn.letsbld.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 02:b8:a1:12:a8:79:52:8b:20:0e:fd:22:61:cd:19:01 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cdn.letsbld.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:b8:a1:12:a8:79:52:8b:20:0e:fd:22:61:cd:19:01Serial Number (int): 3617105559733504679771982851822393601
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 60:f4:a1:f3:35:91:c3:89:ca:0f:c7:26:25:84:db:fa:4b:8a:11:a0
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 03:c6:28:93:2f:99:a9:d0:62:41:e8:79:f5:91:50:64:dd:ea:0d:06
Fingerprint (sha256): 24:4a:73:99:01:3d:bc:35:37:16:88:83:76:05:07:e2:a6:32:ab:f9:f9:e8:d0:0d:d1:ec:4b:9f:f8:8c:73:c5
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate cdn.letsbld.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cdn.letsbld.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cdn.letsbld.com
Other certificates including the domain name letsbld.com
(limited to 100 certificates)
apostrophe.goprimer.com
academia.goprimer.com
letsbld.com
academia.goprimer.com
agirlnamedotis.goprimer.com
buy.letsbld.com
*.letsbld.com
getapp.in
support.nzxt.com
apostrophe.goprimer.com
blizzcon.letsbld.com
checkout.letsbld.com
getapp.in
learn.letsbld.com
cdn.letsbld.com
getapp.in
letsbld.com
agirlnamedotis.goprimer.com
support.nzxt.com
letsbld.com
agirlnamedotis.goprimer.com
aj1.goprimer.co
checkout.letsbld.com
getapp.in
buy.letsbld.com
apostrophe.goprimer.com
getapp.in
agirlnamedotis.goprimer.com
checkout-popup.letsbld.com
getapp.in
apostrophe.goprimer.com
support.nzxt.com
support.nzxt.com
checkout.letsbld.com
agirlnamedotis.goprimer.com
aj1.goprimer.co
getapp.in
apostrophe.goprimer.com
checkout.letsbld.com
blizzcon.letsbld.com
buy.letsbld.com
cdn.letsbld.com
checkout.letsbld.com
agirlnamedotis.goprimer.com
apostrophe.goprimer.com
getapp.in
support.nzxt.com
buy.letsbld.com
agirlnamedotis.goprimer.com
agirlnamedotis.goprimer.com
apostrophe.goprimer.com
apostrophe.goprimer.com
academia.goprimer.com
agirlnamedotis.goprimer.com
getapp.in
letsbld.com
support.nzxt.com
agirlnamedotis.goprimer.com
support.nzxt.com
getapp.in
getapp.in
learn.letsbld.com
learn.letsbld.com
agirlnamedotis.goprimer.com
getapp.in
getapp.in
agirlnamedotis.goprimer.com
agirlnamedotis.goprimer.com
agirlnamedotis.goprimer.com
letsbld.com
buy.letsbld.com
agirlnamedotis.goprimer.com
agirlnamedotis.goprimer.com
checkout.letsbld.com
checkout.letsbld.com
agirlnamedotis.goprimer.com
www.letsbld.com
aj.goprimer.co
getapp.in
apostrophe.goprimer.com
getapp.in
apostrophe.goprimer.com
alphalion.goprimer.com
getapp.in
getapp.in
checkout.letsbld.com
learn.letsbld.com
support.nzxt.com
www.letsbld.com
getapp.in
checkout.letsbld.com
*.letsbld.com
alphalion.goprimer.com
aj.goprimer.co
letsbld.com
support.nzxt.com
agirlnamedotis.goprimer.com
agirlnamedotis.goprimer.com
buy.letsbld.com
aj.goprimer.co
academia.goprimer.com
letsbld.com
academia.goprimer.com
agirlnamedotis.goprimer.com
buy.letsbld.com
*.letsbld.com
getapp.in
support.nzxt.com
apostrophe.goprimer.com
blizzcon.letsbld.com
checkout.letsbld.com
getapp.in
learn.letsbld.com
cdn.letsbld.com
getapp.in
letsbld.com
agirlnamedotis.goprimer.com
support.nzxt.com
letsbld.com
agirlnamedotis.goprimer.com
aj1.goprimer.co
checkout.letsbld.com
getapp.in
buy.letsbld.com
apostrophe.goprimer.com
getapp.in
agirlnamedotis.goprimer.com
checkout-popup.letsbld.com
getapp.in
apostrophe.goprimer.com
support.nzxt.com
support.nzxt.com
checkout.letsbld.com
agirlnamedotis.goprimer.com
aj1.goprimer.co
getapp.in
apostrophe.goprimer.com
checkout.letsbld.com
blizzcon.letsbld.com
buy.letsbld.com
cdn.letsbld.com
checkout.letsbld.com
agirlnamedotis.goprimer.com
apostrophe.goprimer.com
getapp.in
support.nzxt.com
buy.letsbld.com
agirlnamedotis.goprimer.com
agirlnamedotis.goprimer.com
apostrophe.goprimer.com
apostrophe.goprimer.com
academia.goprimer.com
agirlnamedotis.goprimer.com
getapp.in
letsbld.com
support.nzxt.com
agirlnamedotis.goprimer.com
support.nzxt.com
getapp.in
getapp.in
learn.letsbld.com
learn.letsbld.com
agirlnamedotis.goprimer.com
getapp.in
getapp.in
agirlnamedotis.goprimer.com
agirlnamedotis.goprimer.com
agirlnamedotis.goprimer.com
letsbld.com
buy.letsbld.com
agirlnamedotis.goprimer.com
agirlnamedotis.goprimer.com
checkout.letsbld.com
checkout.letsbld.com
agirlnamedotis.goprimer.com
www.letsbld.com
aj.goprimer.co
getapp.in
apostrophe.goprimer.com
getapp.in
apostrophe.goprimer.com
alphalion.goprimer.com
getapp.in
getapp.in
checkout.letsbld.com
learn.letsbld.com
support.nzxt.com
www.letsbld.com
getapp.in
checkout.letsbld.com
*.letsbld.com
alphalion.goprimer.com
aj.goprimer.co
letsbld.com
support.nzxt.com
agirlnamedotis.goprimer.com
agirlnamedotis.goprimer.com
buy.letsbld.com
aj.goprimer.co
Certificate
The complete raw certificate details for cdn.letsbld.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFyTCCBLGgAwIBAgIQArihEqh5UosgDv0iYc0ZATANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDIyMzAwMDAwMFoXDTIzMTIxNDIzNTk1OVowGjEY MBYGA1UEAxMPY2RuLmxldHNibGQuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAucaYK2GddQU8VP7mALivqWFOM/YYrpRvX5LLIxmgVJhs5jsqvqct J7mRZaahkLaecbO6ZOsnu21o613YRwd8KEsqe35g8gGQ8tnAN3gFW5wtiH/+lOI6 DCSUI9bePFNIrblE/8QKfsj8TjjSLg2NutPEjmnHwVV91hiT3povysO+KqY/4BcE yAvCW0dV8EIF5eD+oAmzKMXAKACH+gbBL6gPLxU8B23hb05luP5XxjgaR4YPWo+H WaFtZ6W0k5R3NyGUo+BPGZMxrCTY/RdGUlQJWnwrtcBehzbkeOB7mMB8GHCRTPZ6 oY0VvjhaaQbboiqOB7e5vgMLOGwpGKs4WQIDAQABo4IC5zCCAuMwHwYDVR0jBBgw FoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFGD0ofM1kcOJyg/HJiWE 2/pLihGgMBoGA1UdEQQTMBGCD2Nkbi5sZXRzYmxkLmNvbTAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAu oCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNybDAT BgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGG IWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYq aHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1Ud EwEB/wQCMAAwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB2AOg+0No+9QY1MudX KLyJa8kD08vREWvs62nhd31tBr1uAAABhoCUDDEAAAQDAEcwRQIgV7foB0w553ou 0MRdtfvJGejl3jRpP8irdj5IVazRthECIQCexOg0ZDP4Zanwk/nIPehDsqxAwg4/ uGkTVzb/5PYvdgB1ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAAB hoCUDE8AAAQDAEYwRAIgGoI5degLoJH+JOH84h9yZec73XzI6RCjm3tiDs82IzgC IHag2EVJiHC8dODgoGub49ksOp0wmOrKAsWlMP6fYgFCAHYAtz77JN+cTbp18jnF ulj0bF38Qs96nzXEnh0JgSXttJkAAAGGgJQMCwAABAMARzBFAiB4K732PQPKRcgD Hir6McPMWuh87Avmhs5Wq1TOkuj9lAIhALvN+hXxEtajnWLZ1fpME3+dFEiXjNHx 3lfsc8HgjmpMMA0GCSqGSIb3DQEBCwUAA4IBAQB19yBVaUeupzlWB1/HiHhq97Jf 8LhfZLzZbdUgr5mq4uXOx7wFcUgcaCWbbJ0mi6BvVOzx/CDOSOoJRX9UBPaglFpC DhEOjkv32WabVUN8Qei4kj3X8d0H9BSDlfFhWei5hHGkI93B8MSWNaCr86QVqKKg mcllZX8yL10rfQN/1mhZx4J3pKgBDE6dv64wt3JxbZMjYCE5pNQ+jV6MbdW5SPYI 0uBYZiF2u6zHpx8qm+iiiOLfG+at0UaB3MUK/H7TbQDR7x99mJEnivKnrxJ1p8iH HgjskOuZV32I4Z6yQeN8TSyuDLvYXs+ci1BI8rfdSmhBlPVuuMR9Fkl9AI/C -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucaYK2GddQU8VP7mALiv qWFOM/YYrpRvX5LLIxmgVJhs5jsqvqctJ7mRZaahkLaecbO6ZOsnu21o613YRwd8 KEsqe35g8gGQ8tnAN3gFW5wtiH/+lOI6DCSUI9bePFNIrblE/8QKfsj8TjjSLg2N utPEjmnHwVV91hiT3povysO+KqY/4BcEyAvCW0dV8EIF5eD+oAmzKMXAKACH+gbB L6gPLxU8B23hb05luP5XxjgaR4YPWo+HWaFtZ6W0k5R3NyGUo+BPGZMxrCTY/RdG UlQJWnwrtcBehzbkeOB7mMB8GHCRTPZ6oY0VvjhaaQbboiqOB7e5vgMLOGwpGKs4 WQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3617105559733504679771982851822393601 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cdn.letsbld.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23452016973173285182174499259164990790433600081374107621756462076193920844271093400537443032656490739936935577995087070900156621686718711536622653151960964255293872451723932165683034873903310389275150685272241869048719516290111208687105179649041633627458166668299424521961818107162536277130079268093909350962024833757653565361881620075217529993375124010300945075716032487328525378782082316901376968041027501131052358657909133165998221904933364700067077553152796503296941915082786416025174413893184922814412476518489092495611654894080622986651088263200759350452554435305880937360106670362770250554200664584749587314777 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 60f4a1f33591c389ca0fc7262584dbfa4b8a11a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.letsbld.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0075f720556947aea73956075fc788786af7b25ff0b85f64bcd96dd520af99aae2e5cec7bc0571481c68259b6c9d268ba06f54ecf1fc20ce48ea09457f5404f6a0945a420e110e8e4bf7d9669b55437c41e8b8923dd7f1dd07f4148395f16159e8b98471a423ddc1f0c49635a0abf3a415a8a2a099c965657f322f5d2b7d037fd66859c78277a4a8010c4e9dbfae30b772716d9323602139a4d43e8d5e8c6dd5b948f608d2e058662176bbacc7a71f2a9be8a288e2df1be6add14681dcc50afc7ed36d00d1ef1f7d9891278af2a7af1275a7c8871e08ec90eb99577d88e19eb241e37c4d2cae0cbbd85ecf9c8b5048f2b7dd4a684194f56eb8c47d16497d008fc2