www.mica.edu
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0b:b2:07:98:0c:45:86:ed:ce:04:85:d2:88:f0:d4:3f was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.mica.edu
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:b2:07:98:0c:45:86:ed:ce:04:85:d2:88:f0:d4:3fSerial Number (int): 15545890817799074832934325509505995839
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 37:27:81:73:af:6c:31:c7:a7:61:d9:64:71:6a:f6:d9:8f:b4:d0:d9
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): d8:91:58:19:14:21:68:e9:f4:87:a9:d2:68:66:4f:08:ce:c3:1f:1c
Fingerprint (sha256): 29:18:15:7e:80:b5:6f:40:ad:bd:0e:e9:3d:3b:e2:97:25:a4:44:5c:42:8c:f7:9c:3d:00:46:71:98:1e:2c:a4
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate www.mica.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.mica.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.mica.edu
Other certificates including the domain name mica.edu
(limited to 100 certificates)
portal-sp.mica.edu
inside.mica.edu
libguides.mica.edu
*.ezproxy.mica.edu
www.mica.edu
discover.mica.edu
websupport.mica.edu
duo.mica.edu
medium.mica.edu
mica.edu
libguides.mica.edu
chesapeake.mica.edu
csprd90.mica.edu
CGWTest.mica.edu
ptprd85.mica.edu
gwprd.mica.edu
moodlerooms.com
moodlerooms.com
euphrates.mica.edu
shinultima.mica.edu
bahamut.mica.edu
mica2020.missionmedia.net
shop.mica.edu
new.mica.edu
danube.mica.edu
connect.mica.edu
apply.mica.edu
digitaldecker.mica.edu
tms.mica.edu
libguides.mica.edu
www.mica.edu
discover.mica.edu
plannedgiving.mica.edu
shop.mica.edu
sp.mica.edu
moodlerooms.com
shingraduate.mica.edu
ldapserver3.mica.edu
mica.edu
shop.mica.edu
shinomega.mica.edu
inside.mica.edu
shop.mica.edu
idp.mica.edu
commotion.mica.edu
accreditationpolicies.acr.org
libguides.mica.edu
moodlerooms.com
indus.mica.edu
kama.mica.edu
neckar.mica.edu
gwtst.mica.edu
gwprd.mica.edu
commtoolkit.mica.edu
inside.mica.edu
sp.mica.edu
info.mica.edu
velocity.mica.edu
moodlerooms.com
csprd90.mica.edu
webdev.mica.edu
classsearchtest.mica.edu
kalu.mica.edu
testing.mica.edu
moodlerooms.com
idp.mica.edu
velocity.mica.edu
www.mica.edu
online.mica.edu
mica.edu
ldapserver3.mica.edu
csprd92.mica.edu
mica.edu
sp.mica.edu
www.mica.edu
csprd90.mica.edu
velocity.mica.edu
idp.mica.edu
mica.edu
moodlerooms.com
medium.mica.edu
danube.mica.edu
online.mica.edu
duo.mica.edu
inside.mica.edu
discover.mica.edu
helpdesk.mica.edu
cstst90.mica.edu
inside.mica.edu
inside.mica.edu
jonesfalls.mica.edu
alertus.mica.edu
bahamut.mica.edu
mica.edu
Maryland Institute College of Art (THE MARYLAND INSTITUTE)
whatsupgold.mica.edu
libguides.mica.edu
vpn.mica.edu
csdev90.mica.edu
ptprd85.mica.edu
inside.mica.edu
libguides.mica.edu
*.ezproxy.mica.edu
www.mica.edu
discover.mica.edu
websupport.mica.edu
duo.mica.edu
medium.mica.edu
mica.edu
libguides.mica.edu
chesapeake.mica.edu
csprd90.mica.edu
CGWTest.mica.edu
ptprd85.mica.edu
gwprd.mica.edu
moodlerooms.com
moodlerooms.com
euphrates.mica.edu
shinultima.mica.edu
bahamut.mica.edu
mica2020.missionmedia.net
shop.mica.edu
new.mica.edu
danube.mica.edu
connect.mica.edu
apply.mica.edu
digitaldecker.mica.edu
tms.mica.edu
libguides.mica.edu
www.mica.edu
discover.mica.edu
plannedgiving.mica.edu
shop.mica.edu
sp.mica.edu
moodlerooms.com
shingraduate.mica.edu
ldapserver3.mica.edu
mica.edu
shop.mica.edu
shinomega.mica.edu
inside.mica.edu
shop.mica.edu
idp.mica.edu
commotion.mica.edu
accreditationpolicies.acr.org
libguides.mica.edu
moodlerooms.com
indus.mica.edu
kama.mica.edu
neckar.mica.edu
gwtst.mica.edu
gwprd.mica.edu
commtoolkit.mica.edu
inside.mica.edu
sp.mica.edu
info.mica.edu
velocity.mica.edu
moodlerooms.com
csprd90.mica.edu
webdev.mica.edu
classsearchtest.mica.edu
kalu.mica.edu
testing.mica.edu
moodlerooms.com
idp.mica.edu
velocity.mica.edu
www.mica.edu
online.mica.edu
mica.edu
ldapserver3.mica.edu
csprd92.mica.edu
mica.edu
sp.mica.edu
www.mica.edu
csprd90.mica.edu
velocity.mica.edu
idp.mica.edu
mica.edu
moodlerooms.com
medium.mica.edu
danube.mica.edu
online.mica.edu
duo.mica.edu
inside.mica.edu
discover.mica.edu
helpdesk.mica.edu
cstst90.mica.edu
inside.mica.edu
inside.mica.edu
jonesfalls.mica.edu
alertus.mica.edu
bahamut.mica.edu
mica.edu
Maryland Institute College of Art (THE MARYLAND INSTITUTE)
whatsupgold.mica.edu
libguides.mica.edu
vpn.mica.edu
csdev90.mica.edu
ptprd85.mica.edu
Certificate
The complete raw certificate details for www.mica.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIQC7IHmAxFhu3OBIXSiPDUPzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDMxMzAwMDAwMFoXDTI1MDQxMDIzNTk1OVowFzEV MBMGA1UEAxMMd3d3Lm1pY2EuZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAqNzYeu0CExeS6zWVenh5LV2KQFMs60+KFI6XTzWttyee6Xlv+NlAH+Ht K8qWL6iCZJWNmJVaSfrtG8Pw1mo+IaSV6FrfO1+bnQFDlEI+aYitxtEdTHVFnX4n 08pB5npKllTkaZZKl7z0+wM6i3Jy/lvrY92Xa9d/NzCZMQXOPltGz515gnMfVhwF ACFzyeDiwEG33C9k97hY5Eq8M5jVCVQc24wjtt9k8kpofMS6L6h0RjbjI8OGffgs 7JrRlrZAi1Py398qYOkkcrTD1mM0au+CtsZZNm6Si7MoOHu6FdfOHGH1nL56HacN nB9dpNROcQonmwWL5AXTvV7z++TwYwIDAQABo4IC5zCCAuMwHwYDVR0jBBgwFoAU VdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFDcngXOvbDHHp2HZZHFq9tmP tNDZMBcGA1UdEQQQMA6CDHd3dy5taWNhLmVkdTATBgNVHSAEDDAKMAgGBmeBDAEC ATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDMuYW1hem9udHJ1c3Qu Y29tL3IybTAzLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6 Ly9vY3NwLnIybTAzLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDov L2NydC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY2VyMAwGA1UdEwEB/wQC MAAwggGABgorBgEEAdZ5AgQCBIIBcASCAWwBagB3AE51oydcmhDDOFts1N8/Uusd 8OCOG41pwLH6ZLFimjnfAAABjjbSja8AAAQDAEgwRgIhAMzqxi89cF1sGOPgat6U 0nJXkcObe/hiHp2gURNOPt7aAiEAnqfZaVp3H//I5jdmdvL2l4sp9Tvtmedpph9k cKbTFqEAdgB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAY420o20 AAAEAwBHMEUCIQDOiiMvNU1QZ1roG1H7GLT9ShYPJLTgjmQ5/ScgghV9OwIgCN+n f+W/9ZNaZiwZxac2cGPVR9+ZA+IOd4zV7WXMkYEAdwDm0jFjQHeMwRBBBtdxuc7B 0kD2loSG+7qHMh39HjeOUAAAAY420o2KAAAEAwBIMEYCIQCZEdJ2s2pKremAk8Ta 4FjBVAUteiGRpVDPseOeWw5NmAIhAL/HJcOkInNipOHjOYT56rtw2c9JwOWwGB79 +mz2kptSMA0GCSqGSIb3DQEBCwUAA4IBAQB9oIoZb4GzobEjotyAh1SXeD7e/ig5 rilk4tdjgjwC8cKSGKHB+VDSAHm7j7oC+l7BG1zObEc+6159ZuVqsvFibcj9VjB8 puqAzuim7rHBLKZrCdTWIJ8eMTyPe25URRciL4nfujVIvyosXX4IHacZfnGMddpO HX6raAiF5ACnHxgQSQkq06UMmSzWUnf4KJcGAg8AaUVuN6TXwSnJXaSbjAipPJsO qnRoqE5M9G7c6rFZGts/SQer9b/WaC/yYaaOofXCJAc4t55dDEtApeDbxoAIJ5Og h2UJ5ya2XAyyPVeD4roL+Z3VVvBZTac1YEDdy8UtlmNvuBq+kkLQ5e+8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNzYeu0CExeS6zWVenh5 LV2KQFMs60+KFI6XTzWttyee6Xlv+NlAH+HtK8qWL6iCZJWNmJVaSfrtG8Pw1mo+ IaSV6FrfO1+bnQFDlEI+aYitxtEdTHVFnX4n08pB5npKllTkaZZKl7z0+wM6i3Jy /lvrY92Xa9d/NzCZMQXOPltGz515gnMfVhwFACFzyeDiwEG33C9k97hY5Eq8M5jV CVQc24wjtt9k8kpofMS6L6h0RjbjI8OGffgs7JrRlrZAi1Py398qYOkkcrTD1mM0 au+CtsZZNm6Si7MoOHu6FdfOHGH1nL56HacNnB9dpNROcQonmwWL5AXTvV7z++Tw YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15545890817799074832934325509505995839 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-10 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mica.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21316938271201819788819802074931597214263905632305490544387067006192897232879050433908624631341151851309986782451871552745926271194687493043832250474043945608027052151108623826458303766383663516644997306994967599054114885165118382145720971780516062575678040428215044694228465587527016155557094091346181701723522460817883318949574270539751000299708290802040888538355930784644056493801930897833894082881960518662955888229951768442563983635655879792654728421664583487170821931648547485455016295095355666815297598131696020116061919665377894496529308333307581948411864625831374857097140368738722380802146184198078941425763 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 37278173af6c31c7a761d964716af6d98fb4d0d9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mica.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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