media-dev.defense.gov
Issued by R3
About this certificate
This digital certificate with serial number 04:f8:74:e6:42:bd:ff:89:46:d4:10:3f:c6:c5:bb:85:dc:92 was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=media-dev.defense.gov
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f8:74:e6:42:bd:ff:89:46:d4:10:3f:c6:c5:bb:85:dc:92Serial Number (int): 432994556752914479968049376686259837459602
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 32:ce:01:87:ae:c6:4d:c9:c6:a7:24:bc:ca:1f:5f:cb:c9:bd:36:8b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 9c:63:b1:08:a6:6c:36:ff:10:68:af:3e:23:7d:df:7a:a5:03:fa:07
Fingerprint (sha256): 29:40:ee:f6:a4:15:64:34:57:3c:39:57:30:bd:ef:80:f0:6b:8e:e4:03:81:ea:0b:60:36:76:75:be:4b:18:d0
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate media-dev.defense.gov
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for media-dev.defense.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cmsmedia-dev.defense.gov
cmsmedia-scratch.defense.gov
cmsmedia-staging.defense.gov
media-dev.defense.gov
media-scratch.defense.gov
media-staging.defense.gov
cmsmedia-scratch.defense.gov
cmsmedia-staging.defense.gov
media-dev.defense.gov
media-scratch.defense.gov
media-staging.defense.gov
Other certificates including the domain name defense.gov
(limited to 100 certificates)
search.usa.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
media-dev.defense.gov
www.defense.gov
media-dev.defense.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
helpdesk.defense.gov
search.usa.gov
media-dev.defense.gov
*.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
search.usa.gov
okdbv.search.usa.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
www.defense.gov
static.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
stats.defense.gov
www.defense.gov
kb.defense.gov
media-dev.defense.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
kb.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
gfm.ousdi.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
search.usa.gov
search.usa.gov
stats.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
media-dev.defense.gov
www.defense.gov
media-dev.defense.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
helpdesk.defense.gov
search.usa.gov
media-dev.defense.gov
*.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
search.usa.gov
okdbv.search.usa.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
www.defense.gov
static.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
stats.defense.gov
www.defense.gov
kb.defense.gov
media-dev.defense.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
kb.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
gfm.ousdi.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
search.usa.gov
search.usa.gov
stats.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
Certificate
The complete raw certificate details for media-dev.defense.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgISBPh05kK9/4lG1BA/xsW7hdySMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjA0MDYxMjQ1NDNaFw0yMjA3MDUxMjQ1NDJaMCAxHjAcBgNVBAMT FW1lZGlhLWRldi5kZWZlbnNlLmdvdjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBALBNxY2qQgX1JbKT2plqCR6kk9+U8T86i0a+UT8SI20O0s4h6XN0t8Kp /tkQIm8sBxrsa97av6gxcgrVB5ViEGNGWNTV6/ZhGmaz5ICXT3j1FvMHVCoYh7xi MCgg9UqeB2hbz/JIxynPXmUlpQi12ulJNU8eAu961hrcF0Y6PyGUj+ANrICFuo6U hbq2nSfLKApH1tNh3OOpuNKWabvoMjjz2CXM2huYe43FFgQZBiGJwnNceqp33K/4 k2MHMpv9e/MFdjRYzvFhzF/lZfl8o3SNRj/sSkq6MdINEdggQSpTAua4eAkJ8FvG ssLJFr99Z5eH7o0KqQx0mCpOPhv0UVMCAwEAAaOCAewwggHoMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIw ADAdBgNVHQ4EFgQUMs4Bh67GTcnGpyS8yh9fy8m9NoswHwYDVR0jBBgwFoAUFC6z F7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVo dHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxl bmNyLm9yZy8wga4GA1UdEQSBpjCBo4IYY21zbWVkaWEtZGV2LmRlZmVuc2UuZ292 ghxjbXNtZWRpYS1zY3JhdGNoLmRlZmVuc2UuZ292ghxjbXNtZWRpYS1zdGFnaW5n LmRlZmVuc2UuZ292ghVtZWRpYS1kZXYuZGVmZW5zZS5nb3aCGW1lZGlhLXNjcmF0 Y2guZGVmZW5zZS5nb3aCGW1lZGlhLXN0YWdpbmcuZGVmZW5zZS5nb3YwTAYDVR0g BEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0 cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJ KoZIhvcNAQELBQADggEBABH/whZbLSlVwkq9lj5pjAymtubemtTJ8uc5SD9WlX4l Gtd/WxbEukm/6LwdrPRVMdkhk25yLP1/CT2b6W3tWFeo+th3tGcJmw1nF6o1cw9u jY3AarojoJl9lwG1w/hLhdPFJQcupYGrkoQ8r0u4DCM4FlcxGKjvoMQ1agU2hJdN h81qgnNC3ib0/VVAONEfoFz4beF9NCQHmSzYKrOHkzOrr9McfE9LLEPOQx4qArf7 +6X2IdgMygJj+twixZdgaJU5pgEw0ESRxDsCy39NT13OHNaAFuOFpEtpNOsyOOKL Be/Z3AM72Fdq9iuli3tLO2RJW878RLljiKGKq2sMJ+M= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsE3FjapCBfUlspPamWoJ HqST35TxPzqLRr5RPxIjbQ7SziHpc3S3wqn+2RAibywHGuxr3tq/qDFyCtUHlWIQ Y0ZY1NXr9mEaZrPkgJdPePUW8wdUKhiHvGIwKCD1Sp4HaFvP8kjHKc9eZSWlCLXa 6Uk1Tx4C73rWGtwXRjo/IZSP4A2sgIW6jpSFuradJ8soCkfW02Hc46m40pZpu+gy OPPYJczaG5h7jcUWBBkGIYnCc1x6qnfcr/iTYwcym/178wV2NFjO8WHMX+Vl+Xyj dI1GP+xKSrox0g0R2CBBKlMC5rh4CQnwW8aywskWv31nl4fujQqpDHSYKk4+G/RR UwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 432994556752914479968049376686259837459602 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-04-06 12:45:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-07-05 12:45:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'media-dev.defense.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22256292325137445394063920203672012796996508777828370723535728622364074613012327720790779270380736611625136652634078023144151187199762424398835562516408739354553389367306189232522848342109904111911816100920686220295244679666900045752997635756081362108125434481408307110079573497846351278251756447047036055556117089027862449543227580473804469125735538125099301871277229607316001155557413562019883381205117493203933826755473397185351312460508424377945798501751498711334573943997635039923512243220166740308063323210314124329158908334503515444738910628295742223791051686375237047942207404658021444709154952822719549559123 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 32ce0187aec64dc9c6a724bcca1f5fcbc9bd368b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (166 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmsmedia-dev.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmsmedia-scratch.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmsmedia-staging.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'media-dev.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'media-scratch.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'media-staging.defense.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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