give.rider.edu
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0e:c6:56:26:e8:90:9f:90:fd:13:5c:43:2b:db:93:75 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=give.rider.edu
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:c6:56:26:e8:90:9f:90:fd:13:5c:43:2b:db:93:75Serial Number (int): 19639014088850168804218131328184062837
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 3a:c5:ef:0c:87:ed:c0:90:40:1b:17:13:e6:9a:b0:5c:04:95:c2:28
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): af:67:f7:12:1e:a1:53:00:ee:6c:4e:3c:e6:75:7c:76:b0:af:6a:8e
Fingerprint (sha256): 2c:d3:9f:46:55:40:d6:cf:cd:c4:b6:a2:cb:cc:c2:c8:8c:b7:f2:14:ac:09:65:52:07:d5:ae:b0:6e:0c:e2:5f
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate give.rider.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for give.rider.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
give.rider.edu
Other certificates including the domain name rider.edu
(limited to 100 certificates)
csgold7-wm.rider.edu
broncnation.rider.edu
serenity.rider.edu
canvas.rider.edu
sierra.rider.edu
ssl766224.cloudflaressl.com
sni.cloudflaressl.com
shibboleth-prod.rider.edu
secureforms.rider.edu
www.rider.edu
vanckohall.delhi.edu
epay.rider.edu
vanckohall.delhi.edu
com-web.rider.edu
keys.rider.edu
psynch.rider.edu
online.rider.edu
admissions.rider.edu
san-2-s10.tlsprovisioning.exacttarget.com
cvp.rider.edu
easypass.rider.edu
revan.rider.edu
tatooine.rider.edu
comm.rider.edu
aruba-wcc.rider.edu
online.rider.edu
accounts.rider.edu
comm.rider.edu
webmail.rider.edu
alumni.rider.edu
appnav-prod.ec.rider.edu
*.ec.rider.edu
com-od.rider.edu
ssl766224.cloudflaressl.com
explore.rider.edu
athena.rider.edu
image.info.malesci.it
sni.cloudflaressl.com
alumni.rider.edu
aruba-fa.rider.edu
athena.rider.edu
easypass.rider.edu
ssl766222.cloudflaressl.com
*.rider.edu
aruba-fa.rider.edu
secureforms.rider.edu
amploadvance.com
guides.rider.edu
sni.cloudflaressl.com
comm.rider.edu
csgold7-wm.rider.edu
cvp.rider.edu
athena.rider.edu
explore.rider.edu
image.info.malesci.it
vanckohall.delhi.edu
vanckohall.delhi.edu
tatooine.rider.edu
mobile.rider.edu
vanckohall.delhi.edu
broncnation.rider.edu
com-advising.rider.edu
sni.cloudflaressl.com
image.info.malesci.it
ssl436522.cloudflaressl.com
alumni.rider.edu
tatooine.rider.edu
give.rider.edu
coco.rider.edu
tatooine.rider.edu
listserv.rider.edu
rider-dlcas-301.rider.edu
vanckohall.delhi.edu
epay.rider.edu
athena.rider.edu
nextcatalog.rider.edu
image.info.malesci.it
evisions-dev.rider.edu
myrider.rider.edu
myrider.rider.edu
myprintcenter-dev.rider.edu
webapps-dev.rider.edu
*.ec.rider.edu
explore.rider.edu
dw.rider.edu
vanckohall.delhi.edu
shibboleth-dev.rider.edu
map.rider.edu
sanzio.rider.edu
image.info.malesci.it
tutortrac.rider.edu
mdm.rider.edu
mdm.rider.edu
guides.rider.edu
online.rider.edu
psynch.rider.edu
webapps-dev.rider.edu
aruba-ml.rider.edu
athena.rider.edu
athena.rider.edu
broncnation.rider.edu
serenity.rider.edu
canvas.rider.edu
sierra.rider.edu
ssl766224.cloudflaressl.com
sni.cloudflaressl.com
shibboleth-prod.rider.edu
secureforms.rider.edu
www.rider.edu
vanckohall.delhi.edu
epay.rider.edu
vanckohall.delhi.edu
com-web.rider.edu
keys.rider.edu
psynch.rider.edu
online.rider.edu
admissions.rider.edu
san-2-s10.tlsprovisioning.exacttarget.com
cvp.rider.edu
easypass.rider.edu
revan.rider.edu
tatooine.rider.edu
comm.rider.edu
aruba-wcc.rider.edu
online.rider.edu
accounts.rider.edu
comm.rider.edu
webmail.rider.edu
alumni.rider.edu
appnav-prod.ec.rider.edu
*.ec.rider.edu
com-od.rider.edu
ssl766224.cloudflaressl.com
explore.rider.edu
athena.rider.edu
image.info.malesci.it
sni.cloudflaressl.com
alumni.rider.edu
aruba-fa.rider.edu
athena.rider.edu
easypass.rider.edu
ssl766222.cloudflaressl.com
*.rider.edu
aruba-fa.rider.edu
secureforms.rider.edu
amploadvance.com
guides.rider.edu
sni.cloudflaressl.com
comm.rider.edu
csgold7-wm.rider.edu
cvp.rider.edu
athena.rider.edu
explore.rider.edu
image.info.malesci.it
vanckohall.delhi.edu
vanckohall.delhi.edu
tatooine.rider.edu
mobile.rider.edu
vanckohall.delhi.edu
broncnation.rider.edu
com-advising.rider.edu
sni.cloudflaressl.com
image.info.malesci.it
ssl436522.cloudflaressl.com
alumni.rider.edu
tatooine.rider.edu
give.rider.edu
coco.rider.edu
tatooine.rider.edu
listserv.rider.edu
rider-dlcas-301.rider.edu
vanckohall.delhi.edu
epay.rider.edu
athena.rider.edu
nextcatalog.rider.edu
image.info.malesci.it
evisions-dev.rider.edu
myrider.rider.edu
myrider.rider.edu
myprintcenter-dev.rider.edu
webapps-dev.rider.edu
*.ec.rider.edu
explore.rider.edu
dw.rider.edu
vanckohall.delhi.edu
shibboleth-dev.rider.edu
map.rider.edu
sanzio.rider.edu
image.info.malesci.it
tutortrac.rider.edu
mdm.rider.edu
mdm.rider.edu
guides.rider.edu
online.rider.edu
psynch.rider.edu
webapps-dev.rider.edu
aruba-ml.rider.edu
athena.rider.edu
athena.rider.edu
Certificate
The complete raw certificate details for give.rider.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIQDsZWJuiQn5D9E1xDK9uTdTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDMwMTAwMDAwMFoXDTIzMDcyODIzNTk1OVowGTEX MBUGA1UEAxMOZ2l2ZS5yaWRlci5lZHUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCTmP1L9UYlHl2e/k2meRKahV407sKsV+VGP8r+rjn5NJjSOI4rkc7I oxGEGVRoFA9VQ/952NyqD1mXbwh130n5qg3wD1np1zX23I4hRdaCzm31n15K90Ye Pc2yLlEXJRaAahrZHPVBn4VHEif1C4zDLeY1YwITJ56RRxvUdjQ31Cj58TQeoenY Iw+wv/IHDIJ4LYeE7JBNrZR3neuE+EZcGkKIQWnLRBjPaOYSzPsDetp63lkC4mFX gDBbdUgPkolmVmLfB+CSBFqVVgvSGZWOfHJRsgHNvOas9ZEpSQtr/i3SzUam+hQV XBEuO4fUfcwkHm7thXp12QMMw2b36iH5AgMBAAGjggLlMIIC4TAfBgNVHSMEGDAW gBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUOsXvDIftwJBAGxcT5pqw XASVwigwGQYDVR0RBBIwEIIOZ2l2ZS5yaWRlci5lZHUwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAs hipodHRwOi8vY3JsLnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jcmwwEwYD VR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFo dHRwOi8vb2NzcC5yMm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0 dHA6Ly9jcnQucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMB Af8EAjAAMIIBfAYKKwYBBAHWeQIEAgSCAWwEggFoAWYAdQCt9776fP8QyIudPZwe PhhqtGcpXc+xDCTKhYY069yCigAAAYabq9ilAAAEAwBGMEQCIA2l5f8SiwYEmVJz OzvhxexxMhIoGPj0Ra5iZ1iSUFTlAiBfFQwBeMw1m3XUSw2ygEkTST94XZ7DGypv Do8FcuywrAB1ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAABhpur 2KwAAAQDAEYwRAIgK25XeRvKVNjHd4N9fZAxTDYNj6Jy5lNv+cJeM65pjSsCIGWi BpX/uBVfokU0lJ+LpCLPhdz5Oy7mkOGWRXtCE6KnAHYAtz77JN+cTbp18jnFulj0 bF38Qs96nzXEnh0JgSXttJkAAAGGm6vYZQAABAMARzBFAiBYT0u+buczSfoKcv9D 4qnqKczF6sg3jlT8MtOGtwc5AAIhALHSabzGRzbGQu6CWwB2mkxEwzUW2Ro2YENZ XMCfzBOQMA0GCSqGSIb3DQEBCwUAA4IBAQAImw7EGRjr41UX/4SHObOmyvsDnO8p chCMfEaDDYFgG6vAYq7B2PGWVBcyfcu27EOooWtFpXx645Jm0PSN9q0ySe0wGAmc /9o+0Bz3kpks/Dp0uBTZuhdWwUH/InkW9CJT3SLzz+LibRv42L5SpZdhmIoHHglJ CA1DW3lhr+1T1SgUr3VIGJFRNyNdj6OmTNZwDXgwIV4r9m1Bvr0Krj5F8WRZjY1/ +hHZ0iUMLHT1z3aIOsnp3if3knmOPYReYy9R7P9UTeurvejlJcoa8Lvj6rU1bt2h FKf5LDYjyJB4WFaTR6W0/LikdH9h+FadKluvnSmx0WV6fN81wkJONJak -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5j9S/VGJR5dnv5NpnkS moVeNO7CrFflRj/K/q45+TSY0jiOK5HOyKMRhBlUaBQPVUP/edjcqg9Zl28Idd9J +aoN8A9Z6dc19tyOIUXWgs5t9Z9eSvdGHj3Nsi5RFyUWgGoa2Rz1QZ+FRxIn9QuM wy3mNWMCEyeekUcb1HY0N9Qo+fE0HqHp2CMPsL/yBwyCeC2HhOyQTa2Ud53rhPhG XBpCiEFpy0QYz2jmEsz7A3raet5ZAuJhV4AwW3VID5KJZlZi3wfgkgRalVYL0hmV jnxyUbIBzbzmrPWRKUkLa/4t0s1GpvoUFVwRLjuH1H3MJB5u7YV6ddkDDMNm9+oh +QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19639014088850168804218131328184062837 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-28 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'give.rider.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18632472734770315817121282896158280041921083716793035016228077390047606926933951756024341598611409251353748229349274648186548826244412086957735118479425840198145493741133487509173766996228054306110168826252704404313680776573559963248390894487769496489974228095340562780039146368839281989252436623147957651177560833780159074442665212319090444278221462466352333282024581572401888070542204238104529348984623122040222401964833330372818821766794745732749805652276266448478201118621459906482559748879999818514920530207701007654372269456263449251317143809273817934385743458979909405474464177277791491444632337315176766906873 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3ac5ef0c87edc090401b1713e69ab05c0495c228 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'give.rider.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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