studio.mbed.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0b:6b:e6:4c:2a:83:ab:1c:88:18:82:a9:a8:6c:13:c9 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=studio.mbed.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:6b:e6:4c:2a:83:ab:1c:88:18:82:a9:a8:6c:13:c9Serial Number (int): 15181754706204039872331951682758644681
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 66:ef:36:9f:49:b2:47:c5:93:60:b6:87:49:04:e1:1c:ac:2c:47:9e
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 85:16:8f:92:aa:c9:f4:75:19:67:d6:ca:74:bc:45:6a:ba:76:13:ed
Fingerprint (sha256): 31:8f:5d:2d:56:a4:af:4a:f9:60:48:f0:3d:2e:ca:e8:a7:05:70:dc:4c:5e:42:66:37:c4:bc:1f:58:59:76:6f
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate studio.mbed.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for studio.mbed.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
studio.mbed.com
Other certificates including the domain name mbed.com
(limited to 100 certificates)
*.test.mbed.com
yotta.mbed.com
*.test.mbed.com
studio.mbed.com
*.test.mbed.com
api.connector.mbed.com
docs.mbed.com
systemtest-radiator.mbedcloudtesting.com
mbed-www-media.mbed.com
forums.mbed.com
forums.mbed.com
media-cdn.partners.test.mbed.com
api.connector.mbed.com
forums.mbed.com
internal.mbed.com
*.mbed.com
studio.test.mbed.com
mbed-media.mbed.com
account.mbed.com
artifactory.mbed.com
*.mbed.com
*.mbed.com
forums.mbed.com
account.mbed.com
mbed-www-media.test.mbed.com
forums.mbed.com
labs.test.mbed.com
forums.mbed.com
account.mbed.com
forums.mbed.com
mbed-media.mbed.com
forums.mbed.com
account.test.mbed.com
account.mbed.com
account.mbed.com
*.test.mbed.com
labs.mbed.com
studio.mbed.com
*.test.mbed.com
*.mbed.com
forums.mbed.com
forums.mbed.com
labs.mbed.com
*.test.mbed.com
*.mbed.com
yotta.mbed.com
forums.mbed.com
simulator.mbed.com
*.test.mbed.com
accounts.mbed.com
mbed-www-media.mbed.com
*.mbed.com
studio.mbed.com
*.test.mbed.com
studio.mbed.com
forums.mbed.com
internal.test.mbed.com
*.dev.mbed.com
mbed-www-media.mbed.com
*.test.mbed.com
account.mbed.com
mbed-media.mbed.com
labs.mbed.com
forums.mbed.com
studio.mbed.com
*.mbed.com
systest-radiator.mbed.com
mbed-billing-sandbox.test.mbed.com
studio.mbed.com
*.mbed.com
*.test.mbed.com
mbed-www-media.test.mbed.com
*.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
studio-tmp.mbed.com
account.test.mbed.com
forums.mbed.com
*.test.mbed.com
api.connector.mbed.com
*.preview.mbed.com
*.preview.mbed.com
mbed-billing-sandbox.test.mbed.com
forums.mbed.com
account.mbed.com
mbed.com
accounts.mbed.com
assets.test.mbed.com
*.mbed.com
connector.mbed.com
yotta.mbed.com
forums.mbed.com
studio.mbed.com
simulator.mbed.com
mbed-media.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
*.mbed.com
yotta.mbed.com
*.test.mbed.com
studio.mbed.com
*.test.mbed.com
api.connector.mbed.com
docs.mbed.com
systemtest-radiator.mbedcloudtesting.com
mbed-www-media.mbed.com
forums.mbed.com
forums.mbed.com
media-cdn.partners.test.mbed.com
api.connector.mbed.com
forums.mbed.com
internal.mbed.com
*.mbed.com
studio.test.mbed.com
mbed-media.mbed.com
account.mbed.com
artifactory.mbed.com
*.mbed.com
*.mbed.com
forums.mbed.com
account.mbed.com
mbed-www-media.test.mbed.com
forums.mbed.com
labs.test.mbed.com
forums.mbed.com
account.mbed.com
forums.mbed.com
mbed-media.mbed.com
forums.mbed.com
account.test.mbed.com
account.mbed.com
account.mbed.com
*.test.mbed.com
labs.mbed.com
studio.mbed.com
*.test.mbed.com
*.mbed.com
forums.mbed.com
forums.mbed.com
labs.mbed.com
*.test.mbed.com
*.mbed.com
yotta.mbed.com
forums.mbed.com
simulator.mbed.com
*.test.mbed.com
accounts.mbed.com
mbed-www-media.mbed.com
*.mbed.com
studio.mbed.com
*.test.mbed.com
studio.mbed.com
forums.mbed.com
internal.test.mbed.com
*.dev.mbed.com
mbed-www-media.mbed.com
*.test.mbed.com
account.mbed.com
mbed-media.mbed.com
labs.mbed.com
forums.mbed.com
studio.mbed.com
*.mbed.com
systest-radiator.mbed.com
mbed-billing-sandbox.test.mbed.com
studio.mbed.com
*.mbed.com
*.test.mbed.com
mbed-www-media.test.mbed.com
*.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
studio-tmp.mbed.com
account.test.mbed.com
forums.mbed.com
*.test.mbed.com
api.connector.mbed.com
*.preview.mbed.com
*.preview.mbed.com
mbed-billing-sandbox.test.mbed.com
forums.mbed.com
account.mbed.com
mbed.com
accounts.mbed.com
assets.test.mbed.com
*.mbed.com
connector.mbed.com
yotta.mbed.com
forums.mbed.com
studio.mbed.com
simulator.mbed.com
mbed-media.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
*.mbed.com
Certificate
The complete raw certificate details for studio.mbed.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgIQC2vmTCqDqxyIGIKpqGwTyTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTAxMjcwMDAwMDBaFw0yMDAyMjcx MjAwMDBaMBoxGDAWBgNVBAMTD3N0dWRpby5tYmVkLmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBANdoIg3GN8xNTxrM7UwRja3uAnwioqg77OHvACcF eytAIb5fYnC7sGU9lvB9WVnqf7xQ2w5REqbzxFYE85JijDqGUAu1n6VJ00fbk9Bq rKmA49DzkwVgXunrLsAihCMntAxfDiQmiz4kpZk1j068kH9WspDBhTq6/sxwxOIs ZTn5LfTxNlBS8aWB3EggX23OyTjtmKF0BcV/tTpHZzgc53aZMOSRFnGGDZ3pRoB4 K720uRz11pe7cdhpHsgmISV5tUP3B9WBC/zJZW+3LEjUWKmOdd3Gx3zeJuRh/eZ8 Uy74WaORPQFWfUVjbe2E8oIsimitbFuydHXGmz9r8MTDi40CAwEAAaOCAnswggJ3 MB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBRm7zaf SbJHxZNgtodJBOEcrCxHnjAaBgNVHREEEzARgg9zdHVkaW8ubWJlZC5jb20wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNV HR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9z Y2ExYi5jcmwwIAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsG AQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9u dHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRy dXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADCCAQQGCisGAQQB1nkCBAIE gfUEgfIA8AB3ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3vi5BeAAABaI0L nHgAAAQDAEgwRgIhAMgGX1DMTOCpbpd2+m8SXxqP4uer+4M2piOf4mVVDV6aAiEA lgEMaJlD/i5E/5K34X7/D0VV8r3NkMJOk9lyMdLFAjgAdQCHdb/nWXz4jEOZX73z bv9WjUdWNv9KtWDBtOr/XqCDDwAAAWiNC506AAAEAwBGMEQCIH56QQCXpZr4NLkV 4pF298RVyy5f4prYHIdmHVdDEaPnAiA6StIRGtSnRv19TBwEYOwx/ILncdGvReDN 56TWdBrIyjANBgkqhkiG9w0BAQsFAAOCAQEAZNzKfXcbvptMVbCz2nNhVucKWEm0 0lAtygl5hc6FdC+yaaFLaA797CW5+qiJczojIe//zY1iErR/TasNzcd7ezj6f6v1 TWF+kPpiWNFN0fJ8eu5EcWwaPd+Dj97/31ohEssh0u/9OuOU6LBLIqafCpeAIcTB a57GoqAlNRxC9J13FpfoML2wZBW5JsC1a7nfElWUej9mry10MRrW3vA+U140Xpyi mUizRLh2jSZtlwAXImpydtJ61WGjBoyBt0ywZt084/QQh3cnXwedixeu6IsRcQ1T OXLaDPLy8NhClaPP99sGzabHEjJ3YkYPJ4tRZB9ozCGSEtq1g7ivoeGG3g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA12giDcY3zE1PGsztTBGN re4CfCKiqDvs4e8AJwV7K0Ahvl9icLuwZT2W8H1ZWep/vFDbDlESpvPEVgTzkmKM OoZQC7WfpUnTR9uT0GqsqYDj0POTBWBe6esuwCKEIye0DF8OJCaLPiSlmTWPTryQ f1aykMGFOrr+zHDE4ixlOfkt9PE2UFLxpYHcSCBfbc7JOO2YoXQFxX+1OkdnOBzn dpkw5JEWcYYNnelGgHgrvbS5HPXWl7tx2GkeyCYhJXm1Q/cH1YEL/Mllb7csSNRY qY513cbHfN4m5GH95nxTLvhZo5E9AVZ9RWNt7YTygiyKaK1sW7J0dcabP2vwxMOL jQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15181754706204039872331951682758644681 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-27 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'studio.mbed.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27192585475022858413862266430767530265330787769394101108753626526086408330470071218616874697731655299627712258669759888234000301536276192863338889947179499823155118356155491978996037369376628218738697518296313692539726804344964074942230446313766875309244975414092450792209928946699848639225298472536608553093940688437209787121683035112110566015827061774693188116801621753703465223212624998751467245541664159221282815807442099940936244486900669040411916014452517663857601241263018312867600069345652220492928767994957244488902668753410596177612531284594261365078923676752495570559354958301081008209970676670800727346061 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 66ef369f49b247c59360b6874904e11cac2c479e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'studio.mbed.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001688d0b9c780000040300483046022100c8065f50cc4ce0a96e9776fa6f125f1a8fe2e7abfb8336a6239fe265550d5e9a02210096010c689943fe2e44ff92b7e17eff0f4555f2bdcd90c24e93d97231d2c502380075008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001688d0b9d3a000004030046304402207e7a410097a59af834b915e29176f7c455cb2e5fe29ad81c87661d574311a3e702203a4ad2111ad4a746fd7d4c1c0460ec31fc82e771d1af45e0cde7a4d6741ac8ca . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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