map.rider.edu
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 02:c7:f9:9b:79:b8:68:b4:af:39:5d:d1:9f:7f:f1:3b was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=map.rider.edu
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:c7:f9:9b:79:b8:68:b4:af:39:5d:d1:9f:7f:f1:3bSerial Number (int): 3696785704445384419139295734839374139
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 5d:e1:7c:27:2e:55:72:54:eb:ae:61:d5:ea:bc:37:ff:5d:dc:63:ee
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 96:58:e6:2d:27:e1:95:87:0d:48:a3:02:75:d5:75:e4:10:cd:4d:dc
Fingerprint (sha256): 38:8f:eb:f0:bc:6a:95:1c:65:9a:ec:05:3e:d8:58:fe:55:b8:af:aa:81:85:1f:8b:48:1f:3c:c3:ba:eb:1b:2f
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate map.rider.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for map.rider.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
map.rider.edu
Other certificates including the domain name rider.edu
(limited to 100 certificates)
csgold7-wm.rider.edu
broncnation.rider.edu
serenity.rider.edu
canvas.rider.edu
sierra.rider.edu
ssl766224.cloudflaressl.com
sni.cloudflaressl.com
shibboleth-prod.rider.edu
secureforms.rider.edu
www.rider.edu
vanckohall.delhi.edu
epay.rider.edu
vanckohall.delhi.edu
com-web.rider.edu
keys.rider.edu
psynch.rider.edu
online.rider.edu
admissions.rider.edu
san-2-s10.tlsprovisioning.exacttarget.com
cvp.rider.edu
easypass.rider.edu
revan.rider.edu
tatooine.rider.edu
comm.rider.edu
aruba-wcc.rider.edu
online.rider.edu
accounts.rider.edu
comm.rider.edu
webmail.rider.edu
alumni.rider.edu
appnav-prod.ec.rider.edu
*.ec.rider.edu
com-od.rider.edu
ssl766224.cloudflaressl.com
explore.rider.edu
athena.rider.edu
image.info.malesci.it
sni.cloudflaressl.com
alumni.rider.edu
aruba-fa.rider.edu
athena.rider.edu
easypass.rider.edu
ssl766222.cloudflaressl.com
*.rider.edu
aruba-fa.rider.edu
secureforms.rider.edu
amploadvance.com
guides.rider.edu
sni.cloudflaressl.com
comm.rider.edu
csgold7-wm.rider.edu
cvp.rider.edu
athena.rider.edu
explore.rider.edu
image.info.malesci.it
vanckohall.delhi.edu
vanckohall.delhi.edu
tatooine.rider.edu
mobile.rider.edu
vanckohall.delhi.edu
broncnation.rider.edu
com-advising.rider.edu
sni.cloudflaressl.com
image.info.malesci.it
ssl436522.cloudflaressl.com
alumni.rider.edu
tatooine.rider.edu
give.rider.edu
coco.rider.edu
tatooine.rider.edu
listserv.rider.edu
rider-dlcas-301.rider.edu
vanckohall.delhi.edu
epay.rider.edu
athena.rider.edu
nextcatalog.rider.edu
image.info.malesci.it
evisions-dev.rider.edu
myrider.rider.edu
myrider.rider.edu
myprintcenter-dev.rider.edu
webapps-dev.rider.edu
*.ec.rider.edu
explore.rider.edu
dw.rider.edu
vanckohall.delhi.edu
shibboleth-dev.rider.edu
map.rider.edu
sanzio.rider.edu
image.info.malesci.it
tutortrac.rider.edu
mdm.rider.edu
mdm.rider.edu
guides.rider.edu
online.rider.edu
psynch.rider.edu
webapps-dev.rider.edu
aruba-ml.rider.edu
athena.rider.edu
athena.rider.edu
broncnation.rider.edu
serenity.rider.edu
canvas.rider.edu
sierra.rider.edu
ssl766224.cloudflaressl.com
sni.cloudflaressl.com
shibboleth-prod.rider.edu
secureforms.rider.edu
www.rider.edu
vanckohall.delhi.edu
epay.rider.edu
vanckohall.delhi.edu
com-web.rider.edu
keys.rider.edu
psynch.rider.edu
online.rider.edu
admissions.rider.edu
san-2-s10.tlsprovisioning.exacttarget.com
cvp.rider.edu
easypass.rider.edu
revan.rider.edu
tatooine.rider.edu
comm.rider.edu
aruba-wcc.rider.edu
online.rider.edu
accounts.rider.edu
comm.rider.edu
webmail.rider.edu
alumni.rider.edu
appnav-prod.ec.rider.edu
*.ec.rider.edu
com-od.rider.edu
ssl766224.cloudflaressl.com
explore.rider.edu
athena.rider.edu
image.info.malesci.it
sni.cloudflaressl.com
alumni.rider.edu
aruba-fa.rider.edu
athena.rider.edu
easypass.rider.edu
ssl766222.cloudflaressl.com
*.rider.edu
aruba-fa.rider.edu
secureforms.rider.edu
amploadvance.com
guides.rider.edu
sni.cloudflaressl.com
comm.rider.edu
csgold7-wm.rider.edu
cvp.rider.edu
athena.rider.edu
explore.rider.edu
image.info.malesci.it
vanckohall.delhi.edu
vanckohall.delhi.edu
tatooine.rider.edu
mobile.rider.edu
vanckohall.delhi.edu
broncnation.rider.edu
com-advising.rider.edu
sni.cloudflaressl.com
image.info.malesci.it
ssl436522.cloudflaressl.com
alumni.rider.edu
tatooine.rider.edu
give.rider.edu
coco.rider.edu
tatooine.rider.edu
listserv.rider.edu
rider-dlcas-301.rider.edu
vanckohall.delhi.edu
epay.rider.edu
athena.rider.edu
nextcatalog.rider.edu
image.info.malesci.it
evisions-dev.rider.edu
myrider.rider.edu
myrider.rider.edu
myprintcenter-dev.rider.edu
webapps-dev.rider.edu
*.ec.rider.edu
explore.rider.edu
dw.rider.edu
vanckohall.delhi.edu
shibboleth-dev.rider.edu
map.rider.edu
sanzio.rider.edu
image.info.malesci.it
tutortrac.rider.edu
mdm.rider.edu
mdm.rider.edu
guides.rider.edu
online.rider.edu
psynch.rider.edu
webapps-dev.rider.edu
aruba-ml.rider.edu
athena.rider.edu
athena.rider.edu
Certificate
The complete raw certificate details for map.rider.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIQAsf5m3m4aLSvOV3Rn3/xOzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDUyMDAwMDAwMFoXDTI0MDYxNzIzNTk1OVowGDEW MBQGA1UEAxMNbWFwLnJpZGVyLmVkdTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAMwzlQP/eaNdtdBSwKGyKOBAzeLILdM76WiJmJUCaTaU6uz6bw+JglmD gasXEXanmcjYMF/0ujp6wiD5cwMrmNiQYptF3aTj0MLqg/+iDS/wq16ek3WCHEn2 RSsUUci0D3mYxa/Gg7XmPiUYZ3eEIARUUiD6A5igrdqLmPKV1W263hFAaRS7m8Mh VpcFO90OnNnynpWFTRGPXaTIgmBVFInkDeDM/ggnecklOrsDJSyS7iBD9QjJhaW6 ta23DjzokzSmrjz05oPThQmx3VeoqmaOQN6kbZDwslrvjmIZz8MU/Kzxj01TxEl5 R9QdxsCX2yLMdOhZKQUQT5OdQHJoJjUCAwEAAaOCAuUwggLhMB8GA1UdIwQYMBaA FIG4DmOKiRIY5fo7O1CVn+blkBOFMB0GA1UdDgQWBBRd4XwnLlVyVOuuYdXqvDf/ Xdxj7jAYBgNVHREEETAPgg1tYXAucmlkZXIuZWR1MA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYq aHR0cDovL2NybC5yMm0wMS5hbWF6b250cnVzdC5jb20vcjJtMDEuY3JsMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0 cDovL29jc3AucjJtMDEuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRw Oi8vY3J0LnIybTAxLmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jZXIwDAYDVR0TAQH/ BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHcA7s3QZNXbGs7FXLedtM0T ojKHRny87N7DUUhZRnEftZsAAAGINzRXiAAABAMASDBGAiEAyp6H2WJUN2cE0ZkE p3ltmlEfgyVEvfXkOBmSgWwV6FECIQDo0HsvxoTfWdF1aF1qMo3Ok1jmgAAcpVeb LVlaV54CVQB0AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABiDc0 V60AAAQDAEUwQwIgE1hhth7b8rDG2AfK1raEZpKWktjq61+gVv/xXpsx1fsCHyWd K0g7CpzYysHeZ9QePUFBqTBMqKinQrKflq+Df/EAdgDatr9rP7W2Ip+bwrtca+hw kXFsu1GEhTS9pD0wSNf7qwAAAYg3NFd4AAAEAwBHMEUCIGT+/kvZL7jwH+EycGIT JfOH9ny9qRUoebzIoVobk7/gAiEAyogZx2K80umd64P2PTk4SeqBK1nMsagcbD2a Vnz8kiswDQYJKoZIhvcNAQELBQADggEBAAtLXc+S0jJETMleNpOxqxynAGwUtKhR YgB+jrmZSdLlNePRaMjQlCyZq/tPSuW+Um015/icoNulYKalkcYAnQbd08sbak7E 8QT2tFO0N+7weFDy2ca7ZyzMvH8m2xL/FEIygSlFpy9V+wgNtuqYwHY9tmn/hqcj qMhJ/OvR0W1dz+pPDzjZEdzguHdQ24VgfxefLw168RjA9HFlBr/47q1RdAhyEHr4 q8lumGyADTb1TYZ3KUYgvEEBhyslBUDOYFEA4Ya/np3MnrcfGaStSR1nO4+L7uDl dljRAh+OEeZkO6G4JN+PlGjDNzgFxSxxY2mnfZrLZB7VHOxIntrOctI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDOVA/95o1210FLAobIo 4EDN4sgt0zvpaImYlQJpNpTq7PpvD4mCWYOBqxcRdqeZyNgwX/S6OnrCIPlzAyuY 2JBim0XdpOPQwuqD/6INL/CrXp6TdYIcSfZFKxRRyLQPeZjFr8aDteY+JRhnd4Qg BFRSIPoDmKCt2ouY8pXVbbreEUBpFLubwyFWlwU73Q6c2fKelYVNEY9dpMiCYFUU ieQN4Mz+CCd5ySU6uwMlLJLuIEP1CMmFpbq1rbcOPOiTNKauPPTmg9OFCbHdV6iq Zo5A3qRtkPCyWu+OYhnPwxT8rPGPTVPESXlH1B3GwJfbIsx06FkpBRBPk51Acmgm NQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3696785704445384419139295734839374139 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'map.rider.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25778050290781942346105378432922351880878564062375575316441960511010078284617285311229229239765453223814070350101691627105529913640654372324080569004584504443453704521719094374010308751007152894848297678975204449957532093917467603157450960411181411683942641097076900556312528299675087757092231800397341193684521694519552934346199563041935413562229749977796500506462802495044718952904484213058779453892948933701401503904574108883193745047201642041486978299892646935982340212994147755332878478044071979879330200295998600073189225561459764931756627304703348231105552406754741570652145858344331177719446953569189985003061 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5de17c272e557254ebae61d5eabc37ff5ddc63ee . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'map.rider.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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