production.pchpoints.sales.diarz.net
Issued by Amazon
About this certificate
This digital certificate with serial number 09:20:28:4f:7e:32:0a:e0:fa:36:83:17:e1:61:78:38 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=production.pchpoints.sales.diarz.net
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:20:28:4f:7e:32:0a:e0:fa:36:83:17:e1:61:78:38Serial Number (int): 12130023056001950936182320827344189496
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: b5:19:95:bb:21:cd:26:ec:16:39:c3:cd:95:a3:4c:d4:f8:26:84:7c
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): dd:dc:e8:06:0f:16:a9:53:34:4d:b0:39:88:9f:ec:8f:bd:85:21:fe
Fingerprint (sha256): 38:af:45:58:ed:a4:b0:98:b7:13:c9:76:14:96:67:b2:42:60:69:03:3d:86:09:9b:71:6d:a4:39:73:b2:da:44
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate production.pchpoints.sales.diarz.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for production.pchpoints.sales.diarz.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
production.pchpoints.sales.diarz.net
*.production.pchpoints.sales.diarz.net
*.production.pchpoints.sales.diarz.net
Other certificates including the domain name diarz.net
(limited to 100 certificates)
skom.rms.brand.diarz.net
fs-demo.sms.brand.diarz.net
wecker.rcommerce.net
meiseleder.at
wuetschner-shop.de
industrietechnik24.rms.brand.diarz.net
unimatic.rms.brand.diarz.net
krinner.rms.brand.diarz.net
geyer.rms.brand.diarz.net
production.sandvik.sales.diarz.net
production.infraserv.sales.diarz.net
pspneumatik.rms.brand.diarz.net
production.precitool.sales.diarz.net
ackrutat.de
riegler.shop
production.mb.sales.diarz.net
production.montalpina.sales.diarz.net
production.kfw.sales.diarz.net
mls-safety-shop.de
toologic-webshop.de
production.pchpoints.sales.diarz.net
kl-arbeitsschutz.de
webshop.schmitter-hydraulik.de
wecker.rms.brand.diarz.net
doeringshoff.de
muehlberger-shop.de
riegler.shop
tsm.rms.brand.diarz.net
approval.dia.procure.diarz.net
production.mls.sales.diarz.net
kw-webshop.de
wille.rms.brand.diarz.net
pch-portal.com
approval.dia.sales.diarz.net
ksa-shop.de
muehlberger-shop.de
kfw-webshop.de
nordparts.sms.brand.diarz.net
altmann-industrietechnik.shop
fey.rms.brand.diarz.net
pwk-shop.de
fecht.sms.brand.diarz.net
kfw-webshop.de
interlink.diatool.diarz.net
mls-safety-shop.de
ackrutat.de
groll.rms.brand.diarz.net
production.kw.sales.diarz.net
rolfwebershop.de
bosch.sms.brand.diarz.net
kl-arbeitsschutz.de
moesch.rms.brand.diarz.net
demo.rms.brand.diarz.net
bng.sms.brand.diarz.net
erp.diatool.diarz.net
toologic-webshop.de
trg.rms.brand.diarz.net
ps-hydraulik.sms.brand.diarz.net
rittmeier.rms.brand.diarz.net
montalpina-shop.com
montalpina-shop.com
doeringshoff.de
production.schmitter.sales.diarz.net
wilde-hydraulik.sms.brand.diarz.net
neuendorf-shop.de
dzbamberg.rms.brand.diarz.net
hanselmann.rms.brand.diarz.net
pwk-shop.de
production.kl.sales.diarz.net
kl-webshop.de
fs-demo.sms.brand.diarz.net
wecker.rcommerce.net
meiseleder.at
wuetschner-shop.de
industrietechnik24.rms.brand.diarz.net
unimatic.rms.brand.diarz.net
krinner.rms.brand.diarz.net
geyer.rms.brand.diarz.net
production.sandvik.sales.diarz.net
production.infraserv.sales.diarz.net
pspneumatik.rms.brand.diarz.net
production.precitool.sales.diarz.net
ackrutat.de
riegler.shop
production.mb.sales.diarz.net
production.montalpina.sales.diarz.net
production.kfw.sales.diarz.net
mls-safety-shop.de
toologic-webshop.de
production.pchpoints.sales.diarz.net
kl-arbeitsschutz.de
webshop.schmitter-hydraulik.de
wecker.rms.brand.diarz.net
doeringshoff.de
muehlberger-shop.de
riegler.shop
tsm.rms.brand.diarz.net
approval.dia.procure.diarz.net
production.mls.sales.diarz.net
kw-webshop.de
wille.rms.brand.diarz.net
pch-portal.com
approval.dia.sales.diarz.net
ksa-shop.de
muehlberger-shop.de
kfw-webshop.de
nordparts.sms.brand.diarz.net
altmann-industrietechnik.shop
fey.rms.brand.diarz.net
pwk-shop.de
fecht.sms.brand.diarz.net
kfw-webshop.de
interlink.diatool.diarz.net
mls-safety-shop.de
ackrutat.de
groll.rms.brand.diarz.net
production.kw.sales.diarz.net
rolfwebershop.de
bosch.sms.brand.diarz.net
kl-arbeitsschutz.de
moesch.rms.brand.diarz.net
demo.rms.brand.diarz.net
bng.sms.brand.diarz.net
erp.diatool.diarz.net
toologic-webshop.de
trg.rms.brand.diarz.net
ps-hydraulik.sms.brand.diarz.net
rittmeier.rms.brand.diarz.net
montalpina-shop.com
montalpina-shop.com
doeringshoff.de
production.schmitter.sales.diarz.net
wilde-hydraulik.sms.brand.diarz.net
neuendorf-shop.de
dzbamberg.rms.brand.diarz.net
hanselmann.rms.brand.diarz.net
pwk-shop.de
production.kl.sales.diarz.net
kl-webshop.de
Certificate
The complete raw certificate details for production.pchpoints.sales.diarz.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgIQCSAoT34yCuD6NoMX4WF4ODANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMTEyMDMwMDAwMDBaFw0yMzAxMDEy MzU5NTlaMC8xLTArBgNVBAMTJHByb2R1Y3Rpb24ucGNocG9pbnRzLnNhbGVzLmRp YXJ6Lm5ldDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJWYRwRvxU5n v6NANIl7OijeMWATxUV2rvxAZNFC8sHlba/TDKDD0lsR5SgnggykEbwpyhdG038u nwpUcmG4RrE8ijX9HFGZrgQM8neOffVPpc1WKWFPog6Kvr13m2Tqm9SqFiv8vxoH exFMaIFTYJGIFkcFOvRSJ+EgU6vgLX9KO9QOHNIRwn0pKV9/h4kqPjCu9xqHTt+u BGqj26/oComtZlUVkYigizj7Pucsgp1fF1NtVakNb6lBOEeiIbuhBzzzhwkufPtd rRq9Rygk14XTc8XX+DcQtTt5U5xLs2aRoa5G+oZIPD//3Suyc8+uRRpqTgqkABS0 NLcfvq63ID0CAwEAAaOCAbowggG2MB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcn lnRb+T3QMB0GA1UdDgQWBBS1GZW7Ic0m7BY5w82Vo0zU+CaEfDBXBgNVHREEUDBO giRwcm9kdWN0aW9uLnBjaHBvaW50cy5zYWxlcy5kaWFyei5uZXSCJioucHJvZHVj dGlvbi5wY2hwb2ludHMuc2FsZXMuZGlhcnoubmV0MA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPQYDVR0fBDYwNDAyoDCgLoYs aHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWItMS5jcmwwEwYD VR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFo dHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0 dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMB Af8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAl J6yjCc8z3hcasoyiXyt4xV6DQkQqn3IKDBwh2pDq3N734YjAdGyQuOMDX4fmGWZl nP2PFSMoHiLbxHpKgllsntEQAlMquP9ejwLVr7+tN0qEwKOsbUv51GxUi9G3b16D 1sRqrfECrTGC/lC5oJ0agdidA3LJ7kDshADjmuGQIMpiqzE4RVEKXXlCsWCGVdH5 xMgCfz35ggf1bQJngmpmgEEtXt2iCeHnJ1mKstMW2vRgBxpS+/TRawqSt3RXEyYk Rto6GSEKiymx1qVf7jsnnzfRu7685rSV4rMPjGhR9oIVboFDYcaPEGaRfMEzTzD6 /nKenPgF0q7C+Yyjh3Vj -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZhHBG/FTme/o0A0iXs6 KN4xYBPFRXau/EBk0ULyweVtr9MMoMPSWxHlKCeCDKQRvCnKF0bTfy6fClRyYbhG sTyKNf0cUZmuBAzyd4599U+lzVYpYU+iDoq+vXebZOqb1KoWK/y/Ggd7EUxogVNg kYgWRwU69FIn4SBTq+Atf0o71A4c0hHCfSkpX3+HiSo+MK73GodO364EaqPbr+gK ia1mVRWRiKCLOPs+5yyCnV8XU21VqQ1vqUE4R6Ihu6EHPPOHCS58+12tGr1HKCTX hdNzxdf4NxC1O3lTnEuzZpGhrkb6hkg8P//dK7Jzz65FGmpOCqQAFLQ0tx++rrcg PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12130023056001950936182320827344189496 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'production.pchpoints.sales.diarz.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18884598230199433854483343904638235017493024250705031780977113218334245360626387534228271346876450590391967655087357887897120946160428610227916695457959903448933025927906726394782069894360456605696548406024861874505459654513623233879417522569865412175440836026847655428578436219515428358602321692716891323703391830898197102625402934369545963704060783525163673223677834572742853207093021174153004008329101284788443694366900048532518075288932619731486500041369616824538986155086863108256686028354246300672117011834178424180789326839073580449989056522437107450046865826941750340142622477440940490824753966222028058337341 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b51995bb21cd26ec1639c3cd95a34cd4f826847c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'production.pchpoints.sales.diarz.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.production.pchpoints.sales.diarz.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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