mdc.drk-berlin.de
Issued by RapidSSL SHA256 CA - G2
About this certificate
This digital certificate with serial number 16:ae:91:3b:12:e4:8d:f4:34:9e:c0:29:45:2c:f9:2a was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=mdc.drk-berlin.de
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 16:ae:91:3b:12:e4:8d:f4:34:9e:c0:29:45:2c:f9:2aSerial Number (int): 30149421190354362667183116571745515818
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 4c:f4:bf:e8:3b:be:c2:24:f3:1b:47:3b:b5:6e:48:8e:16:ab:af:12
Fingerprint (sha1): 72:a0:ed:2f:c4:7a:6c:7e:6d:f5:12:76:1b:0e:cc:72:a5:ea:e7:ff
Fingerprint (sha256): 43:14:ab:f9:ef:24:26:d0:23:7c:aa:a5:ff:00:43:63:71:61:20:1b:1d:fb:68:70:37:42:28:2b:a3:83:fc:c0
Issuing Certificate URL: http://gs.symcb.com/gs.crt
Revocation information
OCSP Server: http://gs.symcd.comCRL Distribution Point: http://gs.symcb.com/gs.crl
Check the revocation status for certificate mdc.drk-berlin.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mdc.drk-berlin.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mdc.drk-berlin.de
Other certificates including the domain name drk-berlin.de
(limited to 100 certificates)
webmail.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
www.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
drk-berlin.de
www.drk-berlin.de
mdc.drk-berlin.de
www.drk-berlin.de
onlineshop.drk-berlin.de
www2.drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
umomobile.drk-berlin.de
drk-berlin.de
webmail.drk-berlin.de
webmail.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
www.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
webmail.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
www2.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
mdc.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
www.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
drk-berlin.de
www.drk-berlin.de
mdc.drk-berlin.de
www.drk-berlin.de
onlineshop.drk-berlin.de
www2.drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
umomobile.drk-berlin.de
drk-berlin.de
webmail.drk-berlin.de
webmail.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
www.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
webmail.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
www2.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
mdc.drk-berlin.de
Certificate
The complete raw certificate details for mdc.drk-berlin.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIQFq6ROxLkjfQ0nsApRSz5KjANBgkqhkiG9w0BAQsFADBH MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEgMB4GA1UEAxMX UmFwaWRTU0wgU0hBMjU2IENBIC0gRzIwHhcNMTcwMjEwMDAwMDAwWhcNMjAwMjEw MjM1OTU5WjAcMRowGAYDVQQDDBFtZGMuZHJrLWJlcmxpbi5kZTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALbk7OWaS5rkFkPmohaRyK6kKbJpA0/6ayud 7/3nILKR9CNKIYOyTH23dow6bxioxmAkPmzOzdisLOMircIG88F6HK6mliAiwadp WWSVAX+dnCNNhg/55otQynCS4xnQPMEPqS/7RNrvEpXEJsPdO3T+ljiHfi+GUPSH Tl4tyNvV9UHX2UZZy8Rn/4r9KtrimkOBhRMyeXfUOQnD1GwSioBw01od3Aa3glRg W6gB5haeQYWxOESAD6vNM/yYExnBuKI9jafKVOoObtPGCdVXdzDaneVHiCs3O4/f tjFGAwTMjzcUKZnwrqiohdY/0omJyO0yst6u9ZWDYeYiC0T7oC7tkNQ+qwjK1c4q 31ZHvQ9Vw/z+j+Ez2jssPkX9uS43qifkU41eItdNFG8BYJLyoVsnKl5nTGfOrp/F VOoX0qJ51BCHe5hM/1uIM2zUBD3gEp11IIneXkEagzdLK6kCw0vGDA9lfCUY2DLU b9lNOaAYSuMc7FcfuRNGh40GI8j1Arg5kf2hzglP46nWop2JjTMm8mE0nfsKVOTo Bbmv7IecxkoCxtCAoB+xQTm/gW/4y38KsGKM87YkDkRooqdj+Wv1aPMK4ss69U3R LZNdiJ5lGGJD6Z/7uN7bxdYcmPd/ZMevqmsjOsrynijgUh+6iQ0VK+ZuG9pZbBPA GEAWJwBfAgMBAAGjggGJMIIBhTAcBgNVHREEFTATghFtZGMuZHJrLWJlcmxpbi5k ZTAJBgNVHRMEAjAAMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9ncy5zeW1jYi5j b20vZ3MuY3JsMG8GA1UdIARoMGYwZAYGZ4EMAQIBMFowKgYIKwYBBQUHAgEWHmh0 dHBzOi8vd3d3LnJhcGlkc3NsLmNvbS9sZWdhbDAsBggrBgEFBQcCAjAgDB5odHRw czovL3d3dy5yYXBpZHNzbC5jb20vbGVnYWwwHwYDVR0jBBgwFoAUTPS/6Du+wiTz G0c7tW5IjharrxIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9n cy5zeW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9ncy5zeW1jYi5jb20vZ3Mu Y3J0MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCDdS+E gk+qgiF/IrSGU5yCQde6szlAvNQ+nvmy671zS8LnM4ND7RdHaF9DEL4hynCfseq7 mEI3sbdm9sNKtBfWp1+5gmZKTPUhwZuBWfyvdncOD490NgQ22QUWbszOxLJrFzJs fofSTppz8CTo9bE+WfESNqNtRZWh/CsE/lwQg/xaRGmIo1Ka6iMD9txQZdyKppJL AKQPuc2yG0I600zpAATWQgr5CEtJ+5Wa16UIJX+4h2BnZw0FIWK1VgXXkpLmaEgJ 3GsFBC7U0dhfXYem81alMY289mB0o+KfwotKi5Jp3M/RyP7CdQHxV3Pyf9c9mKO1 pWFxiVIvSArWhlF+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtuTs5ZpLmuQWQ+aiFpHI rqQpsmkDT/prK53v/ecgspH0I0ohg7JMfbd2jDpvGKjGYCQ+bM7N2Kws4yKtwgbz wXocrqaWICLBp2lZZJUBf52cI02GD/nmi1DKcJLjGdA8wQ+pL/tE2u8SlcQmw907 dP6WOId+L4ZQ9IdOXi3I29X1QdfZRlnLxGf/iv0q2uKaQ4GFEzJ5d9Q5CcPUbBKK gHDTWh3cBreCVGBbqAHmFp5BhbE4RIAPq80z/JgTGcG4oj2Np8pU6g5u08YJ1Vd3 MNqd5UeIKzc7j9+2MUYDBMyPNxQpmfCuqKiF1j/SiYnI7TKy3q71lYNh5iILRPug Lu2Q1D6rCMrVzirfVke9D1XD/P6P4TPaOyw+Rf25LjeqJ+RTjV4i100UbwFgkvKh WycqXmdMZ86un8VU6hfSonnUEId7mEz/W4gzbNQEPeASnXUgid5eQRqDN0srqQLD S8YMD2V8JRjYMtRv2U05oBhK4xzsVx+5E0aHjQYjyPUCuDmR/aHOCU/jqdainYmN MybyYTSd+wpU5OgFua/sh5zGSgLG0ICgH7FBOb+Bb/jLfwqwYozztiQORGiip2P5 a/Vo8wriyzr1TdEtk12InmUYYkPpn/u43tvF1hyY939kx6+qayM6yvKeKOBSH7qJ DRUr5m4b2llsE8AYQBYnAF8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 30149421190354362667183116571745515818 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-10 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'mdc.drk-berlin.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 746143400310331899200230163608926783725692366001874763629560691089267788737019524683062189693913571467292481099642684305984380756374245466509603138192946183348313243649097770449074581832005536521424663645513615943001899716648727934474990204734650941294921476737060134997341295860357752996505006956265949003822323859325032378025642973712110903403746657168995472009669722465678449427655023220853211885173281462993945719050726931794313908302294321038470594906602904028815016758877798702885220805745758825571513502300275113027829520215941866489350549470403385608863275189151164959506035217921568567809461374177537945152643950362573485915993682115837474996187713329657678382803228843164029816936904955530592970725879083614957956846957130784319942207612838936447246638195616250687683820176669273067273399254395831529408202528420145443362535772556706845370671918295645253518029284938501267308799448672353252860150596025325374418088461644402027254737049528165645960797704908527130751397740505909727965153806383861220037300468912104488707724603951318058981214171128677949724401509741637066231089891189463744607833318292076930911881662051584512346171248115178379238657582999588601790781459373819034794816318991751634587900270761367428330356831 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mdc.drk-berlin.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcb.com/gs.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4cf4bfe83bbec224f31b473bb56e488e16abaf12 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcb.com/gs.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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