app.brikl.io
Issued by Amazon
About this certificate
This digital certificate with serial number 0c:3c:c7:54:fa:31:16:d9:e9:f8:52:c4:4a:25:ca:8f was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=app.brikl.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:3c:c7:54:fa:31:16:d9:e9:f8:52:c4:4a:25:ca:8fSerial Number (int): 16266316693038455745539025209810864783
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 7f:7a:df:77:08:5e:3f:b4:b4:af:91:28:ae:8d:90:64:1a:ca:b0:10
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): eb:9e:86:e8:3a:0f:7b:3b:aa:0e:3c:32:a1:a0:dd:11:f0:2a:c3:c9
Fingerprint (sha256): 46:6d:eb:8d:c9:6b:be:40:15:50:be:52:aa:fc:46:dd:da:0c:a0:23:51:ea:96:3b:da:ab:07:55:f6:ad:e1:23
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate app.brikl.io
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for app.brikl.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
app.brikl.io
Other certificates including the domain name brikl.io
(limited to 100 certificates)
api.brikl.io
staging.app.brikl.io
staging.www.brikl.io
lib.brikl.io
staging.lib.brikl.io
cdn.brikl.io
lib.brikl.io
staging.api.brikl.io
app.brikl.io
staging.cdn.api.brikl.io
staging.engine.brikl.io
staging.cdn.api.brikl.io
admin.brikl.io
www.brikl.io
staging.admin.brikl.io
brikl.com
staging.storage.brikl.io
brikl.io
staging.app.brikl.io
cdn.discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
staging.storage.brikl.io
staging.app.brikl.io
brikl.io
app.brikl.io
app.brikl.io
cdn.api.brikl.io
obs.brikl.io
hackday.brikl.io
discovery.brikl.io
staging.www.brikl.io
cdn.brikl.io
cdn.discovery.brikl.io
api.brikl.io
upload.brikl.io
staging.cdn.api.brikl.io
staging.app.brikl.io
hackday.brikl.io
staging.upload.brikl.io
storage.brikl.io
cdn.discovery.brikl.io
staging.upload.brikl.io
discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
www.brikl.io
cdn.brikl.io
brikl.com
discovery.brikl.io
discovery.brikl.io
staging.engine.brikl.io
cdn.brikl.io
admin.brikl.io
upload.brikl.io
apollo2.brikl.io
hackday.brikl.io
lib.brikl.io
discovery.brikl.io
brikl.io
storage.brikl.io
staging.cdn.brikl.io
staging.www.brikl.io
hackday.brikl.io
www.brikl.io
api.brikl.io
discovery.brikl.io
brikl.com
staging.lib.brikl.io
www.brikl.io
brikl.io
staging.cdn.brikl.io
app.brikl.io
lib.brikl.io
lib.brikl.io
obs.brikl.io
api.brikl.io
staging.engine.brikl.io
cdn.api.brikl.io
staging.engine.brikl.io
brikl.io
staging.admin.brikl.io
cdn.brikl.io
staging.engine.brikl.io
staging.app.brikl.io
staging.www.brikl.io
lib.brikl.io
staging.lib.brikl.io
cdn.brikl.io
lib.brikl.io
staging.api.brikl.io
app.brikl.io
staging.cdn.api.brikl.io
staging.engine.brikl.io
staging.cdn.api.brikl.io
admin.brikl.io
www.brikl.io
staging.admin.brikl.io
brikl.com
staging.storage.brikl.io
brikl.io
staging.app.brikl.io
cdn.discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
staging.storage.brikl.io
staging.app.brikl.io
brikl.io
app.brikl.io
app.brikl.io
cdn.api.brikl.io
obs.brikl.io
hackday.brikl.io
discovery.brikl.io
staging.www.brikl.io
cdn.brikl.io
cdn.discovery.brikl.io
api.brikl.io
upload.brikl.io
staging.cdn.api.brikl.io
staging.app.brikl.io
hackday.brikl.io
staging.upload.brikl.io
storage.brikl.io
cdn.discovery.brikl.io
staging.upload.brikl.io
discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
www.brikl.io
cdn.brikl.io
brikl.com
discovery.brikl.io
discovery.brikl.io
staging.engine.brikl.io
cdn.brikl.io
admin.brikl.io
upload.brikl.io
apollo2.brikl.io
hackday.brikl.io
lib.brikl.io
discovery.brikl.io
brikl.io
storage.brikl.io
staging.cdn.brikl.io
staging.www.brikl.io
hackday.brikl.io
www.brikl.io
api.brikl.io
discovery.brikl.io
brikl.com
staging.lib.brikl.io
www.brikl.io
brikl.io
staging.cdn.brikl.io
app.brikl.io
lib.brikl.io
lib.brikl.io
obs.brikl.io
api.brikl.io
staging.engine.brikl.io
cdn.api.brikl.io
staging.engine.brikl.io
brikl.io
staging.admin.brikl.io
cdn.brikl.io
staging.engine.brikl.io
Certificate
The complete raw certificate details for app.brikl.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIQDDzHVPoxFtnp+FLESiXKjzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTAyMTMwMDAwMDBaFw0yMDAzMTMx MjAwMDBaMBcxFTATBgNVBAMTDGFwcC5icmlrbC5pbzCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAJOkzIpSc2VNEopZJf6crCsDNjRyTijcoUHRNEVT492+ +2EtJmLdmw1o8Pesh9zJmx466MDdqMVkgv6nVIEIr7e6l7oxlEMcCaBH6YdhAQC7 0d2u+Ua1b0m3e605d7449wzBoGXbU+whrtppK2g2qYC70LvPAwxdnyH6d03x1XTf B/Pkz/7KykHtP4qIxP/oiWYQifFjOfWuj8N+OESakSPNq4pyekUwVPeS2a3dBLvA p/nQ2M2zpRdXHOfpLFM5it/c9gHhnUolwSK2l8w7QpQ9olKsH7FETXhawnAdSHOb QvEPYb1uvDX7sxnB7RGlOKIKq4zt1QIvy9UgHM8+34ECAwEAAaOCAnowggJ2MB8G A1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBR/et93CF4/ tLSvkSiujZBkGsqwEDAXBgNVHREEEDAOggxhcHAuYnJpa2wuaW8wDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAy MDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5j cmwwIAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsGAQUFBwEB BGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3Qu Y29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNv bS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADCCAQYGCisGAQQB1nkCBAIEgfcEgfQA 8gB3AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABaOSjn30AAAQD AEgwRgIhAPK0llV9jRvQY7alNsn8GjWXA9D7/S2Tpi/EYsAlvN3fAiEAjGs9mMsc JGi7L0+KkFMPFuElWIxaBz7MNy+c2/8KV8UAdwCHdb/nWXz4jEOZX73zbv9WjUdW Nv9KtWDBtOr/XqCDDwAAAWjko6BoAAAEAwBIMEYCIQDJvjpMS/JIaTkiKx2K1pGN LLtPoR5/Rl+3KlQNZkpskAIhANk/Nrb8Q3wVtqI7Xh9ZoXvv1qBO4WQ0bARnqEOt vevKMA0GCSqGSIb3DQEBCwUAA4IBAQA1+W1ToksLlkJhu1zTUXDgb4D+JinzTi2U S25WdtK3CPG781oUt9G673PLw2SHwthlBNCVn7CJ5b+bGIjtgjhPMZKOM/1Mylt6 fRrHOFFUI9gslxMUdgZhMUfifcMf5AtJyaIRizVTDzZ21vfyAQvWwDt3aOfDDEVA RcGxPNN1oFkzUb7+9xRWK6OC5P1vstyrudgFdLC4aVpSYk8XZ3v56t0OkvQxWDt1 tF6vgRFIKaONn2VpafCYX+WQdtKpgaYtEHAb0FSUPRu/SxXvRLEwtZq0UyTXWxV9 b2EyNFQXRbor0LLSSgnTA4DETIxJ9wJOBZNDdPvtHZflzIC22fcI -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6TMilJzZU0Silkl/pys KwM2NHJOKNyhQdE0RVPj3b77YS0mYt2bDWjw96yH3MmbHjrowN2oxWSC/qdUgQiv t7qXujGUQxwJoEfph2EBALvR3a75RrVvSbd7rTl3vjj3DMGgZdtT7CGu2mkraDap gLvQu88DDF2fIfp3TfHVdN8H8+TP/srKQe0/iojE/+iJZhCJ8WM59a6Pw344RJqR I82rinJ6RTBU95LZrd0Eu8Cn+dDYzbOlF1cc5+ksUzmK39z2AeGdSiXBIraXzDtC lD2iUqwfsURNeFrCcB1Ic5tC8Q9hvW68NfuzGcHtEaU4ogqrjO3VAi/L1SAczz7f gQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16266316693038455745539025209810864783 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'app.brikl.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18638296238626715722528820030991240727077690280874480369847273060713383529759949336280474275164020963927534519232994736141702101990172059013525123949785124320318401104328771653510158000919087021270549826067185693111392240283072551634290563577510580234113809685539919310598283790823316280814214068297304244354337666307177558819703725913407969990318339351260875695358353909670049595873950587359554404920547951252089962264027089778689833955007733003761839522512445172556622958668371613445263019879226618823750899869238475238037821494592303457068088317170169471480007453000180328624343610853356891362161226211076316520321 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7f7adf77085e3fb4b4af9128ae8d90641acab010 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app.brikl.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000168e4a39f7d0000040300483046022100f2b496557d8d1bd063b6a536c9fc1a359703d0fbfd2d93a62fc462c025bcdddf0221008c6b3d98cb1c2468bb2f4f8a90530f16e125588c5a073ecc372f9cdbff0a57c50077008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000168e4a3a0680000040300483046022100c9be3a4c4bf2486939222b1d8ad6918d2cbb4fa11e7f465fb72a540d664a6c90022100d93f36b6fc437c15b6a23b5e1f59a17befd6a04ee164346c0467a843adbdebca . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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