liberation.api.staging.cloud.ger.systems
Issued by Amazon
About this certificate
This digital certificate with serial number 01:47:8a:a8:b9:1b:c0:62:34:e5:49:7e:45:b0:7c:1a was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=liberation.api.staging.cloud.ger.systems
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:47:8a:a8:b9:1b:c0:62:34:e5:49:7e:45:b0:7c:1aSerial Number (int): 1700693412885771281492289099257642010
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: a4:24:e7:ce:25:73:33:85:13:4d:21:fc:37:e9:b4:7e:a6:3b:82:fd
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): b9:73:f7:21:3f:44:da:63:37:93:21:05:77:0c:88:0d:58:68:ca:68
Fingerprint (sha256): 47:0b:6a:80:24:2b:4e:3f:31:7f:2f:42:0f:6c:5a:ce:0d:43:37:ca:10:d1:50:ff:28:6d:16:16:f4:f4:0b:72
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate liberation.api.staging.cloud.ger.systems
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for liberation.api.staging.cloud.ger.systems
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
liberation.api.staging.cloud.ger.systems
Other certificates including the domain name ger.systems
(limited to 100 certificates)
communaute.angry-pangolin.cloud.ger.systems
lexpress.fr.xiti-https.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
front.staging.liberation.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.cloud.ger.systems
demo.ch.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.lexpress.fr
*.cloud.ger.systems
liberation.api.staging.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
api.lexpress.fr.euro2016.cloud.ger.systems
api-live.cloud.ger.systems
demo.ch.cloud.ger.systems
communaute.utf-8.cloud.ger.systems
api-live.cloud.ger.systems
communaute.angry-pangolin.cloud.ger.systems
registry.tools.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
registry.tools.cloud.ger.systems
moncompte.lexpress.fr
*.cloud.ger.systems
communaute.perf.cloud.ger.systems
api-live.cloud.ger.systems
*.cloud.ger.systems
communaute.resultats-examens.cloud.ger.systems
registry.tools.cloud.ger.systems
registry.tools.cloud.ger.systems
*.lexpress.fr
static.cloud.ger.systems
static.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
*.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
demo.ch.cloud.ger.systems
moncompte.lexpress.fr
lexpress.fr.xiti-https.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
front.staging.liberation.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.cloud.ger.systems
demo.ch.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.lexpress.fr
*.cloud.ger.systems
liberation.api.staging.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
api.lexpress.fr.euro2016.cloud.ger.systems
api-live.cloud.ger.systems
demo.ch.cloud.ger.systems
communaute.utf-8.cloud.ger.systems
api-live.cloud.ger.systems
communaute.angry-pangolin.cloud.ger.systems
registry.tools.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
registry.tools.cloud.ger.systems
moncompte.lexpress.fr
*.cloud.ger.systems
communaute.perf.cloud.ger.systems
api-live.cloud.ger.systems
*.cloud.ger.systems
communaute.resultats-examens.cloud.ger.systems
registry.tools.cloud.ger.systems
registry.tools.cloud.ger.systems
*.lexpress.fr
static.cloud.ger.systems
static.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
*.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
demo.ch.cloud.ger.systems
moncompte.lexpress.fr
Certificate
The complete raw certificate details for liberation.api.staging.cloud.ger.systems in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEpjCCA46gAwIBAgIQAUeKqLkbwGI05Ul+RbB8GjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTAyMDQwMDAwMDBaFw0yMDAzMDQx MjAwMDBaMDMxMTAvBgNVBAMTKGxpYmVyYXRpb24uYXBpLnN0YWdpbmcuY2xvdWQu Z2VyLnN5c3RlbXMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn48Tj 62fFqM5o0Z6jDQHYJMU61QbetntUFZYQbKFvDe52n1UvVU9o/eaIVmfeznsjEeat uUnqrbLqkeWgHapsK1HlOgpuBx4z+vfIw9k7C6YDYsh8eFnvMXeMKUGfajlv7M1p Gd19NCmt/tAaZwqDSwrf0jlTjQ13eBW51XHIqiVTbOZi+4Od+lVaw2xqp5PsehxW 8kzmNGQWvIgbv0V9eb4pJ7pEUpI8gWIFb2eQavVU2+qkeNq5lMgvGktexLdjHWZr aZNP0ByC5+3vBqXIHnglBJX7R4X6BcMYUa7uNj28jMKO/RILw+L0U/VX1QML9Xu+ kGsIGlVTIj+i0R1RAgMBAAGjggGhMIIBnTAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8 o5QHJ5Z0W/k90DAdBgNVHQ4EFgQUpCTnziVzM4UTTSH8N+m0fqY7gv0wMwYDVR0R BCwwKoIobGliZXJhdGlvbi5hcGkuc3RhZ2luZy5jbG91ZC5nZXIuc3lzdGVtczAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsG A1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29t L3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYI KwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6 b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9u dHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMB Af8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBanDq/yxO2o1dLsNPTsJZSYJ63fnrj viGBalMTHSXUFmjBJyd7p9/vgkEjZNB/MMzIvOBXQ6BP/bUScVa2t0wB5ojLeyNV aQuGaHHsm53KQfZFneyLpuF5WYIVGlPPCWJ0ksCqdm4ZvZjomxTwluo0LK8BPBb6 vTParVedsSljhW7+NgOOabT2IV4Z03xZx14C3e72ACTfPZoLg0RPnKeKogzoJpef By38qwV09iB6uUAAo1a84HpgJ09HIn9T2p4p9NsIPbqqmOjoyyNb1cTpUcbmsGB9 oh8iQOgVZitX5oXjT1cB+g2F1Dvhl8R0CJ4yU5/WtgQimeeYf19vFTj8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+PE4+tnxajOaNGeow0B 2CTFOtUG3rZ7VBWWEGyhbw3udp9VL1VPaP3miFZn3s57IxHmrblJ6q2y6pHloB2q bCtR5ToKbgceM/r3yMPZOwumA2LIfHhZ7zF3jClBn2o5b+zNaRndfTQprf7QGmcK g0sK39I5U40Nd3gVudVxyKolU2zmYvuDnfpVWsNsaqeT7HocVvJM5jRkFryIG79F fXm+KSe6RFKSPIFiBW9nkGr1VNvqpHjauZTILxpLXsS3Yx1ma2mTT9Acguft7wal yB54JQSV+0eF+gXDGFGu7jY9vIzCjv0SC8Pi9FP1V9UDC/V7vpBrCBpVUyI/otEd UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1700693412885771281492289099257642010 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-04 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'liberation.api.staging.cloud.ger.systems' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21194114060027606130811941061732666676401914128889044487909896817709025601074423624230839979496729162592928692791089528694174217072432517817070480843480871973875804542299709343694915228078610791974670435413639777051954681725651670661986926141667050294347295686544007272180799157809456140950336472449259672643096075023650443757330101529518840342519386900528940180488287042869878668208486172325053357278651353211160166792663307310208772146041154007986138503744141644073625932837049678038857396412960389356138367980823368454909284253835835467423660772828000210825179533962204454879031536176967593804510306812099879312721 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a424e7ce25733385134d21fc37e9b47ea63b82fd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'liberation.api.staging.cloud.ger.systems' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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