*.heavenhr.com
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 02:1c:21:ae:73:62:4e:ac:1b:3c:05:e8:dc:b7:bd:c9 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.heavenhr.com
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:1c:21:ae:73:62:4e:ac:1b:3c:05:e8:dc:b7:bd:c9Serial Number (int): 2804523444535627285690210661879496137
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: c6:7f:46:63:c7:ac:64:b8:a6:71:d0:86:26:30:1c:85:30:6e:37:27
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 64:34:bd:6a:e1:1b:07:58:ff:3c:67:2d:1e:c3:d4:a0:a2:f6:d1:a6
Fingerprint (sha256): 49:13:a3:dc:ef:e3:c7:a6:f0:8a:12:23:7e:70:d0:3b:b2:97:b7:65:7a:95:6e:48:4a:b9:1a:e9:04:73:d1:82
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate *.heavenhr.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.heavenhr.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.heavenhr.com
heavenhr.com
heavenhr.com
Other certificates including the domain name heavenhr.com
(limited to 100 certificates)
tls.automattic.com
tls.automattic.com
support.qualityspa.fr
*.staging.heavenhr.com
staff.ncchomelearning.co.uk
www.heavenhr.com
tls.automattic.com
help.morewithproject.com
*.heavenhr.com
*.preprod.heavenhr.com
www.heavenhr.com
www.heavenhr.com
www.heavenhr.com
tls.automattic.com
desk.heavenhr.de
*.heavenhr.com
www.heavenhr.com
incapsula.com
*.integration.heavenhr.com
www.heavenhr.com
www.heavenhr.com
tls.automattic.com
incapsula.com
support.xpence.uk
support.checkpointsolutions.co.uk
*.heavenhr.com
*.heavenhr.com
www.heavenhr.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
*.integration.heavenhr.com
*.heavenhr.com
www.heavenhr.com
tls.automattic.com
*.staging.heavenhr.com
incapsula.com
tls.automattic.com
www.heavenhr.com
tls.automattic.com
support.xpence.uk
incapsula.com
tls.automattic.com
tls.automattic.com
www.heavenhr.com
tls.automattic.com
tls.automattic.com
support.wowing.io
*.heavenhr.com
tls.automattic.com
www.heavenhr.com
www.heavenhr.com
*.heavenhr.com
www.heavenhr.com
*.preprod.heavenhr.com
tls.automattic.com
tls.automattic.com
support-test.flocash.com
*.staging.heavenhr.com
lohngenau.heavenhr.com
tls.automattic.com
payment.heavenhr.com
support.xpence.uk
tls.automattic.com
*.heavenhr.com
www.heavenhr.com
incapsula.com
tls.automattic.com
tls.automattic.com
*.staging.heavenhr.com
www.heavenhr.com
*.heavenhr.com
tls.automattic.com
tls.automattic.com
porr.idealgrupa.pl
soporte.blancoseguros.es
tls.automattic.com
tls.automattic.com
support.qualityspa.fr
*.staging.heavenhr.com
staff.ncchomelearning.co.uk
www.heavenhr.com
tls.automattic.com
help.morewithproject.com
*.heavenhr.com
*.preprod.heavenhr.com
www.heavenhr.com
www.heavenhr.com
www.heavenhr.com
tls.automattic.com
desk.heavenhr.de
*.heavenhr.com
www.heavenhr.com
incapsula.com
*.integration.heavenhr.com
www.heavenhr.com
www.heavenhr.com
tls.automattic.com
incapsula.com
support.xpence.uk
support.checkpointsolutions.co.uk
*.heavenhr.com
*.heavenhr.com
www.heavenhr.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
*.integration.heavenhr.com
*.heavenhr.com
www.heavenhr.com
tls.automattic.com
*.staging.heavenhr.com
incapsula.com
tls.automattic.com
www.heavenhr.com
tls.automattic.com
support.xpence.uk
incapsula.com
tls.automattic.com
tls.automattic.com
www.heavenhr.com
tls.automattic.com
tls.automattic.com
support.wowing.io
*.heavenhr.com
tls.automattic.com
www.heavenhr.com
www.heavenhr.com
*.heavenhr.com
www.heavenhr.com
*.preprod.heavenhr.com
tls.automattic.com
tls.automattic.com
support-test.flocash.com
*.staging.heavenhr.com
lohngenau.heavenhr.com
tls.automattic.com
payment.heavenhr.com
support.xpence.uk
tls.automattic.com
*.heavenhr.com
www.heavenhr.com
incapsula.com
tls.automattic.com
tls.automattic.com
*.staging.heavenhr.com
www.heavenhr.com
*.heavenhr.com
tls.automattic.com
tls.automattic.com
porr.idealgrupa.pl
soporte.blancoseguros.es
tls.automattic.com
Certificate
The complete raw certificate details for *.heavenhr.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEuDCCA6CgAwIBAgIQAhwhrnNiTqwbPAXo3Le9yTANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTkwNTE3MDAwMDAwWhcNMTkwNTIwMTIwMDAwWjAZMRcwFQYDVQQDDA4qLmhlYXZl bmhyLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKmHDhJcMkjb t5w92KfInt19cgor+rx3TytLC7Ov3uGP4qqu8NbA1SSgsT3p9n4Iuv7z22V4bumJ 7eOpNi1P/BbvFiTUyarVlrYrOSbXb2AmNnq4bPb67pSLpZDVX8fmT3xovs2HU2Wo Mw7Pm3jzb2CSaev5p1QU29gefUOM1dhj176qBslgXJXPKQgO8d1YlwknF/gAeEou kiVuQ03qqy7DoJvl4LedZ1iv76rzNDCeouCZeWeOopRdq1XdKrAOt2eLrZiFxgr9 +Wm/Zim1r+/rPm3EmUuZV77iopf6n5ubNpbvwZV2Vql9N3r+4s0Vi/b2Mt9aSRlC WKx3I4lCTesCAwEAAaOCAbcwggGzMB8GA1UdIwQYMBaAFKPIXmVU5TB4wQXqBwpq Wcy5/t5aMB0GA1UdDgQWBBTGf0Zjx6xkuKZx0IYmMByFMG43JzAnBgNVHREEIDAe gg4qLmhlYXZlbmhyLmNvbYIMaGVhdmVuaHIuY29tMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOgYDVR0fBDMwMTAvoC2gK4Yp aHR0cDovL2NkcC50aGF3dGUuY29tL1RoYXd0ZVJTQUNBMjAxOC5jcmwwTAYDVR0g BEUwQzA3BglghkgBhv1sAQIwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGln aWNlcnQuY29tL0NQUzAIBgZngQwBAgEwbwYIKwYBBQUHAQEEYzBhMCQGCCsGAQUF BzABhhhodHRwOi8vc3RhdHVzLnRoYXd0ZS5jb20wOQYIKwYBBQUHMAKGLWh0dHA6 Ly9jYWNlcnRzLnRoYXd0ZS5jb20vVGhhd3RlUlNBQ0EyMDE4LmNydDAJBgNVHRME AjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAzKm4w 5znPYJI7B5mDG/PWE9ad/VWHIhcj511C12udL1XFHL/tSaXCTtSLE3hpGlhIDfPz wSxK64n6wG18rYARXcSqyyLbt1OdzOA7FR55YHK0oiy9rmK74hwpeQmkvBSWAqFh 2C+RRIZ/NAYQXq38IifXc8V/T72/ilkeH5tK3AwqO2RPrQnvlBw6hEHMStbTs27D U6Y2YFprR105Dn9WefbIx4hFWZ+0sFSSAcCshVBOGL+65nvjD1dQ2wDrNOXcCwQi 8IzQvAy2mZRZtYY6mQKBDWCEbBaRQeVk/qEXoc6dVF5pmYtt0xshrQ1BBms1CuL/ PUm4TbDWDuOA9HeN -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYcOElwySNu3nD3Yp8ie 3X1yCiv6vHdPK0sLs6/e4Y/iqq7w1sDVJKCxPen2fgi6/vPbZXhu6Ynt46k2LU/8 Fu8WJNTJqtWWtis5JtdvYCY2erhs9vrulIulkNVfx+ZPfGi+zYdTZagzDs+bePNv YJJp6/mnVBTb2B59Q4zV2GPXvqoGyWBclc8pCA7x3ViXCScX+AB4Si6SJW5DTeqr LsOgm+Xgt51nWK/vqvM0MJ6i4Jl5Z46ilF2rVd0qsA63Z4utmIXGCv35ab9mKbWv 7+s+bcSZS5lXvuKil/qfm5s2lu/BlXZWqX03ev7izRWL9vYy31pJGUJYrHcjiUJN 6wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2804523444535627285690210661879496137 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-20 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.heavenhr.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21400871625958549909810704274997796354381040202524156321006493027982827775790735404705914234873807898743705622497032410876806457854646678863553932048593848088521610301021951611646199096432645069064182743029209880438680883490470706580856872046842733685667326245347518477549168299614202601008646871184011585481308450308883501844835507571340768797415940578591502358943504689365258259469621045511327223348567569643591240827791873731598204203512840201740340508399481541081331281538676638048832558928045188083460315836208457037584343224026053842536620468197429596185519345681859006576280971278076574245674774645607516753387 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c67f4663c7ac64b8a671d08626301c85306e3727 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.heavenhr.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heavenhr.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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