*.onegovcloud.ch
Issued by SwissSign Server Silver CA 2014 - G22
About this certificate
This digital certificate with serial number 78:b1:14:6c:5c:86:a6:b2:bc:ea:60:e3:1b:70:f1:94:6a:db:7e:b9 was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.onegovcloud.ch
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 78:b1:14:6c:5c:86:a6:b2:bc:ea:60:e3:1b:70:f1:94:6a:db:7e:b9Serial Number (int): 689027903518203050302645662942953183904244924089
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: fa:4e:ea:ad:13:98:39:1b:58:15:b0:bd:ee:3e:bf:14:35:c6:de:25
AuthorityKeyId: db:bc:bf:82:18:59:dc:69:fa:f8:ab:aa:83:4d:77:1d:0b:b0:8b:d8
Fingerprint (sha1): 4e:1a:66:1b:c3:a9:b2:10:4e:11:c1:93:bf:02:fb:19:3b:ab:d2:0c
Fingerprint (sha256): 50:43:e7:d7:4f:5b:49:dc:62:94:12:84:aa:06:1e:ce:d6:68:73:c7:5a:45:be:86:46:e3:83:31:35:5a:09:21
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8
Revocation information
OCSP Server: http://silver-server-g2.ocsp.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8CRL Distribution Point: http://crl.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8
CRL Distribution Point: ldap://directory.swisssign.net/CN=DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate *.onegovcloud.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.onegovcloud.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.onegovcloud.ch
onegovcloud.ch
onegovcloud.ch
Other certificates including the domain name onegovcloud.ch
(limited to 100 certificates)
*.onegovcloud.ch
onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
*.onegovcloud.ch
docs.onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
docs.onegovcloud.ch
onegovcloud.ch
docs.onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
docs.onegovcloud.ch
docs.onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
onegovcloud.ch
docs.onegovcloud.ch
onegovcloud.ch
onegovcloud.ch
onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
*.onegovcloud.ch
docs.onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
docs.onegovcloud.ch
onegovcloud.ch
docs.onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
docs.onegovcloud.ch
docs.onegovcloud.ch
docs.onegovcloud.ch
*.onegovcloud.ch
onegovcloud.ch
docs.onegovcloud.ch
onegovcloud.ch
onegovcloud.ch
Certificate
The complete raw certificate details for *.onegovcloud.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBzCCBO+gAwIBAgIUeLEUbFyGprK86mDjG3DxlGrbfrkwDQYJKoZIhvcNAQEL BQAwVDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEuMCwGA1UE AxMlU3dpc3NTaWduIFNlcnZlciBTaWx2ZXIgQ0EgMjAxNCAtIEcyMjAeFw0yMDAz MDYxMDE0NTFaFw0yMTAzMDYxMDE0NTFaMBsxGTAXBgNVBAMMECoub25lZ292Y2xv dWQuY2gwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeQzJA5Lc1ZEY8 ytxh/8J6tOC4cZVXy5L58q9LtTLkVoe36UzWKyhiPA8pGhTZ1YiotQvgpbgxUfBB Lb/MjExYcyr/fyEsJgOSzEUobplniOink4RGU+mOLQ05WvX5+oDHAV6seHUh1D1L WdGGmO74tVWmLNRroWtcOEpCmnsWmb4TIx5dRvgXjiaa4tKTrXrZWm6+zB5OPwLV eO6Z6abTdH7idSdMiS8dcQGAd5PptV3V3N2uFdXOJa6kgVUVq5zCd8a8RtF4LOo/ kH1xlNhqFZ1QhlIm9L5W8iUVNkTw30feuxaLkNC04EhFVFROQsjgRqFGOIHrnKkt qYW5J4OtAgMBAAGjggMIMIIDBDArBgNVHREEJDAighAqLm9uZWdvdmNsb3VkLmNo gg5vbmVnb3ZjbG91ZC5jaDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMB0GA1UdDgQWBBT6TuqtE5g5G1gVsL3uPr8UNcbeJTAf BgNVHSMEGDAWgBTbvL+CGFncafr4q6qDTXcdC7CL2DCB/wYDVR0fBIH3MIH0MEeg RaBDhkFodHRwOi8vY3JsLnN3aXNzc2lnbi5uZXQvREJCQ0JGODIxODU5REM2OUZB RjhBQkFBODM0RDc3MUQwQkIwOEJEODCBqKCBpaCBooaBn2xkYXA6Ly9kaXJlY3Rv cnkuc3dpc3NzaWduLm5ldC9DTj1EQkJDQkY4MjE4NTlEQzY5RkFGOEFCQUE4MzRE NzcxRDBCQjA4QkQ4JTJDTz1Td2lzc1NpZ24lMkNDPUNIP2NlcnRpZmljYXRlUmV2 b2NhdGlvbkxpc3Q/YmFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2lu dDB1BgNVHSAEbjBsMFYGCWCFdAFZAQMBDDBJMEcGCCsGAQUFBwIBFjtodHRwOi8v cmVwb3NpdG9yeS5zd2lzc3NpZ24uY29tL1N3aXNzU2lnbi1TaWx2ZXItQ1AtQ1BT LnBkZjAIBgZngQwBAgEwCAYGBACPegEGMIHXBggrBgEFBQcBAQSByjCBxzBkBggr BgEFBQcwAoZYaHR0cDovL3N3aXNzc2lnbi5uZXQvY2dpLWJpbi9hdXRob3JpdHkv ZG93bmxvYWQvREJCQ0JGODIxODU5REM2OUZBRjhBQkFBODM0RDc3MUQwQkIwOEJE ODBfBggrBgEFBQcwAYZTaHR0cDovL3NpbHZlci1zZXJ2ZXItZzIub2NzcC5zd2lz c3NpZ24ubmV0L0RCQkNCRjgyMTg1OURDNjlGQUY4QUJBQTgzNEQ3NzFEMEJCMDhC RDgwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBABbPDmdi srd9oeIlHli76dTYj2dp/dZSoD6IQjBlCzSRW9iBygsTI3ZAu2qowjwsmqkxd99x qLVaJgBVIpGjdEUDEPnWvovtpPuyk9Q5/rq6hwTkcgWJozSsbHVdyEq700Y6MnRv m9jPUHkeQCb3WzwNzD9FUZNEvIWsQ7NCBegGSfxJ+pUEyNkqCmthXuEtDGIbydcH GFQzqDwJINDSQBd7e5FtTjp6fnaBMtPi+bPuBDq/e8AXJNDnumycCsMWeX9hdLIM Vd3KUYdLKL4yS3m8ka+nps9Yay2zIXxjBZt4xwYZDxosiQaoiynQj44doXI3Rfjd 0WpXlbX7+fQjby8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3kMyQOS3NWRGPMrcYf/C erTguHGVV8uS+fKvS7Uy5FaHt+lM1isoYjwPKRoU2dWIqLUL4KW4MVHwQS2/zIxM WHMq/38hLCYDksxFKG6ZZ4jop5OERlPpji0NOVr1+fqAxwFerHh1IdQ9S1nRhpju +LVVpizUa6FrXDhKQpp7Fpm+EyMeXUb4F44mmuLSk6162VpuvsweTj8C1Xjumemm 03R+4nUnTIkvHXEBgHeT6bVd1dzdrhXVziWupIFVFaucwnfGvEbReCzqP5B9cZTY ahWdUIZSJvS+VvIlFTZE8N9H3rsWi5DQtOBIRVRUTkLI4EahRjiB65ypLamFuSeD rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 689027903518203050302645662942953183904244924089 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign Server Silver CA 2014 - G22' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-06 10:14:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-06 10:14:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.onegovcloud.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28058039434309564780996231253068401007352669506511943046201681114857963388737026312772908880287386983420596360471108552504338334861660272493381237526745435853258426992907267558705971263142180053284026323527103559085657720522684856118528442218987741607947001845091364474735885132856192843136794242511948806574055369527924784262842669344573346094037354323808992354252347627579182454763225140592034231846890174305447613850155264361499441530628686689032341326226115464485547365935561561620734763843596276557727273239163551329800599589388805128870491882092729417641841735595132478457163221987452943247062962554006785196973 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.onegovcloud.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onegovcloud.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fa4eeaad1398391b5815b0bdee3ebf1435c6de25 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName dbbcbf821859dc69faf8abaa834d771d0bb08bd8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.1.3.1.12 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://repository.swisssign.com/SwissSign-Silver-CP-CPS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (202 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://silver-server-g2.ocsp.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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