athletics.marin.edu
Issued by Amazon
About this certificate
This digital certificate with serial number 07:9c:69:5b:a7:0f:5c:d6:32:93:83:9d:70:06:26:70 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=athletics.marin.edu
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:9c:69:5b:a7:0f:5c:d6:32:93:83:9d:70:06:26:70Serial Number (int): 10116731194899585380249545254753412720
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 0e:da:b1:fc:67:4f:10:fb:98:72:af:f1:a2:47:0d:b8:bd:6f:9f:57
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 23:5d:85:27:9b:ee:4f:89:c8:88:47:2f:39:e2:a6:a8:a3:73:28:56
Fingerprint (sha256): 59:d7:8b:f1:17:d6:58:bf:e1:b6:a2:eb:f1:d9:40:a0:ab:29:a4:c5:ad:9b:eb:10:d3:56:af:a2:73:0b:98:2f
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate athletics.marin.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for athletics.marin.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
athletics.marin.edu
Other certificates including the domain name marin.edu
(limited to 100 certificates)
es.marin.edu
advancement.marin.edu
www.marin.edu
apps.marin.edu
moodletest.marin.edu
it.marin.edu
moodle.marin.edu
housing.marin.edu
ezproxy.marin.edu
moodletest.marin.edu
sars.marin.edu
www1.marin.edu
www.marin.edu
servicedesk.marin.edu
hr.marin.edu
escom.marin.edu
intranet.marin.edu
apps.marin.edu
moodle.marin.edu
netapps.marin.edu
moodletest.marin.edu
lg.marin.edu
degreeweb.marin.edu
mycom.marin.edu
netapps.marin.edu
alumni.marin.edu
moodle.marin.edu
*.marin.edu
mailz.marin.edu
sslvpn-he.marin.edu
idp.marin.edu
www.marin.edu
moodle.marin.edu
mac.marin.edu
moodle.marin.edu
mycomcas.marin.edu
www.marin.edu
mycomtest.marin.edu
apps.marin.edu
moodle.marin.edu
degreeweb.marin.edu
www.marin.edu
esl.marin.edu
lg.marin.edu
mycomcastest.marin.edu
moodle.marin.edu
mailz.marin.edu
moodletest.marin.edu
mailx.marin.edu
sars.marin.edu
campuses.marin.edu
mycomappnavtest.marin.edu
athletics.marin.edu
moodle.marin.edu
www.marin.edu
idp.marin.edu
campuses.marin.edu
athletics.marin.edu
mycomssb.marin.edu
athletics.marin.edu
degreeweb.marin.edu
es.marin.edu
sslvpn.marin.edu
mycomappnav.marin.edu
mycom.marin.edu
mycom-ql.marin.edu
mycomappnavtest.marin.edu
rds.marin.edu
housing.marin.edu
as.marin.edu
degreeweb.marin.edu
mailz.marin.edu
degreeweb.marin.edu
comapps.marin.edu
mac.marin.edu
netapps.marin.edu
mac.marin.edu
moodletest.marin.edu
mycomappnav.marin.edu
mycomcas.marin.edu
mycomssb.marin.edu
apps.marin.edu
mycom.marin.edu
comapps.marin.edu
libguides.marin.edu
apps.marin.edu
rds.marin.edu
www.marin.edu
mycom.marin.edu
accreditation.marin.edu
www.marin.edu
moodle.marin.edu
housing.marin.edu
mycom.marin.edu
mycom.marin.edu
mycomtest.marin.edu
byod.marin.edu
mycomappnavtest.marin.edu
housing.marin.edu
mailz.marin.edu
advancement.marin.edu
www.marin.edu
apps.marin.edu
moodletest.marin.edu
it.marin.edu
moodle.marin.edu
housing.marin.edu
ezproxy.marin.edu
moodletest.marin.edu
sars.marin.edu
www1.marin.edu
www.marin.edu
servicedesk.marin.edu
hr.marin.edu
escom.marin.edu
intranet.marin.edu
apps.marin.edu
moodle.marin.edu
netapps.marin.edu
moodletest.marin.edu
lg.marin.edu
degreeweb.marin.edu
mycom.marin.edu
netapps.marin.edu
alumni.marin.edu
moodle.marin.edu
*.marin.edu
mailz.marin.edu
sslvpn-he.marin.edu
idp.marin.edu
www.marin.edu
moodle.marin.edu
mac.marin.edu
moodle.marin.edu
mycomcas.marin.edu
www.marin.edu
mycomtest.marin.edu
apps.marin.edu
moodle.marin.edu
degreeweb.marin.edu
www.marin.edu
esl.marin.edu
lg.marin.edu
mycomcastest.marin.edu
moodle.marin.edu
mailz.marin.edu
moodletest.marin.edu
mailx.marin.edu
sars.marin.edu
campuses.marin.edu
mycomappnavtest.marin.edu
athletics.marin.edu
moodle.marin.edu
www.marin.edu
idp.marin.edu
campuses.marin.edu
athletics.marin.edu
mycomssb.marin.edu
athletics.marin.edu
degreeweb.marin.edu
es.marin.edu
sslvpn.marin.edu
mycomappnav.marin.edu
mycom.marin.edu
mycom-ql.marin.edu
mycomappnavtest.marin.edu
rds.marin.edu
housing.marin.edu
as.marin.edu
degreeweb.marin.edu
mailz.marin.edu
degreeweb.marin.edu
comapps.marin.edu
mac.marin.edu
netapps.marin.edu
mac.marin.edu
moodletest.marin.edu
mycomappnav.marin.edu
mycomcas.marin.edu
mycomssb.marin.edu
apps.marin.edu
mycom.marin.edu
comapps.marin.edu
libguides.marin.edu
apps.marin.edu
rds.marin.edu
www.marin.edu
mycom.marin.edu
accreditation.marin.edu
www.marin.edu
moodle.marin.edu
housing.marin.edu
mycom.marin.edu
mycom.marin.edu
mycomtest.marin.edu
byod.marin.edu
mycomappnavtest.marin.edu
housing.marin.edu
mailz.marin.edu
Certificate
The complete raw certificate details for athletics.marin.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEfDCCA2SgAwIBAgIQB5xpW6cPXNYyk4OdcAYmcDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDAzMjUwMDAwMDBaFw0yMTA0MjUx MjAwMDBaMB4xHDAaBgNVBAMTE2F0aGxldGljcy5tYXJpbi5lZHUwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcb9od5Y7FgMQAFAc4fIgNJhv5Qy8k7Abt GR76mTQSnsigoZIZ/04jHiMcv5EcfELsMsCKCQJiDoNs5MrDFKO3GhCXuJCux2db lKbFgsUBsQQCBk1BkiwOBSxTe7pjEWbIMKWj2629i/W5opcUNz0EeJvUstGrjfxj KLvr1d9sgz5ry4SSgMAMmxwt7Efeupv38RR036sxxfu3/SFEDx4vlycfjYDzsy2W KT7tAoVYIC9eqXwSwh5cQ/wOaJkpWPRRfPX81ZUrI0+PhRB4eN+iq/MLiITZHxGJ r/iMmrzHNtY4g0Dq/jm5vrEN/qT1s3Q6o55eiZIISrconleQVVzVAgMBAAGjggGM MIIBiDAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQU Dtqx/GdPEPuYcq/xokcNuL1vn1cwHgYDVR0RBBcwFYITYXRobGV0aWNzLm1hcmlu LmVkdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1 c3QuY29tL3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwB AgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2Ex Yi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIu YW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB 1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAgVhqLqeAxVfBzB6macsBf UyNDGi45sVoV8v/Il1qgtjEHeH2CV6J4PsQauo8EDMQAt/dMrqdILJHWpEuDKY02 jXtUkog6MgXcGkVAcdo3MkQTG3uBLaXcHDVd/G5p2iHJCFrii1W/v3teFit4BF2v MjGTyLUim374PGJzpmdjg0kouE0s6XZF1M0Fg1mPRp1np6zCQ+edzyXaJXx6ijU2 M07zz0lAcvetjm/x5qeSbgrYP5Gq3GMtX+lxx2OzTDY/Tv8y+Cs+1G/2uNurPXOl lBWUBNJqj3owxPNKJcJUEpLItYNdbjVPC4KkpWMEzh555Be9f+zep8ccy/wa7o6k -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnG/aHeWOxYDEABQHOHyI DSYb+UMvJOwG7Rke+pk0Ep7IoKGSGf9OIx4jHL+RHHxC7DLAigkCYg6DbOTKwxSj txoQl7iQrsdnW5SmxYLFAbEEAgZNQZIsDgUsU3u6YxFmyDClo9utvYv1uaKXFDc9 BHib1LLRq438Yyi769XfbIM+a8uEkoDADJscLexH3rqb9/EUdN+rMcX7t/0hRA8e L5cnH42A87Mtlik+7QKFWCAvXql8EsIeXEP8DmiZKVj0UXz1/NWVKyNPj4UQeHjf oqvzC4iE2R8Ria/4jJq8xzbWOINA6v45ub6xDf6k9bN0OqOeXomSCEq3KJ5XkFVc 1QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10116731194899585380249545254753412720 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-25 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'athletics.marin.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19748331860822930338605927265405477008199863648013336827032762870373044759721157914339229332958380232182923985967027724935320330718174995721782660997262425379606561230194782737062357474577738334537131783994539727821141770678303909627563357357605228261293535909914560397258565518135193205145607084170645253081638591602733483386929761606013132592642120693718713648255829091773338998065063034545324027053706580640558536019778741316133340767807244694211909708802980408316287811613958355423542273009130563998888736849435489635103537885907737685823371110196839538088975932023026057757840176725016717497167769271517165477077 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0edab1fc674f10fb9872aff1a2470db8bd6f9f57 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'athletics.marin.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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