studio.mbed.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0f:33:7e:e5:52:fb:03:09:29:d8:2a:87:d6:1f:70:eb was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=studio.mbed.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:33:7e:e5:52:fb:03:09:29:d8:2a:87:d6:1f:70:ebSerial Number (int): 20205800829099515701827807036252844267
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: bf:00:0a:d0:ae:14:74:b3:d4:db:93:f0:df:8e:98:87:19:02:4c:4e
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 62:73:7e:d8:a1:3a:8a:4f:3d:1c:42:89:5b:86:bb:ce:90:3b:32:e1
Fingerprint (sha256): 5a:27:85:aa:db:c3:d5:bd:b8:e8:52:c2:da:04:ff:26:3f:0e:e8:85:02:ce:40:6c:7a:c1:59:12:dd:80:c1:60
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate studio.mbed.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for studio.mbed.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
studio.mbed.com
Other certificates including the domain name mbed.com
(limited to 100 certificates)
*.test.mbed.com
yotta.mbed.com
*.test.mbed.com
studio.mbed.com
*.test.mbed.com
api.connector.mbed.com
docs.mbed.com
systemtest-radiator.mbedcloudtesting.com
mbed-www-media.mbed.com
forums.mbed.com
forums.mbed.com
media-cdn.partners.test.mbed.com
api.connector.mbed.com
forums.mbed.com
internal.mbed.com
*.mbed.com
studio.test.mbed.com
mbed-media.mbed.com
account.mbed.com
artifactory.mbed.com
*.mbed.com
*.mbed.com
forums.mbed.com
account.mbed.com
mbed-www-media.test.mbed.com
forums.mbed.com
labs.test.mbed.com
forums.mbed.com
account.mbed.com
forums.mbed.com
mbed-media.mbed.com
forums.mbed.com
account.test.mbed.com
account.mbed.com
account.mbed.com
*.test.mbed.com
labs.mbed.com
studio.mbed.com
*.test.mbed.com
*.mbed.com
forums.mbed.com
forums.mbed.com
labs.mbed.com
*.test.mbed.com
*.mbed.com
yotta.mbed.com
forums.mbed.com
simulator.mbed.com
*.test.mbed.com
accounts.mbed.com
mbed-www-media.mbed.com
*.mbed.com
studio.mbed.com
*.test.mbed.com
studio.mbed.com
forums.mbed.com
internal.test.mbed.com
*.dev.mbed.com
mbed-www-media.mbed.com
*.test.mbed.com
account.mbed.com
mbed-media.mbed.com
labs.mbed.com
forums.mbed.com
studio.mbed.com
*.mbed.com
systest-radiator.mbed.com
mbed-billing-sandbox.test.mbed.com
studio.mbed.com
*.mbed.com
*.test.mbed.com
mbed-www-media.test.mbed.com
*.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
studio-tmp.mbed.com
account.test.mbed.com
forums.mbed.com
*.test.mbed.com
api.connector.mbed.com
*.preview.mbed.com
*.preview.mbed.com
mbed-billing-sandbox.test.mbed.com
forums.mbed.com
account.mbed.com
mbed.com
accounts.mbed.com
assets.test.mbed.com
*.mbed.com
connector.mbed.com
yotta.mbed.com
forums.mbed.com
studio.mbed.com
simulator.mbed.com
mbed-media.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
*.mbed.com
yotta.mbed.com
*.test.mbed.com
studio.mbed.com
*.test.mbed.com
api.connector.mbed.com
docs.mbed.com
systemtest-radiator.mbedcloudtesting.com
mbed-www-media.mbed.com
forums.mbed.com
forums.mbed.com
media-cdn.partners.test.mbed.com
api.connector.mbed.com
forums.mbed.com
internal.mbed.com
*.mbed.com
studio.test.mbed.com
mbed-media.mbed.com
account.mbed.com
artifactory.mbed.com
*.mbed.com
*.mbed.com
forums.mbed.com
account.mbed.com
mbed-www-media.test.mbed.com
forums.mbed.com
labs.test.mbed.com
forums.mbed.com
account.mbed.com
forums.mbed.com
mbed-media.mbed.com
forums.mbed.com
account.test.mbed.com
account.mbed.com
account.mbed.com
*.test.mbed.com
labs.mbed.com
studio.mbed.com
*.test.mbed.com
*.mbed.com
forums.mbed.com
forums.mbed.com
labs.mbed.com
*.test.mbed.com
*.mbed.com
yotta.mbed.com
forums.mbed.com
simulator.mbed.com
*.test.mbed.com
accounts.mbed.com
mbed-www-media.mbed.com
*.mbed.com
studio.mbed.com
*.test.mbed.com
studio.mbed.com
forums.mbed.com
internal.test.mbed.com
*.dev.mbed.com
mbed-www-media.mbed.com
*.test.mbed.com
account.mbed.com
mbed-media.mbed.com
labs.mbed.com
forums.mbed.com
studio.mbed.com
*.mbed.com
systest-radiator.mbed.com
mbed-billing-sandbox.test.mbed.com
studio.mbed.com
*.mbed.com
*.test.mbed.com
mbed-www-media.test.mbed.com
*.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
studio-tmp.mbed.com
account.test.mbed.com
forums.mbed.com
*.test.mbed.com
api.connector.mbed.com
*.preview.mbed.com
*.preview.mbed.com
mbed-billing-sandbox.test.mbed.com
forums.mbed.com
account.mbed.com
mbed.com
accounts.mbed.com
assets.test.mbed.com
*.mbed.com
connector.mbed.com
yotta.mbed.com
forums.mbed.com
studio.mbed.com
simulator.mbed.com
mbed-media.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
*.mbed.com
Certificate
The complete raw certificate details for studio.mbed.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIQDzN+5VL7Awkp2CqH1h9w6zANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA0MTIwMDAwMDBaFw0yMDA1MTIx MjAwMDBaMBoxGDAWBgNVBAMTD3N0dWRpby5tYmVkLmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAM1mq79xWSpZVee3DhZaO7AF9xa40JLFXX75ZNxY cBEmFLd3X3N/wX1x4MOHJFAJKT6gBHsM5j8V1EgwXZqVgJslxX2A/bNU3tK6FayR UQh+vgH3UDOYjRVSM7bEpW5HhxVlrffEdIaaswQYcdqobbCrDhbjPeHPXyf37GlT 48dQLr8CngBvM4iBltpHZJ3akDPTo5yTeNSuizTH+QjxkXZy5t7oyqHkSziF0J9r cavh1u5bPsXAG6IE2gFZRVggMwXbgfR8A9ZEPPomEpRDCiu/k7DDzr9aR9DspWuD nNO6Wq9oWSXVusbHQ1/qzC8+CyxKmTXgxzo3ty2phBYBUKkCAwEAAaOCAnowggJ2 MB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBS/AArQ rhR0s9Tbk/DfjpiHGQJMTjAaBgNVHREEEzARgg9zdHVkaW8ubWJlZC5jb20wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNV HR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9z Y2ExYi5jcmwwIAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsG AQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9u dHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRy dXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADCCAQMGCisGAQQB1nkCBAIE gfQEgfEA7wB2AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABahDc gSwAAAQDAEcwRQIhAOCQdeRsWcHbG+zwyyDo2cxDbz3tHcEGZeDxrLfQ+TKNAiAK Vf2Ked1NovBMZhQrRKdgf+kVz//g4rE/xYUr0a7elgB1AId1v+dZfPiMQ5lfvfNu /1aNR1Y2/0q1YMG06v9eoIMPAAABahDcfZkAAAQDAEYwRAIge1YVK1AiiLa1T0lW 1Zy6IcCJFYmcB0cCfXXAzL2LNNgCIDFjmfkYDIACUu+9FhuB1+PTFi16wI2c1eJK MSHbvy1TMA0GCSqGSIb3DQEBCwUAA4IBAQA77PKFLoyQ63I2mqfH6/OhDCgleWug nit/0CAYmzhjLKDh/P2X/4LPE65GxNVSw3L37DZunYD4TDcAC+Ry6ldjJ5NW0mhf OAXVcBj/o6u+v+BuvYyDbtmFgD+4F2kmn7TD0QM3OosKeJTO8pmF995aR81WqpgR SnYrkRfIZakit1XQDSYBosQIF1ZuewA/StmVOPDPh6jbr0tc6v024+2kkuidGzx8 cHveU7ZLenk8rEEXED8AM7IyxeVgp46k7FF6l21Y/gcPL3WVFSN8gn0mBKCbY5ts wNOdTS4teKgMdglfLeTIznJ92acUEKbX2vkOVlom/dmr7Whmkf+a2Gg2 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWarv3FZKllV57cOFlo7 sAX3FrjQksVdfvlk3FhwESYUt3dfc3/BfXHgw4ckUAkpPqAEewzmPxXUSDBdmpWA myXFfYD9s1Te0roVrJFRCH6+AfdQM5iNFVIztsSlbkeHFWWt98R0hpqzBBhx2qht sKsOFuM94c9fJ/fsaVPjx1AuvwKeAG8ziIGW2kdkndqQM9OjnJN41K6LNMf5CPGR dnLm3ujKoeRLOIXQn2txq+HW7ls+xcAbogTaAVlFWCAzBduB9HwD1kQ8+iYSlEMK K7+TsMPOv1pH0Oyla4Oc07par2hZJdW6xsdDX+rMLz4LLEqZNeDHOje3LamEFgFQ qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20205800829099515701827807036252844267 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-12 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'studio.mbed.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25929481420833913840307015822721371954375298914010961855232467386715083257626411920676840619549437604490261076557290798653260592196416202879895946411098154426179395964572267601767759281704974578263347537981451376689602147000520450800333082813867191440055727469015953686755522866341748923595593852894601679634989419072223026792955068497298412920500295326110858226122410783568694203043477391778376728998819490073881125060824825385830086040822815638972017340448523957257638988311092115004890184796487582729385232063477549473546315278072718146132659549735155999109077094412463516778955058988311082204582363488965143646377 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bf000ad0ae1474b3d4db93f0df8e988719024c4e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'studio.mbed.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000016a10dc812c0000040300473045022100e09075e46c59c1db1becf0cb20e8d9cc436f3ded1dc10665e0f1acb7d0f9328d02200a55fd8a79dd4da2f04c66142b44a7607fe915cfffe0e2b13fc5852bd1aede960075008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016a10dc7d99000004030046304402207b56152b502288b6b54f4956d59cba21c08915899c0747027d75c0ccbd8b34d80220316399f9180c800252efbd161b81d7e3d3162d7ac08d9cd5e24a3121dbbf2d53 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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