demo.ch.cloud.ger.systems
Issued by Amazon
About this certificate
This digital certificate with serial number 04:34:82:b3:ab:93:52:69:11:08:ba:c7:e7:7c:f3:14 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=demo.ch.cloud.ger.systems
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:34:82:b3:ab:93:52:69:11:08:ba:c7:e7:7c:f3:14Serial Number (int): 5589562367973077245890872994508370708
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 91:22:26:95:6a:3f:39:49:0f:a6:52:12:7d:31:ab:b0:7a:fb:5f:e4
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): b7:44:8c:c1:e9:a6:65:d5:f4:a9:7e:dc:ef:68:fb:13:41:a9:f3:9d
Fingerprint (sha256): 5a:5e:7c:2a:f4:c8:69:c9:0c:73:f8:a5:9b:39:b3:7b:e8:65:c3:f3:96:c1:30:0b:7a:13:41:71:ba:81:69:3d
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate demo.ch.cloud.ger.systems
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for demo.ch.cloud.ger.systems
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
demo.ch.cloud.ger.systems
*.demo.ch.cloud.ger.systems
*.demo.ch.cloud.ger.systems
Other certificates including the domain name ger.systems
(limited to 100 certificates)
communaute.angry-pangolin.cloud.ger.systems
lexpress.fr.xiti-https.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
front.staging.liberation.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.cloud.ger.systems
demo.ch.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.lexpress.fr
*.cloud.ger.systems
liberation.api.staging.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
api.lexpress.fr.euro2016.cloud.ger.systems
api-live.cloud.ger.systems
demo.ch.cloud.ger.systems
communaute.utf-8.cloud.ger.systems
api-live.cloud.ger.systems
communaute.angry-pangolin.cloud.ger.systems
registry.tools.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
registry.tools.cloud.ger.systems
moncompte.lexpress.fr
*.cloud.ger.systems
communaute.perf.cloud.ger.systems
api-live.cloud.ger.systems
*.cloud.ger.systems
communaute.resultats-examens.cloud.ger.systems
registry.tools.cloud.ger.systems
registry.tools.cloud.ger.systems
*.lexpress.fr
static.cloud.ger.systems
static.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
*.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
demo.ch.cloud.ger.systems
moncompte.lexpress.fr
lexpress.fr.xiti-https.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
front.staging.liberation.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.cloud.ger.systems
demo.ch.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.lexpress.fr
*.cloud.ger.systems
liberation.api.staging.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
api.lexpress.fr.euro2016.cloud.ger.systems
api-live.cloud.ger.systems
demo.ch.cloud.ger.systems
communaute.utf-8.cloud.ger.systems
api-live.cloud.ger.systems
communaute.angry-pangolin.cloud.ger.systems
registry.tools.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
registry.tools.cloud.ger.systems
moncompte.lexpress.fr
*.cloud.ger.systems
communaute.perf.cloud.ger.systems
api-live.cloud.ger.systems
*.cloud.ger.systems
communaute.resultats-examens.cloud.ger.systems
registry.tools.cloud.ger.systems
registry.tools.cloud.ger.systems
*.lexpress.fr
static.cloud.ger.systems
static.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
*.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
demo.ch.cloud.ger.systems
moncompte.lexpress.fr
Certificate
The complete raw certificate details for demo.ch.cloud.ger.systems in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEpTCCA42gAwIBAgIQBDSCs6uTUmkRCLrH53zzFDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTExMTIwMDAwMDBaFw0yMDEyMTIx MjAwMDBaMCQxIjAgBgNVBAMTGWRlbW8uY2guY2xvdWQuZ2VyLnN5c3RlbXMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz6/fiEu+0cqWXJKi80PHLxg23 cqo6Y/VK+MDsMlk6tWT5bfvvcOE4W1Z+bGdacH7aqKHHQiX1Gt86o7UQW82Mz8U1 5CWNoFv9Gk784njZowEhjcopsdLs2gx5LJs958hk047FBi/G4dtCD0XojJ/Eb6Yo 9Y1Zeor4TcagNbGc+BWjnplFn115+ApvxFRzhrzturicUzoFFl6vfDEFazwCClgW fUKXj+czuhkpS2WyT+HmaNc2YmsWnNNXNYHzVh3uWTjTrGUgXQA6nlTd8orTCwLW l77xL1Nb7Nd6FYxH026NT2E9Zmdz5xpBliJ2eXe4Dw4Y/gJgQcgcCDtwBtyRAgMB AAGjggGvMIIBqzAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNV HQ4EFgQUkSImlWo/OUkPplISfTGrsHr7X+QwQQYDVR0RBDowOIIZZGVtby5jaC5j bG91ZC5nZXIuc3lzdGVtc4IbKi5kZW1vLmNoLmNsb3VkLmdlci5zeXN0ZW1zMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYD VR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20v c2NhMWIuY3JsMCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeBDAECATB1Bggr BgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpv bnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250 cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB /wQCBQAwDQYJKoZIhvcNAQELBQADggEBAEo7v8jzemSLuvvM9WePlWUS+M3w3ana 7KgjuY0DyjGs0Ov6e3e8DbD9fxW/UzYoAt7jWZKViGjZN8v2u+I36Cg7SkYTwskh r9SpSVG9bY7MHl9hQT+YEjx1R07DuvNkofZYxG0Uz7T7ISpI77XnJvyT9AlztkfW 7lEu0vLNqdh7NKOG3ZdWeiLWi89ZpQLx+Q7D5jsL29c6nem76XCdGASmT8V5QGE+ gUQ2QyklUlbdgl6CT5zxgT2Shz71abO4hAOIcw191rOLET9r58p6mS2CBE4OBNMb JrV5MvoRQ6bZHi88Fv4bQBvZe9eolvYvyNkUekUS3l7jcglREUf01JA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+v34hLvtHKllySovNDx y8YNt3KqOmP1SvjA7DJZOrVk+W3773DhOFtWfmxnWnB+2qihx0Il9RrfOqO1EFvN jM/FNeQljaBb/RpO/OJ42aMBIY3KKbHS7NoMeSybPefIZNOOxQYvxuHbQg9F6Iyf xG+mKPWNWXqK+E3GoDWxnPgVo56ZRZ9defgKb8RUc4a87bq4nFM6BRZer3wxBWs8 AgpYFn1Cl4/nM7oZKUtlsk/h5mjXNmJrFpzTVzWB81Yd7lk406xlIF0AOp5U3fKK 0wsC1pe+8S9TW+zXehWMR9NujU9hPWZnc+caQZYidnl3uA8OGP4CYEHIHAg7cAbc kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5589562367973077245890872994508370708 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-12 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demo.ch.cloud.ger.systems' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22713016891190642141681581833375966827437232628406726496690984899430151428409178838478243296931080036459548845693500525282890670095481116539933299977748775927316324272755121835443720966916158389817037165625514364028599422055956065218237827730353352048207226169079502371416325062649464883246783558020401591531785702318270029641796124224489710841281244728863749827322082841563188890033590846300664022194475555826623325366013059382302794820706597557910015626082855284089316447324211704880046184080268152726169991434783104314107455503628880962997393846615480694584645294805398862599346413427892041330267595396030312930449 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 912226956a3f39490fa652127d31abb07afb5fe4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.ch.cloud.ger.systems' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.demo.ch.cloud.ger.systems' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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