www.em.gurkensalat.ch
Issued by Hostpoint DV SSL CA - G2
About this certificate
This digital certificate with serial number 1f:b9:62:1e:01:fa:0e:4b:a8:13:7f:2c:d1:a3:21:c7 was issued on by Hostpoint AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.em.gurkensalat.ch
Hostpoint AG
Organization:
Hostpoint AG
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 1f:b9:62:1e:01:fa:0e:4b:a8:13:7f:2c:d1:a3:21:c7Serial Number (int): 42168632841759152436400567045593440711
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: b4:e3:2a:8e:85:bb:b2:b7:27:3c:e9:ce:9a:a0:80:6f:0a:4b:02:48
Fingerprint (sha1): cc:ff:0d:00:94:f9:3e:ec:5f:9d:af:db:8c:88:ca:09:12:e5:94:6d
Fingerprint (sha256): 60:12:0b:8c:58:c2:12:be:00:13:77:58:3a:ce:1e:19:8f:7d:e0:55:e3:69:53:af:9b:38:f5:51:0b:a9:73:3d
Issuing Certificate URL: http://hostpoint-aia.digitalcertvalidation.com/hostpointg2.crt
Revocation information
OCSP Server: http://hostpoint-ocsp.digitalcertvalidation.comCRL Distribution Point: http://hostpoint-crl.digitalcertvalidation.com/hostpointg2.crl
Check the revocation status for certificate www.em.gurkensalat.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.em.gurkensalat.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.em.gurkensalat.ch
Other certificates including the domain name gurkensalat.ch
(limited to 100 certificates)
www.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
pren.gurkensalat.ch
www.pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.john.gurkensalat.ch
pren.gurkensalat.ch
john.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.pren.gurkensalat.ch
gurkensalat.ch
www.john.gurkensalat.ch
em.gurkensalat.ch
pren.gurkensalat.ch
gurkensalat.ch
api.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
www.pren.gurkensalat.ch
api.gurkensalat.ch
www.em.gurkensalat.ch
gurkensalat.ch
pren.gurkensalat.ch
pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
john.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
pren.gurkensalat.ch
www.pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.john.gurkensalat.ch
pren.gurkensalat.ch
john.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.pren.gurkensalat.ch
gurkensalat.ch
www.john.gurkensalat.ch
em.gurkensalat.ch
pren.gurkensalat.ch
gurkensalat.ch
api.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
www.pren.gurkensalat.ch
api.gurkensalat.ch
www.em.gurkensalat.ch
gurkensalat.ch
pren.gurkensalat.ch
pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
john.gurkensalat.ch
gurkensalat.ch
Certificate
The complete raw certificate details for www.em.gurkensalat.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIQH7liHgH6DkuoE38s0aMhxzANBgkqhkiG9w0BAQsFADBm MQswCQYDVQQGEwJDSDEVMBMGA1UEChMMSG9zdHBvaW50IEFHMR0wGwYDVQQLExRE b21haW4gVmFsaWRhdGVkIFNTTDEhMB8GA1UEAxMYSG9zdHBvaW50IERWIFNTTCBD QSAtIEcyMB4XDTE2MDUwNzAwMDAwMFoXDTE3MDUwNzIzNTk1OVowIDEeMBwGA1UE AwwVd3d3LmVtLmd1cmtlbnNhbGF0LmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA0occx9eUbAZLJGpCUiJS/YCg42vjjEZac+EZ8HFnwH/ERyGNGUTR hKc5bI1otTPYfjevfPyAmshYmosktianBV2MNPiOSVsm/v+VcSkjcWu9XZp2Y95Q cd9c8qufQ2KwEX/5/PoBhL6ZIvcR8E+M/CAKHT+x+OKhaDrQGVELUpR233M/GyYZ GQHUVhzDBO7WyoDzeHIa+iwj76uy7N3dncqWeVC1unc2YUbqEFFLe4w/iGStqDd0 gKYY3bFIPPCqdyQyW/s0UNHR1NW0ZYihkpwTMio6exhigdSngkn0htBZcKmWJVaq O8pQmEo1DI2aBz+YNPunHQaGX2wmL5CwewIDAQABo4ICIzCCAh8wIAYDVR0RBBkw F4IVd3d3LmVtLmd1cmtlbnNhbGF0LmNoMAkGA1UdEwQCMAAwTwYDVR0fBEgwRjBE oEKgQIY+aHR0cDovL2hvc3Rwb2ludC1jcmwuZGlnaXRhbGNlcnR2YWxpZGF0aW9u LmNvbS9ob3N0cG9pbnRnMi5jcmwwgZ0GA1UdIASBlTCBkjCBjwYGZ4EMAQIBMIGE MD8GCCsGAQUFBwIBFjNodHRwczovL3d3dy5nZW90cnVzdC5jb20vcmVzb3VyY2Vz L3JlcG9zaXRvcnkvbGVnYWwwQQYIKwYBBQUHAgIwNQwzaHR0cHM6Ly93d3cuZ2Vv dHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0b3J5L2xlZ2FsMB8GA1UdIwQYMBaA FLTjKo6Fu7K3JzzpzpqggG8KSwJIMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwgZkGCCsGAQUFBwEBBIGMMIGJMDsGCCsGAQUF BzABhi9odHRwOi8vaG9zdHBvaW50LW9jc3AuZGlnaXRhbGNlcnR2YWxpZGF0aW9u LmNvbTBKBggrBgEFBQcwAoY+aHR0cDovL2hvc3Rwb2ludC1haWEuZGlnaXRhbGNl cnR2YWxpZGF0aW9uLmNvbS9ob3N0cG9pbnRnMi5jcnQwEwYKKwYBBAHWeQIEAwEB /wQCBQAwDQYJKoZIhvcNAQELBQADggEBAEa90VzPSDeRYi8puOkqnJeW4VW0rxK1 lNSCHvssb/MB+o4FvZXpsPcXHHpapcjb13e2orYinST4fgnwtVs3837XChGb1TFZ 8XkNewHEpuLNcI0N3KJC9ZOyDJ8c2xheBAD/kiHd4SxiEwHRs69UX4rObs9K4drO jkNxGJefjYArzeddGeXTUgBBlvpI2fWd8thBuQh0HL8oEQCLFtS+1uZAd947wrGt bQm+eWPMbTFGD4bVOhX6ccPxR8RkdpHLnZGPHSg3CbpISseT+CmkFYcRheutS971 4XvoemRs7LJuIfxa55SlDXx/CsvscqCLWXNkd53D1Tu5Zmoz8GL5oXI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0occx9eUbAZLJGpCUiJS /YCg42vjjEZac+EZ8HFnwH/ERyGNGUTRhKc5bI1otTPYfjevfPyAmshYmosktian BV2MNPiOSVsm/v+VcSkjcWu9XZp2Y95Qcd9c8qufQ2KwEX/5/PoBhL6ZIvcR8E+M /CAKHT+x+OKhaDrQGVELUpR233M/GyYZGQHUVhzDBO7WyoDzeHIa+iwj76uy7N3d ncqWeVC1unc2YUbqEFFLe4w/iGStqDd0gKYY3bFIPPCqdyQyW/s0UNHR1NW0ZYih kpwTMio6exhigdSngkn0htBZcKmWJVaqO8pQmEo1DI2aBz+YNPunHQaGX2wmL5Cw ewIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 42168632841759152436400567045593440711 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hostpoint AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hostpoint DV SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.em.gurkensalat.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26576670462519261736917707381282371073558207597346746159946581299721793195201920354772506196695856040270142576818517535023183550705342738110729456601603946972325026507733456581406827319429783264940615554919763716293746126082016342948835986672917835146546901876264991588652603126279175393922511481904977209754773870032713284921657130053533817658268334235616161903883229040269046801930360344128365797412250380063379063465206101639746274613396769274833748155496502726834212882106710373261018444427626859535432187177641253001859170504468042623052424242305215351118591439163584512313715296183391146255659116228092623892603 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.em.gurkensalat.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hostpoint-crl.digitalcertvalidation.com/hostpointg2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b4e32a8e85bbb2b7273ce9ce9aa0806f0a4b0248 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (140 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hostpoint-ocsp.digitalcertvalidation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hostpoint-aia.digitalcertvalidation.com/hostpointg2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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