*.monidentifiant.sncf
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0d:e2:9c:07:f1:90:84:76:da:ef:e9:72:12:33:3b:27 was issued on by Amazon.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.monidentifiant.sncf
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:e2:9c:07:f1:90:84:76:da:ef:e9:72:12:33:3b:27Serial Number (int): 18456587720488682882070175230624742183
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 9f:23:b0:34:49:9e:79:18:c0:1a:bb:ba:0a:69:59:5e:72:b4:19:f5
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): ad:b9:34:8c:91:61:a3:d5:6a:70:52:d2:65:51:06:c4:5e:61:17:25
Fingerprint (sha256): 68:ed:e6:4d:9e:9f:d7:9d:b0:ac:8c:a9:c4:2b:69:1f:d4:a2:c9:63:e6:1c:dc:0e:6c:be:37:b3:5c:97:16:1f
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate *.monidentifiant.sncf
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.monidentifiant.sncf
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.monidentifiant.sncf
www.programmefid.com
*.ter.sncf.com
programmefid.com
www.portailentreprises.sncf.com
*.sncf-connect.com
*.maplaceabord.com
*.tgvinoui.sncf
*.pro.reseau.sncf.fr
tgv-lyria.com
www.programmefid.com
*.ter.sncf.com
programmefid.com
www.portailentreprises.sncf.com
*.sncf-connect.com
*.maplaceabord.com
*.tgvinoui.sncf
*.pro.reseau.sncf.fr
tgv-lyria.com
Other certificates including the domain name monidentifiant.sncf
(limited to 100 certificates)
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
*.monidentifiant.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
monidentifiant.sncf
test.dev.aws.vsct.fr
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
*.monidentifiant.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
monidentifiant.sncf
test.dev.aws.vsct.fr
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
monidentifiant.sncf
Certificate
The complete raw certificate details for *.monidentifiant.sncf in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIQDeKcB/GQhHba7+lyEjM7JzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTEyMjAwMDAwMFoXDTI0MTIxOTIzNTk1OVowIDEe MBwGA1UEAwwVKi5tb25pZGVudGlmaWFudC5zbmNmMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEArBYrbujDcZIUuVIKFzdax14J5d7uYnviFEfgX+HISa1l rdeIYGWYQlIzcImqKQGbWy3u7FSdYWkEvQ5x1XH3v60+36sTEIkKupOD84FrCTYm +3hjQtPIXmRbXnPuLH6LGujyKWyep2mP2YVrbVe9lIHFjMd5YXgU1kGvThEdi0h0 m/i9imfe/4m1aeXSPjXcr6uyZ2tX/JeMgEUCmHRurY2XcyNjmxt2T5KZPRJkkVVW wotfOVZm1KRDHiyJsapLwk3+sNMuSMRR3+LjjEwAjzGfibnksBZxBrLO39wX5Kkc E6lNLKZN4ZKTvFDKA572xN1ntjfyxipHT2aessYyrQIDAQABo4ICOzCCAjcwHwYD VR0jBBgwFoAUVdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFJ8jsDRJnnkY wBq7ugppWV5ytBn1MIHZBgNVHREEgdEwgc6CFSoubW9uaWRlbnRpZmlhbnQuc25j ZoIUd3d3LnByb2dyYW1tZWZpZC5jb22CDioudGVyLnNuY2YuY29tghBwcm9ncmFt bWVmaWQuY29tgh93d3cucG9ydGFpbGVudHJlcHJpc2VzLnNuY2YuY29tghIqLnNu Y2YtY29ubmVjdC5jb22CEioubWFwbGFjZWFib3JkLmNvbYIPKi50Z3Zpbm91aS5z bmNmghQqLnByby5yZXNlYXUuc25jZi5mcoINdGd2LWx5cmlhLmNvbTATBgNVHSAE DDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDMu YW1hem9udHJ1c3QuY29tL3IybTAzLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYB BQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpvbnRydXN0LmNvbTA2BggrBgEF BQcwAoYqaHR0cDovL2NydC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY2Vy MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQEL BQADggEBAFERwdutw+14JhfpSPJlFbHLq8K0UEcnuL3Zv/dcLyeZiH8+oMwiP8Bg NDEVLTIihxzVDEZh/ZG4ntM3Sb3rA0z5w/lwQkWgqReBZVu3BuDipSc8MB4qRXPP BGj+ba8zglLajmCgO9wvC33yzoIqY+lhlY2PjpDdB0vXlFA16Rl9LRU4dxE1OKc8 rBg0fS8Yc9cup7oKkYcQziiVWYic0vFG+HRixfNQgdL/TZXy6HOadT2i4NrJ2hLb ahKbOjRchEdZElFtqYBHn9xfKRAPZOBUZ2GT6R5PNUwjghRDINYt5UUrC4+kVT8f LCmxArKf/gglCpTaOxYUFoQ7wOTZDG8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBYrbujDcZIUuVIKFzda x14J5d7uYnviFEfgX+HISa1lrdeIYGWYQlIzcImqKQGbWy3u7FSdYWkEvQ5x1XH3 v60+36sTEIkKupOD84FrCTYm+3hjQtPIXmRbXnPuLH6LGujyKWyep2mP2YVrbVe9 lIHFjMd5YXgU1kGvThEdi0h0m/i9imfe/4m1aeXSPjXcr6uyZ2tX/JeMgEUCmHRu rY2XcyNjmxt2T5KZPRJkkVVWwotfOVZm1KRDHiyJsapLwk3+sNMuSMRR3+LjjEwA jzGfibnksBZxBrLO39wX5KkcE6lNLKZN4ZKTvFDKA572xN1ntjfyxipHT2aessYy rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18456587720488682882070175230624742183 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.monidentifiant.sncf' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21723920721497031341799396287174018205764911163612537054893531580828236532573869456728555730338373996881303803148782336715137612158828765504361377579771844485928678711572963566864803305658539864558082992935876259643216895807630182769893425155808756367917497295198962791772069852721000185083693680135395040115603318689554945923475797757918235026255128906913906550194188656659547405711382940080371056467228828829992755595150284169822108939491700365118422520735210671016265376064482396960738338426389658524929838124404770510193492063366332428867711871687444756610953788652936219400096556847804743277209444435933673173677 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9f23b034499e7918c01abbba0a69595e72b419f5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (209 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.monidentifiant.sncf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.programmefid.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ter.sncf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'programmefid.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.portailentreprises.sncf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sncf-connect.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.maplaceabord.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tgvinoui.sncf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pro.reseau.sncf.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tgv-lyria.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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