*.test.mbed.com
Issued by Amazon
About this certificate
This digital certificate with serial number 02:5a:d1:ca:c9:1c:cf:b0:1c:01:75:b4:9c:9e:bd:b4 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.test.mbed.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:5a:d1:ca:c9:1c:cf:b0:1c:01:75:b4:9c:9e:bd:b4Serial Number (int): 3130017798775274988436660608221232564
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 53:d9:67:10:79:f4:7b:ad:4c:43:4c:4c:d5:44:2f:19:0e:07:53:c5
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 3b:16:9f:59:0c:0f:17:61:ec:3e:94:7c:8a:7f:58:d5:32:88:e1:f7
Fingerprint (sha256): 69:68:01:6f:1d:77:04:99:98:4f:c3:c7:02:60:2c:11:ce:fe:05:1e:64:20:e1:db:55:ab:7c:0d:a0:c3:1c:d6
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate *.test.mbed.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.test.mbed.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.test.mbed.com
Other certificates including the domain name mbed.com
(limited to 100 certificates)
*.test.mbed.com
yotta.mbed.com
*.test.mbed.com
studio.mbed.com
*.test.mbed.com
api.connector.mbed.com
docs.mbed.com
systemtest-radiator.mbedcloudtesting.com
mbed-www-media.mbed.com
forums.mbed.com
forums.mbed.com
media-cdn.partners.test.mbed.com
api.connector.mbed.com
forums.mbed.com
internal.mbed.com
*.mbed.com
studio.test.mbed.com
mbed-media.mbed.com
account.mbed.com
artifactory.mbed.com
*.mbed.com
*.mbed.com
forums.mbed.com
account.mbed.com
mbed-www-media.test.mbed.com
forums.mbed.com
labs.test.mbed.com
forums.mbed.com
account.mbed.com
forums.mbed.com
mbed-media.mbed.com
forums.mbed.com
account.test.mbed.com
account.mbed.com
account.mbed.com
*.test.mbed.com
labs.mbed.com
studio.mbed.com
*.test.mbed.com
*.mbed.com
forums.mbed.com
forums.mbed.com
labs.mbed.com
*.test.mbed.com
*.mbed.com
yotta.mbed.com
forums.mbed.com
simulator.mbed.com
*.test.mbed.com
accounts.mbed.com
mbed-www-media.mbed.com
*.mbed.com
studio.mbed.com
*.test.mbed.com
studio.mbed.com
forums.mbed.com
internal.test.mbed.com
*.dev.mbed.com
mbed-www-media.mbed.com
*.test.mbed.com
account.mbed.com
mbed-media.mbed.com
labs.mbed.com
forums.mbed.com
studio.mbed.com
*.mbed.com
systest-radiator.mbed.com
mbed-billing-sandbox.test.mbed.com
studio.mbed.com
*.mbed.com
*.test.mbed.com
mbed-www-media.test.mbed.com
*.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
studio-tmp.mbed.com
account.test.mbed.com
forums.mbed.com
*.test.mbed.com
api.connector.mbed.com
*.preview.mbed.com
*.preview.mbed.com
mbed-billing-sandbox.test.mbed.com
forums.mbed.com
account.mbed.com
mbed.com
accounts.mbed.com
assets.test.mbed.com
*.mbed.com
connector.mbed.com
yotta.mbed.com
forums.mbed.com
studio.mbed.com
simulator.mbed.com
mbed-media.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
*.mbed.com
yotta.mbed.com
*.test.mbed.com
studio.mbed.com
*.test.mbed.com
api.connector.mbed.com
docs.mbed.com
systemtest-radiator.mbedcloudtesting.com
mbed-www-media.mbed.com
forums.mbed.com
forums.mbed.com
media-cdn.partners.test.mbed.com
api.connector.mbed.com
forums.mbed.com
internal.mbed.com
*.mbed.com
studio.test.mbed.com
mbed-media.mbed.com
account.mbed.com
artifactory.mbed.com
*.mbed.com
*.mbed.com
forums.mbed.com
account.mbed.com
mbed-www-media.test.mbed.com
forums.mbed.com
labs.test.mbed.com
forums.mbed.com
account.mbed.com
forums.mbed.com
mbed-media.mbed.com
forums.mbed.com
account.test.mbed.com
account.mbed.com
account.mbed.com
*.test.mbed.com
labs.mbed.com
studio.mbed.com
*.test.mbed.com
*.mbed.com
forums.mbed.com
forums.mbed.com
labs.mbed.com
*.test.mbed.com
*.mbed.com
yotta.mbed.com
forums.mbed.com
simulator.mbed.com
*.test.mbed.com
accounts.mbed.com
mbed-www-media.mbed.com
*.mbed.com
studio.mbed.com
*.test.mbed.com
studio.mbed.com
forums.mbed.com
internal.test.mbed.com
*.dev.mbed.com
mbed-www-media.mbed.com
*.test.mbed.com
account.mbed.com
mbed-media.mbed.com
labs.mbed.com
forums.mbed.com
studio.mbed.com
*.mbed.com
systest-radiator.mbed.com
mbed-billing-sandbox.test.mbed.com
studio.mbed.com
*.mbed.com
*.test.mbed.com
mbed-www-media.test.mbed.com
*.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
studio-tmp.mbed.com
account.test.mbed.com
forums.mbed.com
*.test.mbed.com
api.connector.mbed.com
*.preview.mbed.com
*.preview.mbed.com
mbed-billing-sandbox.test.mbed.com
forums.mbed.com
account.mbed.com
mbed.com
accounts.mbed.com
assets.test.mbed.com
*.mbed.com
connector.mbed.com
yotta.mbed.com
forums.mbed.com
studio.mbed.com
simulator.mbed.com
mbed-media.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
*.mbed.com
Certificate
The complete raw certificate details for *.test.mbed.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEaTCCA1GgAwIBAgIQAlrRyskcz7AcAXW0nJ69tDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMTEyMDMwMDAwMDBaFw0yMzAxMDEy MzU5NTlaMBoxGDAWBgNVBAMMDyoudGVzdC5tYmVkLmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAKbRfZWd+5tJvlyVcu6wY3JZoCLuC50wdpaCAtJE sJ3xNHECAycO3OJDUfIHtkPCC1Yveb4ircPo4dPPB056cbAlhzlZvW/MU8ET3LpV UZP0A/d1CPCHZXo09FWYASKPrJENGMARuhyB30f9CczJA26jdvr8HiD/XpfE3a8x bdDUn8kA8urJWC55ipMWs7bFMrqkGeKModonMAXH/ktidH9O//do9/is06idQ3s8 oud95Qi/mk2eQQSpU0XZaXn23YitXPW983DE4mSUqML5WrFk2vwH5JalRl34v1WH 3H2dRlOrUjRCSvp/JKy4STjJYrycLpG6e+SOjny+zfxc29kCAwEAAaOCAX0wggF5 MB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBRT2WcQ efR7rUxDTEzVRC8ZDgdTxTAaBgNVHREEEzARgg8qLnRlc3QubWJlZC5jb20wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA9BgNV HR8ENjA0MDKgMKAuhixodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9z Y2ExYi0xLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcw LQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2 BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2Nh MWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZI hvcNAQELBQADggEBAERw4vqLI3IpHtCkwopPeRCHbtkugvXryI4ITHBJqCy7UUFr uR2Pmqhy5KvSbcFmJBA3UBKfW+p8oSidURCbYUBI5Zqp4QlnVAXW/D1EtOB0v6bm 7gGOZITUdefr2iBdit5WvEtry01D89aCBrKKZ+FOBZfMihm5R4jNiW1ECulYNANN qH0iZB9LxzRUIAMJXJeBg9DDk1HkLNyQQb18UPX5AWIQIv83hf8BBMIrVuCvEcSz a6WxAc3Lju7T6UvaQKcmRqui+hCnCH99vn12DAhxW/CtB/ip8eh8nrdY9a4KnRAU J1dMYUTId7gpi3ScD1rCEAP0YGXYhJV/yMr2dD0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptF9lZ37m0m+XJVy7rBj clmgIu4LnTB2loIC0kSwnfE0cQIDJw7c4kNR8ge2Q8ILVi95viKtw+jh088HTnpx sCWHOVm9b8xTwRPculVRk/QD93UI8IdlejT0VZgBIo+skQ0YwBG6HIHfR/0JzMkD bqN2+vweIP9el8TdrzFt0NSfyQDy6slYLnmKkxaztsUyuqQZ4oyh2icwBcf+S2J0 f07/92j3+KzTqJ1Dezyi533lCL+aTZ5BBKlTRdlpefbdiK1c9b3zcMTiZJSowvla sWTa/AfklqVGXfi/VYfcfZ1GU6tSNEJK+n8krLhJOMlivJwukbp75I6OfL7N/Fzb 2QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3130017798775274988436660608221232564 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.test.mbed.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21058862271765277146655232886621610275941101041562605048671346198374623659693047173426887789184667114363009638528205739652795882558502593594396836085971867628909674180372525534086319474033829523141316612519479346406447403098101459890765181652675441847785203056868748922569984075042167319477830771309673578996235619736849032686922377646984038606311356372541219807877345357870134116688665763898605898421951053369359495373372773671315923476486297658270117340414023433753779161779051521432652258171760729388534763124138098421840191246964752597146339410458907999198024777799386635370317281365009839930866851000597738216409 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 53d9671079f47bad4c434c4cd5442f190e0753c5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.test.mbed.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 004470e2fa8b2372291ed0a4c28a4f7910876ed92e82f5ebc88e084c7049a82cbb51416bb91d8f9aa872e4abd26dc16624103750129f5bea7ca1289d51109b614048e59aa9e109675405d6fc3d44b4e074bfa6e6ee018e6484d475e7ebda205d8ade56bc4b6bcb4d43f3d68206b28a67e14e0597cc8a19b94788cd896d440ae95834034da87d22641f4bc734542003095c978183d0c39351e42cdc9041bd7c50f5f901621022ff3785ff0104c22b56e0af11c4b36ba5b101cdcb8eeed3e94bda40a72646aba2fa10a7087f7dbe7d760c08715bf0ad07f8a9f1e87c9eb758f5ae0a9d101427574c6144c877b8298b749c0f5ac21003f46065d884957fc8caf6743d