api-dev.mnstate.us

- Minnesota State Colleges and Universities -

Issued by Entrust Certification Authority - L1K

About this certificate

This digital certificate with serial number 2a:44:94:a8:79:bb:66:57:9c:50:75:24:bc:74:14:b9 was issued on by Entrust, Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Minnesota State Colleges and Universities

Organization: Minnesota State Colleges and Universities
Organization unit: ITS
State / Province: Minnesota
Locality: Saint Paul
Country: US

Entrust, Inc.

Organization: Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 2a:44:94:a8:79:bb:66:57:9c:50:75:24:bc:74:14:b9
Serial Number (int): 56183667153973716398493737747341382841
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: 07:17:35:65:db:39:f0:99:d5:f4:3a:d9:65:c1:45:43:f5:3b:1a:7d
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf

Fingerprint (sha1): 59:a3:03:eb:c9:a3:57:08:e9:fc:63:56:aa:92:8f:de:c9:79:a5:87
Fingerprint (sha256): 6a:22:25:6c:c7:c3:5b:90:22:ba:b0:24:12:78:11:87:14:3e:ac:d4:50:95:9b:81:ab:c4:cd:b0:85:1a:6b:6a

Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer

Revocation information

OCSP Server: http://ocsp.entrust.net
CRL Distribution Point: http://crl.entrust.net/level1k.crl

Check the revocation status for certificate api-dev.mnstate.us

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for api-dev.mnstate.us

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

api-dev.mnstate.us
api-portal-dev.mnstate.us

Other certificates including the domain name mnstate.us

(limited to 100 certificates)
ldap1.mac.mnstate.us
admindemo.mnstate.us
signonqa.mnstate.us
opendora.minnstate.edu
websrvcsintpt.mnstate.us
opendora.minnstate.edu
islandora.mnstate.us
ent-dev-eemsa1.dc.mnstate.us
staridpt.mnstate.us
svn.svc.mnstate.us
ldapead1.svc.mnstate.us
wfpise-secondary.ooc.mnstate.us
opendora.minnstate.edu
ldapmaster.svc.mnstate.us
islandora.mnstate.us
kqzzpw0vsec03.ooc.mnstate.us
opendora.minnstate.edu
www.programnavigatorqa.mnstate.us
signondev.csvc.mnstate.us
ldapeadqa2.svc.mnstate.us
ldapeadqa1.svc.mnstate.us
ldapdevad1.csvc.mnstate.us
opendora.minnstate.edu
ise-mac-primary.mac.mnstate.us
ise-mac-secondary.mac.mnstate.us
api-dev.mnstate.us
api-dev.mnstate.us
kqzzpw0vsec03.ooc.mnstate.us
radius.mnstate.us
kqzzpw0vsec03.ooc.mnstate.us
opendora.minnstate.edu
*.bookitapi.csvc.mnstate.us
kqzzpw0vsec03.ooc.mnstate.us
cibuild.svc.mnstate.us
ldapdc1.svc.mnstate.us
signonqa.mnstate.us
api-dev.mnstate.us
api-test.mnstate.us
ldapdc2.svc.mnstate.us
data2.csvc.mnstate.us
ldapdev.mnstate.us
cibuild.svc.mnstate.us
lade.o365.mnstate.us
*.bookitwebclient.csvc.mnstate.us
websvn.svc.mnstate.us
*.bookitcalendarapi.csvc.mnstate.us
vmi-rpt.csvc.mnstate.us
cazzpw0mbam01.mac.mnstate.us
wfpise-primary.ooc.mnstate.us
epmtest.csvc.mnstate.us
reportsdev.csvc.mnstate.us
www.programnavigatorqa.mnstate.us
ldap1.ooc.mnstate.us
api.mnstate.us
websrvcsdemo.mnstate.us
cazzpw0vconn01.mac.mnstate.us
ldapmasterqa.svc.mnstate.us
vsec1.mnstate.us
ldapdev.mnstate.us
opendora.minnstate.edu
kqzzpw0vsec03.ooc.mnstate.us
laborrelapp.ooc.mnstate.us
stariddev.mnstate.us
ldapead2.svc.mnstate.us
opendora.minnstate.edu
batman.r.mnstate.us
bookittest.csvc.mnstate.us
ftp.o365.mnstate.us
vsec1.mnstate.us
dev-vsec3.ooc.mnstate.us
opendora.minnstate.edu
robin.r.mnstate.us
epmtest.csvc.mnstate.us
nmlab.mnstate.us
signonqa.mnstate.us
kqzzpw0vsec03.ooc.mnstate.us
islandora.mnstate.us
eservicespt.mnstate.us
dev-vsec3.ooc.mnstate.us
ise-mac-primary.mac.mnstate.us
vmi-1.csvc.mnstate.us
dev-vconn1.csvc.mnstate.us
reportsqa.csvc.mnstate.us
ReportsBIQA.csvc.mnstate.us
ReportsBIDEV.csvc.mnstate.us
staridqa.mnstate.us
*.bookitcourses.csvc.mnstate.us
*.bookitwebservice.csvc.mnstate.us
iam-api.svc.mnstate.us
ldapdevad1.svc.mnstate.us
websrvcs.mnstate.us

Certificate

The complete raw certificate details for api-dev.mnstate.us in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYZvIWYiw57c4+oTIzWj
pBce0JU7ofllhC4tUMwu68sseXvhgCapGuP1GsIq2yx7I07BZIK1Y+hoMflipd/y
LPnR3JhLR3fAtKCsLzUTs39vnYaape27OerPNbDDasRfTVxM52l/AZKsPq7cNuR5
KMtkdiaZGYdKEzR/wpydiwqJNYWBi2Ip/IZoPmbDN0PNxpZtAOJuWIDjyS6J1mZk
2vJwTrPsLptr97Y1FnX1hjGn84tk77lcK8eZyEs+SlbhAcU9mc/tlTmwTyAIrery
vsGjaGEkRkau4sY7HRKpsYoFzxcPjqIGd8n/d9OmOwCjcSZfMZAZ/FfLYUoeOQ3O
uwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 56183667153973716398493737747341382841
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-15 20:54:13 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-14 20:54:13 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Saint Paul'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota State Colleges and Universities'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ITS'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api-dev.mnstate.us'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24935238005423104251001655705716401334066450064976893610906281496507825547219559433488159456323768088046588559802717662886008841585893702566757517629717439078647437421243031682003010813268006499480540527383415221297896686412558564527563104628407126923511923462489846317894814840171730764045916350019416437986155504086748391796818931387399535555042888482191458540452906068148444517228028366286247612597046064863140288287813732313074796228967310780956840134781823913251501906227335655143226476042242993541833204744157745103623110781340540894145544848017338170533195853082439466516145604214677246836884364323940006219451
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							07173565db39f099d5f43ad965c14543f53b1a7d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-dev.mnstate.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-portal-dev.mnstate.us'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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