rdcmaster01.internalsecure.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 04:63:cc:20:95:26:66:63:85:cd:77:74:54:46:8d:9f was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=rdcmaster01.internalsecure.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:63:cc:20:95:26:66:63:85:cd:77:74:54:46:8d:9fSerial Number (int): 5835089565154645985841216478855466399
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 4f:01:54:df:8a:e3:1e:96:19:ec:ea:a4:be:29:12:56:f5:7d:e1:48
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 6a:c0:cf:7c:59:95:64:71:35:7a:65:11:6f:22:ae:33:75:32:20:94
Fingerprint (sha256): 6a:30:29:f7:ca:99:a5:91:be:e5:2c:45:2c:a5:5a:a3:f7:57:d8:61:5c:0f:65:87:31:c5:96:bb:5f:d0:a7:78
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate rdcmaster01.internalsecure.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rdcmaster01.internalsecure.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rdcmaster01.internalsecure.com
jenkins-rdc01.internalsecure.com
rdcmaster01.eu-west-1.ele-df.fsapi.com
helrdcmaster01.fi.f-secure.com
jenkins-rdc01.internalsecure.com
rdcmaster01.eu-west-1.ele-df.fsapi.com
helrdcmaster01.fi.f-secure.com
Other certificates including the domain name internalsecure.com
(limited to 100 certificates)
ulmaster01.internalsecure.com
jenkins-elements02.internalsecure.com
lnxmaster02.internalsecure.com
lardmaster01.internalsecure.com
ocmaster01.internalsecure.com
platmaster01.internalsecure.com
coremaster01.internalsecure.com
itrdmaster01.internalsecure.com
monitoring.sc.internalsecure.com
ertmaster01.internalsecure.com
sonar-premium.fi.f-secure.com
jenkins-staging.internalsecure.com
psbmaster01.internalsecure.com
artifactory-stg.f-secure.com
eppmaster01.internalsecure.com
eppmaster01.internalsecure.com
artifactory.f-secure.com
rdomaster01.internalsecure.com
stash-stg.fi.f-secure.com
rdomaster02.internalsecure.com
cccp01.internalsecure.com
jenkins-wongki-test.internalsecure.com
radarmaster01.internalsecure.com
itrdmaster01.internalsecure.com
rdcmaster01.internalsecure.com
phishdmaster01.internalsecure.com
labsmaster03.internalsecure.com
dsmaster01.internalsecure.com
sammaster01.internalsecure.com
elementsmaster02.internalsecure.com
cccpmaster01.internalsecure.com
elementsmaster01.internalsecure.com
artifactory.f-secure.com
drrdmaster02.internalsecure.com
monitoring.sc.internalsecure.com
stash.f-secure.com
ertmaster01.internalsecure.com
labsmaster01.internalsecure.com
labsmaster02.internalsecure.com
artifactory-stg.f-secure.com
ccptmaster01.internalsecure.com
psbmaster02.internalsecure.com
lbsmaster01.internalsecure.com
jenkins-biz01.internalsecure.com
ltsmaster01.internalsecure.com
cssmaster01.internalsecure.com
docmaster01.internalsecure.com
monitoring.sc.internalsecure.com
prodmaster01.internalsecure.com
drrdmaster01.internalsecure.com
jenkins-elements02.internalsecure.com
lnxmaster02.internalsecure.com
lardmaster01.internalsecure.com
ocmaster01.internalsecure.com
platmaster01.internalsecure.com
coremaster01.internalsecure.com
itrdmaster01.internalsecure.com
monitoring.sc.internalsecure.com
ertmaster01.internalsecure.com
sonar-premium.fi.f-secure.com
jenkins-staging.internalsecure.com
psbmaster01.internalsecure.com
artifactory-stg.f-secure.com
eppmaster01.internalsecure.com
eppmaster01.internalsecure.com
artifactory.f-secure.com
rdomaster01.internalsecure.com
stash-stg.fi.f-secure.com
rdomaster02.internalsecure.com
cccp01.internalsecure.com
jenkins-wongki-test.internalsecure.com
radarmaster01.internalsecure.com
itrdmaster01.internalsecure.com
rdcmaster01.internalsecure.com
phishdmaster01.internalsecure.com
labsmaster03.internalsecure.com
dsmaster01.internalsecure.com
sammaster01.internalsecure.com
elementsmaster02.internalsecure.com
cccpmaster01.internalsecure.com
elementsmaster01.internalsecure.com
artifactory.f-secure.com
drrdmaster02.internalsecure.com
monitoring.sc.internalsecure.com
stash.f-secure.com
ertmaster01.internalsecure.com
labsmaster01.internalsecure.com
labsmaster02.internalsecure.com
artifactory-stg.f-secure.com
ccptmaster01.internalsecure.com
psbmaster02.internalsecure.com
lbsmaster01.internalsecure.com
jenkins-biz01.internalsecure.com
ltsmaster01.internalsecure.com
cssmaster01.internalsecure.com
docmaster01.internalsecure.com
monitoring.sc.internalsecure.com
prodmaster01.internalsecure.com
drrdmaster01.internalsecure.com
Certificate
The complete raw certificate details for rdcmaster01.internalsecure.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIQBGPMIJUmZmOFzXd0VEaNnzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIyMDAwMDAwMFoXDTI1MDExNzIzNTk1OVowKTEn MCUGA1UEAxMecmRjbWFzdGVyMDEuaW50ZXJuYWxzZWN1cmUuY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7xoTnTcjp48qzpYpBy0MImFwVU+4t7wl FKeIhQzkTnbLM6Nk8VCy5hbGGfzuSts5Uoyh5rQYCutNAIddTpuAc+cYR+ChiOJ0 mhUYcQveGyd+XQVObVe+qefxNUueYjdZWBHo125F2/FeZAnJC62E7FjR7RUrcB8G HRCGGwSy8aso+BiaczhJraBQK1VDEPs+3pmbCmaXVDK+dzJozQHvWff9ImetypHT XK4uRWTcEJxEva9v22xv+LNZ29X6Qq96ICoEvmekZahygGFMZvrrHVTS5UTb9SeH T8xuNAC49fR+PqL2zcTrsaVRxLctpveCVOCwAhfGS22JCJ5ZczkWQwIDAQABo4IB 9zCCAfMwHwYDVR0jBBgwFoAUVdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYE FE8BVN+K4x6WGezqpL4pElb1feFIMIGVBgNVHREEgY0wgYqCHnJkY21hc3RlcjAx LmludGVybmFsc2VjdXJlLmNvbYIgamVua2lucy1yZGMwMS5pbnRlcm5hbHNlY3Vy ZS5jb22CJnJkY21hc3RlcjAxLmV1LXdlc3QtMS5lbGUtZGYuZnNhcGkuY29tgh5o ZWxyZGNtYXN0ZXIwMS5maS5mLXNlY3VyZS5jb20wEwYDVR0gBAwwCjAIBgZngQwB AgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRydXN0 LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRw Oi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6 Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMBAf8E AjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBtBrFC rYNkFv31CoTMYjxqN1efdxwgTc0uvf+C6h1/Ir0+pIQ4wgEAVmU5VjkMea3dNnXU 99D8AlSvXwKl6Z/z0LDUinHCGjgRIJbZOBzKtaBgoNqJgxLpSz8RAKJomsyuNJJ8 9g+JcV06HYEbkg9W9S0uBYq/cZJ+/nlxbLKQViWsT3C3fqs0F9tNxIkr8ClDb0S6 yrztjR/S6TbdD1V+d9B3bRJd8svfGzn5hr/u5eGs8hDgo9HiwqSFUbi97bxxIqrP vjKptXVk/B2yZOx6He9kt1h3qjCqhAW+pRjaltkCHxYN8Y3RN/npeuENMWsV8n+6 rbGtB7j3b+COjML/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7xoTnTcjp48qzpYpBy0M ImFwVU+4t7wlFKeIhQzkTnbLM6Nk8VCy5hbGGfzuSts5Uoyh5rQYCutNAIddTpuA c+cYR+ChiOJ0mhUYcQveGyd+XQVObVe+qefxNUueYjdZWBHo125F2/FeZAnJC62E 7FjR7RUrcB8GHRCGGwSy8aso+BiaczhJraBQK1VDEPs+3pmbCmaXVDK+dzJozQHv Wff9ImetypHTXK4uRWTcEJxEva9v22xv+LNZ29X6Qq96ICoEvmekZahygGFMZvrr HVTS5UTb9SeHT8xuNAC49fR+PqL2zcTrsaVRxLctpveCVOCwAhfGS22JCJ5ZczkW QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5835089565154645985841216478855466399 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rdcmaster01.internalsecure.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30183813746315586238068391373179049688596676844836203329853333052294114871401378287616193949853191932287873500534486356004076338347028657872781568977687605122571298609073859331039235147199808753084105430732734569693644755525356026530741622083980068073884037326303800512611270499725844885253217935316800466668799669777747486596132004955943596310515963020736221582544180459031191206143882131815456877861399359789051556786500638756049101288925177958984622164709395992557975666504435495032060098362383578854559970504086284281979086844404908963769388017893151857148417767725386825130910888316928703165897204070759645386307 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4f0154df8ae31e9619eceaa4be291256f57de148 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (141 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rdcmaster01.internalsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jenkins-rdc01.internalsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rdcmaster01.eu-west-1.ele-df.fsapi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'helrdcmaster01.fi.f-secure.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006d06b142ad836416fdf50a84cc623c6a37579f771c204dcd2ebdff82ea1d7f22bd3ea48438c2010056653956390c79addd3675d4f7d0fc0254af5f02a5e99ff3d0b0d48a71c21a38112096d9381ccab5a060a0da898312e94b3f1100a2689accae34927cf60f89715d3a1d811b920f56f52d2e058abf71927efe79716cb2905625ac4f70b77eab3417db4dc4892bf029436f44bacabced8d1fd2e936dd0f557e77d0776d125df2cbdf1b39f986bfeee5e1acf210e0a3d1e2c2a48551b8bdedbc7122aacfbe32a9b57564fc1db264ec7a1def64b75877aa30aa8405bea518da96d9021f160df18dd137f9e97ae10d316b15f27fbaadb1ad07b8f76fe08e8cc2ff