usegvlexpe001.cannondesign.com

- Cannon Design, Inc. -

Issued by DigiCert SHA2 Secure Server CA

About this certificate

This digital certificate with serial number 08:64:77:46:ff:d4:b0:45:52:87:ee:99:10:69:3d:ee was issued on by DigiCert Inc.

With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Cannon Design, Inc.

Organization: Cannon Design, Inc.
State / Province: New York
Locality: Grand Island
Country: US

DigiCert Inc

Organization: DigiCert Inc
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 08:64:77:46:ff:d4:b0:45:52:87:ee:99:10:69:3d:ee
Serial Number (int): 11155472884022822486842191613656645102
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: e3:58:f2:9f:b5:3b:fb:e8:6c:5c:70:b7:ee:9d:7a:6e:71:00:f3:7c
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2

Fingerprint (sha1): fb:94:31:c0:9e:47:9c:0c:01:45:81:f5:19:25:4b:53:7a:57:a8:67
Fingerprint (sha256): 6d:94:bf:7e:83:66:f4:fc:19:67:d3:f7:1e:ea:54:c5:a8:6d:2d:80:8e:36:55:f0:33:d1:b2:b3:44:dd:e6:32

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl

Check the revocation status for certificate usegvlexpe001.cannondesign.com

7

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for usegvlexpe001.cannondesign.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

usegvlexpe001.cannondesign.com
Expressway.cannondesign.com
Expressway1.cannondesign.com
Expressway2.cannondesign.com
usegvlexpe.cannondesign.com
collab-edge.cannondesign.com
cannondesign.com

Other certificates including the domain name cannondesign.com

(limited to 100 certificates)
helpdesk.tranter.com
*.cannondesign.com
helpdesk.brownbear.com
support.precisio.services
info.cannondesign.com
service-desk.awansoft.biz
uspvvlcucs001.cannondesign.com
*.cannondesign.com
Expressway.cannondesign.com
servicedesk.cannondesign.com
support.soriansolutions.com
info.cannondesign.com
helpdesk.brownbear.com
cannondesign.com
service-desk.awansoft.biz
spark.cannondesign.com
cannondesign.com
*.cannondesign.com
support.precisio.services
tic.mesadeayuda.net
helpdesk.brownbear.com
fos.cannondesign.com
*.cannondesign.com
servicedesk.c-path.org
info.cannondesign.com
support.precisio.services
cannondesign.com
usegvlimpp001.cannondesign.com
Expressway.cannondesign.com
service-desk.awansoft.biz
jive.cannondesign.com
usegvlexpe002.cannondesign.com
cannondesign.com
servicedesk.securiteassurance.com
fos.cannondesign.com
fos.cannondesign.com
*.cannondesign.com
service-desk.awansoft.biz
servicedesk.c-path.org
*.cannondesign.com
fos.cannondesign.com
enterprisemgmt.myairlife.com
cannondesign.com
tic.mesadeayuda.net
fos.cannondesign.com
cannondesignblog.com
servicedesk.cannondesign.com
service-desk.awansoft.biz
cannondesign.com
*.cannondesign.com
servicedesk.c-path.org
servicedesk.cannondesign.com
help.bhakha.in
*.cannondesign.com
usegvlcucmp001.cannondesign.com
cannondesign.com
service-desk.awansoft.biz
krypcservicedesk.krypc.com
info.cannondesign.com
help.bhakha.in
helpdesk.brownbear.com
servicedesk.damasjewellery.com
helpdesk.brownbear.com
usegvlcucp001.cannondesign.com
enterprisemgmt.myairlife.com
helpdesk.brownbear.com
*.cannondesign.com
support.precisio.services
usegvlimpp001.cannondesign.com
service-desk.awansoft.biz
uspvvlimps001.cannondesign.com
service-desk.awansoft.biz
help.bhakha.in
service-desk.awansoft.biz
cannondesign.com
cannondesign.com
servicedesk.securiteassurance.com
usegvlexpe001.cannondesign.com
krypcservicedesk.krypc.com
service-desk.awansoft.biz
tic.mesadeayuda.net
servicedesk.c-path.org
helpdesk.naylor.com
pcm.cannondesign.com
cannondesign.com
helpdesk.petra-eng.com.jo
helpdesk.brownbear.com
support.soriansolutions.com
cannondesign.com
usegvlexpe002.cannondesign.com
cannondesign.com
servicedesk.securiteassurance.com
helpdesk.naylor.com
*.cannondesign.com
helpdesk.brownbear.com
*.cannondesign.com
helpdesk.brownbear.com
helpdesk.petra-eng.com.jo
helpdesk.petra-eng.com.jo
segvlexpe002.cannondesign.com

Certificate

The complete raw certificate details for usegvlexpe001.cannondesign.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApe5HyX6yXb6UteydmFoh
aW1Qw2rDWX348f8JtoXHtQ+YZlJb63Ab4fF7gsoAJ7vOPPs5lHt0WEjACH1c2UAa
To1ZSGb8m6FRG04fcf6Gkw0CBchxLIbX7IvzGrFMOup5EvwoBUSgOhzJx4xw9Qz7
TzX2ulWdZX92qpuAw+yjxgV2CGohHUAkUsJV9wP4fmv5W3GkCmFOqThXJmxfLTXF
1FEoxM3+xctMpN+XQJ6UNntVfn/9Ya4eBsAVIM9JDSV1BNtXSFRu4Cw68BX9tM9d
6sxQQfOa/kZhw5XujhDPY8DhrbcYYOZKZ6tF2vm2Q85b1pBuLmRojEa3UAPfh1BS
1NIYXjpcTmwDglSKEy61To62GQXpT11kOlOcG7MrS8REVo0wpQlQ3gOi23LG0Ozi
op1C3+AfqZ69pNhQkDJaUgkkOOKV9IkLrhJvaYWtXsiuiAiRMEsDIs7c1bfi4QAg
500Iw7Ny087CJZsbOife+s15P+xNKP9jEgRDvydpbRuUNmodL3uSyakeXfxzg+tJ
nRGt5Ms37cCOAIoWYqfuGarG8glVNIUHjkOFF4eUkROUnjIchEoRBaMMgKVFY8M4
5CrNr4wyeGdf5ZqXtrFH15JFJlBh5hXxfdN5AUT9nggG8mw/DZue678UPhUGzV+i
GwStpWh/72EBinlSNG0hqf0CAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 11155472884022822486842191613656645102
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-08 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-24 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Grand Island'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cannon Design, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'usegvlexpe001.cannondesign.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 676938534094874357590975461546895220277316188522194163023834306629564663309535035199411184806443200879138822854101419933922271980518918132366853027474122762577227026792471676860296562153711167353883053503611666457775260751221402735049551035993559072150963970621816895002865884462117619585536816549828513959718518082668455760309716562306761752798745358481837255869465941747415055572012921760376000225793613244762108446347043136864113266827391338117344665934343833264208816407486987075567802585091930368819869195468314412148942143307019459844485517792789907301241515730570957385909900632624527601378795676519579124455085809977868683261821795327635661738697503977185834014740778835233866304927147788305327027411775675660566628240993287703358386376463850448041507969187917706482133522153737079250225996031932194530260894651382349727979556668633561576568084763399828403436242268555711852075003752833685267881298054800073838949925310429547706518364869036637859487179604498322614795323571378948106442349760841699168649915649121929833289075816178766618448614025398212686680579044061421988500554447792644395273140194258825875581028802793656225036138856873872509426821457220863852297285449284763202799928465197102576724624290757586830321887741
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e358f29fb53bfbe86c5c70b7ee9d7a6e7100f37c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (201 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usegvlexpe001.cannondesign.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Expressway.cannondesign.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Expressway1.cannondesign.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Expressway2.cannondesign.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usegvlexpe.cannondesign.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collab-edge.cannondesign.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cannondesign.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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