digo.bsn.com.my
- Bank Simpanan Nasional -
Issued by GlobalSign RSA OV SSL CA 2018
About this certificate
This digital certificate with serial number 63:28:79:24:f7:66:89:b2:a3:00:36:a0 was issued on by GlobalSign nv-sa.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Bank Simpanan Nasional
Organization:
Bank Simpanan Nasional
State / Province:
Kuala Lumpur
Locality: Kuala Lumpur
Country: MY
Locality: Kuala Lumpur
Country: MY
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate will expire on
Certificate Details
Serial Number (hex): 63:28:79:24:f7:66:89:b2:a3:00:36:a0Serial Number (int): 30687945093352048426680858272
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: 32:bb:52:0c:b3:8c:2c:97:03:48:14:9b:86:d4:4d:ca:f1:a8:ed:cf
AuthorityKeyId: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb
Fingerprint (sha1): 1a:f3:3d:57:53:fd:d5:d4:f1:60:23:30:84:54:13:96:10:14:48:0e
Fingerprint (sha256): 72:55:3c:7a:a2:af:80:95:c3:58:e8:ca:00:7a:c5:46:a0:1c:dd:14:70:a1:2d:b4:53:52:9a:9d:48:be:03:13
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018Check the revocation status for certificate digo.bsn.com.my
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for digo.bsn.com.my
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
digo.bsn.com.my
Other certificates including the domain name bsn.com.my
(limited to 100 certificates)
hr4u.bsn.com.my
fpx.bsn.com.my
rms.bsn.com.my
*.bsn.com.my
bi.bsn.com.my
boardpactest.bsn.com.my
www.bsn.com.my
salespro.bsn.com.my
hr4u.bsn.com.my
www.bsn.com.my
legal.bsn.com.my
*.bsn.com.my
legal.bsn.com.my
elearn.bsn.com.my
secureconnect.bsn.com.my
boardpac.bsn.com.my
smtp.bsn.com.my
*.bsn.com.my
bi.bsn.com.my
*.bsn.com.my
www.bsn.com.my
boardpac.bsn.com.my
crp-core-prod.bsn.com.my
boardpac.bsn.com.my
ecs.bsn.com.my
smtp.bsn.com.my
elearn.bsn.com.my
crp-core-prod.bsn.com.my
digo.bsn.com.my
hr4u.bsn.com.my
hr4u.bsn.com.my
ecs.bsn.com.my
www.bsn.com.my
itcareportal.bsn.com.my
crp-core-prod.bsn.com.my
fwd.bsn.com.my
legal.bsn.com.my
hr4u.bsn.com.my
salespro.bsn.com.my
bsnteams.bsn.com.my
elearn.bsn.com.my
boardpac.bsn.com.my
mobile.bsn.com.my
legal.bsn.com.my
boardpactest.bsn.com.my
rms.bsn.com.my
crp-core-prod.bsn.com.my
bi.bsn.com.my
ecms.bsn.com.my
ecs.bsn.com.my
*.bsn.com.my
elearn.bsn.com.my
mobile.bsn.com.my
basys.bsn.com.my
secureconnect.bsn.com.my
itcareportal.bsn.com.my
gini.bsn.com.my
mobile.bsn.com.my
smtp.bsn.com.my
www.bsn.com.my
boardpactest.bsn.com.my
banca.bsn.com.my
emm.bsn.com.my
ecs.bsn.com.my
legal.bsn.com.my
fpx.bsn.com.my
rms.bsn.com.my
*.bsn.com.my
bi.bsn.com.my
boardpactest.bsn.com.my
www.bsn.com.my
salespro.bsn.com.my
hr4u.bsn.com.my
www.bsn.com.my
legal.bsn.com.my
*.bsn.com.my
legal.bsn.com.my
elearn.bsn.com.my
secureconnect.bsn.com.my
boardpac.bsn.com.my
smtp.bsn.com.my
*.bsn.com.my
bi.bsn.com.my
*.bsn.com.my
www.bsn.com.my
boardpac.bsn.com.my
crp-core-prod.bsn.com.my
boardpac.bsn.com.my
ecs.bsn.com.my
smtp.bsn.com.my
elearn.bsn.com.my
crp-core-prod.bsn.com.my
digo.bsn.com.my
hr4u.bsn.com.my
hr4u.bsn.com.my
ecs.bsn.com.my
www.bsn.com.my
itcareportal.bsn.com.my
crp-core-prod.bsn.com.my
fwd.bsn.com.my
legal.bsn.com.my
hr4u.bsn.com.my
salespro.bsn.com.my
bsnteams.bsn.com.my
elearn.bsn.com.my
boardpac.bsn.com.my
mobile.bsn.com.my
legal.bsn.com.my
boardpactest.bsn.com.my
rms.bsn.com.my
crp-core-prod.bsn.com.my
bi.bsn.com.my
ecms.bsn.com.my
ecs.bsn.com.my
*.bsn.com.my
elearn.bsn.com.my
mobile.bsn.com.my
basys.bsn.com.my
secureconnect.bsn.com.my
itcareportal.bsn.com.my
gini.bsn.com.my
mobile.bsn.com.my
smtp.bsn.com.my
www.bsn.com.my
boardpactest.bsn.com.my
banca.bsn.com.my
emm.bsn.com.my
ecs.bsn.com.my
legal.bsn.com.my
Certificate
The complete raw certificate details for digo.bsn.com.my in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIMYyh5JPdmibKjADagMA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0yNDAxMDgwOTExMDdaFw0y NTAyMDgwOTExMDZaMHYxCzAJBgNVBAYTAk1ZMRUwEwYDVQQIEwxLdWFsYSBMdW1w dXIxFTATBgNVBAcTDEt1YWxhIEx1bXB1cjEfMB0GA1UEChMWQmFuayBTaW1wYW5h biBOYXNpb25hbDEYMBYGA1UEAxMPZGlnby5ic24uY29tLm15MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojdqzasCaChiqxELKKx65UNRhcLtYR7ucQB6 qQUGFMJ7ha2d0b7Rf4whOnWrRdNB6VLTusLNGUx7qBDNfE8tuf8brAGSmLTQig/k tE6KU4vQhfQuZhA9RAHqHzqRFaLPrLB9v2hZGT/PFEb8MDTYzYFYRlOepx8WML9Z qSG9oQ1k5h75/EkthwaVBAhXNktl3yPLJ4FEr7XSL1k+m31aNsGC6i3S/EsOfPe6 3sUS2ricV0HcRXcDAvwA7V5GdWlO6M538o/bS6IBk+P6f1DIyycY12BIbSDE0WYF rpQS6gt/xHU1fe/aYZWJ68dBXbgdoF2v6KqX+ysGLR1m6+9f1QIDAQABo4IBmzCC AZcwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwgY4GCCsGAQUFBwEBBIGB MH8wRAYIKwYBBQUHMAKGOGh0dHA6Ly9zZWN1cmUuZ2xvYmFsc2lnbi5jb20vY2Fj ZXJ0L2dzcnNhb3Zzc2xjYTIwMTguY3J0MDcGCCsGAQUFBzABhitodHRwOi8vb2Nz cC5nbG9iYWxzaWduLmNvbS9nc3JzYW92c3NsY2EyMDE4MFYGA1UdIARPME0wQQYJ KwYBBAGgMgEUMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3Lmdsb2JhbHNpZ24u Y29tL3JlcG9zaXRvcnkvMAgGBmeBDAECAjAaBgNVHREEEzARgg9kaWdvLmJzbi5j b20ubXkwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQYMBaA FPjvf/LNeGeo3m+PJI2I8YcDArPrMB0GA1UdDgQWBBQyu1IMs4wslwNIFJuG1E3K 8ajtzzATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdW85 PuLPDJbpN1G29H/fsdL4cnKU+SMonmiUacR/Ta3mX3xMEAPEloLWL98WMo/Fw7je MO/kmQ3WALn8ZIPMDGI61reVGf/vPZLnfHb2fjkaO9cOM+oKRuZz5no/5SohOSzk 8LJdAA0yxRO7susqR8bfZcACoNI/U0u9owqy63SVukmlrBj/w0Vf3/+9lC6YZdmC QEql6F8mw66N7v1JK1k4f9T+Q8HuW2TzbEXu5Zvq8q0l6yuYvF1qvA8s0ALW8SRm 93sKADbrdqrt3l7l4vy5bBMptqaEfhxUE0SgzFeBBaHG4qGs1DXsUYDfAUdNAnyZ An4or9SCGx9De/Kwww== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojdqzasCaChiqxELKKx6 5UNRhcLtYR7ucQB6qQUGFMJ7ha2d0b7Rf4whOnWrRdNB6VLTusLNGUx7qBDNfE8t uf8brAGSmLTQig/ktE6KU4vQhfQuZhA9RAHqHzqRFaLPrLB9v2hZGT/PFEb8MDTY zYFYRlOepx8WML9ZqSG9oQ1k5h75/EkthwaVBAhXNktl3yPLJ4FEr7XSL1k+m31a NsGC6i3S/EsOfPe63sUS2ricV0HcRXcDAvwA7V5GdWlO6M538o/bS6IBk+P6f1DI yycY12BIbSDE0WYFrpQS6gt/xHU1fe/aYZWJ68dBXbgdoF2v6KqX+ysGLR1m6+9f 1QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 30687945093352048426680858272 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-08 09:11:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-08 09:11:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MY' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kuala Lumpur' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kuala Lumpur' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bank Simpanan Nasional' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'digo.bsn.com.my' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20477932644688904239844319754372924360002674905092498879638883684364728430746229169670146363010176947178685030239634293430319468218119280261505938365599823780257460187610919014489386152480191372457675291089981299359003594623415734994065515461048367522410288804388200858272944785469393581800607406208118628185407465284817283389388680623797548812586563756641688337904481437839500729084205352900565621781924200403949953006752385340321551648226155163502346424732848128404484627841352999699066885527998075386733604569742184498598294472797993246767342939502571835645615459216305145452738950812943645774628037243898931666901 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digo.bsn.com.my' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 32bb520cb38c2c970348149b86d44dcaf1a8edcf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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