dsmaster01.internalsecure.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 08:93:47:0b:b0:4f:08:0e:f9:3d:9e:64:54:49:1d:79 was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=dsmaster01.internalsecure.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 08:93:47:0b:b0:4f:08:0e:f9:3d:9e:64:54:49:1d:79Serial Number (int): 11398532581640498493584506058692959609
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 31:cf:f4:ea:66:a2:b7:1e:98:f6:69:5d:6a:2e:aa:3f:70:80:14:54
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 80:c9:25:df:55:c3:14:29:a4:d4:4b:c2:00:ac:33:75:57:42:22:4b
Fingerprint (sha256): 74:f4:5e:38:8c:c9:7d:94:c5:2a:5a:fd:81:82:05:6f:52:54:dc:74:3f:23:84:af:85:1f:2a:60:80:76:23:39
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate dsmaster01.internalsecure.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dsmaster01.internalsecure.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dsmaster01.internalsecure.com
jenkins-ds01.internalsecure.com
heldsmaster1.fi.f-secure.com
dsmaster01.eu-west-1.ele-df.fsapi.com
jenkins-ds01.internalsecure.com
heldsmaster1.fi.f-secure.com
dsmaster01.eu-west-1.ele-df.fsapi.com
Other certificates including the domain name internalsecure.com
(limited to 100 certificates)
ulmaster01.internalsecure.com
jenkins-elements02.internalsecure.com
lnxmaster02.internalsecure.com
lardmaster01.internalsecure.com
ocmaster01.internalsecure.com
platmaster01.internalsecure.com
coremaster01.internalsecure.com
itrdmaster01.internalsecure.com
monitoring.sc.internalsecure.com
ertmaster01.internalsecure.com
sonar-premium.fi.f-secure.com
jenkins-staging.internalsecure.com
psbmaster01.internalsecure.com
artifactory-stg.f-secure.com
eppmaster01.internalsecure.com
eppmaster01.internalsecure.com
artifactory.f-secure.com
rdomaster01.internalsecure.com
stash-stg.fi.f-secure.com
rdomaster02.internalsecure.com
cccp01.internalsecure.com
jenkins-wongki-test.internalsecure.com
radarmaster01.internalsecure.com
itrdmaster01.internalsecure.com
rdcmaster01.internalsecure.com
phishdmaster01.internalsecure.com
labsmaster03.internalsecure.com
dsmaster01.internalsecure.com
sammaster01.internalsecure.com
elementsmaster02.internalsecure.com
cccpmaster01.internalsecure.com
elementsmaster01.internalsecure.com
artifactory.f-secure.com
drrdmaster02.internalsecure.com
monitoring.sc.internalsecure.com
stash.f-secure.com
ertmaster01.internalsecure.com
labsmaster01.internalsecure.com
labsmaster02.internalsecure.com
artifactory-stg.f-secure.com
ccptmaster01.internalsecure.com
psbmaster02.internalsecure.com
lbsmaster01.internalsecure.com
jenkins-biz01.internalsecure.com
ltsmaster01.internalsecure.com
cssmaster01.internalsecure.com
docmaster01.internalsecure.com
monitoring.sc.internalsecure.com
prodmaster01.internalsecure.com
drrdmaster01.internalsecure.com
jenkins-elements02.internalsecure.com
lnxmaster02.internalsecure.com
lardmaster01.internalsecure.com
ocmaster01.internalsecure.com
platmaster01.internalsecure.com
coremaster01.internalsecure.com
itrdmaster01.internalsecure.com
monitoring.sc.internalsecure.com
ertmaster01.internalsecure.com
sonar-premium.fi.f-secure.com
jenkins-staging.internalsecure.com
psbmaster01.internalsecure.com
artifactory-stg.f-secure.com
eppmaster01.internalsecure.com
eppmaster01.internalsecure.com
artifactory.f-secure.com
rdomaster01.internalsecure.com
stash-stg.fi.f-secure.com
rdomaster02.internalsecure.com
cccp01.internalsecure.com
jenkins-wongki-test.internalsecure.com
radarmaster01.internalsecure.com
itrdmaster01.internalsecure.com
rdcmaster01.internalsecure.com
phishdmaster01.internalsecure.com
labsmaster03.internalsecure.com
dsmaster01.internalsecure.com
sammaster01.internalsecure.com
elementsmaster02.internalsecure.com
cccpmaster01.internalsecure.com
elementsmaster01.internalsecure.com
artifactory.f-secure.com
drrdmaster02.internalsecure.com
monitoring.sc.internalsecure.com
stash.f-secure.com
ertmaster01.internalsecure.com
labsmaster01.internalsecure.com
labsmaster02.internalsecure.com
artifactory-stg.f-secure.com
ccptmaster01.internalsecure.com
psbmaster02.internalsecure.com
lbsmaster01.internalsecure.com
jenkins-biz01.internalsecure.com
ltsmaster01.internalsecure.com
cssmaster01.internalsecure.com
docmaster01.internalsecure.com
monitoring.sc.internalsecure.com
prodmaster01.internalsecure.com
drrdmaster01.internalsecure.com
Certificate
The complete raw certificate details for dsmaster01.internalsecure.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIQCJNHC7BPCA75PZ5kVEkdeTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIyMDAwMDAwMFoXDTI1MDExNzIzNTk1OVowKDEm MCQGA1UEAxMdZHNtYXN0ZXIwMS5pbnRlcm5hbHNlY3VyZS5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQC81luZ7D6mKK0f0rEmmN8tEN5PbIsi6AMZ xabLAxG7xi87NlfjHT8b30dzw8wjKQIS1ZVIK5ihUYFGok2L8h29amhprxzuuU4F o5zSuoEmBERveASvhNZ1ZNgIIgvLrGpMVCJap4R+KaWWy9qVN2fUev7RgzFedqB5 1KkCsWRds5ibBAPPrFI1AE2ecjp4Ju10zCnvT8alb2Q3Sq2dqubQo/NOeKOvh9Q7 t7Uff7VmQJbna/ZcINGATsDjw7MnMESNVww09uXwpC5Xh4PtNiFDJo01RW93I6eT d76rYGcF/zpSONmub4mUFoJG9BpponYaVfTlRGdUJoM9CxVV+3dtAgMBAAGjggHy MIIB7jAfBgNVHSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQU Mc/06maitx6Y9mldai6qP3CAFFQwgZAGA1UdEQSBiDCBhYIdZHNtYXN0ZXIwMS5p bnRlcm5hbHNlY3VyZS5jb22CH2plbmtpbnMtZHMwMS5pbnRlcm5hbHNlY3VyZS5j b22CHGhlbGRzbWFzdGVyMS5maS5mLXNlY3VyZS5jb22CJWRzbWFzdGVyMDEuZXUt d2VzdC0xLmVsZS1kZi5mc2FwaS5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNV HR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFtYXpvbnRydXN0LmNvbS9y Mm0wMi5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2Nz cC5yMm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQu cjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMBAf8EAjAAMBMG CisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCfBNpyQn3SNcOR L647bUj2Y1wq44bngJW4o0WRmt4aiYwcY7xuq3P+EeAwMdLRRFY1E8RjdWxemMjr +MZvGwFKJBtNr9xJleI4Y38jcNcSfEElxiPCVlF8hrxFqe4vBZ3rgCfZoWu3mCBW k0g+Djwb+meTv8uXcY5n7hin/iy+kuYaEGMP6W2l2sq8GQmJ4EZcecotLh3MW1TT JsJNIn/eCiYqH68pcOrwXJB8jZ50D8Ha0nJXbELAJbd/1o9yeVqgOZBOnoZyyUaw sPwVJHN//YWhuFdPGeTCHwa64kenAXOiSMEliC4j5meY/0auWqSQYm0zlJUQw065 dSFateeW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNZbmew+piitH9KxJpjf LRDeT2yLIugDGcWmywMRu8YvOzZX4x0/G99Hc8PMIykCEtWVSCuYoVGBRqJNi/Id vWpoaa8c7rlOBaOc0rqBJgREb3gEr4TWdWTYCCILy6xqTFQiWqeEfimllsvalTdn 1Hr+0YMxXnagedSpArFkXbOYmwQDz6xSNQBNnnI6eCbtdMwp70/GpW9kN0qtnarm 0KPzTnijr4fUO7e1H3+1ZkCW52v2XCDRgE7A48OzJzBEjVcMNPbl8KQuV4eD7TYh QyaNNUVvdyOnk3e+q2BnBf86UjjZrm+JlBaCRvQaaaJ2GlX05URnVCaDPQsVVft3 bQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11398532581640498493584506058692959609 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dsmaster01.internalsecure.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23838505113025596313067993280502628557037812755363032281167045074639256446233473316297381250809472206156164847881432926370298145877855490441711632880655538040155724049297320572251764848007095426380123311293556725373488287725507046120524046288265208383328095895657465750589059538643347691689745691100260900280297959011355563877506530336213324635891407938389768092893076108561166531422780798575021144358501665797822604102573219298590259878878486014994261504034409230553921543312871578758703540513263653234640234792230166287303312444275946146965982097905264741985621743688616976863759961938467352918269633960954260322157 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 31cff4ea66a2b71e98f6695d6a2eaa3f70801454 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (136 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dsmaster01.internalsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jenkins-ds01.internalsecure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heldsmaster1.fi.f-secure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dsmaster01.eu-west-1.ele-df.fsapi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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