*.pbskids.org
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0c:74:af:25:fb:2b:0e:25:30:8b:55:09:30:8d:8c:ac was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.pbskids.org
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:74:af:25:fb:2b:0e:25:30:8b:55:09:30:8d:8c:acSerial Number (int): 16556594815864470624419219267914665132
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: fd:d4:b8:f6:2a:60:c9:2d:74:e4:06:b7:a9:5a:66:24:c0:7e:fa:0e
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 2f:c3:88:bb:59:80:7c:cb:67:5b:30:cf:77:90:dc:df:ec:8b:3e:80
Fingerprint (sha256): 92:99:3c:04:74:7d:d0:59:ec:0b:7a:34:de:7e:d7:b1:c0:ac:3b:71:fa:a5:44:92:8c:be:fc:41:7b:a9:0a:78
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.pbskids.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.pbskids.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.pbskids.org
pbskids.org
pbskids.org
Other certificates including the domain name pbskids.org
(limited to 100 certificates)
*.pbskids.org
*.services.pbskids.org
help.pbskids.org
shop.pbskids.org
*.playground.pbskids.org
springroll-stage.pbskids.org
fdus-48.freshdesk.com
help.pbskids.org
*.playground.pbskids.org
pbskids.org
*.services.prod.pbskids.org
*.springroll-qa.pbskids.org
pbskids.org
pbskids.org
pbskids.org
springroll-stage.pbskids.org
*.prod.pbskids.org
pbskids.org
das.pbskids.org
measureup.pbskids.org
springroll-stage.pbskids.org
help.pbskids.org
shop.pbskids.org
help.pbskids.org
*.console.pbskids.org
*.services.pbskids.org
measureup.pbskids.org
fdus-48.freshdesk.com
*.springroll-qa.pbskids.org
*.playground.pbskids.org
measureup-playground.pbskids.org
*.services.preprod.pbskids.org
pbskids.org
help.pbskids.org
secure.shop.pbskids.org
*.preprod.pbskids.org
shop.pbskids.org
pbskids.org
*.prod.pbskids.org
*.shop.pbskids.org
*.shop.pbskids.org
shop.pbskids.org
*.playground.pbskids.org
shop.pbskids.org
help.pbskids.org
study.supervision.pbskids.org
*.services.pbskids.org
*.preprod.pbskids.org
*.playground.pbskids.org
pbskids.org
livestream.pbskids.org
pbskids.org
help.pbskids.org
*.preprod.pbskids.org
pbskids.org
*.prod.pbskids.org
pbskids.org
help.pbskids.org
pbskids.org
image.pbs.org
pbskids.org
pbskids.org
livestream.pbskids.org
help.pbskids.org
qoe.pbskids.org
pbskids.org
*.prod.pbskids.org
help.pbskids.org
help.pbskids.org
help.pbskids.org
*.preprod.pbskids.org
help.pbskids.org
*.pbskids.org
pbskids.org
*.prod.pbskids.org
study.supervision.pbskids.org
fdus-48.freshdesk.com
pbskids.org
teach.pbskids.org
live.pbskids.org
jenkins.springroll.pbskids.org
*.playground.pbskids.org
pbskids.org
pbskids.org
*.pbs-kids-playground.pbskids.org
supervision.pbskids.org
*.services.pbskids.org
pbskids.org
help.pbskids.org
*.playground.pbskids.org
pbskids.org
livestream.pbskids.org
help.pbskids.org
livestream.pbskids.org
help.pbskids.org
local.pbskids.org
*.preprod.pbskids.org
shop.pbskids.org
*.services.pbskids.org
help.pbskids.org
*.services.pbskids.org
help.pbskids.org
shop.pbskids.org
*.playground.pbskids.org
springroll-stage.pbskids.org
fdus-48.freshdesk.com
help.pbskids.org
*.playground.pbskids.org
pbskids.org
*.services.prod.pbskids.org
*.springroll-qa.pbskids.org
pbskids.org
pbskids.org
pbskids.org
springroll-stage.pbskids.org
*.prod.pbskids.org
pbskids.org
das.pbskids.org
measureup.pbskids.org
springroll-stage.pbskids.org
help.pbskids.org
shop.pbskids.org
help.pbskids.org
*.console.pbskids.org
*.services.pbskids.org
measureup.pbskids.org
fdus-48.freshdesk.com
*.springroll-qa.pbskids.org
*.playground.pbskids.org
measureup-playground.pbskids.org
*.services.preprod.pbskids.org
pbskids.org
help.pbskids.org
secure.shop.pbskids.org
*.preprod.pbskids.org
shop.pbskids.org
pbskids.org
*.prod.pbskids.org
*.shop.pbskids.org
*.shop.pbskids.org
shop.pbskids.org
*.playground.pbskids.org
shop.pbskids.org
help.pbskids.org
study.supervision.pbskids.org
*.services.pbskids.org
*.preprod.pbskids.org
*.playground.pbskids.org
pbskids.org
livestream.pbskids.org
pbskids.org
help.pbskids.org
*.preprod.pbskids.org
pbskids.org
*.prod.pbskids.org
pbskids.org
help.pbskids.org
pbskids.org
image.pbs.org
pbskids.org
pbskids.org
livestream.pbskids.org
help.pbskids.org
qoe.pbskids.org
pbskids.org
*.prod.pbskids.org
help.pbskids.org
help.pbskids.org
help.pbskids.org
*.preprod.pbskids.org
help.pbskids.org
*.pbskids.org
pbskids.org
*.prod.pbskids.org
study.supervision.pbskids.org
fdus-48.freshdesk.com
pbskids.org
teach.pbskids.org
live.pbskids.org
jenkins.springroll.pbskids.org
*.playground.pbskids.org
pbskids.org
pbskids.org
*.pbs-kids-playground.pbskids.org
supervision.pbskids.org
*.services.pbskids.org
pbskids.org
help.pbskids.org
*.playground.pbskids.org
pbskids.org
livestream.pbskids.org
help.pbskids.org
livestream.pbskids.org
help.pbskids.org
local.pbskids.org
*.preprod.pbskids.org
shop.pbskids.org
*.services.pbskids.org
help.pbskids.org
Certificate
The complete raw certificate details for *.pbskids.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF1TCCBL2gAwIBAgIQDHSvJfsrDiUwi1UJMI2MrDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIyMTEwMzAwMDAwMFoXDTIzMTIwMjIzNTk1OVowGDEW MBQGA1UEAwwNKi5wYnNraWRzLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAMrIcY/auoX3phnqxEXQJ4VK9vFeBmbO2c4WNX10ezerYjBxYCVOguwv 1f3EAYJpPuyIFyZe3ucPSci8bHocZTWFRXB61FkYgVsGTv+yb6nIcDGPR1JsDufW BjpRMgyfslgrq1u4HiNfOF30WsXEbWsPHZRg8BRaHXX3NVxyfjV2JE/S9ztwB11h mnc+RMNkG7TM4AaldTYvoEGKOXlV7anLzSkeIRLI/rWo0MOVKYZYzcgw4OOxkJJA yV8Bpty/B0psCjIY6JlMBi8Tya14UdA08+yIg36KUWwzg5nb5i0a2vxxk3+np9Xe rv5zQWwA+OTvYA5kHqTGYP2sFI1gvdsCAwEAAaOCAvUwggLxMB8GA1UdIwQYMBaA FMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBT91Lj2KmDJLXTkBrepWmYk wH76DjAlBgNVHREEHjAcgg0qLnBic2tpZHMub3JnggtwYnNraWRzLm9yZzAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1Ud HwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3Iy bTAyLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYI KwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2Bggr BgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIu Y2VyMAwGA1UdEwEB/wQCMAAwggGABgorBgEEAdZ5AgQCBIIBcASCAWwBagB3AOg+ 0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABhD5PTjEAAAQDAEgwRgIh AM6JMMId01o+Nuuej7L/ib7DH/wJmzMr87612Ty97BOkAiEAo2VSA3TRHXGVZnW4 5niLxthuZ+l4+alhjo5H8a3Sg50AdwCzc3cH4YRQ+GOG1gWp3BEJSnktsWcMC4fc 8AMOeTalmgAAAYQ+T05MAAAEAwBIMEYCIQD11HCIYCCH37JJyhlVMk420+VS9tfN 8pmccjscSDfHRgIhAP/P98j+aRog80O00/NZWe6IGrfn3laf/Dn0Zq6MsjJeAHYA tz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGEPk9OIAAABAMARzBF AiB3FBuCOwI/iuIG6onYeyjQGrSQ8u1GbKIj8p0tZAramAIhANB/m9XFaZreQ2uz 6gIGV+T0yX+Qpz3QDtHjgnYEEPIMMA0GCSqGSIb3DQEBCwUAA4IBAQAJNyLQbqtQ yNSYSLTRQ7BnTcjV0MAljK2QHAexN+tTcY7cSVyTyW1I3i2fuVsa63zh2BPWpzBt hsq4XvnSS1cxc9RTYINaMyzM8R2twjGIfE28/KkHSz/himqKatk/9ZtNShKKaKgw safRvOu2cAE09FfQSlbPZdN0uA/0cPlxPQI7gIb0g2RaR+w6ZfSIu11Luv5EGMaS Yqu3jX9N29vi4kLS6rykbk21bC7JWDgbbJ9pun4SWKU+/JJH3SAYR+9/9WzraDMk BYd/qIFdbCFFRmg9PS2/O9eG5SeWR/ojj43bdO+ixe1ze77zBmxrMw0Aur+WanNU vNMCFZqwe8Dh -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyshxj9q6hfemGerERdAn hUr28V4GZs7ZzhY1fXR7N6tiMHFgJU6C7C/V/cQBgmk+7IgXJl7e5w9JyLxsehxl NYVFcHrUWRiBWwZO/7JvqchwMY9HUmwO59YGOlEyDJ+yWCurW7geI184XfRaxcRt aw8dlGDwFFoddfc1XHJ+NXYkT9L3O3AHXWGadz5Ew2QbtMzgBqV1Ni+gQYo5eVXt qcvNKR4hEsj+tajQw5UphljNyDDg47GQkkDJXwGm3L8HSmwKMhjomUwGLxPJrXhR 0DTz7IiDfopRbDODmdvmLRra/HGTf6en1d6u/nNBbAD45O9gDmQepMZg/awUjWC9 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16556594815864470624419219267914665132 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-11-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.pbskids.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25598980026849532069105011639395966489086620815746900994759323132322079487230791033936653368280281004839597385623291501446099306785370554543275619858740169659662167677426745649811200378704708079335944693562121251586425097104921894984499503930121805368566786080369359360387647328642119081373202692364690679275812993330916355739274158992442896723078498535037564046441376565660969167614851205482710730981040856528793979394361060231141481812086360834167549994354283920253615621403361893914861580872204658265594735235597895099039124700064340882867921927656298904226132479538666093025986371637650387555135575079761131650523 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fdd4b8f62a60c92d74e406b7a95a6624c07efa0e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pbskids.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pbskids.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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