seg.banestes.com.br
Issued by RapidSSL TLS RSA CA G1
About this certificate
This digital certificate with serial number 03:e2:88:5a:cc:63:62:bd:1d:c9:92:72:6b:20:ab:55 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=seg.banestes.com.br
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:e2:88:5a:cc:63:62:bd:1d:c9:92:72:6b:20:ab:55Serial Number (int): 5163908678879433513919954778402630485
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 35:48:1c:f4:d3:79:69:43:46:3e:42:57:c8:d4:35:c9:19:fe:6c:e2
AuthorityKeyId: 0c:db:6c:82:49:0f:4a:67:0a:b8:14:ee:7a:c4:48:52:88:eb:56:38
Fingerprint (sha1): 77:81:2c:fc:93:bc:ec:bb:69:12:0c:88:59:0c:96:61:d9:e3:2b:45
Fingerprint (sha256): a0:8b:fc:40:6d:58:92:f9:10:a2:3e:a6:d5:40:e2:87:a0:ad:09:e0:e4:16:7e:8c:51:71:c9:37:f8:6f:d1:73
Issuing Certificate URL: http://cacerts.rapidssl.com/RapidSSLTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.rapidssl.comCRL Distribution Point: http://cdp.rapidssl.com/RapidSSLTLSRSACAG1.crl
Check the revocation status for certificate seg.banestes.com.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for seg.banestes.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
seg.banestes.com.br
www.seg.banestes.com.br
www.seg.banestes.com.br
Other certificates including the domain name banestes.com.br
(limited to 100 certificates)
portalinternet.banestes.com.br
www.banestes.com.br
mail.banestes.com.br
*.banestes.com.br
www.banestes.com.br
gerenciador.banestes.com.br
av.banestes.com.br
portal.pix.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
av.u.banestes.com.br
seg.banestes.com.br
portalinternet.banestes.com.br
svcpiprapl01.banestes.com.br
banestescorp.banestes.com.br
www.banestes.com.br
seg.banestes.com.br
ws.u.banestes.com.br
wwws.banestes.com.br
wwws.u.banestes.com.br
wwws.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
banestescorp.banestes.com.br
misp.banestes.com.br
portalinternet.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
misp.h.banestes.com.br
ws.banestes.com.br
www.banestes.com.br
*.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
portalinternet.banestes.com.br
depositojudicial.banestes.com.br
wwws.banestes.com.br
seg.banestes.com.br
chat.banestes.com.br
wwws.banestes.com.br
ws.h.banestes.com.br
seg.banestes.com.br
www.banestes.com.br
portalinternet.banestes.com.br
banestescorp.banestes.com.br
depositojudicial.h.banestes.com.br
wwws.banestes.com.br
*.banestes.com.br
portalinternet.banestes.com.br
sisjur.banestes.com.br
wwws.banestes.com.br
chat.banestes.com.br
*.banestes.com.br
seg.banestes.com.br
www.banestes.com.br
mail.banestes.com.br
*.banestes.com.br
www.banestes.com.br
gerenciador.banestes.com.br
av.banestes.com.br
portal.pix.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
av.u.banestes.com.br
seg.banestes.com.br
portalinternet.banestes.com.br
svcpiprapl01.banestes.com.br
banestescorp.banestes.com.br
www.banestes.com.br
seg.banestes.com.br
ws.u.banestes.com.br
wwws.banestes.com.br
wwws.u.banestes.com.br
wwws.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
banestescorp.banestes.com.br
misp.banestes.com.br
portalinternet.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
misp.h.banestes.com.br
ws.banestes.com.br
www.banestes.com.br
*.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
portalinternet.banestes.com.br
depositojudicial.banestes.com.br
wwws.banestes.com.br
seg.banestes.com.br
chat.banestes.com.br
wwws.banestes.com.br
ws.h.banestes.com.br
seg.banestes.com.br
www.banestes.com.br
portalinternet.banestes.com.br
banestescorp.banestes.com.br
depositojudicial.h.banestes.com.br
wwws.banestes.com.br
*.banestes.com.br
portalinternet.banestes.com.br
sisjur.banestes.com.br
wwws.banestes.com.br
chat.banestes.com.br
*.banestes.com.br
seg.banestes.com.br
Certificate
The complete raw certificate details for seg.banestes.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIQA+KIWsxjYr0dyZJyayCrVTANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZSYXBpZFNTTCBUTFMgUlNBIENBIEcx MB4XDTIzMTIxMTAwMDAwMFoXDTI1MDEwMjIzNTk1OVowHjEcMBoGA1UEAxMTc2Vn LmJhbmVzdGVzLmNvbS5icjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMTMJ7O4n/T6YhvhOJKQZJBQvtryObUKcjekwENnk0OTLeCqYY8QpV3OHrfVQ6jy bLupRQlfomJcD5qmEk8Eu4sQRi3ji1xRVGg6ScNcRg6Fb7PimwnlO8iTQFbsVJO3 TdEJmK3cgjOdoiIPvUhPd0mnIKVm5EEKO4PVD083rdpaWHS6dQV/sdlEHACDtIky Ep6P5tt+Evcml6IY/d4dX88HImMk1DkP57igLDr1jGHZpPF+JOGAeKDSQNOIGlbW 36xBHs9ih4pI1MeUfkiG5oSkrXf1uXbJdAj+yl0e8FJXiXarIfhDbkU4RxyTYxaB yBnlqUrsrs1m/lhxlxyQinsCAwEAAaOCAcgwggHEMB8GA1UdIwQYMBaAFAzbbIJJ D0pnCrgU7nrESFKI61Y4MB0GA1UdDgQWBBQ1SBz003lpQ0Y+QlfI1DXJGf5s4jA3 BgNVHREEMDAughNzZWcuYmFuZXN0ZXMuY29tLmJyghd3d3cuc2VnLmJhbmVzdGVz LmNvbS5icjA+BgNVHSAENzA1MDMGBmeBDAECATApMCcGCCsGAQUFBwIBFhtodHRw Oi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8v Y2RwLnJhcGlkc3NsLmNvbS9SYXBpZFNTTFRMU1JTQUNBRzEuY3JsMHYGCCsGAQUF BwEBBGowaDAmBggrBgEFBQcwAYYaaHR0cDovL3N0YXR1cy5yYXBpZHNzbC5jb20w PgYIKwYBBQUHMAKGMmh0dHA6Ly9jYWNlcnRzLnJhcGlkc3NsLmNvbS9SYXBpZFNT TFRMU1JTQUNBRzEuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQC BQAwDQYJKoZIhvcNAQELBQADggEBADZovgVdJJ51+pGGqgJQKDnx1gtGt0Dcvnmm swWwSOnHhfV6KAeLhfb9JcUDHA6WxG69khg6A6mOEbTvpYogP6CHp8YntvCDPKTC uiwJcoMcgIoQNX24I4FEOB5yNiwLHpveKIm3PXc9keT0cKzASjwH5mGKandbK3Di ATviCi38BWbAWDF8t3ag1WDKaiXZytpC1p77pLDvUHYoyn4nO0k6NbVjpItmqza1 jYvhH9jWFKVzy+49AcIVRsjRA4KKrhbRETZsC+zKjm9JoSxyE680qmL0QZeZlJhJ Vv+FBXpYKz9UvL/IhRWoFFMZulrXChjUOAm+GFl17fYAt4WceyE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMwns7if9PpiG+E4kpBk kFC+2vI5tQpyN6TAQ2eTQ5Mt4KphjxClXc4et9VDqPJsu6lFCV+iYlwPmqYSTwS7 ixBGLeOLXFFUaDpJw1xGDoVvs+KbCeU7yJNAVuxUk7dN0QmYrdyCM52iIg+9SE93 SacgpWbkQQo7g9UPTzet2lpYdLp1BX+x2UQcAIO0iTISno/m234S9yaXohj93h1f zwciYyTUOQ/nuKAsOvWMYdmk8X4k4YB4oNJA04gaVtbfrEEez2KHikjUx5R+SIbm hKStd/W5dsl0CP7KXR7wUleJdqsh+ENuRThHHJNjFoHIGeWpSuyuzWb+WHGXHJCK ewIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5163908678879433513919954778402630485 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'seg.banestes.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24843380398412543299249350714325776310894447656149852294681828320698666890389590753100901766088847073203403518652150840027806015480382708471923283863708746279337752328463866783270466401035843503523335904419447203009728565377154265485412343481272728400393879779939111757661858718049842679477384773986025379110631359776585319199082094277355465149269053299637924749755402278274794755126090695808301402884059354877130282301751248754591225084220219281725399931772643891751705941214412756046396511995027472847545243628374415540270749210985340020446680987879959618838741225618699881831945137703412481708387332903622656690811 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0cdb6c82490f4a670ab814ee7ac4485288eb5638 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 35481cf4d3796943463e4257c8d435c919fe6ce2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'seg.banestes.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.seg.banestes.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.rapidssl.com/RapidSSLTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.rapidssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.rapidssl.com/RapidSSLTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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