ui.epdns.edg.io
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 05:12:c0:b1:99:ab:08:5a:ce:41:d1:8c:e1:4b:85:e7 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ui.epdns.edg.io
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 05:12:c0:b1:99:ab:08:5a:ce:41:d1:8c:e1:4b:85:e7Serial Number (int): 6743509615964844679162853507946218983
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: c5:d1:0e:b9:8a:74:2b:6d:a4:78:85:6b:6c:56:27:df:00:b7:f3:94
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): f4:c4:c7:db:17:5c:97:97:00:bb:9b:08:71:f9:d8:06:aa:e1:6d:7c
Fingerprint (sha256): a0:aa:f5:2a:bc:a2:f5:3c:70:8c:6d:90:84:b8:70:ee:cf:ed:4b:e2:f0:6a:08:f8:cb:5a:82:0a:46:71:19:f7
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate ui.epdns.edg.io
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ui.epdns.edg.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ui.epdns.edg.io
Other certificates including the domain name edg.io
(limited to 100 certificates)
read.edg.io
edg.io
rum.edgio.net
*.epdns.edg.io
investors.edg.io
leapfrog-ssl-37.gcs-web.com
distro.prod.hermes.edg.io
it.edg.io
meet.edg.io
edg.io
dev.edg.io
ui.master-patch-4ac9.epdns.edg.io
it.edg.io
ui.dns-3849.epdns.edg.io
dev.edg.io
dev.edg.io
meet.edg.io
api.staging.loris.edg.io
edg.io
dev.edg.io
edg.io
edg.io
edg.io
dev.edg.io
dev.edg.io
staging.audit.edg.io
dev.edg.io
ui.update-logos.epdns.edg.io
edg.io
api.qa.hermes.edg.io
edg.io
edg.io
dev.edg.io
meet.edg.io
edg.io
edg.io
edg.io
api.stage.loris.edg.io
leapfrog-ssl-37.gcs-web.com
meet.edg.io
edg.io
edg.io
rum.edgio.net
dev.edg.io
ui.master-patch-4ac9.epdns.edg.io
dev.edg.io
status.edg.io
dev.edg.io
ui.dns-3849.epdns.edg.io
lessonlystorage.edg.io
leapfrog-ssl-37.gcs-web.com
dev.edg.io
meet.edg.io
dev.edg.io
ui.fix-issue-wrong-zone-and-missing-permissions.epdns.edg.io
edg.io
dev.edg.io
edg.io
dev.edg.io
stage.edg.io
edg.io
meet.edg.io
docs.edg.io
audit.edg.io
it.edg.io
edg.io
edg.io
distro.stage.hermes.edg.io
dev.edg.io
stage.loris.edg.io
dev.edg.io
investors.edg.io
ui.epdns.edg.io
ui.qa.epdns.edg.io
lessonlystorage.edg.io
dev.edg.io
leapfrog-ssl-37.gcs-web.com
edg.io
status.edg.io
rum.edgio.net
edg.io
docs.edg.io
ui.epdns.edg.io
edg.io
dev.edg.io
leapfrog-ssl-37.gcs-web.com
read.edg.io
edg.io
edg.io
edg.io
ui.dns-3849.epdns.edg.io
dev.edg.io
edg.io
meet.edg.io
dev.edg.io
*.epdns.edg.io
producer.prod.hermes.edg.io
leapfrog-ssl-37.gcs-web.com
api.prod.hermes.edg.io
edg.io
edg.io
rum.edgio.net
*.epdns.edg.io
investors.edg.io
leapfrog-ssl-37.gcs-web.com
distro.prod.hermes.edg.io
it.edg.io
meet.edg.io
edg.io
dev.edg.io
ui.master-patch-4ac9.epdns.edg.io
it.edg.io
ui.dns-3849.epdns.edg.io
dev.edg.io
dev.edg.io
meet.edg.io
api.staging.loris.edg.io
edg.io
dev.edg.io
edg.io
edg.io
edg.io
dev.edg.io
dev.edg.io
staging.audit.edg.io
dev.edg.io
ui.update-logos.epdns.edg.io
edg.io
api.qa.hermes.edg.io
edg.io
edg.io
dev.edg.io
meet.edg.io
edg.io
edg.io
edg.io
api.stage.loris.edg.io
leapfrog-ssl-37.gcs-web.com
meet.edg.io
edg.io
edg.io
rum.edgio.net
dev.edg.io
ui.master-patch-4ac9.epdns.edg.io
dev.edg.io
status.edg.io
dev.edg.io
ui.dns-3849.epdns.edg.io
lessonlystorage.edg.io
leapfrog-ssl-37.gcs-web.com
dev.edg.io
meet.edg.io
dev.edg.io
ui.fix-issue-wrong-zone-and-missing-permissions.epdns.edg.io
edg.io
dev.edg.io
edg.io
dev.edg.io
stage.edg.io
edg.io
meet.edg.io
docs.edg.io
audit.edg.io
it.edg.io
edg.io
edg.io
distro.stage.hermes.edg.io
dev.edg.io
stage.loris.edg.io
dev.edg.io
investors.edg.io
ui.epdns.edg.io
ui.qa.epdns.edg.io
lessonlystorage.edg.io
dev.edg.io
leapfrog-ssl-37.gcs-web.com
edg.io
status.edg.io
rum.edgio.net
edg.io
docs.edg.io
ui.epdns.edg.io
edg.io
dev.edg.io
leapfrog-ssl-37.gcs-web.com
read.edg.io
edg.io
edg.io
edg.io
ui.dns-3849.epdns.edg.io
dev.edg.io
edg.io
meet.edg.io
dev.edg.io
*.epdns.edg.io
producer.prod.hermes.edg.io
leapfrog-ssl-37.gcs-web.com
api.prod.hermes.edg.io
edg.io
Certificate
The complete raw certificate details for ui.epdns.edg.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIQBRLAsZmrCFrOQdGM4UuF5zANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIwNDAwMDAwMFoXDTI1MDEwMTIzNTk1OVowGjEY MBYGA1UEAxMPdWkuZXBkbnMuZWRnLmlvMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAvhH21kqXxZ3TDgZQBD3y58goWKi7MC23PPzXbmWYFgLYGAYcL1BV Q7EfnowVLwlec1yViBr+qs6dPCXlMn8KmEC7T8B+1pG5D8RFywg3dUbV4FLSHzX6 fN9ETlvwD2btR9CVSt7dXIpMPhOCYvBAnJs77M6Zwcl/Wg1rGOMjEfM/d/CL39OW JerDZROsgbBCUS00RxMviz/u/WBXYs/qnNTnPMo/7cQ7CKzIHYSldU3c8j8cVbXK iLRt9Ezh8SYhGB+1tjrOB4xDLSnwoGw6qiz2FNRFGhXPE6AkWFX1wV/9AnBovg6v L1v8OCutTX621uIHLgPLRllWO+yiFmHlrQIDAQABo4IC5jCCAuIwHwYDVR0jBBgw FoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFMXRDrmKdCttpHiFa2xW J98At/OUMBoGA1UdEQQTMBGCD3VpLmVwZG5zLmVkZy5pbzATBgNVHSAEDDAKMAgG BmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9u dHJ1c3QuY29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGG IWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYq aHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1Ud EwEB/wQCMAAwggF8BgorBgEEAdZ5AgQCBIIBbASCAWgBZgB1AM8RVu7VLnyv84db 2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABjDQWvcoAAAQDAEYwRAIgMaU3dcxf3yq0 IUyN3UO1x3OcNpiAonILxIlf0CF6ppsCIFLeONsJcJH/M0H2cEIblth9XknGukC7 uwoY/OtyTPuDAHYAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGM NBa9pAAABAMARzBFAiEAj46l3ZriK66bsIwmx0oSdyq93IBzxYDNvqbt5yv+fn0C IBZq/mqcBxQrJ6AqgUCFbzIg7VDCVkP1QJWerTssVTtaAHUAfVkeEuF4KnscYWd8 Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGMNBa9kwAABAMARjBEAiBY6xJt8Tr3ctpg i8lDFfVchiNGdkjku9doNs1dxT1vhAIgZ+EU25P+0WNGWVDxDRKp5z8wnVQL5VuX FkO0U9h0j20wDQYJKoZIhvcNAQELBQADggEBACxFZMEQ9UkY+oWf8+HMQdN3ZUl2 fwzMy8EkSgfdchyuDwLXbuql7narP21QjUJtWfPQ4vWBPXcw/Y1YojKCzJs0q6E2 GJtiS/sHZu5INgaMAWgGzPrTcWujFHl0f9O/nlhs/1c15nQG7e9GFTbaFkk2jxP/ DzIcrf9xD16jEJkF9vGGnNDK8lHss6qE7aki7vcvvXBJtsPlSTcYF9JlVurY4V9n WS8NwiiRRd/xuGrcEQjxP9DmSVqS1pK1NN5hD/1GEbkerWEPzT7jVedoov6/UqTD oJqn8RGvslmquDhU2hFbhD8U30AF8cobqJO2A/7k8ZH/hMu0gG5quxgNlgg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhH21kqXxZ3TDgZQBD3y 58goWKi7MC23PPzXbmWYFgLYGAYcL1BVQ7EfnowVLwlec1yViBr+qs6dPCXlMn8K mEC7T8B+1pG5D8RFywg3dUbV4FLSHzX6fN9ETlvwD2btR9CVSt7dXIpMPhOCYvBA nJs77M6Zwcl/Wg1rGOMjEfM/d/CL39OWJerDZROsgbBCUS00RxMviz/u/WBXYs/q nNTnPMo/7cQ7CKzIHYSldU3c8j8cVbXKiLRt9Ezh8SYhGB+1tjrOB4xDLSnwoGw6 qiz2FNRFGhXPE6AkWFX1wV/9AnBovg6vL1v8OCutTX621uIHLgPLRllWO+yiFmHl rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6743509615964844679162853507946218983 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ui.epdns.edg.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23994136424344153026457080672661132569957320685275106752358939579834825358607308205968411044413397721677996213074522513698819033901837145047277641367321370856607491560839612617414520938124972146328106732732977029016668756772477159667169964504247932819248696414858426872449431426070943707655875510124763645198818996128031750039777304886015681334707946654058654695782552316355937812822180998852822839537131737499375890954074796114399799200419496243520648614363148719821974321145227612966571438903942740386042303476826989891931030636106433560724383762471579929689789670649480558084877166446770465067674041288445581714861 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c5d10eb98a742b6da478856b6c5627df00b7f394 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ui.epdns.edg.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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