haynes.com
Issued by Amazon
About this certificate
This digital certificate with serial number 06:05:eb:86:5b:a3:b6:38:05:5d:bd:f8:ff:46:43:72 was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=haynes.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:05:eb:86:5b:a3:b6:38:05:5d:bd:f8:ff:46:43:72Serial Number (int): 8006106470193855735980170215021757298
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: df:e4:cc:cb:e0:63:44:08:f5:ed:94:67:08:1f:93:dd:58:79:a2:8c
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 22:59:e0:b8:10:a7:a2:7b:04:9c:c2:3b:18:a9:88:65:1c:5b:40:c7
Fingerprint (sha256): aa:e5:b2:e6:c7:02:75:6b:77:25:50:79:cc:f2:31:22:b7:58:d7:f0:e9:b9:84:c2:f0:cd:44:11:4d:d7:3a:8b
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate haynes.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for haynes.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
haynes.com
*.haynes.com
*.haynes.co.uk
haynes.co.uk
*.haynes.com
*.haynes.co.uk
haynes.co.uk
Other certificates including the domain name haynes.com
(limited to 100 certificates)
incapsula.com
incapsula.com
mail.haynes.com
incapsula.com
mail.haynes.com
incapsula.com
incapsula.com
incapsula.com
secure.haynes.com
haynes.com
incapsula.com
incapsula.com
secure.haynes.com
incapsula.com
www.haynes.com
mail.haynes.com
haynes.com
incapsula.com
incapsula.com
incapsula.com
*.haynes.com
au.haynes.com
incapsula.com
incapsula.com
incapsula.com
mail.haynes.com
reader.haynes.com
incapsula.com
incapsula.com
incapsula.com
dev.haynes.com
www.haynes.com
incapsula.com
au.haynes.com
www.haynes.com
mail.haynes.com
incapsula.com
reader-qa.haynes.com
incapsula.com
incapsula.com
haynesallaccess.com
incapsula.com
secure.haynes.com
incapsula.com
haynesallaccess.com
haynesallaccess.com
incapsula.com
incapsula.com
haynes.com
haynes.com
incapsula.com
qa.haynesmanualsallaccess.co.uk
au.haynes.com
haynesallaccess.com
incapsula.com
haynesallaccess.com
haynesallaccess.com
haynes.com
haynes.com
incapsula.com
reader.haynes.com
incapsula.com
haynes.com
incapsula.com
incapsula.com
mail.haynes.com
incapsula.com
www.haynesmanualsallaccess.co.uk
incapsula.com
incapsula.com
incapsula.com
incapsula.com
haynes.com
www.haynes.com
au.haynes.com
qa.haynesmanualsallaccess.co.uk
incapsula.com
incapsula.com
incapsula.com
haynesallaccess.com
incapsula.com
au.haynes.com
qa.haynesmanualsallaccess.com
incapsula.com
incapsula.com
incapsula.com
haynes.com
incapsula.com
reader-qa.haynes.com
incapsula.com
*.haynes.com
qa.haynesmanualsallaccess.co.uk
incapsula.com
*.haynes.com
au.haynes.com
incapsula.com
incapsula.com
reader-qa.haynes.com
mail.haynes.com
incapsula.com
incapsula.com
mail.haynes.com
incapsula.com
mail.haynes.com
incapsula.com
incapsula.com
incapsula.com
secure.haynes.com
haynes.com
incapsula.com
incapsula.com
secure.haynes.com
incapsula.com
www.haynes.com
mail.haynes.com
haynes.com
incapsula.com
incapsula.com
incapsula.com
*.haynes.com
au.haynes.com
incapsula.com
incapsula.com
incapsula.com
mail.haynes.com
reader.haynes.com
incapsula.com
incapsula.com
incapsula.com
dev.haynes.com
www.haynes.com
incapsula.com
au.haynes.com
www.haynes.com
mail.haynes.com
incapsula.com
reader-qa.haynes.com
incapsula.com
incapsula.com
haynesallaccess.com
incapsula.com
secure.haynes.com
incapsula.com
haynesallaccess.com
haynesallaccess.com
incapsula.com
incapsula.com
haynes.com
haynes.com
incapsula.com
qa.haynesmanualsallaccess.co.uk
au.haynes.com
haynesallaccess.com
incapsula.com
haynesallaccess.com
haynesallaccess.com
haynes.com
haynes.com
incapsula.com
reader.haynes.com
incapsula.com
haynes.com
incapsula.com
incapsula.com
mail.haynes.com
incapsula.com
www.haynesmanualsallaccess.co.uk
incapsula.com
incapsula.com
incapsula.com
incapsula.com
haynes.com
www.haynes.com
au.haynes.com
qa.haynesmanualsallaccess.co.uk
incapsula.com
incapsula.com
incapsula.com
haynesallaccess.com
incapsula.com
au.haynes.com
qa.haynesmanualsallaccess.com
incapsula.com
incapsula.com
incapsula.com
haynes.com
incapsula.com
reader-qa.haynes.com
incapsula.com
*.haynes.com
qa.haynesmanualsallaccess.co.uk
incapsula.com
*.haynes.com
au.haynes.com
incapsula.com
incapsula.com
reader-qa.haynes.com
mail.haynes.com
incapsula.com
Certificate
The complete raw certificate details for haynes.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIQBgXrhlujtjgFXb34/0ZDcjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA5MTMwMDAwMDBaFw0yMzEwMTEy MzU5NTlaMBUxEzARBgNVBAMTCmhheW5lcy5jb20wggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLtZ6UG5EYAhanpY0Ll7mS/hcr5y+9NkAzeRQzFp6ZPAEg /paEa/ig2dPW/jWqPqCfKYtALJ4IT1yx2p3GlPIbHA59asyr1q81VkT3dBDNbLkP TWEVwrxxFUNTGlzfgXCNQ0sFQlqqFKhbtvnKZNKmfmHiMz7BO8vu6d2l/9cBfnMJ 66p+tVMGOZNHkSpLdInkvT9Y9lIF8ChvD/GATMbOIdyV0wkGgna4nATDn8NYEcQu d2+7G87/9uubHmL8VeAiLAU09d/j5/jRWWMKmXUgMjhm8+EvS0xjrUD7dh//JrAo FMfxd6Zy+cvyzb3Wa5kDnsq0GffOYt33zOAfow5tAgMBAAGjggMTMIIDDzAfBgNV HSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQU3+TMy+BjRAj1 7ZRnCB+T3Vh5oowwQQYDVR0RBDowOIIKaGF5bmVzLmNvbYIMKi5oYXluZXMuY29t gg4qLmhheW5lcy5jby51a4IMaGF5bmVzLmNvLnVrMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPQYDVR0fBDYwNDAyoDCgLoYs aHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWItMS5jcmwwEwYD VR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFo dHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0 dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMB Af8EAjAAMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdgDoPtDaPvUGNTLnVyi8 iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAYM1Rk+jAAAEAwBHMEUCIFdCiR3d/wyDCU4C Yn0WpwcXp+Of/uDfShr4B/+ki7bHAiEA06hajzTemxVPB7Jaf1zC2YvSXyBFc4nx knOjZixopp8AdwA1zxkbv7FsV78PrUxtQsu7ticgJlHqP+Eq76gDwzvWTAAAAYM1 Rk/tAAAEAwBIMEYCIQDYNeHl8BGWfqUDOpejTMUuCxKFu5g/QKweVAejTDX+UQIh AJDqqxkspY2bNZk1B5Oo1DnxReVGR5aVdQduYeFoZPOBAHcAtz77JN+cTbp18jnF ulj0bF38Qs96nzXEnh0JgSXttJkAAAGDNUZP/gAABAMASDBGAiEAlYPbyO6XgXwX PX4PWDmAduSwT8RVfhG4RgSWTHV06RICIQDJscVIMbCS6+fQHhjnY+Wan2gydOQQ u/TBikfvd+gT/jANBgkqhkiG9w0BAQsFAAOCAQEAmb5uU7fDpp1FpErnKP1qTSw6 +9s0yndEso3fOtkT5gFyL1Z8m1DzLNFGHy/fRLKWm0xRJBoyJ1kBIqPzjwHxVmhX CJwqZdY/v/dcWmkjxRWKb96AHO8SPT1BR6M0eM+7AEcaK3VjJFKtAKi/fjrK1r/e ttXarfoukJZVqy1n9zVhBNfDrCP2uhYqdaV+RNE/WCpx7C7vbWLPOvmtP9hNDg1X vJQEKyqk7GELZ7Z5kBvb7x/h3H88K/yb3EbR+3MRD/Ef9x4I+mtt61Bvg8YVwYAq E+oUx20zFfZzr7Z+rQWxP+9Toz0v28jrSwRx6ka1Ooc6Ex8j+cMAf7NSUYKlLQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7WelBuRGAIWp6WNC5e5 kv4XK+cvvTZAM3kUMxaemTwBIP6WhGv4oNnT1v41qj6gnymLQCyeCE9csdqdxpTy GxwOfWrMq9avNVZE93QQzWy5D01hFcK8cRVDUxpc34FwjUNLBUJaqhSoW7b5ymTS pn5h4jM+wTvL7undpf/XAX5zCeuqfrVTBjmTR5EqS3SJ5L0/WPZSBfAobw/xgEzG ziHcldMJBoJ2uJwEw5/DWBHELndvuxvO//brmx5i/FXgIiwFNPXf4+f40VljCpl1 IDI4ZvPhL0tMY61A+3Yf/yawKBTH8XemcvnL8s291muZA57KtBn3zmLd98zgH6MO bQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8006106470193855735980170215021757298 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'haynes.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17636684277759448135218163045802456007219836093067084367372416015177825691062547581101762263047487482567393184173003519216376853091489850201439818758728724953012607355673486548679201922360612278657126296906468695772421777248139076168648648047039255652910349612346776030135949785900337016070138367236442737536483280652990889857439261940001295669584085017706395556743116265036499892127526682520046890272904206178908579470884158053177981222527780948391770024080650344940351516649989791744402764713498661732871504127765406455024511512387434853765646325524133130144997927375513715624891064243835751017651529660670769565293 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dfe4cccbe0634408f5ed9467081f93dd5879a28c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'haynes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.haynes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.haynes.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'haynes.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 016a007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018335464fa3000004030047304502205742891dddff0c83094e02627d16a70717a7e39ffee0df4a1af807ffa48bb6c7022100d3a85a8f34de9b154f07b25a7f5cc2d98bd25f20457389f19273a3662c68a69f00770035cf191bbfb16c57bf0fad4c6d42cbbbb627202651ea3fe12aefa803c33bd64c0000018335464fed0000040300483046022100d835e1e5f011967ea5033a97a34cc52e0b1285bb983f40ac1e5407a34c35fe5102210090eaab192ca58d9b3599350793a8d439f145e54647969575076e61e16864f381007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018335464ffe00000403004830460221009583dbc8ee97817c173d7e0f58398076e4b04fc4557e11b84604964c7574e912022100c9b1c54831b092ebe7d01e18e763e59a9f683274e410bbf4c18a47ef77e813fe . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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