www.fortdodgeiowa.org
Issued by RapidSSL SHA256 CA
About this certificate
This digital certificate with serial number 21:f9:4f:2f:38:7d:c6:43:98:e1:74:6b:44:c0:09:4b was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.fortdodgeiowa.org
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 21:f9:4f:2f:38:7d:c6:43:98:e1:74:6b:44:c0:09:4bSerial Number (int): 45159011830242935090675913095951419723
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 97:c2:27:50:9e:c2:c9:ec:0c:88:32:c8:7c:ad:e2:a6:01:4f:da:6f
Fingerprint (sha1): 59:be:3e:56:23:ac:e1:c7:54:2d:bb:f3:28:3a:d5:e3:50:8c:10:7c
Fingerprint (sha256): be:7a:db:05:a5:3b:c0:7a:a3:32:aa:e2:50:df:5a:88:46:df:07:4a:ff:79:c0:0d:71:a8:2e:23:0e:bf:4b:ef
Issuing Certificate URL: http://gp.symcb.com/gp.crt
Revocation information
OCSP Server: http://gp.symcd.comCRL Distribution Point: http://gp.symcb.com/gp.crl
Check the revocation status for certificate www.fortdodgeiowa.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.fortdodgeiowa.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
Other certificates including the domain name fortdodgeiowa.org
(limited to 100 certificates)
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
mail.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
mail.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
Certificate
The complete raw certificate details for www.fortdodgeiowa.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgIQIflPLzh9xkOY4XRrRMAJSzANBgkqhkiG9w0BAQsFADBC MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEbMBkGA1UEAxMS UmFwaWRTU0wgU0hBMjU2IENBMB4XDTE3MDUxNjAwMDAwMFoXDTE5MDcxNTIzNTk1 OVowIDEeMBwGA1UEAwwVd3d3LmZvcnRkb2RnZWlvd2Eub3JnMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEApxyJ/DDJBj7RHQAqZaCKFsHsVBrwv9iFLS6d pi/E/6oa/zKtR6s5aQVfwKH5vvd9Ns4lg2Gl/JB47IG0dXz4Vr9CI+pduG6pASJ5 kED6lU9CP41Q6yT0bcMRuyt+XTALgM785EqC08MCqwHaf8pEIb0xpbfa6DjbGXAj nsQO6moUFiOj9kcjOnqw0EvCLj4yzyZRhbCskQyNrYniEkQB3jyQ2qPq4FldWGOy /poPs669bu8ggs+6LhLn3aarHMm7PWCvkwT3HXcOTv+WjwkgAbkCkO1etaD5I7I9 SAhoCJIMS2xaSXZ5TSHUq9pOprvcjUo3TJF1/eN/XZ7OOeF0s2rl/0/3ON2roGtr 6UoPMnlbcToH8CygbEE/6T3WnoOa4d4c/uEggWbjbOLGsnI89/Ysjz/hA+jxIynI IbiZMVLBEe8LiQdDeD2fLAwlAgHU/gJrFKuN3CuqB198X331y6GzGUDXYv7xN1jr DZPmhhBVkVKOT9Gax8ak4xst9e2q43RsuqjE+//KuKgFas2mU4zl/Y5ca7GBnvpr LAAlJlYe/QNg51SgkNA1G5rp5Hk+P5pQ/GQ3BkSL43yHTWtpf6LkVKChxUDTcjGR KcEuhrgZ4zCdTJcfqTuGiT+RH7MIcfRdHIHhFLkmSJcNyDTgz8EZvev2AEYk4Dhz xootHtMCAwEAAaOCAaAwggGcMDMGA1UdEQQsMCqCFXd3dy5mb3J0ZG9kZ2Vpb3dh Lm9yZ4IRZm9ydGRvZGdlaW93YS5vcmcwCQYDVR0TBAIwADArBgNVHR8EJDAiMCCg HqAchhpodHRwOi8vZ3Auc3ltY2IuY29tL2dwLmNybDBvBgNVHSAEaDBmMGQGBmeB DAECATBaMCoGCCsGAQUFBwIBFh5odHRwczovL3d3dy5yYXBpZHNzbC5jb20vbGVn YWwwLAYIKwYBBQUHAgIwIAweaHR0cHM6Ly93d3cucmFwaWRzc2wuY29tL2xlZ2Fs MB8GA1UdIwQYMBaAFJfCJ1CewsnsDIgyyHyt4qYBT9pvMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwVwYIKwYBBQUHAQEESzBJ MB8GCCsGAQUFBzABhhNodHRwOi8vZ3Auc3ltY2QuY29tMCYGCCsGAQUFBzAChhpo dHRwOi8vZ3Auc3ltY2IuY29tL2dwLmNydDATBgorBgEEAdZ5AgQDAQH/BAIFADAN BgkqhkiG9w0BAQsFAAOCAQEAp54gbBJv2UkOr0Im9dc0SCWscywP0Q/C/757IlKV zuzet5rV4M6Q8qbhjj02G9Ufe3KIl4iKtBmrFhdsNpcq/VzxCztSI+yWSbstDB+L sLGeXWGE5iSoT5w6Lo+H9RU0yAOercEhTQvksGLRf9HeYP2HYIkRKUM5Ya1Yuy4j kh/gmYRIYKike7Jhz66cOYMtktCLw7kcji00NoQsgpHbgmwCy/jKsf3lbv1+MFxQ FnkdKn7R3yff3CQEODYnvJhw8CACbkwFJTYAmTDMYtxnxdNWDPB8x1hdz62AQ//y lxyViw1wInGNrdsO+DGKQa3YRXH3GGPDAkPXASbAMWHthA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApxyJ/DDJBj7RHQAqZaCK FsHsVBrwv9iFLS6dpi/E/6oa/zKtR6s5aQVfwKH5vvd9Ns4lg2Gl/JB47IG0dXz4 Vr9CI+pduG6pASJ5kED6lU9CP41Q6yT0bcMRuyt+XTALgM785EqC08MCqwHaf8pE Ib0xpbfa6DjbGXAjnsQO6moUFiOj9kcjOnqw0EvCLj4yzyZRhbCskQyNrYniEkQB 3jyQ2qPq4FldWGOy/poPs669bu8ggs+6LhLn3aarHMm7PWCvkwT3HXcOTv+Wjwkg AbkCkO1etaD5I7I9SAhoCJIMS2xaSXZ5TSHUq9pOprvcjUo3TJF1/eN/XZ7OOeF0 s2rl/0/3ON2roGtr6UoPMnlbcToH8CygbEE/6T3WnoOa4d4c/uEggWbjbOLGsnI8 9/Ysjz/hA+jxIynIIbiZMVLBEe8LiQdDeD2fLAwlAgHU/gJrFKuN3CuqB198X331 y6GzGUDXYv7xN1jrDZPmhhBVkVKOT9Gax8ak4xst9e2q43RsuqjE+//KuKgFas2m U4zl/Y5ca7GBnvprLAAlJlYe/QNg51SgkNA1G5rp5Hk+P5pQ/GQ3BkSL43yHTWtp f6LkVKChxUDTcjGRKcEuhrgZ4zCdTJcfqTuGiT+RH7MIcfRdHIHhFLkmSJcNyDTg z8EZvev2AEYk4DhzxootHtMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 45159011830242935090675913095951419723 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.fortdodgeiowa.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 681755360062080616054071119211295598591460753543447048663293043962713211928734902557516590644407902256137074047552474103868322238182674126746322807757592184065643507558003796482553246667869313950533506716710006408461886291691427478645946455244452745789529410429953006193642717379894574926196821672136138758879318738238123084077807703014283223572372632661141453716420880799086693321390251064874829041024959904510262192214282775009077442289334012092454047928928905993212642301992338141176577128211255791065562452223067006811772949888306243372902203968226890096494137504156874320687944140617699234548489752422441371747400387083500832553952777525011767407103200694853499954669871995516590770816619202434150401461887892469498049529072530275309761091767040281574362920798393561729666948303489877848176672990414263258912755207799292283470183170191227464251497493376649465132374960932254436055848303252498406303652584694269383899129645165690859528353567876456074072380049614747095004009529699155581028695663964271363203287345937632852106529233664587129325375440236315232843517704803677297723068370090704945021622222815080643418071230267151425926678818916539524281155860789982906762604479609036483177451566621788620771323203239199081694568147 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fortdodgeiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fortdodgeiowa.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 97c227509ec2c9ec0c8832c87cade2a6014fda6f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00a79e206c126fd9490eaf4226f5d7344825ac732c0fd10fc2ffbe7b225295ceecdeb79ad5e0ce90f2a6e18e3d361bd51f7b728897888ab419ab16176c36972afd5cf10b3b5223ec9649bb2d0c1f8bb0b19e5d6184e624a84f9c3a2e8f87f51534c8039eadc1214d0be4b062d17fd1de60fd8760891129433961ad58bb2e23921fe099844860a8a47bb261cfae9c39832d92d08bc3b91c8e2d3436842c8291db826c02cbf8cab1fde56efd7e305c5016791d2a7ed1df27dfdc2404383627bc9870f020026e4c052536009930cc62dc67c5d3560cf07cc7585dcfad8043fff2971c958b0d7022718daddb0ef8318a41add84571f71863c30243d70126c03161ed84