assets.davidzwirnerbooks.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 01:1b:87:a6:71:11:9c:95:0d:37:ca:0c:ff:73:b5:5d was issued on by Amazon.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=assets.davidzwirnerbooks.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:1b:87:a6:71:11:9c:95:0d:37:ca:0c:ff:73:b5:5dSerial Number (int): 1472171323129923849695491981021787485
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 26:52:55:d3:45:9f:fb:20:0c:7a:80:ef:fe:9c:9b:05:15:f6:db:ab
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 40:b9:82:e1:3a:03:26:7c:cf:35:62:d6:6d:9b:03:0e:d8:78:04:1a
Fingerprint (sha256): bf:b0:c3:7a:02:31:8c:88:c1:9f:bb:1e:f7:32:1e:87:e5:8c:8c:e9:ad:3c:20:85:72:c2:fb:25:c9:82:e5:b1
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate assets.davidzwirnerbooks.com
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for assets.davidzwirnerbooks.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
assets.davidzwirnerbooks.com
ajkwrfsyen.cloudimg.io
assets-qa.davidzwirnerbooks.com
assets-staging.davidzwirner.com
images.davidzwirner.com
assets-qa.davidzwirner.com
images-qa.davidzwirnerbooks.com
images.davidzwirnerbooks.com
assets.davidzwirner.com
images-qa.davidzwirner.com
assets-staging.davidzwirnerbooks.com
ajkwrfsyen.cloudimg.io
assets-qa.davidzwirnerbooks.com
assets-staging.davidzwirner.com
images.davidzwirner.com
assets-qa.davidzwirner.com
images-qa.davidzwirnerbooks.com
images.davidzwirnerbooks.com
assets.davidzwirner.com
images-qa.davidzwirner.com
assets-staging.davidzwirnerbooks.com
Other certificates including the domain name davidzwirnerbooks.com
(limited to 100 certificates)
images.davidzwirnerbooks.com
www.davidzwirnerbooks.com
www.davidzwirnerbooks.com
davidzwirner.com
www.davidzwirnerbooks.com
www.davidzwirnerbooks.com
www.davidzwirnerbooks.com
assets.davidzwirnerbooks.com
www.davidzwirnerbooks.com
www.davidzwirnerbooks.com
assets.davidzwirnerbooks.com
*.davidzwirnerbooks.com
images.davidzwirnerbooks.com
images.davidzwirnerbooks.com
images.davidzwirnerbooks.com
*.davidzwirnerbooks.com
www.davidzwirnerbooks.com
www.davidzwirnerbooks.com
davidzwirner.com
www.davidzwirnerbooks.com
www.davidzwirnerbooks.com
www.davidzwirnerbooks.com
assets.davidzwirnerbooks.com
www.davidzwirnerbooks.com
www.davidzwirnerbooks.com
assets.davidzwirnerbooks.com
*.davidzwirnerbooks.com
images.davidzwirnerbooks.com
images.davidzwirnerbooks.com
images.davidzwirnerbooks.com
*.davidzwirnerbooks.com
Certificate
The complete raw certificate details for assets.davidzwirnerbooks.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHEzCCBfugAwIBAgIQARuHpnERnJUNN8oM/3O1XTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDIwNTAwMDAwMFoXDTI1MDMwNTIzNTk1OVowJzEl MCMGA1UEAxMcYXNzZXRzLmRhdmlkendpcm5lcmJvb2tzLmNvbTCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAMK72eagPcZf2JbKv+Rd1wmW4VITjDpSopfR uO+9W6p5t6aiEqit0XbJ7OxFWux+K7qRDX0aoFpKXYmrgg6qwGV9+n3qxXwh2kt/ SGVou3a1yhqIIEB01DAkOZat1S4aIDI8/aXE4R5c1rqDvaYN9hxoZPbmuHBX8xs/ 4rtZx+UV+vy7oTnuEX/hnj1O/NzpXMbbqbGXwB5reIQw58iQMBdSKYFvdOfFUQoX LFVsRtDi+9x8YxkoS6jXVu1GJ3ykw8AZFt1JjlZE495iY0Wnaws7X4q0skTdUUgN AjjLsWkOb7neOv/swlIjx89V0QpWcZuPjeXuy5n2uouYpsEf+3UCAwEAAaOCBCQw ggQgMB8GA1UdIwQYMBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBQm UlXTRZ/7IAx6gO/+nJsFFfbbqzCCAVQGA1UdEQSCAUswggFHghxhc3NldHMuZGF2 aWR6d2lybmVyYm9va3MuY29tghZhamt3cmZzeWVuLmNsb3VkaW1nLmlvgh9hc3Nl dHMtcWEuZGF2aWR6d2lybmVyYm9va3MuY29tgh9hc3NldHMtc3RhZ2luZy5kYXZp ZHp3aXJuZXIuY29tghdpbWFnZXMuZGF2aWR6d2lybmVyLmNvbYIaYXNzZXRzLXFh LmRhdmlkendpcm5lci5jb22CH2ltYWdlcy1xYS5kYXZpZHp3aXJuZXJib29rcy5j b22CHGltYWdlcy5kYXZpZHp3aXJuZXJib29rcy5jb22CF2Fzc2V0cy5kYXZpZHp3 aXJuZXIuY29tghppbWFnZXMtcWEuZGF2aWR6d2lybmVyLmNvbYIkYXNzZXRzLXN0 YWdpbmcuZGF2aWR6d2lybmVyYm9va3MuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIB MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw OwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMi5hbWF6b250cnVzdC5j b20vcjJtMDIuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDov L29jc3AucjJtMDIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8v Y3J0LnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIw ADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYAzxFW7tUufK/zh1vZaS6b6Rpx Z0qwF+ysAdJbd87MOwgAAAGNeP1yfwAABAMARzBFAiB+dY375iGp6cpP0hdblssT GRdxQCVO+IcdNMLqJv5b5QIhAOkVm9DWl3avbR/IZ1V3BlTUr0Te6LG8olQ6xIpF cGJdAHUAfVkeEuF4KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGNeP1yQgAA BAMARjBEAiAHi7cm/V7olAEg4DbDS9MklhnHRR7YS6xwfY3tFmIXHgIgfqjAjp4N GMXTWI6Zgn0ggXXV7UGcLcZpKi/uEPcWuI0AdwDm0jFjQHeMwRBBBtdxuc7B0kD2 loSG+7qHMh39HjeOUAAAAY14/XJsAAAEAwBIMEYCIQCm6YSjsZ3/8YyeGFhbb1Sy QcPu9166W4AeMGiBjYC0lAIhANhwJwFPd8dZIwD/OKesrZq2mI8g1U8JJc+DxtRw bEapMA0GCSqGSIb3DQEBCwUAA4IBAQBCumkK0K/+2KyMAKdJ6qhnvkadOKU1C5hf nSdJtYZiatm0NwS/n0L6xm8SrVrNrLlek97V5BTQfjUm3iQd9IqbIT2+SjepgvXX tgcCvIk3OtJLZAJCaCwzDO5KVziBBV+FlwIA0RvRiAoiBoYXCEtx4bZH6jGtFw7F UrrA49cfQqmEcyGbWQeV3WOFuWHKEod/GN986KBHbhzAO1ow7nQPFZuILxd9NDdr xneoFW8+7+UsObtZ+w7ejvF8LbpoE+NeVn1AT/dHAcyPnyCyqpnoBLW0o2hVQM21 6n3tv6Zm/84sQsBgkw0bdKZ5vxLJ9wNfEaA/CzsLpC8tGUia2kD5 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrvZ5qA9xl/Ylsq/5F3X CZbhUhOMOlKil9G4771bqnm3pqISqK3Rdsns7EVa7H4rupENfRqgWkpdiauCDqrA ZX36ferFfCHaS39IZWi7drXKGoggQHTUMCQ5lq3VLhogMjz9pcThHlzWuoO9pg32 HGhk9ua4cFfzGz/iu1nH5RX6/LuhOe4Rf+GePU783OlcxtupsZfAHmt4hDDnyJAw F1IpgW9058VRChcsVWxG0OL73HxjGShLqNdW7UYnfKTDwBkW3UmOVkTj3mJjRadr CztfirSyRN1RSA0COMuxaQ5vud46/+zCUiPHz1XRClZxm4+N5e7Lmfa6i5imwR/7 dQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1472171323129923849695491981021787485 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'assets.davidzwirnerbooks.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24582864030441186260129540862941033348295161639376512383664956866306563465698073943191400299092170041450777814779109472748894707810265710580774174799586687528212507131087376140970841497483143630112908853585523018917245463670450698900349056124136247347864848294529578791862953490465381527689554953167117903645815181737918630855962218300598070236564932141702047177723846837056777075596570425661441172616830067398371221566839202646458554969319889437791716481701764424136279822707121134326737031065968733388004462466637778873636503789315510643257207147471345992824426915119425142021291277542230927977333508416545163836277 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 265255d3459ffb200c7a80effe9c9b0515f6dbab . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (331 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.davidzwirnerbooks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ajkwrfsyen.cloudimg.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets-qa.davidzwirnerbooks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets-staging.davidzwirner.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.davidzwirner.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets-qa.davidzwirner.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images-qa.davidzwirnerbooks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.davidzwirnerbooks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.davidzwirner.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images-qa.davidzwirner.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets-staging.davidzwirnerbooks.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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