pren.gurkensalat.ch
Issued by Hostpoint DV SSL CA - G2
About this certificate
This digital certificate with serial number 4f:8d:88:96:40:27:c0:ba:25:79:3f:7e:22:2c:93:0b was issued on by Hostpoint AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=pren.gurkensalat.ch
Hostpoint AG
Organization:
Hostpoint AG
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 4f:8d:88:96:40:27:c0:ba:25:79:3f:7e:22:2c:93:0bSerial Number (int): 105743895835847337285542276482948961035
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: b4:e3:2a:8e:85:bb:b2:b7:27:3c:e9:ce:9a:a0:80:6f:0a:4b:02:48
Fingerprint (sha1): 8d:a9:17:ae:6c:32:f7:85:3d:66:8a:98:ea:ff:7c:42:c4:f6:5c:54
Fingerprint (sha256): cf:81:df:d4:98:23:28:da:fb:2c:66:4e:09:a5:2d:58:12:92:a5:ca:d2:ed:18:42:06:05:ca:09:75:3c:e3:9e
Issuing Certificate URL: http://hostpoint-aia.digitalcertvalidation.com/hostpointg2.crt
Revocation information
OCSP Server: http://hostpoint-ocsp.digitalcertvalidation.comCRL Distribution Point: http://hostpoint-crl.digitalcertvalidation.com/hostpointg2.crl
Check the revocation status for certificate pren.gurkensalat.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pren.gurkensalat.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pren.gurkensalat.ch
Other certificates including the domain name gurkensalat.ch
(limited to 100 certificates)
www.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
pren.gurkensalat.ch
www.pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.john.gurkensalat.ch
pren.gurkensalat.ch
john.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.pren.gurkensalat.ch
gurkensalat.ch
www.john.gurkensalat.ch
em.gurkensalat.ch
pren.gurkensalat.ch
gurkensalat.ch
api.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
www.pren.gurkensalat.ch
api.gurkensalat.ch
www.em.gurkensalat.ch
gurkensalat.ch
pren.gurkensalat.ch
pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
john.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
pren.gurkensalat.ch
www.pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.john.gurkensalat.ch
pren.gurkensalat.ch
john.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
www.em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.pren.gurkensalat.ch
gurkensalat.ch
www.john.gurkensalat.ch
em.gurkensalat.ch
pren.gurkensalat.ch
gurkensalat.ch
api.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
www.pren.gurkensalat.ch
api.gurkensalat.ch
www.em.gurkensalat.ch
gurkensalat.ch
pren.gurkensalat.ch
pren.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
www.gurkensalat.ch
em.gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
gurkensalat.ch
gurkensalat.ch
em.gurkensalat.ch
em.gurkensalat.ch
www.gurkensalat.ch
john.gurkensalat.ch
gurkensalat.ch
Certificate
The complete raw certificate details for pren.gurkensalat.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIQT42IlkAnwLoleT9+IiyTCzANBgkqhkiG9w0BAQsFADBm MQswCQYDVQQGEwJDSDEVMBMGA1UEChMMSG9zdHBvaW50IEFHMR0wGwYDVQQLExRE b21haW4gVmFsaWRhdGVkIFNTTDEhMB8GA1UEAxMYSG9zdHBvaW50IERWIFNTTCBD QSAtIEcyMB4XDTE2MTExOTAwMDAwMFoXDTE3MTExOTIzNTk1OVowHjEcMBoGA1UE AwwTcHJlbi5ndXJrZW5zYWxhdC5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBANjvEeZtAgGWJV7GKqsHjx2ts9U9nP7OS8yDAh2ILtzhRiffmSzA4xi5 DlWadyq1BDXlgyl7nbr4w3vz24DZSEgt7cPbbg9ZPxl9ztycdx3i2UhFrbhfj/5B noEpTvIZTttZIRXCLZNf7kRHFRgG/S7IXqdE4ktPHYqt4YGzgqoZvDQRydpWu3E1 w1x965XiSKKdS2PpGtlrESQoS8yYulpETJoxgwQ7oYUC4teuFX02p6ic8gVge6Ze Qkv84L4UPK2UFHr+RzML+1ynksLVZNWAWvUZMIAxzuEFidsYkjdUu/C4i0/SGOFq GsHenztNfBALtRHoovG/M5kcIqFOMdMCAwEAAaOCAiEwggIdMB4GA1UdEQQXMBWC E3ByZW4uZ3Vya2Vuc2FsYXQuY2gwCQYDVR0TBAIwADBPBgNVHR8ESDBGMESgQqBA hj5odHRwOi8vaG9zdHBvaW50LWNybC5kaWdpdGFsY2VydHZhbGlkYXRpb24uY29t L2hvc3Rwb2ludGcyLmNybDCBnQYDVR0gBIGVMIGSMIGPBgZngQwBAgEwgYQwPwYI KwYBBQUHAgEWM2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMvcmVw b3NpdG9yeS9sZWdhbDBBBggrBgEFBQcCAjA1DDNodHRwczovL3d3dy5nZW90cnVz dC5jb20vcmVzb3VyY2VzL3JlcG9zaXRvcnkvbGVnYWwwHwYDVR0jBBgwFoAUtOMq joW7srcnPOnOmqCAbwpLAkgwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjCBmQYIKwYBBQUHAQEEgYwwgYkwOwYIKwYBBQUHMAGG L2h0dHA6Ly9ob3N0cG9pbnQtb2NzcC5kaWdpdGFsY2VydHZhbGlkYXRpb24uY29t MEoGCCsGAQUFBzAChj5odHRwOi8vaG9zdHBvaW50LWFpYS5kaWdpdGFsY2VydHZh bGlkYXRpb24uY29tL2hvc3Rwb2ludGcyLmNydDATBgorBgEEAdZ5AgQDAQH/BAIF ADANBgkqhkiG9w0BAQsFAAOCAQEAR5uZ44CcFMRPwdWZ/WXWXWFMX09PDyUfEwGB xGOlCD66OFeFzuYQbe20/gxuQ03iXDMoHj2Mprbrrp2Vrqvb5tFQNw1yv9GIvU+z B5N8Kp2sHduqEY+AzzfHk0PNpLFy8IXY/2WRawDxpyH8rqiJW+WkoH+1Dgni0Cui MKmyyfcftHf/bR5qs4HTUj46r1LXsJ1I/Cy351dHlGhIIfhrjtxhZd33Y4uP+UEx YLg4PFbNPjTpSttyEaq4mL8vG0zD2n72drBCe+8wSQhK+FmggTTkt1K5ppXL3gae 6aIQ8CDmIAKY6SmkMr4VzgjozLe5tRg/KiMhFlFuHNK14Afcig== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2O8R5m0CAZYlXsYqqweP Ha2z1T2c/s5LzIMCHYgu3OFGJ9+ZLMDjGLkOVZp3KrUENeWDKXuduvjDe/PbgNlI SC3tw9tuD1k/GX3O3Jx3HeLZSEWtuF+P/kGegSlO8hlO21khFcItk1/uREcVGAb9 Lshep0TiS08diq3hgbOCqhm8NBHJ2la7cTXDXH3rleJIop1LY+ka2WsRJChLzJi6 WkRMmjGDBDuhhQLi164VfTanqJzyBWB7pl5CS/zgvhQ8rZQUev5HMwv7XKeSwtVk 1YBa9RkwgDHO4QWJ2xiSN1S78LiLT9IY4Woawd6fO018EAu1Eeii8b8zmRwioU4x 0wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 105743895835847337285542276482948961035 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hostpoint AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hostpoint DV SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'pren.gurkensalat.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27385363645151428016766560511452860931189530758297958834250034318112035537127899728913557667734789512134629313727528775274345972353106816155995005345775257258772351085464553697732042404448197192235681745055314563548623261025111191942229164603761332196038649716834272131469518683992960617537542381452199516881079383689212630634609456024442514971143895100224714932608285466359938307712530735323612758829461434858663505106506580729456659560409620838327017850155774069047898655770098277649372553129664893610751554887919511452436721726937767960535810111650104120388220228903184136263909508603697026948554900839476835004883 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pren.gurkensalat.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hostpoint-crl.digitalcertvalidation.com/hostpointg2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b4e32a8e85bbb2b7273ce9ce9aa0806f0a4b0248 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (140 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hostpoint-ocsp.digitalcertvalidation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hostpoint-aia.digitalcertvalidation.com/hostpointg2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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