shop.sogaz.ru
- JSC SOGAZ -
Issued by GlobalSign RSA OV SSL CA 2018
About this certificate
This digital certificate with serial number 42:68:cf:19:bf:23:52:65:63:45:ec:cd was issued on by GlobalSign nv-sa.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
JSC SOGAZ
Organization:
JSC SOGAZ
State / Province:
Moscow
Locality: Moscow
Country: RU
Locality: Moscow
Country: RU
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate will expire on
Certificate Details
Serial Number (hex): 42:68:cf:19:bf:23:52:65:63:45:ec:cdSerial Number (int): 20552716938252194510142827725
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: 50:28:1e:c7:17:aa:21:5f:e4:94:a6:5d:ee:2a:12:ea:e4:22:d5:2e
AuthorityKeyId: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb
Fingerprint (sha1): 72:d1:08:c4:6d:a0:b7:ab:51:f2:f1:90:b8:09:b4:d7:65:82:90:92
Fingerprint (sha256): d6:43:5a:30:c0:80:a9:69:8e:4b:43:ec:be:bd:87:7b:a7:cb:d5:94:46:96:aa:e5:f9:fb:5c:0c:06:24:5b:0a
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018CRL Distribution Point: http://crl.globalsign.com/gsrsaovsslca2018.crl
Check the revocation status for certificate shop.sogaz.ru
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shop.sogaz.ru
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shop.sogaz.ru
Other certificates including the domain name sogaz.ru
(limited to 100 certificates)
medonline.sogaz.ru
medonline.sogaz.ru
*.telemed.sogaz.ru
integrator.sogaz.ru
fit.sogaz.ru
*.sogaz.ru
fit.sogaz.ru
lk.sogaz.ru
pl.sogaz.ru
*.sogaz.ru
*.sogaz.ru
mail.sogaz.ru
fop.sogaz.ru
*.sogaz.ru
fit.sogaz.ru
*.sogaz.ru
*.sogaz.ru
fit.sogaz.ru
medonline.sogaz.ru
www.sogaz.ru
medonline.sogaz.ru
fit.sogaz.ru
kbm.sogaz.ru
fit.sogaz.ru
direct.sogaz.ru
*.sogaz.ru
medonline.sogaz.ru
claim.sogaz.ru
shop.sogaz.ru
discount.sogaz.ru
opros.sogaz.ru
*.sogaz.ru
*.sogaz.ru
back-office.medonline.sogaz.ru
fit.sogaz.ru
fit.sogaz.ru
fit.sogaz.ru
bot.sogaz.ru
*.sogaz.ru
medonline.sogaz.ru
medonline.sogaz.ru
*.telemed.sogaz.ru
integrator.sogaz.ru
fit.sogaz.ru
*.sogaz.ru
fit.sogaz.ru
lk.sogaz.ru
pl.sogaz.ru
*.sogaz.ru
*.sogaz.ru
mail.sogaz.ru
fop.sogaz.ru
*.sogaz.ru
fit.sogaz.ru
*.sogaz.ru
*.sogaz.ru
fit.sogaz.ru
medonline.sogaz.ru
www.sogaz.ru
medonline.sogaz.ru
fit.sogaz.ru
kbm.sogaz.ru
fit.sogaz.ru
direct.sogaz.ru
*.sogaz.ru
medonline.sogaz.ru
claim.sogaz.ru
shop.sogaz.ru
discount.sogaz.ru
opros.sogaz.ru
*.sogaz.ru
*.sogaz.ru
back-office.medonline.sogaz.ru
fit.sogaz.ru
fit.sogaz.ru
fit.sogaz.ru
bot.sogaz.ru
*.sogaz.ru
medonline.sogaz.ru
Certificate
The complete raw certificate details for shop.sogaz.ru in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIMQmjPGb8jUmVjRezNMA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0yNDAzMjgxNDM2MTdaFw0y NTA0MjkxNDM2MTZaMFsxCzAJBgNVBAYTAlJVMQ8wDQYDVQQIEwZNb3Njb3cxDzAN BgNVBAcTBk1vc2NvdzESMBAGA1UEChMJSlNDIFNPR0FaMRYwFAYDVQQDEw1zaG9w LnNvZ2F6LnJ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAov6956bo mr8iG80CIyA/U/9/2xqN9oEOP4juInyeL71XAvzIygU1CyjpMBfsYj5AQJ9zbdGk GtXwWmXIrGpUPOf7RgFByzcpeC4U47w+AT4URlapD3lsI+azCn0kAHZ0Merc6uWI OUOrnKRO2i9uQYiLj79t7NBMczNZUgtWWuUCsZKhjskpe/Dik/3Wu7whuoX5VeP9 G/76eMQ105Wble8axX11tb2fKYFgXmdMgC9SznckfKs2qHprGxzPKuHTIW0Zsjyd Pj/ScuXHNkL5s2g69ACxHprAiQjJYZESr0TOfRdZOs2nBj5WulnCU7sDKbCQ+8Mk kXa9vMBTonE/ywIDAQABo4IB2jCCAdYwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB /wQCMAAwgY4GCCsGAQUFBwEBBIGBMH8wRAYIKwYBBQUHMAKGOGh0dHA6Ly9zZWN1 cmUuZ2xvYmFsc2lnbi5jb20vY2FjZXJ0L2dzcnNhb3Zzc2xjYTIwMTguY3J0MDcG CCsGAQUFBzABhitodHRwOi8vb2NzcC5nbG9iYWxzaWduLmNvbS9nc3JzYW92c3Ns Y2EyMDE4MFYGA1UdIARPME0wQQYJKwYBBAGgMgEUMDQwMgYIKwYBBQUHAgEWJmh0 dHBzOi8vd3d3Lmdsb2JhbHNpZ24uY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECAjA/ BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vY3JsLmdsb2JhbHNpZ24uY29tL2dzcnNh b3Zzc2xjYTIwMTguY3JsMBgGA1UdEQQRMA+CDXNob3Auc29nYXoucnUwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQYMBaAFPjvf/LNeGeo3m+P JI2I8YcDArPrMB0GA1UdDgQWBBRQKB7HF6ohX+SUpl3uKhLq5CLVLjATBgorBgEE AdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQeaFrjKiSff74zZLfCJu XGoeQ/lCKD1Z9CVlOFid95ObYjeFNqgw+POa+Ne27cxujwxXWR4fYQQSyX1Vv7DR /876r7aBeD8Bv8mnLIMKHk2WoPESviarnEtA8Hq59rujihZMtu6tWp7duwD5oy8u PY3rVBZvsHTkRhZIh2mVNI8Vzjwgl0u7uCio3ns1xWxdaf7zZHeBr1fQaGmhgxb4 H916kpIMBBgGsvH18FLJg1F71trTTcykyKhGB6EXrgRjzEZCUy1ffBwEv3tW8gtx 8aGfl8IZgcPtW1cpDZJt0/Qr+p3qdOkqkR2ENgltsTu0Djh8PVsQVGn+3bQqrfyF Ig== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAov6956bomr8iG80CIyA/ U/9/2xqN9oEOP4juInyeL71XAvzIygU1CyjpMBfsYj5AQJ9zbdGkGtXwWmXIrGpU POf7RgFByzcpeC4U47w+AT4URlapD3lsI+azCn0kAHZ0Merc6uWIOUOrnKRO2i9u QYiLj79t7NBMczNZUgtWWuUCsZKhjskpe/Dik/3Wu7whuoX5VeP9G/76eMQ105Wb le8axX11tb2fKYFgXmdMgC9SznckfKs2qHprGxzPKuHTIW0ZsjydPj/ScuXHNkL5 s2g69ACxHprAiQjJYZESr0TOfRdZOs2nBj5WulnCU7sDKbCQ+8MkkXa9vMBTonE/ ywIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20552716938252194510142827725 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-28 14:36:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-29 14:36:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Moscow' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Moscow' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'JSC SOGAZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shop.sogaz.ru' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20576223275802823300485062779380331045751409395896881007200211924562997742009368988384776356786718729364673392835740340125601315856149999612321052987099635097458892259043928527997549319951860057429937905491868182228527898943113931326858500331746603174753578698239200069011612402966740838001007029560100453254616087958185439965447488545740037952157644007044495434852121646110791703724670552938528288307641597292423831129537890468545026939425812970008855799923667154167922071141692516485099754531715849788012519718037234527160363992184623499834776419036333452739393382916380183208841579375406488197594556013479556366283 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsrsaovsslca2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.sogaz.ru' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 50281ec717aa215fe494a65dee2a12eae422d52e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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