regalii.splitwise.com
Issued by Amazon
About this certificate
This digital certificate with serial number 07:63:07:ad:d0:fb:ce:bd:65:fe:0c:b3:7e:bf:e9:db was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=regalii.splitwise.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:63:07:ad:d0:fb:ce:bd:65:fe:0c:b3:7e:bf:e9:dbSerial Number (int): 9818789107505998299817012775023012315
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: cc:c6:43:37:d1:c7:ec:b4:72:d0:8b:9d:00:bf:bf:4f:26:3f:0d:4d
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): f3:f6:a6:82:60:01:97:cb:58:01:c9:e9:b8:28:06:ae:97:92:6b:e8
Fingerprint (sha256): da:0b:c6:fe:39:55:db:00:c6:ca:30:05:20:eb:33:a7:b3:1b:9f:e4:0e:8b:bd:d3:cd:d9:7f:5b:95:be:b5:34
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate regalii.splitwise.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for regalii.splitwise.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
regalii.splitwise.com
Other certificates including the domain name splitwise.com
(limited to 100 certificates)
dev.beta.splitwise.com
emails.splitwise.com
codykit.dev
tls.automattic.com
tls.automattic.com
statusboard.splitwise.com
vault-sandbox.splitwise.com
dev.splitwise.com
parrot.splitwise.com
tls.automattic.com
admin.thebakeryandcafe.co.za
test.yah.ac
app.mooveandgroove.com.au
*.splitwise.com
*.splitwise.com
dev.beta.splitwise.com
dev.splitwise.com
www.blackbird.rocks
tls.automattic.com
tls.automattic.com
pizzassistant.app
tls.automattic.com
www.bstelearningtutors.com
test.yah.ac
tls.automattic.com
*.splitwise.com
tls.automattic.com
emails.splitwise.com
vault.splitwise.com
test.yah.ac
slictionary.com
tls.automattic.com
tls.automattic.com
parrot.splitwise.com
splitwise.com
dev.splitwise.com
tls.automattic.com
tls.automattic.com
*.splitwise.com
community.reinspiro.com
codenow.eu
tls.automattic.com
tls.automattic.com
vicinity.splitwise.com
splitwise.com
www.pickanapp.com
tls.automattic.com
dev.splitwise.com
*.splitwise.com
codykit.dev
*.splitwise.com
vault-sandbox.splitwise.com
vault-sandbox.splitwise.com
tls.automattic.com
splendoroftheheart.com
test.yah.ac
near.idgo.me
dev.splitwise.com
assets.splitwise.com
dev.splitwise.com
tls.automattic.com
dev.splitwise.com
tls.automattic.com
slictionary.com
statusboard.splitwise.com
tls.automattic.com
splitwise.com
codenow.eu
goriant.com
tls.automattic.com
dev.splitwise.com
vicinity.splitwise.com
*.splitwise.com
emails.splitwise.com
tls.automattic.com
tls.automattic.com
dev.splitwise.com
links.splitwise.com
splitwise.com
tls.automattic.com
vault-sandbox.splitwise.com
*.splitwise.com
regalii.splitwise.com
tls.automattic.com
vault-sandbox.splitwise.com
www.blackbird.rocks
links.splitwise.com
tls.automattic.com
vault-sandbox.splitwise.com
dev.splitwise.com
www.presentably.co
tls.automattic.com
vault-sandbox.splitwise.com
regalii.splitwise.com
www.learnlantern.com
dev.beta.splitwise.com
admin.thebakeryandcafe.co.za
www.siberdevs.com
vault-sandbox.splitwise.com
ideasdiamond.com
emails.splitwise.com
codykit.dev
tls.automattic.com
tls.automattic.com
statusboard.splitwise.com
vault-sandbox.splitwise.com
dev.splitwise.com
parrot.splitwise.com
tls.automattic.com
admin.thebakeryandcafe.co.za
test.yah.ac
app.mooveandgroove.com.au
*.splitwise.com
*.splitwise.com
dev.beta.splitwise.com
dev.splitwise.com
www.blackbird.rocks
tls.automattic.com
tls.automattic.com
pizzassistant.app
tls.automattic.com
www.bstelearningtutors.com
test.yah.ac
tls.automattic.com
*.splitwise.com
tls.automattic.com
emails.splitwise.com
vault.splitwise.com
test.yah.ac
slictionary.com
tls.automattic.com
tls.automattic.com
parrot.splitwise.com
splitwise.com
dev.splitwise.com
tls.automattic.com
tls.automattic.com
*.splitwise.com
community.reinspiro.com
codenow.eu
tls.automattic.com
tls.automattic.com
vicinity.splitwise.com
splitwise.com
www.pickanapp.com
tls.automattic.com
dev.splitwise.com
*.splitwise.com
codykit.dev
*.splitwise.com
vault-sandbox.splitwise.com
vault-sandbox.splitwise.com
tls.automattic.com
splendoroftheheart.com
test.yah.ac
near.idgo.me
dev.splitwise.com
assets.splitwise.com
dev.splitwise.com
tls.automattic.com
dev.splitwise.com
tls.automattic.com
slictionary.com
statusboard.splitwise.com
tls.automattic.com
splitwise.com
codenow.eu
goriant.com
tls.automattic.com
dev.splitwise.com
vicinity.splitwise.com
*.splitwise.com
emails.splitwise.com
tls.automattic.com
tls.automattic.com
dev.splitwise.com
links.splitwise.com
splitwise.com
tls.automattic.com
vault-sandbox.splitwise.com
*.splitwise.com
regalii.splitwise.com
tls.automattic.com
vault-sandbox.splitwise.com
www.blackbird.rocks
links.splitwise.com
tls.automattic.com
vault-sandbox.splitwise.com
dev.splitwise.com
www.presentably.co
tls.automattic.com
vault-sandbox.splitwise.com
regalii.splitwise.com
www.learnlantern.com
dev.beta.splitwise.com
admin.thebakeryandcafe.co.za
www.siberdevs.com
vault-sandbox.splitwise.com
ideasdiamond.com
Certificate
The complete raw certificate details for regalii.splitwise.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgIQB2MHrdD7zr1l/gyzfr/p2zANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xODEyMjYwMDAwMDBaFw0yMDAxMjYx MjAwMDBaMCAxHjAcBgNVBAMTFXJlZ2FsaWkuc3BsaXR3aXNlLmNvbTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAMX+549hduC34k15jC/bU+oVSW3ujKHA EW3iYZR8arnjfElHuwTuNrjOkAoT8GjnR5BOcyMaGHTmCxsC/ZlAgraTrD6Mw5cn f+XArx7WiR/ZQVtXuSuVdzOhPTLo8oI86im7qBJBYalW1FvEkLMN7cSZ5uZ2/RPv H3YXXe2ahrf5YCi/ahxJDhVQgjCMEBa6BtMv8UhVbgLyyKwHjUWinhAWALC6C7uI pBEdYkchjnjBif06Li5e22F38jKL+R9pngXyEnTPNgRJvAijClwB5TP46XBGqx3r 5rTEVltcdMXOqGPUyvIw9cqlx9Mr8ATOh9Pfo2kndg9tcF7q6cy+cXcCAwEAAaOC AoIwggJ+MB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQW BBTMxkM30cfstHLQi50Av79PJj8NTTAgBgNVHREEGTAXghVyZWdhbGlpLnNwbGl0 d2lzZS5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpv bnRydXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYG Z4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Au c2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNj YTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADCCAQUG CisGAQQB1nkCBAIEgfYEgfMA8QB3ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCW ZDaOHtGFAAABZ+gfTpkAAAQDAEgwRgIhAJ7Ktx5lyE809NKyuIM7TJRm02XtWBsR pq+gGhZcRGltAiEA23bRvyXiuTkvYkHKGQWueOZTaiiKHNu3ncV/K6QDpk4AdgCH db/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCDDwAAAWfoH090AAAEAwBHMEUC IQD0cVWuld6pGAO7lCEpKALLJd5JNEqK98nodaFrx9t+PAIgWMoXIviKg8Jm49wD +007oOAMC2Xf9TnkVdky1vz8A7IwDQYJKoZIhvcNAQELBQADggEBAAVA/a5UH+lT ewiXQuJryu/jrvboh0LT5S77zmUu5yIozdWvudQyzpeYIGyZQNTzt1PxjIlKXv0E 26Y6DLIxCqMC5kN3HT5IUexsZiY45zCmxN50YIipMw4U7WE5Skeze4vHLiiCf6gh 67lKY0uetvpt9H/sjqx2q6TJ0C/Ljx+LfXMczSFBlbaQxTr5dQs7gEgIH+64OGrE ze/605Kj/5ryjkA3n1Hgk8YSiv0KlPm9CWgtFxUui2huJGj1N+5S88zHwMeiWbcF 5nO9ojmoqxIHJbx155YQTZHXeB3S584i9r+bNIwQt5CWBinwHkPv8fixNkwHohAA kp1yQ+2oeLQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxf7nj2F24LfiTXmML9tT 6hVJbe6MocARbeJhlHxqueN8SUe7BO42uM6QChPwaOdHkE5zIxoYdOYLGwL9mUCC tpOsPozDlyd/5cCvHtaJH9lBW1e5K5V3M6E9MujygjzqKbuoEkFhqVbUW8SQsw3t xJnm5nb9E+8fdhdd7ZqGt/lgKL9qHEkOFVCCMIwQFroG0y/xSFVuAvLIrAeNRaKe EBYAsLoLu4ikER1iRyGOeMGJ/TouLl7bYXfyMov5H2meBfISdM82BEm8CKMKXAHl M/jpcEarHevmtMRWW1x0xc6oY9TK8jD1yqXH0yvwBM6H09+jaSd2D21wXurpzL5x dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9818789107505998299817012775023012315 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-26 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'regalii.splitwise.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24994644187661516705635650885768546671748088559096823259194525315395965848419234602195387677087713199802694856332818895302466928385176922416367903166396618655923737449242760017643257026236438338244544871136851309009166053094703038976638039664486930153708841565077686424088178012692504627326778916507288566667045080409244217324381393338677119880306625711866346318115365967146825198828127406818800777641964039698980246287723595146683433632181903272297742318743357483259337903528326483592279875687003834122357145483204544648105263992780046245011019694523031994433218037426569981243944291623820294085187604945859461935479 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ccc64337d1c7ecb472d08b9d00bfbf4f263f0d4d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'regalii.splitwise.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed18500000167e81f4e9900000403004830460221009ecab71e65c84f34f4d2b2b8833b4c9466d365ed581b11a6afa01a165c44696d022100db76d1bf25e2b9392f6241ca1905ae78e6536a288a1cdbb79dc57f2ba403a64e0076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000167e81f4f740000040300473045022100f47155ae95dea91803bb9421292802cb25de49344a8af7c9e875a16bc7db7e3c022058ca1722f88a83c266e3dc03fb4d3ba0e00c0b65dff539e455d932d6fcfc03b2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000540fdae541fe9537b089742e26bcaefe3aef6e88742d3e52efbce652ee72228cdd5afb9d432ce9798206c9940d4f3b753f18c894a5efd04dba63a0cb2310aa302e643771d3e4851ec6c662638e730a6c4de746088a9330e14ed61394a47b37b8bc72e28827fa821ebb94a634b9eb6fa6df47fec8eac76aba4c9d02fcb8f1f8b7d731ccd214195b690c53af9750b3b8048081feeb8386ac4cdeffad392a3ff9af28e40379f51e093c6128afd0a94f9bd09682d17152e8b686e2468f537ee52f3ccc7c0c7a259b705e673bda239a8ab120725bc75e796104d91d7781dd2e7ce22f6bf9b348c10b790960629f01e43eff1f8b1364c07a21000929d7243eda878b4