login.oddo-bhf.ch
- BHF-BANK (Schweiz) AG -
Issued by QuoVadis Global SSL ICA G2
About this certificate
This digital certificate with serial number 13:65:fe:e6:95:8f:95:12:8e:73:9e:9f:6a:c4:9c:da:00:b5:79:3f was issued on by QuoVadis Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
BHF-BANK (Schweiz) AG
Organization:
BHF-BANK (Schweiz) AG
Organization unit: IT
Organization unit: IT
State / Province:
Zurich
Locality: Zürich
Country: CH
Locality: Zürich
Country: CH
QuoVadis Limited
Organization:
QuoVadis Limited
Country:
BM
This certificate has expire since
Certificate Details
Serial Number (hex): 13:65:fe:e6:95:8f:95:12:8e:73:9e:9f:6a:c4:9c:da:00:b5:79:3fSerial Number (int): 110745404895076096188167141978047555022502590783
Serial Number lenght: 157 bits, 20 octets
SubjectKeyId: 1a:81:26:e2:bf:40:22:22:b3:c8:84:90:ed:4b:50:be:3e:30:30:4c
AuthorityKeyId: 91:19:62:ad:5b:17:a7:30:fb:f0:de:39:25:b1:bd:8c:b9:b8:51:27
Fingerprint (sha1): 2e:c8:f4:8a:3e:1b:0c:76:ae:ee:a1:6d:d5:67:ea:50:5d:3e:a9:12
Fingerprint (sha256): ea:60:23:8c:a1:fb:87:a0:7e:d5:dd:d6:5c:e5:5a:d9:d7:08:17:a2:a0:b6:e9:86:57:a7:25:cc:92:6a:19:48
Issuing Certificate URL: http://trust.quovadisglobal.com/qvsslg2.crt
Revocation information
OCSP Server: http://ocsp.quovadisglobal.comCRL Distribution Point: http://crl.quovadisglobal.com/qvsslg2.crl
Check the revocation status for certificate login.oddo-bhf.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for login.oddo-bhf.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
login.oddo-bhf.ch
gateway.oddo-bhf.ch
gateway.oddo-bhf.ch
Other certificates including the domain name oddo-bhf.ch
(limited to 100 certificates)
Certificate
The complete raw certificate details for login.oddo-bhf.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGIDCCBQigAwIBAgIUE2X+5pWPlRKOc56fasSc2gC1eT8wDQYJKoZIhvcNAQEL BQAwTTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxIzAh BgNVBAMTGlF1b1ZhZGlzIEdsb2JhbCBTU0wgSUNBIEcyMB4XDTIwMDQyMzEzNTYx NFoXDTIyMDQyMzE0MDYwMFoweTELMAkGA1UEBhMCQ0gxDzANBgNVBAgMBlp1cmlj aDEQMA4GA1UEBwwHWsO8cmljaDEeMBwGA1UECgwVQkhGLUJBTksgKFNjaHdlaXop IEFHMQswCQYDVQQLDAJJVDEaMBgGA1UEAwwRbG9naW4ub2Rkby1iaGYuY2gwggIi MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDXvNkgu4Iv8zxJi3ho5se7M6q8 XJ9NjVySwINF5QDXO54hkkd06gvl3jsqHdpSBvxApJpW79VXMFVhIp0usxgUfaQL ZJJ7JMcbHb9OwOMl0pZ/K1xt0T7CM7AFE8gIuk7c/G0Cyn1JOHCp4aU9CV7u3Xf8 ukqccv4Zrf+3TTkCf7u/iLDIQ6LY6+nEolZzLMUKxuj7TpsFovbIE9RyJt2F7lEE HCTW3Wh5gede3whe/MjuJ+aQ59gdGSb50wjAu2pD9ATHzvxKz42MP4V48U+2wWmk dg9/g81kjs1+Mj5NSYxqLWn6V65rtANVraXms/TOmop41bxGNZB5/a6UmUMphL7B btALx7KFrNkCp4Kl4+P2nG/gthidnCSSiT+dH8ITYDxq2JgLf7crWngNhifzTa4q qCUfJbWl8VPp3GRmJP3b/D6J/LzDehbBjSNHCPv3Fr1Aljqcu+6U8TMkYFuoHt/f 9T56DfXlwskiuchKTgzSYqOWfGc4ctJshZbh1dL6ZzGBGSPeEgTsNktRNiWhyiiF OVg9H2Rvp7Qe3aPPbHW93hnPAGeS8b+s3IVSil089aAYRdPaicYoEmJLFocbiVcq 6oBtLcR0nNcQxQcbpqnRt0+guuNUjblKNeIpW3aaIPxWQFsWVLQc6XGh1kOEtPes xp+91FDzZ3e94HBRsQIDAQABo4IByjCCAcYwCQYDVR0TBAIwADAfBgNVHSMEGDAW gBSRGWKtWxenMPvw3jklsb2MubhRJzBzBggrBgEFBQcBAQRnMGUwNwYIKwYBBQUH MAKGK2h0dHA6Ly90cnVzdC5xdW92YWRpc2dsb2JhbC5jb20vcXZzc2xnMi5jcnQw KgYIKwYBBQUHMAGGHmh0dHA6Ly9vY3NwLnF1b3ZhZGlzZ2xvYmFsLmNvbTAxBgNV HREEKjAoghFsb2dpbi5vZGRvLWJoZi5jaIITZ2F0ZXdheS5vZGRvLWJoZi5jaDBR BgNVHSAESjBIMEYGDCsGAQQBvlgAAmQBATA2MDQGCCsGAQUFBwIBFihodHRwOi8v d3d3LnF1b3ZhZGlzZ2xvYmFsLmNvbS9yZXBvc2l0b3J5MB0GA1UdJQQWMBQGCCsG AQUFBwMCBggrBgEFBQcDATA6BgNVHR8EMzAxMC+gLaArhilodHRwOi8vY3JsLnF1 b3ZhZGlzZ2xvYmFsLmNvbS9xdnNzbGcyLmNybDAdBgNVHQ4EFgQUGoEm4r9AIiKz yISQ7UtQvj4wMEwwDgYDVR0PAQH/BAQDAgWgMBMGCisGAQQB1nkCBAMBAf8EAgUA MA0GCSqGSIb3DQEBCwUAA4IBAQDLl+VTuXXjoPM54S+aH4F87tgkTuUfP9jiOH80 rF+LW5qp8RHVoFA7Wrlfo6ULguFecs3Plya1K1c7MnnQA0FLdKGOt0Y9frWm2qDG ebilRQWEza9PWNhWiBGWx3fr9bR8xf7YvRUu+LgVhHf0CtH8Z9k1QLlodWB8cE4y 6DaRU9qtKMjtxIfz91guTN8NMwKgpUWi1Lff7gxTY0+VGCPYjsAVzpACO6SG/DIc JQt47FwTKkw0/vnLAm0sJ4bSbHNJCxiZiGBXTyG9C3pr0ZnR/uMpS2vFReE+W/ym PKGuxIWLij3PPqXlnCcfH91KM2dXHbzo72gIi+FT6VcXD+aa -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA17zZILuCL/M8SYt4aObH uzOqvFyfTY1cksCDReUA1zueIZJHdOoL5d47Kh3aUgb8QKSaVu/VVzBVYSKdLrMY FH2kC2SSeyTHGx2/TsDjJdKWfytcbdE+wjOwBRPICLpO3PxtAsp9SThwqeGlPQle 7t13/LpKnHL+Ga3/t005An+7v4iwyEOi2OvpxKJWcyzFCsbo+06bBaL2yBPUcibd he5RBBwk1t1oeYHnXt8IXvzI7ifmkOfYHRkm+dMIwLtqQ/QEx878Ss+NjD+FePFP tsFppHYPf4PNZI7NfjI+TUmMai1p+leua7QDVa2l5rP0zpqKeNW8RjWQef2ulJlD KYS+wW7QC8eyhazZAqeCpePj9pxv4LYYnZwkkok/nR/CE2A8atiYC3+3K1p4DYYn 802uKqglHyW1pfFT6dxkZiT92/w+ify8w3oWwY0jRwj79xa9QJY6nLvulPEzJGBb qB7f3/U+eg315cLJIrnISk4M0mKjlnxnOHLSbIWW4dXS+mcxgRkj3hIE7DZLUTYl ocoohTlYPR9kb6e0Ht2jz2x1vd4ZzwBnkvG/rNyFUopdPPWgGEXT2onGKBJiSxaH G4lXKuqAbS3EdJzXEMUHG6ap0bdPoLrjVI25SjXiKVt2miD8VkBbFlS0HOlxodZD hLT3rMafvdRQ82d3veBwUbECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 110745404895076096188167141978047555022502590783 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Global SSL ICA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-23 13:56:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-04-23 14:06:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zurich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zürich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'BHF-BANK (Schweiz) AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'login.oddo-bhf.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 880132979539128764199477961161636964329608369011561443923285956779123566646318686676267077458627806201159804074867284711994962241440834494304371240339274299030016636601206893255365093054244090315798425193666259360026871496397585363496620323791381638557030658964843263293898127303921323045710132501854697014038524738368303564186833745575916354314578309670749428148787531576460572704886155895796721858177022699405397557644131458694776988910253418630764768650792671149197250010422802708123281669609513272293994053996708785312105553861002408857569683704261054942502410898508864426841175730938934573207393719908585480272286535794964014014686330067916842970579535713366886376826666951668086597095620880732936310334052034181017425132481463259874166145339811380125415700341997190448668680956444497118870077526509713405033882572120340515879987871587002182897629172636391255747746232776208553462956355093870954750875923644186925956762474882019920968715495006234867556490829139760556624092281568938241616624208099264139142435662858952492057030751817568530798593744502944988246110024718389337215689521866668209853863523659000693550250548412771184577810786154440058438984282470070156599885008666084958903768083568432410989266541159371175025988017 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 911962ad5b17a730fbf0de3925b1bd8cb9b85127 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trust.quovadisglobal.com/qvsslg2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.quovadisglobal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.oddo-bhf.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gateway.oddo-bhf.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.8024.0.2.100.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.quovadisglobal.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.quovadisglobal.com/qvsslg2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1a8126e2bf402222b3c88490ed4b50be3e30304c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00cb97e553b975e3a0f339e12f9a1f817ceed8244ee51f3fd8e2387f34ac5f8b5b9aa9f111d5a0503b5ab95fa3a50b82e15e72cdcf9726b52b573b3279d003414b74a18eb7463d7eb5a6daa0c679b8a5450584cdaf4f58d856881196c777ebf5b47cc5fed8bd152ef8b8158477f40ad1fc67d93540b96875607c704e32e8369153daad28c8edc487f3f7582e4cdf0d3302a0a545a2d4b7dfee0c53634f951823d88ec015ce90023ba486fc321c250b78ec5c132a4c34fef9cb026d2c2786d26c73490b18998860574f21bd0b7a6bd199d1fee3294b6bc545e13e5bfca63ca1aec4858b8a3dcf3ea5e59c271f1fdd4a3367571dbce8ef68088be153e957170fe69a