sv.doheny.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0f:d1:ae:fe:54:f0:1e:af:d8:88:92:92:c3:43:a4:b1 was issued on by Amazon.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sv.doheny.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0f:d1:ae:fe:54:f0:1e:af:d8:88:92:92:c3:43:a4:b1Serial Number (int): 21027159269718859018193573050302309553
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 8c:66:6c:37:25:8e:39:1c:26:45:88:0d:99:0e:51:aa:4c:e3:5b:f3
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): bb:20:3d:24:1d:f0:e1:7b:b7:3c:24:a8:f5:16:a6:e5:a2:49:f2:75
Fingerprint (sha256): f8:73:46:b9:cc:ae:83:63:39:1d:a4:12:31:50:04:4a:7a:ae:93:02:8c:9b:2d:0c:a7:78:61:54:bb:31:e2:fd
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate sv.doheny.com
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sv.doheny.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sv.doheny.com
sv.valleyvet.com
sv.spoonflower.com
sv.littlewordsproject.com
sv.dxl.com
sv.mrsfields.com
sv.bountyhunterwine.com
sv.karenkane.com
sv.valleyvet.com
sv.spoonflower.com
sv.littlewordsproject.com
sv.dxl.com
sv.mrsfields.com
sv.bountyhunterwine.com
sv.karenkane.com
Other certificates including the domain name doheny.com
(limited to 100 certificates)
www.doheny.com
mail.doheny.com
em.doheny.com
enews.doheny.com
sni.cloudflaressl.com
sv.doheny.com
staging3.doheny.com
sv.doheny.com
sni.cloudflaressl.com
sv.doheny.com
sv.doheny.com
www.doheny.com
mail.doheny.com
sv.doheny.com
sni.cloudflaressl.com
sv.doheny.com
ssl440158.cloudflaressl.com
sni.cloudflaressl.com
sv.doheny.com
sv.doheny.com
mail.doheny.com
sv.doheny.com
sv.doheny.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl440160.cloudflaressl.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
sni.cloudflaressl.com
ssl440159.cloudflaressl.com
staging2.doheny.com
mail.doheny.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
sni.cloudflaressl.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
www.doheny.com
enews.doheny.com
staging3.doheny.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
mail.doheny.com
enews.doheny.com
www.doheny.com
sv.doheny.com
em.doheny.com
sni.cloudflaressl.com
www.doheny.com
www.doheny.com
sv.doheny.com
sv.doheny.com
enews.doheny.com
sv.doheny.com
sv.doheny.com
staging2.doheny.com
enews.doheny.com
sv.doheny.com
enews.doheny.com
sni.cloudflaressl.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
enews.doheny.com
em.doheny.com
ssl440160.cloudflaressl.com
doheny.com
sni.cloudflaressl.com
sv.doheny.com
ssl440160.cloudflaressl.com
sv.doheny.com
ssl440160.cloudflaressl.com
www.doheny.com
sv.doheny.com
sv.doheny.com
staging.doheny.com
ssl440159.cloudflaressl.com
sv.doheny.com
sv.doheny.com
staging.doheny.com
ssl440158.cloudflaressl.com
enews.doheny.com
sv.doheny.com
www.doheny.com
sv.doheny.com
sv.doheny.com
em.doheny.com
sv.doheny.com
sv.doheny.com
ssl440160.cloudflaressl.com
sv.doheny.com
mail.doheny.com
em.doheny.com
enews.doheny.com
sni.cloudflaressl.com
sv.doheny.com
staging3.doheny.com
sv.doheny.com
sni.cloudflaressl.com
sv.doheny.com
sv.doheny.com
www.doheny.com
mail.doheny.com
sv.doheny.com
sni.cloudflaressl.com
sv.doheny.com
ssl440158.cloudflaressl.com
sni.cloudflaressl.com
sv.doheny.com
sv.doheny.com
mail.doheny.com
sv.doheny.com
sv.doheny.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl440160.cloudflaressl.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
sni.cloudflaressl.com
ssl440159.cloudflaressl.com
staging2.doheny.com
mail.doheny.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
sni.cloudflaressl.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
www.doheny.com
enews.doheny.com
staging3.doheny.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
mail.doheny.com
enews.doheny.com
www.doheny.com
sv.doheny.com
em.doheny.com
sni.cloudflaressl.com
www.doheny.com
www.doheny.com
sv.doheny.com
sv.doheny.com
enews.doheny.com
sv.doheny.com
sv.doheny.com
staging2.doheny.com
enews.doheny.com
sv.doheny.com
enews.doheny.com
sni.cloudflaressl.com
sv.doheny.com
sv.doheny.com
sv.doheny.com
enews.doheny.com
em.doheny.com
ssl440160.cloudflaressl.com
doheny.com
sni.cloudflaressl.com
sv.doheny.com
ssl440160.cloudflaressl.com
sv.doheny.com
ssl440160.cloudflaressl.com
www.doheny.com
sv.doheny.com
sv.doheny.com
staging.doheny.com
ssl440159.cloudflaressl.com
sv.doheny.com
sv.doheny.com
staging.doheny.com
ssl440158.cloudflaressl.com
enews.doheny.com
sv.doheny.com
www.doheny.com
sv.doheny.com
sv.doheny.com
em.doheny.com
sv.doheny.com
sv.doheny.com
ssl440160.cloudflaressl.com
sv.doheny.com
Certificate
The complete raw certificate details for sv.doheny.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIQD9Gu/lTwHq/YiJKSw0OksTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDkxMTAwMDAwMFoXDTI0MTAwOTIzNTk1OVowGDEW MBQGA1UEAxMNc3YuZG9oZW55LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBALbq1YBHUoZScTdazn6Gtu9B0pQh04JO/vUefTGEozqsNuRyzbCvpglx dO60xtuxJ+EcGByNEtreu+rxGeciws+5MkozLTtSiplAC+M6fsaDzjY/zvStQ4cb VLOmwP8XnvIhVGP1k9KZjJkjCzRXC8jjfsFnCEVkmp731uX4DYnqgjfg+/6ZS5/l vsjJg4OK1zSgs87rfGESad0URhT2sgj8apb1DQxKQaYaIKBU6DcJoLD1rXDSaBhS XRLbxsyTvNAz4VfD+xBMoaFmqd2lHqjZLn67p4KekyXdY2fuxCodopNSGbTOkXfE Kiryk+ueUE0sc0Whrs5TIqneLUznc40CAwEAAaOCAgYwggICMB8GA1UdIwQYMBaA FMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBSMZmw3JY45HCZFiA2ZDlGq TONb8zCBpAYDVR0RBIGcMIGZgg1zdi5kb2hlbnkuY29tghBzdi52YWxsZXl2ZXQu Y29tghJzdi5zcG9vbmZsb3dlci5jb22CGXN2LmxpdHRsZXdvcmRzcHJvamVjdC5j b22CCnN2LmR4bC5jb22CEHN2Lm1yc2ZpZWxkcy5jb22CF3N2LmJvdW50eWh1bnRl cndpbmUuY29tghBzdi5rYXJlbmthbmUuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIB MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw OwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMi5hbWF6b250cnVzdC5j b20vcjJtMDIuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDov L29jc3AucjJtMDIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8v Y3J0LnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIw ADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIZZtAimj SEvHO1St+x5KfO8XodP+o9ciMpDenjImICAI2C/prLcTHgliGPqfYX3+yDOpbI77 jgV+uY3TyqGTLfbGneBVdFF27VVFf5QaJLvhcjoOKF4DN7P2rC6+HGFiSG2uSolk 4uZr0I+In2oGYLEFTWRTjE8KRQGkKpQOe3Mq570wyb1UUqX8Ts7rU/762NpRKKyS UaoekijBpYhcvxOSJOREI3fXvAWENuZV7FJw0LxcPz0ToI4lOp2cEh0rojQqRJvN wP4gU8Ajrdd+P6bZY000yd7WvbmZS5Ph1nSr7z5ud+h07x6u0j2mnK/DzMZ1eHJO J6pcfiYIsC7rMQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAturVgEdShlJxN1rOfoa2 70HSlCHTgk7+9R59MYSjOqw25HLNsK+mCXF07rTG27En4RwYHI0S2t676vEZ5yLC z7kySjMtO1KKmUAL4zp+xoPONj/O9K1DhxtUs6bA/xee8iFUY/WT0pmMmSMLNFcL yON+wWcIRWSanvfW5fgNieqCN+D7/plLn+W+yMmDg4rXNKCzzut8YRJp3RRGFPay CPxqlvUNDEpBphogoFToNwmgsPWtcNJoGFJdEtvGzJO80DPhV8P7EEyhoWap3aUe qNkufrungp6TJd1jZ+7EKh2ik1IZtM6Rd8QqKvKT655QTSxzRaGuzlMiqd4tTOdz jQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 21027159269718859018193573050302309553 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sv.doheny.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23091172459574947047115115194946263013889267580682091581639831154906307233984826596262983171597757909145078177177481514088454116525086083809037014936766521393891859679045422951106160703299008741313338979439176919974992348824777855362362590519654544932248812225283298646543763228260550618444605605306968698554642594571423062175299389306764249356884968321651928154007317647312261726650574898374208365775009047989199688681574253925489916301004685368491772333630054193195725359030452074047943005674495121364640790431887276630196756983532845152173156486404971823682612997325417350887748562213787424140018496443152171758477 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8c666c37258e391c2645880d990e51aa4ce35bf3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (156 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sv.doheny.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sv.valleyvet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sv.spoonflower.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sv.littlewordsproject.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sv.dxl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sv.mrsfields.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sv.bountyhunterwine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sv.karenkane.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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