www.daiki.jp
Issued by GlobalSign Domain Validation CA - SHA256 - G2
About this certificate
This digital certificate with serial number 11:cb:33:dd:0f:7e:17:94:bc:7f:b8:11 was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.daiki.jp,OU=Domain Control Validated,C=JP
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 11:cb:33:dd:0f:7e:17:94:bc:7f:b8:11Serial Number (int): 5506902026882058217722984465
Serial Number lenght: 93 bits, 12 octets
SubjectKeyId: 65:8d:d5:50:36:93:94:c1:95:c8:2f:6c:23:aa:36:cc:45:ce:70:47
AuthorityKeyId: ea:4e:7c:d4:80:2d:e5:15:81:86:26:8c:82:6d:c0:98:a4:cf:97:0f
Fingerprint (sha1): d7:da:ee:49:c7:0f:7b:07:0f:57:25:05:0e:00:a3:c9:9e:8e:ba:7c
Fingerprint (sha256): 00:00:6a:25:3a:ef:3f:05:f8:71:ad:4a:bf:1f:15:42:67:b7:fc:24:68:c8:f0:ae:80:72:c0:36:c9:2d:ac:52
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsdomainvalsha2g2CRL Distribution Point: http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl
Check the revocation status for certificate www.daiki.jp
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.daiki.jp
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.daiki.jp
daiki.jp
daiki.jp
Other certificates including the domain name daiki.jp
(limited to 100 certificates)
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
www.daiki.jp
Certificate
The complete raw certificate details for www.daiki.jp in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDTCCBPWgAwIBAgIMEcsz3Q9+F5S8f7gRMA0GCSqGSIb3DQEBCwUAMGAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTYwNAYDVQQDEy1H bG9iYWxTaWduIERvbWFpbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0gRzIwHhcN MTgwNDA0MDAzMDI2WhcNMTgwNTA3MDExNTA5WjBHMQswCQYDVQQGEwJKUDEhMB8G A1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRUwEwYDVQQDEwx3d3cuZGFp a2kuanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV0izJgfcIarOj NuCzKYxVljhIhsx93kqWJ62z1EAvxpT4PAh/23Zk2KLhGQs38QuyT39Iow6UGa7B fLj2QH5v3OYNFZ1FSnbt5ID63RzCNrkCQp7W8Bjq4MIKCxUhp+dTV2ljSWZxXRrN oDeUdTAMqfrAq/jPegBpENLc7bCw4vq1FvfzUf+1dVB/xPXfzKc2tai8pv8swJFm yHFAlb9FBU6DFL+S9Ue0fNEyL1MzY11vSMqEIYrSFui8DMCjmomHxlPts6T06/lg xm0P+ible+u26fbClJT/emdIBs+/fwz7qZeza6xbrRShAeZHZhSxhS7w4gHjxVhv LJ3nPgkxAgMBAAGjggLeMIIC2jAOBgNVHQ8BAf8EBAMCBaAwgZQGCCsGAQUFBwEB BIGHMIGEMEcGCCsGAQUFBzAChjtodHRwOi8vc2VjdXJlLmdsb2JhbHNpZ24uY29t L2NhY2VydC9nc2RvbWFpbnZhbHNoYTJnMnIxLmNydDA5BggrBgEFBQcwAYYtaHR0 cDovL29jc3AyLmdsb2JhbHNpZ24uY29tL2dzZG9tYWludmFsc2hhMmcyMFYGA1Ud IARPME0wQQYJKwYBBAGgMgEKMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3Lmds b2JhbHNpZ24uY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECATAJBgNVHRMEAjAAMEMG A1UdHwQ8MDowOKA2oDSGMmh0dHA6Ly9jcmwuZ2xvYmFsc2lnbi5jb20vZ3MvZ3Nk b21haW52YWxzaGEyZzIuY3JsMCEGA1UdEQQaMBiCDHd3dy5kYWlraS5qcIIIZGFp a2kuanAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0GA1UdDgQWBBRl jdVQNpOUwZXIL2wjqjbMRc5wRzAfBgNVHSMEGDAWgBTqTnzUgC3lFYGGJoyCbcCY pM+XDzCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2ALvZ37wfinG1k5Qjl6qSe0c4 V5UKq1LoGpCWZDaOHtGFAAABYo4P5RYAAAQDAEcwRQIgTKC7Hi6eRa9T9eqs1RXW jpqQ+4YGZFPWnYnsV3qkYksCIQCjnt3Eo1JWtA7BABPS4JJBWsb19pMopDE2tl0v r3VDAAB3AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABYo4P5EEA AAQDAEgwRgIhAMYsF3BP4Lf51y/kfsb/mx7RG5OA1xC/fcYjH8+4sWYLAiEAic8t UEEJoyCOzKT68S/r+G+vJ43gdk3/CiLwy3DibyAwDQYJKoZIhvcNAQELBQADggEB AEQO0f8NPN/d1YhmN4ZvJx/n+QapH+Lv5pIwqCdrVi22x9j6zvO14Y3iWR0x+kGk TQ0LJcxyUFZI60FGKfi9qfdW1+ZZiZwk8hsShRVL/H9sUcfNxJqaV6inI+O7BUI1 RVWWtHfdL2NIXPWYI774Bt66EirYh+3us0ikE4lXaEkePG5bDdeqdprb70aJ0We/ lGmPDz85QPLIFpAQeQe9QGL60fM5o1Xc1rtovFepSgv77XIVocwSBnB7zaGLU9u9 hBj6MVzEJgYAx9xHHQ0zOBJGyfA3eTUlqbVbKEVU7aQoSfaOm4YJyj6oakBbM9FN f/6Ep5Gz7DnfRePPtW+0Gcc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldIsyYH3CGqzozbgsymM VZY4SIbMfd5Kliets9RAL8aU+DwIf9t2ZNii4RkLN/ELsk9/SKMOlBmuwXy49kB+ b9zmDRWdRUp27eSA+t0cwja5AkKe1vAY6uDCCgsVIafnU1dpY0lmcV0azaA3lHUw DKn6wKv4z3oAaRDS3O2wsOL6tRb381H/tXVQf8T138ynNrWovKb/LMCRZshxQJW/ RQVOgxS/kvVHtHzRMi9TM2Ndb0jKhCGK0hbovAzAo5qJh8ZT7bOk9Ov5YMZtD/om 5Xvrtun2wpSU/3pnSAbPv38M+6mXs2usW60UoQHmR2YUsYUu8OIB48VYbyyd5z4J MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5506902026882058217722984465 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Domain Validation CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-04 00:30:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-07 01:15:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'JP' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.daiki.jp' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18913148570428760051009552808896946030651590081969134821305530159892902663284029731859073648099669196669546994846216951980115159754092860099624003019705046685356553928549979756617061425900358488511460620476470607789833268451927108050014548454634620964954142810449582898349208626902005520190125111322055887821056491684525833291899392835123180848161053171281171290085693903373580996750721323354723647666639270111216382121704690741752079666078695183370787160232255260104290951759312210978422504427886708842388729284612451573600511108574003370251660283609007668183164127032464979088361651104054344501572350809793087015217 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsdomainvalsha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10 (globalsignDVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.daiki.jp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daiki.jp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 658dd550369394c195c82f6c23aa36cc45ce7047 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ea4e7cd4802de5158186268c826dc098a4cf970f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001628e0fe516000004030047304502204ca0bb1e2e9e45af53f5eaacd515d68e9a90fb86066453d69d89ec577aa4624b022100a39eddc4a35256b40ec10013d2e092415ac6f5f69328a43136b65d2faf7543000077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001628e0fe4410000040300483046022100c62c17704fe0b7f9d72fe47ec6ff9b1ed11b9380d710bf7dc6231fcfb8b1660b02210089cf2d504109a3208ecca4faf12febf86faf278de0764dff0a22f0cb70e26f20 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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