api.ukko.fi
Issued by RapidSSL CA
About this certificate
This digital certificate with serial number 0a:f3:52 was issued on by GeoTrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
SERIALNUMBER=fedJojaWF1/a7WbWGmjE4MZEdMtn3KJh,CN=api.ukko.fi,OU=GT74272294+OU=See www.rapidssl.com/resources/cps (c)13+OU=Domain Control Validated - RapidSSL(R)
GeoTrust, Inc.
Organization:
GeoTrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:f3:52Serial Number (int): 717650
Serial Number lenght: 20 bits, 3 octets
SubjectKeyId: 6a:b9:0a:68:4d:18:fe:04:ed:3e:95:ab:9b:02:ab:9a:fb:d2:9a:e7
AuthorityKeyId: 6b:69:3d:6a:18:42:4a:dd:8f:02:65:39:fd:35:24:86:78:91:16:30
Fingerprint (sha1): 5b:d2:9c:a8:ba:21:26:d2:c5:9a:52:76:4e:e4:3e:66:09:d1:eb:a8
Fingerprint (sha256): 00:0b:d6:b1:1a:be:af:63:7c:de:29:8f:d1:ed:b5:b6:98:f9:a4:ac:5f:f9:77:5a:35:f8:86:fb:55:77:98:49
Issuing Certificate URL: http://rapidssl-aia.geotrust.com/rapidssl.crt
Revocation information
OCSP Server: http://rapidssl-ocsp.geotrust.comCRL Distribution Point: http://rapidssl-crl.geotrust.com/crls/rapidssl.crl
Check the revocation status for certificate api.ukko.fi
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api.ukko.fi
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.ukko.fi
Other certificates including the domain name ukko.fi
(limited to 100 certificates)
api.ukko.fi
*.ukko.fi
tuki.ukko.fi
*.ukko.fi
*.ukko.fi
tuki.ukko.fi
*.ukko.fi
extra.ukko.fi
*.ukko.fi
sandbox.ukko.fi
tuki.ukko.fi
*.ukko.fi
ukko.fi
tuki.ukko.fi
tuki.ukko.fi
tuki.ukko.fi
info.ukko.fi
*.ukko.fi
tuki.ukko.fi
info.ukko.fi
*.ukko.fi
*.ukko.fi
info.ukko.fi
*.ukko.fi
extra.ukko.fi
tuki.ukko.fi
info.ukko.fi
tuki.ukko.fi
extra.ukko.fi
*.ukko.fi
*.ukko.fi
info.ukko.fi
*.ukko.fi
*.ukko.fi
tuki.ukko.fi
tuki.ukko.fi
tiedotteet.ukko.fi
tuki.ukko.fi
tuki.ukko.fi
*.ukko.fi
tuki.ukko.fi
*.ukko.fi
*.ukko.fi
*.ukko.fi
info.ukko.fi
*.ukko.fi
tuki.ukko.fi
info.ukko.fi
tuki.ukko.fi
info.ukko.fi
tuki.ukko.fi
tuki.ukko.fi
info.ukko.fi
*.ukko.fi
development.ukko.fi
*.ukko.fi
*.ukko.fi
tuki.ukko.fi
*.ukko.fi
*.ukko.fi
tuki.ukko.fi
*.ukko.fi
extra.ukko.fi
*.ukko.fi
sandbox.ukko.fi
tuki.ukko.fi
*.ukko.fi
ukko.fi
tuki.ukko.fi
tuki.ukko.fi
tuki.ukko.fi
info.ukko.fi
*.ukko.fi
tuki.ukko.fi
info.ukko.fi
*.ukko.fi
*.ukko.fi
info.ukko.fi
*.ukko.fi
extra.ukko.fi
tuki.ukko.fi
info.ukko.fi
tuki.ukko.fi
extra.ukko.fi
*.ukko.fi
*.ukko.fi
info.ukko.fi
*.ukko.fi
*.ukko.fi
tuki.ukko.fi
tuki.ukko.fi
tiedotteet.ukko.fi
tuki.ukko.fi
tuki.ukko.fi
*.ukko.fi
tuki.ukko.fi
*.ukko.fi
*.ukko.fi
*.ukko.fi
info.ukko.fi
*.ukko.fi
tuki.ukko.fi
info.ukko.fi
tuki.ukko.fi
info.ukko.fi
tuki.ukko.fi
tuki.ukko.fi
info.ukko.fi
*.ukko.fi
development.ukko.fi
*.ukko.fi
Certificate
The complete raw certificate details for api.ukko.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIDCvNSMA0GCSqGSIb3DQEBBQUAMDwxCzAJBgNVBAYTAlVT MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEUMBIGA1UEAxMLUmFwaWRTU0wgQ0Ew HhcNMTMwMzA2MjMxMDE4WhcNMTQwMzEwMDM1NDEwWjCBujEpMCcGA1UEBRMgZmVk Sm9qYVdGMS9hN1diV0dtakU0TVpFZE10bjNLSmgxEzARBgNVBAsTCkdUNzQyNzIy OTQxMTAvBgNVBAsTKFNlZSB3d3cucmFwaWRzc2wuY29tL3Jlc291cmNlcy9jcHMg KGMpMTMxLzAtBgNVBAsTJkRvbWFpbiBDb250cm9sIFZhbGlkYXRlZCAtIFJhcGlk U1NMKFIpMRQwEgYDVQQDEwthcGkudWtrby5maTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALrG1jaAUze/EDh6N7vN8iQS87Kl5D7sCdDTUcHGirNTmuS7 CvC9y0dJI3juE5u/vBFbZ+6S8mxF5us9PYWvGYnWYm5NYLKJgA1P4CbRlYQt/oO+ uRf4QqJKyIrG1upi+YpxmyfiwFaJZNdtzHBIAK9xF0eYyPoag8UTr1VmRp1Vpb3o 7+CIpkhC96ARMXmPgE5WfsMq98u297hms9kDwPCDbQ2HFFrz1r/idbX6udSOCswN bHy3BA1gTRA8VmYIVw0ij3uFrMPixNga6FA8a74jCRmLut+18LhWeoP1+PXtoNcG EMo8SA/aTuhp+/Nr1eNE/cVyNxArLYoeXa8WjeECAwEAAaOCAaYwggGiMB8GA1Ud IwQYMBaAFGtpPWoYQkrdjwJlOf01JIZ4kRYwMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwFgYDVR0RBA8wDYILYXBpLnVra28u ZmkwQwYDVR0fBDwwOjA4oDagNIYyaHR0cDovL3JhcGlkc3NsLWNybC5nZW90cnVz dC5jb20vY3Jscy9yYXBpZHNzbC5jcmwwHQYDVR0OBBYEFGq5CmhNGP4E7T6Vq5sC q5r70prnMAwGA1UdEwEB/wQCMAAweAYIKwYBBQUHAQEEbDBqMC0GCCsGAQUFBzAB hiFodHRwOi8vcmFwaWRzc2wtb2NzcC5nZW90cnVzdC5jb20wOQYIKwYBBQUHMAKG LWh0dHA6Ly9yYXBpZHNzbC1haWEuZ2VvdHJ1c3QuY29tL3JhcGlkc3NsLmNydDBM BgNVHSAERTBDMEEGCmCGSAGG+EUBBzYwMzAxBggrBgEFBQcCARYlaHR0cDovL3d3 dy5nZW90cnVzdC5jb20vcmVzb3VyY2VzL2NwczANBgkqhkiG9w0BAQUFAAOCAQEA fZAdvOSevy/kgReVCoK0Tpnop1hFmm8KfdT0qEi3b6zhRpuwyvo/IggrXwliCuKs mLxIfvZSUG70G6ntb+zqQz9QgFWiScsO595MunPvggfkYjL4wE3XneRJ/0yVxM06 8clUplRP9Uih5Y/nHeGaeHXRyxY1vguSahDaykXGWsDrGXCVJ0/NOS1ULUb6Fp8z bFtbMtTvzWKR8BlSXB+2DdXKfz49hEB7ashnjjY+kRNNEaiXmvGIyl+VdYNXM12D FfT8a7Hrrpj161k0YDp+oVs9JoeSdkq/H2tgOziEN6f5+RM2wAFWGORv9L9GZF5n HdDa0zXzvXaOeDrh9r/AcA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusbWNoBTN78QOHo3u83y JBLzsqXkPuwJ0NNRwcaKs1Oa5LsK8L3LR0kjeO4Tm7+8EVtn7pLybEXm6z09ha8Z idZibk1gsomADU/gJtGVhC3+g765F/hCokrIisbW6mL5inGbJ+LAVolk123McEgA r3EXR5jI+hqDxROvVWZGnVWlvejv4IimSEL3oBExeY+ATlZ+wyr3y7b3uGaz2QPA 8INtDYcUWvPWv+J1tfq51I4KzA1sfLcEDWBNEDxWZghXDSKPe4Wsw+LE2BroUDxr viMJGYu637XwuFZ6g/X49e2g1wYQyjxID9pO6Gn782vV40T9xXI3ECstih5drxaN 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 717650 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-03-06 23:10:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-03-10 03:54:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fedJojaWF1/a7WbWGmjE4MZEdMtn3KJh' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT74272294' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)13' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.ukko.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23578374788917618493727081590342967043251723208123725484878745875202039414693281610911563872777730121712182293930542683593470842486428822194703022905473362821424176968967160057597647928238092088403912903902481380629831232700676987067358383688936608166862751163020037335319673228834498197229991726552085222464055938489571915442421486289771642921888937756120237438355412944046100578677461354838061571013789187108539710542556623293016120718622551638478803577524917354916331511988448187638416171778056403000635209153324627969790545063354334901623986430256926248612215462187824492900746502749354803323301421227611476364769 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b693d6a18424add8f026539fd35248678911630 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.ukko.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-crl.geotrust.com/crls/rapidssl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6ab90a684d18fe04ed3e95ab9b02ab9afbd29ae7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-aia.geotrust.com/rapidssl.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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