DV SSL/TLS Certificate for *.fostering.net

Certificate has expired

Issued by Starfield Technologies, Inc. (Starfield Secure Certificate Authority - G2)

About the *.fostering.net DV SSL/TLS Certificate

This certificate with serial number 93:b5:f0:bd:1c:d9:ce:e7 for *.fostering.net was issued on by Starfield Technologies, Inc..

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate has already expired and will cause a warning or error message. We have found some minor issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.fostering.net provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Starfield Technologies, Inc.

Organization: Starfield Technologies, Inc.
Organizational unit: http://certs.starfieldtech.com/repository/
State / Province: Arizona
Locality: Scottsdale
Country: US

This X.509 certificate expired on

Certificate Details

Serial Number (hex): 93:b5:f0:bd:1c:d9:ce:e7
Serial Number (int): 10643677989383556839
Serial Number Length: 64 bits, 8 octets

Subject Key Identifier: 89:6b:5f:95:9c:0d:42:dc:23:b9:af:45:92:f5:2b:b8:3c:20:4c:39
Authority Key Identifier: 25:45:81:68:50:26:38:3d:3b:2d:2c:be:cd:6a:d9:b6:3d:b3:66:63

Fingerprint (SHA-1): 46:a3:3a:ad:47:6f:10:6a:40:19:40:04:8e:36:55:d7:f9:5f:be:53
Fingerprint (SHA-256): 51:9f:64:df:c2:5a:ec:a2:a8:f7:5b:cb:4b:a8:67:ac:f0:0c:7a:d3:5f:47:7f:66:51:f3:dc:c5:b7:11:12:a2

Issuing Certificate URL: http://certificates.starfieldtech.com/repository/sfig2.crt

Revocation Information

OCSP Server: http://ocsp.starfieldtech.com/
CRL Distribution Point: http://crl.starfieldtech.com/sfig2s1-251.crl

Check the revocation status for certificate *.fostering.net
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.fostering.net

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for *.fostering.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIHZjCCBk6gAwIBAgIJAJO18L0c2c7nMA0GCSqGSIb3DQEBCwUAMIHGMQswCQYD
VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEl
MCMGA1UEChMcU3RhcmZpZWxkIFRlY2hub2xvZ2llcywgSW5jLjEzMDEGA1UECxMq
aHR0cDovL2NlcnRzLnN0YXJmaWVsZHRlY2guY29tL3JlcG9zaXRvcnkvMTQwMgYD
VQQDEytTdGFyZmllbGQgU2VjdXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcy
MB4XDTIwMTEwMjExNDIzOFoXDTIxMTAyOTE3NDE0NVowPTEhMB8GA1UECxMYRG9t
YWluIENvbnRyb2wgVmFsaWRhdGVkMRgwFgYDVQQDDA8qLmZvc3RlcmluZy5uZXQw
ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCnBVbYd+KPWYrSVYZj7zl+
2kmJe1pcL6VL5iaKPon92PsS6ryyTg6d1aLRCJ9QwYARIL2HI4Xr0j8BK3jHkYN2
EgYyKnV/a9JmciNEplaDmJ5svWVpg4vv9mj6ao+5kUBMRfi5G+hIoF5y8FI79qSA
hBVfAVk1G9o5XSWAYT3f7D9W3yDOGpVRhGhku3tto6lPNafQ3p/xv69dTnsCQAsD
Pt6QMsGRwUxlsOY4kfeJEtXGsqC/dXsOKOu8wImSGekj404r6IwjAauquQNOiJNC
Tctlp8bEngQz2/7YLSuqPobYwYG2Wg9gegsT1DCaEFZkD834XJp3vf+qsTGnlPss
pRVWjvZCY9IExEGMHIZ2GmCmzi9tpcZhC+EzGui+pX//2UxIDJJY3XyIePmYV4aY
T8hPumlNqcpeyBtm9rDCf4FgHgPp6k6XHLxn5OWJV4a+XqxVmhH2t2OQ686OTCvx
mLTZJVrJcPO6GfIs4sw16BfOcPFDZMUaqC5hoDxKiMm5phjge/uJuuQERTjnQ6XL
iVPL/Nu8MBSThKEU6reabcPE3rnT9U8GE8IbMo2UyW21fShDBR5J0RYtGO3aoWdj
8HKi0zs6qeLdRt+X+cWuWVNycdUjj4aV6try3CIlqtnTuVBPR/Bws1yjSWListf3
CIxcUNq2RkQRX4GrZExZUwIDAQABo4IC3TCCAtkwDAYDVR0TAQH/BAIwADAdBgNV
HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMD0GA1Ud
HwQ2MDQwMqAwoC6GLGh0dHA6Ly9jcmwuc3RhcmZpZWxkdGVjaC5jb20vc2ZpZzJz
MS0yNTEuY3JsMGMGA1UdIARcMFowTgYLYIZIAYb9bgEHFwEwPzA9BggrBgEFBQcC
ARYxaHR0cDovL2NlcnRpZmljYXRlcy5zdGFyZmllbGR0ZWNoLmNvbS9yZXBvc2l0
b3J5LzAIBgZngQwBAgEwgYIGCCsGAQUFBwEBBHYwdDAqBggrBgEFBQcwAYYeaHR0
cDovL29jc3Auc3RhcmZpZWxkdGVjaC5jb20vMEYGCCsGAQUFBzAChjpodHRwOi8v
Y2VydGlmaWNhdGVzLnN0YXJmaWVsZHRlY2guY29tL3JlcG9zaXRvcnkvc2ZpZzIu
Y3J0MB8GA1UdIwQYMBaAFCVFgWhQJjg9Oy0svs1q2bY9s2ZjMCkGA1UdEQQiMCCC
DyouZm9zdGVyaW5nLm5ldIINZm9zdGVyaW5nLm5ldDAdBgNVHQ4EFgQUiWtflZwN
Qtwjua9FkvUruDwgTDkwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgD2XJQv0Xcw
IhRUGAgwlFaO400TGTO/3wwvIAvMTvFk4wAAAXWIxCxUAAAEAwBHMEUCIC4zjQ5R
hrh04YBQr53FIAUfLxZecO7ZnOFyo3HmMHBFAiEAxNBdSOORQ+S2fgVggCOjKXcu
wKWKBnduTN0uodF368UAdgBc3EOS/uarRUSxXprUVuYQN/vV+kfcoXOUsl7m9scO
ygAAAXWIxC2BAAAEAwBHMEUCIAFF7CzqKBq2lkdyLR76CthZ1UvnhaDEAki6Genq
6wKOAiEA4iyUwf3sj818gJCzcgven1dt5rrJ9rdL9WVF+rhTfZowDQYJKoZIhvcN
AQELBQADggEBALw87WwP7qdc76QY0ZViOPKCsgC5D0L2cwX19TtoPQZJsOYbJu4i
V901WnAfbIceFado0x95R7LIXg51alwhPJMCJ7swdTWqrLtDIb/ElYd+rp+f81Ht
hMAo2twVPhrU2vish2b7+JD81sTM0R8nDbH5+W7d6/wjDlLj0dAv6sF5I+ABgUJH
NWNwcpFlS1816gBfLbR+9YvoUcZGaRUpXxfUc4il9nEXW/lFW0yi1XkNSwhxTzlQ
LeCdRdyrYxdZoNG211v/izJsMvqJoNIU0jPpa0yk7p5bI3wvhdewhFz4xBzfMBHO
WBjh4uH0CReckj5LFQ1GTJ9STUJ6XB9wmSY=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 10643677989383556839
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Technologies, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.starfieldtech.com/repository/'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Secure Certificate Authority - G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-02 11:42:38 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-29 17:41:45 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.fostering.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 681385646082070715891051210283311343866123811079877529834898202304388072071317648975020883314454867318246273098167659376377555623226500029594281639904490452745524498374920910571306095339462508239905502487605453638508998536178926993607156731099983174075639510762995421590613347810185421913839676161547455299985775510589780075573099421810914427446694650016130413607821870761127244329728200816425768413464952912547338049980564328770106952817362309191447958217474477172530712711949305121225927824153171569595547311315723996079366837382891908702403851032719068661391309280739789216819581499762737330406154672537303105474714456487594780661669738012979450409215249070794348750407931330371022919995365520641001429253332042914350378481207679616553813337133692410412417316148160296010884686828969308102240089405736122274148518442280142418524060266370719539264023425727893195122802686152722813432362257737907210074908331110876363718346655941695224767258816920249999144777544688030585280909948678808927526374746725103713452494019396911397803988396736038541033609988206067074745942070535653122633117477833449380226654003899836740586443967494815810687854945253726209646758194796751554859871040055819421605317620421637835329058778337556926057699667
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.starfieldtech.com/sfig2s1-251.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114414.1.7.23.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.starfieldtech.com/repository/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.starfieldtech.com/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.starfieldtech.com/repository/sfig2.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 254581685026383d3b2d2cbecd6ad9b63db36663
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fostering.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fostering.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							896b5f959c0d42dc23b9af4592f52bb83c204c39
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e30000017588c42c54000004030047304502202e338d0e5186b874e18050af9dc520051f2f165e70eed99ce172a371e6307045022100c4d05d48e39143e4b67e05608023a329772ec0a58a06776e4cdd2ea1d177ebc50076005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca0000017588c42d81000004030047304502200145ec2cea281ab69647722d1efa0ad859d54be785a0c40248ba19e9eaeb028e022100e22c94c1fdec8fcd7c8090b3720bde9f576de6bac9f6b74bf56545fab8537d9a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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