it.tufts.edu
Issued by Certainly Intermediate R1
About this certificate
This digital certificate with serial number db:72:ae:8d:a4:54:d4:ad:77:90:97:de:1d:e4:07:18:2e:c6 was issued on by Certainly.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=it.tufts.edu
Certainly
Organization:
Certainly
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): db:72:ae:8d:a4:54:d4:ad:77:90:97:de:1d:e4:07:18:2e:c6Serial Number (int): 19116614830002640790398989539726081285172934
Serial Number lenght: 144 bits, 18 octets
SubjectKeyId: d2:77:98:dc:bf:e9:f2:c4:df:01:2a:14:9e:91:94:21:3f:7f:e5:be
AuthorityKeyId: bd:97:9d:df:a1:d8:1b:25:99:e3:0c:04:06:89:64:12:d7:65:24:c7
Fingerprint (sha1): 71:a8:65:e2:f7:02:ee:28:60:87:85:66:2a:a8:44:d5:cf:8d:b8:28
Fingerprint (sha256): 01:5b:aa:96:ad:f5:74:43:2e:cd:f2:f3:15:83:88:75:4b:e4:97:47:76:8c:e6:eb:f8:f0:29:7c:c8:4d:38:cb
Issuing Certificate URL: http://int-r1.certainly.com
Revocation information
OCSP Server: http://ocsp.int-r1.certainly.comCheck the revocation status for certificate it.tufts.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for it.tufts.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
it.tufts.edu
Other certificates including the domain name tufts.edu
(limited to 100 certificates)
amtrust.kinnser.com
statuspage.io
sfunder1cert.net
filemaker.it.tufts.edu
tcu.tufts.edu
*.hr.tufts.edu
*.studentservices.tufts.edu
us.prod.campusgroups.com
csdd.tufts.edu
artgalleries.tufts.edu
statuspage.io
statuspage.io
spamblocker.uit.tufts.edu
grad.tufts.edu
csdd.tufts.edu
statuspage.io
cluster3.technolutions.net
www.net.tufts.edu
hrss.uit.tufts.edu
us.prod.campusgroups.com
conferences.tufts.edu
sis.uit.tufts.edu
amtrust.kinnser.com
tuftsjournal.tufts.edu
5674368789118976-fe3.pantheonsite.io
exchange.tufts.edu
uconnectlabs.com
issquaredown.com
trustees.tufts.edu
webdav.ase.tufts.edu
support10.cdnetworks.net
it.tufts.edu
statuspage.io
amtrust.kinnser.com
dental150.tufts.edu
webcenter2.studentservices.tufts.edu
cluster3.technolutions.net
sisweb-prod-01.uit.tufts.edu
*.it.tufts.edu
support10.cdnetworks.net
5649202965118976-fe1.pantheonsite.io
cluster2.technolutions.net
researchstorage.uit.tufts.edu
devtutorfinder.studentservices.tufts.edu
support10.cdnetworks.net
5692592335355904-fe2.pantheonsite.io
tcu.tufts.edu
us.prod.campusgroups.com
sfunder19cert.net
mbg.hnrc.tufts.edu
ereqtest.uit.tufts.edu
view.e.tufts.edu
tufts.edu
waddc05.tufts.ad.tufts.edu
tcu.tufts.edu
gradase.admissions.tufts.edu
www.tcu.tufts.edu
support10.cdnetworks.net
support10.cdnetworks.net
statuspage.io
statuspage.io
conferences.tufts.edu
fis.uit.tufts.edu
www.tcu.tufts.edu
statuspage.io
info.gordon.tufts.edu
wfinauditprd01.tufts.ad.tufts.edu
statuspage.io
tusc.tufts.edu
sso365.tufts.edu
support10.cdnetworks.net
uconnectlabs.com
yakamafish-star.net
n002.offcampuspartners.com
tac.admissions.tufts.edu
n002.offcampuspartners.com
statuspage.io
www.nutritionletter.tufts.edu
uconnectlabs.com
support10.cdnetworks.net
admissions.tufts.edu
offcampushousing.fau.edu
5649202965118976-fe1.pantheonsite.io
gradhlthsci.admissions.tufts.edu
*.tufts.edu
hrss.uit.tufts.edu
eventrsvp.tufts.edu
*.it.tufts.edu
streetfilms.org
us.prod.campusgroups.com
5649202965118976-fe1.pantheonsite.io
statuspage.io
*.perseus.tufts.edu
irb.viceprovost.tufts.edu
cds2.cvent.com
*.atech.tufts.edu
5673497447628800-fe2.pantheonsite.io
n002.offcampuspartners.com
tufts.edu
ugrad.admissions.tufts.edu
statuspage.io
sfunder1cert.net
filemaker.it.tufts.edu
tcu.tufts.edu
*.hr.tufts.edu
*.studentservices.tufts.edu
us.prod.campusgroups.com
csdd.tufts.edu
artgalleries.tufts.edu
statuspage.io
statuspage.io
spamblocker.uit.tufts.edu
grad.tufts.edu
csdd.tufts.edu
statuspage.io
cluster3.technolutions.net
www.net.tufts.edu
hrss.uit.tufts.edu
us.prod.campusgroups.com
conferences.tufts.edu
sis.uit.tufts.edu
amtrust.kinnser.com
tuftsjournal.tufts.edu
5674368789118976-fe3.pantheonsite.io
exchange.tufts.edu
uconnectlabs.com
issquaredown.com
trustees.tufts.edu
webdav.ase.tufts.edu
support10.cdnetworks.net
it.tufts.edu
statuspage.io
amtrust.kinnser.com
dental150.tufts.edu
webcenter2.studentservices.tufts.edu
cluster3.technolutions.net
sisweb-prod-01.uit.tufts.edu
*.it.tufts.edu
support10.cdnetworks.net
5649202965118976-fe1.pantheonsite.io
cluster2.technolutions.net
researchstorage.uit.tufts.edu
devtutorfinder.studentservices.tufts.edu
support10.cdnetworks.net
5692592335355904-fe2.pantheonsite.io
tcu.tufts.edu
us.prod.campusgroups.com
sfunder19cert.net
mbg.hnrc.tufts.edu
ereqtest.uit.tufts.edu
view.e.tufts.edu
tufts.edu
waddc05.tufts.ad.tufts.edu
tcu.tufts.edu
gradase.admissions.tufts.edu
www.tcu.tufts.edu
support10.cdnetworks.net
support10.cdnetworks.net
statuspage.io
statuspage.io
conferences.tufts.edu
fis.uit.tufts.edu
www.tcu.tufts.edu
statuspage.io
info.gordon.tufts.edu
wfinauditprd01.tufts.ad.tufts.edu
statuspage.io
tusc.tufts.edu
sso365.tufts.edu
support10.cdnetworks.net
uconnectlabs.com
yakamafish-star.net
n002.offcampuspartners.com
tac.admissions.tufts.edu
n002.offcampuspartners.com
statuspage.io
www.nutritionletter.tufts.edu
uconnectlabs.com
support10.cdnetworks.net
admissions.tufts.edu
offcampushousing.fau.edu
5649202965118976-fe1.pantheonsite.io
gradhlthsci.admissions.tufts.edu
*.tufts.edu
hrss.uit.tufts.edu
eventrsvp.tufts.edu
*.it.tufts.edu
streetfilms.org
us.prod.campusgroups.com
5649202965118976-fe1.pantheonsite.io
statuspage.io
*.perseus.tufts.edu
irb.viceprovost.tufts.edu
cds2.cvent.com
*.atech.tufts.edu
5673497447628800-fe2.pantheonsite.io
n002.offcampuspartners.com
tufts.edu
ugrad.admissions.tufts.edu
Certificate
The complete raw certificate details for it.tufts.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgITANtyro2kVNStd5CX3h3kBxguxjANBgkqhkiG9w0BAQsF ADBFMQswCQYDVQQGEwJVUzESMBAGA1UEChMJQ2VydGFpbmx5MSIwIAYDVQQDExlD ZXJ0YWlubHkgSW50ZXJtZWRpYXRlIFIxMB4XDTI0MDEwOTE2MjY0MVoXDTI0MDIw ODE2MjY0MFowFzEVMBMGA1UEAxMMaXQudHVmdHMuZWR1MIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEA12BkOTlQ/4PzVV0IerlhgxPJYmX9KCpYUiwsqZCQ vBDsVcvywZp87PGPZdAtHfr9IukG2Kd4b77YR9ZioTP+ZYec2lIZyMsCif5UYZup DtNS6hEjY+UcYxVsgDyFwOHaJm4ft7iSWqFnpLtPxyhj/8RLf59+CzkIasgN7NeS omRz4UEQQYGi50nhiw/ISx2G8wDrFXujXFseAssBukmz9Nt5FR841mL05knUPMOO 9HHWgObh6PRZrAiSW0/aqQFh+1Jv9Nvq8OfJih6bQBk+N+11bdqU2YH+ZFc7+rpc YQ/4LIIIDxxRJEFw9w/HDb+eEegEEn7/9OL7lO2BEguaOwIDAQABo4ICIDCCAhww DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTSd5jcv+nyxN8BKhSekZQhP3/lvjAfBgNV HSMEGDAWgBS9l53fodgbJZnjDAQGiWQS12UkxzBlBggrBgEFBQcBAQRZMFcwLAYI KwYBBQUHMAGGIGh0dHA6Ly9vY3NwLmludC1yMS5jZXJ0YWlubHkuY29tMCcGCCsG AQUFBzAChhtodHRwOi8vaW50LXIxLmNlcnRhaW5seS5jb20wFwYDVR0RBBAwDoIM aXQudHVmdHMuZWR1MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBgYKKwYBBAHWeQIE AgSB9wSB9ADyAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGM 70MZ6QAABAMASDBGAiEA8CRM0dlRUB3B5X9kgKZydf7i5SyTHZQYjt82xsVWf7oC IQC0ritltKPE4ha2AkXKjwWuiRonaRW/0vtI+PxKnOnyRQB3AEiw42vapkc0D+Vq AvqdMOscUgHLVt0sgdm7v6s52IRzAAABjO9DG88AAAQDAEgwRgIhAKz46SEW21WR jK7H9ARlCj1Eici4EiDjNTArP2EwTWosAiEA0LaarU1nv4PBChAuoAA+AHUMChhh mTugJ+anFoR/oHIwDQYJKoZIhvcNAQELBQADggEBABXJDyLt7kQtCV2bCIgJ6Bih J9GiONq1lpGABiVkbyLwGR1QlV/WBiAMW/wfE2ZYm+IPx2XLeDlvhc3e2NObaaIQ DgoekwM7sWA33wc6zDKI1xbzFo/T1zSGxUqxz6sDqDhJ7OJQAJZAdlVOkkYW/I90 1ugw/CAyFc0EUamX9Mn+sZYGnvdwvpNXJAA6dP3iqPaYgMaC3EM9nLEZ7LflLkyy K1s2x3Kop9F0J5lL5aq/DWkkIWzpjR/jEcXB6vtU9mhVhZnnf6dBdt7+/1zu5tJA cjSt7ylL6qQk8X0Wn+iWF/5LzYbs2FYhcfHeLLvw6V/sStvB2XLfWmyGTuJynWA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA12BkOTlQ/4PzVV0Ierlh gxPJYmX9KCpYUiwsqZCQvBDsVcvywZp87PGPZdAtHfr9IukG2Kd4b77YR9ZioTP+ ZYec2lIZyMsCif5UYZupDtNS6hEjY+UcYxVsgDyFwOHaJm4ft7iSWqFnpLtPxyhj /8RLf59+CzkIasgN7NeSomRz4UEQQYGi50nhiw/ISx2G8wDrFXujXFseAssBukmz 9Nt5FR841mL05knUPMOO9HHWgObh6PRZrAiSW0/aqQFh+1Jv9Nvq8OfJih6bQBk+ N+11bdqU2YH+ZFc7+rpcYQ/4LIIIDxxRJEFw9w/HDb+eEegEEn7/9OL7lO2BEgua OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19116614830002640790398989539726081285172934 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Certainly' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Certainly Intermediate R1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-09 16:26:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-08 16:26:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'it.tufts.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27188767987006427685700128958768272070977360957284306398758553078393890825648937010260356666258015720285970849805123546716003744751307100556134765395525696018779391935607239505611580316753919302911583859343245821270333069272075977726923791229541235328071039995072846938073122180685195343183425574040564723248475344367828510771142934952722264619562832201414471334451748385197984210841689101929456492184770792862651081295879038021496146544532442426390859987672982238397200688486116568408510333617346145780732049071121458396333740129439870567730100073767062580785563209466729140581045479418061435092026214131365726362171 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d27798dcbfe9f2c4df012a149e9194213f7fe5be . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bd979ddfa1d81b2599e30c0406896412d76524c7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (89 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-r1.certainly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://int-r1.certainly.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'it.tufts.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018cef4319e90000040300483046022100f0244cd1d951501dc1e57f6480a67275fee2e52c931d94188edf36c6c5567fba022100b4ae2b65b4a3c4e216b60245ca8f05ae891a276915bfd2fb48f8fc4a9ce9f24500770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cef431bcf0000040300483046022100acf8e92116db55918caec7f404650a3d4489c8b81220e335302b3f61304d6a2c022100d0b69aad4d67bf83c10a102ea0003e00750c0a1861993ba027e6a716847fa072 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0015c90f22edee442d095d9b088809e818a127d1a238dab59691800625646f22f0191d50955fd606200c5bfc1f1366589be20fc765cb78396f85cdded8d39b69a2100e0a1e93033bb16037df073acc3288d716f3168fd3d73486c54ab1cfab03a83849ece25000964076554e924616fc8f74d6e830fc203215cd0451a997f4c9feb196069ef770be935724003a74fde2a8f69880c682dc433d9cb119ecb7e52e4cb22b5b36c772a8a7d17427994be5aabf0d6924216ce98d1fe311c5c1eafb54f668558599e77fa74176defeff5ceee6d2407234adef294beaa424f17d169fe89617fe4bcd86ecd8562171f1de2cbbf0e95fec4adbc1d972df5a6c864ee2729d60