gtm.shopify.com
Issued by GTS CA 1D4
About this certificate
This digital certificate with serial number a7:ce:0f:d4:75:9f:43:46:10:2b:76:1b:d5:39:b7:e0 was issued on by Google Trust Services LLC.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=gtm.shopify.com
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): a7:ce:0f:d4:75:9f:43:46:10:2b:76:1b:d5:39:b7:e0Serial Number (int): 223051009517855916110916681646718171104
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: df:96:7d:10:7c:6d:e1:e6:2a:02:18:c3:ad:a4:86:7e:49:be:d8:17
AuthorityKeyId: 25:e2:18:0e:b2:57:91:94:2a:e5:d4:5d:86:90:83:de:53:b3:b8:92
Fingerprint (sha1): 90:df:2a:7d:cb:ad:e2:52:d6:17:93:88:4f:bc:49:26:55:5e:ee:ea
Fingerprint (sha256): 02:51:35:55:52:22:40:b0:bf:a6:12:e2:ab:1b:0b:df:dc:86:fb:b2:2c:f7:6b:c3:ab:9c:d9:6d:2f:ba:32:17
Issuing Certificate URL: http://pki.goog/repo/certs/gts1d4.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1d4/fD0OHLmPMG8CRL Distribution Point: http://crls.pki.goog/gts1d4/NT6kbGsUq4o.crl
Check the revocation status for certificate gtm.shopify.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gtm.shopify.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gtm.shopify.com
Other certificates including the domain name shopify.com
(limited to 100 certificates)
f4.shared.global.fastly.net
zh.shopify.com
ingress-imagery-us-central1-2.shopifycloud.com
statuspage.io
themes.shopify.com
l.ssl.shopify.com
merchandise.shopify.com
events.shopify.com
press.shopify.com
statuspage.io
dns-vetting1-jeffg-noah.map.fastly.net
statuspage.io
shopify-app-store.shopifycloud.com
o.ssl.shopify.com
statuspage.io
brochure2-staging12.shopifycloud.com
plusinfo.shopify.com
status.3dcart.com
savage-sign-on.shopifycloud.com
accounts.shopify.com
investor.shopify.com
meetups.shopify.com
shopify.com
linkpop.com
chat.shopify.com
commerceplus.shopify.com
marketplace.shopify.com
next.shopify.com
shopify-classifieds.shopifycloud.com
ir.shopify.com
ssl.shopify.com
marketplace.shopify.com
store.shopify.com
secure03.lithium.com
dev.shopify.com
somethingorother.shopify.com
commerceplus.shopify.com
pins.shopify.com
statuspage.io
ssl.cdngc.net
sourcing-admin.shopify.com
cardreader.shopify.com
www.shopify.com
www.shopify.com
secure03.stage.lithium.com
p.ssl.shopify.com
pointofsale.shopify.com
bourgeois.shopifycloud.com
unicorn.shopify.com
upcoming12.shopify.com
sl.shopify.com
tashboard.shopify.com
growthcenter.shopify.com
secure03.stage.lithium.com
statuspage.io
*.b.ssl.fastly.net
gtm.shopify.com
secure03.lithium.com
statuspage.io
analytics.shopify.com
collabs.shopify.com
unite-registration.shopify.com
photos.shopify.com
data-portal.shopifycloud.com
merch.shopify.com
plusacademy.shopify.com
www.shopify.com
shopify-plus-meet-up.shopify.com
collabs.shopify.com
statuspage.io
privacy.shopify.com
r.ssl.fastly.net
counter.shopify.com
shopify-app-store.shopifycloud.com
statuspage.io
statuspage.io
b.ssl.shopify.com
statuspage.io
shopify-app-store-staging.shopifycloud.com
sfn.shopify.com
growthcenter.shopify.com
bcs.shopify.com
statuspage.io
smiley-staging.shopify.com
secure03.lithium.com
statuspage.io
hardware.shopify.com
upcoming-pizx.shopify.com
shopify-classifieds.shopifycloud.com
ny.shopify.com
pursuit.shopify.com
cardreader-giveaway.shopifycloud.com
auth.data.shopify.com
hardware.shopify.com
statuspage.io
ssl.shopify.com
events.shopify.com
unite.shopify.com
linkpop.shopify.com
upcoming9.shopify.com
zh.shopify.com
ingress-imagery-us-central1-2.shopifycloud.com
statuspage.io
themes.shopify.com
l.ssl.shopify.com
merchandise.shopify.com
events.shopify.com
press.shopify.com
statuspage.io
dns-vetting1-jeffg-noah.map.fastly.net
statuspage.io
shopify-app-store.shopifycloud.com
o.ssl.shopify.com
statuspage.io
brochure2-staging12.shopifycloud.com
plusinfo.shopify.com
status.3dcart.com
savage-sign-on.shopifycloud.com
accounts.shopify.com
investor.shopify.com
meetups.shopify.com
shopify.com
linkpop.com
chat.shopify.com
commerceplus.shopify.com
marketplace.shopify.com
next.shopify.com
shopify-classifieds.shopifycloud.com
ir.shopify.com
ssl.shopify.com
marketplace.shopify.com
store.shopify.com
secure03.lithium.com
dev.shopify.com
somethingorother.shopify.com
commerceplus.shopify.com
pins.shopify.com
statuspage.io
ssl.cdngc.net
sourcing-admin.shopify.com
cardreader.shopify.com
www.shopify.com
www.shopify.com
secure03.stage.lithium.com
p.ssl.shopify.com
pointofsale.shopify.com
bourgeois.shopifycloud.com
unicorn.shopify.com
upcoming12.shopify.com
sl.shopify.com
tashboard.shopify.com
growthcenter.shopify.com
secure03.stage.lithium.com
statuspage.io
*.b.ssl.fastly.net
gtm.shopify.com
secure03.lithium.com
statuspage.io
analytics.shopify.com
collabs.shopify.com
unite-registration.shopify.com
photos.shopify.com
data-portal.shopifycloud.com
merch.shopify.com
plusacademy.shopify.com
www.shopify.com
shopify-plus-meet-up.shopify.com
collabs.shopify.com
statuspage.io
privacy.shopify.com
r.ssl.fastly.net
counter.shopify.com
shopify-app-store.shopifycloud.com
statuspage.io
statuspage.io
b.ssl.shopify.com
statuspage.io
shopify-app-store-staging.shopifycloud.com
sfn.shopify.com
growthcenter.shopify.com
bcs.shopify.com
statuspage.io
smiley-staging.shopify.com
secure03.lithium.com
statuspage.io
hardware.shopify.com
upcoming-pizx.shopify.com
shopify-classifieds.shopifycloud.com
ny.shopify.com
pursuit.shopify.com
cardreader-giveaway.shopifycloud.com
auth.data.shopify.com
hardware.shopify.com
statuspage.io
ssl.shopify.com
events.shopify.com
unite.shopify.com
linkpop.shopify.com
upcoming9.shopify.com
Certificate
The complete raw certificate details for gtm.shopify.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgIRAKfOD9R1n0NGECt2G9U5t+AwDQYJKoZIhvcNAQELBQAw RjELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBM TEMxEzARBgNVBAMTCkdUUyBDQSAxRDQwHhcNMjMxMDI5MTQ1NjIyWhcNMjQwMTI3 MTU0OTU2WjAaMRgwFgYDVQQDEw9ndG0uc2hvcGlmeS5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC1iaYvmhnywUDFlLuqmF45OYCcULyf+hyaTGIz qLNUaESMM8/9jSmHK34C7+TSeu8L+tt16nNZKcVYx3siMeEH9Ukrxkrhtvo900J7 99atrGiJe6ULBDdHBZa2cEK+VkU90tJa3cg7lEco2hfLNMZRhnc62DBqtZR589kk p0hfbLt0fF/z5EaEV3stdi7uuAyMIrA2CuQwRW7VcytCjj29efTZigLT2nrWgNHV cLcS7nh61PqlYxHPf5v5VFCjeB3LPmB1kRGzB65u4SLG19A/q2fzuYovbMUfNQqi kIxJ3UaYZI9DZTvEOlGL9a35gTyuZ0AUvWBUtUle3ba3Zrs7AgMBAAGjggJ1MIIC cTAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/ BAIwADAdBgNVHQ4EFgQU35Z9EHxt4eYqAhjDraSGfkm+2BcwHwYDVR0jBBgwFoAU JeIYDrJXkZQq5dRdhpCD3lOzuJIweAYIKwYBBQUHAQEEbDBqMDUGCCsGAQUFBzAB hilodHRwOi8vb2NzcC5wa2kuZ29vZy9zL2d0czFkNC9mRDBPSExtUE1HODAxBggr BgEFBQcwAoYlaHR0cDovL3BraS5nb29nL3JlcG8vY2VydHMvZ3RzMWQ0LmRlcjAa BgNVHREEEzARgg9ndG0uc2hvcGlmeS5jb20wIQYDVR0gBBowGDAIBgZngQwBAgEw DAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Jscy5wa2ku Z29vZy9ndHMxZDQvTlQ2a2JHc1VxNG8uY3JsMIIBAwYKKwYBBAHWeQIEAgSB9ASB 8QDvAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGLfCaNHwAA BAMARzBFAiALF3t7boStvSWzHcTUENQf6BnZt1nJi4p23yT08wVxdwIhAPjIXCeV VOUJ/mfi2LJttos5jMs9hYSiAGI/rSObEnM1AHUA2ra/az+1tiKfm8K7XGvocJFx bLtRhIU0vaQ9MEjX+6sAAAGLfCaNYwAABAMARjBEAiA382DZcCKs5Kyx2R36dBvh VITUFOVEraSdSL/gFmbmdwIgT2zxwdUoDYaBdyYzNzMhiu1K+pKux6bibWhDodhX XakwDQYJKoZIhvcNAQELBQADggEBAJqxFyXMXx9qGpx4lwJp5dkZt1akOGIJfo8V 52l75TNrAjT2eG4MiadIeRbcyOfXzDvbmkt+uA0XyEsjR+lswVtvbPUJp3vXYJfk KXqv9YEoAv9nZ5m34o1S8ICbEmGtD3AZvSRR3iakMbb5HLoFf3MRrRWMaO+3J7cS jA3v8OLnG1pzvIWDFbWiTOiTrOVJaq1WTPfewWzNyM0U5XViDJBCoejycU9+peAA k5rFUmVE7eZb+bChczCDTm6tU1tyAEeaSb+n9SsWE2+l1khQ6/WGEVl2b8ImTc7x DL0H0uxoUKsGAe/+zKbgk9ErpZm/B4FYK0WB7zC5KwlNJOINV/M= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYmmL5oZ8sFAxZS7qphe OTmAnFC8n/ocmkxiM6izVGhEjDPP/Y0phyt+Au/k0nrvC/rbdepzWSnFWMd7IjHh B/VJK8ZK4bb6PdNCe/fWraxoiXulCwQ3RwWWtnBCvlZFPdLSWt3IO5RHKNoXyzTG UYZ3OtgwarWUefPZJKdIX2y7dHxf8+RGhFd7LXYu7rgMjCKwNgrkMEVu1XMrQo49 vXn02YoC09p61oDR1XC3Eu54etT6pWMRz3+b+VRQo3gdyz5gdZERsweubuEixtfQ P6tn87mKL2zFHzUKopCMSd1GmGSPQ2U7xDpRi/Wt+YE8rmdAFL1gVLVJXt22t2a7 OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 223051009517855916110916681646718171104 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1D4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-29 14:56:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-27 15:49:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gtm.shopify.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22917010531373006895922041022922407154285486362606284627535060147819434800480010323310442828885758516146570017250304761486948599772417834073144652432983753249057681256333751925424355565384803468912745543032157451117746506804041700913063634496502705281785077833952396167288362061286036611086740165116991399167261398362425433091680895699696781078177698825522653973659786093870830416480794085394997216778899775268586705457490887153573673742146927588389466245133726760240519202978316484517825679028151824308479966598627457807090632195373273533629176304078569310720578685467048141928863403120490155476639096824563354745659 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:3|t:2941|false] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 25e2180eb25791942ae5d45d869083de53b3b892 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1d4/fD0OHLmPMG8' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1d4.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gtm.shopify.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1d4/NT6kbGsUq4o.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b7c268d1f000004030047304502200b177b7b6e84adbd25b31dc4d410d41fe819d9b759c98b8a76df24f4f3057177022100f8c85c279554e509fe67e2d8b26db68b398ccb3d8584a200623fad239b127335007500dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b7c268d630000040300463044022037f360d97022ace4acb1d91dfa741be15484d414e544ada49d48bfe01666e67702204f6cf1c1d5280d86817726333733218aed4afa92aec7a6e26d6843a1d8575da9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009ab11725cc5f1f6a1a9c78970269e5d919b756a43862097e8f15e7697be5336b0234f6786e0c89a7487916dcc8e7d7cc3bdb9a4b7eb80d17c84b2347e96cc15b6f6cf509a77bd76097e4297aaff5812802ff676799b7e28d52f0809b1261ad0f7019bd2451de26a431b6f91cba057f7311ad158c68efb727b7128c0deff0e2e71b5a73bc858315b5a24ce893ace5496aad564cf7dec16ccdc8cd14e575620c9042a1e8f2714f7ea5e000939ac5526544ede65bf9b0a17330834e6ead535b7200479a49bfa7f52b16136fa5d64850ebf5861159766fc2264dcef10cbd07d2ec6850ab0601effecca6e093d12ba599bf0781582b4581ef30b92b094d24e20d57f3