duratravel.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number dd:cf:8b:3d:88:56:2f:4f was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=duratravel.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): dd:cf:8b:3d:88:56:2f:4fSerial Number (int): 15983146698957795151
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: 25:68:f2:d1:21:99:04:d0:ac:eb:55:fc:69:d6:6a:a6:2a:e6:d0:b4
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): cc:11:a0:00:86:dc:b7:a6:4a:1a:16:33:cd:f8:70:40:bf:d6:0a:72
Fingerprint (sha256): 03:82:6d:d0:40:ba:8c:d3:17:8f:22:89:9c:2a:b6:9f:fa:1f:01:66:87:bb:6a:f6:38:b2:c8:25:8e:82:74:3c
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-6937.crl
Check the revocation status for certificate duratravel.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for duratravel.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
duratravel.com
Other certificates including the domain name duratravel.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for duratravel.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHgDCCBmigAwIBAgIJAN3Piz2IVi9PMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDcxNjE3MTUxOVoX DTI0MDcxNjE3MTUxOVowGTEXMBUGA1UEAxMOZHVyYXRyYXZlbC5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCz0veie7Jt9Y4v2TXy+SUQ6Q+ycqOU b82vRkLibtHWGpUI7fpCxRQuqLW38wwZgeCunqPXOWhOJtyCOdrsZ+yVy47qGc7t im1yxmR9Jw8gGZR2UWkrrS5c2GdHJblBjTuZNTJY+VnOOvGLsVwrB3mk0mv0FTNz SHdMikKT/CdcbrG+leKX9c7A/ki9lN4biJqbQO/7R9GyxJUSDWGZbezG3QMQE5WS KlQk2+lTSPO+0aFUMM/niQ4wsjWKh/LpiHJDS+v/mbXs7DX14Zt+3ltNXQ/8uoy4 odquxI2XIhFY5AmE3+gEYSj7ove1/g9oIX48uD50aMI4ZUpduTHI42SFBMxdkTAJ KKZ409a4bdoaDPyRGjEahIMmUhxmmixX3sanexAqHZU4xLUuDj9oF+ixr9+95MG9 qx7Ob+UEcdMEuayJo2V5XiZxNC64YB1ziupAWYwiqydn7hUA2mRpbn/Q0bEaoSWI htuo5bzPbK4wNg9Xya0OsRlFZP6MWDeP4kQEOZdX2mjsLD6IFq//45mDunXObMnE cJwos10MSQsm04/mPhD+7aFrGv/ajonyPIn4WRppfE145JqviOFodKBw1kiklWWp iQ86wszypb2ZK0hfu1a6kDB6cF/dAAWRxp/IaoSJ+mHFnKCBPdh5W527oQ65M1Pt eiYDLIqJKivEnwIDAQABo4IDLTCCAykwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMDgGA1UdHwQxMC8w LaAroCmGJ2h0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2RpZzJzMS02OTM3LmNybDBd BgNVHSAEVjBUMEgGC2CGSAGG/W0BBxcBMDkwNwYIKwYBBQUHAgEWK2h0dHA6Ly9j ZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIBMHYG CCsGAQUFBwEBBGowaDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZ29kYWRkeS5j b20vMEAGCCsGAQUFBzAChjRodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29t L3JlcG9zaXRvcnkvZ2RpZzIuY3J0MB8GA1UdIwQYMBaAFEDCvSeOzDSDMKIz1/ts s/C0LIDOMBkGA1UdEQQSMBCCDmR1cmF0cmF2ZWwuY29tMB0GA1UdDgQWBBQlaPLR IZkE0KzrVfxp1mqmKubQtDCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUA7s3Q ZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGJX7MZ8wAABAMARjBEAiAc BHea568LNC8VLP7jwXn3sfriv63Npq5PB6J0ABuKSgIgeGpqZmDDLWG623op4GZR 1xzosU576TmpePn4g87YllMAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+r OdiEcwAAAYlfsxq7AAAEAwBHMEUCIB1nUytxdwmfkCB64+Hu0sTdiaSkMB2z37eQ VNPaRhGcAiEAuqkLrG8NukF9bJlDd+q4TPUKvf1W/Ig/HKf4qU/Z5WcAdQDatr9r P7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYlfsxs7AAAEAwBGMEQCIDRb TiT5J46rALw+sUzrqixn4c8Kzltg7yds30TxvUsNAiBWS+N9xVJbC/InhF/u+pVl 5fcyLE+fWXavCmCKs2O1/TANBgkqhkiG9w0BAQsFAAOCAQEAAJpH6wSoEhpKV/Mm MS6v98aKGqiGmBxsVHh6AHRQ3jtwt6Hpb4r/OwrY1h9JzVyE1JzTfPAJuC2wyReF Y7sRiXY/eeEYbBDY1E0k8vDlRN98ZMQhVCyfTA2vDJFbpTQv/BM5VU+TdUH9zr/g sd7EFWmPM02/pUCaOwYvSaudjYeCKQ+VaOoHBHx9TW5wXDMDKrYCDGrzH2YVJCUh I2f8zpgac09ebINAlQnYsasBiSVW2z6kObTyuDe4PgWHqDa7NqgPKFRJPlJ1C8B2 50Je0Y57p2kMPqkfdUmx3PKgfgjSXN8CK603JTjUFtK1C5F5d34UEcxmpyx75jly bcPlTA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAs9L3onuybfWOL9k18vkl EOkPsnKjlG/Nr0ZC4m7R1hqVCO36QsUULqi1t/MMGYHgrp6j1zloTibcgjna7Gfs lcuO6hnO7YptcsZkfScPIBmUdlFpK60uXNhnRyW5QY07mTUyWPlZzjrxi7FcKwd5 pNJr9BUzc0h3TIpCk/wnXG6xvpXil/XOwP5IvZTeG4iam0Dv+0fRssSVEg1hmW3s xt0DEBOVkipUJNvpU0jzvtGhVDDP54kOMLI1iofy6YhyQ0vr/5m17Ow19eGbft5b TV0P/LqMuKHarsSNlyIRWOQJhN/oBGEo+6L3tf4PaCF+PLg+dGjCOGVKXbkxyONk hQTMXZEwCSimeNPWuG3aGgz8kRoxGoSDJlIcZposV97Gp3sQKh2VOMS1Lg4/aBfo sa/fveTBvasezm/lBHHTBLmsiaNleV4mcTQuuGAdc4rqQFmMIqsnZ+4VANpkaW5/ 0NGxGqEliIbbqOW8z2yuMDYPV8mtDrEZRWT+jFg3j+JEBDmXV9po7Cw+iBav/+OZ g7p1zmzJxHCcKLNdDEkLJtOP5j4Q/u2haxr/2o6J8jyJ+FkaaXxNeOSar4jhaHSg cNZIpJVlqYkPOsLM8qW9mStIX7tWupAwenBf3QAFkcafyGqEifphxZyggT3YeVud u6EOuTNT7XomAyyKiSorxJ8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15983146698957795151 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-16 17:15:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-16 17:15:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'duratravel.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 733618286566281370312040658886964944487563905019990821958725562898268732952514692851582304020345258091924392436886632961966897123160049149564121160433331070344457656766715760702524481108524536008787748996583389530842129073266956002478847074129693875695131775386927626821387440607413294079691572408615722898137416911493069379387964605895552695494018949834027901807961852232439468582728554444470797875660587266981376807597297861011341627052024660816063209038828404728503883585010624751249928762451597427648616592711259095647015322470984454418832683307218552474845312162835877238124357122791308865261209459228044174945460686429616867662046204188808402328486959903691376647939500094357777983974402182555926662196994671437140943872592475023837170361576317073382475698742441904630636911202034747765027052676500289399719254582617674825395169303736091959642222309510769707251451734559882788028049796912964949932803848960867962140747286902343975484301255518706775307980739870719893005691978407938448305450974393110170957261184222422470560672114909194215357509887430275753458863885308352636397361602760949781921127945051337357482035069423273333826501271372007604356845139336478638263950138926754784774393974516843979356500270815656551757104287 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-6937.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'duratravel.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2568f2d1219904d0aceb55fc69d66aa62ae6d0b4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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