kps-payment.de
Issued by Sectigo RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number 39:b6:0e:68:98:e6:fe:5c:53:66:98:e6:f8:93:61:c8 was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=kps-payment.de
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 39:b6:0e:68:98:e6:fe:5c:53:66:98:e6:f8:93:61:c8Serial Number (int): 76711286028777871606339175456051519944
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: ca:0a:92:89:ca:6e:28:a4:85:c2:eb:f6:9d:09:5e:1b:f0:d3:0a:03
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1
Fingerprint (sha1): 72:95:76:d3:4c:60:88:00:d4:60:9f:c1:79:bc:e0:98:1e:51:7b:c3
Fingerprint (sha256): 04:70:59:61:49:86:45:e2:d5:9e:14:43:ae:d5:2e:69:74:48:d7:05:d9:06:31:bb:4c:04:ff:6f:b1:e4:d7:d2
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate kps-payment.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kps-payment.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kps-payment.de
www.kps-payment.de
www.kps-payment.de
Other certificates including the domain name kps-payment.de
(limited to 100 certificates)
kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
*.kps-payment.de
kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
secure-test.kps-payment.de
psapp.kps-payment.de
secure.kps-payment.de
kps-payment.de
psapp.kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
*.kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
*.kps-payment.de
kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
secure-test.kps-payment.de
psapp.kps-payment.de
secure.kps-payment.de
kps-payment.de
psapp.kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
*.kps-payment.de
Certificate
The complete raw certificate details for kps-payment.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHOTCCBiGgAwIBAgIQObYOaJjm/lxTZpjm+JNhyDANBgkqhkiG9w0BAQsFADCB jzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTcwNQYDVQQD Ey5TZWN0aWdvIFJTQSBEb21haW4gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENB MB4XDTIzMTAyMzAwMDAwMFoXDTI0MTEyMjIzNTk1OVowGTEXMBUGA1UEAxMOa3Bz LXBheW1lbnQuZGUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDLvdGT ZUlKPNxT2B133QWILDoCmPiLgLztXkjKNeADY/kEFy9W9ecueM/+QchzI3sNuWcz zSx6gru7t+NR1zwlq5zGjDFEmjd2iQkWdsmXBfDLH5GzX6qAfAA+IKRGB/JXcKA6 ExGPXM+XENnF3rAfHvUYwG8/2qAymnnFBPX6KF1yDGUj3bKBJMhMNSuiVDuWDy4R lT67hZm9BiuPhTfJidhLpPeWhDDYlKM6wIFr3WrHNa8Jh7Xq9793bAV0YP8cYCYa amseSjBw29BNw7GxXAmPkF00ZA3QvAdWb5LwiI/KlGmnxJa60Xh5wKsq5ziSJWt3 qUXw+Z/D6wcQSYIQauZKRueR5hAtOe3mGM+Tqcmvilevt+qCC3j8JO+UneZo2oan LpaQ/IcVormeUwKA1wX1VxUmmXIPfPNX46pwkuUm63Cjnah/4P5NmvzEQQzzlfHM /rX54ni/uHQlw+8r8wrt+/UUKPnY6QlMywURPq8Hob2ewSclIRu5lZs17wqtGbK2 yBNYBmUS/ojGwVbte7R3bDreecOils3c7M4G47CpNDeq71htf8X4NArAGucMED15 K92WownV5rEeONPJXF3NovPKuP4yyUTQpXOBe8Z8UixRy6ycDebsmBDVhCHCByu9 VsKFErlCmq3WbT1hiOvwqce9rH6fB3Cp8YmymwIDAQABo4IDBDCCAwAwHwYDVR0j BBgwFoAUjYxexFStiuF36Zv5mwXhuAGNYeEwHQYDVR0OBBYEFMoKkonKbiikhcLr 9p0JXhvw0woDMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgIH MCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAEC ATCBhAYIKwYBBQUHAQEEeDB2ME8GCCsGAQUFBzAChkNodHRwOi8vY3J0LnNlY3Rp Z28uY29tL1NlY3RpZ29SU0FEb21haW5WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0Eu Y3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTAtBgNVHREE JjAkgg5rcHMtcGF5bWVudC5kZYISd3d3Lmtwcy1wYXltZW50LmRlMIIBfgYKKwYB BAHWeQIEAgSCAW4EggFqAWgAdQB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+Zn TFo6dAAAAYtcgasJAAAEAwBGMEQCIBGLSthLdzc/oOcQkGfLxwDsP8xjfHnuvcFY 7ZWPyHFxAiBKutg+o2z+YWYTXXo4dXmCNkS5B264mg+EHEh8uqezDAB3ANq2v2s/ tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABi1yBq34AAAQDAEgwRgIhAO0n pene5FZcdXZb9KECn1d9kClIUgjxJP+0P97D2qtVAiEAxWJ+EHaxQN5rVMjshdJQ kx/gEc36mBOeZSqNIZp4BmYAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlG cR+1mwAAAYtcgas3AAAEAwBHMEUCIDNgoKvLrx+hXDz3Zb9+zU+2mCkh6lF5yDNO 82Wpg6HwAiEAuY2R2Q5Y1ITD2i2V4TF/Dgp1hmwucJivg0K7DTTKJ6EwDQYJKoZI hvcNAQELBQADggEBAGGvatbYtb/3FoemeO8EBTldk6j7zgjgbaUyLKvVBGKt19a6 9et8OpzVKOhHm+jU1erJCkUKK0IFuUvv7BI0pUevuzwmNWvXYGa0ap5k5weuvQC0 JTL03XNF3uVDDTEltYyDCRb+a9ZSTmURJDsGAO0la5dFn9HhkZWz8knI4ipZtTgK oncwDWLOmLI7tTYpLj+SHfK4aimzX+GFV8z1Ca9S70G97aUHeGxVla/Z+1fqtdn8 dRXNLbPbC1YLBKVXRH1IxlTN2aFscTsc+AYHrMzSRkKsBwhoriUzwbe8lEQAWSSv DYPXg+X1OJ0vU0ADSNX1ogO8UtTq2vM0rVDuEWM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAy73Rk2VJSjzcU9gdd90F iCw6Apj4i4C87V5IyjXgA2P5BBcvVvXnLnjP/kHIcyN7DblnM80seoK7u7fjUdc8 JaucxowxRJo3dokJFnbJlwXwyx+Rs1+qgHwAPiCkRgfyV3CgOhMRj1zPlxDZxd6w Hx71GMBvP9qgMpp5xQT1+ihdcgxlI92ygSTITDUrolQ7lg8uEZU+u4WZvQYrj4U3 yYnYS6T3loQw2JSjOsCBa91qxzWvCYe16ve/d2wFdGD/HGAmGmprHkowcNvQTcOx sVwJj5BdNGQN0LwHVm+S8IiPypRpp8SWutF4ecCrKuc4kiVrd6lF8Pmfw+sHEEmC EGrmSkbnkeYQLTnt5hjPk6nJr4pXr7fqggt4/CTvlJ3maNqGpy6WkPyHFaK5nlMC gNcF9VcVJplyD3zzV+OqcJLlJutwo52of+D+TZr8xEEM85XxzP61+eJ4v7h0JcPv K/MK7fv1FCj52OkJTMsFET6vB6G9nsEnJSEbuZWbNe8KrRmytsgTWAZlEv6IxsFW 7Xu0d2w63nnDopbN3OzOBuOwqTQ3qu9YbX/F+DQKwBrnDBA9eSvdlqMJ1eaxHjjT yVxdzaLzyrj+MslE0KVzgXvGfFIsUcusnA3m7JgQ1YQhwgcrvVbChRK5Qpqt1m09 YYjr8KnHvax+nwdwqfGJspsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 76711286028777871606339175456051519944 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kps-payment.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 831192716711261650890817087762765141719434014260413746860336546199975489237957046148599765501535121091286877819580609187197411992579458399395748155415892885875117125000338679596872107254944142324267292070929403212128093864298484204260723635286903628923137500948578851913944691273467807806471461107974716307946947642337108194473973027324981503302974187234043572352400796798973951038646053629532922877057327532264412102786268086758067136635291148355392650329424795242397603784645110364387374477960434444130134263017164714130356854398010076709033062464584862281086226958823656354077503697876095137217538857672773489326788640257320738330220786955700590349533134385598371309918857101507780592525924641659643654330417970116161171895717929708478392997738226758774264835781660929255019900378437142057532502126734743637620692772627493192293796612636257223873344183375212286661282983960829732632039753563438163581450465548058431053889730916514740285448622227437762938070946912239434871486005198328061991731890625653884703075360984187949519454208354969582449131794708821185057531450425485350306730947983985190723518332741953361005019580600461263909385540559907346635072309523975975451544090059379480088895304414924504597372561931839628190003867 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ca0a9289ca6e28a485c2ebf69d095e1bf0d30a03 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kps-payment.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kps-payment.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 016800750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b5c81ab0900000403004630440220118b4ad84b77373fa0e7109067cbc700ec3fcc637c79eebdc158ed958fc8717102204abad83ea36cfe6166135d7a387579823644b9076eb89a0f841c487cbaa7b30c007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b5c81ab7e0000040300483046022100ed27a5e9dee4565c75765bf4a1029f577d9029485208f124ffb43fdec3daab55022100c5627e1076b140de6b54c8ec85d250931fe011cdfa98139e652a8d219a780666007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b5c81ab37000004030047304502203360a0abcbaf1fa15c3cf765bf7ecd4fb6982921ea5179c8334ef365a983a1f0022100b98d91d90e58d484c3da2d95e1317f0e0a75866c2e7098af8342bb0d34ca27a1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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