RDC-DTO-SIT.Mercedes-benz.com.cn
- Mercedes-Benz Group AG -
Issued by QuoVadis Global SSL ICA G3
About this certificate
This digital certificate with serial number 25:8d:87:32:7e:6c:36:2a:d3:15:f3:fc:1d:12:3c:cd:55:89:e8:69 was issued on by QuoVadis Limited.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Mercedes-Benz Group AG
Organization:
Mercedes-Benz Group AG
State / Province:
Baden-Wuerttemberg
Locality: Stuttgart
Country: DE
Locality: Stuttgart
Country: DE
QuoVadis Limited
Organization:
QuoVadis Limited
Country:
BM
This certificate has expire since
Certificate Details
Serial Number (hex): 25:8d:87:32:7e:6c:36:2a:d3:15:f3:fc:1d:12:3c:cd:55:89:e8:69Serial Number (int): 214388840934238608112453788009443332175556110441
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: 1d:39:a4:dd:9c:5f:1a:c5:1e:af:a9:7a:3e:af:a9:5c:0e:c7:87:96
AuthorityKeyId: b3:12:89:b5:a9:4b:35:bc:15:00:f0:80:e9:d8:78:87:f1:13:7c:76
Fingerprint (sha1): 5b:e3:6c:b4:a5:07:05:b5:4e:a3:30:15:47:94:fc:cd:2b:61:c3:c8
Fingerprint (sha256): 05:b2:c6:9a:a4:17:0e:8a:62:7a:a8:31:fd:32:d5:64:34:94:b3:6f:ba:d1:2a:5d:2b:3d:12:54:ed:9c:f4:14
Issuing Certificate URL: http://trust.quovadisglobal.com/qvsslg3.crt
Revocation information
OCSP Server: http://ocsp.quovadisglobal.comCRL Distribution Point: http://crl.quovadisglobal.com/qvsslg3.crl
Check the revocation status for certificate RDC-DTO-SIT.Mercedes-benz.com.cn
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for RDC-DTO-SIT.Mercedes-benz.com.cn
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
RDC-DTO-SIT.Mercedes-benz.com.cn
Other certificates including the domain name Mercedes-benz.com.cn
(limited to 100 certificates)
Certificate
The complete raw certificate details for RDC-DTO-SIT.Mercedes-benz.com.cn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIGjCCBgKgAwIBAgIUJY2HMn5sNirTFfP8HRI8zVWJ6GkwDQYJKoZIhvcNAQEL BQAwTTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxIzAh BgNVBAMTGlF1b1ZhZGlzIEdsb2JhbCBTU0wgSUNBIEczMB4XDTIyMTEyNDA5NDE1 OVoXDTIzMTEyNDA5MzYwMFowgYoxCzAJBgNVBAYTAkRFMRswGQYDVQQIDBJCYWRl bi1XdWVydHRlbWJlcmcxEjAQBgNVBAcMCVN0dXR0Z2FydDEfMB0GA1UECgwWTWVy Y2VkZXMtQmVueiBHcm91cCBBRzEpMCcGA1UEAwwgUkRDLURUTy1TSVQuTWVyY2Vk ZXMtYmVuei5jb20uY24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+ v3ear2NM2WIRo93V5sXQlNj3MfhN6RvtC08jDf1/q/ZBaThy3Devtw6O6dklyLXs ifJw0GdH/e4oFWRlRWAeGkGeqIIWEnRHeeq/yGKwAzixjTRhgOqr5VmDlDM9wlVg wntzRcym09WpRfDkrIsYnXyO3QjAKPQWHki7FCJOjLAKPAnvcCUW+XobqSaJqAgF +1KkVy9+pwl6Uz/4cVOs1kthDhY0Na7yF/eqwqvV+dtSxQpcxqbPZScOQSqp229a rlapUQ4U7Pf2i+vvqd7RUsPiVUze94VWbzBToOOjcdDwpT4d0cwZSzj00NV9ko+i ylXA9MwLqGUCw50OlhA9AgMBAAGjggOyMIIDrjAJBgNVHRMEAjAAMB8GA1UdIwQY MBaAFLMSibWpSzW8FQDwgOnYeIfxE3x2MHMGCCsGAQUFBwEBBGcwZTA3BggrBgEF BQcwAoYraHR0cDovL3RydXN0LnF1b3ZhZGlzZ2xvYmFsLmNvbS9xdnNzbGczLmNy dDAqBggrBgEFBQcwAYYeaHR0cDovL29jc3AucXVvdmFkaXNnbG9iYWwuY29tMCsG A1UdEQQkMCKCIFJEQy1EVE8tU0lULk1lcmNlZGVzLWJlbnouY29tLmNuMFsGA1Ud IARUMFIwRgYMKwYBBAG+WAACZAEBMDYwNAYIKwYBBQUHAgEWKGh0dHA6Ly93d3cu cXVvdmFkaXNnbG9iYWwuY29tL3JlcG9zaXRvcnkwCAYGZ4EMAQICMB0GA1UdJQQW MBQGCCsGAQUFBwMCBggrBgEFBQcDATA6BgNVHR8EMzAxMC+gLaArhilodHRwOi8v Y3JsLnF1b3ZhZGlzZ2xvYmFsLmNvbS9xdnNzbGczLmNybDAdBgNVHQ4EFgQUHTmk 3ZxfGsUer6l6Pq+pXA7Hh5YwDgYDVR0PAQH/BAQDAgWgMIIB9QYKKwYBBAHWeQIE AgSCAeUEggHhAd8AdwBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAA AYSpDR3lAAAEAwBIMEYCIQCWrtvnknDt4LdCa0MeQpORFzmRPT/nmnKaJP6B8/Xs 0gIhAM5sZBS/+WE1yfcpclpcUolkE0gbpMMwaRm0bJxU841NAHYArfe++nz/EMiL nT2cHj4YarRnKV3PsQwkyoWGNOvcgooAAAGEqQ0d4AAABAMARzBFAiEAylloPjSN OsbxhQT8R1tzBr0ZebpFvsPJgQwgwQXe2zkCIG7D5pPHDp2mOSRa55qbX6jrdTzD qBXlKQ4El7MN7v7xAHUAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwA AAGEqQ0eDQAABAMARjBEAiBfy8QetQ3LmGQxGT7pzsYTjXaRfiYQD8yuL6prVWX0 egIgZCubqEZTDD1rnRGDFpqaHmiylBz7MvBsm74Kj6xA1T0AdQC3Pvsk35xNunXy OcW6WPRsXfxCz3qfNcSeHQmBJe20mQAAAYSpDR4SAAAEAwBGMEQCIBKQ7EH4vJgP lpDdxyCZioi/d33ABnCsvrN0qWz+k+4WAiAkGSgidm7Y5C1wFpRoFTvJJSgpxs5/ Ls6KHFyBOhwEETANBgkqhkiG9w0BAQsFAAOCAgEAA9ZTCgvLAAgR+mFaCr3ZSth+ 5NI448Tml66fbLwIdoTqiMUVRxO+ipvMwW5pJpwkA8qnZGa8K5uSp25oonejVRVN NhH2+yTi/XzprFw5/o3R5k532OO6QJnBUud4V8wPR0NxUfowKd2SuI0gWT4LjL92 ZkG5I3dAjtt1J9G62Rk8Ou2cSj7GOc0qyKMn81zSmcQTwksLMytMvUetxcD96gvT +pgvYYWCzqtg5mcf9q64Ait6g92KmFn6hTv5TntbgnvLWAvU6MWGciOn2yYoyhcE EQx519uzq+Cr+aZKb6I5YRuNhMnbfyE20wcLyvYkYPGtho72HlDe/XWYfDEfs/C6 GFcYHF6CdA8OQynMzbs9+rA349HcdrXfo9SyeKuZlGkjfCkUzlQTuaRH2BXSOCn2 nLpX7dNFDShNaFCoQnMw4Mmp0kKPGV5RMLydnNf9BfFYCCcxmoMr+9Mv+4gyvvcI v67lSGmdD9ghoR0k734ByeXq+LMOLE6RNRNL6+zILqtf0XDPiBq2GOyvaN35sX6+ VGgZpvvncEAmTJrjkdXtam4Bgu1+v5Lvm56dNhP7oaFZUUFu27dGsW/hYDsI7KI6 ztktXz8sArZ4X9KeV4/ctOWP0pHPo96ojbcCHoqs/Zk7P5SgvixOJYpp1eO3N1tD 1Q1QKsHIiMXpR607g/Y= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvr93mq9jTNliEaPd1ebF 0JTY9zH4Tekb7QtPIw39f6v2QWk4ctw3r7cOjunZJci17InycNBnR/3uKBVkZUVg HhpBnqiCFhJ0R3nqv8hisAM4sY00YYDqq+VZg5QzPcJVYMJ7c0XMptPVqUXw5KyL GJ18jt0IwCj0Fh5IuxQiToywCjwJ73AlFvl6G6kmiagIBftSpFcvfqcJelM/+HFT rNZLYQ4WNDWu8hf3qsKr1fnbUsUKXMamz2UnDkEqqdtvWq5WqVEOFOz39ovr76ne 0VLD4lVM3veFVm8wU6Djo3HQ8KU+HdHMGUs49NDVfZKPospVwPTMC6hlAsOdDpYQ PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 214388840934238608112453788009443332175556110441 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Global SSL ICA G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-11-24 09:41:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-24 09:36:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Baden-Wuerttemberg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Stuttgart' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Mercedes-Benz Group AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'RDC-DTO-SIT.Mercedes-benz.com.cn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24079693940804274058019090333966000826918735948496914414012603691239494975799417388947126573618485350072817217628600873445115757703396062971238303777549396988277500495104089495568946315140746255425796487079875368311594572719861121429831842403084429028044254023443673069573421919457950220610654802190473693475633767404971943762663636388473680246327597431134435286096479956572410791475578709020846330471325176190446782193388652246733372569545556273500366497081238772278049542258439525859806686885689497764806885814307371217096440146074111822024109314905031153792095141564795618825163037699887318867183780434568203866173 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b31289b5a94b35bc1500f080e9d87887f1137c76 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trust.quovadisglobal.com/qvsslg3.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.quovadisglobal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'RDC-DTO-SIT.Mercedes-benz.com.cn' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (84 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.8024.0.2.100.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.quovadisglobal.com/repository' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.quovadisglobal.com/qvsslg3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1d39a4dd9c5f1ac51eafa97a3eafa95c0ec78796 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (485 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (481 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 0003d6530a0bcb000811fa615a0abdd94ad87ee4d238e3c4e697ae9f6cbc087684ea88c5154713be8a9bccc16e69269c2403caa76466bc2b9b92a76e68a277a355154d3611f6fb24e2fd7ce9ac5c39fe8dd1e64e77d8e3ba4099c152e77857cc0f47437151fa3029dd92b88d20593e0b8cbf766641b92377408edb7527d1bad9193c3aed9c4a3ec639cd2ac8a327f35cd299c413c24b0b332b4cbd47adc5c0fdea0bd3fa982f618582ceab60e6671ff6aeb8022b7a83dd8a9859fa853bf94e7b5b827bcb580bd4e8c5867223a7db2628ca1704110c79d7dbb3abe0abf9a64a6fa239611b8d84c9db7f2136d3070bcaf62460f1ad868ef61e50defd75987c311fb3f0ba1857181c5e82740f0e4329cccdbb3dfab037e3d1dc76b5dfa3d4b278ab999469237c2914ce5413b9a447d815d23829f69cba57edd3450d284d6850a8427330e0c9a9d2428f195e5130bc9d9cd7fd05f1580827319a832bfbd32ffb8832bef708bfaee548699d0fd821a11d24ef7e01c9e5eaf8b30e2c4e9135134bebecc82eab5fd170cf881ab618ecaf68ddf9b17ebe546819a6fbe77040264c9ae391d5ed6a6e0182ed7ebf92ef9b9e9d3613fba1a15951416edbb746b16fe1603b08eca23aced92d5f3f2c02b6785fd29e578fdcb4e58fd291cfa3dea88db7021e8aacfd993b3f94a0be2c4e258a69d5e3b7375b43d50d502ac1c888c5e947ad3b83f6