blog.foregenix.com
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number fb:6d:5c:24:e9:34:9d:78:0e:2f:29:32:2d:a4:01:b9 was issued on by Google Trust Services LLC.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=blog.foregenix.com
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): fb:6d:5c:24:e9:34:9d:78:0e:2f:29:32:2d:a4:01:b9Serial Number (int): 334204056205665181834723094790282674617
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 89:e1:91:a0:33:14:1f:bb:2e:f9:47:e5:71:cd:de:97:9f:26:b2:26
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): b6:ba:75:52:33:fe:73:fd:66:22:7d:db:ee:18:49:cb:a2:9b:49:3f
Fingerprint (sha256): 16:8e:f1:a1:55:09:fd:7b:82:b6:a8:7b:75:1f:11:aa:89:ea:8b:60:d2:f6:a0:6d:f3:b5:41:9d:55:46:ef:2b
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/kaqeJ0vmVzoCRL Distribution Point: http://crls.pki.goog/gts1p5/UbXMIdXm_2k.crl
Check the revocation status for certificate blog.foregenix.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for blog.foregenix.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
blog.foregenix.com
Other certificates including the domain name foregenix.com
(limited to 100 certificates)
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
portal.foregenix.com
foregenix.com
*.foregenix.com
blog.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
www.foregenix.com
info.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
blog.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
www.foregenix.com
webshield.foregenix.com
*.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
blog.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
www.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
*.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
stagingportal.foregenix.com
webshield.foregenix.com
*.foregenix.com
secure0062.hubspot.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
foresight.foregenix.com
offers.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
stagingwebshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
stagingportal.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
portal.foregenix.com
foregenix.com
*.foregenix.com
blog.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
www.foregenix.com
info.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
blog.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
www.foregenix.com
webshield.foregenix.com
*.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
blog.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
www.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
*.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
stagingportal.foregenix.com
webshield.foregenix.com
*.foregenix.com
secure0062.hubspot.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
foresight.foregenix.com
offers.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
stagingwebshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
stagingportal.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
foregenix.com
webshield.foregenix.com
webshield.foregenix.com
webshield.foregenix.com
Certificate
The complete raw certificate details for blog.foregenix.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIRAPttXCTpNJ14Di8pMi2kAbkwDQYJKoZIhvcNAQELBQAw RjELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBM TEMxEzARBgNVBAMTCkdUUyBDQSAxUDUwHhcNMjQwMTE3MDIxNTQzWhcNMjQwNDE2 MDIxNTQyWjAdMRswGQYDVQQDExJibG9nLmZvcmVnZW5peC5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVKYgqkIvlDkAxcsxfi44zYbTnfjVC8u3H ed9D2AnE6DLOqvR1coBiWxFdwtDHvsTPJGragyts9IJc4wSBjBJ1sSjeH+5d4D1A ttbYM1zdAL+Y63PbT7d9QJUzHddkj6N1EYTLPDQJM/4so70F4harlPRHjbsbuPud +joEeIJWzUbATJkSNXEQrZ5wH2og+9eOjAo5QZCyaA369AAX5xhPFBMXWxRBDP9z fc6R1oTVNxI7jzWlixX136s24CgysyY0ZAiFeTntOH5daBpsnGAa9IO/ow+vfBoT lYCdG1vGNB9Oyd/4kC4M2NakY48CJslejdlxCqYk3c9mPPq1wDxHAgMBAAGjggJ5 MIICdTAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUieGRoDMUH7su+Uflcc3el58msiYwHwYDVR0jBBgw FoAU1fyeDd8eyt0Il5duK8VfxSv17LgweAYIKwYBBQUHAQEEbDBqMDUGCCsGAQUF BzABhilodHRwOi8vb2NzcC5wa2kuZ29vZy9zL2d0czFwNS9rYXFlSjB2bVZ6bzAx BggrBgEFBQcwAoYlaHR0cDovL3BraS5nb29nL3JlcG8vY2VydHMvZ3RzMXA1LmRl cjAdBgNVHREEFjAUghJibG9nLmZvcmVnZW5peC5jb20wIQYDVR0gBBowGDAIBgZn gQwBAgEwDAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Js cy5wa2kuZ29vZy9ndHMxcDUvVWJYTUlkWG1fMmsuY3JsMIIBBAYKKwYBBAHWeQIE AgSB9QSB8gDwAHUA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGN FWrnowAABAMARjBEAiASw0LeshUEIsyrXdQgi2NN5HX55ji0tTJlE9sSjSKzYQIg Vvglv9N8+VDjikxeVbcCfyzkEe4/OigJEzMoVZPP1XgAdwBIsONr2qZHNA/lagL6 nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY0VaufGAAAEAwBIMEYCIQD8+ci/l6ieP7Su gHOXcc9ViMPKxGbPWb26rrAaDWMMQwIhAI5eojMDhXxLy7EvwBw+b7ONQ3q3pMr0 8qYmc3rDSm/aMA0GCSqGSIb3DQEBCwUAA4IBAQBChhIQWzmF1hpazV/yRS4a8+mC lAuC7krSoOvtpKcAWlCyd1+u0Lsll6DjbTSTG3HnJ5FgeybENdfJ0Q3YKJmnfcy+ caHRoFFgNDg1KmORTA3n3BptdH+YwgEHG538omDUMURY5to+cKnxV3Lzg1GoD+zf oFuQ6C6acJEF9+zKS7uRIpNQ1MiQaZHt2Ikl8LVHNzlDJTXYIaBKfkC2t0YpNh6B YzoJjcpmiIurNRbp+wd/rc7KIlE+pEvphlQHHnb8TOJlUf1oslYF0qQfR3rw32Bz z5O+i+pmjuElgVro3e8G3SyPwFPL9dz2XbpbNAqsdVI7PAGAb9XnA5Sidv3p -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SmIKpCL5Q5AMXLMX4uO M2G05341QvLtx3nfQ9gJxOgyzqr0dXKAYlsRXcLQx77EzyRq2oMrbPSCXOMEgYwS dbEo3h/uXeA9QLbW2DNc3QC/mOtz20+3fUCVMx3XZI+jdRGEyzw0CTP+LKO9BeIW q5T0R427G7j7nfo6BHiCVs1GwEyZEjVxEK2ecB9qIPvXjowKOUGQsmgN+vQAF+cY TxQTF1sUQQz/c33OkdaE1TcSO481pYsV9d+rNuAoMrMmNGQIhXk57Th+XWgabJxg GvSDv6MPr3waE5WAnRtbxjQfTsnf+JAuDNjWpGOPAibJXo3ZcQqmJN3PZjz6tcA8 RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 334204056205665181834723094790282674617 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-17 02:15:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-16 02:15:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'blog.foregenix.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26909239100711812751360960923857759027463728882932907303775480446184342382802851932219185534414122682264668659569803192645054562602670992258011708776502995468080724946149200492818087359439496509397425806962440281286686964101814040184806894984895752765540543899188639801883388549880094209559440452107509088036393048427861309281443099868519718145445093569451971487254444187942696579749805406049651139648334971181839830525192995066242456693847527592315567486801181750350844616891121364789553199673995695049530153289514334577484689130991053716199325976567594009306208497411133089134693584067107979225475305967800970918983 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 89e191a033141fbb2ef947e571cdde979f26b226 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/kaqeJ0vmVzo' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.foregenix.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/UbXMIdXm_2k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018d156ae7a30000040300463044022012c342deb2150422ccab5dd4208b634de475f9e638b4b5326513db128d22b361022056f825bfd37cf950e38a4c5e55b7027f2ce411ee3f3a28091333285593cfd57800770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d156ae7c60000040300483046022100fcf9c8bf97a89e3fb4ae80739771cf5588c3cac466cf59bdbaaeb01a0d630c430221008e5ea23303857c4bcbb12fc01c3e6fb38d437ab7a4caf4f2a626737ac34a6fda . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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