fortdodgeiowa.org
Issued by R3
About this certificate
This digital certificate with serial number 04:01:a5:5a:a1:74:f2:52:60:b1:a5:5b:52:37:03:ef:34:64 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=fortdodgeiowa.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:01:a5:5a:a1:74:f2:52:60:b1:a5:5b:52:37:03:ef:34:64Serial Number (int): 349009219294717112303966415113928494232676
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 2b:b4:db:6b:5d:c7:0f:59:0b:77:59:c6:23:7e:87:a5:5f:1a:b0:ef
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 2c:80:24:4b:15:29:98:66:85:df:1b:37:ff:00:c2:38:4a:36:50:51
Fingerprint (sha256): 17:1d:82:c9:d8:e1:d9:f0:5b:11:99:5b:2d:1c:ee:ee:53:79:7a:ce:80:b5:5d:81:c1:43:8a:aa:6b:29:bc:d2
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate fortdodgeiowa.org
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fortdodgeiowa.org
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fortdodgeiowa.org
lakesidemgc.org
rogerssportscomplex.org
rosedalerapids.org
www.fortdodgeiowa.org
www.lakesidemgc.org
www.rogerssportscomplex.org
www.rosedalerapids.org
lakesidemgc.org
rogerssportscomplex.org
rosedalerapids.org
www.fortdodgeiowa.org
www.lakesidemgc.org
www.rogerssportscomplex.org
www.rosedalerapids.org
Other certificates including the domain name fortdodgeiowa.org
(limited to 100 certificates)
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
mail.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
mail.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
Certificate
The complete raw certificate details for fortdodgeiowa.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSjCCBTKgAwIBAgISBAGlWqF08lJgsaVbUjcD7zRkMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAxMjQxMzAwNTVaFw0yMzA0MjQxMzAwNTRaMBwxGjAYBgNVBAMT EWZvcnRkb2RnZWlvd2Eub3JnMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKC AYEAmzBmEWAy0ogZr1WTGRbekGVaviOe5XA2J125V1MQ1SmcDIBO/i8pSZixvZV0 36Gx231MgSnNxHs6rMZE2cyjYYVckLnSh0L1d+osVzjjHTWpOtFiyrg1aI7ejxap YqOtZi11A0J/GbTWtimv0O+ygGK217AWAZDyhKUmS8wCE9srZ3CLPbaF8E7tIPTG uV5Cx5ZYbERK261maINtzP5pRAMyDp+8R974d/GXwOTSSYsyxB4Atbq//9atmE3p i1qNOOwx/e4BgDr3NEXSV3f7ztPFce7ZNHChr5BU5/J/T0b3/H378glzEnVlCnXO Lhd1BEEspoGhF0R1wDHWB7HL+LtaLBw831u0qPAf47YYv5TkUKOz0pyNtpDKJRlC VkIgct7ncTdrebs8CddfA8ElgBai6QEEDxjX4y4JVAuPo4BWL9aAKjIZwXjxLpi+ hP74EopuNTUej97jnsetOARJfDC/BrAR31YfOHdNkey1WPdchJIfiNQnG4PjfxAl zZ67AgMBAAGjggLuMIIC6jAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFCu022tdxw9Z C3dZxiN+h6VfGrDvMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUG CCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3Jn MCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIG9BgNVHREEgbUw gbKCEWZvcnRkb2RnZWlvd2Eub3Jngg9sYWtlc2lkZW1nYy5vcmeCF3JvZ2Vyc3Nw b3J0c2NvbXBsZXgub3JnghJyb3NlZGFsZXJhcGlkcy5vcmeCFXd3dy5mb3J0ZG9k Z2Vpb3dhLm9yZ4ITd3d3Lmxha2VzaWRlbWdjLm9yZ4Ibd3d3LnJvZ2Vyc3Nwb3J0 c2NvbXBsZXgub3JnghZ3d3cucm9zZWRhbGVyYXBpZHMub3JnMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAtz77 JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGF5BTvrAAABAMASDBGAiEA kFiCKRPfzgz+aLnrxwBtbde/Ppm0I8nsx3jh3j8vu2gCIQCLye/WNP57ebz+P/J/ rBVljMlIA3oWeu5XkazzVFREzAB1AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nh d31tBr1uAAABheQU76oAAAQDAEYwRAIgQcRK3lhS10Aky+FJ4sZUX3U53hVYUJdI 7VLvau+WKb8CICWkFojQcmMKGvIEOiGqwOQQv0tL41nXXOYK26YopxoqMA0GCSqG SIb3DQEBCwUAA4IBAQAPxEq4nPm68nidK5qhCQ0BZEV9DspUy88F9aoFMRfBj616 9YnHqVrkHHSpICTll88mkaJIcVi8U0UUfZqAn6eeEGncGZmUZIDJaFt9DLiYGibP VKYEjWYLZxn+/DiDIS2eCw0tbHZP1TsKkNhJghHHsjxr1cFwi0dAYrI6/KJXOCjz vz2hICrtrXLWwsWalxTQORzRpwDRDadwb4eNUWAM9ZO1PkzQDfbtjOdflVJ4PrlA 5in8tKZ/boZO9XeevWU/a1T135njbfsQBDkCEdZYLTEoMRLz1r5D3UQr+4a9OO0h KQEBIiVqezWBJckx/8i0jY8nAxWW082CMwKAV00Y -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAmzBmEWAy0ogZr1WTGRbe kGVaviOe5XA2J125V1MQ1SmcDIBO/i8pSZixvZV036Gx231MgSnNxHs6rMZE2cyj YYVckLnSh0L1d+osVzjjHTWpOtFiyrg1aI7ejxapYqOtZi11A0J/GbTWtimv0O+y gGK217AWAZDyhKUmS8wCE9srZ3CLPbaF8E7tIPTGuV5Cx5ZYbERK261maINtzP5p RAMyDp+8R974d/GXwOTSSYsyxB4Atbq//9atmE3pi1qNOOwx/e4BgDr3NEXSV3f7 ztPFce7ZNHChr5BU5/J/T0b3/H378glzEnVlCnXOLhd1BEEspoGhF0R1wDHWB7HL +LtaLBw831u0qPAf47YYv5TkUKOz0pyNtpDKJRlCVkIgct7ncTdrebs8CddfA8El gBai6QEEDxjX4y4JVAuPo4BWL9aAKjIZwXjxLpi+hP74EopuNTUej97jnsetOARJ fDC/BrAR31YfOHdNkey1WPdchJIfiNQnG4PjfxAlzZ67AgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 349009219294717112303966415113928494232676 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-24 13:00:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-24 13:00:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fortdodgeiowa.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 3521825306537879067271980310323072006455219278140512667317818287127552423622483885081632983927852770112088508960177834287051786875974919603396104706734885715385603048744112709169843294643674737210819625596148954800158268588224707848338714433828403600968399557199916649938395141266333556085133185809320069181269643337251777027978725799721603532035880698886576726673643316333082757606609509842038448237030767957677871636778043923272723843940621069577142777033997888040641218984178562258325455966129613500180929194385528147917361043248493472232840615883137634872994837876561169597957463056692055725670789886889014819855604124403664750074822835498487928424012463810856926073789729846491937231124607593537135625654227264909106944971189287076064729267786621725287810519516269637283493954880981526533437004643730716120570084755128203039807101309468999689041869095236966920837796901965401500907288914730502083968886319016084893441723 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2bb4db6b5dc70f590b7759c6237e87a55f1ab0ef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (181 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fortdodgeiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lakesidemgc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rogerssportscomplex.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rosedalerapids.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fortdodgeiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lakesidemgc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rogerssportscomplex.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rosedalerapids.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000185e414efac00000403004830460221009058822913dfce0cfe68b9ebc7006d6dd7bf3e99b423c9ecc778e1de3f2fbb680221008bc9efd634fe7b79bcfe3ff27fac15658cc948037a167aee5791acf3545444cc007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000185e414efaa0000040300463044022041c44ade5852d74024cbe149e2c6545f7539de1558509748ed52ef6aef9629bf022025a41688d072630a1af2043a21aac0e410bf4b4be359d75ce60adba628a71a2a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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