kraken.venik.org
Issued by R3
About this certificate
This digital certificate with serial number 04:dc:00:31:6f:e7:4a:3b:2b:6c:96:bc:57:13:66:b2:43:84 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=kraken.venik.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:dc:00:31:6f:e7:4a:3b:2b:6c:96:bc:57:13:66:b2:43:84Serial Number (int): 423311521141865661723537294255397799084932
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 57:6a:42:2f:b4:d6:9c:50:de:67:32:90:98:a4:9c:2e:f7:54:ff:7b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f2:00:c5:10:cd:b9:c4:7a:4e:7c:79:0a:1b:2c:60:8a:8e:50:60:cd
Fingerprint (sha256): 19:fe:df:a0:dd:3e:21:b7:39:27:4d:a1:a2:19:a7:6a:57:7e:e6:81:0b:75:74:98:ff:1d:04:04:90:4c:d3:6d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate kraken.venik.org
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kraken.venik.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kraken.venik.org
venik.org
www.venik.org
venik.org
www.venik.org
Other certificates including the domain name venik.org
(limited to 100 certificates)
grafana.venik.org
kraken.venik.org
foto.venik.org
chilli.venik.org
kraken.venik.org
foto.venik.org
svatba.venik.org
kraken.venik.org
kraken.venik.org
kraken.venik.org
foto.venik.org
svatba.venik.org
chilli.venik.org
svatba.venik.org
svatba.venik.org
foto.venik.org
kraken.venik.org
grafana.venik.org
chilli.venik.org
svatba.venik.org
kraken.venik.org
hass.venik.org
svatba.venik.org
foto.venik.org
svatba.venik.org
kraken.venik.org
svatba.venik.org
svatba.venik.org
svatba.venik.org
kraken.venik.org
svatba.venik.org
foto.venik.org
kraken.venik.org
kraken.venik.org
kraken.venik.org
foto.venik.org
svatba.venik.org
foto.venik.org
svatba.venik.org
kraken.venik.org
foto.venik.org
svatba.venik.org
kraken.venik.org
foto.venik.org
svatba.venik.org
grafana.venik.org
chilli.venik.org
chilli.venik.org
foto.venik.org
svatba.venik.org
chilli.venik.org
foto.venik.org
kraken.venik.org
chilli.venik.org
svatba.venik.org
foto.venik.org
foto.venik.org
foto.venik.org
kraken.venik.org
kraken.venik.org
svatba.venik.org
chilli.venik.org
svatba.venik.org
foto.venik.org
foto.venik.org
kraken.venik.org
svatba.venik.org
chilli.venik.org
kraken.venik.org
svatba.venik.org
foto.venik.org
svatba.venik.org
chilli.venik.org
kraken.venik.org
kraken.venik.org
kraken.venik.org
foto.venik.org
chilli.venik.org
svatba.venik.org
svatba.venik.org
chilli.venik.org
foto.venik.org
chilli.venik.org
kraken.venik.org
hass.venik.org
svatba.venik.org
chilli.venik.org
kraken.venik.org
kraken.venik.org
foto.venik.org
chilli.venik.org
kraken.venik.org
foto.venik.org
svatba.venik.org
kraken.venik.org
kraken.venik.org
kraken.venik.org
foto.venik.org
svatba.venik.org
chilli.venik.org
svatba.venik.org
svatba.venik.org
foto.venik.org
kraken.venik.org
grafana.venik.org
chilli.venik.org
svatba.venik.org
kraken.venik.org
hass.venik.org
svatba.venik.org
foto.venik.org
svatba.venik.org
kraken.venik.org
svatba.venik.org
svatba.venik.org
svatba.venik.org
kraken.venik.org
svatba.venik.org
foto.venik.org
kraken.venik.org
kraken.venik.org
kraken.venik.org
foto.venik.org
svatba.venik.org
foto.venik.org
svatba.venik.org
kraken.venik.org
foto.venik.org
svatba.venik.org
kraken.venik.org
foto.venik.org
svatba.venik.org
grafana.venik.org
chilli.venik.org
chilli.venik.org
foto.venik.org
svatba.venik.org
chilli.venik.org
foto.venik.org
kraken.venik.org
chilli.venik.org
svatba.venik.org
foto.venik.org
foto.venik.org
foto.venik.org
kraken.venik.org
kraken.venik.org
svatba.venik.org
chilli.venik.org
svatba.venik.org
foto.venik.org
foto.venik.org
kraken.venik.org
svatba.venik.org
chilli.venik.org
kraken.venik.org
svatba.venik.org
foto.venik.org
svatba.venik.org
chilli.venik.org
kraken.venik.org
kraken.venik.org
kraken.venik.org
foto.venik.org
chilli.venik.org
svatba.venik.org
svatba.venik.org
chilli.venik.org
foto.venik.org
chilli.venik.org
kraken.venik.org
hass.venik.org
svatba.venik.org
chilli.venik.org
kraken.venik.org
Certificate
The complete raw certificate details for kraken.venik.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCTCCBPGgAwIBAgISBNwAMW/nSjsrbJa8VxNmskOEMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjEwOTM3MjJaFw0yNDAyMTkwOTM3MjFaMBsxGTAXBgNVBAMT EGtyYWtlbi52ZW5pay5vcmcwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQDObNcQ8QG5dMnxoCeXTD+KiPsN27LlV8FTXVus2gpZUzFyqXKgwUAy46xp2WSM szLzgwl+azQsEHQwmZ2j0SA1ZlfXVdOGjvJoy1Ga6uBM81vueqWpHdTT1jxlg8j7 kUDDFlsB5cUpIoryqKVrJxb9jUD6hMvoGVZ8vHZ8Lghzy30HUzmErP5pyXtDKBL9 M1hpxS+e/xsLjzBrJlfx489PCEE7NlEfxOqENnokUO9IBwR/A29yvrIbEEbWMH+Y 8W/uvZa4pOWVwMPwk4Ey8XWkK4jHaqBbhLWcGxDk1vSkJF7rWDptufpidUiTvIMG /oFm0BmbC0xXv3xSGSwyLIBv/StfLgFBj6pN7wubuWr6u/NnEWUDt93ZHo0Cos6k ktr7MUG0+nd2LXotEcoPPiHvyS2c+MSisHg7BmVpG0tYa08L67mI8huedN2/3EdR JoZI4ZR9jtsrsLHSTV3246EIwsjEEi45JbPL46ZzyCyfDPiBGb7GcQQ48tN7fdZR m55Bv5Z0y3uwGn9I5JBnm9X51bTONLh9AbDPvPEwB67p6r/1Tc7WYGwKrkqACNJ9 LcUeNfNuyfEL1t6dTN7JjCD/ZjwboVeFRreZix2ib5As24vhcLPYFMqR02P6cXLY JSZNxDob3E0WU1Phj19CILOpavz0lZl4L/D0/tP64AU5zQIDAQABo4ICLjCCAiow DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRXakIvtNacUN5nMpCYpJwu91T/ezAfBgNV HSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYI KwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0 cDovL3IzLmkubGVuY3Iub3JnLzA1BgNVHREELjAsghBrcmFrZW4udmVuaWsub3Jn ggl2ZW5pay5vcmeCDXd3dy52ZW5pay5vcmcwEwYDVR0gBAwwCjAIBgZngQwBAgEw ggEGBgorBgEEAdZ5AgQCBIH3BIH0APIAdwA7U3d1Pi25gE6LMFsG/kA7Z9hPw/TH vQANLXJv4frUFwAAAYvxdMHyAAAEAwBIMEYCIQDjkgmxQjsYafpdNZbXoC0Bt2V/ Qv3QcD09q6RBDkpugwIhAP9F1AtidiIldVquQ+bOsVL6P2ngCw+iKR0ev/4igald AHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL8XTB+AAABAMA SDBGAiEA3Yq53m4z9vVrTyCvaq1JxYhnOD/pcwrPTeL1WqnDR/0CIQDWzkYMHIZC pWMmG3Dl1B0/d1jp14llF8So6pM8dCBsqDANBgkqhkiG9w0BAQsFAAOCAQEALEx/ 0w/o7XKNFdvT58PwWxjJXqkYgGxXtbTu8w7WxEa2CtgjJQIo84uLCGJJEZxot73B YTCl0AX6q3uKim6BSsCI5LFD7vmftNQF8C000w/1Ae78+zpAtRW6D8spQqRO4wgM bR/5s2Af7sC7eVcF3WbEEJDjYTMd3cX/IXZVA2Gy7/7yVNez3XXaC2rnqy73faZ8 EsGI9iPdRxkUVCBOOGJPDDcCskO+W91Fy4tfqzXS5xSLmUoOQEaVoRr2ehfGGYTy oiUIfR9yW0p+FvQER0B74ZbzQ39FO1ir0w8ser27KF9Z9iLvxYIVKoIXT03rdjwK y+iWMWPSAjtFgoo0YA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzmzXEPEBuXTJ8aAnl0w/ ioj7Dduy5VfBU11brNoKWVMxcqlyoMFAMuOsadlkjLMy84MJfms0LBB0MJmdo9Eg NWZX11XTho7yaMtRmurgTPNb7nqlqR3U09Y8ZYPI+5FAwxZbAeXFKSKK8qilaycW /Y1A+oTL6BlWfLx2fC4Ic8t9B1M5hKz+acl7QygS/TNYacUvnv8bC48wayZX8ePP TwhBOzZRH8TqhDZ6JFDvSAcEfwNvcr6yGxBG1jB/mPFv7r2WuKTllcDD8JOBMvF1 pCuIx2qgW4S1nBsQ5Nb0pCRe61g6bbn6YnVIk7yDBv6BZtAZmwtMV798UhksMiyA b/0rXy4BQY+qTe8Lm7lq+rvzZxFlA7fd2R6NAqLOpJLa+zFBtPp3di16LRHKDz4h 78ktnPjEorB4OwZlaRtLWGtPC+u5iPIbnnTdv9xHUSaGSOGUfY7bK7Cx0k1d9uOh CMLIxBIuOSWzy+Omc8gsnwz4gRm+xnEEOPLTe33WUZueQb+WdMt7sBp/SOSQZ5vV +dW0zjS4fQGwz7zxMAeu6eq/9U3O1mBsCq5KgAjSfS3FHjXzbsnxC9benUzeyYwg /2Y8G6FXhUa3mYsdom+QLNuL4XCz2BTKkdNj+nFy2CUmTcQ6G9xNFlNT4Y9fQiCz qWr89JWZeC/w9P7T+uAFOc0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 423311521141865661723537294255397799084932 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-21 09:37:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-19 09:37:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kraken.venik.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 842141165814999117781527037779753819375950122350685574808910297378031952705935941529676826609409619393950926370004852335443408802320989986765474626513113738820625959713531343164330355313589779031226746336911300229622203928176250623850758779479263009074616479315480479667952071148603411985943737108986302117044348476495843682412686385263275144383079872142732125910933039117614925156139262202815097110150784494419809819064243902116702331568090402923186340214563184516554369339837994418761639606473305975186943653791899810391002749869794299648482829534637613817352527805877869552186647933593926430436090459764955504649667312158360296608885660574753275483399458406297903248311293364561575024329078773586432677284299237678532103206104138630636898724834388271473371197714256611916843474511346481254613956546682086293945185277429799190453620837963381395111458587618357667416328245668256805071552095203283865654351046287166422709636872702173530283295694581704318926033163035303708910804674431025811603892475637011840837915505311963870361368683256211066498215903775116603396481139646020405544078677338509794716510487446136600736799262957941778975163603609963535471082842575816979452961758255297805369695543754805082459111615395417946457455053 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 576a422fb4d69c50de67329098a49c2ef754ff7b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kraken.venik.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'venik.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.venik.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bf174c1f20000040300483046022100e39209b1423b1869fa5d3596d7a02d01b7657f42fdd0703d3daba4410e4a6e83022100ff45d40b62762225755aae43e6ceb152fa3f69e00b0fa2291d1ebffe2281a95d00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bf174c1f80000040300483046022100dd8ab9de6e33f6f56b4f20af6aad49c58867383fe9730acf4de2f55aa9c347fd022100d6ce460c1c8642a563261b70e5d41d3f7758e9d7896517c4a8ea933c74206ca8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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