mzstatic.com
- Apple Inc. -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 03:c2:05:32:5c:c6:b3:99:f3:cf:4d:f1:60:38:f4:04 was issued on by DigiCert Inc.
With 65 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Apple Inc.
Company registration number:
C0806592
Organization: Apple Inc.
Organization unit: Delivery Site Reliability Engineering
Organization: Apple Inc.
Organization unit: Delivery Site Reliability Engineering
State / Province:
California
Locality: Cupertino
Country: US
Locality: Cupertino
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c2:05:32:5c:c6:b3:99:f3:cf:4d:f1:60:38:f4:04Serial Number (int): 4995094980079484509583403095982404612
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 55:da:98:b0:4a:22:26:b1:d4:10:d2:b8:5b:41:e9:ea:68:ed:42:34
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 20:42:83:26:5b:e5:cc:bc:ad:80:17:ae:fe:5b:6d:2c:da:cc:4a:c3
Fingerprint (sha256): 1a:41:2d:b4:28:94:f4:9a:2a:f2:2c:3d:20:ac:c3:03:54:3b:ac:b5:13:eb:56:79:56:74:46:86:d0:55:ed:5e
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate mzstatic.com
65
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mzstatic.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
a1.mzstatic.com
a2.mzstatic.com
a3.mzstatic.com
a4.mzstatic.com
a5.mzstatic.com
accertify.mzstatic.com
apps.itunes-nocookie.com
apps.itunes.apple.com
apps.itunes.com
b1.mzstatic.com
b2.mzstatic.com
b3.mzstatic.com
b4.mzstatic.com
b5.mzstatic.com
dzc-metrics.mzstatic.com
is1-ssl.mzstatic.com
is2-ssl.mzstatic.com
is3-ssl.mzstatic.com
is4-ssl.mzstatic.com
is5-ssl.mzstatic.com
itc.mzstatic.com
metrics.mzstatic.com
mzstatic.com
mzuserxp.itunes.apple.com
r.mzstatic.com
r1.mzstatic.com
r2.mzstatic.com
r3.mzstatic.com
r4.mzstatic.com
r5.mzstatic.com
s.mzstatic.com
s1.mzstatic.com
s2.mzstatic.com
s3.mzstatic.com
s4.mzstatic.com
s5.mzstatic.com
store.mzstatic.com
t1.mzstatic.com
t2.mzstatic.com
t3.mzstatic.com
t4.mzstatic.com
t5.mzstatic.com
xp.apple.com
silverbullet.itunes.apple.com
isq05.mzstatic.com
isq06.mzstatic.com
isq07.mzstatic.com
isq08.mzstatic.com
isq09.mzstatic.com
isq11.mzstatic.com
conductor.itunes.apple.com
apps.mzstatic.com
apps-internal.mzstatic.com
staging.podcastsconnect.apple.com
play.music.apple.com
messenger.music.apple.com
is1-ssl-int.mzstatic.com
is2-ssl-int.mzstatic.com
is3-ssl-int.mzstatic.com
is4-ssl-int.mzstatic.com
is5-ssl-int.mzstatic.com
isq12.mzstatic.com
isq13.mzstatic.com
isq14.mzstatic.com
isq15.mzstatic.com
a2.mzstatic.com
a3.mzstatic.com
a4.mzstatic.com
a5.mzstatic.com
accertify.mzstatic.com
apps.itunes-nocookie.com
apps.itunes.apple.com
apps.itunes.com
b1.mzstatic.com
b2.mzstatic.com
b3.mzstatic.com
b4.mzstatic.com
b5.mzstatic.com
dzc-metrics.mzstatic.com
is1-ssl.mzstatic.com
is2-ssl.mzstatic.com
is3-ssl.mzstatic.com
is4-ssl.mzstatic.com
is5-ssl.mzstatic.com
itc.mzstatic.com
metrics.mzstatic.com
mzstatic.com
mzuserxp.itunes.apple.com
r.mzstatic.com
r1.mzstatic.com
r2.mzstatic.com
r3.mzstatic.com
r4.mzstatic.com
r5.mzstatic.com
s.mzstatic.com
s1.mzstatic.com
s2.mzstatic.com
s3.mzstatic.com
s4.mzstatic.com
s5.mzstatic.com
store.mzstatic.com
t1.mzstatic.com
t2.mzstatic.com
t3.mzstatic.com
t4.mzstatic.com
t5.mzstatic.com
xp.apple.com
silverbullet.itunes.apple.com
isq05.mzstatic.com
isq06.mzstatic.com
isq07.mzstatic.com
isq08.mzstatic.com
isq09.mzstatic.com
isq11.mzstatic.com
conductor.itunes.apple.com
apps.mzstatic.com
apps-internal.mzstatic.com
staging.podcastsconnect.apple.com
play.music.apple.com
messenger.music.apple.com
is1-ssl-int.mzstatic.com
is2-ssl-int.mzstatic.com
is3-ssl-int.mzstatic.com
is4-ssl-int.mzstatic.com
is5-ssl-int.mzstatic.com
isq12.mzstatic.com
isq13.mzstatic.com
isq14.mzstatic.com
isq15.mzstatic.com
Other certificates including the domain name mzstatic.com
(limited to 100 certificates)
itunes.apple.com
mzstatic.com
mzuserxp.itunes.apple.com
discussions-uat.apple.com
itunes.apple.com
mzstatic.com
mzuserxp.itunes.apple.com
mzstatic.com
www.me.com
itunes.apple.com
itunes.apple.com
itunes.apple.com
americasred3.apple.com
itunes.apple.com
mzstatic.com
americasred3.apple.com
discussions-uat.apple.com
discussions-uat.apple.com
discussions-uat.apple.com
mzuserxp.itunes.apple.com
mzuserxp.itunes.apple.com
discussions-uat.apple.com
cloudkit.io
mzstatic.com
mzstatic.com
mzstatic.com
itunes.apple.com
itunes.apple.com
cloudkit.io
apps.itunes.apple.com
mzstatic.com
is1-ssl.mzstatic.com
itunes.apple.com
mzstatic.com
mzstatic.com
itunes.apple.com
itunes.apple.com
mzstatic.com
discussions-uat.apple.com
discussions-uat.apple.com
mzuserxp.itunes.apple.com
itunes.apple.com
mzstatic.com
xp-qa.apple.com
itunes.apple.com
discussions-uat.apple.com
itunes.apple.com
is1-ssl.mzstatic.com
mzstatic.com
mzstatic.com
mzstatic.com
itunes.apple.com
itunes.apple.com
discussions-uat.apple.com
mzuserxp.itunes.apple.com
mzstatic.com
mzstatic.com
itunes.apple.com
itunes.apple.com
mzstatic.com
cloudkit.io
itunes.apple.com
cloudkit.io
apps.mzstatic.com
mzstatic.com
qa.mzstatic.com
apps.itunes.apple.com
itunes.apple.com
mzstatic.com
itunes.apple.com
*.mzstatic.com
discussions-uat.apple.com
static.itunes.apple.com
xp-qa.apple.com
mzstatic.com
mzstatic.com
itunes.apple.com
itunes.apple.com
itunes.apple.com
is1-ssl.mzstatic.com
mzstatic.com
mzstatic.com
apps.mzstatic.com
apps.itunes.apple.com
mzstatic.com
www.me.com
cloudkit.io
mzstatic.com
itunes.apple.com
www.imac.co.nz
itunes.apple.com
xp-qa.apple.com
itunes.apple.com
www.me.com
itunes.apple.com
mzuserxp.itunes.apple.com
discussions-uat.apple.com
mzstatic.com
americasred3.apple.com
itunes.apple.com
mzstatic.com
mzuserxp.itunes.apple.com
discussions-uat.apple.com
itunes.apple.com
mzstatic.com
mzuserxp.itunes.apple.com
mzstatic.com
www.me.com
itunes.apple.com
itunes.apple.com
itunes.apple.com
americasred3.apple.com
itunes.apple.com
mzstatic.com
americasred3.apple.com
discussions-uat.apple.com
discussions-uat.apple.com
discussions-uat.apple.com
mzuserxp.itunes.apple.com
mzuserxp.itunes.apple.com
discussions-uat.apple.com
cloudkit.io
mzstatic.com
mzstatic.com
mzstatic.com
itunes.apple.com
itunes.apple.com
cloudkit.io
apps.itunes.apple.com
mzstatic.com
is1-ssl.mzstatic.com
itunes.apple.com
mzstatic.com
mzstatic.com
itunes.apple.com
itunes.apple.com
mzstatic.com
discussions-uat.apple.com
discussions-uat.apple.com
mzuserxp.itunes.apple.com
itunes.apple.com
mzstatic.com
xp-qa.apple.com
itunes.apple.com
discussions-uat.apple.com
itunes.apple.com
is1-ssl.mzstatic.com
mzstatic.com
mzstatic.com
mzstatic.com
itunes.apple.com
itunes.apple.com
discussions-uat.apple.com
mzuserxp.itunes.apple.com
mzstatic.com
mzstatic.com
itunes.apple.com
itunes.apple.com
mzstatic.com
cloudkit.io
itunes.apple.com
cloudkit.io
apps.mzstatic.com
mzstatic.com
qa.mzstatic.com
apps.itunes.apple.com
itunes.apple.com
mzstatic.com
itunes.apple.com
*.mzstatic.com
discussions-uat.apple.com
static.itunes.apple.com
xp-qa.apple.com
mzstatic.com
mzstatic.com
itunes.apple.com
itunes.apple.com
itunes.apple.com
is1-ssl.mzstatic.com
mzstatic.com
mzstatic.com
apps.mzstatic.com
apps.itunes.apple.com
mzstatic.com
www.me.com
cloudkit.io
mzstatic.com
itunes.apple.com
www.imac.co.nz
itunes.apple.com
xp-qa.apple.com
itunes.apple.com
www.me.com
itunes.apple.com
mzuserxp.itunes.apple.com
discussions-uat.apple.com
mzstatic.com
americasred3.apple.com
itunes.apple.com
Certificate
The complete raw certificate details for mzstatic.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIMBTCCCu2gAwIBAgIQA8IFMlzGs5nzz03xYDj0BDANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE4MDkwNjAwMDAwMFoXDTE5MDcyNDEy MDAwMFowgfYxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAlVTMRswGQYLKwYBBAGCNzwCAQITCkNhbGlmb3JuaWExETAPBgNV BAUTCEMwODA2NTkyMQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTES MBAGA1UEBxMJQ3VwZXJ0aW5vMRMwEQYDVQQKEwpBcHBsZSBJbmMuMS4wLAYDVQQL EyVEZWxpdmVyeSBTaXRlIFJlbGlhYmlsaXR5IEVuZ2luZWVyaW5nMRUwEwYDVQQD EwxtenN0YXRpYy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3 O5uFdmg/I80ARXBv22HoHwEtigMO1+JLX6Oqm+gChzRZvrhKl9DKQ4Zc8pB8UJsY RXqBdQJO6p6bDL9+740qwQiAiuuxdKl5MfDH2ZgfwnT0+BCSWbYOd66frcNTosjK d+OfMb18OD4XQQ8MmLVUAvBQJN5Hdnrj64lJdy8SJZE8SldU5wqswNXDd0GI/cia j6Fn/5sL5CWTbyAxY1n2mlIxTRAqn25olUjpbuVJRXqF+nKjpTD5rkRHQZLezNDQ GDU16RPe6jnVR9T1subiPtHkwMECSCN/jrfxj6QUWBy6rFXXLZ7mUL3GuLhrUsqH Qz401kZy00KC01KURtjZAgMBAAGjgggNMIIICTAfBgNVHSMEGDAWgBQ901Cl1qCt 7vNKYApl0yHU+PjWDzAdBgNVHQ4EFgQUVdqYsEoiJrHUENK4W0Hp6mjtQjQwggUz BgNVHREEggUqMIIFJoIPYTEubXpzdGF0aWMuY29tgg9hMi5tenN0YXRpYy5jb22C D2EzLm16c3RhdGljLmNvbYIPYTQubXpzdGF0aWMuY29tgg9hNS5tenN0YXRpYy5j b22CFmFjY2VydGlmeS5tenN0YXRpYy5jb22CGGFwcHMuaXR1bmVzLW5vY29va2ll LmNvbYIVYXBwcy5pdHVuZXMuYXBwbGUuY29tgg9hcHBzLml0dW5lcy5jb22CD2Ix Lm16c3RhdGljLmNvbYIPYjIubXpzdGF0aWMuY29tgg9iMy5tenN0YXRpYy5jb22C D2I0Lm16c3RhdGljLmNvbYIPYjUubXpzdGF0aWMuY29tghhkemMtbWV0cmljcy5t enN0YXRpYy5jb22CFGlzMS1zc2wubXpzdGF0aWMuY29tghRpczItc3NsLm16c3Rh dGljLmNvbYIUaXMzLXNzbC5tenN0YXRpYy5jb22CFGlzNC1zc2wubXpzdGF0aWMu Y29tghRpczUtc3NsLm16c3RhdGljLmNvbYIQaXRjLm16c3RhdGljLmNvbYIUbWV0 cmljcy5tenN0YXRpYy5jb22CDG16c3RhdGljLmNvbYIZbXp1c2VyeHAuaXR1bmVz LmFwcGxlLmNvbYIOci5tenN0YXRpYy5jb22CD3IxLm16c3RhdGljLmNvbYIPcjIu bXpzdGF0aWMuY29tgg9yMy5tenN0YXRpYy5jb22CD3I0Lm16c3RhdGljLmNvbYIP cjUubXpzdGF0aWMuY29tgg5zLm16c3RhdGljLmNvbYIPczEubXpzdGF0aWMuY29t gg9zMi5tenN0YXRpYy5jb22CD3MzLm16c3RhdGljLmNvbYIPczQubXpzdGF0aWMu Y29tgg9zNS5tenN0YXRpYy5jb22CEnN0b3JlLm16c3RhdGljLmNvbYIPdDEubXpz dGF0aWMuY29tgg90Mi5tenN0YXRpYy5jb22CD3QzLm16c3RhdGljLmNvbYIPdDQu bXpzdGF0aWMuY29tgg90NS5tenN0YXRpYy5jb22CDHhwLmFwcGxlLmNvbYIdc2ls dmVyYnVsbGV0Lml0dW5lcy5hcHBsZS5jb22CEmlzcTA1Lm16c3RhdGljLmNvbYIS aXNxMDYubXpzdGF0aWMuY29tghJpc3EwNy5tenN0YXRpYy5jb22CEmlzcTA4Lm16 c3RhdGljLmNvbYISaXNxMDkubXpzdGF0aWMuY29tghJpc3ExMS5tenN0YXRpYy5j b22CGmNvbmR1Y3Rvci5pdHVuZXMuYXBwbGUuY29tghFhcHBzLm16c3RhdGljLmNv bYIaYXBwcy1pbnRlcm5hbC5tenN0YXRpYy5jb22CIXN0YWdpbmcucG9kY2FzdHNj b25uZWN0LmFwcGxlLmNvbYIUcGxheS5tdXNpYy5hcHBsZS5jb22CGW1lc3Nlbmdl ci5tdXNpYy5hcHBsZS5jb22CGGlzMS1zc2wtaW50Lm16c3RhdGljLmNvbYIYaXMy LXNzbC1pbnQubXpzdGF0aWMuY29tghhpczMtc3NsLWludC5tenN0YXRpYy5jb22C GGlzNC1zc2wtaW50Lm16c3RhdGljLmNvbYIYaXM1LXNzbC1pbnQubXpzdGF0aWMu Y29tghJpc3ExMi5tenN0YXRpYy5jb22CEmlzcTEzLm16c3RhdGljLmNvbYISaXNx MTQubXpzdGF0aWMuY29tghJpc3ExNS5tenN0YXRpYy5jb20wDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNVHR8EbjBsMDSg MqAwhi5odHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2ZXItZzIu Y3JsMDSgMqAwhi5odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2 ZXItZzIuY3JsMEsGA1UdIAREMEIwNwYJYIZIAYb9bAIBMCowKAYIKwYBBQUHAgEW HGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwBwYFZ4EMAQEwgYgGCCsGAQUF BwEBBHwwejAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMFIG CCsGAQUFBzAChkZodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRT SEEyRXh0ZW5kZWRWYWxpZGF0aW9uU2VydmVyQ0EuY3J0MAkGA1UdEwQCMAAwggEF BgorBgEEAdZ5AgQCBIH2BIHzAPEAdwC72d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQ lmQ2jh7RhQAAAWWwXciHAAAEAwBIMEYCIQDtNWjv+adMkxKtAgijEJ/lhy4BPD+e msol+FtLbrlYXwIhAIdjfcIN/iBnAGlMSBNocgmI1K0fhCdF2EN+bd4XHXILAHYA VhQGmi/XwuzT9eG9RLI+x0Z2ubyZEVzA75SYVdaJ0N0AAAFlsF3IxAAABAMARzBF AiBC/5OklIlSu6L9+Ht7ZxvzmoB2pRa/9/P7FoTChSqygQIhAK7SCpxGmx8I2rK0 eoxgCRMmyHNcyPyulMjIUyW+AruwMA0GCSqGSIb3DQEBCwUAA4IBAQBH5tUb5bVl cytUrs3NljoPOXo6H4PF4A1Mg7CRnVHpBauMDaSELMLjhL61O+vDnQHNHHBl5TdX 6R65yEXq5Honc/YmLffEYYAxGz3ftXWJCuk2JR1n3vUKBrABgWR6TybiliuiLLq7 lSRLih9QMy/zCftIrGXTZTG/6Wc1P5iZWiCaKZBH0umzh3Ju8Ru+mXiiERs9ndJ2 yCkFrmL6r9WnpEu2jB02SwQF89YnX+QXQtVDdAszvFH3lmMMJBy9m3cVLZhRj4hY mASvlvXHIVvex1KsgyKhm9VqYg5MixCb5DDI2Pnk9DuX2JR2ilE26MiQSEMLJ9/a Z8BAgwnpNuY7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzubhXZoPyPNAEVwb9th 6B8BLYoDDtfiS1+jqpvoAoc0Wb64SpfQykOGXPKQfFCbGEV6gXUCTuqemwy/fu+N KsEIgIrrsXSpeTHwx9mYH8J09PgQklm2Dneun63DU6LIynfjnzG9fDg+F0EPDJi1 VALwUCTeR3Z64+uJSXcvEiWRPEpXVOcKrMDVw3dBiP3Imo+hZ/+bC+Qlk28gMWNZ 9ppSMU0QKp9uaJVI6W7lSUV6hfpyo6Uw+a5ER0GS3szQ0Bg1NekT3uo51UfU9bLm 4j7R5MDBAkgjf4638Y+kFFgcuqxV1y2e5lC9xri4a1LKh0M+NNZGctNCgtNSlEbY 2QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4995094980079484509583403095982404612 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-24 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'C0806592' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cupertino' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Apple Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Delivery Site Reliability Engineering' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mzstatic.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23131003365128794562683889134724516509306238651771249077210493154467530182105390521102463660578477156645633801809114087411816203574532730571726912713687584380679760175502553932630996565640818795008112772146344025909225402975285712303778880017534562039039813505235144664333493328188125712625679337328379920938054970811940196258309357311776187783868528987019116572770060289136032604175923170135224665552852698309631783183023721283558737430511835010529799575625515821936049832117222522683426668825199922140706480100751195690412257068633994839690268945013688240897539052527231724545647181142185562201221066830784955341017 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 55da98b04a2226b1d410d2b85b41e9ea68ed4234 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1322 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a1.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a2.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a3.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a4.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a5.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'accertify.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.itunes-nocookie.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.itunes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b1.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b2.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b3.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b4.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b5.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dzc-metrics.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is1-ssl.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is2-ssl.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is3-ssl.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is4-ssl.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is5-ssl.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itc.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'metrics.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mzuserxp.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'r.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'r1.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'r2.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'r3.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'r4.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'r5.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's1.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's2.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's3.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's4.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's5.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 't1.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 't2.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 't3.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 't4.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 't5.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xp.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'silverbullet.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isq05.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isq06.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isq07.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isq08.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isq09.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isq11.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'conductor.itunes.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps-internal.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.podcastsconnect.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'play.music.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'messenger.music.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is1-ssl-int.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is2-ssl-int.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is3-ssl-int.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is4-ssl-int.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is5-ssl-int.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isq12.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isq13.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isq14.mzstatic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isq15.mzstatic.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed18500000165b05dc8870000040300483046022100ed3568eff9a74c9312ad0208a3109fe5872e013c3f9e9aca25f85b4b6eb9585f02210087637dc20dfe206700694c481368720988d4ad1f842745d8437e6dde171d720b0076005614069a2fd7c2ecd3f5e1bd44b23ec74676b9bc99115cc0ef949855d689d0dd00000165b05dc8c40000040300473045022042ff93a4948952bba2fdf87b7b671bf39a8076a516bff7f3fb1684c2852ab281022100aed20a9c469b1f08dab2b47a8c60091326c8735cc8fcae94c8c85325be02bbb0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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