connect.artsfund.org
- ArtsFund -
Issued by GeoTrust SHA256 SSL CA
About this certificate
This digital certificate with serial number 67:da:e1:21:8c:11:07:b9:67:5f:04:32:12:07:9c:99 was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
ArtsFund
Organization:
ArtsFund
Organization unit: hosting
Organization unit: hosting
State / Province:
Washington
Locality: Seattle
Country: US
Locality: Seattle
Country: US
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 67:da:e1:21:8c:11:07:b9:67:5f:04:32:12:07:9c:99Serial Number (int): 138046970481045601519263773090149538969
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 14:67:8e:ed:83:4f:d6:1e:9d:40:04:0c:04:46:a1:70:34:b2:0f:72
Fingerprint (sha1): 58:01:18:31:3a:9a:ec:17:d1:dd:3e:a5:d1:72:0a:06:5e:bd:d6:7d
Fingerprint (sha256): 1a:aa:1a:88:26:08:0f:0b:54:51:f1:33:1a:1d:49:fa:52:e5:b0:3d:68:d4:b0:a6:d5:d6:cd:9c:73:b6:41:c5
Issuing Certificate URL: http://gj.symcb.com/gj.crt
Revocation information
OCSP Server: http://gj.symcd.comCRL Distribution Point: http://gj.symcb.com/gj.crl
Check the revocation status for certificate connect.artsfund.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for connect.artsfund.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
connect.artsfund.org
Other certificates including the domain name artsfund.org
(limited to 100 certificates)
artsfund.org
artsfund.org
artsfund.org
artsfund.org
artsfund.org
connect.artsfund.org
connect.artsfund.org
artsfund.org
connect.artsfund.org
artsfund.org
cpcontacts.artsfund.org
artsfund.org
homer.artsfund.org
poseidon.artsfund.org
connect.artsfund.org
connect.artsfund.org
artsfund.org
artsfund.org
artsfund.org
artsfund.org
artsfund.org
mail.artsfund.org
connect.artsfund.org
connect.artsfund.org
www.artsfund.org
artsfund.org
artsfund.org
artsfund.org
connect.artsfund.org
artsfund.org
artsfund.org
connect.artsfund.org
artsfund.org
artsfund.org
artsfund.org
artsfund.org
poseidon.artsfund.org
connect.artsfund.org
artsfund.org
artsfund.org
artsfund.org
artsfund.org
connect.artsfund.org
connect.artsfund.org
artsfund.org
connect.artsfund.org
artsfund.org
cpcontacts.artsfund.org
artsfund.org
homer.artsfund.org
poseidon.artsfund.org
connect.artsfund.org
connect.artsfund.org
artsfund.org
artsfund.org
artsfund.org
artsfund.org
artsfund.org
mail.artsfund.org
connect.artsfund.org
connect.artsfund.org
www.artsfund.org
artsfund.org
artsfund.org
artsfund.org
connect.artsfund.org
artsfund.org
artsfund.org
connect.artsfund.org
artsfund.org
artsfund.org
artsfund.org
artsfund.org
poseidon.artsfund.org
connect.artsfund.org
Certificate
The complete raw certificate details for connect.artsfund.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIQZ9rhIYwRB7lnXwQyEgecmTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEfMB0GA1UEAxMW R2VvVHJ1c3QgU0hBMjU2IFNTTCBDQTAeFw0xNzA4MTMwMDAwMDBaFw0xODAyMDIy MzU5NTlaMHgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIDApXYXNoaW5ndG9uMRAwDgYD VQQHDAdTZWF0dGxlMREwDwYDVQQKDAhBcnRzRnVuZDEQMA4GA1UECwwHaG9zdGlu ZzEdMBsGA1UEAwwUY29ubmVjdC5hcnRzZnVuZC5vcmcwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQDFjT4ZPkXlW1ZNq9iYdpBhFYBZvf/L5JQH3jmfKnpH Wky3zH7/raZZNxMIL5uOVr8hM84fWam7kkGxwdf8N3XQ8JaeGQH67bNX7LCmVrnI 8bMj8B5dPUq273iL8Z2iyc00yDv2T9nqLosZM72QvDj2sDWR6jCUZtf4J+RSnxj5 pCoO/qfjzmXfZ0HICzMRobsarKdStgRa5NOMd0a/lWDM89Lv9/Ll522s3jy8beHb 2HqOfdHQO7t98vz8hx1wD6NRH7cfc8IRpjB7gSDiWkBKOrX6CoEHNhA0rulxtVK7 Rgt1TRDArtRgsKqjnfdoANu6X289dhyqwd3bsnFGTtCvAgMBAAGjggKtMIICqTAf BgNVHREEGDAWghRjb25uZWN0LmFydHNmdW5kLm9yZzAJBgNVHRMEAjAAMA4GA1Ud DwEB/wQEAwIFoDArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vZ2ouc3ltY2IuY29t L2dqLmNybDCBnQYDVR0gBIGVMIGSMIGPBgZngQwBAgIwgYQwPwYIKwYBBQUHAgEW M2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9s ZWdhbDBBBggrBgEFBQcCAjA1DDNodHRwczovL3d3dy5nZW90cnVzdC5jb20vcmVz b3VyY2VzL3JlcG9zaXRvcnkvbGVnYWwwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMB8GA1UdIwQYMBaAFBRnju2DT9YenUAEDARGoXA0sg9yMFcGCCsGAQUF BwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDovL2dqLnN5bWNkLmNvbTAmBggrBgEF BQcwAoYaaHR0cDovL2dqLnN5bWNiLmNvbS9nai5jcnQwggEDBgorBgEEAdZ5AgQC BIH0BIHxAO8AdgDd6x0reg1PpiCLga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAV3a yTXfAAAEAwBHMEUCIQCtWO+S6BLyP2XGKNzyR2UTh3DNeviLkhJEpAtIZTtO3wIg HuzgQtunWd9MNG7Uv1PdgJGRNxHs68l5r7duIWaoJXcAdQCkuQmQtBhYFIe7E6LM Z3AKPDWYBPkb37jjd80OyA3cEAAAAV3ayTX2AAAEAwBGMEQCID0mOGYJ6Qf4f8rh cR9WmQpiKhL6VpkqwCgknyzpLWAFAiAc0T0c73A0IvGthlAhipgRF63MVDQJFAgo RmrucR5JZTANBgkqhkiG9w0BAQsFAAOCAQEAFos+LceywUV7xPpij+GexEAcVW/4 KR8Inaaj8/cYFR0JRe178S/EdGAuMCb8JTH04RYmQMnexugvhNwhOkYCrHZdYcVS TLfYlagpyiGOGOvrUvgsjxV8RYYdm1s8z6ik60G9OkPgY1r8zEhLqjnFsGDgLJqX AA4Mm0sdeXcxpWSfTCFkH9QZKNVUPPnn+4SpRSCDy2iPpR1p5qfWny3Vrjcu7dhZ nfcyI87oeV3rPsIhEsBCq+9JAcXb6OBrA3ecfpJiiSfificF68yN39YoA8Plkhsj tp2IrhSiqPQmvdOoFmSEWGsJiqAamT0HUIybcCvjw+xqN1Bq0s2HnsAZmg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxY0+GT5F5VtWTavYmHaQ YRWAWb3/y+SUB945nyp6R1pMt8x+/62mWTcTCC+bjla/ITPOH1mpu5JBscHX/Dd1 0PCWnhkB+u2zV+ywpla5yPGzI/AeXT1Ktu94i/GdosnNNMg79k/Z6i6LGTO9kLw4 9rA1keowlGbX+CfkUp8Y+aQqDv6n485l32dByAszEaG7GqynUrYEWuTTjHdGv5Vg zPPS7/fy5edtrN48vG3h29h6jn3R0Du7ffL8/IcdcA+jUR+3H3PCEaYwe4Eg4lpA Sjq1+gqBBzYQNK7pcbVSu0YLdU0QwK7UYLCqo533aADbul9vPXYcqsHd27JxRk7Q rwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 138046970481045601519263773090149538969 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SHA256 SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Seattle' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ArtsFund' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'hosting' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'connect.artsfund.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24938595386768065928741776765984203101896025058930320806126009049533441397221522915090524027235461991684290711695773807928202272639507661628199659801133388675949627907722673141472980598014379732974403909969602477929504231993347781139753601257371066596929557336461713115114306930286225134449616137271349143651398691222695198462736184270079492001827860569325982081388721322156180688180727728216224016008673869904932562888069438891434472040507406345575250511437492943506248227147857548370944469830000213924269397224371177528448645019294473526651023612490122312090914319655155612308608864276834797108402785082446965559471 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'connect.artsfund.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcb.com/gj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 14678eed834fd61e9d40040c0446a17034b20f72 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcb.com/gj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015ddac935df0000040300473045022100ad58ef92e812f23f65c628dcf24765138770cd7af88b921244a40b48653b4edf02201eece042dba759df4c346ed4bf53dd8091913711ecebc979afb76e2166a82577007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015ddac935f6000004030046304402203d26386609e907f87fcae1711f56990a622a12fa56992ac028249f2ce92d600502201cd13d1cef703422f1ad8650218a981117adcc543409140828466aee711e4965 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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