admin.ces.castaicusd.com
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 2b:fa:6e:b4:9b:32:da:6a:0d:48:07:e3:cf:5c:66:9e was issued on by Google Trust Services LLC.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=admin.ces.castaicusd.com
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 2b:fa:6e:b4:9b:32:da:6a:0d:48:07:e3:cf:5c:66:9eSerial Number (int): 58457123407542397938818106812691932830
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: f0:21:24:91:7c:29:f5:80:fd:ba:99:96:30:d1:b2:2a:3f:1d:93:1b
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 89:0d:75:da:83:28:87:ff:5d:8b:cd:05:f1:ce:f5:0d:fb:bb:b8:df
Fingerprint (sha256): 1a:cb:6a:21:ae:53:99:46:46:67:89:a1:d9:8f:e1:e7:13:b4:4f:10:84:c7:ed:44:4b:a4:11:c4:18:be:9e:7d
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/kge9qXt4_YoCRL Distribution Point: http://crls.pki.goog/gts1p5/utt2fHukd6E.crl
Check the revocation status for certificate admin.ces.castaicusd.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for admin.ces.castaicusd.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
admin.ces.castaicusd.com
Other certificates including the domain name castaicusd.com
(limited to 100 certificates)
admin.ninth.frenship.net
admin.aeropuerto.ipefh.edu.mx
schoolforthedeaf.wvsdb2.state.k12.wv.us
admin.aeropuerto.ipefh.edu.mx
admin.ces.castaicusd.com
nhs.castaicusd.com
admin.castaicusd.com
cms.castaicusd.com
www.bpbraves.net
castaicusd.com
phs.pusdatsa.org
admin.aeropuerto.ipefh.edu.mx
preschool.castaicusd.com
admin.frenship.net
castaicusd.com
admin.los.castaicusd.com
hyer.hpisd.org
castaicusd.com
burkett.montourschools.com
admin.ces.castaicusd.com
*.castaicusd.com
admin.bennett.frenship.net
admin.stemk12.org
preschool.castaicusd.com
admin.aeropuerto.ipefh.edu.mx
admin.aeropuerto.ipefh.edu.mx
admin.multisensoryschool.wvsdb2.state.k12.wv.us
castaicusd.com
castaicusd.com
castaicusd.com
admin.aeropuerto.ipefh.edu.mx
www.montourschools.com
admin.cms.castaicusd.com
admin.bennett.frenship.net
admin.bennett.frenship.net
admin.preschool.castaicusd.com
admin.cfn.edu.mx
castaicusd.com
admin.bennett.frenship.net
admin.nhs.castaicusd.com
admin.preschool.castaicusd.com
castaicusd.com
admin.bennett.frenship.net
admin.bennett.frenship.net
admin.castaicusd.com
preschool.castaicusd.com
admin.aeropuerto.ipefh.edu.mx
admin.schoolforthedeaf.wvsdb2.state.k12.wv.us
admin.bennett.frenship.net
admin.bennett.frenship.net
los.castaicusd.com
admin.bennett.frenship.net
ces.castaicusd.com
admin.bennett.frenship.net
admin.aeropuerto.ipefh.edu.mx
admin.cms.castaicusd.com
castaicusd.com
castaicusd.com
admin.cms.castaicusd.com
*.castaicusd.com
los.castaicusd.com
admin.aeropuerto.ipefh.edu.mx
schoolforthedeaf.wvsdb2.state.k12.wv.us
admin.aeropuerto.ipefh.edu.mx
admin.ces.castaicusd.com
nhs.castaicusd.com
admin.castaicusd.com
cms.castaicusd.com
www.bpbraves.net
castaicusd.com
phs.pusdatsa.org
admin.aeropuerto.ipefh.edu.mx
preschool.castaicusd.com
admin.frenship.net
castaicusd.com
admin.los.castaicusd.com
hyer.hpisd.org
castaicusd.com
burkett.montourschools.com
admin.ces.castaicusd.com
*.castaicusd.com
admin.bennett.frenship.net
admin.stemk12.org
preschool.castaicusd.com
admin.aeropuerto.ipefh.edu.mx
admin.aeropuerto.ipefh.edu.mx
admin.multisensoryschool.wvsdb2.state.k12.wv.us
castaicusd.com
castaicusd.com
castaicusd.com
admin.aeropuerto.ipefh.edu.mx
www.montourschools.com
admin.cms.castaicusd.com
admin.bennett.frenship.net
admin.bennett.frenship.net
admin.preschool.castaicusd.com
admin.cfn.edu.mx
castaicusd.com
admin.bennett.frenship.net
admin.nhs.castaicusd.com
admin.preschool.castaicusd.com
castaicusd.com
admin.bennett.frenship.net
admin.bennett.frenship.net
admin.castaicusd.com
preschool.castaicusd.com
admin.aeropuerto.ipefh.edu.mx
admin.schoolforthedeaf.wvsdb2.state.k12.wv.us
admin.bennett.frenship.net
admin.bennett.frenship.net
los.castaicusd.com
admin.bennett.frenship.net
ces.castaicusd.com
admin.bennett.frenship.net
admin.aeropuerto.ipefh.edu.mx
admin.cms.castaicusd.com
castaicusd.com
castaicusd.com
admin.cms.castaicusd.com
*.castaicusd.com
los.castaicusd.com
Certificate
The complete raw certificate details for admin.ces.castaicusd.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIQK/putJsy2moNSAfjz1xmnjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDAzMjAwNTI3MzNaFw0yNDA2MTgw NTI3MzJaMCMxITAfBgNVBAMTGGFkbWluLmNlcy5jYXN0YWljdXNkLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANnXnFYsIVK+yatQhCdlKUmsEgR9 VEpli/GTf8g08GrQuvtnc7mXIMJ1D+5szQixOX3SLTl2Gvhdy9lAmwjyFn8IQQ5R mU28NAVGsWBOS4LVMvjFHsboLFzThdE2kx3RdQgBxcx3nuZkPBOx/7CShKTpRGdx bXNMFQ+UWVgSEUfV5Y1rih8tnxc64eib4OAmuv1mAK4gfcqE0JReFRaC8Xw4dZ0R e3IJwDCzQxBfyaeNnOltMeHfRWKtxt58zQbeiqv0kohTFUy4yyMnoEbYkIaMuvIg pydqHJ54LuoeZo+/gCxxTv7xxA0xJuDd3NeeKr434zj5pwoWkvBcFXajK8MCAwEA AaOCAoEwggJ9MA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTwISSRfCn1gP26mZYw0bIqPx2TGzAfBgNV HSMEGDAWgBTV/J4N3x7K3QiXl24rxV/FK/XsuDB4BggrBgEFBQcBAQRsMGowNQYI KwYBBQUHMAGGKWh0dHA6Ly9vY3NwLnBraS5nb29nL3MvZ3RzMXA1L2tnZTlxWHQ0 X1lvMDEGCCsGAQUFBzAChiVodHRwOi8vcGtpLmdvb2cvcmVwby9jZXJ0cy9ndHMx cDUuZGVyMCMGA1UdEQQcMBqCGGFkbWluLmNlcy5jYXN0YWljdXNkLmNvbTAhBgNV HSAEGjAYMAgGBmeBDAECATAMBgorBgEEAdZ5AgUDMDwGA1UdHwQ1MDMwMaAvoC2G K2h0dHA6Ly9jcmxzLnBraS5nb29nL2d0czFwNS91dHQyZkh1a2Q2RS5jcmwwggEG BgorBgEEAdZ5AgQCBIH3BIH0APIAdwA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQAN LXJv4frUFwAAAY5aiyvEAAAEAwBIMEYCIQCP+ifolZQSvy3sE/FC+FHyA3m6Lz54 4BqjybLfbMin9gIhALUiRs1TEreeOZUVQOCf98xMHYaxc38o2XrKpIUsUpfNAHcA 7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGOWosrrwAABAMASDBG AiEAs3gEzTTZL5XAPaBRGgqB2coGlPX43ePPafe84CkKnaoCIQCdNXmjuXA1KH5b +tvmjbqOUYdZtGgdwIeE42Egigo8szANBgkqhkiG9w0BAQsFAAOCAQEApVduEibh ut8uVX3jKpNNiXALogFIE5J20Mzbras8YzUPGtlpFKatEDDWSBYX0uVKnroJtUZ/ 6a23PShHCMb3EXV0OZeDOGYQ9HOpVDACdFsd26OCtBLvF3AxaDFsbfOXeKmcg0ss QrfofMwPzil0+MrnIANN9pt5+M0KrWJPT8/yf5hO+ZM8d64NJNd9s/6rkARqgi7e pjTUvbAQv/kIdyIMbKfg/upasMMTaBa+FcdZB5aIRUf2hEURPJoRmqDybKd2lvqK K8gwlgdlmfKHSbMV96OC2f+QZmeWdGw1MmPzRsm9gbp68cM55kHJYiQpnXD8InM6 9uT6Zl1FY2UPAA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2decViwhUr7Jq1CEJ2Up SawSBH1USmWL8ZN/yDTwatC6+2dzuZcgwnUP7mzNCLE5fdItOXYa+F3L2UCbCPIW fwhBDlGZTbw0BUaxYE5LgtUy+MUexugsXNOF0TaTHdF1CAHFzHee5mQ8E7H/sJKE pOlEZ3Ftc0wVD5RZWBIRR9XljWuKHy2fFzrh6Jvg4Ca6/WYAriB9yoTQlF4VFoLx fDh1nRF7cgnAMLNDEF/Jp42c6W0x4d9FYq3G3nzNBt6Kq/SSiFMVTLjLIyegRtiQ hoy68iCnJ2ocnngu6h5mj7+ALHFO/vHEDTEm4N3c154qvjfjOPmnChaS8FwVdqMr wwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 58457123407542397938818106812691932830 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-20 05:27:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-18 05:27:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'admin.ces.castaicusd.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27500033771477686799311491902657323717674032257407084612018331855836444477339162113733279914724392256716697300962833368326907766410290035477437678812961368228148172365807734983859151824471215053402661113454384128526036714253188996498837723259853336568528125975016072662806592562361453189986823650521100794877916169481689357256094450315964162808208909861600321812269952456179108358204826888283067379365016331507102762257532954279324641754232636350931127554703044529460022194626358429760678398646874891505301977351809276412369563979583303464926506964897243390094895483105329078408626145595669258894306001416671950220227 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f02124917c29f580fdba999630d1b22a3f1d931b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/kge9qXt4_Yo' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'admin.ces.castaicusd.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/utt2fHukd6E.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e5a8b2bc400000403004830460221008ffa27e8959412bf2dec13f142f851f20379ba2f3e78e01aa3c9b2df6cc8a7f6022100b52246cd5312b79e39951540e09ff7cc4c1d86b1737f28d97acaa4852c5297cd007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e5a8b2baf0000040300483046022100b37804cd34d92f95c03da0511a0a81d9ca0694f5f8dde3cf69f7bce0290a9daa0221009d3579a3b97035287e5bfadbe68dba8e518759b4681dc08784e361208a0a3cb3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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