fortdodgeiowa.org
Issued by R3
About this certificate
This digital certificate with serial number 04:05:80:81:f4:9a:9c:5c:d9:ad:32:01:eb:3d:5e:a8:b8:b4 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=fortdodgeiowa.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:05:80:81:f4:9a:9c:5c:d9:ad:32:01:eb:3d:5e:a8:b8:b4Serial Number (int): 350321371512558371357168481521462514596020
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ce:2e:01:6b:39:4b:0b:10:e6:ec:75:b3:7a:a8:74:2d:79:34:1c:2f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 80:2a:45:44:3e:a6:14:0a:46:c7:81:59:69:48:09:59:d6:b1:0c:7c
Fingerprint (sha256): 1e:03:c7:4b:ef:9c:f4:03:71:51:b0:70:ad:f4:57:80:1a:3c:fc:2f:d9:7b:f5:c5:00:3d:90:32:3f:7b:74:df
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate fortdodgeiowa.org
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fortdodgeiowa.org
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fortdodgeiowa.org
lakesidemgc.org
rogerssportscomplex.org
rosedalerapids.org
www.fortdodgeiowa.org
www.lakesidemgc.org
www.rogerssportscomplex.org
www.rosedalerapids.org
lakesidemgc.org
rogerssportscomplex.org
rosedalerapids.org
www.fortdodgeiowa.org
www.lakesidemgc.org
www.rogerssportscomplex.org
www.rosedalerapids.org
Other certificates including the domain name fortdodgeiowa.org
(limited to 100 certificates)
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
mail.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
*.fortdodgeiowa.org
fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
mail.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
www.fortdodgeiowa.org
*.fortdodgeiowa.org
Certificate
The complete raw certificate details for fortdodgeiowa.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSjCCBTKgAwIBAgISBAWAgfSanFzZrTIB6z1eqLi0MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAzMjExMjAwNTVaFw0yMzA2MTkxMjAwNTRaMBwxGjAYBgNVBAMT EWZvcnRkb2RnZWlvd2Eub3JnMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKC AYEAzT+lTeJJ1MH3LAE5BWStVdKpwigf11+YR3Rzp9foV6djXdGhHmITW5QFBeLv 1fDExa6Bl9qO4PatxpSnAEHTbx1lQfupqjnT1F9yaUQaOVRDhTmfuzV6aziNNYUd MAYX7kzpW6HjeYG/wLemsW3J9j+sSa6YHLBFWlChaAz6b+UkbUL4Ej4bmWAyD8dI JUf/mAxrXQLOKJSrZh4noumjyz3OyLkKtKvknHBhc8UXyBpJN2eXZc2UEyN0xZgo Wi6E1QmvLQomyfwYA+mxSpAiCJZ36OccYc/HPfN3BJO0feSxgdFWzRXi8sjQGZXq ow8QWRjLwWl90f2Uh0QCfKbdbuG3leStpq4HG9Pu9n22FXCHhMFWrx3YT3QvCXt0 JBKJk7jkCqXoTzDgPnkgHY4CIXT1hipJYkRqswzKFI2M0dWvLzM7eFgOSxSdZATb Bdt9MBq/TqEloE0OpmuL/xfcmE/dKt4ldvYyPQ4R07h4c8PBbOJQCqgDqhCIiIq+ oYsVAgMBAAGjggLuMIIC6jAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFM4uAWs5SwsQ 5ux1s3qodC15NBwvMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUG CCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3Jn MCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIG9BgNVHREEgbUw gbKCEWZvcnRkb2RnZWlvd2Eub3Jngg9sYWtlc2lkZW1nYy5vcmeCF3JvZ2Vyc3Nw b3J0c2NvbXBsZXgub3JnghJyb3NlZGFsZXJhcGlkcy5vcmeCFXd3dy5mb3J0ZG9k Z2Vpb3dhLm9yZ4ITd3d3Lmxha2VzaWRlbWdjLm9yZ4Ibd3d3LnJvZ2Vyc3Nwb3J0 c2NvbXBsZXgub3JnghZ3d3cucm9zZWRhbGVyYXBpZHMub3JnMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAtz77 JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGHBEIgvwAABAMASDBGAiEA 3gf056aGuzewwc0Rf+m3coTkLTL7kqQE7pvIuk1L4CsCIQCi5xGXaGxUHus6DFXQ ZU3bjwiKcKAU+GZHd5xY8OGDTAB1AK33vvp8/xDIi509nB4+GGq0Zyldz7EMJMqF hjTr3IKKAAABhwRCIO4AAAQDAEYwRAIgdCUAROPvq8K7k8cx5hecy1LOYIJ7Kkcg 47QzXzBECjYCIEBnW8TjALWqQT3eAdyPy6lqpisDRtUDb6qmGsvJAm2dMA0GCSqG SIb3DQEBCwUAA4IBAQBmY2JHZj4X65BQW1kPLKPA9EW+MKW9bBw1r1/8CfwyvY+H 7KQIcUOVCC0utuRHciiUVtNWaI37uFnKt2KvnA++DfnkYWniMjTiAkgPaqVM8P6w vXh8Yq9Ko42GHo22DgUTj0Lzc858zNVup1td+oiWnvzgXDYY/kKiBgV5pP8uVe29 7HNKsxPoclFTTNkdAJf2hCPomD6v75AaB8mAHYn70cQajgpWRccGljFCZ0Eq5JdP EdH2bTFNwV313yF3elUX1A+5Q4uisq5Qd5+dFrNn/kKv21oS2jb9mmVyY4bFTu/Y S40KweCI/lDaLfTAb+ZyPfOgQ0XytAvz3dDgCCbT -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAzT+lTeJJ1MH3LAE5BWSt VdKpwigf11+YR3Rzp9foV6djXdGhHmITW5QFBeLv1fDExa6Bl9qO4PatxpSnAEHT bx1lQfupqjnT1F9yaUQaOVRDhTmfuzV6aziNNYUdMAYX7kzpW6HjeYG/wLemsW3J 9j+sSa6YHLBFWlChaAz6b+UkbUL4Ej4bmWAyD8dIJUf/mAxrXQLOKJSrZh4noumj yz3OyLkKtKvknHBhc8UXyBpJN2eXZc2UEyN0xZgoWi6E1QmvLQomyfwYA+mxSpAi CJZ36OccYc/HPfN3BJO0feSxgdFWzRXi8sjQGZXqow8QWRjLwWl90f2Uh0QCfKbd buG3leStpq4HG9Pu9n22FXCHhMFWrx3YT3QvCXt0JBKJk7jkCqXoTzDgPnkgHY4C IXT1hipJYkRqswzKFI2M0dWvLzM7eFgOSxSdZATbBdt9MBq/TqEloE0OpmuL/xfc mE/dKt4ldvYyPQ4R07h4c8PBbOJQCqgDqhCIiIq+oYsVAgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 350321371512558371357168481521462514596020 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-21 12:00:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-19 12:00:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fortdodgeiowa.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 4657865588250098898361482906392905649084853752499296287522513744749644633869766094877165177995054666573725204955894126816870099436659210788603053287361152477020659441134697513033537949311166403407170570634430040978817782685836588882364891557444643313447811445933060465577416193304484952516262250570697661225989572622548306510641520872919553474315850890247540672177633791370941359992464615202347677919505463687284363831376394384850756613093909294995100663271551950121242404047090949135751366563429077447397926354072212370220202429643729620468253809312778296276685835839621966977457756519015382967000417018329599284301906358303514751660578181786614077506517192345656726604912673144388364210414923292204603733693326353806522596405884703835955776611616078055516177680680161335787007871021919527621619755964605060812435500965917696247439851363547089813587082332090573106565196140728671657760627319760482885800917581390335585651477 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ce2e016b394b0b10e6ec75b37aa8742d79341c2f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (181 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fortdodgeiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lakesidemgc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rogerssportscomplex.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rosedalerapids.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fortdodgeiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lakesidemgc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rogerssportscomplex.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rosedalerapids.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000187044220bf0000040300483046022100de07f4e7a686bb37b0c1cd117fe9b77284e42d32fb92a404ee9bc8ba4d4be02b022100a2e71197686c541eeb3a0c55d0654ddb8f088a70a014f86647779c58f0e1834c007500adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a00000187044220ee0000040300463044022074250044e3efabc2bb93c731e6179ccb52ce60827b2a4720e3b4335f30440a36022040675bc4e300b5aa413dde01dc8fcba96aa62b0346d5036faaa61acbc9026d9d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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