ufc.com
Issued by Certainly Intermediate R1
About this certificate
This digital certificate with serial number 76:b3:58:40:a9:93:bf:bc:29:7f:69:44:f6:90:cc:44:39:9f was issued on by Certainly.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ufc.com
Certainly
Organization:
Certainly
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 76:b3:58:40:a9:93:bf:bc:29:7f:69:44:f6:90:cc:44:39:9fSerial Number (int): 10340277591436618210104974428487748816222623
Serial Number lenght: 143 bits, 18 octets
SubjectKeyId: aa:6a:7e:77:12:f4:22:bf:5a:f7:2d:a3:48:38:36:e1:4b:e1:f4:4f
AuthorityKeyId: bd:97:9d:df:a1:d8:1b:25:99:e3:0c:04:06:89:64:12:d7:65:24:c7
Fingerprint (sha1): f3:84:5c:ee:fc:a3:70:a8:be:0d:c4:7c:91:96:19:81:a0:18:16:5d
Fingerprint (sha256): 1e:1f:5b:ee:82:57:85:5a:68:9c:ac:de:1c:19:03:66:93:2e:51:2b:5e:3c:8c:0b:a6:23:78:0b:32:71:75:b6
Issuing Certificate URL: http://int-r1.certainly.com
Revocation information
OCSP Server: http://ocsp.int-r1.certainly.comCheck the revocation status for certificate ufc.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ufc.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ufc.com
Other certificates including the domain name ufc.com
(limited to 100 certificates)
au.ufc.com
3fadmin.govdelivery.com
facebook.bars.ufc.com
*.ufc.com
ftp.ufc.com
webmail.ufc.com
2021convention.ncte.org
au.ufc.com
5755424754106368-fe2.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
live.ucdavis.edu
5766752193478656-fe4.pantheonsite.io
a.ns.christiancentury.org
ftp.ufc.com
academi.ufc.com
dev.ufc.com
communityadvancementfirm.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
on.ufc.com
a.ns.christiancentury.org
alumnimail.albion.edu
71.ufc.com
live.bme.cornell.edu
5766752193478656-fe4.pantheonsite.io
*.dev.ufc.com
5755424754106368-fe2.pantheonsite.io
jp.ufc.com
ftp.ufc.com
ufc.com
*.test.ufc.com
5766752193478656-fe4.pantheonsite.io
collector.ufc.com
5755424754106368-fe2.pantheonsite.io
ufc.com
asikmpo.discoverlosangeles.com
alumnimail.albion.edu
alumnimail.albion.edu
5766752193478656-fe4.pantheonsite.io
sandiegozoo100.org
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
bars.ufc.com
5766752193478656-fe4.pantheonsite.io
2fsupport.govdelivery.com
webmail.ufc.com
2fsupport.govdelivery.com
5755424754106368-fe2.pantheonsite.io
on.ufc.com
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
sandiegozoo100.org
5755424754106368-fe2.pantheonsite.io
sters.us
71.ufc.com
5755424754106368-fe2.pantheonsite.io
*.dev.ufc.com
live.ucdavis.edu
lp.programs.carey.jhu.edu.help
*.ufc.com
on.ufc.com
on.ufc.com
ufc.com
webmail.ufc.com
5766752193478656-fe4.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
webmail.ufc.com
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
ufc.com
5755424754106368-fe2.pantheonsite.io
rewards.ufc.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
jc.edu
ufc.com
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
cci520-new.courtinnovation.org
jc.edu
2fsupport.govdelivery.com
collector.ufc.com
71.ufc.com
71.ufc.com
5766752193478656-fe4.pantheonsite.io
bars.ufc.com
5766752193478656-fe4.pantheonsite.io
*.ufc.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
ufc.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
cervello.ufc.com
sandiegozoo100.org
3fadmin.govdelivery.com
facebook.bars.ufc.com
*.ufc.com
ftp.ufc.com
webmail.ufc.com
2021convention.ncte.org
au.ufc.com
5755424754106368-fe2.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
live.ucdavis.edu
5766752193478656-fe4.pantheonsite.io
a.ns.christiancentury.org
ftp.ufc.com
academi.ufc.com
dev.ufc.com
communityadvancementfirm.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
on.ufc.com
a.ns.christiancentury.org
alumnimail.albion.edu
71.ufc.com
live.bme.cornell.edu
5766752193478656-fe4.pantheonsite.io
*.dev.ufc.com
5755424754106368-fe2.pantheonsite.io
jp.ufc.com
ftp.ufc.com
ufc.com
*.test.ufc.com
5766752193478656-fe4.pantheonsite.io
collector.ufc.com
5755424754106368-fe2.pantheonsite.io
ufc.com
asikmpo.discoverlosangeles.com
alumnimail.albion.edu
alumnimail.albion.edu
5766752193478656-fe4.pantheonsite.io
sandiegozoo100.org
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
bars.ufc.com
5766752193478656-fe4.pantheonsite.io
2fsupport.govdelivery.com
webmail.ufc.com
2fsupport.govdelivery.com
5755424754106368-fe2.pantheonsite.io
on.ufc.com
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
sandiegozoo100.org
5755424754106368-fe2.pantheonsite.io
sters.us
71.ufc.com
5755424754106368-fe2.pantheonsite.io
*.dev.ufc.com
live.ucdavis.edu
lp.programs.carey.jhu.edu.help
*.ufc.com
on.ufc.com
on.ufc.com
ufc.com
webmail.ufc.com
5766752193478656-fe4.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
webmail.ufc.com
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
ufc.com
5755424754106368-fe2.pantheonsite.io
rewards.ufc.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
jc.edu
ufc.com
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
cci520-new.courtinnovation.org
jc.edu
2fsupport.govdelivery.com
collector.ufc.com
71.ufc.com
71.ufc.com
5766752193478656-fe4.pantheonsite.io
bars.ufc.com
5766752193478656-fe4.pantheonsite.io
*.ufc.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
ufc.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
cervello.ufc.com
sandiegozoo100.org
Certificate
The complete raw certificate details for ufc.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISdrNYQKmTv7wpf2lE9pDMRDmfMA0GCSqGSIb3DQEBCwUA MEUxCzAJBgNVBAYTAlVTMRIwEAYDVQQKEwlDZXJ0YWlubHkxIjAgBgNVBAMTGUNl cnRhaW5seSBJbnRlcm1lZGlhdGUgUjEwHhcNMjQwNjE3MDg0NjQ5WhcNMjQwNzE3 MDg0NjQ4WjASMRAwDgYDVQQDEwd1ZmMuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAr4bzQc9aSkPmvHhLwP4Y2lAGz+XIUWXi+sKE8540V0f+xH24 x5/aTDhlN76/eXBSZn9mCQx/DUI3R8ma0zx3riSjC7Jguhm9r93DxeFxS0YBGFPa ma67f08q1EBYQaNMipL5a6K2D01WHOnC+83XBLcraCt3EjzVxCSfmpDxhjI+slfa JNCMCan7M8dAON22Ero2b5gn1gWc5IMo7VqFQttPIdUUqZcav7uPYVSyzNi2qh9W JMqfOy59Aav+gkxx7ZMCimPutaHBxKl2xlkbaRhp038a7sg6fmv2CtgwfTr0Ni5v CEZNFvB/TO5ztmxi62SW6BQoeV52ErrccH44uQIDAQABo4ICGTCCAhUwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBSqan53EvQiv1r3LaNIODbhS+H0TzAfBgNVHSMEGDAW gBS9l53fodgbJZnjDAQGiWQS12UkxzBlBggrBgEFBQcBAQRZMFcwLAYIKwYBBQUH MAGGIGh0dHA6Ly9vY3NwLmludC1yMS5jZXJ0YWlubHkuY29tMCcGCCsGAQUFBzAC hhtodHRwOi8vaW50LXIxLmNlcnRhaW5seS5jb20wEgYDVR0RBAswCYIHdWZjLmNv bTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABkCWXl3AAAAQDAEcw RQIgFLNfyjb0HfEtOqGvn6JsiZI22TiEvrGXuTfAyj+R6DsCIQD5ypp6yYxJjMB8 UB+hpbYsw3b7rllEKELIomWcOHvQmAB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0s gdm7v6s52IRzAAABkCWXl0IAAAQDAEcwRQIgcZ5PlIGWoCggwKsQRL8Hs9sGVrL8 yJSNR2qCEfqiK/oCIQCf+/WlVdPoSGW0ONQLPxtvXLBwhTpuS0hQKMQ/0noDRTAN BgkqhkiG9w0BAQsFAAOCAQEAYPHvySwTeXIq0dB4t0aeIP/o38D9chuMCuOuv/yy LBZyfDX8bqwzXzYYbBm3NjMd/vP9Ey99CvXHTcHX3ueUwErnr0f8U4M4gD0j7a+p DKNEortwSlf4rtr4CEPdmsD5l/qaDKm9Je/d5MLWa8udh4mOHt6ar1GmNR7r8Jw0 jsfiNT7KhCMQKf2l6m+X9KuKZbEXnGaQCliot+N4Nk7clKHtwV8QDgxGf5cmXj2q Omm1DVBdysdaDcMoGUtWSv4p+enAd2CvWFosZeocSig3JTfq3P8q9MDZZBtI4vdE ZSpgtXvrFxgn3Em4GgxkcUpdkWqS+FHM1rUlJEh9CmouQQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4bzQc9aSkPmvHhLwP4Y 2lAGz+XIUWXi+sKE8540V0f+xH24x5/aTDhlN76/eXBSZn9mCQx/DUI3R8ma0zx3 riSjC7Jguhm9r93DxeFxS0YBGFPama67f08q1EBYQaNMipL5a6K2D01WHOnC+83X BLcraCt3EjzVxCSfmpDxhjI+slfaJNCMCan7M8dAON22Ero2b5gn1gWc5IMo7VqF QttPIdUUqZcav7uPYVSyzNi2qh9WJMqfOy59Aav+gkxx7ZMCimPutaHBxKl2xlkb aRhp038a7sg6fmv2CtgwfTr0Ni5vCEZNFvB/TO5ztmxi62SW6BQoeV52ErrccH44 uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10340277591436618210104974428487748816222623 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Certainly' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Certainly Intermediate R1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-17 08:46:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-17 08:46:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ufc.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22158249804206878532780940595793421721704152799886390337283787091548824647392436679661466705886114717603656041354151073996951036363158702746100548544861965947033540883048643590606350283394877806493647926316558925685363254134227900778393442360170100046161071784005993333069207712599287691500117314384084178599639667665555427548539632270358093689765617511410371706637208386561385599370670172914963972062762214244047190445763413910019312947630863583639493352724797246481908204438906959836128414555435820965926120942088701243305557552109069320439778334067291426384314553957865635342040420363203006023519783042419701725369 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aa6a7e7712f422bf5af72da3483836e14be1f44f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bd979ddfa1d81b2599e30c0406896412d76524c7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (89 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-r1.certainly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://int-r1.certainly.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (11 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ufc.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000190259797700000040300473045022014b35fca36f41df12d3aa1af9fa26c899236d93884beb197b937c0ca3f91e83b022100f9ca9a7ac98c498cc07c501fa1a5b62cc376fbae59442842c8a2659c387bd09800760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d88473000001902597974200000403004730450220719e4f948196a02820c0ab1044bf07b3db0656b2fcc8948d476a8211faa22bfa0221009ffbf5a555d3e84865b438d40b3f1b6f5cb070853a6e4b485028c43fd27a0345 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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