sst.cepeo.on.ca
Issued by GTS CA 1D2
About this certificate
This digital certificate with serial number 3c:c3:60:a7:a9:db:1f:f9:0a:00:00:00:00:1d:57:60 was issued on by Google Trust Services.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sst.cepeo.on.ca
Google Trust Services
Organization:
Google Trust Services
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 3c:c3:60:a7:a9:db:1f:f9:0a:00:00:00:00:1d:57:60Serial Number (int): 80768138029502206605920687115791587168
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 15:03:2f:a5:19:c2:3c:8a:d5:a1:ca:58:78:4c:64:79:fb:ea:5f:43
AuthorityKeyId: b1:dd:32:5d:e8:b7:37:72:d2:ce:5c:ce:26:fe:47:79:e2:01:08:e9
Fingerprint (sha1): 83:fe:58:a0:f2:68:42:38:6e:99:54:2e:83:65:4d:d2:49:bd:e5:6f
Fingerprint (sha256): 20:e9:cb:3b:7f:63:d6:eb:05:59:d9:ec:16:a3:0f:91:a8:42:01:06:22:f6:dd:a4:b7:8e:31:7a:f3:d6:1a:43
Issuing Certificate URL: http://pki.goog/gsr2/GTS1D2.crt
Revocation information
OCSP Server: http://ocsp.pki.goog/gts1d2CRL Distribution Point: http://crl.pki.goog/GTS1D2.crl
Check the revocation status for certificate sst.cepeo.on.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sst.cepeo.on.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sst.cepeo.on.ca
Other certificates including the domain name cepeo.on.ca
(limited to 100 certificates)
cac.cepeo.on.ca
cadenas.cepeo.on.ca
sst.cepeo.on.ca
*.cepeo.on.ca
*.cepeo.on.ca
ei.cepeo.on.ca
www.dica.cepeo.on.ca
*.cepeo.on.ca
cac.cepeo.on.ca
sst.cepeo.on.ca
radar.cepeo.on.ca
portailparents.cepeo.on.ca
horizon2025.cepeo.on.ca
*.cepeo.on.ca
horizon2025.cepeo.on.ca
www.sems.cepeo.on.ca
cac.cepeo.on.ca
cac.cepeo.on.ca
centrale.cepeo.on.ca
portailparents.cepeo.on.ca
*.cepeo.on.ca
inscription.cepeo.on.ca
ei.cepeo.on.ca
assistance.cepeo.on.ca
horizon2025.cepeo.on.ca
cac.cepeo.on.ca
vpn.cepeo.on.ca
horizon2025.cepeo.on.ca
cac.cepeo.on.ca
www.sems.cepeo.on.ca
cac.cepeo.on.ca
giare.cepeo.on.ca
*.cepeo.on.ca
reussite.cepeo.on.ca
reussite.cepeo.on.ca
cac.cepeo.on.ca
cac.cepeo.on.ca
ei.cepeo.on.ca
cac.cepeo.on.ca
reussite.cepeo.on.ca
reussite.cepeo.on.ca
cac.cepeo.on.ca
*.cepeo.on.ca
www.sems.cepeo.on.ca
inscription.cepeo.on.ca
ei.cepeo.on.ca
reussite.cepeo.on.ca
sst.cepeo.on.ca
*.cepeo.on.ca
*.cepeo.on.ca
*.cepeo.on.ca
*.cepeo.on.ca
www.dica.cepeo.on.ca
idp.cepeo.on.ca
*.cepeo.on.ca
vpn.cepeo.on.ca
assistance.cepeo.on.ca
*.cepeo.on.ca
cadenas.cepeo.on.ca
horizon2025.cepeo.on.ca
giare.cepeo.on.ca
www.sems.cepeo.on.ca
horizon2025.cepeo.on.ca
inscription.cepeo.on.ca
idp.cepeo.on.ca
portailparents.cepeo.on.ca
radar.cepeo.on.ca
idp.cepeo.on.ca
giare.cepeo.on.ca
portailparents.cepeo.on.ca
inscription.cepeo.on.ca
idp.cepeo.on.ca
radar.cepeo.on.ca
sst.cepeo.on.ca
ei.cepeo.on.ca
horizon2025.cepeo.on.ca
cadenas.cepeo.on.ca
sst.cepeo.on.ca
*.cepeo.on.ca
*.cepeo.on.ca
ei.cepeo.on.ca
www.dica.cepeo.on.ca
*.cepeo.on.ca
cac.cepeo.on.ca
sst.cepeo.on.ca
radar.cepeo.on.ca
portailparents.cepeo.on.ca
horizon2025.cepeo.on.ca
*.cepeo.on.ca
horizon2025.cepeo.on.ca
www.sems.cepeo.on.ca
cac.cepeo.on.ca
cac.cepeo.on.ca
centrale.cepeo.on.ca
portailparents.cepeo.on.ca
*.cepeo.on.ca
inscription.cepeo.on.ca
ei.cepeo.on.ca
assistance.cepeo.on.ca
horizon2025.cepeo.on.ca
cac.cepeo.on.ca
vpn.cepeo.on.ca
horizon2025.cepeo.on.ca
cac.cepeo.on.ca
www.sems.cepeo.on.ca
cac.cepeo.on.ca
giare.cepeo.on.ca
*.cepeo.on.ca
reussite.cepeo.on.ca
reussite.cepeo.on.ca
cac.cepeo.on.ca
cac.cepeo.on.ca
ei.cepeo.on.ca
cac.cepeo.on.ca
reussite.cepeo.on.ca
reussite.cepeo.on.ca
cac.cepeo.on.ca
*.cepeo.on.ca
www.sems.cepeo.on.ca
inscription.cepeo.on.ca
ei.cepeo.on.ca
reussite.cepeo.on.ca
sst.cepeo.on.ca
*.cepeo.on.ca
*.cepeo.on.ca
*.cepeo.on.ca
*.cepeo.on.ca
www.dica.cepeo.on.ca
idp.cepeo.on.ca
*.cepeo.on.ca
vpn.cepeo.on.ca
assistance.cepeo.on.ca
*.cepeo.on.ca
cadenas.cepeo.on.ca
horizon2025.cepeo.on.ca
giare.cepeo.on.ca
www.sems.cepeo.on.ca
horizon2025.cepeo.on.ca
inscription.cepeo.on.ca
idp.cepeo.on.ca
portailparents.cepeo.on.ca
radar.cepeo.on.ca
idp.cepeo.on.ca
giare.cepeo.on.ca
portailparents.cepeo.on.ca
inscription.cepeo.on.ca
idp.cepeo.on.ca
radar.cepeo.on.ca
sst.cepeo.on.ca
ei.cepeo.on.ca
horizon2025.cepeo.on.ca
Certificate
The complete raw certificate details for sst.cepeo.on.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIQPMNgp6nbH/kKAAAAAB1XYDANBgkqhkiG9w0BAQsFADBC MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMRMw EQYDVQQDEwpHVFMgQ0EgMUQyMB4XDTIwMDMxMzExNTEwNloXDTIwMDYxMTExNTEw NlowGjEYMBYGA1UEAxMPc3N0LmNlcGVvLm9uLmNhMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAoDt9uGbFE1Di0uF+p3m2q5YbqID8Tos3/9P2kIJuF9UJ RBKJ9LSCjJakfoxL0mSTjQc5mdQ06PRMX34LYMhHYXO9glwBfBZvQUP3qYjm9i7z S5NiIYgVM8bi7DAwled5K1FaSwiMHYmugDPqBSZFhEg52OWGenVpxPJoD6jz/Nwp 9IMMCiP1n5oew//fa3gsqLJS0XsFUULJIQ/S8EPwWCCxtJXVp6n3Tncitwr7AADC qA8TkQNUIEBtT7kAZnHKnav69/UAJqUQWVeO+IEicyG0UWx1eb0fgI7oOY2pZcDU UXCcc5/o0lbvALKxhnEl90oGZHkf6spJCS77x+pZXQIDAQABo4ICVDCCAlAwDgYD VR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFBUDL6UZwjyK1aHKWHhMZHn76l9DMB8GA1UdIwQYMBaAFLHdMl3o tzdy0s5czib+R3niAQjpMGQGCCsGAQUFBwEBBFgwVjAnBggrBgEFBQcwAYYbaHR0 cDovL29jc3AucGtpLmdvb2cvZ3RzMWQyMCsGCCsGAQUFBzAChh9odHRwOi8vcGtp Lmdvb2cvZ3NyMi9HVFMxRDIuY3J0MBoGA1UdEQQTMBGCD3NzdC5jZXBlby5vbi5j YTAhBgNVHSAEGjAYMAgGBmeBDAECATAMBgorBgEEAdZ5AgUDMC8GA1UdHwQoMCYw JKAioCCGHmh0dHA6Ly9jcmwucGtpLmdvb2cvR1RTMUQyLmNybDCCAQMGCisGAQQB 1nkCBAIEgfQEgfEA7wB2ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3vi5Be AAABcNPywSkAAAQDAEcwRQIgdmVN+7eN8+Re9ctTud/6ar8dXxHdNdQlsi4dhHUI q+4CIQD8HPBbsNiiOCBDg9cYx9FCWtf3yXv8UvLE4nlUALqSzQB1AF6nc/nfVsDn tTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAABcNPywV4AAAQDAEYwRAIgDnhJjEBs hK6sVWUK/lPgNx/ZB5GDyJ7137lsmBtQungCIAIQ7kafQZrHKUSQsvY4YPU38BSc SqXQjMMZ5ZBzMbgOMA0GCSqGSIb3DQEBCwUAA4IBAQAZ0MLp46LtaE3LBiC46AuV NwbtyHRF/VlJwkcLrCtfyc2uOpIi0qkYfTss6I2wDbRKYpUQE8wzw2R97KgXJBZz gSAEA9kT9SU+W1uvLZiVT6f2DJl9r4KsoK22umsBGaFSccf+lVLLC2JT+cIlFE2I OU6mjqgVxxtjo5ogHyWCEAvnW/walGTESAD+uR9r/x8u8ovP3kTMtOKQ2fqH5OaN mu3mZ93LjDUEEfMxI7iL8AH5wTG0rjlVWEOkU7HTfR2rxr5w7Ubze73bzmLS3YLD jcEJaRo+3VqjtjS6nKfxK3q0xfXsgdhwBTggvIgYHHxumfSrBB+aRy+pwdQ1FYZp -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDt9uGbFE1Di0uF+p3m2 q5YbqID8Tos3/9P2kIJuF9UJRBKJ9LSCjJakfoxL0mSTjQc5mdQ06PRMX34LYMhH YXO9glwBfBZvQUP3qYjm9i7zS5NiIYgVM8bi7DAwled5K1FaSwiMHYmugDPqBSZF hEg52OWGenVpxPJoD6jz/Nwp9IMMCiP1n5oew//fa3gsqLJS0XsFUULJIQ/S8EPw WCCxtJXVp6n3Tncitwr7AADCqA8TkQNUIEBtT7kAZnHKnav69/UAJqUQWVeO+IEi cyG0UWx1eb0fgI7oOY2pZcDUUXCcc5/o0lbvALKxhnEl90oGZHkf6spJCS77x+pZ XQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 80768138029502206605920687115791587168 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1D2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-13 11:51:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-11 11:51:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sst.cepeo.on.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20227464946883672891655798357810498888863753556133264101447751756861931547334054073933967455130415241207477016035287461570763037806893582200087828966774279525384810575748963086866708284460585136152609610958244052117153082020859629562605669835878491267759092980747734017555022650889714733861540388008374555608351020345718124860981762584305391997482322257149412205263485233008549013394505502543692244155192912488893313240375403901499847323947191169027930467693995789218957370914227091578761727398411785326430467039987502592820631954626625255923154476641231927899119911801390257301409406771493750343097669743219426613597 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 15032fa519c23c8ad5a1ca58784c6479fbea5f43 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b1dd325de8b73772d2ce5cce26fe4779e20108e9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/gts1d2' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/gsr2/GTS1D2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sst.cepeo.on.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.pki.goog/GTS1D2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170d3f2c1290000040300473045022076654dfbb78df3e45ef5cb53b9dffa6abf1d5f11dd35d425b22e1d847508abee022100fc1cf05bb0d8a238204383d718c7d1425ad7f7c97bfc52f2c4e2795400ba92cd0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000170d3f2c15e000004030046304402200e78498c406c84aeac55650afe53e0371fd9079183c89ef5dfb96c981b50ba7802200210ee469f419ac7294490b2f63860f537f0149c4aa5d08cc319e5907331b80e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0019d0c2e9e3a2ed684dcb0620b8e80b953706edc87445fd5949c2470bac2b5fc9cdae3a9222d2a9187d3b2ce88db00db44a62951013cc33c3647deca81724167381200403d913f5253e5b5baf2d98954fa7f60c997daf82aca0adb6ba6b0119a15271c7fe9552cb0b6253f9c225144d88394ea68ea815c71b63a39a201f2582100be75bfc1a9464c44800feb91f6bff1f2ef28bcfde44ccb4e290d9fa87e4e68d9aede667ddcb8c350411f33123b88bf001f9c131b4ae39555843a453b1d37d1dabc6be70ed46f37bbddbce62d2dd82c38dc109691a3edd5aa3b634ba9ca7f12b7ab4c5f5ec81d870053820bc88181c7c6e99f4ab041f9a472fa9c1d435158669