admin.athleticum.ch
Issued by Gandi Standard SSL CA 2
About this certificate
This digital certificate with serial number b6:2a:72:3f:12:89:d7:4b:37:74:d6:e3:f4:65:3e:f7 was issued on by Gandi.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=admin.athleticum.ch,OU=Domain Control Validated+OU=Gandi Standard SSL
Gandi
Organization:
Gandi
State / Province:
Paris
Locality: Paris
Country: FR
Locality: Paris
Country: FR
This certificate has expire since
Certificate Details
Serial Number (hex): b6:2a:72:3f:12:89:d7:4b:37:74:d6:e3:f4:65:3e:f7Serial Number (int): 242139888892719576028339857176614223607
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 9c:17:a2:95:0b:d0:c8:f2:ad:6a:83:d2:1c:f5:e9:71:77:41:98:cb
AuthorityKeyId: b3:90:a7:d8:c9:af:4e:cd:61:3c:9f:7c:ad:5d:7f:41:fd:69:30:ea
Fingerprint (sha1): cf:06:c2:84:6a:6c:eb:e5:d0:64:e9:05:9a:ff:ff:6c:8b:29:19:eb
Fingerprint (sha256): 27:53:d7:1c:7f:e7:06:74:a0:82:65:bb:fa:f5:f8:4f:5b:37:f6:f4:cd:9e:bb:38:fb:33:5e:32:80:47:12:1c
Issuing Certificate URL: http://crt.usertrust.com/GandiStandardSSLCA2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/GandiStandardSSLCA2.crl
Check the revocation status for certificate admin.athleticum.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for admin.athleticum.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
admin.athleticum.ch
www.admin.athleticum.ch
www.admin.athleticum.ch
Other certificates including the domain name athleticum.ch
(limited to 100 certificates)
www.athleticum.ch
www.athleticum.ch
athleticum.ch
vpn.athleticum.ch
www.athleticum.ch
vpn.athleticum.ch
admin.athleticum.ch
vpn.athleticum.ch
vpn.athleticum.ch
vpn.athleticum.ch
saml.athleticum.ch
52sounds.ch
52sounds.ch
www.athleticum.ch
admin.athleticum.ch
www.athleticum.ch
52sounds.ch
admin.athleticum.ch
www.athleticum.ch
www.athleticum.ch
www.athleticum.ch
52sounds.ch
www.athleticum.ch
52sounds.com
www.athleticum.ch
admin.athleticum.ch
52sounds.com
www.athleticum.ch
athleticum.ch
vpn.athleticum.ch
www.athleticum.ch
vpn.athleticum.ch
admin.athleticum.ch
vpn.athleticum.ch
vpn.athleticum.ch
vpn.athleticum.ch
saml.athleticum.ch
52sounds.ch
52sounds.ch
www.athleticum.ch
admin.athleticum.ch
www.athleticum.ch
52sounds.ch
admin.athleticum.ch
www.athleticum.ch
www.athleticum.ch
www.athleticum.ch
52sounds.ch
www.athleticum.ch
52sounds.com
www.athleticum.ch
admin.athleticum.ch
52sounds.com
Certificate
The complete raw certificate details for admin.athleticum.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGETCCBPmgAwIBAgIRALYqcj8SiddLN3TW4/RlPvcwDQYJKoZIhvcNAQELBQAw XzELMAkGA1UEBhMCRlIxDjAMBgNVBAgTBVBhcmlzMQ4wDAYDVQQHEwVQYXJpczEO MAwGA1UEChMFR2FuZGkxIDAeBgNVBAMTF0dhbmRpIFN0YW5kYXJkIFNTTCBDQSAy MB4XDTE4MDQwNjAwMDAwMFoXDTE5MDUwNTIzNTk1OVowXjEhMB8GA1UECxMYRG9t YWluIENvbnRyb2wgVmFsaWRhdGVkMRswGQYDVQQLExJHYW5kaSBTdGFuZGFyZCBT U0wxHDAaBgNVBAMTE2FkbWluLmF0aGxldGljdW0uY2gwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQC7mG8nV8a8k7HFmWD/bLUO+SO5Q/GMEIHLdIUfiL7i CB9GGNT7T3raPNfTk0PSl4x3+VygtXp8pqT+HcJ5OvBuIlZeVtVVQG6INjNQKxVs 27cSuv9aU96uuLmeFYkpB6N7xQ7o4bLeNkrFRR7tsjm51U2SSraQjzywvonUpYZN 7ezUskldUQwJtQRZFmJMMxujn8zdZ9pSWWC3fTauy3NInxPH+0wnQ5TIQCR3QJJb kkFvkAFmk1m8cyCCJqt1apKRjoXxFboSs1TExjl/j9pHhnPiIjkzkdG1ZWuR6llo YLiFiumajvXBDfWcHCzQ2gqtL0M50EHXwcVMUu7u0XPxAgMBAAGjggLHMIICwzAf BgNVHSMEGDAWgBSzkKfYya9OzWE8n3ytXX9B/Wkw6jAdBgNVHQ4EFgQUnBeilQvQ yPKtaoPSHPXpcXdBmMswDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEsGA1UdIAREMEIwNgYLKwYBBAGy MQECAhowJzAlBggrBgEFBQcCARYZaHR0cHM6Ly9jcHMudXNlcnRydXN0LmNvbTAI BgZngQwBAgEwQQYDVR0fBDowODA2oDSgMoYwaHR0cDovL2NybC51c2VydHJ1c3Qu Y29tL0dhbmRpU3RhbmRhcmRTU0xDQTIuY3JsMHMGCCsGAQUFBwEBBGcwZTA8Bggr BgEFBQcwAoYwaHR0cDovL2NydC51c2VydHJ1c3QuY29tL0dhbmRpU3RhbmRhcmRT U0xDQTIuY3J0MCUGCCsGAQUFBzABhhlodHRwOi8vb2NzcC51c2VydHJ1c3QuY29t MDcGA1UdEQQwMC6CE2FkbWluLmF0aGxldGljdW0uY2iCF3d3dy5hZG1pbi5hdGhs ZXRpY3VtLmNoMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA7ku9t3XOYLrhQmkf q+GeZqMPfl+wctiDAMR7iXqo/csAAAFinAw8rwAABAMARzBFAiBl3nrZ4iEiSfb7 b7PyBITGIUwtDH8oTzL40KGZS2s1igIhAJpBS98uDUdoUYcnuTIrLD3B/+k53Kyt 7bvyUyt5OseAAHYAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFi nAw+ZgAABAMARzBFAiEAt8MqIYQMcdrzr4JBy/pOA+/cXgdD5s3J56YQUtSjygkC IDkZ1ypX3R6F8RghQWOBYPBYvDzRhLFqZyqYkMvcD27QMA0GCSqGSIb3DQEBCwUA A4IBAQAniKmQbGL/b2f7FaAjEm19tm8jd+8K7Vx2Vc3uV90jVxcgq/hDG/7CVkdJ GYAqp7OIMBGAlb4lP3kZB5780k/inV6ktHQn9XoNvzjAvXAQAe1Lcc2XC4SyR1mr sLp2qwe7FFRpBpL7ElwYsg80asfNSXVzK4NpR64tRE9F1bXnzCPWof02KfscSGtQ abtCNPVOXgCYlXoc4JVjw5yJAekfzRAXqiPMRfGT8MmyppetunKzRhxrdxaHEuPl AxwA+adr0N1Rkakmwt4pLmQ4Uh8j8laaiAIzWD4mqtjE/mA75r1vq7JzboroFu0L 2xpqnp4gJr7Mp3yXvRwA+CkPrkxG -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5hvJ1fGvJOxxZlg/2y1 DvkjuUPxjBCBy3SFH4i+4ggfRhjU+0962jzX05ND0peMd/lcoLV6fKak/h3CeTrw biJWXlbVVUBuiDYzUCsVbNu3Err/WlPerri5nhWJKQeje8UO6OGy3jZKxUUe7bI5 udVNkkq2kI88sL6J1KWGTe3s1LJJXVEMCbUEWRZiTDMbo5/M3WfaUllgt302rstz SJ8Tx/tMJ0OUyEAkd0CSW5JBb5ABZpNZvHMggiardWqSkY6F8RW6ErNUxMY5f4/a R4Zz4iI5M5HRtWVrkepZaGC4hYrpmo71wQ31nBws0NoKrS9DOdBB18HFTFLu7tFz 8QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 242139888892719576028339857176614223607 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi Standard SSL CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi Standard SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'admin.athleticum.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23681731131304723969923101029038212203410524273371581550572106387221324407745944349589838000080193250528857903078362842998338368694803525337465103459575197260009569069257363403936162924884946376153783653098877872014879098208569050027949252174944040082464823553228725249266035565439312768724842774559706756070887680233581183687682682218870512106961929955869209984146497139532728888487263136789153135151022348102495629580217232218941344284034152594435741425901087307269071798878997806247787537387104081633150130538896790307134783713197491299978463112770066216093546616720467340440170281420811961478736018805018900657137 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b390a7d8c9af4ecd613c9f7cad5d7f41fd6930ea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9c17a2950bd0c8f2ad6a83d21cf5e971774198cb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.26 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/GandiStandardSSLCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/GandiStandardSSLCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'admin.athleticum.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.admin.athleticum.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb000001629c0c3caf0000040300473045022065de7ad9e2212249f6fb6fb3f20484c6214c2d0c7f284f32f8d0a1994b6b358a0221009a414bdf2e0d4768518727b9322b2c3dc1ffe939dcacadedbbf2532b793ac780007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc56000001629c0c3e660000040300473045022100b7c32a21840c71daf3af8241cbfa4e03efdc5e0743e6cdc9e7a61052d4a3ca0902203919d72a57dd1e85f1182141638160f058bc3cd184b16a672a9890cbdc0f6ed0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002788a9906c62ff6f67fb15a023126d7db66f2377ef0aed5c7655cdee57dd23571720abf8431bfec256474919802aa7b38830118095be253f7919079efcd24fe29d5ea4b47427f57a0dbf38c0bd701001ed4b71cd970b84b24759abb0ba76ab07bb1454690692fb125c18b20f346ac7cd4975732b836947ae2d444f45d5b5e7cc23d6a1fd3629fb1c486b5069bb4234f54e5e0098957a1ce09563c39c8901e91fcd1017aa23cc45f193f0c9b2a697adba72b3461c6b77168712e3e5031c00f9a76bd0dd5191a926c2de292e6438521f23f2569a880233583e26aad8c4fe603be6bd6fabb2736e8ae816ed0bdb1a6a9e9e2026becca77c97bd1c00f8290fae4c46