durastop.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number f1:99:30:4c:dc:5a:36:b5 was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=durastop.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): f1:99:30:4c:dc:5a:36:b5Serial Number (int): 17408998941249910453
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: fb:79:d7:19:56:26:ef:4c:ed:11:8a:09:68:c1:4d:12:d6:c8:cc:6f
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): a6:96:d2:93:c5:c1:d6:69:f2:04:17:3a:ff:3c:61:09:14:f4:bb:ef
Fingerprint (sha256): 2a:0e:a2:69:9b:15:26:cd:28:99:ba:02:52:18:d5:00:dc:74:3d:8f:d0:e1:6a:25:e7:08:de:30:8a:f2:f9:e6
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-7239.crl
Check the revocation status for certificate durastop.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for durastop.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
durastop.com
Other certificates including the domain name durastop.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for durastop.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHfTCCBmWgAwIBAgIJAPGZMEzcWja1MA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDcyNDE1MjQwN1oX DTI0MDcyNDE1MjQwN1owFzEVMBMGA1UEAxMMZHVyYXN0b3AuY29tMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4InNe6CEig2gzMKg8mHnAh4z1/PJxra6 bJcLy9XjV5x/7KfvGLSNBUj30EaVG8/kQowdu7vr3QSV3CMZF+VM2+dKJ9+5vgva oLhqGIjEZBxn1zOmrY9AJdATetDGa8hj4H4Uf/xZh9Ns+LxYNIZgu+raxJHWOGIE DkRbK0GpEqw2l7q+9l3KX3DbWZcH6qMvDbjVhcM0gA3whd4GEgrgcgpQ2aGR6dLd jLxDKp0kRqH+nxdpXEymk5tGzhD8blXTzolNYhYNBfWF4F7Pcp+zQgHXOhQrk2Se j4oS86mnGt2vOxc0ZsR6E+jTfGTh2UeIPTzq3jA2wqk/luJnVS5zQ6Y6N/Pk2EmX 1bPu1SGaoJXDUyxgCh3RgLNrFSB3Hu9bHFa6QZ5daAyrfk17/d5XgCQt26xrkmkx 5JVjoE6B7QYTlLnT0q/NmnHhjBqHbKy15cv6hbI2mWUjeftYHaeCNLeyB4dK0Lp9 5s8cDZ2d21e7YcZqaY5O3CJR0C4Hk7EyYL8PPe6ScjiaYd+k8WzIv/yZm/CVmPdC Z0dOxmPfnOX7+WWzl/FOG/JD1T4nzqEcToDJlI9V+WuS0UdTRN/J/MCzcXln6AzW QZIYme44AdHRVoVL7RvAHzrONahhTy1/FVHstxRfEkjkFPocX1LgALQGwwlOdKO9 seVp+cMiVuUCAwEAAaOCAywwggMoMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDA4BgNVHR8EMTAvMC2g K6AphidodHRwOi8vY3JsLmdvZGFkZHkuY29tL2dkaWcyczEtNzIzOS5jcmwwXQYD VR0gBFYwVDBIBgtghkgBhv1tAQcXATA5MDcGCCsGAQUFBwIBFitodHRwOi8vY2Vy dGlmaWNhdGVzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECATB2Bggr BgEFBQcBAQRqMGgwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmdvZGFkZHkuY29t LzBABggrBgEFBQcwAoY0aHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5LmNvbS9y ZXBvc2l0b3J5L2dkaWcyLmNydDAfBgNVHSMEGDAWgBRAwr0njsw0gzCiM9f7bLPw tCyAzjAXBgNVHREEEDAOggxkdXJhc3RvcC5jb20wHQYDVR0OBBYEFPt51xlWJu9M 7RGKCWjBTRLWyMxvMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQDuzdBk1dsa zsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYmIgCmQAAAEAwBGMEQCIBT9uoDi 62yxNI0qMr2BkBsRL/8uXMb+HToMuCZe7DlBAiAU1FmIm1AQQZpCxbsHxMIMoZjG 14h8U4ws4jLOTsWPywB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRz AAABiYiAKmYAAAQDAEYwRAIgSjtzserQM85sg4312JVdWavamfqRmhK3WXXhJGAb aGMCIAwNYtzPhqDObBvpxjN2WiS1vfnHT1b61a4IK7SasBmHAHcA2ra/az+1tiKf m8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGJiIAqzQAABAMASDBGAiEAqTdeQkJ3 E0snTm3roA2VkuaxUYgGqHCuVvEdhDt4HCICIQCMW5i1wnj+NntktaEHCeJB/RvE nUwY2x9AtlvdC4EY1jANBgkqhkiG9w0BAQsFAAOCAQEAQNXM1Xf5Fh5J7BoVQW9x VAVfTrTndFECPIVkplpvfQ12Wnc+n3Ux33R2GUOHxQRH4/oRp9D8NtkTe6VuYrEg NLnqNXtCRr9VNxqfP+hzOuASd//5yxc4Su0x4OzlVJR8d3H1J63M868gC8a2NG3Z EHa49ggWnorOWH343uVtvYuaEE1rndwzKoE7XxLik5+2K++MGMkag8rvZGhL352Z JEZTwaEke1+IoVdXRbxOtzU9ct/romugOs92Mz8c5ocWq7vledIdYeVGI5g/yy16 +jgqYlncT6RIAuatR6dOObJUCok1Kbr/p9qPS5vJUueiU0fNNMatg++s2UFHQ7S8 Vw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4InNe6CEig2gzMKg8mHn Ah4z1/PJxra6bJcLy9XjV5x/7KfvGLSNBUj30EaVG8/kQowdu7vr3QSV3CMZF+VM 2+dKJ9+5vgvaoLhqGIjEZBxn1zOmrY9AJdATetDGa8hj4H4Uf/xZh9Ns+LxYNIZg u+raxJHWOGIEDkRbK0GpEqw2l7q+9l3KX3DbWZcH6qMvDbjVhcM0gA3whd4GEgrg cgpQ2aGR6dLdjLxDKp0kRqH+nxdpXEymk5tGzhD8blXTzolNYhYNBfWF4F7Pcp+z QgHXOhQrk2Sej4oS86mnGt2vOxc0ZsR6E+jTfGTh2UeIPTzq3jA2wqk/luJnVS5z Q6Y6N/Pk2EmX1bPu1SGaoJXDUyxgCh3RgLNrFSB3Hu9bHFa6QZ5daAyrfk17/d5X gCQt26xrkmkx5JVjoE6B7QYTlLnT0q/NmnHhjBqHbKy15cv6hbI2mWUjeftYHaeC NLeyB4dK0Lp95s8cDZ2d21e7YcZqaY5O3CJR0C4Hk7EyYL8PPe6ScjiaYd+k8WzI v/yZm/CVmPdCZ0dOxmPfnOX7+WWzl/FOG/JD1T4nzqEcToDJlI9V+WuS0UdTRN/J /MCzcXln6AzWQZIYme44AdHRVoVL7RvAHzrONahhTy1/FVHstxRfEkjkFPocX1Lg ALQGwwlOdKO9seVp+cMiVuUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17408998941249910453 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-24 15:24:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-24 15:24:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'durastop.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 916036309656938884038448309441315181080240083373440549134737046549208489329817882342072399281426477369813006079799648152198577599566080942719402882480705361941487925213901365477289175477315709386156398094815922720579685669256618015168706551177041510743902546405808434017762966414199645023019664041713819745831354486815282341780807023452674358589974330600442257301436728351175196311544253208279250465994619630828958604829677454515324699111978671207581963975566662284257685785216698770381043712014667167878515344300225838724042273706247716854244142940490061838610907148365307953777968139315871482553516573457570033839930832654155266204189551831262655130075336926508487381962471768433540764009295981513776196548043725336001328962074371791551587300430578665330020782675333316089831374535000590353870618332658320403299520226038946078432351084085702052287338026666944534004219200365399867760973012933825550332528090462312202782708925078638593088966663716662526843179779394978207790823872568543752803165677035738076386950839945732123310738426493462496596735057670989905002136421477369570705070177833340523272612229541010227273878299792864510045603647695530577511687994305782474646187847866938937135386592482347049516668646307461207232239333 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-7239.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'durastop.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fb79d7195626ef4ced118a0968c14d12d6c8cc6f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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