desiremate.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 54:9c:57:d4:24:36:60:a5 was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=desiremate.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): 54:9c:57:d4:24:36:60:a5Serial Number (int): 6096844564205035685
Serial Number lenght: 63 bits, 8 octets
SubjectKeyId: df:6d:60:b2:0a:16:98:e6:3c:fb:07:e8:8b:a5:bb:e8:91:d4:08:74
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 8d:18:71:64:d5:a1:2a:40:bd:42:d8:16:04:1f:17:03:f4:63:8d:83
Fingerprint (sha256): 2d:3e:a1:70:a3:7b:e2:d3:3c:99:7b:49:49:0a:56:d6:6d:45:33:36:0e:a4:0a:e6:77:c1:a9:18:30:64:73:71
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-6985.crl
Check the revocation status for certificate desiremate.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for desiremate.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
desiremate.com
Other certificates including the domain name desiremate.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for desiremate.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHgjCCBmqgAwIBAgIIVJxX1CQ2YKUwDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMjMwNzE4MDE1NTAzWhcN MjQwNzE4MDE1NTAzWjAZMRcwFQYDVQQDEw5kZXNpcmVtYXRlLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAL4M8tdwCw+vYsv0o/qntNVmL+m0vXzJ hNUZ/h+WR5JKqqWoDMevA88n7UkpO19weyrlUR+Q3h5Sslgc7+jj7Sizfk0/SeBk anj1KotxhqnIoR8QIyXCFOEdSJ5jx+jB4pzMQ7G6wWQR/EngZ2r9SDxj1TOaLuFw pw0Zw7WQj7lauNFoLmgFxENYtV4/nKjpB/bv6WgF5lTvaUXpcbtcgKxk9nRBzeNj WtUg/xCbX1j/ryOvVgL12ef2oU2wQq2tA5wXwD93tmUdlMCy9RaTZ0VaV9u5Ms60 2ksCPh9zqs3R3XOL3zWngdMRPFhG0+3nNhw+4iBtitoNLmTehwEm8bHylG8Ay/RG mX5kmIqr8oi4Ewi8dx47Gx+l/6EOA7SupsqmmkmMQYPPPbGiHFfHK4KPn5i1hsHi XF9/pUiVd3mFgEjQmzq/rU2wZJv4OThBzmGBnHSx3lmN8F/bXwKEQDNmAOyOryEo S+Ir/HdhPa2zWry2L7Ep6MYhXZQlOBXF7dVx/s5iktxfzLn3TzdOJp/hqWjEfTkc JZyUNUJW3oGWWWfgvdM/qbjM3lIF74mYl0fyC5f2S7e+WY+Xz3i+tTDEQKJeo30F uNM2vAT7onbntlDQf07IHB9gPJqBoP6kzy+s5lcnZ9m25fVen26EQ2BAQJi5RwJM G28QgUyoHBvxAgMBAAGjggMwMIIDLDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAOBgNVHQ8BAf8EBAMCBaAwOAYDVR0fBDEwLzAt oCugKYYnaHR0cDovL2NybC5nb2RhZGR5LmNvbS9nZGlnMnMxLTY5ODUuY3JsMF0G A1UdIARWMFQwSAYLYIZIAYb9bQEHFwEwOTA3BggrBgEFBQcCARYraHR0cDovL2Nl cnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwdgYI KwYBBQUHAQEEajBoMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5nb2RhZGR5LmNv bS8wQAYIKwYBBQUHMAKGNGh0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20v cmVwb3NpdG9yeS9nZGlnMi5jcnQwHwYDVR0jBBgwFoAUQMK9J47MNIMwojPX+2yz 8LQsgM4wGQYDVR0RBBIwEIIOZGVzaXJlbWF0ZS5jb20wHQYDVR0OBBYEFN9tYLIK FpjmPPsH6Iulu+iR1Ah0MIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdwDuzdBk 1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYlmtUliAAAEAwBIMEYCIQCc Kp6JExRRfhY2jPyMwyNxN9nU+595F4bxEsKYUxIR8AIhANxzzPKcudNZ0/vTv//w Hxdt/wGZx5Xkh7CqderS5vwGAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/ qznYhHMAAAGJZrVKKQAABAMARzBFAiBpM9HO7wyJOOjP1brGNL0lxcG19C47Wa/3 MY89OXRQhQIhAJYapxlSfqmxRdej5ZPmkp9AU7I9o45FWSkXMp0yGL9xAHYA2ra/ az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGJZrVKjwAABAMARzBFAiAR uPxlpjVeiKooiKjjnHEFzqlHaJuo/G5SDfypERxIUgIhAOQjbniHBigNfjruRqSy +0+B5VxVqzPY3PcSK0h5pdAdMA0GCSqGSIb3DQEBCwUAA4IBAQAyj1Ovo7ziJ2FF Y7hd8uTZGUVtEo0aMylG8FY49ip29lXV7vy0EOTL0ZkjKU66RVznri2iGMtizmwf AWpIWAMA21LJ3JARZrG7D8GfyDCCKH5Y3Y+nXosaPSsujZjxQSwT+5fcM9J/n0d7 f62GMOazb5vxtyVNovwWONdgCSQhveSA+uHg0U32FiVwEDKH6vgEwE6aKbvmpiFH RBKn0YimbZ4QBDI0uqCxvurppy2ovVoKAW4HesmIs8Qy5uiIg+/U2C3oiO+GGoDW jBIFBPLa0quS8aogJaFcF4+1CIM4bDrmy+4NDzRtTYtdTzMsGHZOisEB2/RJjJps 8LOfJz31 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvgzy13ALD69iy/Sj+qe0 1WYv6bS9fMmE1Rn+H5ZHkkqqpagMx68DzyftSSk7X3B7KuVRH5DeHlKyWBzv6OPt KLN+TT9J4GRqePUqi3GGqcihHxAjJcIU4R1InmPH6MHinMxDsbrBZBH8SeBnav1I PGPVM5ou4XCnDRnDtZCPuVq40WguaAXEQ1i1Xj+cqOkH9u/paAXmVO9pRelxu1yA rGT2dEHN42Na1SD/EJtfWP+vI69WAvXZ5/ahTbBCra0DnBfAP3e2ZR2UwLL1FpNn RVpX27kyzrTaSwI+H3OqzdHdc4vfNaeB0xE8WEbT7ec2HD7iIG2K2g0uZN6HASbx sfKUbwDL9EaZfmSYiqvyiLgTCLx3HjsbH6X/oQ4DtK6myqaaSYxBg889saIcV8cr go+fmLWGweJcX3+lSJV3eYWASNCbOr+tTbBkm/g5OEHOYYGcdLHeWY3wX9tfAoRA M2YA7I6vIShL4iv8d2E9rbNavLYvsSnoxiFdlCU4FcXt1XH+zmKS3F/MufdPN04m n+GpaMR9ORwlnJQ1QlbegZZZZ+C90z+puMzeUgXviZiXR/ILl/ZLt75Zj5fPeL61 MMRAol6jfQW40za8BPuidue2UNB/TsgcH2A8moGg/qTPL6zmVydn2bbl9V6fboRD YEBAmLlHAkwbbxCBTKgcG/ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6096844564205035685 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-18 01:55:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-18 01:55:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'desiremate.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 775338723230216477466119921712117262650379730692051625840399843865413796478158790300765321267463910041892143850853626425685688617511653057935823939372861280109952488353795497541917007439599396295348132828394379496330551376325509358153791642658061016654668602701198977807265288717533574130163986085171492549032159494398266756138289228970619051236255118604021029561989866762985849433172695009887750602245012661491563193215325133351458400976387815302210510214228676486798402454985513170019083352729104771985498897766665477687965391273900929966409204750309472211171361764071711581565848656333670842945629196069482132767660226355650886031598550317845986154234103929312811045867557826418649334749114271785677943351899204981981760874073355260818727256031632323092139148714066354928132121668254709716531977200175296948466994531794891894213639950671311004243154668186590044285018350480542134855843117870472169735535426558534747612585205278146013353564683045058706672924720824648676371502271120917354312793684573202582339355476323848367489471536129004175478701104637905058234347805595864557476144902284593680204431546144513289823690617018846441386560105709152738392083799846758152518029013785482318922603268989119068029544188407945228116040689 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-6985.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'desiremate.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) df6d60b20a1698e63cfb07e88ba5bbe891d40874 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 0169007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018966b5496200000403004830460221009c2a9e891314517e16368cfc8cc3237137d9d4fb9f791786f112c298531211f0022100dc73ccf29cb9d359d3fbd3bffff01f176dff0199c795e487b0aa75ead2e6fc0600760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018966b54a29000004030047304502206933d1ceef0c8938e8cfd5bac634bd25c5c1b5f42e3b59aff7318f3d39745085022100961aa719527ea9b145d7a3e593e6929f4053b23da38e45592917329d3218bf71007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018966b54a8f0000040300473045022011b8fc65a6355e88aa2888a8e39c7105cea947689ba8fc6e520dfca9111c4852022100e4236e788706280d7e3aee46a4b2fb4f81e55c55ab33d8dcf7122b4879a5d01d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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