kcl.de
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 51:13:b7:08:49:3d:15:a2:13:78:50:1c:e1:e5:21:7e was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=kcl.de
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 51:13:b7:08:49:3d:15:a2:13:78:50:1c:e1:e5:21:7eSerial Number (int): 107769833636339368151379056377268085118
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 99:75:d9:25:cf:66:a5:66:2d:59:48:c6:63:f5:25:3b:a4:2d:e0:0e
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 94:f6:d1:f0:18:a0:c5:16:96:a2:62:6f:00:e8:4a:87:19:c9:b2:ed
Fingerprint (sha256): 31:1e:9f:7b:48:93:41:fd:7b:11:d1:cb:14:ba:d8:9e:54:6f:57:86:d8:50:05:ce:3c:32:4d:93:90:a1:8d:e7
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/N9sMzNjeHwECRL Distribution Point: http://crls.pki.goog/gts1p5/OEZ-zGIkVNM.crl
Check the revocation status for certificate kcl.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kcl.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kcl.de
*.kcl.de
*.kcl.de
Other certificates including the domain name kcl.de
(limited to 100 certificates)
buildings.honeywell.com
chempro.kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
buildings.honeywell.com
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
chempro.kcl.de
sni.cloudflaressl.com
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
buildings.honeywell.com
WEBMAIL.HONEYWELL.COM
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
chempro.kcl.de
sni.cloudflaressl.com
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
www.chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
buildings.honeywell.com
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
buildings.honeywell.com
WEBMAIL.HONEYWELL.COM
www.chempro.kcl.de
chempro.kcl.de
buildings.honeywell.com
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
promo.kcl.de
chempro.kcl.de
www.chempro.kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
buildings.honeywell.com
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
WEBMAIL.HONEYWELL.COM
buildings.honeywell.com
www.chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
sni.cloudflaressl.com
buildings.honeywell.com
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
buildings.honeywell.com
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
chempro.kcl.de
sni.cloudflaressl.com
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
buildings.honeywell.com
WEBMAIL.HONEYWELL.COM
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
chempro.kcl.de
sni.cloudflaressl.com
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
www.chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
buildings.honeywell.com
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
buildings.honeywell.com
WEBMAIL.HONEYWELL.COM
www.chempro.kcl.de
chempro.kcl.de
buildings.honeywell.com
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
promo.kcl.de
chempro.kcl.de
www.chempro.kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
chempro.kcl.de
buildings.honeywell.com
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
WEBMAIL.HONEYWELL.COM
WEBMAIL.HONEYWELL.COM
buildings.honeywell.com
www.chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
sni.cloudflaressl.com
buildings.honeywell.com
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
chempro.kcl.de
Certificate
The complete raw certificate details for kcl.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIQURO3CEk9FaITeFAc4eUhfjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDA2MDUwMDI5MzdaFw0yNDA5MDMw MDI5MzZaMBExDzANBgNVBAMTBmtjbC5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPrvJjEPjynfEUnbwTeVWV9apuJNKsUGVdnXMkqZyubMHhkUJj8S 61y0c7MeuUCf6IKer8B1M7LMVgHmvfTFKrDAex91a720XhoGidgx4NEgAuRmMoS2 0SOtLEODuzEJHNOffFVu8UhepReGl5+Ux6T8c1DU1NoCPjM6cwJyhYQIBgpGhyW7 X2dljG55+DlhL8PXy8dmt7W1JVtJK/nMop/CgC03u3hk9jNfxQNo0kKJ6UWUgMDD U742oBTHgsrl9KFIuDfMZeCbYdp0GIIFat9/pjer/uRLCecpLWS7U25a46LN89vA 2JjbPyGABFVxG7L7Q9DV7mwPbGxulseJIXkCAwEAAaOCAnkwggJ1MA4GA1UdDwEB /wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBSZddklz2alZi1ZSMZj9SU7pC3gDjAfBgNVHSMEGDAWgBTV/J4N3x7K3QiX l24rxV/FK/XsuDB4BggrBgEFBQcBAQRsMGowNQYIKwYBBQUHMAGGKWh0dHA6Ly9v Y3NwLnBraS5nb29nL3MvZ3RzMXA1L045c016TmplSHdFMDEGCCsGAQUFBzAChiVo dHRwOi8vcGtpLmdvb2cvcmVwby9jZXJ0cy9ndHMxcDUuZGVyMBsGA1UdEQQUMBKC BmtjbC5kZYIIKi5rY2wuZGUwIQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAHW eQIFAzA8BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMx cDUvT0VaLXpHSWtWTk0uY3JsMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADyAHcASLDj a9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGP5gQTDgAABAMASDBGAiEA kXD5ERafjpQF6wVcHxQcp/Kx3UETuNp/R6bFnvLXzxUCIQCsZno+uqoGvtCZFg+I g62lIPF/u5F/8Ritv9DOXlVJkgB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf 5mdMWjp0AAABj+YEExwAAAQDAEgwRgIhAN2RaiY2OzwqAk4bAjTcFZdgnQp48OwS V/i0sk3vH406AiEApFgP2XpmhlW4OCVgv5glsWUYkfH5DIQBW/h1GO2/9+8wDQYJ KoZIhvcNAQELBQADggEBACJkrlphv+CAvBz+YdLgJJEMMhEWfHWgvE3KFnyG8Nbc 9sqQMPcr3Wrafgz0Y61lEDQ7jyyUNsWzjHMkLAfKKWE3kJCKppjaS3NORunR3Nqx HT2Ipi41xHRZggTX8qz7gKHh9bU48PDZ02hYWf0ZfXoKkK5pehKnwxpOwnRBMvF6 7Qhh3k8th/EgWCFmfbll1G892AakuRqTnfcEYeQ7tXUtST0zDu/j5eYBJOAYSOeL 2Ja0Pk8b6JwAYy+TGYSB5AYholMlN+EnB5nfG6HTkvu74maT8gjcshmXe9oN8Q+5 7P+FjdZs37KrEo2rRJLJvbc0Kz1X5h67dLjK/1Y0txg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+u8mMQ+PKd8RSdvBN5VZ X1qm4k0qxQZV2dcySpnK5sweGRQmPxLrXLRzsx65QJ/ogp6vwHUzssxWAea99MUq sMB7H3VrvbReGgaJ2DHg0SAC5GYyhLbRI60sQ4O7MQkc0598VW7xSF6lF4aXn5TH pPxzUNTU2gI+MzpzAnKFhAgGCkaHJbtfZ2WMbnn4OWEvw9fLx2a3tbUlW0kr+cyi n8KALTe7eGT2M1/FA2jSQonpRZSAwMNTvjagFMeCyuX0oUi4N8xl4Jth2nQYggVq 33+mN6v+5EsJ5yktZLtTblrjos3z28DYmNs/IYAEVXEbsvtD0NXubA9sbG6Wx4kh eQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 107769833636339368151379056377268085118 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-05 00:29:37 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-03 00:29:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kcl.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31677505100453307212778524381412734543347205815319656877447672461865881295487851088855623019818520267658658944836969782564674447271291037577054635133412400828758938076059632396619128119290961082956451688870145545318563603389219133834702005444745226115164996741021713729607893195856932392148489613496666840639062160115336735002086120236950174233401263370547907164880047440548210025856134662487045836154776884619765954039513238187976228000063857643796794137074680957036340334487387813559482665888444643294622740432207984354774893947347845602183220772089232888144847094960630338935344956317424760553045347659894382731641 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9975d925cf66a5662d5948c663f5253ba42de00e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/N9sMzNjeHwE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kcl.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kcl.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/OEZ-zGIkVNM.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f200770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018fe604130e00000403004830460221009170f911169f8e9405eb055c1f141ca7f2b1dd4113b8da7f47a6c59ef2d7cf15022100ac667a3ebaaa06bed099160f8883ada520f17fbb917ff118adbfd0ce5e55499200770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018fe604131c0000040300483046022100dd916a26363b3c2a024e1b0234dc1597609d0a78f0ec1257f8b4b24def1f8d3a022100a4580fd97a668655b8382560bf9825b1651891f1f90c84015bf87518edbff7ef . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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