candysack.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number ed:33:25:a9:19:b8:a2:48 was issued on by GoDaddy.com, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=candysack.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): ed:33:25:a9:19:b8:a2:48Serial Number (int): 17092046419012395592
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: d0:ef:8a:5b:c3:dc:ea:38:b7:99:61:26:93:c1:2d:20:cb:67:42:82
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 2e:b2:04:f3:98:79:6a:b8:19:d1:04:60:2b:d7:3c:b0:ee:1c:42:c3
Fingerprint (sha256): 31:3a:30:40:b8:d0:b8:76:22:39:c9:e4:d0:29:05:fa:31:96:6a:1d:9a:53:51:64:a4:84:81:a3:b7:0a:71:c9
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-6420.crl
Check the revocation status for certificate candysack.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for candysack.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
candysack.com
Other certificates including the domain name candysack.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for candysack.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHfzCCBmegAwIBAgIJAO0zJakZuKJIMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDYzMDAxNDkwMFoX DTI0MDYzMDAxNDkwMFowGDEWMBQGA1UEAxMNY2FuZHlzYWNrLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAMBYNMlIYGWzRr6KMbZvChdqgnBMxMwt EkrFoLUXSNvUtCDpZahevBatGlGvDt/6PzUMp39morfoDZaZHj3hJPmOJT6UP7s6 cT1bMFKjBruh2o5e3sun1/l6iJ7b+Q8svODFGt0KbjYsPVWOoqFvGaAtr4JJiFTc AjdYwKQPUPGxPGT2W9dBKb3CFsPi3XHIpB42ozmTFI76whKmEFqbJozrF7QnnS0K nWKCH3nGPie+u9hedRuVKdo/sOFIXYbPgRLq4a1tCd+ZmX6ZmDalJ3AZCkTwqLu8 j2cgYOfPF13PYfGhPq1ssEuajfG1XRxbqsUEbSnmhk1jBmQh9jKdIv8GUIuwe6AH mXVthW73XzfC8WNyKu6tr3ood44+OdAMZPc7roBOBa0p3k/0YgkvTk9frEu8W8qf TupCFZBex9RYBModE6f/Lwu5UTYMY4mhnPBFLFoJjtMrZ7IqnR8dLynXUxwYJIyW K8EMAuJGwuq7KWK/dyOS6V2C2dk2keALoBlDcxYb6ShY7grSivWpNMN96snFOvb7 agmRrFfwJqHoJcJeXx77bnvKvAM6C7QuMF3sFhJPfWvkOtDQ/YJnJXAf1qNkxM5C rS/WbK5JQp18+Jiu9wXOcSgCkxnrnSGc29hB1VjUnZVB2aDJJLmQTgs+N/Ydfx7f FmwMRATWgD57AgMBAAGjggMtMIIDKTAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAOBgNVHQ8BAf8EBAMCBaAwOAYDVR0fBDEwLzAt oCugKYYnaHR0cDovL2NybC5nb2RhZGR5LmNvbS9nZGlnMnMxLTY0MjAuY3JsMF0G A1UdIARWMFQwSAYLYIZIAYb9bQEHFwEwOTA3BggrBgEFBQcCARYraHR0cDovL2Nl cnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwdgYI KwYBBQUHAQEEajBoMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5nb2RhZGR5LmNv bS8wQAYIKwYBBQUHMAKGNGh0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20v cmVwb3NpdG9yeS9nZGlnMi5jcnQwHwYDVR0jBBgwFoAUQMK9J47MNIMwojPX+2yz 8LQsgM4wGAYDVR0RBBEwD4INY2FuZHlzYWNrLmNvbTAdBgNVHQ4EFgQU0O+KW8Pc 6ji3mWEmk8EtIMtnQoIwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB3AO7N0GTV 2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABiQn9RtwAAAQDAEgwRgIhAKpP /CvWBT/0bjMi2lUEUxCeB9XP97BDv+dcOIqIzia+AiEAgVIabQH9cblfIhZqnDqI w9FYJmCd3lIN9X9+alJnDJMAdQBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+r OdiEcwAAAYkJ/UgYAAAEAwBGMEQCIFq1d9Mv6cBaY4gch00dUhb/xlSHq4geYDFa sdxChoGWAiBFsDFS3/sAEjoAjuMcDooAjpnVucpIaBFJW5jUdkpD+gB1ANq2v2s/ tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiQn9SHsAAAQDAEYwRAIgHLSq snSw+pWTL/DAL8ngLtJwnFP8mUfRLH8srzbxe3ECIGn7AjpOYwpyzpF+I/gNtyj/ UyTiww+vhCu/jCOKib48MA0GCSqGSIb3DQEBCwUAA4IBAQCCp5JZFc1LF1JaeI7m HCWmykXfZZEFDuuDb8TnyQG2r0zuIrnmkmf6gaAD5PevW1pcA3g7vX6koz5Xq1Q9 XcDDrahjFXwEW875DIfGCQCAvClmt/PY6GRUF2Q1ntUcyfG7PoT3SB95xPx+vmA8 wOddaQ3J0ImnVqOBX9QnqNLXUwqGVskJUG+LMXmMbWtSyAnupmHlPlsIZL66Wm0P xKtBEB8H63/TvAr8nl1KqWjTMtM0YxesBQuf1OxmQJlxLY8erlQ7qj3Ic39FhO4r ++J1SRwqOrdTSXiv8HWqXBzLxRjICld+mesp0bEcpG42zdideP9uYG0guCPx+njW njCx -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwFg0yUhgZbNGvooxtm8K F2qCcEzEzC0SSsWgtRdI29S0IOllqF68Fq0aUa8O3/o/NQynf2ait+gNlpkePeEk +Y4lPpQ/uzpxPVswUqMGu6Hajl7ey6fX+XqIntv5Dyy84MUa3QpuNiw9VY6ioW8Z oC2vgkmIVNwCN1jApA9Q8bE8ZPZb10EpvcIWw+LdccikHjajOZMUjvrCEqYQWpsm jOsXtCedLQqdYoIfecY+J7672F51G5Up2j+w4Uhdhs+BEurhrW0J35mZfpmYNqUn cBkKRPCou7yPZyBg588XXc9h8aE+rWywS5qN8bVdHFuqxQRtKeaGTWMGZCH2Mp0i /wZQi7B7oAeZdW2FbvdfN8LxY3Iq7q2veih3jj450Axk9zuugE4FrSneT/RiCS9O T1+sS7xbyp9O6kIVkF7H1FgEyh0Tp/8vC7lRNgxjiaGc8EUsWgmO0ytnsiqdHx0v KddTHBgkjJYrwQwC4kbC6rspYr93I5LpXYLZ2TaR4AugGUNzFhvpKFjuCtKK9ak0 w33qycU69vtqCZGsV/Amoeglwl5fHvtue8q8AzoLtC4wXewWEk99a+Q60ND9gmcl cB/Wo2TEzkKtL9ZsrklCnXz4mK73Bc5xKAKTGeudIZzb2EHVWNSdlUHZoMkkuZBO Cz439h1/Ht8WbAxEBNaAPnsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17092046419012395592 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-30 01:49:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-30 01:49:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'candysack.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 784697324675577935886508158886952928735292084613813902158643729153989497157327018545966213319453624923038396617373836045389107001874419762220451921931045447459567580346018326883221424115628891974199048556510388472441902250980174139024859024903960635500777985232601235434606993587053658216239800565450931142884219045120947754426488481343990016466280241809749503318592982036389034927597561566072603290300773908276391557930500940155818392787878570825938666782295331451746349342171528229361973568102719718371437397618658782793140700071293362991726307491604059748391898006015736687825393180540715750159371547063808444089025839562477729681327895413866333761528815519555504168793367708868523300518994804785118100578856942003146602128485802350691963891199492015883857305106216517324352439905766856679565358849590680859402767624230738182458230583865868208887099160413948413980591668263346716350779595508353374524584898554135546997266137553355628920005226070082930394177106572399641572396790418148642693246237298574175426885592404984355045817963011584443090105355519254203682128446077645724466015512613771811344194656562213609484308292661578281218101048965209746488457486793002597448189121394335836117087423811110903659317719733106643788906107 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-6420.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'candysack.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d0ef8a5bc3dcea38b799612693c12d20cb674282 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 0167007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018909fd46dc0000040300483046022100aa4ffc2bd6053ff46e3322da550453109e07d5cff7b043bfe75c388a88ce26be02210081521a6d01fd71b95f22166a9c3a88c3d15826609dde520df57f7e6a52670c9300750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018909fd4818000004030046304402205ab577d32fe9c05a63881c874d1d5216ffc65487ab881e60315ab1dc42868196022045b03152dffb00123a008ee31c0e8a008e99d5b9ca486811495b98d4764a43fa007500dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018909fd487b000004030046304402201cb4aab274b0fa95932ff0c02fc9e02ed2709c53fc9947d12c7f2caf36f17b71022069fb023a4e630a72ce917e23f80db728ff5324e2c30faf842bbf8c238a89be3c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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