knhco.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number aa:cd:92:0e:8d:39:25:74 was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=knhco.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): aa:cd:92:0e:8d:39:25:74Serial Number (int): 12307653947869963636
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: c0:af:04:9c:40:75:30:de:f8:a6:62:ac:f7:06:3d:ff:13:a4:db:64
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): cb:98:f2:87:11:c5:88:c5:4b:8a:b5:da:ba:79:c4:18:fd:7e:d2:79
Fingerprint (sha256): 35:c7:af:0f:c0:5c:2c:de:44:34:64:7e:67:49:56:66:ec:55:6f:12:04:13:bf:16:76:ac:f0:e4:d6:a8:a3:f7
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-6518.crl
Check the revocation status for certificate knhco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for knhco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
knhco.com
Other certificates including the domain name knhco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for knhco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHeTCCBmGgAwIBAgIJAKrNkg6NOSV0MA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDcwMjE2MzIxM1oX DTI0MDcwMjE2MzIxM1owFDESMBAGA1UEAxMJa25oY28uY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAlPD2PodL8sY+d2i29MtDF24HWpP/oXSJSS4M m2I8zCIvpNlJDBahbxO53h6axNajwpLqGEaN8mM0gEqhOppl+EajFEe5U/YIS8MJ fOmYkV3LCwzzgFZutfGkUBFAESyLMgqcHDjijtqdacQTst4lrAFwIQ1ThupeWFNj 875xPZmzh+0Jy1jpRzjqQhIGjG1CPPgwhYzWg47ZDjS95NMPBIPLACog7qzWipUZ eG+beYX6hntof111woWa6fchIhLAWt5rtIXtB06+D1lPSNhGhyAs1phzLnUJfe/Z HcbDbHgP0K3KP6n/bM8Ob6YCB9fLvsw5QONp//E3cUFXZkaYN8AvvPftj9kKjt8U twPBvQd28qVE/FeU5Zp7oyV2cLCoNi/etwH0ruxK7kC02OdmLjKd/OoZLkw2eFWT GbA9Jgu/kdFW5lZRuTZs/NqWB/Q5nL+6aNETPe8oeoymPQFAB9FS/j7yDIOonRim nSGcuZANmDD1WeSj7VVfZljdrKOG1zi3nqXIE9r9//hHV1PwL265Q8/APhOLnKO+ J3cQR9L8eJiARC4+H6MGr1vhXgIKrtMyXWDOy2qOcJP/JZA+57QFlKOEuKDIxbg4 QReVVE8NhTp2vwzWTRNC+/yFNf6cvpc0+mhU+Fo4H9n4eYkodiPBFu2+1oKIROwb M9UoMKcCAwEAAaOCAyswggMnMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDA4BgNVHR8EMTAvMC2gK6Ap hidodHRwOi8vY3JsLmdvZGFkZHkuY29tL2dkaWcyczEtNjUxOC5jcmwwXQYDVR0g BFYwVDBIBgtghkgBhv1tAQcXATA5MDcGCCsGAQUFBwIBFitodHRwOi8vY2VydGlm aWNhdGVzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECATB2BggrBgEF BQcBAQRqMGgwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmdvZGFkZHkuY29tLzBA BggrBgEFBQcwAoY0aHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBv c2l0b3J5L2dkaWcyLmNydDAfBgNVHSMEGDAWgBRAwr0njsw0gzCiM9f7bLPwtCyA zjAUBgNVHREEDTALgglrbmhjby5jb20wHQYDVR0OBBYEFMCvBJxAdTDe+KZirPcG Pf8TpNtkMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdwDuzdBk1dsazsVct520 zROiModGfLzs3sNRSFlGcR+1mwAAAYkXcpyCAAAEAwBIMEYCIQCUM990Smhr5HBc 2EDIgw6t/eRGE+uO+vFEYnJ/MdFi4wIhAM/myvWDnRK8tTa13Ix490oKpsb9pSUq +A2kR5GtaTt5AHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGJ F3KdTQAABAMASDBGAiEAjG2ygGEjJlvB2Ftgg1OuS2f3I8x7Hf1dJ9XRQzvYLxcC IQCNPP0Dl46alBPjvS3LlcvjHElJZBE3D/LtSWkLssLjOAB1ANq2v2s/tbYin5vC u1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiRdynbIAAAQDAEYwRAIgKzx0tMDHzSK7 CH/K5kh0LaLBiko0EEMjEek8awtWVAACIGOOQmnTDkz76kkY7rc6r6o4pRTXiT3V eCTqJg0XCP4SMA0GCSqGSIb3DQEBCwUAA4IBAQBzju2Zu7+b3q+mBLJ3c3m7dstz +c2mAzJDJXMcJqVP1bISqFjf6VPjz5VqPIG4DzVqheETS/3249g15OPvuTIkct0s C2Xghh3OYydSPJPJqWTwcLp5dzsD7NU/agyXmqwaV1hBbli1bhPWwWBgdv2l4i1A xpgp8z4Rx/GdPICud0oYpCxcWtKCj5Y9N/gLuwQHFtETmOY/BqGKh0Dka9/GGpjl XaA3TVOFtQmuLEJi96/wqE9TQDCLXwG15T2DYc3WjoyLYZFYgByxbScaQRT0TcNr lHlftedxsA2doQIs+oS791upAhifJGH6I+GAcX+DW0woyXNyXlZgsCab9R77 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAlPD2PodL8sY+d2i29MtD F24HWpP/oXSJSS4Mm2I8zCIvpNlJDBahbxO53h6axNajwpLqGEaN8mM0gEqhOppl +EajFEe5U/YIS8MJfOmYkV3LCwzzgFZutfGkUBFAESyLMgqcHDjijtqdacQTst4l rAFwIQ1ThupeWFNj875xPZmzh+0Jy1jpRzjqQhIGjG1CPPgwhYzWg47ZDjS95NMP BIPLACog7qzWipUZeG+beYX6hntof111woWa6fchIhLAWt5rtIXtB06+D1lPSNhG hyAs1phzLnUJfe/ZHcbDbHgP0K3KP6n/bM8Ob6YCB9fLvsw5QONp//E3cUFXZkaY N8AvvPftj9kKjt8UtwPBvQd28qVE/FeU5Zp7oyV2cLCoNi/etwH0ruxK7kC02Odm LjKd/OoZLkw2eFWTGbA9Jgu/kdFW5lZRuTZs/NqWB/Q5nL+6aNETPe8oeoymPQFA B9FS/j7yDIOonRimnSGcuZANmDD1WeSj7VVfZljdrKOG1zi3nqXIE9r9//hHV1Pw L265Q8/APhOLnKO+J3cQR9L8eJiARC4+H6MGr1vhXgIKrtMyXWDOy2qOcJP/JZA+ 57QFlKOEuKDIxbg4QReVVE8NhTp2vwzWTRNC+/yFNf6cvpc0+mhU+Fo4H9n4eYko diPBFu2+1oKIROwbM9UoMKcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12307653947869963636 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-02 16:32:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-02 16:32:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'knhco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 607627317190894856287879675081471305489717729277190659864890135657754771558627424015492238511488447549099094937801819295034195856937483592858055158004090477710660129299958045293176697973162764906100391168737244878098479733029376129067823779431712968361913459411818233714935183185220555695377324832341652374279391804043338165894381963616092636057912023825528932183952415962242281567152141594141679923161479600539879395198922469506553268294318787266375544798192270155128713994905524265446373842253655384299458412229529456239157516173367408600141541623877014987864606981491989286650145471924676703265632877373171522030061979465999589802351836094203481246729823116204577826443399808843647944047199055096967648356960864688031311016488932042701544491103274227558972652186238019148195301911716579653167129188233300101178089414382572780335115663724353372488292011116092130227875076362696406673954348789491561065217158540289226082687687324668918865772092827573964079074411698582935642961454200550790318270999819761767843820869900240016707951251249898186177363531443739505549083841677555808828359835304330387736746675411251289776958917740156566896836800787889914308928100834938987789599707599273430647215433708871215171531114571619247764025511 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-6518.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knhco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c0af049c407530def8a662acf7063dff13a4db64 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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