digi.no
Issued by R3
About this certificate
This digital certificate with serial number 04:c5:63:b9:cf:90:68:76:18:70:89:a0:df:02:5f:39:db:8c was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=digi.no
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:c5:63:b9:cf:90:68:76:18:70:89:a0:df:02:5f:39:db:8cSerial Number (int): 415617328366867372070939875595626688928652
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ca:83:05:b4:d2:ab:b1:cd:13:5b:27:fe:20:ce:ee:86:47:a7:6d:b2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 4d:5c:98:b1:54:14:82:1e:35:69:a9:bb:37:9d:c6:25:09:d7:c6:74
Fingerprint (sha256): 39:58:39:26:5e:ac:14:14:8d:d9:e1:41:9e:73:62:4a:74:32:fe:bb:f4:cc:ec:49:9d:cc:b8:4a:57:4e:2c:68
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate digi.no
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for digi.no
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
digi.no
test.digi.no
www.digi.no
test.digi.no
www.digi.no
Other certificates including the domain name digi.no
(limited to 100 certificates)
wallbrand.co
dcfit.turnosweb.app
erlend2.digi.no
digi.no
digi.no
www.penguinpeople.io
groupm.beaconforce.com
www.trumpcarestories.org
digi.no
www.parrify.com
cloud.workito.co.il
digi.no
digi.no
wallbrand.co
whitepaper.digi.no
f.link.mustard.love
1j2n061x3td.www.digi.no
mysomras.com
digi.no
www.waidy.it
www.couplemonitor.app
new-adventskalender.de
admin.ugyde.io
digi.no
digi.no
digi.no
erlend2.digi.no
ymd.development.fensi.in
www.crudewiser.com
whitepaper.digi.no
erickmendoza.com
employeronboarding.keeper.co.in
www.iamtheliquor.app
static.dev.getbusy.com
www.51hint.com
www.aduug.com
digi.no
digi.no
whitepaper.digi.no
www.marktompkins.me
digital.stratton-press.linkmalloc.com
whitepaper.digi.no
hueanh.com
invertecfoods.cl
trimbo.com
digi.no
digi.no
digi.no
digi.no
www.garrettspence.dev
vedur.arnigu.info
kalk.digi.no
kalkulator.digi.no
digi.no
digi.no
digi.no
admin.job.hoikushi-go.com
f.link.mustard.love
digi.no
whitepaper.digi.no
nakytec.com
www.redstonemail.app
cvmetalproducts.ca
digi.no
digi.no
whitepaper.digi.no
upliftstress.com
whitepaper.digi.no
digi.no
digi.no
dev.viviultra.app
www.matahari-amsterdam.nl
slw.ai
edificiouna.porcelanosapartners.com
whitepaper.digi.no
kolssak.afterword.com
digi.no
kalk.digi.no
digi.no
whitepaper.digi.no
app.bemoved.com.au
digi.no
digi.no
www.chen.enterprises
digi.no
digi.no
www.inthga.io
introvue.robinsoft.biz
www.ministryofpup.com
digi.no
dcfit.turnosweb.app
erlend2.digi.no
digi.no
digi.no
www.penguinpeople.io
groupm.beaconforce.com
www.trumpcarestories.org
digi.no
www.parrify.com
cloud.workito.co.il
digi.no
digi.no
wallbrand.co
whitepaper.digi.no
f.link.mustard.love
1j2n061x3td.www.digi.no
mysomras.com
digi.no
www.waidy.it
www.couplemonitor.app
new-adventskalender.de
admin.ugyde.io
digi.no
digi.no
digi.no
erlend2.digi.no
ymd.development.fensi.in
www.crudewiser.com
whitepaper.digi.no
erickmendoza.com
employeronboarding.keeper.co.in
www.iamtheliquor.app
static.dev.getbusy.com
www.51hint.com
www.aduug.com
digi.no
digi.no
whitepaper.digi.no
www.marktompkins.me
digital.stratton-press.linkmalloc.com
whitepaper.digi.no
hueanh.com
invertecfoods.cl
trimbo.com
digi.no
digi.no
digi.no
digi.no
www.garrettspence.dev
vedur.arnigu.info
kalk.digi.no
kalkulator.digi.no
digi.no
digi.no
digi.no
admin.job.hoikushi-go.com
f.link.mustard.love
digi.no
whitepaper.digi.no
nakytec.com
www.redstonemail.app
cvmetalproducts.ca
digi.no
digi.no
whitepaper.digi.no
upliftstress.com
whitepaper.digi.no
digi.no
digi.no
dev.viviultra.app
www.matahari-amsterdam.nl
slw.ai
edificiouna.porcelanosapartners.com
whitepaper.digi.no
kolssak.afterword.com
digi.no
kalk.digi.no
digi.no
whitepaper.digi.no
app.bemoved.com.au
digi.no
digi.no
www.chen.enterprises
digi.no
digi.no
www.inthga.io
introvue.robinsoft.biz
www.ministryofpup.com
digi.no
Certificate
The complete raw certificate details for digi.no in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9TCCBN2gAwIBAgISBMVjuc+QaHYYcImg3wJfOduMMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMTkxMzI2NTNaFw0yNDAyMTcxMzI2NTJaMBIxEDAOBgNVBAMT B2RpZ2kubm8wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDRzJVawEHL dKnL4YyjmoxV2fRZkzKi+IH7YRLhmkcU8utgRCGJ5Z908/mQKOWYVRLQ1i7B0Lkb 0EF4iQT2zn++8Pw2S6Udn6FXlD61rN45vL7+CnHpwevM/3Hr08Q+dkDPcHYI1Lpk eg3np/5JAGI5ThTJsNMYWfOOdz/9Gt7aoO6pFUzRBhsPYnLTPlXMitRYalWykkX1 vqPhWztZ4GO3suRbobObE2BwCX+xtbivZgHDW8UEDRbuqK8IUqH12TCOWPQRJxSC m2PF/cTad3tmyiLSZFMJ9hqxYw5p+5/y04tgfgx0XHsujdLHX6x5ntnUZZDUuXGe V9vAPrgoUqBUTCBkIYnWHmr1z4fAl5vjJpvBK0OIaXaGJIEwpOV6pUqgPiPmcYU1 v907ICXawbSSTw/G12AjRYhnpxyIFxRDLTQGYD95czuKvZleOdwq412igls91OM1 UDdHi1IUtzboXVX4LXvguAZ7KL8ZZ11aGrx639LEhBL88Fpgj7i0DI7fQdl0BEef b+aT9/jueHX/OaPb1wd9Ra8tcsGUKCi9ChMHVCSnmkVx8/qAeSy/4robS8ZgkSR3 oY5gMEdXN5GnkRwBkphYPuNA4r5XczCZthZisS3iT7ExJEhoy63WShxfQabmLGnO SsTW0QcLJs3IUxm4IBvBe/THkS+GhMsq9QIDAQABo4ICIzCCAh8wDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8E AjAAMB0GA1UdDgQWBBTKgwW00quxzRNbJ/4gzu6GR6dtsjAfBgNVHSMEGDAWgBQU LrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGG FWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmku bGVuY3Iub3JnLzAtBgNVHREEJjAkggdkaWdpLm5vggx0ZXN0LmRpZ2kubm+CC3d3 dy5kaWdpLm5vMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB 9ASB8QDvAHUAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL5/oq tgAABAMARjBEAiBqzcAVbe6Tw4eGks57OF2xUUvDCytSoFeDMrzXBantRwIgfE9V uBRxaOgYCYODBcsYIMNA8eqlKob+CeoAroVDeQgAdgDuzdBk1dsazsVct520zROi ModGfLzs3sNRSFlGcR+1mwAAAYvn+isDAAAEAwBHMEUCIQDdFDMa960LSTnglUlE KoIullDgNNM0dj+zqL3rZ5CoDgIgLgxFn4O6fTzMQhfPGJ8udGNlFbjCt5LW3DyX HtAaMuEwDQYJKoZIhvcNAQELBQADggEBAKE+PNeApZkYpGQwOkT504iGGAFTyoua HCsheECY3Kaawc6HZ7FodWvxFWPSHcdJZmeT5GsBlIe/hJRGmIS3s7qbUequ6NoM Yygu+Ii+bRC+e3k40Vx39NhMp8G4y3YIOuNmUmtrMuZUmBd4FiiZ3ngC0fOyXgQU GqYy4NFMO4Zg5xFB75POM79GmzPn6XMJFxxBdivOQCkk1YXXTzO79OXAhxZ4v2HA s0lZfxz9oY+SO+Q2m3P9S77qwFIS5AAJ4FluQEUKtHZqRwPqyy08rxmEiTJ9/a0g JUGWPUYdvu3uDklP5OQFtwC5XoHfMqsleZCg6lASLPilRAiL5lo1MuI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0cyVWsBBy3Spy+GMo5qM Vdn0WZMyoviB+2ES4ZpHFPLrYEQhieWfdPP5kCjlmFUS0NYuwdC5G9BBeIkE9s5/ vvD8NkulHZ+hV5Q+tazeOby+/gpx6cHrzP9x69PEPnZAz3B2CNS6ZHoN56f+SQBi OU4UybDTGFnzjnc//Rre2qDuqRVM0QYbD2Jy0z5VzIrUWGpVspJF9b6j4Vs7WeBj t7LkW6GzmxNgcAl/sbW4r2YBw1vFBA0W7qivCFKh9dkwjlj0EScUgptjxf3E2nd7 Zsoi0mRTCfYasWMOafuf8tOLYH4MdFx7Lo3Sx1+seZ7Z1GWQ1LlxnlfbwD64KFKg VEwgZCGJ1h5q9c+HwJeb4yabwStDiGl2hiSBMKTleqVKoD4j5nGFNb/dOyAl2sG0 kk8PxtdgI0WIZ6cciBcUQy00BmA/eXM7ir2ZXjncKuNdooJbPdTjNVA3R4tSFLc2 6F1V+C174LgGeyi/GWddWhq8et/SxIQS/PBaYI+4tAyO30HZdARHn2/mk/f47nh1 /zmj29cHfUWvLXLBlCgovQoTB1Qkp5pFcfP6gHksv+K6G0vGYJEkd6GOYDBHVzeR p5EcAZKYWD7jQOK+V3MwmbYWYrEt4k+xMSRIaMut1kocX0Gm5ixpzkrE1tEHCybN yFMZuCAbwXv0x5EvhoTLKvUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 415617328366867372070939875595626688928652 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-19 13:26:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-17 13:26:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'digi.no' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 855905873964259014140000356845727316675732838763323355894538182133818595439124424845209612054422847750445147749002490145186812003485892487990926575536771705251712727751331710760205191182307150871550373550129332974014000410361898617833888017241196471071926249667423338625843860433712116536906229624859825546438713657760665871155332982653884345922197951281896602034169177730059544371936304692327720485401819867384267742501329963704647644206139448300107362018077318648286140175787815985238155331744611394585357531906181903224985498178014748710708653123365765946295967836077400337095903254164087204430581084171862493951321099399442911793757423714497472373038477115672909816236104552350533616904528472854466972082982097530161883197602225411990621592993158823472466550083738478192491704065282026193869290360467984220598621293862846794674007319032749996308911888556701937924737897162715456923660575998812708371615384664218575124419086134797909696565115367886165700797070803121465592698665088499989123477224278552266075124973614046726346935213169840800553310193142566511061677881773358377328411384339153344349074254586915275685322853492187497363771665257704894403769377930225953333624247064983265933225390221145147481834886275224789750328053 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ca8305b4d2abb1cd135b27fe20ceee8647a76db2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digi.no' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.digi.no' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digi.no' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018be7fa2ab6000004030046304402206acdc0156dee93c3878692ce7b385db1514bc30b2b52a0578332bcd705a9ed4702207c4f55b8147168e81809838305cb1820c340f1eaa52a86fe09ea00ae85437908007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018be7fa2b030000040300473045022100dd14331af7ad0b4939e09549442a822e9650e034d334763fb3a8bdeb6790a80e02202e0c459f83ba7d3ccc4217cf189f2e74636515b8c2b792d6dc3c971ed01a32e1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00a13e3cd780a59918a464303a44f9d38886180153ca8b9a1c2b21784098dca69ac1ce8767b168756bf11563d21dc749666793e46b019487bf8494469884b7b3ba9b51eaaee8da0c63282ef888be6d10be7b7938d15c77f4d84ca7c1b8cb76083ae366526b6b32e654981778162899de7802d1f3b25e04141aa632e0d14c3b8660e71141ef93ce33bf469b33e7e97309171c41762bce402924d585d74f33bbf4e5c0871678bf61c0b349597f1cfda18f923be4369b73fd4bbeeac05212e40009e0596e40450ab4766a4703eacb2d3caf198489327dfdad202541963d461dbeedee0e494fe4e405b700b95e81df32ab257990a0ea50122cf8a544088be65a3532e2