magicstair.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number d2:d8:50:76:e2:57:f4:08 was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=magicstair.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): d2:d8:50:76:e2:57:f4:08Serial Number (int): 15192981814468146184
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: a0:bb:e5:db:d6:c2:71:a1:ab:8e:8c:8c:20:e6:22:02:6d:0e:c2:db
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 30:37:cf:3c:bc:23:44:c4:b9:c9:2c:65:41:63:a2:08:84:9a:b4:de
Fingerprint (sha256): 3e:d3:9d:6a:3d:df:53:d1:33:bb:08:d9:d4:ab:07:bf:01:33:9a:56:2c:79:67:05:70:b9:b9:83:8c:58:e2:05
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-7004.crl
Check the revocation status for certificate magicstair.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for magicstair.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
magicstair.com
Other certificates including the domain name magicstair.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for magicstair.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHhDCCBmygAwIBAgIJANLYUHbiV/QIMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDcxODE5MTk1N1oX DTI0MDcxODE5MTk1N1owGTEXMBUGA1UEAxMObWFnaWNzdGFpci5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCpSN2UulFbk258Cr1bCKSIcFSxXHbx wjXJRULR62ovy2m3O6Wcn+g0XPmZAUnb9D5ZPFl2Vm0k/idvpJLIeEnRNnoTHKnq iIpuaMrnB/kRPunTx6F04o6PsmpEKjc5fbxyB73cVAHCqn5CYAdag2k30A0VBVTo 4fy4xCxnyx+KvFzR7B2i6K4G62UbNzzkpJAT02tHuzxfI0Bu43v/ye4UbDYuLdum KEa/pS5UKA5k+uAq2RngF6lwXAMfrrAc6Q2H5Qy4YY4dgrxX9NMvczg6trY3EiFC qXBRw4pfoKCROc/EJ+e1lhvnu9+vpJq47TMlChkjrgeRVPtd4yS28RnpBWgXCbJA alHXLCOkIPwGPy+t7axyRQxiDrkJ5pObhoZ2g62fFIO/4v5k679qV1jG6eHMVbiF rTRlmLNSYxeDTGP3L64jFOmFIGEOln1TVVcYYar/WFzU8ILcewgCKdu5Fsw+fPf3 SHhOOg3WSPNOgUop5J2LtSTypVLWwkZ9shTGK4FJygVftMANsD7uxuHm1TGdFnru Z9h0mJJ2umMca8K8m1bCW1+DpwcJYLYlAbTGDlN62puU4GrES4T3xvv7VkbV8IO9 SyClqD0MH3eN1t8wYaTBadm4VM7d3qofFOQhYDGnIvFejwV6acgtPErR1xDjf2Ij eZnX5nrMF3l10wIDAQABo4IDMTCCAy0wDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMDgGA1UdHwQxMC8w LaAroCmGJ2h0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2RpZzJzMS03MDA0LmNybDBd BgNVHSAEVjBUMEgGC2CGSAGG/W0BBxcBMDkwNwYIKwYBBQUHAgEWK2h0dHA6Ly9j ZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIBMHYG CCsGAQUFBwEBBGowaDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZ29kYWRkeS5j b20vMEAGCCsGAQUFBzAChjRodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29t L3JlcG9zaXRvcnkvZ2RpZzIuY3J0MB8GA1UdIwQYMBaAFEDCvSeOzDSDMKIz1/ts s/C0LIDOMBkGA1UdEQQSMBCCDm1hZ2ljc3RhaXIuY29tMB0GA1UdDgQWBBSgu+Xb 1sJxoauOjIwg5iICbQ7C2zCCAYAGCisGAQQB1nkCBAIEggFwBIIBbAFqAHcA7s3Q ZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGJanHtOAAABAMASDBGAiEA zp0l7wl1tl2VUYu8E9AmjioK0Bi0aRk3quKlqyFeo4ACIQCfjuim6oQQpxW/NKqQ sjY5+l8O4u37bXlGSaql7yqvvgB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7 v6s52IRzAAABiWpx7hQAAAQDAEcwRQIgIgdrXZdF/KLaNi7fWAr7E8UldiWGpsfU NDk61ZlP+wwCIQC6AELeO6R6T1vnwumhwerdGnMLmVYisc/V8buB8oCf4AB3ANq2 v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiWpx7pMAAAQDAEgwRgIh AL41I34rJ1Pwm8W0ii/mdItg3sryCOq2g1bzP+zyZdelAiEAvnvmc3xN9R3tYlYw T5XmohUY7fW8Dfk6V5xu/vUVPakwDQYJKoZIhvcNAQELBQADggEBAKmN9EnKoxXT XpxQxIcZAqzxaxrUB0slydnYKx3vIpHQC+g3T76Sn10gWgLIZh3DHsg7cNlO0ixj XzXoxZwfDX8ZP7/QgS0PFEsSD6opTK1lJ4hqqCQeebb5cXDWxPb/k0/1NaWn80AJ rOaAGBcGgR9RQ1qMv3B4ldXahBs7CpWthOxcJdTiU9bFYFX0r5sGfrS5xaQ0j++7 nGKVtmwB3+Q4MibwU5nzUan1eGhZlAWMr2grt2XECbkWMSPnCPKOCNGWk/sM7KF6 tV3aU45zdPNo6suGDfA+7BrelZTRJOsLLSwzUBAaZhvZXPoB7IssZYKL2m+UcCCd yvRLKQKNoT0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqUjdlLpRW5NufAq9Wwik iHBUsVx28cI1yUVC0etqL8tptzulnJ/oNFz5mQFJ2/Q+WTxZdlZtJP4nb6SSyHhJ 0TZ6Exyp6oiKbmjK5wf5ET7p08ehdOKOj7JqRCo3OX28cge93FQBwqp+QmAHWoNp N9ANFQVU6OH8uMQsZ8sfirxc0ewdouiuButlGzc85KSQE9NrR7s8XyNAbuN7/8nu FGw2Li3bpihGv6UuVCgOZPrgKtkZ4BepcFwDH66wHOkNh+UMuGGOHYK8V/TTL3M4 Ora2NxIhQqlwUcOKX6CgkTnPxCfntZYb57vfr6SauO0zJQoZI64HkVT7XeMktvEZ 6QVoFwmyQGpR1ywjpCD8Bj8vre2sckUMYg65CeaTm4aGdoOtnxSDv+L+ZOu/aldY xunhzFW4ha00ZZizUmMXg0xj9y+uIxTphSBhDpZ9U1VXGGGq/1hc1PCC3HsIAinb uRbMPnz390h4TjoN1kjzToFKKeSdi7Uk8qVS1sJGfbIUxiuBScoFX7TADbA+7sbh 5tUxnRZ67mfYdJiSdrpjHGvCvJtWwltfg6cHCWC2JQG0xg5TetqblOBqxEuE98b7 +1ZG1fCDvUsgpag9DB93jdbfMGGkwWnZuFTO3d6qHxTkIWAxpyLxXo8FemnILTxK 0dcQ439iI3mZ1+Z6zBd5ddMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15192981814468146184 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-18 19:19:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-18 19:19:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'magicstair.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 690621040899688711127356174067708418667397142175420152634756052365061711714783053117172904488123542049560011645901587575402117226733528579115187542520152104539364895037068743991502495605414732805423325910520652376922680457332402038095874192239387101907510176293364851542489589795485555680762110372911969470171217514444778289534112763257040071216036715536763341969726410526420066191938705498377831089906096769412663145564772021783154269558453467874465356389716796491735356960353988263760126075550138622329967317118136327466264702378050472617928629568044467777686524383276976544479098132369556391045700730088771701434377929025570961345969762526943049862663501524784669679014695664079243944697042766490426629960905028892977613210317578663305278790949468909446657148132003415833925699424940371440182653676219550343149282483873031125305160791380334704649156966325938476456300437065360156617700165205113053176082899066851337383489734824924705389201980894624729928533035341449306418689199456002745569789737304278768718426046106245950441360098040887626136529961880223951408898371085221535558028896340788063972800238526093757953406207083041746133156845019489400370516011252736293782018850878852290312442716867732768038299248468777040262821331 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-7004.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'magicstair.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a0bbe5dbd6c271a1ab8e8c8c20e622026d0ec2db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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