indigenousoffsets.ca
Issued by R3
About this certificate
This digital certificate with serial number 04:e0:fa:6c:4a:44:65:c6:81:f0:2c:6d:09:88:11:a8:ee:cd was issued on by Let's Encrypt.
With 30 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=indigenousoffsets.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e0:fa:6c:4a:44:65:c6:81:f0:2c:6d:09:88:11:a8:ee:cdSerial Number (int): 425005263190655476820014865103760420040397
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: f4:f8:53:7a:ef:1b:cc:72:f3:02:05:4f:d8:7d:62:40:2e:85:89:0e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 44:ff:7e:71:83:8c:79:e7:15:e5:b8:5a:4c:5c:3e:e9:13:33:7d:a6
Fingerprint (sha256): 44:3a:3f:8d:d8:3a:ce:69:9b:66:03:c3:be:63:c8:9a:52:be:af:e8:17:d1:5e:89:e6:a7:bd:9c:5a:e7:f4:ba
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate indigenousoffsets.ca
30
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for indigenousoffsets.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
0verview.co.uk
airdrop-1.com
airenderings.org
apriori.store
cbdc.me
freak.zone
htts1.com
indigenousoffsets.ca
ljinst.org
politically.ca
printacity.org
rainbow.watch
referring.ch
rhetoric.nl
tenerife.digital
www.0verview.co.uk
www.airdrop-1.com
www.airenderings.org
www.apriori.store
www.cbdc.me
www.freak.zone
www.htts1.com
www.indigenousoffsets.ca
www.ljinst.org
www.politically.ca
www.printacity.org
www.rainbow.watch
www.referring.ch
www.rhetoric.nl
www.tenerife.digital
airdrop-1.com
airenderings.org
apriori.store
cbdc.me
freak.zone
htts1.com
indigenousoffsets.ca
ljinst.org
politically.ca
printacity.org
rainbow.watch
referring.ch
rhetoric.nl
tenerife.digital
www.0verview.co.uk
www.airdrop-1.com
www.airenderings.org
www.apriori.store
www.cbdc.me
www.freak.zone
www.htts1.com
www.indigenousoffsets.ca
www.ljinst.org
www.politically.ca
www.printacity.org
www.rainbow.watch
www.referring.ch
www.rhetoric.nl
www.tenerife.digital
Other certificates including the domain name indigenousoffsets.ca
(limited to 100 certificates)
Certificate
The complete raw certificate details for indigenousoffsets.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG3DCCBcSgAwIBAgISBOD6bEpEZcaB8CxtCYgRqO7NMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA3MTIxNTAzMTdaFw0yMzEwMTAxNTAzMTZaMB8xHTAbBgNVBAMT FGluZGlnZW5vdXNvZmZzZXRzLmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEA1/W0MaGuXk2ja6cIM6+VBO5sSgWMdsNCWVIngRsMARRAq4/qakHlpRaG wHUg1qLqJplFdzwthdo9Ibg4Wvj/kgs33I55JPIjOBpR834vxwZ90OS/vpColgi3 dkZXO+0RaI/Av5fGnbrLyGcCyO+n7MJokBnuWjRpx9oBxV1+IPb+wTMOwILAZA24 wLYc1sMnfVC1v+F/RVb+3H/u4CB/wzfcnpBelLtHBXn5CD02sTC63O5cIwcO4Pkn 42WC30Rx2WCI3YVr7bcovzzY7K9nsNzVyhweQo4yyotSj86lQ0HEZ/4GYrahtezo vCS8QL9aFzBTI7LGKAhdAe7VVrG/wQIDAQABo4ID/TCCA/kwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBT0+FN67xvMcvMCBU/YfWJALoWJDjAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCCAgUGA1UdEQSCAfwwggH4gg4wdmVydmlldy5jby51a4INYWlyZHJv cC0xLmNvbYIQYWlyZW5kZXJpbmdzLm9yZ4INYXByaW9yaS5zdG9yZYIHY2JkYy5t ZYIKZnJlYWsuem9uZYIJaHR0czEuY29tghRpbmRpZ2Vub3Vzb2Zmc2V0cy5jYYIK bGppbnN0Lm9yZ4IOcG9saXRpY2FsbHkuY2GCDnByaW50YWNpdHkub3Jngg1yYWlu Ym93LndhdGNoggxyZWZlcnJpbmcuY2iCC3JoZXRvcmljLm5sghB0ZW5lcmlmZS5k aWdpdGFsghJ3d3cuMHZlcnZpZXcuY28udWuCEXd3dy5haXJkcm9wLTEuY29tghR3 d3cuYWlyZW5kZXJpbmdzLm9yZ4IRd3d3LmFwcmlvcmkuc3RvcmWCC3d3dy5jYmRj Lm1lgg53d3cuZnJlYWsuem9uZYINd3d3Lmh0dHMxLmNvbYIYd3d3LmluZGlnZW5v dXNvZmZzZXRzLmNhgg53d3cubGppbnN0Lm9yZ4ISd3d3LnBvbGl0aWNhbGx5LmNh ghJ3d3cucHJpbnRhY2l0eS5vcmeCEXd3dy5yYWluYm93LndhdGNoghB3d3cucmVm ZXJyaW5nLmNogg93d3cucmhldG9yaWMubmyCFHd3dy50ZW5lcmlmZS5kaWdpdGFs MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUA tz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGJStey5QAABAMARjBE AiA8uTIv6SmWPhpMg2crpBZawlh2q4TQ3oBjw9iLmrYOcAIgAbsapRG9TAMiny75 W8m9pXCHa5f3C3pHcbMqRJEYboUAdgDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp 4Xd9bQa9bgAAAYlK17MQAAAEAwBHMEUCIQDN0h1GVgnk0UjU1soTsDMK8oDdHsZ8 qGQCF8KzIB7jMgIgCiTgFz4b47yLh1T9VBCbXMkuYruG9G8i9VtK+CP07zcwDQYJ KoZIhvcNAQELBQADggEBADtLZSN+l4xl/Abyvw3OAqXMQwqmXjB0vFEkerKCobDL qTS8H0d6JzeEjaPb07fg6qJ4fghfwpJQs5gnaLEQTqTP3rm1b3aKkfXVbxh5sAGR osktzxCYPlUybkKJ1Dfawc45BUAVnBpkfF8DJUoxQ9TWjWm7zMkZaurpXsjvLVLf fACgBBcAQG+Z/WDxnV7MfPzITrc16nTpf01vRidXZlT2etePB6h6wPnyM3lXO+B5 kojCx399WsuIet/YBkVhhhLUDKb6tIpnFxLxX8y903rdTcw5La750YfZY/sCQlZ1 OjognpAOZ2xKmaA7UhLQI1m4XnfHwSWNcCAHvySej5Y= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/W0MaGuXk2ja6cIM6+V BO5sSgWMdsNCWVIngRsMARRAq4/qakHlpRaGwHUg1qLqJplFdzwthdo9Ibg4Wvj/ kgs33I55JPIjOBpR834vxwZ90OS/vpColgi3dkZXO+0RaI/Av5fGnbrLyGcCyO+n 7MJokBnuWjRpx9oBxV1+IPb+wTMOwILAZA24wLYc1sMnfVC1v+F/RVb+3H/u4CB/ wzfcnpBelLtHBXn5CD02sTC63O5cIwcO4Pkn42WC30Rx2WCI3YVr7bcovzzY7K9n sNzVyhweQo4yyotSj86lQ0HEZ/4GYrahtezovCS8QL9aFzBTI7LGKAhdAe7VVrG/ wQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 425005263190655476820014865103760420040397 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-12 15:03:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-10 15:03:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'indigenousoffsets.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27262396667809459457403410569575059374314135243472086487770013799194422252919028183903693343323274936449369379556144484885895883708833140200484492925664067783245355981889193572313599490323233718687873159738834835043108742544192811509879114843005528543712560879592403200594228927308436101402073876591064818058193976267961616494416057438535994450562610930557077437447984570950091117671285725919988536139982206754309510371818703307552958682579228057176104328145802305106979192520371874833021591344528390804966799162811883910861701819353660430597982169433657118219255455896503039958745207634455898045500765399261335633857 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f4f8537aef1bcc72f302054fd87d62402e85890e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (508 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '0verview.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'airdrop-1.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'airenderings.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apriori.store' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cbdc.me' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freak.zone' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'htts1.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'indigenousoffsets.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ljinst.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'politically.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'printacity.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rainbow.watch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'referring.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rhetoric.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tenerife.digital' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.0verview.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.airdrop-1.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.airenderings.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.apriori.store' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cbdc.me' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.freak.zone' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.htts1.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.indigenousoffsets.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ljinst.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.politically.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.printacity.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rainbow.watch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.referring.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rhetoric.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tenerife.digital' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001894ad7b2e5000004030046304402203cb9322fe929963e1a4c83672ba4165ac25876ab84d0de8063c3d88b9ab60e70022001bb1aa511bd4c03229f2ef95bc9bda570876b97f70b7a4771b32a4491186e85007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e000001894ad7b3100000040300473045022100cdd21d465609e4d148d4d6ca13b0330af280dd1ec67ca8640217c2b3201ee33202200a24e0173e1be3bc8b8754fd54109b5cc92e62bb86f46f22f55b4af823f4ef37 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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