mechanicdurham.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number e7:02:63:62:1f:5a:95:c3 was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=mechanicdurham.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): e7:02:63:62:1f:5a:95:c3Serial Number (int): 16645976445798749635
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: 9c:6a:b7:85:b2:44:9c:90:b8:f0:33:bd:29:3c:35:f5:25:d8:de:3c
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): ea:72:68:5f:a6:f7:c0:55:9f:9d:ac:b2:70:02:7b:bb:5f:90:66:e1
Fingerprint (sha256): 47:7d:87:b8:0f:64:85:3e:8e:ff:23:43:df:9f:ca:72:8b:32:8e:f3:72:09:c0:b6:63:11:f5:80:27:5e:49:e7
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-6643.crl
Check the revocation status for certificate mechanicdurham.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mechanicdurham.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mechanicdurham.com
Other certificates including the domain name mechanicdurham.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for mechanicdurham.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHiDCCBnCgAwIBAgIJAOcCY2IfWpXDMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDcwNTE1MjUzNVoX DTI0MDcwNTE1MjUzNVowHTEbMBkGA1UEAxMSbWVjaGFuaWNkdXJoYW0uY29tMIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3srhik5uE0ZoKKjFh3nJpOAj 538jrCYnfD5M7vbVKw0vtEULeH5p7CbhF3mbrnFm76vQi+7YTD7W4/QGt9Bo5UgG fs9EBHSpMeEfS0CR3hHBnMjdNByRMTSmtEsA6DZ6sXF/u7TfQ9/7NGe2VoFQcHsP OcllnoR2Weub9dVd4qmOKoYmKMunegL6wu7Eoo+59WYk24jKD0Xjd7RCfrzbxIsV iZjioXUgBM0ltkpK8Ztk56lEprt6G1h1yBC2beE9bPCoHy+1cRfy+22nP+PDnRZe EelunpSOBdot1JynmsTlA8VZQujYBL5Mo9Hb4D8C/LabagTOux3x8XM3HH19/297 Fs2iIWrENaAE5i8NDTK9KxbzsDnJ2wzVxlPWq+Lwaq1jTELnS+Kj0roiHifHH8jZ L3DYftzOXHr6SGalBK/rIBizNRUkRQF5Q+RA1liUCLSIjsLq3g9dMsviWpE7vDJw hQQvDrhzA2WZsC75WqggNXoQ4J5OF0bXwqzLbF4B5Lx1dUNx0Qni57TJdWqG05ij UF3OVivAr22lhBGrbEP0Zw3bLbr88nQdhtL75Zq29OBacNXJdA+cRTu2J30q8uZg qCQ1rdul44QQmD72ITDBRzPsNxY/Zuu1uDjktaAAhnWoc0HqYyFE/QW9bI2qki8o ykTJuqwFav7aNA7tE7UCAwEAAaOCAzEwggMtMAwGA1UdEwEB/wQCMAAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDA4BgNVHR8E MTAvMC2gK6AphidodHRwOi8vY3JsLmdvZGFkZHkuY29tL2dkaWcyczEtNjY0My5j cmwwXQYDVR0gBFYwVDBIBgtghkgBhv1tAQcXATA5MDcGCCsGAQUFBwIBFitodHRw Oi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMAgGBmeBDAEC ATB2BggrBgEFBQcBAQRqMGgwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmdvZGFk ZHkuY29tLzBABggrBgEFBQcwAoY0aHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5 LmNvbS9yZXBvc2l0b3J5L2dkaWcyLmNydDAfBgNVHSMEGDAWgBRAwr0njsw0gzCi M9f7bLPwtCyAzjAdBgNVHREEFjAUghJtZWNoYW5pY2R1cmhhbS5jb20wHQYDVR0O BBYEFJxqt4WyRJyQuPAzvSk8NfUl2N48MIIBfAYKKwYBBAHWeQIEAgSCAWwEggFo AWYAdQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYkmqK3DAAAE AwBGMEQCIEso46rjTT1okmSWQhK5dPvn88ylNUORiNAN9WZcxY/+AiBC30rmh+jJ +AmVMo2+JDBtpY3HUawm1ayZUlqRAiR9RAB1AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABiSaorpsAAAQDAEYwRAIgZBfeTP/zE/flurDGGKfWyQrW LJXDgmzGDaCBSGFQV3UCIEPYEqhjXe8/D4SMPLYP/JitAIQ/bmN1hHifbNwNFowi AHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGJJqivEQAABAMA RzBFAiA6epNiiJXMpjm6UTFZUUGWw/mIIibOHj6HQRH0+gTeMAIhAJrY0FRW3m8p VscTxhkhqQn6QUeZwjefCvwxMkpy+gmCMA0GCSqGSIb3DQEBCwUAA4IBAQCa9qBg TXi8eu8+o1GOF6JG4CLJ89A9SkExsQqYal9GXM6JkJUIKMzZ1qd1gI5lWDVdEbEf dsfekx8s6G0c3rqC6cseI5Y7SXz3DJnRek7VPRnaFkWnZhNWfoQjtcFL4qCBbRXC WOfX5sOWsxLLggm3mA614E+90Cx7166y3FKuZomWEoG8TvBAdJTmUNyQFWkDf6iT jRX5Za0y1onbMPd4UBNWeKcjkeYbHVu2Lj7cf/qttk7l23harbGVwAXRwwz4ke3V Mrfx1dLRGsEtXSTFlUa2gB64p8xWas2qZbQ5gCWDInj6JQPhLWzH9Uo1rXPpeJR+ SfUQnPaVKOjwKfiu -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3srhik5uE0ZoKKjFh3nJ pOAj538jrCYnfD5M7vbVKw0vtEULeH5p7CbhF3mbrnFm76vQi+7YTD7W4/QGt9Bo 5UgGfs9EBHSpMeEfS0CR3hHBnMjdNByRMTSmtEsA6DZ6sXF/u7TfQ9/7NGe2VoFQ cHsPOcllnoR2Weub9dVd4qmOKoYmKMunegL6wu7Eoo+59WYk24jKD0Xjd7RCfrzb xIsViZjioXUgBM0ltkpK8Ztk56lEprt6G1h1yBC2beE9bPCoHy+1cRfy+22nP+PD nRZeEelunpSOBdot1JynmsTlA8VZQujYBL5Mo9Hb4D8C/LabagTOux3x8XM3HH19 /297Fs2iIWrENaAE5i8NDTK9KxbzsDnJ2wzVxlPWq+Lwaq1jTELnS+Kj0roiHifH H8jZL3DYftzOXHr6SGalBK/rIBizNRUkRQF5Q+RA1liUCLSIjsLq3g9dMsviWpE7 vDJwhQQvDrhzA2WZsC75WqggNXoQ4J5OF0bXwqzLbF4B5Lx1dUNx0Qni57TJdWqG 05ijUF3OVivAr22lhBGrbEP0Zw3bLbr88nQdhtL75Zq29OBacNXJdA+cRTu2J30q 8uZgqCQ1rdul44QQmD72ITDBRzPsNxY/Zuu1uDjktaAAhnWoc0HqYyFE/QW9bI2q ki8oykTJuqwFav7aNA7tE7UCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16645976445798749635 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-05 15:25:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-05 15:25:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mechanicdurham.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 908914117225623702363254371978089603602168612451323709695353284488801543295400844397869481370998159949243594108950120063018560252386579249315709887926869750231034637833528084068370768290947641841256040763437808279753660715144605178383934589790022269004968466887166803691025411340844258784054643092875211036077484163583968338933330666116927425259186640923543823369319144473664764932585891773792726705001882172213790521464678066471069465407922604062610017053214293638188756131642171823392708873333227619784034261047723852213821543776866620344483749040187701870608219284222220536511600847931902611409408816751640884968393457660451599530243406776953574709054488803144911691162707493963694479826554194428916854365092182520511506083043652411132201602904223422299317358843826536099364542413296010430532525620092537754924603087404128230096244736474197843020829680466919854943486173741335667387697747866596361481870890416294524837878592047441520354367577089762526346311732295480299405803012037279634570995210225548158100494256659007147775957984563756707212328760154131930526859745771803743565611142063881136328754078541151089083300525888367869119944749222165433208959578785584135924414372247783948738560415255651462446395574516808485411034037 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-6643.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mechanicdurham.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9c6ab785b2449c90b8f033bd293c35f525d8de3c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009af6a0604d78bc7aef3ea3518e17a246e022c9f3d03d4a4131b10a986a5f465cce8990950828ccd9d6a775808e6558355d11b11f76c7de931f2ce86d1cdeba82e9cb1e23963b497cf70c99d17a4ed53d19da1645a76613567e8423b5c14be2a0816d15c258e7d7e6c396b312cb8209b7980eb5e04fbdd02c7bd7aeb2dc52ae6689961281bc4ef0407494e650dc901569037fa8938d15f965ad32d689db30f77850135678a72391e61b1d5bb62e3edc7ffaadb64ee5db785aadb195c005d1c30cf891edd532b7f1d5d2d11ac12d5d24c59546b6801eb8a7cc566acdaa65b4398025832278fa2503e12d6cc7f54a35ad73e978947e49f5109cf69528e8f029f8ae