*.indigen.com
Issued by Gandi Standard SSL CA 2
About this certificate
This digital certificate with serial number bd:a6:a8:52:2a:9c:f3:87:80:ff:5c:f1:b8:0f:aa:5d was issued on by Gandi.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.indigen.com
Gandi
Organization:
Gandi
State / Province:
Paris
Locality: Paris
Country: FR
Locality: Paris
Country: FR
This certificate has expire since
Certificate Details
Serial Number (hex): bd:a6:a8:52:2a:9c:f3:87:80:ff:5c:f1:b8:0f:aa:5dSerial Number (int): 252089426436576733890479915253887904349
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 19:91:86:11:99:eb:dc:00:36:78:55:06:fc:c9:11:ab:3b:74:01:15
AuthorityKeyId: b3:90:a7:d8:c9:af:4e:cd:61:3c:9f:7c:ad:5d:7f:41:fd:69:30:ea
Fingerprint (sha1): f4:ee:0e:0a:90:bc:2f:c0:80:0b:16:ce:39:4b:f6:5d:30:cf:e2:a4
Fingerprint (sha256): 4a:b5:f5:2d:33:0e:16:22:f8:52:6f:99:21:2e:dd:d0:cf:72:a9:19:7c:46:f4:19:21:cc:d4:de:95:b6:35:42
Issuing Certificate URL: http://crt.usertrust.com/GandiStandardSSLCA2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/GandiStandardSSLCA2.crl
Check the revocation status for certificate *.indigen.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.indigen.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.indigen.com
indigen.com
indigen.com
Other certificates including the domain name indigen.com
(limited to 100 certificates)
*.indigen.com
hey-firebase.indigen.com
indigen.com
indigen.com
indigen.com
*.indigen.com
indigen.com
www.indigen.com
*.indigen.com
www.indigen.com
www.indigen.com
www.indigen.com
indigen.com
indigen.com
*.indigen.com
crisodevelop.tech
www.indigen.com
flow-stage.habio.pro
indigen.com
testnet.tempus.finance
etechpaypoint.com
sbsenrl.removis.jp
www.indigen.com
*.indigen.com
indigen.com
www.workwithdignity.org
www.indigen.com
jq-ewe.indigen.com
indigen.com
www.indigen.com
*.indigen.com
www.indigen.com
testnet.tempus.finance
indigen.com
*.indigen.com
www.indigen.com
shermansplanet.com
www.indigen.com
mauricemorneautax.com
flow-stage.habio.pro
hey-firebase.indigen.com
reclaimthegame.app
www.indigen.com
indigen.com
stsdeliverysolutions.ca
jq-ewe.indigen.com
hibrid.app
indigen.com
shermansplanet.com
hey-firebase.indigen.com
indigen.com
indigen.com
indigen.com
*.indigen.com
indigen.com
www.indigen.com
*.indigen.com
www.indigen.com
www.indigen.com
www.indigen.com
indigen.com
indigen.com
*.indigen.com
crisodevelop.tech
www.indigen.com
flow-stage.habio.pro
indigen.com
testnet.tempus.finance
etechpaypoint.com
sbsenrl.removis.jp
www.indigen.com
*.indigen.com
indigen.com
www.workwithdignity.org
www.indigen.com
jq-ewe.indigen.com
indigen.com
www.indigen.com
*.indigen.com
www.indigen.com
testnet.tempus.finance
indigen.com
*.indigen.com
www.indigen.com
shermansplanet.com
www.indigen.com
mauricemorneautax.com
flow-stage.habio.pro
hey-firebase.indigen.com
reclaimthegame.app
www.indigen.com
indigen.com
stsdeliverysolutions.ca
jq-ewe.indigen.com
hibrid.app
indigen.com
shermansplanet.com
Certificate
The complete raw certificate details for *.indigen.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGMjCCBRqgAwIBAgIRAL2mqFIqnPOHgP9c8bgPql0wDQYJKoZIhvcNAQELBQAw XzELMAkGA1UEBhMCRlIxDjAMBgNVBAgTBVBhcmlzMQ4wDAYDVQQHEwVQYXJpczEO MAwGA1UEChMFR2FuZGkxIDAeBgNVBAMTF0dhbmRpIFN0YW5kYXJkIFNTTCBDQSAy MB4XDTIyMDgwNDAwMDAwMFoXDTIzMDkwMjIzNTk1OVowGDEWMBQGA1UEAwwNKi5p bmRpZ2VuLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKS7n1cA R0Wl9d9/Ru1UIg+KYhqeCrvhN7E+U5H5KgPPUV2DYPEO4RPmDYc8if+81rMGWvLt IdHyS1ky4OFgaTIxNyr8Fj62URkYIP3zwjfwKOi3fjHbZkC9PhABL+yUMKyeixgL KcWfT2bsacUba5FY4bM8cKeYAjhyTBy9ts8h2HssWbSQN0rDSIs+Z0ynzLpQf5nS byd9wpnBJ4Vwypu4X550kiPgZw2N7Zsbi0AdremtSNSEeXC1SUfc7G2wu1fKToj2 k1ZZavgTqJ4sNw0oWMkRuVOyl/JC9RLiS7+9axjYL+g0LXRcYNq263sL+qg83yAp Mjqe6uF7F02IY6ECAwEAAaOCAy4wggMqMB8GA1UdIwQYMBaAFLOQp9jJr07NYTyf fK1df0H9aTDqMB0GA1UdDgQWBBQZkYYRmevcADZ4VQb8yRGrO3QBFTAOBgNVHQ8B Af8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwSwYDVR0gBEQwQjA2BgsrBgEEAbIxAQICGjAnMCUGCCsGAQUFBwIBFhlo dHRwczovL2Nwcy51c2VydHJ1c3QuY29tMAgGBmeBDAECATBBBgNVHR8EOjA4MDag NKAyhjBodHRwOi8vY3JsLnVzZXJ0cnVzdC5jb20vR2FuZGlTdGFuZGFyZFNTTENB Mi5jcmwwcwYIKwYBBQUHAQEEZzBlMDwGCCsGAQUFBzAChjBodHRwOi8vY3J0LnVz ZXJ0cnVzdC5jb20vR2FuZGlTdGFuZGFyZFNTTENBMi5jcnQwJQYIKwYBBQUHMAGG GWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wJQYDVR0RBB4wHIINKi5pbmRpZ2Vu LmNvbYILaW5kaWdlbi5jb20wggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB2AK33 vvp8/xDIi509nB4+GGq0Zyldz7EMJMqFhjTr3IKKAAABgmgGLb0AAAQDAEcwRQIh AKi8k5V7648TOwG6qbvC20OViOKJNWFIf8Gucn6wPGoNAiBh4cHYBnezZG9Myj9V UCpJ/RL4kubf65xhyJftyJMDSAB2AHoyjFTYty22IOo44FIe6YQWcDIThU070ivB OlejUutSAAABgmgGLcgAAAQDAEcwRQIgP88l4XLKo2kycRm+0zdZeszO+LMhbuzp EZyQbKmwUPoCIQC7VDYVawGbh1jm7GlNZzrbpJ9jphCq1G55m3JOm176owB1AOg+ 0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABgmgGLa8AAAQDAEYwRAIg YGK5xcu7ZdS8mShX8+el9+u+3oXnanih3+ns7YEdv9ECICYiL5c0BfFb58d7bujh 5hsyS5pYfxJEjumnmgowGPk0MA0GCSqGSIb3DQEBCwUAA4IBAQAWIcvnkAywaU9u v3fNmCRKq9kSQgIgB/Xx7OO9FSq7Jf33qUQd0TqHINLGBuucki83yR8tduP4J0+f EEqjvj0SicT1wLC52gmBZs5h5VP07Ml+/DDTysl+r/4E2B4k9XbUZ1qOvJohPxaD tYI2H0Tg0OkKcLs6OateSTLxzI/sQclwY62tBOFbhmvcEHJ8AaeW1AQQD3HYNm9E PYgldYe38Yki9/FhUGj31CJ3QloQZODb9OM5a1H+qkng6O7RmcIYkZRgwG7YFYhI oE0XrjWJByJvlHYFiK75lVtLwpglIELhSGIpiDverCVr4BVdz8GsDOhHChw2khlw VYu2eO/R -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLufVwBHRaX1339G7VQi D4piGp4Ku+E3sT5TkfkqA89RXYNg8Q7hE+YNhzyJ/7zWswZa8u0h0fJLWTLg4WBp MjE3KvwWPrZRGRgg/fPCN/Ao6Ld+MdtmQL0+EAEv7JQwrJ6LGAspxZ9PZuxpxRtr kVjhszxwp5gCOHJMHL22zyHYeyxZtJA3SsNIiz5nTKfMulB/mdJvJ33CmcEnhXDK m7hfnnSSI+BnDY3tmxuLQB2t6a1I1IR5cLVJR9zsbbC7V8pOiPaTVllq+BOoniw3 DShYyRG5U7KX8kL1EuJLv71rGNgv6DQtdFxg2rbrewv6qDzfICkyOp7q4XsXTYhj oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 252089426436576733890479915253887904349 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi Standard SSL CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.indigen.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20795602078637410343367057882896758632288097467960970212863458244319895945934657323988067616193696089758022515931049431664726851519779616949167990482599728224707268639160295659821154929468431228161223265438090906684489453794404197250752707483148856596987915522943173144537351784439895538221178636087759454409543517611996938931363659156064197799951694952079489888425469717578231574282892209124551910310574469855362683653552180187017151813650866426700639523807657223289958491293264729178955909150700834560604740120923956298058408295042287436727333792962451002365975869181447679778107465294754514910033504120795487036321 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b390a7d8c9af4ecd613c9f7cad5d7f41fd6930ea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1991861199ebdc0036785506fcc911ab3b740115 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.26 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/GandiStandardSSLCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/GandiStandardSSLCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.indigen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'indigen.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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