townebankmortgage.com
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 06:aa:ab:94:a2:0d:b2:e3:68:4d:0e:08:88:02:4c:1f was issued on by DigiCert, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=townebankmortgage.com
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:aa:ab:94:a2:0d:b2:e3:68:4d:0e:08:88:02:4c:1fSerial Number (int): 8861538508623824883910911186681613343
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 05:6b:64:15:85:85:aa:eb:d8:8a:d7:6b:d5:2f:aa:64:e1:f2:00:fb
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): b7:6c:ce:89:18:c0:d5:66:ea:97:59:a3:87:4f:2d:a5:c4:93:9c:3f
Fingerprint (sha256): 52:a9:66:ab:81:ed:b3:9d:43:bd:c8:77:3c:f7:f5:12:70:0f:f4:e7:64:ef:3c:aa:72:3f:8d:b5:4c:80:05:58
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate townebankmortgage.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for townebankmortgage.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
townebankmortgage.com
Other certificates including the domain name townebankmortgage.com
(limited to 100 certificates)
www.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
townebankmortgage.com
townebankmortgage.com
townebankmortgage.com
*.townebankmortgage.com
apply.townebankmortgage.com
www.townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
a.townebank.net
townebankmortgage.com
www.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
townebankmortgage.com
townebankmortgage.com
townebankmortgage.com
*.townebankmortgage.com
apply.townebankmortgage.com
www.townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
a.townebank.net
townebankmortgage.com
www.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
Certificate
The complete raw certificate details for townebankmortgage.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHljCCBX6gAwIBAgIQBqqrlKINsuNoTQ4IiAJMHzANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjIwOTEzMDAwMDAwWhcNMjMwMzEzMjM1OTU5WjAgMR4wHAYDVQQDExV0b3duZWJh bmttb3J0Z2FnZS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb CiJFdrMqaJHZ6gkGXwa3ZPnUejK0vYeUAB7eX6g3rZdhuneI+JOmOwktIBQ+Hhe6 p/KITJbsa8qWllmHWi3ccZ6Y2DAL5s+TG8NIAwMwzTvY7LATvm1kGlN7o3HHPSO3 yun1wEBXpdpvuAHScW1v2ec/I9Yk3ij+lZYDoMGub4khA4gzbBHyC6Z9Qo0N0MUm phA+pAdutovy3IaL9m5SgjtPqB74AeHzUz72ZJ30fKCL3q8/OaZcj6UYUAgQozn4 Lk0DPb9Q4iE7i+GuLxyZU/3i+m1fni4P/WfoxqgaGE7NPaMYLv317O2YgqfHLDmQ 2QnDU7GMu8Jc5eIvDBShAgMBAAGjggOOMIIDijAfBgNVHSMEGDAWgBSltNbrNsTn a6bfxGQLASogBLhmIzAdBgNVHQ4EFgQUBWtkFYWFquvYitdr1S+qZOHyAPswIAYD VR0RBBkwF4IVdG93bmViYW5rbW9ydGdhZ2UuY29tMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCBlDBIoEag RIZCaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNB NDA5NlNIQTI1NjIwMjJDQTEuY3JsMEigRqBEhkJodHRwOi8vY3JsNC5kaWdpY2Vy dC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNBMS5jcmww PgYDVR0gBDcwNTAzBgZngQwBAgEwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5k aWdpY2VydC5jb20vQ1BTMIGHBggrBgEFBQcBAQR7MHkwJAYIKwYBBQUHMAGGGGh0 dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBRBggrBgEFBQcwAoZFaHR0cDovL2NhY2Vy dHMuZGlnaWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIw MjJDQTEuY3J0MAkGA1UdEwQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2 AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABgzcHUNcAAAQDAEcw RQIhAKemapeBjZGS7xObs/dt7T8idLBRGxVAEtsmTd141r1lAiBjSWEBb3nrngsK KCUduN5nJOOCsOH/B36heF7Yqp08FQB2ADXPGRu/sWxXvw+tTG1Cy7u2JyAmUeo/ 4SrvqAPDO9ZMAAABgzcHURwAAAQDAEcwRQIhAKG9iqn5UMejJyKas0ZxDeQRDkHb sQNWkqNA7Lb7cCJbAiA3qA91HJU6z8qxh7mvDTeSm8gh9zEwHGd9DGJsRF7J0AB2 ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABgzcHURsAAAQDAEcw RQIhAPy68KYDSrfE6xs9yRk8WIBpyV23+EzMsfoq9/RbeH23AiBbVE4yzid2wYbP qBJXzMF2fP993rlYpn5DvXQ6MTk6kjANBgkqhkiG9w0BAQsFAAOCAgEA1+pvHC1R Lvo28FQMWK+SE7LSVAn31J1w2XIj7rpqFrtlqaZn34WdPVqSWcWfw9Y6BkdRA4zU k4r2d5ED+X+exFx5A9jvJO8CTavKp0sMKvrDDGB3B8BSxuYU1p526lZINB8A2bHZ QMI62J+EP7zLT3PyJDl3NunMHS9vvGxFWPs8dJyVYPiUCnBBM5X99EREmoOLZ5q8 KIl4LuN1iYiEPk2Xh47/1Xj+Kza3Qp2IfGgiLVbDtx+CUCLrgbVlnRs/rFsR4xTd GE3sF1EiL8GjiNWWxxXSwOGebNxGviFjIEqbqbI4+K//kFInhu5s8L9b+NwUQGtN tEBL8lFvnC1qKkf65kZXvX8oNPQkOQ7RAzEr3zdoGx8fZO2tl1PZs1MvTPOVCx4n WKhYratumop7kaPSbdEBfSxEXglliXaSGiBmGITpOO3pYqhvdn2NQ7D7ppLeOKnQ //Zvy3qYMf6z2ZkDk3o9058ZY1TELLAb2suOfz8GWmfpzFTRa98ny1JERok/oOKA icL4cIg2rTUAs1HMhBtKlvXARkPQu/8GXcoiFlz52uYpTu+vLNZTh1lsZviUtzb1 Rp5npDTYfoPew5FE/os4p872cnRRwHBnJMMX00YwCt/9IJJqdzAfu7tPerZtt51+ mXPze7CMK1iWRdaNcsDZc2rkuWQnvuOh/5k= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmwoiRXazKmiR2eoJBl8G t2T51HoytL2HlAAe3l+oN62XYbp3iPiTpjsJLSAUPh4XuqfyiEyW7GvKlpZZh1ot 3HGemNgwC+bPkxvDSAMDMM072OywE75tZBpTe6Nxxz0jt8rp9cBAV6Xab7gB0nFt b9nnPyPWJN4o/pWWA6DBrm+JIQOIM2wR8gumfUKNDdDFJqYQPqQHbraL8tyGi/Zu UoI7T6ge+AHh81M+9mSd9Hygi96vPzmmXI+lGFAIEKM5+C5NAz2/UOIhO4vhri8c mVP94vptX54uD/1n6MaoGhhOzT2jGC799eztmIKnxyw5kNkJw1OxjLvCXOXiLwwU oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8861538508623824883910911186681613343 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-13 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'townebankmortgage.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19571934468483211151469348824118474217705233333600959441263418932724803845894675809475258264768743275401131638858475489552317710049712136661990100533066052503947111968638584335291503797207987260110546596971725170725264161031546794331976610412469578165744671477271920689190094943596069912208965480390726880638223608411127050638579830787372169194399445697176957612263779739594101618543395576262449356108064174753362729996112754918387976604007346696239040115987839585909454340621077711779126592597707072299862122997952046785333413682650881006301136333846519434964250471473558866695010853210716564969921325977826759546017 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 056b64158585aaebd88ad76bd52faa64e1f200fb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'townebankmortgage.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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