en.sonax.is
Issued by AlphaSSL CA - SHA256 - G2
About this certificate
This digital certificate with serial number 6a:6e:e6:60:9e:c9:5a:51:69:c4:c1:9e was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=en.sonax.is,OU=Domain Control Validated
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 6a:6e:e6:60:9e:c9:5a:51:69:c4:c1:9eSerial Number (int): 32939480807840453222585385374
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: 95:db:39:ea:a5:36:3f:d6:e8:97:90:f9:76:3a:77:d3:b3:e0:64:dd
AuthorityKeyId: f5:cd:d5:3c:08:50:f9:6a:4f:3a:b7:97:da:56:83:e6:69:d2:68:f7
Fingerprint (sha1): e6:c9:66:bc:4f:82:29:f3:f9:2c:b4:f0:ab:0a:11:2d:88:4f:2d:3f
Fingerprint (sha256): 5a:0f:4a:2c:e1:b5:ea:86:b4:69:37:6c:13:37:df:2e:45:1a:ce:a0:05:c1:38:2f:15:09:e3:a8:ba:bd:1d:c6
Issuing Certificate URL: http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsalphasha2g2CRL Distribution Point: http://crl2.alphassl.com/gs/gsalphasha2g2.crl
Check the revocation status for certificate en.sonax.is
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for en.sonax.is
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
en.sonax.is
Other certificates including the domain name sonax.is
(limited to 100 certificates)
www.sonax.is
qr.sonax.com
admin.sonax.at
www.sonax.is
www.sonax.es
www.sonax.fi
www.sonax.fi
admin.sonax.at
www.sonax.fi
www.sonax.fi
www.sonax.fi
en.sonax.is
www.sonax.fi
en.sonax.is
en.sonax.is
www.sonax.fi
www.sonax.fi
admin.sonax.at
en.sonax.is
en.sonax.is
admin.sonax.at
www.sonax.fi
admin.sonax.by
www.sonax.is
www.sonax.fi
www.sonax.es
admin.sonax.at
www.sonax.is
islandic.sonax.is
www.sonax.fi
www.sonax.fi
www.sonax.fi
en.sonax.is
admin.sonax.at
www.sonax.fi
admin.sonax.by
islandic.sonax.is
www.sonax.is
admin.sonax.at
pim.sonax.de
www.sonax.fi
www.sonax.by
admin.sonax.be
www.sonax.fi
www.sonax.is
admin.sonax.at
es.sonax.com
admin.sonax.at
qr.sonax.com
admin.sonax.at
www.sonax.is
www.sonax.es
www.sonax.fi
www.sonax.fi
admin.sonax.at
www.sonax.fi
www.sonax.fi
www.sonax.fi
en.sonax.is
www.sonax.fi
en.sonax.is
en.sonax.is
www.sonax.fi
www.sonax.fi
admin.sonax.at
en.sonax.is
en.sonax.is
admin.sonax.at
www.sonax.fi
admin.sonax.by
www.sonax.is
www.sonax.fi
www.sonax.es
admin.sonax.at
www.sonax.is
islandic.sonax.is
www.sonax.fi
www.sonax.fi
www.sonax.fi
en.sonax.is
admin.sonax.at
www.sonax.fi
admin.sonax.by
islandic.sonax.is
www.sonax.is
admin.sonax.at
pim.sonax.de
www.sonax.fi
www.sonax.by
admin.sonax.be
www.sonax.fi
www.sonax.is
admin.sonax.at
es.sonax.com
admin.sonax.at
Certificate
The complete raw certificate details for en.sonax.is in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHODCCBiCgAwIBAgIMam7mYJ7JWlFpxMGeMA0GCSqGSIb3DQEBCwUAMEwxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSIwIAYDVQQDExlB bHBoYVNTTCBDQSAtIFNIQTI1NiAtIEcyMB4XDTE3MDcwMzE0NDYyMVoXDTE4MDcw NDE0NDYyMVowOTEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRQw EgYDVQQDEwtlbi5zb25heC5pczCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOcjKT0lWCoHEBHJ+9L0ITFviXVqqnVrfGS1CY6yZGZ+o6a5hnJ/+Qb7In4U 0/7FzeORy9Jbiy9z33jbz0qE9BvfU2Gw/eYYAWMCq5OV/xwpxtOvFBQcIMVTUB3P efrulWTH0jMMer7irH3OLxNdBSXL1u3Jj+6OiC4ZppvomJnhk0cnfly54yad6quH 0q364DG7sIquP4yKIMKd48nt4ytTdpkKuQZjhso1NGACeZi16PSMPuHvgckLQMzK pboUmQ9Gw1ZT8VtWhlT/YuKAwjeJBs3qKo6AszFBrVsw5kQ0+Na0k2R4ueCf2AbD yPbJ+zr4NEdNZ3vwyA1SmPk1OXECAwEAAaOCBCswggQnMA4GA1UdDwEB/wQEAwIF oDCBiQYIKwYBBQUHAQEEfTB7MEIGCCsGAQUFBzAChjZodHRwOi8vc2VjdXJlMi5h bHBoYXNzbC5jb20vY2FjZXJ0L2dzYWxwaGFzaGEyZzJyMS5jcnQwNQYIKwYBBQUH MAGGKWh0dHA6Ly9vY3NwMi5nbG9iYWxzaWduLmNvbS9nc2FscGhhc2hhMmcyMFcG A1UdIARQME4wQgYKKwYBBAGgMgEKCjA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3 dy5nbG9iYWxzaWduLmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwCQYDVR0TBAIw ADA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vY3JsMi5hbHBoYXNzbC5jb20vZ3Mv Z3NhbHBoYXNoYTJnMi5jcmwwFgYDVR0RBA8wDYILZW4uc29uYXguaXMwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0GA1UdDgQWBBSV2znqpTY/1uiXkPl2 OnfTs+Bk3TAfBgNVHSMEGDAWgBT1zdU8CFD5ak86t5faVoPmadJo9zCCAmwGCisG AQQB1nkCBAIEggJcBIICWAJWAHUA3esdK3oNT6Ygi4GtgWhwfi6OnQHVXIiNPRHE zbbsvswAAAFdCOqoIQAABAMARjBEAiBxehKG9DgN3NXKXrBgNYMV9ThFUiJy3f2j j15RbdaUzAIgPwpdBPb6dSOEfS+htpnUNMytVoVlqYOwGom/gTb/YVMAdgBWFAaa L9fC7NP14b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAV0I6qhEAAAEAwBHMEUCIQCH dA1i0344Q/zt1XqgEnhyD3PokIHPOsX0BfTE8m6R8gIgbKylGa9NkM9NnVHZDsOc 5ChnyzMQeZPNFrVwLtIpI9MAdgCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80O yA3cEAAAAV0I6qslAAAEAwBHMEUCIQC/DFiczUyUZfDHJWZaAXPZbDGIzbAmv66P Pi7QGgQb3QIgZZ4u0roOA9tQZblJeIKm+ILXmTuRJc0hbJf0DM2zGtkAdgC72d+8 H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAAAV0I6qvuAAAEAwBHMEUCIB/a TztgMKtij7Vx1V5cw8ZvKcuaVDhxlBe90lwht3RtAiEAwBnoxzTRC8MdFlItP2y7 PoXAU1413NO/YAJN7F88o1YAdQDuS723dc5guuFCaR+r4Z5mow9+X7By2IMAxHuJ eqj9ywAAAV0I6q4uAAAEAwBGMEQCIHG/ZRp3YUU+k6kIC0Jh1qxzQOC9QlOzyZAa nU/IPLsIAiAxb/XjWAwow1smxjnf2IeFyhLcnwRzQlohJBJ0TRI80TANBgkqhkiG 9w0BAQsFAAOCAQEAQNjZCfX6qwpoQOCBKwaKEXKXEpJAdHAVTWbyBVbRZayOM3ua vpFR1XrUCFZKWyvaSrRM8geEsidqfRGlzL1tyRjnY7MYiM1asVgLFJqRiDP/L6r2 3OunweUVnF1pPrpHnay0HcF8fil/aMcFr1GsPq72HQai/xRj2FB240yNOdOoI0ii ljhNjm5sjkRXKu85N4lMCqpxi3Dc/2VFB8aqZ4OiXsnyK1AmGzU5i4ef0TWbRJMw x9aUKaxVTaGuO4ToDQT++6s6Sih9KHu3mVJ5LVZRBEw9wSqSz10I1RpaI8ncvc6X whQje24eFc/5Tk+AR10n6/ylupbnC8OYliqcmg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5yMpPSVYKgcQEcn70vQh MW+JdWqqdWt8ZLUJjrJkZn6jprmGcn/5BvsifhTT/sXN45HL0luLL3PfeNvPSoT0 G99TYbD95hgBYwKrk5X/HCnG068UFBwgxVNQHc95+u6VZMfSMwx6vuKsfc4vE10F JcvW7cmP7o6ILhmmm+iYmeGTRyd+XLnjJp3qq4fSrfrgMbuwiq4/jIogwp3jye3j K1N2mQq5BmOGyjU0YAJ5mLXo9Iw+4e+ByQtAzMqluhSZD0bDVlPxW1aGVP9i4oDC N4kGzeoqjoCzMUGtWzDmRDT41rSTZHi54J/YBsPI9sn7Ovg0R01ne/DIDVKY+TU5 cQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 32939480807840453222585385374 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AlphaSSL CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-03 14:46:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-04 14:46:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'en.sonax.is' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29178387026492351132377363841448939485846563804624952845354370498150937350896095857397488557818690227390364067021157477183571916223672945814031778630455977197566788559798039920815912013366432897071900377542337494512026144317847641601764689903813355070930678781119849676843976492065338851970696065939667217048487029379918981228787752379487600488771006970052017339447306539345910313849810833154167528178388760419015755674288469694885363088636657706203173809128996838522313931493389529878693477522896713587804394026468299011674568210461484910763741709188221610887531207843099419729256728062242567987916974906544691165553 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (125 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsalphasha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10.10 (Domain Validation Certificates Policy - AlphaSSL) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl2.alphassl.com/gs/gsalphasha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'en.sonax.is' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 95db39eaa5363fd6e89790f9763a77d3b3e064dd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f5cdd53c0850f96a4f3ab797da5683e669d268f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (604 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (600 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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