web.kdia.org
Issued by AlphaSSL CA - SHA256 - G2
About this certificate
This digital certificate with serial number 72:3f:16:bd:f6:20:90:49:8b:e2:de:dc was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=web.kdia.org,OU=Domain Control Validated,C=KR
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 72:3f:16:bd:f6:20:90:49:8b:e2:de:dcSerial Number (int): 35357560842501646514070413020
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: 68:f9:03:90:ac:bf:6b:15:9b:c9:2b:c1:51:57:f7:3a:a7:cf:f7:c4
AuthorityKeyId: f5:cd:d5:3c:08:50:f9:6a:4f:3a:b7:97:da:56:83:e6:69:d2:68:f7
Fingerprint (sha1): 3a:e4:85:07:0f:15:40:c6:67:29:fd:0b:27:7f:92:19:0f:e7:bf:df
Fingerprint (sha256): 5b:1b:80:76:e4:a0:2f:b4:f9:52:a5:f9:56:1f:5b:2f:57:0a:e7:d3:87:f6:80:b3:e7:80:db:fa:4f:27:1e:06
Issuing Certificate URL: http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsalphasha2g2CRL Distribution Point: http://crl2.alphassl.com/gs/gsalphasha2g2.crl
Check the revocation status for certificate web.kdia.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for web.kdia.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
web.kdia.org
Other certificates including the domain name kdia.org
(limited to 100 certificates)
www.oloo.com
edu.kdia.org
www.kdia.org
edu.kdia.org
www.oloo.com
edu.kdia.org
web.kdia.org
web.kdia.org
web.kdia.org
web.kdia.org
www.oloo.com
www.kdia.org
web.kdia.org
www.oloo.com
www.oloo.com
www.oloo.com
edu.kdia.org
www.oloo.com
web.kdia.org
web.kdia.org
web.kdia.org
www.oloo.com
edu.kdia.org
edu.kdia.org
www.oloo.com
web.kdia.org
www.oloo.com
www.kdia.org
edu.kdia.org
edu.kdia.org
www.kdia.org
edu.kdia.org
www.oloo.com
edu.kdia.org
web.kdia.org
web.kdia.org
web.kdia.org
web.kdia.org
www.oloo.com
www.kdia.org
web.kdia.org
www.oloo.com
www.oloo.com
www.oloo.com
edu.kdia.org
www.oloo.com
web.kdia.org
web.kdia.org
web.kdia.org
www.oloo.com
edu.kdia.org
edu.kdia.org
www.oloo.com
web.kdia.org
www.oloo.com
www.kdia.org
edu.kdia.org
Certificate
The complete raw certificate details for web.kdia.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHSjCCBjKgAwIBAgIMcj8WvfYgkEmL4t7cMA0GCSqGSIb3DQEBCwUAMEwxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSIwIAYDVQQDExlB bHBoYVNTTCBDQSAtIFNIQTI1NiAtIEcyMB4XDTE2MTAxMDAxMDk1MFoXDTE3MTIx NjIzNTk1OVowRzELMAkGA1UEBhMCS1IxITAfBgNVBAsTGERvbWFpbiBDb250cm9s IFZhbGlkYXRlZDEVMBMGA1UEAxMMd2ViLmtkaWEub3JnMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAvrgvscI0XvCqqIytvDT4wYIlPpxrrpAZXm39pOah 8EyUAjkOvNgq+ISPe90VuBY5Oyo5gN3yXDpEa+LLQi1QusTQ5OhzGrY7ZKb7dAqS uOy4E+K4A8c5m6msvutRJTqDn/ut5P4AfSUYW2gAijkCKkdwVL3B4wU5tKPgczk2 dZH75/WVimbW7Gokp4U5FKEP+OwRoQdq6J1dSYA8UH/y3InUJjwzi0sTsEqRiBDK PsjEgEiwgcPvFYXHcLU08zvQr+FNT0DkApDqu4ZeaZezsLvawVK9yHGSMwSXPUm8 v4Zf/Z6lSjhqFy9HeCjFvIQH32oRJyElGsMdIvtHfjahEQIDAQABo4IELzCCBCsw DgYDVR0PAQH/BAQDAgWgMIGJBggrBgEFBQcBAQR9MHswQgYIKwYBBQUHMAKGNmh0 dHA6Ly9zZWN1cmUyLmFscGhhc3NsLmNvbS9jYWNlcnQvZ3NhbHBoYXNoYTJnMnIx LmNydDA1BggrBgEFBQcwAYYpaHR0cDovL29jc3AyLmdsb2JhbHNpZ24uY29tL2dz YWxwaGFzaGEyZzIwVwYDVR0gBFAwTjBCBgorBgEEAaAyAQoKMDQwMgYIKwYBBQUH AgEWJmh0dHBzOi8vd3d3Lmdsb2JhbHNpZ24uY29tL3JlcG9zaXRvcnkvMAgGBmeB DAECATAJBgNVHRMEAjAAMD4GA1UdHwQ3MDUwM6AxoC+GLWh0dHA6Ly9jcmwyLmFs cGhhc3NsLmNvbS9ncy9nc2FscGhhc2hhMmcyLmNybDAXBgNVHREEEDAOggx3ZWIu a2RpYS5vcmcwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0GA1UdDgQW BBRo+QOQrL9rFZvJK8FRV/c6p8/3xDAfBgNVHSMEGDAWgBT1zdU8CFD5ak86t5fa VoPmadJo9zCCAm8GCisGAQQB1nkCBAIEggJfBIICWwJZAHYAVhQGmi/XwuzT9eG9 RLI+x0Z2ubyZEVzA75SYVdaJ0N0AAAFXrCOIIAAABAMARzBFAiEA40TPQXS8f7Ph R7C5G1cP6dVqwEdBJZngOmnEVqJAY20CIDGkD7LtjvSml8CDTh32me+6AMhCPj8F dTnkT1ALdKjYAHYA3esdK3oNT6Ygi4GtgWhwfi6OnQHVXIiNPRHEzbbsvswAAAFX rCOIjAAABAMARzBFAiEA68C3Vw4RW2X4ig76xgwpUmJ01nBxVqoVZ96/yENzbOkC IHZi4JLQLcYLtFqRElRwfGppIqUgptzO+1amjfBnURE/AHYAaPaY+B9kgr46jO65 KB1M/HFRXWeT1ETRCmesu09P+8QAAAFXrCOIiwAABAMARzBFAiAAtna2ZfwfGH1F DB5IBRtHH2iX+nnkpHxT4Nnzr7HhZAIhAI8TJF+gR3/eT7lcA46ErPt3C+NcOK34 7+981bk4HWxrAHcApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFX rCOIkgAABAMASDBGAiEAkPkMKIFloVB1+n8VKt7v28vhiu/G2MTR2+Xdcpuo658C IQC7D7T2rv3wGcJa0jXD3PTy9AITuNvyOPn95yM94yjCCgB2AO5Lvbd1zmC64UJp H6vhnmajD35fsHLYgwDEe4l6qP3LAAABV6wjjMgAAAQDAEcwRQIhAKq+a2S9VeLh vI9XPd30wx9OE1MO9a24ICeQ4LuAd6ulAiBxExITncaMz2FJ7/HkfMZWdE+yD4SO zO4G2WyonQxXZjANBgkqhkiG9w0BAQsFAAOCAQEAcwmerWwfDBICl6AMd9Iu8jql wN7KY5nlQKkGw5UaQA8TtbJB/EOTkr/sV674QOnHyR1x9rkS7LKhY10aD6vi9TjR NusjOdT00rKSkGJhaMKa596lw42snaXKtVF64NP2v+BmKsIPsPoZh3ve+7Y6zDtH EIvrl8bkQbINBVP6FPJESv+oFBhUO6U+yRis8vN3vU1Xdoj3xGJIKaokThu+6y8w N9bybT9x7vRWMaIOXUleP21V6XwzBFeILgxAwfynbHrziUyzSjRlH74QkVEN2v5u E1Lve7WaD4rhrlBAxarTtjNpEupBbABO3ppd8jiPtPHwkd1s1xemsLZ15clG1w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvrgvscI0XvCqqIytvDT4 wYIlPpxrrpAZXm39pOah8EyUAjkOvNgq+ISPe90VuBY5Oyo5gN3yXDpEa+LLQi1Q usTQ5OhzGrY7ZKb7dAqSuOy4E+K4A8c5m6msvutRJTqDn/ut5P4AfSUYW2gAijkC KkdwVL3B4wU5tKPgczk2dZH75/WVimbW7Gokp4U5FKEP+OwRoQdq6J1dSYA8UH/y 3InUJjwzi0sTsEqRiBDKPsjEgEiwgcPvFYXHcLU08zvQr+FNT0DkApDqu4ZeaZez sLvawVK9yHGSMwSXPUm8v4Zf/Z6lSjhqFy9HeCjFvIQH32oRJyElGsMdIvtHfjah EQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 35357560842501646514070413020 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AlphaSSL CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-10-10 01:09:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'KR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'web.kdia.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24076103596222845432998579338723872196930831302789495856846818496250437885638188319497054128345752153522620771592143744793485863157693570657929596953377075470915288676528677658157456950163609788238508861438563196741192466397336644276709683586861118767980340780124511605296378756376900492846852949433781548111738609707752930145036451766899865203993450430991256285293800405728220039668867494132196256314974017047224431309021855658431839049436836797149375588269222815620991409945845443659896440564882567738078227785612948233374871440356913675607674334438490738600684764371958271403774974960038621786611279360768158900497 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (125 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsalphasha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10.10 (Domain Validation Certificates Policy - AlphaSSL) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl2.alphassl.com/gs/gsalphasha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'web.kdia.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 68f90390acbf6b159bc92bc15157f73aa7cff7c4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f5cdd53c0850f96a4f3ab797da5683e669d268f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (607 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (603 bytes) 02590076005614069a2fd7c2ecd3f5e1bd44b23ec74676b9bc99115cc0ef949855d689d0dd00000157ac2388200000040300473045022100e344cf4174bc7fb3e147b0b91b570fe9d56ac047412599e03a69c456a240636d022031a40fb2ed8ef4a697c0834e1df699efba00c8423e3f057539e44f500b74a8d8007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc00000157ac23888c0000040300473045022100ebc0b7570e115b65f88a0efac60c29526274d6707156aa1567debfc843736ce902207662e092d02dc60bb45a911254707c6a6922a520a6dccefb56a68df06751113f00760068f698f81f6482be3a8ceeb9281d4cfc71515d6793d444d10a67acbb4f4ffbc400000157ac23888b0000040300473045022000b676b665fc1f187d450c1e48051b471f6897fa79e4a47c53e0d9f3afb1e1640221008f13245fa0477fde4fb95c038e84acfb770be35c38adf8efef7cd5b9381d6c6b007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000157ac238892000004030048304602210090f90c288165a15075fa7f152adeefdbcbe18aefc6d8c4d1dbe5dd729ba8eb9f022100bb0fb4f6aefdf019c25ad235c3dcf4f2f40213b8dbf238f9fde7233de328c20a007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb00000157ac238cc80000040300473045022100aabe6b64bd55e2e1bc8f573dddf4c31f4e13530ef5adb8202790e0bb8077aba50220711312139dc68ccf6149eff1e47cc656744fb20f848eccee06d96ca89d0c5766 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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