soromax.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number aa:0d:4d:04:fe:36:1b:b9 was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=soromax.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): aa:0d:4d:04:fe:36:1b:b9Serial Number (int): 12253534844985154489
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: a3:4c:5c:e2:d7:68:30:e3:fd:e7:95:8b:f1:b7:fe:f4:6d:16:c7:aa
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 28:80:d9:4d:38:70:24:f6:ce:12:f2:e4:15:46:a2:e4:fb:d2:a2:d5
Fingerprint (sha256): 5f:14:10:be:ee:b0:75:18:2d:7c:63:38:88:7f:ac:9a:43:fe:d3:8a:21:71:19:56:d9:12:44:38:ae:ca:c3:af
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-7226.crl
Check the revocation status for certificate soromax.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for soromax.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
soromax.com
Other certificates including the domain name soromax.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for soromax.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHejCCBmKgAwIBAgIJAKoNTQT+Nhu5MA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDcyNDA4MjkwMloX DTI0MDcyNDA4MjkwMlowFjEUMBIGA1UEAxMLc29yb21heC5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDIFTxvcgTAGqiTay/QLVWI3KRocz4+2QIB NzrJT6LsFHaVTud2xEjjKG0RziR7s5kPi6jVsDb0c9QsjKHRP4LcFlbO5opugUXs AI1E1d1B38yd65TKfms+bBIXDkTFXk5LO34Sn9Z3R79beGEKla6MdR92sU8xuhZe SpQGn5EbuCYoJNKwJ8dv+rUz9UgLO69AaL8QEhMcwD9ZsSEEX75XiS1ZVNGVC25Q 2TzjoavX5O4Ex0x50Iq6wZVUJf3JCpktL10QSrzPZejEp0WFPYiFbDOixy5aFXQv ivj6h3sWY0etuVtGNFf7+NBU+OzATu+31wFkshuP5l7pIYlfKQ511ifBwyO2T5bO Lb7/Ctqx084koITtpL3CR9Ac2xh5ZzmG0SCMaPGr336GL1XMK1xCIfvJ0NWqBs3s jrHaUXGaholo3LyJ3umouFqkPPZkn+NYjtnxtsKqx33Ak9kxHyU/s6aIDNrPHWyX GZEikHAsw4FD4ZDeypWJm+dxskKMl1yQLMrlOAeKdC8jVSLDzJl9w29g6y/CegaL izsZwPJjyBC7cZicZf/wFMuehbp7gHVrTigNw+wm+rCox7sIcF3j2+aHdI/mS1xH kcLMZqSiRf9XjElRsmBH/fxf7WyLvyY2BzoyI5aESKyeY0Dq3rLi8K8CCcSLR5l0 mdWyaCdH1QIDAQABo4IDKjCCAyYwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMDgGA1UdHwQxMC8wLaAr oCmGJ2h0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2RpZzJzMS03MjI2LmNybDBdBgNV HSAEVjBUMEgGC2CGSAGG/W0BBxcBMDkwNwYIKwYBBQUHAgEWK2h0dHA6Ly9jZXJ0 aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIBMHYGCCsG AQUFBwEBBGowaDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZ29kYWRkeS5jb20v MEAGCCsGAQUFBzAChjRodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL3Jl cG9zaXRvcnkvZ2RpZzIuY3J0MB8GA1UdIwQYMBaAFEDCvSeOzDSDMKIz1/tss/C0 LIDOMBYGA1UdEQQPMA2CC3Nvcm9tYXguY29tMB0GA1UdDgQWBBSjTFzi12gw4/3n lYvxt/70bRbHqjCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUA7s3QZNXbGs7F XLedtM0TojKHRny87N7DUUhZRnEftZsAAAGJhwQlJwAABAMARjBEAiApa0Jdsydw mqZA2qtNczM8xMOPCdAnSt33iizn0zNm+AIgcuT1uL1Qs8+0Bx/aY9cQKrm7ndmR RuBHwLAtEEsn4ckAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAA AYmHBCX2AAAEAwBHMEUCIQCg0djnCI4IvT+VURcU5iuO0tbk6Nq2i0vKa+chSVV1 cgIgTyW/W+0K28z+5FHFB14PKJnw2nCtekW8PNPOfZG4XgEAdQDatr9rP7W2Ip+b wrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYmHBCZSAAAEAwBGMEQCIAxnPAjHHPR6 cqSJMlkVLX+J8HE9ltYrtXu4JogpdF1yAiBU0ZZh2Pt69UQ2/9uingcjqG//uW1A UikYFgrN8HkYATANBgkqhkiG9w0BAQsFAAOCAQEAVYuE5LPaXTFh7G+TAEWOzkDm 7s9kFxB55hYIYLlaaon+NNigcZMHPe0c40+SkHRNNUnvtrVIq9ZIttTN+fp7ku3N DpKt5U0LsoS2JzAdLHXO7lUtUIS6HeHV+JlX+IU1Z5pWxD9VP2Jhch5NPpS+3K/6 Tt4LzdbbZLIBs0jYglZ6h/yWu1LsIZ5JBejTpOH1BEw8Rz77xazExoRcpZdGw8HB ZZ+YKGEn+9WQLGYUtj+kmpDEGxUIBDhuBYOq9Ap9dbwu3UgEnzWwN8UoB8yf5VgY qEobTJpkXSh1VqM3CpGL8xbYKPIb1LMdWeNKgPfUijMH4gMlbbfcqicde2TMIw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyBU8b3IEwBqok2sv0C1V iNykaHM+PtkCATc6yU+i7BR2lU7ndsRI4yhtEc4ke7OZD4uo1bA29HPULIyh0T+C 3BZWzuaKboFF7ACNRNXdQd/MneuUyn5rPmwSFw5ExV5OSzt+Ep/Wd0e/W3hhCpWu jHUfdrFPMboWXkqUBp+RG7gmKCTSsCfHb/q1M/VICzuvQGi/EBITHMA/WbEhBF++ V4ktWVTRlQtuUNk846Gr1+TuBMdMedCKusGVVCX9yQqZLS9dEEq8z2XoxKdFhT2I hWwzoscuWhV0L4r4+od7FmNHrblbRjRX+/jQVPjswE7vt9cBZLIbj+Ze6SGJXykO ddYnwcMjtk+Wzi2+/wrasdPOJKCE7aS9wkfQHNsYeWc5htEgjGjxq99+hi9VzCtc QiH7ydDVqgbN7I6x2lFxmoaJaNy8id7pqLhapDz2ZJ/jWI7Z8bbCqsd9wJPZMR8l P7OmiAzazx1slxmRIpBwLMOBQ+GQ3sqViZvncbJCjJdckCzK5TgHinQvI1Uiw8yZ fcNvYOsvwnoGi4s7GcDyY8gQu3GYnGX/8BTLnoW6e4B1a04oDcPsJvqwqMe7CHBd 49vmh3SP5ktcR5HCzGakokX/V4xJUbJgR/38X+1si78mNgc6MiOWhEisnmNA6t6y 4vCvAgnEi0eZdJnVsmgnR9UCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12253534844985154489 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-24 08:29:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-24 08:29:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'soromax.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 816267234031876218132208604603501764586574384360141806988579855954279940427905048524717990734510431876749179865650225619174644118514270371633878466288960124927567056944752294223998760148890867357845133628507758167745715917385026259611250655862809199001118483533615551760141931547060723845635505267460659011234554485678518750245014103178283627127773136774235238285510578240895110147815166033313884576362980024436841553626585190274269397410080189433402739562740224756373191304880603261725408667971804599534988442259212651745703142561176080760291158081239044821784937359366261780275765778842582894853561739046280526975634216857646173773609448058217816804680488260422083328187109409253073562674424895770414398313779013585539184907348752713737332187054113526766770403875221228508426447091883418604604343918249561002307520276493070770958904563530995088115792613569283916787613919095531168974214677109163817393402021441190587715065372702606146034558974157537924401428633925559422454593962891484647776088478585921390201549613576807913094874947133650464853313007219040217932222053722555477385115628184464039633888018532618467939890112613135829071513910674842421997745057854807673678482616873940827870745285536773702237070720725520148926515157 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-7226.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'soromax.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a34c5ce2d76830e3fde7958bf1b7fef46d16c7aa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00558b84e4b3da5d3161ec6f9300458ece40e6eecf64171079e6160860b95a6a89fe34d8a07193073ded1ce34f9290744d3549efb6b548abd648b6d4cdf9fa7b92edcd0e92ade54d0bb284b627301d2c75ceee552d5084ba1de1d5f89957f88535679a56c43f553f6261721e4d3e94bedcaffa4ede0bcdd6db64b201b348d882567a87fc96bb52ec219e4905e8d3a4e1f5044c3c473efbc5acc4c6845ca59746c3c1c1659f98286127fbd5902c6614b63fa49a90c41b150804386e0583aaf40a7d75bc2edd48049f35b037c52807cc9fe55818a84a1b4c9a645d287556a3370a918bf316d828f21bd4b31d59e34a80f7d48a3307e203256db7dcaa271d7b64cc23