sdi-12.com
Issued by R3
About this certificate
This digital certificate with serial number 04:89:be:ea:e2:39:cc:08:96:98:87:f3:85:5a:f4:34:3e:11 was issued on by Let's Encrypt.
With 20 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sdi-12.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:89:be:ea:e2:39:cc:08:96:98:87:f3:85:5a:f4:34:3e:11Serial Number (int): 395321600900277308259664086921732030742033
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 75:fe:25:f3:a7:5b:4d:e1:f6:96:d5:d8:1f:f7:c8:ca:d4:1e:77:73
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a8:79:94:c4:c4:b9:54:cf:35:44:d2:2f:88:b5:a6:84:a4:35:63:f9
Fingerprint (sha256): 62:cf:ad:13:44:fb:fc:8a:da:8a:a5:b4:e7:ec:bc:7f:f6:0e:1f:6a:0f:bf:e4:48:21:8e:84:66:44:28:8b:d1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sdi-12.com
20
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sdi-12.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
155irving.com
allanblock.com.do
blockabasekeyword.com
countryblessings.com
grindings.com
marcduke.com
naturalhilabs.com
onbenefit.com
ottestad.com
plusthisbook.com
portabledrives.com
progamingheadsets.com
pwcvalues.com
raubling.com
sdi-12.com
showdevelopers.com
sunely.com
tiabeth.com
vacavillephotography.com
xxxmilk.com
allanblock.com.do
blockabasekeyword.com
countryblessings.com
grindings.com
marcduke.com
naturalhilabs.com
onbenefit.com
ottestad.com
plusthisbook.com
portabledrives.com
progamingheadsets.com
pwcvalues.com
raubling.com
sdi-12.com
showdevelopers.com
sunely.com
tiabeth.com
vacavillephotography.com
xxxmilk.com
Other certificates including the domain name sdi-12.com
(limited to 100 certificates)
sdi-12.com
jamiekirchick.org
instituteforbiblereading.bible
sdi-12.com
onlyyoucandoit.ca
ultimateloghome.ca
bramptonhomebuyers.ca
mc.thrive.fi
lgbtqia.bible
bramptonhomebuyers.ca
cohealthfreedompac.org
robots.cool
wfo.land
modeling.world
instituteforbiblereading.bible
delisting.org
investigations101.org
fldc.bible
horse-community.org
instituteforbiblereading.bible
backorder.world
nirv.bible
rawgeospatial.org
nirv.bible
ledgerbank.org
robots.cool
sdi-12.com
instituteforbiblereading.bible
nirv.bible
sculpit.mobi
premierhealthcare.de
delisting.org
ledgerbank.org
moonexpress.space
sdi-12.com
maw.me
pcmatrix.org
bramptonhomebuyers.ca
getviagra.org
enerpac.org
bramptonhomebuyers.ca
lumber.cc
paysend.org
jamiekirchick.org
instituteforbiblereading.bible
sdi-12.com
onlyyoucandoit.ca
ultimateloghome.ca
bramptonhomebuyers.ca
mc.thrive.fi
lgbtqia.bible
bramptonhomebuyers.ca
cohealthfreedompac.org
robots.cool
wfo.land
modeling.world
instituteforbiblereading.bible
delisting.org
investigations101.org
fldc.bible
horse-community.org
instituteforbiblereading.bible
backorder.world
nirv.bible
rawgeospatial.org
nirv.bible
ledgerbank.org
robots.cool
sdi-12.com
instituteforbiblereading.bible
nirv.bible
sculpit.mobi
premierhealthcare.de
delisting.org
ledgerbank.org
moonexpress.space
sdi-12.com
maw.me
pcmatrix.org
bramptonhomebuyers.ca
getviagra.org
enerpac.org
bramptonhomebuyers.ca
lumber.cc
paysend.org
Certificate
The complete raw certificate details for sdi-12.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGMTCCBRmgAwIBAgISBIm+6uI5zAiWmIfzhVr0ND4RMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTkwMTM3NDlaFw0yNDA1MTkwMTM3NDhaMBUxEzARBgNVBAMT CnNkaS0xMi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTa0gV gUCFngiTruXNirYf8UDqf5Eeesvh/vyoA7upxcMhbhzYuVLgrf+ui55fGRi9ZGYb ZHrIs8vA31fwN9Ze9aiRXetPe2Gq6u5TqyQf+sU41YB/jVmTY37wbB6J9y8M6ve+ UBAU3ZH2oPRPTwdZrYPSHrvLszDfhnSIX82sVgmrJMpDtNQnqj1WlfVM/5zm2og8 uQ+2ArQElWfi+MGFM26sNgJcBOH1cNIPrd/qNG1CiNcLF/GTONqegtZCFoH2NOdC R/n3PausYhPgdLYzp61m8RnUP4BGgp65eD8PP4pZ+T8TfXbS0kITk/4XlObACv5o w0i5HLGgK8yeFuJVAgMBAAGjggNcMIIDWDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FHX+JfOnW03h9pbV2B/3yMrUHndzMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIIB YwYDVR0RBIIBWjCCAVaCDTE1NWlydmluZy5jb22CEWFsbGFuYmxvY2suY29tLmRv ghVibG9ja2FiYXNla2V5d29yZC5jb22CFGNvdW50cnlibGVzc2luZ3MuY29tgg1n cmluZGluZ3MuY29tggxtYXJjZHVrZS5jb22CEW5hdHVyYWxoaWxhYnMuY29tgg1v bmJlbmVmaXQuY29tggxvdHRlc3RhZC5jb22CEHBsdXN0aGlzYm9vay5jb22CEnBv cnRhYmxlZHJpdmVzLmNvbYIVcHJvZ2FtaW5naGVhZHNldHMuY29tgg1wd2N2YWx1 ZXMuY29tggxyYXVibGluZy5jb22CCnNkaS0xMi5jb22CEnNob3dkZXZlbG9wZXJz LmNvbYIKc3VuZWx5LmNvbYILdGlhYmV0aC5jb22CGHZhY2F2aWxsZXBob3RvZ3Jh cGh5LmNvbYILeHh4bWlsay5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgor BgEEAdZ5AgQCBIH1BIHyAPAAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv 4frUFwAAAY2/Og6/AAAEAwBHMEUCIQDZCIj5FWQJQU0PxiZ34CTAvrILIdu6c4Ji 8QxlUq3fOQIgGNSdKFVrwci/Xa592c1bAHwAv4fLDTyiOGVWlVhBXMsAdgDuzdBk 1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAY2/OhCtAAAEAwBHMEUCIAc/ kTAM71ZdWiB0lEL5KdvaKZ7M0M3Iqet3Rb+ne4BxAiEA1z15Le1LLXbjRtiM5RLD YFnnB2ym7SftPJBH7OOV4v8wDQYJKoZIhvcNAQELBQADggEBAJVzWAe6i0vWTRo5 aJSh+9fH6ebbXTTMNbR6rRJSUsZhpoUmsR+VOmdmZpuQOAEeFWKBpKm1Epr+48Jc a4tdd/y1pnHbP11m9V/m9c7Gsx71jDjZ4kVgrNtZhLCTbLamip4NMYifqxczdh/P F5ZJ1CaeOlijZIBvkULgSSaKohl4DbO1w3zG4M2r/p1vYzPXDXONtezDYD6f+aPn QLEWoewqLeZ2NQNPm8yiRxVxdMBQWNjdaHG6czsk6uaiVz6mF+UmjE+mOsH6iWcz diGp8P4OqfR8mWuDzBftY1LUDhXwP+G0fR5ubgx2biuwLGbg2YXGyh6++zjJHY8z B3t/qjA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA02tIFYFAhZ4Ik67lzYq2 H/FA6n+RHnrL4f78qAO7qcXDIW4c2LlS4K3/roueXxkYvWRmG2R6yLPLwN9X8DfW XvWokV3rT3thquruU6skH/rFONWAf41Zk2N+8GweifcvDOr3vlAQFN2R9qD0T08H Wa2D0h67y7Mw34Z0iF/NrFYJqyTKQ7TUJ6o9VpX1TP+c5tqIPLkPtgK0BJVn4vjB hTNurDYCXATh9XDSD63f6jRtQojXCxfxkzjanoLWQhaB9jTnQkf59z2rrGIT4HS2 M6etZvEZ1D+ARoKeuXg/Dz+KWfk/E3120tJCE5P+F5TmwAr+aMNIuRyxoCvMnhbi VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 395321600900277308259664086921732030742033 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-19 01:37:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-19 01:37:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sdi-12.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26689184865722352293011213471151417408525090077869887188420554017420551752505246665940796990187551265333347928395869355455614429932973773995675886858554712455052783826441438475149018488278161347051342656958026704164779764703997924440407544184867506866554025571457891054874136221237114627404263700866803450613985797534430519064250630431682360459325999329669914186280804349949159368256117880381659782791270593955781253270550674153391248733092608416305780514481965564460767726684826776571073334867909350188468409586990491105903561209312817895499667161609568373995021576203920285791591760885012882763660156529102632182357 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 75fe25f3a75b4de1f696d5d81ff7c8cad41e7773 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (346 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '155irving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allanblock.com.do' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blockabasekeyword.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'countryblessings.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'grindings.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marcduke.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'naturalhilabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onbenefit.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ottestad.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plusthisbook.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portabledrives.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'progamingheadsets.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pwcvalues.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'raubling.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sdi-12.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'showdevelopers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sunely.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tiabeth.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vacavillephotography.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xxxmilk.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018dbf3a0ebf0000040300473045022100d90888f9156409414d0fc62677e024c0beb20b21dbba738262f10c6552addf39022018d49d28556bc1c8bf5dae7dd9cd5b007c00bf87cb0d3ca23865569558415ccb007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018dbf3a10ad00000403004730450220073f91300cef565d5a20749442f929dbda299eccd0cdc8a9eb7745bfa77b8071022100d73d792ded4b2d76e346d88ce512c36059e7076ca6ed27ed3c9047ece395e2ff . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0095735807ba8b4bd64d1a396894a1fbd7c7e9e6db5d34cc35b47aad125252c661a68526b11f953a6766669b9038011e156281a4a9b5129afee3c25c6b8b5d77fcb5a671db3f5d66f55fe6f5cec6b31ef58c38d9e24560acdb5984b0936cb6a68a9e0d31889fab1733761fcf179649d4269e3a58a364806f9142e049268aa219780db3b5c37cc6e0cdabfe9d6f6333d70d738db5ecc3603e9ff9a3e740b116a1ec2a2de67635034f9bcca247157174c05058d8dd6871ba733b24eae6a2573ea617e5268c4fa63ac1fa8967337621a9f0fe0ea9f47c996b83cc17ed6352d40e15f03fe1b47d1e6e6e0c766e2bb02c66e0d985c6ca1ebefb38c91d8f33077b7faa30