richie.fi
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number cd:8b:1a:a0:6f:94:74:9a:11:90:1c:9e:d2:45:89:4f was issued on by Google Trust Services LLC.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=richie.fi
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): cd:8b:1a:a0:6f:94:74:9a:11:90:1c:9e:d2:45:89:4fSerial Number (int): 273214008452932099959419634882969962831
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: fa:3a:b6:43:f7:0e:d6:48:a7:5c:ce:e6:69:39:c0:69:9e:35:9a:e0
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 53:23:e5:a0:7b:f8:4a:03:cb:20:70:df:d8:5e:46:c8:00:4c:f7:cd
Fingerprint (sha256): 64:60:95:af:c6:f5:1e:e8:e1:64:f0:77:18:96:f4:62:24:45:19:1e:70:11:31:68:4b:46:24:68:5a:2e:37:2d
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/HWeaxVkA_oUCRL Distribution Point: http://crls.pki.goog/gts1p5/hYxiBNm6S9Y.crl
Check the revocation status for certificate richie.fi
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for richie.fi
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
richie.fi
Other certificates including the domain name richie.fi
(limited to 100 certificates)
*.richie.fi
auth.richie.fi
digi.paivamies.fi
digilehdet-preview.richie.fi
richie.fi
ssl256340.cloudflaressl.com
digilehdet.ap.richiefi.net
digilehdet.ap.richiefi.net
aamulehti.ap.richiefi.net
ssl256340.cloudflaressl.com
richie.fi
digilehdet.ap.richiefi.net
s.richie.fi
ssl714316.cloudflaressl.com
richie.fi
digi.paivamies.fi
digilehdet.ap.richiefi.net
richie.fi
ssl256338.cloudflaressl.com
digilehdet.sanomapaino.fi
*.richie.fi
digi.paivamies.fi
ssl2123.cloudflare.com
auth.richie.fi
digilehdet.ap.richiefi.net
auth.richie.fi
digi.paivamies.fi
aamulehti.ap.richiefi.net
ssl2123.cloudflare.com
richie.fi
*.richie.fi
digilehdet-preview.richie.fi
auth.richie.fi
ssl714316.cloudflaressl.com
richie.fi
richie.fi
digilehdet-tutkimus.ap.richiefi.net
*.rad.richiefi.net
digilehdet-preview.richie.fi
digi.paivamies.fi
digilehdet-tutkimus.ap.richiefi.net
richie.fi
ssl256340.cloudflaressl.com
aller.ap.richiefi.net
digilehdet.ap.richiefi.net
auth.richie.fi
richie.fi
digilehdet.ap.richiefi.net
richie.fi
ssl714316.cloudflaressl.com
ssl325617.cloudflaressl.com
richie.fi
appdata.richie.fi
aller.ap.richiefi.net
aller.ap.richiefi.net
aamulehti.ap.richiefi.net
ssl714315.cloudflaressl.com
almatalent.ap.richiefi.net
*.richie.fi
richie.fi
ssl2123.cloudflare.com
digilehdet.sanomapaino.fi
ssl714314.cloudflaressl.com
alasatakunta.ap.richiefi.net
ssl256338.cloudflaressl.com
auth.richie.fi
auth.richie.fi
digilehdet.sanomapaino.fi
digilehdet-preview.richie.fi
*.rad.richiefi.net
digilehdet-preview.richie.fi
digilehdet.ap.richiefi.net
richie.fi
richie.fi
richie.fi
ssl256338.cloudflaressl.com
*.richie.fi
richie.fi
digi.paivamies.fi
appdata.richie.fi
alasatakunta.ap.richiefi.net
*.rad.richiefi.net
richie.fi
digilehdet.ap.richiefi.net
digilehdet.ap.richiefi.net
aller.ap.richiefi.net
auth.richie.fi
ssl2123.cloudflare.com
richie.fi
ssl306676.cloudflaressl.com
richie.fi
alasatakunta.ap.richiefi.net
ssl714314.cloudflaressl.com
ssl256338.cloudflaressl.com
digilehdet-preview.richie.fi
almatalent.ap.richiefi.net
*.rad.richiefi.net
digi.paivamies.fi
aamulehti.ap.richiefi.net
ssl714314.cloudflaressl.com
auth.richie.fi
digi.paivamies.fi
digilehdet-preview.richie.fi
richie.fi
ssl256340.cloudflaressl.com
digilehdet.ap.richiefi.net
digilehdet.ap.richiefi.net
aamulehti.ap.richiefi.net
ssl256340.cloudflaressl.com
richie.fi
digilehdet.ap.richiefi.net
s.richie.fi
ssl714316.cloudflaressl.com
richie.fi
digi.paivamies.fi
digilehdet.ap.richiefi.net
richie.fi
ssl256338.cloudflaressl.com
digilehdet.sanomapaino.fi
*.richie.fi
digi.paivamies.fi
ssl2123.cloudflare.com
auth.richie.fi
digilehdet.ap.richiefi.net
auth.richie.fi
digi.paivamies.fi
aamulehti.ap.richiefi.net
ssl2123.cloudflare.com
richie.fi
*.richie.fi
digilehdet-preview.richie.fi
auth.richie.fi
ssl714316.cloudflaressl.com
richie.fi
richie.fi
digilehdet-tutkimus.ap.richiefi.net
*.rad.richiefi.net
digilehdet-preview.richie.fi
digi.paivamies.fi
digilehdet-tutkimus.ap.richiefi.net
richie.fi
ssl256340.cloudflaressl.com
aller.ap.richiefi.net
digilehdet.ap.richiefi.net
auth.richie.fi
richie.fi
digilehdet.ap.richiefi.net
richie.fi
ssl714316.cloudflaressl.com
ssl325617.cloudflaressl.com
richie.fi
appdata.richie.fi
aller.ap.richiefi.net
aller.ap.richiefi.net
aamulehti.ap.richiefi.net
ssl714315.cloudflaressl.com
almatalent.ap.richiefi.net
*.richie.fi
richie.fi
ssl2123.cloudflare.com
digilehdet.sanomapaino.fi
ssl714314.cloudflaressl.com
alasatakunta.ap.richiefi.net
ssl256338.cloudflaressl.com
auth.richie.fi
auth.richie.fi
digilehdet.sanomapaino.fi
digilehdet-preview.richie.fi
*.rad.richiefi.net
digilehdet-preview.richie.fi
digilehdet.ap.richiefi.net
richie.fi
richie.fi
richie.fi
ssl256338.cloudflaressl.com
*.richie.fi
richie.fi
digi.paivamies.fi
appdata.richie.fi
alasatakunta.ap.richiefi.net
*.rad.richiefi.net
richie.fi
digilehdet.ap.richiefi.net
digilehdet.ap.richiefi.net
aller.ap.richiefi.net
auth.richie.fi
ssl2123.cloudflare.com
richie.fi
ssl306676.cloudflaressl.com
richie.fi
alasatakunta.ap.richiefi.net
ssl714314.cloudflaressl.com
ssl256338.cloudflaressl.com
digilehdet-preview.richie.fi
almatalent.ap.richiefi.net
*.rad.richiefi.net
digi.paivamies.fi
aamulehti.ap.richiefi.net
ssl714314.cloudflaressl.com
Certificate
The complete raw certificate details for richie.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIRAM2LGqBvlHSaEZAcntJFiU8wDQYJKoZIhvcNAQELBQAw RjELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBM TEMxEzARBgNVBAMTCkdUUyBDQSAxUDUwHhcNMjQwNTA3MTE1MTE4WhcNMjQwODA1 MTE1MTE3WjAUMRIwEAYDVQQDEwlyaWNoaWUuZmkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEQjleQPLzcUzBUwZLQcAVncizzbmAY8zmdS0F88jLIGbx u9W1Lq+7zQSxHWcrrK4Yy1TgVyhGTLfoC70LLticzQaJXW//MhMl1XltqsfKiD0F wcUFb4jO/Tur7LSossA3y8PHI+hM4o8erglqRdbdpMnM6CWSux/HM3hPc5kTquiU w/Hg0yvgn4PCThyo7UjSQ180CB6ojfL3WgYVcRFt+6D/ROwvqJ5Qrkzjje5SodbR S37lQ8s7KbNSw1Qv/AkX1DPpU70OuZ6JLtTg5UM6DJuJgiTEFpLY7uUj/19e95Ou 5yUr9IPpwdKr2aABkIqtyFe05WHW2T5U6gTyD66hAgMBAAGjggJxMIICbTAOBgNV HQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQU+jq2Q/cO1kinXM7maTnAaZ41muAwHwYDVR0jBBgwFoAU1fyeDd8e yt0Il5duK8VfxSv17LgweAYIKwYBBQUHAQEEbDBqMDUGCCsGAQUFBzABhilodHRw Oi8vb2NzcC5wa2kuZ29vZy9zL2d0czFwNS9IV2VheFZrQV9vVTAxBggrBgEFBQcw AoYlaHR0cDovL3BraS5nb29nL3JlcG8vY2VydHMvZ3RzMXA1LmRlcjAUBgNVHREE DTALgglyaWNoaWUuZmkwIQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIF AzA8BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxcDUv aFl4aUJObTZTOVkuY3JsMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA7s3QZNXb Gs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGPUxvBkQAABAMARzBFAiEAz/Rz YzM6ztb0T2hguXKKDVe8h3VaNh5bcqb3gCuQRX4CIDCQ2MfArxCMhBwOKRSKVZvf HHWbdTWOedamnu2puZFuAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznY hHMAAAGPUxvBtAAABAMASDBGAiEAyDpoQ7dGpxiopDbhI0lS6IxXh0UAz7Boi3D3 j97LZKwCIQCN5qcVU2JZo0erVMkxY11MvmXp26j6L/G2pmIdeHp0AjANBgkqhkiG 9w0BAQsFAAOCAQEAJa0BdVt/KTXdPOdp12xi0jwIn3oFkZszhBthbtgXZeSDUB+Z pWk145ZCCDJJvRhKckfjlstRreeMRbt7xjrXP+7rr9qC9wUxN4wFj+IxSgoRVWBF 0aH0lEXzodBawNUmpY9+Yb5PrHnf5STRFDMEvMfPIwJ3JCSd9ojmTXWI7UkGUTTF fLjYl4Bgw0ejHhBHFjNE/v9t3hTA4eTHJNi+V9Yj0CGfs/nDLYaMb/EZfIn/7P8k UW9m1NSMf4T++yrJEveuZ1MjFwqLQrRfVA+2+rDPIGx7LBSZbU+dYc/muB2f+0ci io3inYWnH7Nwj5A5RF/pPbSptbLmTBnda4imaw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxEI5XkDy83FMwVMGS0HA FZ3Is825gGPM5nUtBfPIyyBm8bvVtS6vu80EsR1nK6yuGMtU4FcoRky36Au9Cy7Y nM0GiV1v/zITJdV5barHyog9BcHFBW+Izv07q+y0qLLAN8vDxyPoTOKPHq4JakXW 3aTJzOglkrsfxzN4T3OZE6rolMPx4NMr4J+Dwk4cqO1I0kNfNAgeqI3y91oGFXER bfug/0TsL6ieUK5M443uUqHW0Ut+5UPLOymzUsNUL/wJF9Qz6VO9DrmeiS7U4OVD OgybiYIkxBaS2O7lI/9fXveTruclK/SD6cHSq9mgAZCKrchXtOVh1tk+VOoE8g+u oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 273214008452932099959419634882969962831 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-07 11:51:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-05 11:51:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'richie.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24775364091437163560155088819119103801860839603734458933277248746209394564405763450940584837851966774123901521197534962921564119404738633435611970021777917139024948123804504287554326680634501317593024690417378952462014608752301951649290409957931279159850585332874377723119771195946702620169481876120796260986922107649056273508876230370455400963953554799752292250364618782591752623630931734750099367513229145529658911225257053887529815237049766597813151781388044942743423013095536786225008070094505565483224410473480212622310411140150317494880249159565561887531689294330196201677687093019500122691276143525385825398433 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fa3ab643f70ed648a75ccee66939c0699e359ae0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/HWeaxVkA_oU' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'richie.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/hYxiBNm6S9Y.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018f531bc1910000040300473045022100cff47363333aced6f44f6860b9728a0d57bc87755a361e5b72a6f7802b90457e02203090d8c7c0af108c841c0e29148a559bdf1c759b75358e79d6a69eeda9b9916e00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f531bc1b40000040300483046022100c83a6843b746a718a8a436e1234952e88c57874500cfb0688b70f78fdecb64ac0221008de6a715536259a347ab54c931635d4cbe65e9dba8fa2ff1b6a6621d787a7402 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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