ancestryinstitute.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 0d:5a:5e:95:fa:4c:3a:2d was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ancestryinstitute.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:5a:5e:95:fa:4c:3a:2dSerial Number (int): 962185468639459885
Serial Number lenght: 60 bits, 8 octets
SubjectKeyId: a5:af:50:66:2e:33:d5:7d:0b:00:cb:1a:29:14:eb:c6:40:d8:46:cb
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 55:e3:db:ff:7b:c1:f3:0c:08:db:ca:97:d7:38:a5:6e:cc:c0:01:ca
Fingerprint (sha256): 67:87:da:cd:6e:73:c2:db:7a:f2:2b:04:51:bd:b6:3e:11:4a:3a:5d:9d:3e:e0:64:54:54:09:0f:e2:d9:cf:e4
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-6968.crl
Check the revocation status for certificate ancestryinstitute.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ancestryinstitute.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ancestryinstitute.com
Other certificates including the domain name ancestryinstitute.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for ancestryinstitute.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHjjCCBnagAwIBAgIIDVpelfpMOi0wDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMjMwNzE3MTQzNTM2WhcN MjQwNzE3MTQzNTM2WjAgMR4wHAYDVQQDExVhbmNlc3RyeWluc3RpdHV0ZS5jb20w ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDO2QvzYv23f9DaVfcA5I4g Wa5RqzpHxspsIIaxqhmvOHrTrL2AnU/ArgFAd8r/VvTFTFT6770Mqf6Oq4nXWqq4 5Uw4liy+vfhNuHotMK1GwtErWXgXKBD7EgvAuPIoNrqRIQgCKT3T31GvDDWjADDK nnw7rln6zgra6b7xlnfr3Aj3nXwtNe00L3dKtD39OgGcwiBQXS3S/QcvlI7JSw0R 8uX8v5NRpH+4IlmTVfFxCKzkF55n6Rk2+hYEoUaOtxuAD/Nxtd4lDy+UjQ+J4HvH vvjIReejW8zlTMUU9OgPzaJvlN8S990HAPD+jv63zN3ishgZgE6VGdc2dpiGzrSZ WHyZT1bdFpfh+1g4X6z8vL5PncZ2XFZ+lnHMr+GmrZzxow1VEmTLT/436BWbkudx SQqzpMQrUkX+tJ+14ypmWAtqfZ2/DW2YGVKg39VMi2WFq7I7xh0NRQxBRJv8bQtn 6LQD3dOfSN/kB7HQz4Uc60YffB+T0FgFRK3PdmIjwGOLJ/VhmnuG6BN47sBmW0YD zDLC3dwKDCis2ZZKzN+z+2sQ8AAo7QOguQep5GUZM4G2LrhC+lXmWuR5M9PCyUdQ r7RUMANvKy2SV3NxNFHi81hR37QW610JYbqqMbPyPbu3B7/1b9Qa6R7k3QZtaRJ+ VCcW+7FTLEstr12iEDTxlQIDAQABo4IDNTCCAzEwDAYDVR0TAQH/BAIwADAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMDgGA1Ud HwQxMC8wLaAroCmGJ2h0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2RpZzJzMS02OTY4 LmNybDBdBgNVHSAEVjBUMEgGC2CGSAGG/W0BBxcBMDkwNwYIKwYBBQUHAgEWK2h0 dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS8wCAYGZ4EM AQIBMHYGCCsGAQUFBwEBBGowaDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZ29k YWRkeS5jb20vMEAGCCsGAQUFBzAChjRodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFk ZHkuY29tL3JlcG9zaXRvcnkvZ2RpZzIuY3J0MB8GA1UdIwQYMBaAFEDCvSeOzDSD MKIz1/tss/C0LIDOMCAGA1UdEQQZMBeCFWFuY2VzdHJ5aW5zdGl0dXRlLmNvbTAd BgNVHQ4EFgQUpa9QZi4z1X0LAMsaKRTrxkDYRsswggF9BgorBgEEAdZ5AgQCBIIB bQSCAWkBZwB1AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABiWRH P8IAAAQDAEYwRAIgeMt/aBvVIsgIcH/opKexnd93H1RT75YamEIAq6EZZogCIC08 CkEtraimtaOS6b+mrfphlq3AU3/zLTQ/LprGYkxAAHYASLDja9qmRzQP5WoC+p0w 6xxSActW3SyB2bu/qznYhHMAAAGJZEdAnQAABAMARzBFAiA1tnr8Q+7aAkZzl3Hh t9tQFtwt9bzj3mAjDQWsC6qT1gIhAMfM/j9+AzqFC7sxPdvo8vkmyUmVagSBXfXM pC3SHTWiAHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGJZEdB CQAABAMARzBFAiEAyk1MUoA9VG1lwWVG+srimxX8uGYduknVWZI7l9KyHHgCIFWn Mr9adgTBW06o3AIhc/wisdF05RgkH5p1ontK5oHlMA0GCSqGSIb3DQEBCwUAA4IB AQCf2oHmRYQ3cacrU5r2PgPRobwmNsAZwzTcfz3oPhNmdrkmuR8IXkMghJjL5NKC TxnaPwj8AzkXdBwhmTf492ziIFpd4xRwKP+UaoEYR+L3oi8RFnHm7x4uSRMhYiAa MQryhrbUJIIBeV1UsZAatcSw9JUL42uf6h61Q7ZoikER6IJiVpj/NuCWHfgaMgJH dX/TpH/+UrU1vh+vDtpZm/mlyz7jiREYpZ7N0ff1XRJRtmKk8l1WQ35V8KFj4vs8 sax+mIkBz5b4cVe1W8MYRIk/JKfzv/OPZ+PMZHeT5zt6z8wAnTWI7vxrsCIuL5tO pI8juLufYDsXHw87ALu2mZEV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAztkL82L9t3/Q2lX3AOSO IFmuUas6R8bKbCCGsaoZrzh606y9gJ1PwK4BQHfK/1b0xUxU+u+9DKn+jquJ11qq uOVMOJYsvr34Tbh6LTCtRsLRK1l4FygQ+xILwLjyKDa6kSEIAik9099Rrww1owAw yp58O65Z+s4K2um+8ZZ369wI9518LTXtNC93SrQ9/ToBnMIgUF0t0v0HL5SOyUsN EfLl/L+TUaR/uCJZk1XxcQis5BeeZ+kZNvoWBKFGjrcbgA/zcbXeJQ8vlI0PieB7 x774yEXno1vM5UzFFPToD82ib5TfEvfdBwDw/o7+t8zd4rIYGYBOlRnXNnaYhs60 mVh8mU9W3RaX4ftYOF+s/Ly+T53GdlxWfpZxzK/hpq2c8aMNVRJky0/+N+gVm5Ln cUkKs6TEK1JF/rSfteMqZlgLan2dvw1tmBlSoN/VTItlhauyO8YdDUUMQUSb/G0L Z+i0A93Tn0jf5Aex0M+FHOtGH3wfk9BYBUStz3ZiI8Bjiyf1YZp7hugTeO7AZltG A8wywt3cCgworNmWSszfs/trEPAAKO0DoLkHqeRlGTOBti64QvpV5lrkeTPTwslH UK+0VDADbystkldzcTRR4vNYUd+0FutdCWG6qjGz8j27twe/9W/UGuke5N0GbWkS flQnFvuxUyxLLa9dohA08ZUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 962185468639459885 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-17 14:35:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-17 14:35:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ancestryinstitute.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 843865557742191967802283028395625916330254687597944961252150174441167227306365047378535413800176924483711758716607350363816849289745082503929306986984855020715400833969628094021281796755270064167039039321280824924883176542167168261203678054056588032437423936182179544437549559137664968230194723314798783437430714406400406347092366388584922808484029455979911558747901255614987462663022106667476503564259423733148199730559555834678327004171417554159648288506426167548882233261662539959933078424554713453843417203424214778516152578946712420801184888057483741221946472660064767761081032950622219645340765278122200542655171551339448336186568865783676846794642037477545823442672968884566934538278068498281627190519464795155439590157940907457052033355093779804003135631176567738219792566338395138649323906735342534444016850363763655447927963868535359081668757837283604482871785981291316739754228702417067827201194859336225400598463927680805817616143193015292998130783075033004918504082382800629938096481206839603344323328425002225792537478538459493581069218566312200196874592753657582597922764182234728430956095235476001511769588740445204923304660868576273206456873689263923239416923711809465107496119231218729163115622095291398244143526293 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-6968.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ancestryinstitute.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a5af50662e33d57d0b00cb1a2914ebc640d846cb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 0167007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018964473fc20000040300463044022078cb7f681bd522c808707fe8a4a7b19ddf771f5453ef961a984200aba119668802202d3c0a412dada8a6b5a392e9bfa6adfa6196adc0537ff32d343f2e9ac6624c4000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d88473000001896447409d0000040300473045022035b67afc43eeda0246739771e1b7db5016dc2df5bce3de60230d05ac0baa93d6022100c7ccfe3f7e033a850bbb313ddbe8f2f926c949956a04815df5cca42dd21d35a2007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab00000189644741090000040300473045022100ca4d4c52803d546d65c16546facae29b15fcb8661dba49d559923b97d2b21c78022055a732bf5a7604c15b4ea8dc022173fc22b1d174e518241f9a75a27b4ae681e5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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