rflco.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 4b:b8:7d:17:46:9d:cd:de was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rflco.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): 4b:b8:7d:17:46:9d:cd:deSerial Number (int): 5456248487481822686
Serial Number lenght: 63 bits, 8 octets
SubjectKeyId: ff:0a:c8:78:ef:b1:2e:e3:b6:2f:b9:30:7d:dc:a3:70:32:82:6f:06
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 4b:b0:72:9e:53:16:57:f2:11:f3:06:86:cc:c2:22:62:b9:a0:c1:e2
Fingerprint (sha256): 6a:25:9a:c0:85:38:ad:47:cc:3f:df:27:df:af:d2:36:64:6d:22:71:17:02:8b:ef:e3:f6:96:52:6e:f7:86:fa
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-6978.crl
Check the revocation status for certificate rflco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rflco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rflco.com
Other certificates including the domain name rflco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for rflco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHeTCCBmGgAwIBAgIIS7h9F0adzd4wDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMjMwNzE3MjAyMjQ3WhcN MjQwNzE3MjAyMjQ3WjAUMRIwEAYDVQQDEwlyZmxjby5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQC/bGwEPvte4+OUlOF8EIQ3Ycl/Y+ogBqlfYTh8 RbH7Ea/UiTMZhJbCvAS1zKB/X/CP6b7v6pd4bN6oSc2m+y8Dh/YECzmlr4twzrav sQJ0ZqlCR+6q7+tSViDvBB7K4QAVHPSzddspOUY6xr54TB5aGfgKvFec+4woSltv ljYUrketO33bCwhBNdnfRolYzDguYRNoPLuFSJ60OsHm35yUAAiVJ1kN8K5MP6VU pSWBj++pV3uq7yR4tfmmpkfBoiO2d9FlAvHoF6GbDERpe2cfn8KAZwwr4PdIWx3W wAk3Vy4436mP6ythMv2udVGobPL8qOffYcDssQL7o9w70YWzYhXW2nl+HK49vLaz MgzWo+sU6K7dZKYRozE8H1ucH78/eguHfWdeTo8/b0+uHzqrKqDyqcXiN4UmqCuk K7WgsQCQtMiP+vIkSPXVBtS/WBTo7UhHrVDAoT1Owyvz+pxC2HrzIHLWeoumR0Bu xBDB5DcgQ1BF2gczVa7IRa4Tcrh7XxAD7cjZV6ER3BUD7quyY9vJaQ92u4Tf6vZp 2L1Yk+mdqMJ2dKXaVYL38EBmBrSdDJxd+Tm2g7xr//GPEXfGbu9Ay1Fh/Gi2tEp3 8pNcRqiOfvSMdSRnI2POZioFNV/Htr8/VjpfQWd3OiNmXxVqrH3MGaEAV8Ge/JIB hPTEOQIDAQABo4IDLDCCAygwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMDgGA1UdHwQxMC8wLaAroCmG J2h0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2RpZzJzMS02OTc4LmNybDBdBgNVHSAE VjBUMEgGC2CGSAGG/W0BBxcBMDkwNwYIKwYBBQUHAgEWK2h0dHA6Ly9jZXJ0aWZp Y2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIBMHYGCCsGAQUF BwEBBGowaDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZ29kYWRkeS5jb20vMEAG CCsGAQUFBzAChjRodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL3JlcG9z aXRvcnkvZ2RpZzIuY3J0MB8GA1UdIwQYMBaAFEDCvSeOzDSDMKIz1/tss/C0LIDO MBQGA1UdEQQNMAuCCXJmbGNvLmNvbTAdBgNVHQ4EFgQU/wrIeO+xLuO2L7kwfdyj cDKCbwYwggGABgorBgEEAdZ5AgQCBIIBcASCAWwBagB2AO7N0GTV2xrOxVy3nbTN E6Iyh0Z8vOzew1FIWUZxH7WbAAABiWWFF78AAAQDAEcwRQIhANNGGQOOOh0IgmHY mtZxyZA/mMJj4mcWD8ZCU8aiiNiqAiBfw5V8aSzd/lANfw+XNwrBOSdnpTaZ0w6T 2YsSbTabowB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABiWWF GIsAAAQDAEgwRgIhAOSeVBE7qUtcu0adEgDDEjsuDdEMH7scmWNx4BuhIUv6AiEA k7RGrLzjNF8kG6CUbUrOA8qYKJ04M8toiCWjdS1KMYsAdwDatr9rP7W2Ip+bwrtc a+hwkXFsu1GEhTS9pD0wSNf7qwAAAYllhRj4AAAEAwBIMEYCIQCp6lTIkG26vhI6 yKGOxjSI7O/skAUj9huieSByLd+jLAIhANbkwrCigmdORnFbe2rcdCVSpgJBoDKm gw0QI4VpIjSDMA0GCSqGSIb3DQEBCwUAA4IBAQATjq2FvuUZ5CKD6QGADWU0Zia+ VZsI8nH7u6YE0VpnWqkphyOjomn+FLHmA+kiOltqKCD1Dfgg1IUR+KGL00A+pkKf //zOyNCY6AWZ7VhstvTtMI61AkQqDrsOebajmAQ7WnSHWvo7cssqRb+VIOdJnufQ NeliLh+5uKZVjgHC0ektNOF+yw4g+VdfjlUMX5kobp99pERsf2fiPjzI9jK13Y/o 7MViA3G2hpOn1HMgu/1g7SSoxoqKY63VT8aF/Vcny81MixyS0i39EXFYK78DgHhq qOm8MXPA3AH2WNGKe7UErpEvA55DzNqzjz7R34EMAoUgJ+v11yFaZ2tr+DqE -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv2xsBD77XuPjlJThfBCE N2HJf2PqIAapX2E4fEWx+xGv1IkzGYSWwrwEtcygf1/wj+m+7+qXeGzeqEnNpvsv A4f2BAs5pa+LcM62r7ECdGapQkfuqu/rUlYg7wQeyuEAFRz0s3XbKTlGOsa+eEwe Whn4CrxXnPuMKEpbb5Y2FK5HrTt92wsIQTXZ30aJWMw4LmETaDy7hUietDrB5t+c lAAIlSdZDfCuTD+lVKUlgY/vqVd7qu8keLX5pqZHwaIjtnfRZQLx6BehmwxEaXtn H5/CgGcMK+D3SFsd1sAJN1cuON+pj+srYTL9rnVRqGzy/Kjn32HA7LEC+6PcO9GF s2IV1tp5fhyuPby2szIM1qPrFOiu3WSmEaMxPB9bnB+/P3oLh31nXk6PP29Prh86 qyqg8qnF4jeFJqgrpCu1oLEAkLTIj/ryJEj11QbUv1gU6O1IR61QwKE9TsMr8/qc Qth68yBy1nqLpkdAbsQQweQ3IENQRdoHM1WuyEWuE3K4e18QA+3I2VehEdwVA+6r smPbyWkPdruE3+r2adi9WJPpnajCdnSl2lWC9/BAZga0nQycXfk5toO8a//xjxF3 xm7vQMtRYfxotrRKd/KTXEaojn70jHUkZyNjzmYqBTVfx7a/P1Y6X0FndzojZl8V aqx9zBmhAFfBnvySAYT0xDkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5456248487481822686 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-17 20:22:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-17 20:22:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rflco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 780939840911782248850197035034207983957823114649286950668079427921784408392423704452046707070660926716418561605450228805715194879705447695118092030823195845292008019828352878304432457826872450856865711269628699541275297692339001856684998205029481224722930783167741283790049824646545003934103434738156230951472818114899302047320389324567692363326094176811725095753226603020716931945735119951251244109746700668838740724088916767422682893212457866103431042116357640493149852052653019698828443889088857285284423127736195033611871706759570700529934043838128977335328674246273963060749838726376026552722694130614427789890510074846002155979116512215113449584979644507985161128018522434526969548660687074454448715268306361360230448951297221992925861464309596721229635512500958425924106486021750344813710448366699569167094472281527333240708031282281090484567244214003616858688047827559528673316467942190089477997496601568513403658253329987251031596884215580055877814970625188522035632872989948610183628930808402977883338880961760647411414758055569178408525022676805873580985426824953675407985811316144434842738738861190646742109197359925442985300388598084673621765230008914478313922965961802536821284541998335861811308756287790803515413414969 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-6978.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rflco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ff0ac878efb12ee3b62fb9307ddca37032826f06 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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