digi.no
Issued by R3
About this certificate
This digital certificate with serial number 03:d2:df:84:c8:e9:5f:ba:6d:50:79:a1:25:b1:c8:34:1a:2c was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=digi.no
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:d2:df:84:c8:e9:5f:ba:6d:50:79:a1:25:b1:c8:34:1a:2cSerial Number (int): 333093262149894889152600483106012062292524
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ba:93:2c:fb:91:93:80:a4:b2:eb:ff:a0:1a:be:22:2e:e7:19:a3:00
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 6c:6a:41:7a:3d:de:c5:4e:17:97:44:42:26:50:52:b3:07:e1:0b:4f
Fingerprint (sha256): 6b:1b:a8:fa:22:6f:0e:6f:7b:a5:bb:83:eb:f5:47:ed:77:25:b6:d3:c1:6d:45:7f:cb:93:37:b6:07:66:f9:08
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate digi.no
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for digi.no
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
digi.no
test.digi.no
www.digi.no
test.digi.no
www.digi.no
Other certificates including the domain name digi.no
(limited to 100 certificates)
wallbrand.co
dcfit.turnosweb.app
erlend2.digi.no
digi.no
digi.no
www.penguinpeople.io
groupm.beaconforce.com
www.trumpcarestories.org
digi.no
www.parrify.com
cloud.workito.co.il
digi.no
digi.no
wallbrand.co
whitepaper.digi.no
f.link.mustard.love
1j2n061x3td.www.digi.no
mysomras.com
digi.no
www.waidy.it
www.couplemonitor.app
new-adventskalender.de
admin.ugyde.io
digi.no
digi.no
digi.no
erlend2.digi.no
ymd.development.fensi.in
www.crudewiser.com
whitepaper.digi.no
erickmendoza.com
employeronboarding.keeper.co.in
www.iamtheliquor.app
static.dev.getbusy.com
www.51hint.com
www.aduug.com
digi.no
digi.no
whitepaper.digi.no
www.marktompkins.me
digital.stratton-press.linkmalloc.com
whitepaper.digi.no
hueanh.com
invertecfoods.cl
trimbo.com
digi.no
digi.no
digi.no
digi.no
www.garrettspence.dev
vedur.arnigu.info
kalk.digi.no
kalkulator.digi.no
digi.no
digi.no
digi.no
admin.job.hoikushi-go.com
f.link.mustard.love
digi.no
whitepaper.digi.no
nakytec.com
www.redstonemail.app
cvmetalproducts.ca
digi.no
digi.no
whitepaper.digi.no
upliftstress.com
whitepaper.digi.no
digi.no
digi.no
dev.viviultra.app
www.matahari-amsterdam.nl
slw.ai
edificiouna.porcelanosapartners.com
whitepaper.digi.no
kolssak.afterword.com
digi.no
kalk.digi.no
digi.no
whitepaper.digi.no
app.bemoved.com.au
digi.no
digi.no
www.chen.enterprises
digi.no
digi.no
www.inthga.io
introvue.robinsoft.biz
www.ministryofpup.com
digi.no
dcfit.turnosweb.app
erlend2.digi.no
digi.no
digi.no
www.penguinpeople.io
groupm.beaconforce.com
www.trumpcarestories.org
digi.no
www.parrify.com
cloud.workito.co.il
digi.no
digi.no
wallbrand.co
whitepaper.digi.no
f.link.mustard.love
1j2n061x3td.www.digi.no
mysomras.com
digi.no
www.waidy.it
www.couplemonitor.app
new-adventskalender.de
admin.ugyde.io
digi.no
digi.no
digi.no
erlend2.digi.no
ymd.development.fensi.in
www.crudewiser.com
whitepaper.digi.no
erickmendoza.com
employeronboarding.keeper.co.in
www.iamtheliquor.app
static.dev.getbusy.com
www.51hint.com
www.aduug.com
digi.no
digi.no
whitepaper.digi.no
www.marktompkins.me
digital.stratton-press.linkmalloc.com
whitepaper.digi.no
hueanh.com
invertecfoods.cl
trimbo.com
digi.no
digi.no
digi.no
digi.no
www.garrettspence.dev
vedur.arnigu.info
kalk.digi.no
kalkulator.digi.no
digi.no
digi.no
digi.no
admin.job.hoikushi-go.com
f.link.mustard.love
digi.no
whitepaper.digi.no
nakytec.com
www.redstonemail.app
cvmetalproducts.ca
digi.no
digi.no
whitepaper.digi.no
upliftstress.com
whitepaper.digi.no
digi.no
digi.no
dev.viviultra.app
www.matahari-amsterdam.nl
slw.ai
edificiouna.porcelanosapartners.com
whitepaper.digi.no
kolssak.afterword.com
digi.no
kalk.digi.no
digi.no
whitepaper.digi.no
app.bemoved.com.au
digi.no
digi.no
www.chen.enterprises
digi.no
digi.no
www.inthga.io
introvue.robinsoft.biz
www.ministryofpup.com
digi.no
Certificate
The complete raw certificate details for digi.no in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgISA9LfhMjpX7ptUHmhJbHINBosMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTcxNDQ2MTZaFw0yNDA4MTUxNDQ2MTVaMBIxEDAOBgNVBAMT B2RpZ2kubm8wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCfGNg35nn/ GNxVE58bR5YjUZeK1SPw6vh9qIbKrjo9ZBieEGgzp9t4MF/QI2V30ZHg0SzMylQb 2MKrLWKrfPdDpbFOR4akVZG760+Xehlr8Q0pS5SmSTa+HxTWXGD+azOyXY3R1ZRQ Sob8fhqu61N/jSIBv414EfR93TBwTbrwl25/RGH+8G7jSL2tSQ/u0TcainM88vgB MsWtyAbYHq5J6HlghS0iCvROYkHhmR4JYjsvrYB+nNk5Tg+ZUxK3EpxWKMH0LF4e 81/QUaIh8E4oEq0cMgPyJP2zMYnT/g2Oyvi2lBAO8L1X0ef+hm5iMAKE67eggd0R Iop0ROzQ1OmNq5bpcxz9vORbiW6pQZncGETI3N9oFc/ddytuwj++DYF0I+AIPFBD VTLss+0S2bvjCTgFXF2lG9MWNT2bjy/kODTKHIvdx39dKIc8lQ9VQfujKiOM50nE vnEMCzzfLiyzQpgJ9kRjwEB/znxR3q8D81QNuY4uOcK9OsUVxs1plh693ay0zE5L dvdF6CG2+KTJ9q1uqiZAWFAfyE1uz2p+MJ4fDRDTMY+EMvimD4NHvopiit7r1CLn Ij/tHW/Hy9yjhKvaMzXazBy3aDqldyGznDhVAyIA/y/eOGwXuMDp1lNeHDfpEHKM p9YeHXJOtIshzPpFuGsgaOZ6oKfQCKYNkQIDAQABo4ICJTCCAiEwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8E AjAAMB0GA1UdDgQWBBS6kyz7kZOApLLr/6AaviIu5xmjADAfBgNVHSMEGDAWgBQU LrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGG FWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmku bGVuY3Iub3JnLzAtBgNVHREEJjAkggdkaWdpLm5vggx0ZXN0LmRpZ2kubm+CC3d3 dy5kaWdpLm5vMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHcAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGPhzuI ogAABAMASDBGAiEAnmNWKN6zt35Gi6C+uVNoILoaXnuplIc65uR0pzUDPxQCIQDg Yk/ZMTBymqHIVI6j+5QBlSP7bL6DejCCA/Lb9yC2kAB2AN/hVuuqBa+1nA+GcY2o wDJOrlbZbqf1pWoB0cE7vlJcAAABj4c7iWAAAAQDAEcwRQIhAO3WMiI7O4iJ3EHr TXFGs4IPQXMapbz/Y/2gPLgBGB0NAiB85zeEC1rOhxVLS0s6pdBHSglcEKX7UHYi s0qPcFwXuzANBgkqhkiG9w0BAQsFAAOCAQEAltvqBVTDcCmXECZL65ycaxFqjuxM Hw4ev0RM48KjJVWsSoRPTaOLP099W1j7/rpiMDtrdmjQhg9n9Qy0/HcWKY0s3lzM i30ToE8srm1WCqwkZVXa+0E4wn9bcz8xa0E8tx9EtodNwoSotKuQkcBBPTxEjf16 1+pUNk2XHD9GRBiLfITLawJZfMU41s35bbPVJb96wfQIdPjvEYnB2gJDzZyVRUm7 F2BHlhEUdwNMgOV+u/i7BJsaS2ahrc+9GgYj1Otojk21nyzYPtQPWm6IE0vtr8Ts EPFmLrdRWwLLSbp6awYyK75PeXS8NWfMlrAFEFcn5Szspyp2ugIim4uTKA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnxjYN+Z5/xjcVROfG0eW I1GXitUj8Or4faiGyq46PWQYnhBoM6fbeDBf0CNld9GR4NEszMpUG9jCqy1iq3z3 Q6WxTkeGpFWRu+tPl3oZa/ENKUuUpkk2vh8U1lxg/mszsl2N0dWUUEqG/H4arutT f40iAb+NeBH0fd0wcE268Jduf0Rh/vBu40i9rUkP7tE3GopzPPL4ATLFrcgG2B6u Seh5YIUtIgr0TmJB4ZkeCWI7L62AfpzZOU4PmVMStxKcVijB9CxeHvNf0FGiIfBO KBKtHDID8iT9szGJ0/4Njsr4tpQQDvC9V9Hn/oZuYjAChOu3oIHdESKKdETs0NTp jauW6XMc/bzkW4luqUGZ3BhEyNzfaBXP3XcrbsI/vg2BdCPgCDxQQ1Uy7LPtEtm7 4wk4BVxdpRvTFjU9m48v5Dg0yhyL3cd/XSiHPJUPVUH7oyojjOdJxL5xDAs83y4s s0KYCfZEY8BAf858Ud6vA/NUDbmOLjnCvTrFFcbNaZYevd2stMxOS3b3Reghtvik yfatbqomQFhQH8hNbs9qfjCeHw0Q0zGPhDL4pg+DR76KYore69Qi5yI/7R1vx8vc o4Sr2jM12swct2g6pXchs5w4VQMiAP8v3jhsF7jA6dZTXhw36RByjKfWHh1yTrSL Icz6RbhrIGjmeqCn0AimDZECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 333093262149894889152600483106012062292524 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-17 14:46:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-15 14:46:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'digi.no' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 649059333132123744905004667371439222682714754516319034561189485219282408739850058010328909461163248259583780663853593294381045782136941189854150649444757192617556767481349798540965228526457272219324530685386736132562496883040260498895189381036934255830023191578952711659270546634026578223958517803973616082126795967886994917896011728842289841675475080898726748021737287237977274399795296973590644677005576956014973232182938658962638308813236913420556931613349237319732806419707582192208141503573022100238514183284722128867091028283881349860073071722438377960361111610061668073478989885743139260362148967928678219354152467179455893712962191238289076187588985219389014536350570825005098435029148469714805893926715828812336107879724182894992644246448628317799368002635053826210518803934963787262449011686592395275067081554045192254687967280054091130674645731882225210549049860966483461033069154061435311588011263163311858653139053565831076633642871296348128720202997423491422697543202653421951146084892019497202915749281281135476782540223853404944424947961518643221809996470262313508637796634554577992047799845785839966020542471362191467739888330066450741503215198440280516864669068007664507181147436669862578103138884894931009271106961 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ba932cfb919380a4b2ebffa01abe222ee719a300 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digi.no' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.digi.no' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digi.no' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f873b88a200000403004830460221009e635628deb3b77e468ba0beb9536820ba1a5e7ba994873ae6e474a735033f14022100e0624fd93130729aa1c8548ea3fb94019523fb6cbe837a308203f2dbf720b690007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018f873b89600000040300473045022100edd632223b3b8889dc41eb4d7146b3820f41731aa5bcff63fda03cb801181d0d02207ce737840b5ace87154b4b4b3aa5d0474a095c10a5fb507622b34a8f705c17bb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0096dbea0554c370299710264beb9c9c6b116a8eec4c1f0e1ebf444ce3c2a32555ac4a844f4da38b3f4f7d5b58fbfeba62303b6b7668d0860f67f50cb4fc7716298d2cde5ccc8b7d13a04f2cae6d560aac246555dafb4138c27f5b733f316b413cb71f44b6874dc284a8b4ab9091c0413d3c448dfd7ad7ea54364d971c3f4644188b7c84cb6b02597cc538d6cdf96db3d525bf7ac1f40874f8ef1189c1da0243cd9c954549bb17604796111477034c80e57ebbf8bb049b1a4b66a1adcfbd1a0623d4eb688e4db59f2cd83ed40f5a6e88134bedafc4ec10f1662eb7515b02cb49ba7a6b06322bbe4f7974bc3567cc96b005105727e52ceca72a76ba02229b8b9328