aldoi.gov
- State of Alabama -
Issued by GlobalSign RSA OV SSL CA 2018
About this certificate
This digital certificate with serial number 4b:1b:36:b7:bc:dc:ca:6e:00:65:e3:2e was issued on by GlobalSign nv-sa.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
State of Alabama
Organization:
State of Alabama
State / Province:
Alabama
Locality: Montgomery
Country: US
Locality: Montgomery
Country: US
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 4b:1b:36:b7:bc:dc:ca:6e:00:65:e3:2eSerial Number (int): 23244275130883690339573818158
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: ca:80:6d:ce:b6:5d:f9:d7:db:76:bf:5e:34:2b:0a:f9:b2:b5:1f:30
AuthorityKeyId: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb
Fingerprint (sha1): 1a:9c:51:25:d6:41:64:82:60:37:57:f2:c4:cb:a4:01:a5:75:17:b8
Fingerprint (sha256): 6b:6d:bc:f2:20:a9:0b:f2:b5:fe:f9:6f:47:4a:f2:c3:99:63:4b:67:36:35:84:72:49:16:1d:bd:85:f9:2c:86
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018CRL Distribution Point: http://crl.globalsign.com/gsrsaovsslca2018.crl
Check the revocation status for certificate aldoi.gov
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aldoi.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aldoi.gov
insurance.alabama.gov
www.insurance.alabama.gov
aldoi.alabama.gov
www.aldoi.alabama.gov
www.aldoi.gov
insurance.alabama.gov
www.insurance.alabama.gov
aldoi.alabama.gov
www.aldoi.alabama.gov
www.aldoi.gov
Other certificates including the domain name aldoi.gov
(limited to 100 certificates)
Certificate
The complete raw certificate details for aldoi.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG5TCCBc2gAwIBAgIMSxs2t7zcym4AZeMuMA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0yMjA0MTUyMTA2MDlaFw0y MzA1MTcyMTA2MDhaMGMxCzAJBgNVBAYTAlVTMRAwDgYDVQQIEwdBbGFiYW1hMRMw EQYDVQQHEwpNb250Z29tZXJ5MRkwFwYDVQQKExBTdGF0ZSBvZiBBbGFiYW1hMRIw EAYDVQQDEwlhbGRvaS5nb3YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCt+GENC21MNdpz8LTBPuyPIPPjQQlDxZ02pKAWngsDptVZ0Qk8dsgkFLYA7S2V Q367+rgIOVzosJvqIjTjRX4oPOFaepZV45ez3JBpyExwm/HnB7v3P7QZMoY7rQ+t +HH5R3CpRMZrU13BgJO+4XzZKUpqPbVRnhqV1XsuhUMgjjwf1KG9i2q5h9PlRgQ9 pZRp2uUMsgFl0kxD7njm9l2yOq9NqB9goDw0zle6Z7fdCP0VaDcKdR+m5gIv3zBw dl3SIAFUiNxcyEqt7yt4rNtGiwbp0KST85hPuQjk+a9n5+P/kKCnF/TVssX8+VAg 6R+IXEHxhveMFlYvu+fxpDzFAgMBAAGjggOqMIIDpjAOBgNVHQ8BAf8EBAMCBaAw gY4GCCsGAQUFBwEBBIGBMH8wRAYIKwYBBQUHMAKGOGh0dHA6Ly9zZWN1cmUuZ2xv YmFsc2lnbi5jb20vY2FjZXJ0L2dzcnNhb3Zzc2xjYTIwMTguY3J0MDcGCCsGAQUF BzABhitodHRwOi8vb2NzcC5nbG9iYWxzaWduLmNvbS9nc3JzYW92c3NsY2EyMDE4 MFYGA1UdIARPME0wQQYJKwYBBAGgMgEUMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8v d3d3Lmdsb2JhbHNpZ24uY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECAjAJBgNVHRME AjAAMD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9jcmwuZ2xvYmFsc2lnbi5jb20v Z3Nyc2FvdnNzbGNhMjAxOC5jcmwwfwYDVR0RBHgwdoIJYWxkb2kuZ292ghVpbnN1 cmFuY2UuYWxhYmFtYS5nb3aCGXd3dy5pbnN1cmFuY2UuYWxhYmFtYS5nb3aCEWFs ZG9pLmFsYWJhbWEuZ292ghV3d3cuYWxkb2kuYWxhYmFtYS5nb3aCDXd3dy5hbGRv aS5nb3YwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQYMBaA FPjvf/LNeGeo3m+PJI2I8YcDArPrMB0GA1UdDgQWBBTKgG3Otl3519t2v140Kwr5 srUfMDCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYA6D7Q2j71BjUy51covIlr yQPTy9ERa+zraeF3fW0GvW4AAAGALww2CQAABAMARzBFAiEAwTWcKxvIlYNWJZ/D 3lPF+ouWfd2C7r8Dsq4AVByg3eQCIALzakBhxxmhzmmiWDbHy45P1CDsb8+hKmeQ ZhS1GWepAHUAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAGALwwz CAAABAMARjBEAiAPppZdhmjrOUV3tOw+OrCU2fG97Hcny+FjX4wBQuP5fQIgFED6 7fn7TxqT78rFVC0n4EzxLJyU2hrL8KrBXsyyTcgAdgBVgdTCFpA2AUrqC5tXPFPw wOQ4eHAlCBcvo6odBxPTDAAAAYAvDDM1AAAEAwBHMEUCIQD64sslHLF29GaaDgUH pRQN3gOFVizPjeYJKskcmxNulQIgEaXtR4uVz9OQhpTMLEyIjIi7UJKcA2+o8If4 zYpE8/swDQYJKoZIhvcNAQELBQADggEBAEk5U0B1S2QURJ4pfwGoVkCb1WCqN2Yb pVRWrXNzHF5gVXw4h/JYt6WKUA0PT7zO357T+e9smff9BBdav7kxrex26n+TFIEc ftTDHV82jsaGp+q5YVCWiymYYSXzFuXxPlAJ4eXhO4PI6a/k17fXhuJ+o4Pb2N2k CWRb/gYg9Rafi3Z/gzfQggn6yVeaCEGza7VxQ22IVP69OlEc+/oWymY7kqBx9L2p z6aJbVgtKe4j4JCEwFOaZFT0MQRL4evbi09xFF+WebwlJlOF/vuvdhDhmW84N90j MEsqdXI6YxwHVehu5a1quWgqLe7LrgU5TKlNBSeknlgUSJF+Zxsh+pU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfhhDQttTDXac/C0wT7s jyDz40EJQ8WdNqSgFp4LA6bVWdEJPHbIJBS2AO0tlUN+u/q4CDlc6LCb6iI040V+ KDzhWnqWVeOXs9yQachMcJvx5we79z+0GTKGO60Prfhx+UdwqUTGa1NdwYCTvuF8 2SlKaj21UZ4aldV7LoVDII48H9ShvYtquYfT5UYEPaWUadrlDLIBZdJMQ+545vZd sjqvTagfYKA8NM5Xume33Qj9FWg3CnUfpuYCL98wcHZd0iABVIjcXMhKre8reKzb RosG6dCkk/OYT7kI5PmvZ+fj/5Cgpxf01bLF/PlQIOkfiFxB8Yb3jBZWL7vn8aQ8 xQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 23244275130883690339573818158 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-04-15 21:06:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-17 21:06:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Alabama' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montgomery' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'State of Alabama' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aldoi.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21961707060852641779313905186660481227498679423987818094097846352210490072491471188590425624401818449135299458313846757902112749745454150786096705785813621606106237387051569254043259380555660215780121405975400472163197296795701522063525545827502278083581320194535682900691828272766202188667915423507139379290931945823609715449311328407445035908883599918909233872640300236699914878753957592303889484996685305476786207032110914764321405267128527014104152584175799078418128707527264719518856019281131755257596970866877135034523286591577280991400895471958217907453724310862991477766922392405787082834335173379027582074053 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsrsaovsslca2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aldoi.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insurance.alabama.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.insurance.alabama.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aldoi.alabama.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aldoi.alabama.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aldoi.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ca806dceb65df9d7db76bf5e342b0af9b2b51f30 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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