*.studioarma.com
- Studio A Inc. -
Issued by TWCA Secure SSL Certification Authority
About this certificate
This digital certificate with serial number 47:e4:00:00:00:02:27:01:39:f7:19:88:73:1c:87:01 was issued on by TAIWAN-CA.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Studio A Inc.
Organization:
Studio A Inc.
Organization unit: SYSTEM
Organization unit: SYSTEM
State / Province:
TAIWAN
Locality: TAIPEI
Country: TW
Locality: TAIPEI
Country: TW
TAIWAN-CA
Organization:
TAIWAN-CA
Organization unit: Secure SSL Sub-CA
Organization unit: Secure SSL Sub-CA
Country:
TW
This certificate has expire since
Certificate Details
Serial Number (hex): 47:e4:00:00:00:02:27:01:39:f7:19:88:73:1c:87:01Serial Number (int): 95559031384477569722030894944435865345
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 58:09:ed:1d:7b:29:4c:14:08:68:29:2f:26:19:f1:c9:8e:3b:8d:bf:31:b7:7d:54:fd:f2:d7:d7:9e:37:59:cc
AuthorityKeyId: f8:07:c2:68:24:ff:85:95:cb:db:1e:e3:33:9c:2a:4f:97:20:56:7b
Fingerprint (sha1): 55:37:c5:a0:cf:d6:7b:8e:95:37:bb:05:3e:17:1b:ee:e0:c1:b9:79
Fingerprint (sha256): 73:26:8e:07:3d:62:b1:d9:c8:f5:97:87:d8:3b:8a:1b:c0:82:f0:20:2c:d5:ee:57:c6:86:34:33:c2:b4:18:5b
Issuing Certificate URL: http://sslserver.twca.com.tw/cacert/secure_sha2_2014.crt
Revocation information
OCSP Server: http://twcasslocsp.twca.com.tw/CRL Distribution Point: http://sslserver.twca.com.tw/sslserver/Securessl_revoke_sha2_2014.crl
Check the revocation status for certificate *.studioarma.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.studioarma.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.studioarma.com
studioarma.com
studioarma.com
Other certificates including the domain name studioarma.com
(limited to 100 certificates)
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
service.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.mico.com.tw
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
service.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.mico.com.tw
ebooking.studioarma.com
Certificate
The complete raw certificate details for *.studioarma.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGvDCCBaSgAwIBAgIQR+QAAAACJwE59xmIcxyHATANBgkqhkiG9w0BAQsFADBv MQswCQYDVQQGEwJUVzESMBAGA1UEChMJVEFJV0FOLUNBMRowGAYDVQQLExFTZWN1 cmUgU1NMIFN1Yi1DQTEwMC4GA1UEAxMnVFdDQSBTZWN1cmUgU1NMIENlcnRpZmlj YXRpb24gQXV0aG9yaXR5MB4XDTIwMDcwNzA5NTY1MFoXDTIxMTIxMDE1NTk1OVow czELMAkGA1UEBhMCVFcxDzANBgNVBAgTBlRBSVdBTjEPMA0GA1UEBxMGVEFJUEVJ MRYwFAYDVQQKEw1TdHVkaW8gQSBJbmMuMQ8wDQYDVQQLEwZTWVNURU0xGTAXBgNV BAMMECouc3R1ZGlvYXJtYS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC+hETlNLAE8acykxmao0QUkLZEItXpvL3MGcuJwMMmO8dbId6bsctcdgZb fZRue7/Fb2u1J1shv/v1lDFZlT2g0DsoQrYbEqyGoh7jXLEWKcLh7IBZXkPVeDCJ FW5SBbL/roYeJ2jYIG2hVdxEZq0axHW1KpKq8SwZq2pAXT7QmU+UWJb8DZcPzDPk wqJrGg4SQSuNycnKQKJ54X4sOBb6z04k4AObSECGMtIweXoitw9+QfP/nkuhlcJZ IBVu0kz2H4reoWLSpQqCKuht0s9jLLXJMWqpTJUXzuu8+AkTIhk5bd7ZGRMQhQDa Ut8iPCs0N3Io4vyGsmgYhZcTrZA7AgMBAAGjggNOMIIDSjAfBgNVHSMEGDAWgBT4 B8JoJP+FlcvbHuMznCpPlyBWezApBgNVHQ4EIgQgWAntHXspTBQIaCkvJhnxyY47 jb8xt31U/fLX1543WcwwVgYDVR0fBE8wTTBLoEmgR4ZFaHR0cDovL3NzbHNlcnZl ci50d2NhLmNvbS50dy9zc2xzZXJ2ZXIvU2VjdXJlc3NsX3Jldm9rZV9zaGEyXzIw MTQuY3JsMCsGA1UdEQQkMCKCECouc3R1ZGlvYXJtYS5jb22CDnN0dWRpb2FybWEu Y29tMIGBBggrBgEFBQcBAQR1MHMwRAYIKwYBBQUHMAKGOGh0dHA6Ly9zc2xzZXJ2 ZXIudHdjYS5jb20udHcvY2FjZXJ0L3NlY3VyZV9zaGEyXzIwMTQuY3J0MCsGCCsG AQUFBzABhh9odHRwOi8vdHdjYXNzbG9jc3AudHdjYS5jb20udHcvMDcGA1UdIAQw MC4wLAYLKwYBBAGCvyUBARkwHTAbBggrBgEFBQcCARYPd3d3LnR3Y2EuY29tLnR3 MAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHcA9lyUL9F3MCIU VBgIMJRWjuNNExkzv98MLyALzE7xZOMAAAFzKLTm1AAABAMASDBGAiEAzCSj+BSf FxBF8s7jgXMPhbHGrJmBr5rrwVrgL5l6ujkCIQCRgE8irZGmvhMpmiexcdVPIR1I hQAKmtjuBn5nXRXjRQB2AFzcQ5L+5qtFRLFemtRW5hA3+9X6R9yhc5SyXub2xw7K AAABcyi05ngAAAQDAEcwRQIhAKyNjUkZBtSPmSBR3A/1zzua5yqjKDFnCSgmSWM9 HrFhAiACNxKweOqiUNvoa8o0TXG7heJoBHhhUPuIP/doWZg36wB1AH0+8viP/4hV aCTCwMqeUol5K8UOeAl/LmqXaJl+IvDXAAABcyi05MUAAAQDAEYwRAIgYtW37ndd wgZIGWmUGrtyh/oBhhtuVr8C0j2MvXlKQ3YCICJ55uT63oq3D6p6Qv6WiNoRUKA8 X0VcjTshy543Cv/pMA0GCSqGSIb3DQEBCwUAA4IBAQBn1kk3IENHdQ3bEnIM4A72 QCra0WkVKmZLPDWNxoPeptzDinTfJ/1fcU5IvlqKst+pKwGfNb2ltquCUQxXSVCT Auf5uyvVPxqHA58KpCHlVVEnlb6C2WwIXDqs/6J0xNpmKVC3BErTtfX0use5SaLl 4gjehCEbnpF1ZqvEfjfuVaGOr1xjAkqS38xXaMB9girZ7XnxKs3NBi5yZNbIQ6Ej 84OS5J4i2OnyBlCXrvSH5arP++FvA0NbjyTmlD7Km/rhOH5wAmOMlxUMEpUC8oOv U+a4kLtV60r6Ch7YSh6g7IxY8yziheCWwomzsWHHOAaSBEJ7bHbGJOVIzGreEWyR -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoRE5TSwBPGnMpMZmqNE FJC2RCLV6by9zBnLicDDJjvHWyHem7HLXHYGW32Ubnu/xW9rtSdbIb/79ZQxWZU9 oNA7KEK2GxKshqIe41yxFinC4eyAWV5D1XgwiRVuUgWy/66GHido2CBtoVXcRGat GsR1tSqSqvEsGatqQF0+0JlPlFiW/A2XD8wz5MKiaxoOEkErjcnJykCieeF+LDgW +s9OJOADm0hAhjLSMHl6IrcPfkHz/55LoZXCWSAVbtJM9h+K3qFi0qUKgirobdLP Yyy1yTFqqUyVF87rvPgJEyIZOW3e2RkTEIUA2lLfIjwrNDdyKOL8hrJoGIWXE62Q OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 95559031384477569722030894944435865345 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TW' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TAIWAN-CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Secure SSL Sub-CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TWCA Secure SSL Certification Authority' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-07 09:56:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-10 15:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TW' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TAIWAN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TAIPEI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Studio A Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SYSTEM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.studioarma.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24050502278752380184165161204793359994938580788248832809969423503333349497716157963889471459088661489725597793610635225515018976621134860405242482065041219619867289237441045494501103286635295742411830408530004469159632979678024241304696565844758339207547466857933816979467496183390897210571949810263617460550339551411800096610208132076224814012088796023227433687216651553520356491137071263028572293551344842214456667174949574304075340073927307000584208640076642160753716994515273514687180037011968908365216213820921301431178882262341689404479844968453920155258742313790941926161106420429336603711647279777595914031163 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f807c26824ff8595cbdb1ee3339c2a4f9720567b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) 5809ed1d7b294c140868292f2619f1c98e3b8dbf31b77d54fdf2d7d79e3759cc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sslserver.twca.com.tw/sslserver/Securessl_revoke_sha2_2014.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.studioarma.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'studioarma.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (117 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sslserver.twca.com.tw/cacert/secure_sha2_2014.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://twcasslocsp.twca.com.tw/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.40869.1.1.25 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'www.twca.com.tw' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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