www.agkino.de
Issued by Starfield Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number bc:80:03:81:5f:88:65:c8 was issued on by Starfield Technologies, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.agkino.de
Starfield Technologies, Inc.
Organization:
Starfield Technologies, Inc.
Organization unit: http://certs.starfieldtech.com/repository/
Organization unit: http://certs.starfieldtech.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): bc:80:03:81:5f:88:65:c8Serial Number (int): 13582860330337854920
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: e0:88:a1:c9:57:55:bd:7b:38:64:a0:62:46:ba:f7:b4:4e:4f:93:bc
AuthorityKeyId: 25:45:81:68:50:26:38:3d:3b:2d:2c:be:cd:6a:d9:b6:3d:b3:66:63
Fingerprint (sha1): ce:f6:09:b6:c7:1e:71:6c:44:bc:3f:97:c9:84:19:71:8b:9f:7a:80
Fingerprint (sha256): 77:9f:3c:2d:82:74:63:2d:88:31:81:9e:86:4e:c3:89:46:c5:77:89:77:7f:24:31:32:72:58:30:41:4f:58:26
Issuing Certificate URL: http://certificates.starfieldtech.com/repository/sfig2.crt
Revocation information
OCSP Server: http://ocsp.starfieldtech.com/CRL Distribution Point: http://crl.starfieldtech.com/sfig2s1-453.crl
Check the revocation status for certificate www.agkino.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.agkino.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.agkino.de
agkino.de
agkino.de
Other certificates including the domain name agkino.de
(limited to 100 certificates)
umfrage.agkino.de
umfrage.agkino.de
screenings.agkino.de
www.agkino.de
screenings.agkino.de
umfrage.agkino.de
umfrage.agkino.de
datenaustausch.agkino.de
screenings.agkino.de
datenaustausch.agkino.de
umfrage.agkino.de
datenaustausch.agkino.de
www.agkino.de
datenaustausch.agkino.de
datenaustausch.agkino.de
datenaustausch.agkino.de
umfrage.agkino.de
umfrage.agkino.de
screenings.agkino.de
umfrage.agkino.de
datenaustausch.agkino.de
datenaustausch.agkino.de
www.agkino.de
umfrage.agkino.de
umfrage.agkino.de
umfrage.agkino.de
umfrage.agkino.de
screenings.agkino.de
www.agkino.de
screenings.agkino.de
umfrage.agkino.de
umfrage.agkino.de
datenaustausch.agkino.de
screenings.agkino.de
datenaustausch.agkino.de
umfrage.agkino.de
datenaustausch.agkino.de
www.agkino.de
datenaustausch.agkino.de
datenaustausch.agkino.de
datenaustausch.agkino.de
umfrage.agkino.de
umfrage.agkino.de
screenings.agkino.de
umfrage.agkino.de
datenaustausch.agkino.de
datenaustausch.agkino.de
www.agkino.de
umfrage.agkino.de
umfrage.agkino.de
umfrage.agkino.de
Certificate
The complete raw certificate details for www.agkino.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGtDCCBZygAwIBAgIJALyAA4FfiGXIMA0GCSqGSIb3DQEBCwUAMIHGMQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEl MCMGA1UEChMcU3RhcmZpZWxkIFRlY2hub2xvZ2llcywgSW5jLjEzMDEGA1UECxMq aHR0cDovL2NlcnRzLnN0YXJmaWVsZHRlY2guY29tL3JlcG9zaXRvcnkvMTQwMgYD VQQDEytTdGFyZmllbGQgU2VjdXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcy MB4XDTIyMDYxNTEwMDMxN1oXDTIzMDYyNjA4MzgzN1owGDEWMBQGA1UEAxMNd3d3 LmFna2luby5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMeQcUl1 Amxq6oJipRmR57EtpY8j5ASr0U0ZNgj6658dPjO5nuNkIexTHHuBAa0qB9S1hzao vRK0TDF7FS2hYlTnrJYj5d9boalJDGqJO0rWnBbXDQudEi3LS3LDTqYFXPv/a8tl playwrOI04eNiqyNQWQa5d3PrH/rp8tLHV1rqV34UeLlvNShQWz+MmNeLyP+SsdS 8RHpOHijug+Mzl5knnxORHyanbnordH0u7pFaQaN+iHRyHVaJhQUJFs96A9d6Iu9 dfZLXcJgESKDPEzTNDofg+MEj48vls45c9ZbUBbU1AlJqDCFCVmAfUjZ8q+IRW6r A4W+rFymNYLTkHcCAwEAAaOCA1AwggNMMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDA9BgNVHR8ENjA0 MDKgMKAuhixodHRwOi8vY3JsLnN0YXJmaWVsZHRlY2guY29tL3NmaWcyczEtNDUz LmNybDBjBgNVHSAEXDBaME4GC2CGSAGG/W4BBxcBMD8wPQYIKwYBBQUHAgEWMWh0 dHA6Ly9jZXJ0aWZpY2F0ZXMuc3RhcmZpZWxkdGVjaC5jb20vcmVwb3NpdG9yeS8w CAYGZ4EMAQIBMIGCBggrBgEFBQcBAQR2MHQwKgYIKwYBBQUHMAGGHmh0dHA6Ly9v Y3NwLnN0YXJmaWVsZHRlY2guY29tLzBGBggrBgEFBQcwAoY6aHR0cDovL2NlcnRp ZmljYXRlcy5zdGFyZmllbGR0ZWNoLmNvbS9yZXBvc2l0b3J5L3NmaWcyLmNydDAf BgNVHSMEGDAWgBQlRYFoUCY4PTstLL7Natm2PbNmYzAjBgNVHREEHDAagg13d3cu YWdraW5vLmRlgglhZ2tpbm8uZGUwHQYDVR0OBBYEFOCIoclXVb17OGSgYka697RO T5O8MIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdgDoPtDaPvUGNTLnVyi8iWvJ A9PL0RFr7Otp4Xd9bQa9bgAAAYFm0VkdAAAEAwBHMEUCIFbgyRmwLB76y6b+Ded0 T5vjQNsEUgoYojn27WF1UNp9AiEA2zOwtBmp1hc38Q0l2arpv40RQ1GGOkNXKSNH NSK+kCkAdgA1zxkbv7FsV78PrUxtQsu7ticgJlHqP+Eq76gDwzvWTAAAAYFm0Vq8 AAAEAwBHMEUCIQCiB0ft4TdIbgfim3iFsH8lyKB2/FYLQTbwyXY6NFolDwIgWNY+ 8AdZ4jsMh90uLgWZwSV9se0ga7hw6jKT7/+CpugAdQB6MoxU2LcttiDqOOBSHumE FnAyE4VNO9IrwTpXo1LrUgAAAYFm0VtUAAAEAwBGMEQCIFGztRVsL54aDy+wzXH5 tNqwet1batvJS32dDaR/MC/+AiBGGuaM7qk+7ltLnp/DlJXOZ8sqxW9rNZRVN8yH 5UAFiTANBgkqhkiG9w0BAQsFAAOCAQEAKyBnbbaqZ6GfxTUT4wed/z/43rBTqSGA owWxDx50JizAjtVp713zXx/sGgEDF1Lc6Ydeu3ocpEk/inVU3KqiDT+DbpUpZ4Aa dK76Ww8bvAC/oBajfU39mNyvGrZikyiVt+0ldtH6SJQ37U6d4mAEX8gNWienzwSP A72bNkV4vOWi0bYSFTC4yNGcmNRT4Z0OaQnPLuOdZI/losisyirD7/BoTwWcuVlS FTHusIQnrZjJ9iIYvEQlB+QcHvcylwacnWDUGVv5xgvYWS/BxnwRjU9zFsVhFaYl 81V/5mbTikrcSmSa8iY1LRpwmyxsG0xxJ9OcCNz6/OuihuDMpl/QtQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5BxSXUCbGrqgmKlGZHn sS2ljyPkBKvRTRk2CPrrnx0+M7me42Qh7FMce4EBrSoH1LWHNqi9ErRMMXsVLaFi VOesliPl31uhqUkMaok7StacFtcNC50SLctLcsNOpgVc+/9ry2WmVrLCs4jTh42K rI1BZBrl3c+sf+uny0sdXWupXfhR4uW81KFBbP4yY14vI/5Kx1LxEek4eKO6D4zO XmSefE5EfJqdueit0fS7ukVpBo36IdHIdVomFBQkWz3oD13oi7119ktdwmARIoM8 TNM0Oh+D4wSPjy+Wzjlz1ltQFtTUCUmoMIUJWYB9SNnyr4hFbqsDhb6sXKY1gtOQ dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13582860330337854920 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Technologies, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.starfieldtech.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-15 10:03:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-26 08:38:37 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.agkino.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25192649953043034370964809105849428664280730378624516980075914203749863763700212945200332451658080211669676027964833246909945076756626742482292041479985922625139187822617704108856196780257663878900314136206748285340232411698627052770294459927426420258379152891322844717223481447569911970599064323424120618143572987947620798876515164658856940062253552208000496875802337716965520008589103537951614370895037291581641592323738158382890079708423029497394595526850578261557198454707771549858019006050051899672031541503659882564950624846749080597181041580506059985539278274748118177475018039387851128028968229808597816807543 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.starfieldtech.com/sfig2s1-453.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114414.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.starfieldtech.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.starfieldtech.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.starfieldtech.com/repository/sfig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 254581685026383d3b2d2cbecd6ad9b63db36663 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.agkino.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agkino.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e088a1c95755bd7b3864a06246baf7b44e4f93bc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 0167007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018166d1591d0000040300473045022056e0c919b02c1efacba6fe0de7744f9be340db04520a18a239f6ed617550da7d022100db33b0b419a9d61737f10d25d9aae9bf8d114351863a43572923473522be902900760035cf191bbfb16c57bf0fad4c6d42cbbbb627202651ea3fe12aefa803c33bd64c0000018166d15abc0000040300473045022100a20747ede137486e07e29b7885b07f25c8a076fc560b4136f0c9763a345a250f022058d63ef00759e23b0c87dd2e2e0599c1257db1ed206bb870ea3293efff82a6e80075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018166d15b540000040300463044022051b3b5156c2f9e1a0f2fb0cd71f9b4dab07add5b6adbc94b7d9d0da47f302ffe0220461ae68ceea93eee5b4b9e9fc39495ce67cb2ac56f6b35945537cc87e5400589 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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