www.nof.design
Issued by GlobalSign GCC R6 AlphaSSL CA 2023
About this certificate
This digital certificate with serial number 28:84:a3:97:28:33:86:53:8f:7f:ab:2b was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.nof.design
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 28:84:a3:97:28:33:86:53:8f:7f:ab:2bSerial Number (int): 12539751135134803361141861163
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 2f:15:a7:32:0e:26:e1:fc:45:30:6a:3a:ef:04:ec:2f:0c:b6:39:c2
AuthorityKeyId: bd:05:b7:f3:8a:93:3c:73:cb:79:fa:0f:85:12:a1:77:96:18:91:74
Fingerprint (sha1): 02:fa:f9:44:50:04:a3:f2:89:3e:eb:6e:66:39:57:28:7e:ac:96:eb
Fingerprint (sha256): 7e:b9:2b:0d:fa:b2:18:ca:d0:6c:f9:00:8f:23:67:f0:8c:2b:4b:03:1e:09:c3:c1:fe:29:b0:b7:e8:42:7f:b5
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsgccr6alphasslca2023.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsgccr6alphasslca2023CRL Distribution Point: http://crl.globalsign.com/gsgccr6alphasslca2023.crl
Check the revocation status for certificate www.nof.design
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.nof.design
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.nof.design
nof.design
nof.design
Other certificates including the domain name nof.design
(limited to 100 certificates)
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
www.nof.design
Certificate
The complete raw certificate details for www.nof.design in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgIMKISjlygzhlOPf6srMA0GCSqGSIb3DQEBCwUAMFUxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSswKQYDVQQDEyJH bG9iYWxTaWduIEdDQyBSNiBBbHBoYVNTTCBDQSAyMDIzMB4XDTI0MDIyNzAxNDgz NloXDTI0MDMzMDAxMTgwMVowGTEXMBUGA1UEAxMOd3d3Lm5vZi5kZXNpZ24wggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrcPIeEvPB0RAQru/NHhrxSjeu QCz8q/kOm5Vd0IIimcLN8BiPFJ5ptEDbj7Hab57FWBf5fhnycqcGjzOjSmFZHq9F Hli9ed8grU3D5ZbBb+hMdrFQpyzkuh8N4wvXPgPeac1WH36R4bdzRX0XJTVTFH80 +8Tye6IcsUykaCu2ZXS4embGAZEb2m2qAQldaiOO78NjhZhxzdCnkPfTQ5eejydJ fDQ0lIU3sPH248gzuEmr5z6LAaEmFePfT87pvZeiJ4KKy1ekxGOQ3uSxplDpY+/5 USArTDMtj2pLjg5aqM3XuXylfDxhlvKAmrgKIPwKyzycYMKSVqzVsYHWm1e/AgMB AAGjggNlMIIDYTAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADCBmQYIKwYB BQUHAQEEgYwwgYkwSQYIKwYBBQUHMAKGPWh0dHA6Ly9zZWN1cmUuZ2xvYmFsc2ln bi5jb20vY2FjZXJ0L2dzZ2NjcjZhbHBoYXNzbGNhMjAyMy5jcnQwPAYIKwYBBQUH MAGGMGh0dHA6Ly9vY3NwLmdsb2JhbHNpZ24uY29tL2dzZ2NjcjZhbHBoYXNzbGNh MjAyMzBXBgNVHSAEUDBOMAgGBmeBDAECATBCBgorBgEEAaAyCgEDMDQwMgYIKwYB BQUHAgEWJmh0dHBzOi8vd3d3Lmdsb2JhbHNpZ24uY29tL3JlcG9zaXRvcnkvMEQG A1UdHwQ9MDswOaA3oDWGM2h0dHA6Ly9jcmwuZ2xvYmFsc2lnbi5jb20vZ3NnY2Ny NmFscGhhc3NsY2EyMDIzLmNybDAlBgNVHREEHjAcgg53d3cubm9mLmRlc2lnboIK bm9mLmRlc2lnbjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0j BBgwFoAUvQW384qTPHPLefoPhRKhd5YYkXQwHQYDVR0OBBYEFC8VpzIOJuH8RTBq Ou8E7C8MtjnCMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgA7U3d1Pi25gE6L MFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAY3oP+SsAAAEAwBHMEUCIQDaLo/8kNt3 8B9H0FaZ7fF42PPUTmU7Bjx4KS1R+8enMgIgSd2L3nypzrBurYY/4QaGnCOLYZeX 1pXYMdvn234ySXsAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAA AY3oP+SEAAAEAwBHMEUCIQDfJJUQ7NNiOZRqUDlRqQEeauY2iw0Wk9bumtfrkHSq jQIgTeCsNTNPgT39bnRg0Sco7M2vIaXa+Fz7d4qwhqMtep0AdgBIsONr2qZHNA/l agL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY3oP+SYAAAEAwBHMEUCIDpPOGzo4c2D pcdDpdz34F+P0by5H/qKUwjHkhPJ8CeqAiEA/sS0gXLMWczVYEL0xtUz5LEzupbL AeOumTNRPM2+MvwwDQYJKoZIhvcNAQELBQADggEBALHs/SnGXtwJzpe51BRToJXe dNbh6V7oz2XwrY/eKXjyHH0SsT2yH8qjW5Cuc1uzVvRxLhzYvsTot/1Ax4MICB1O Vw6ef6Myln+kAE75MtM+BQfcq5uxmz5VD07GEgmla6K/78nlQkkDRZi75g+kuX1f Pj4bn8bVWOh3n4rbUMs5K3paEm0cngX5gKjWJWHB+OB5DYEE6u038jrWiRqX+7Zc cKfmpVwYJX8CB1SwSc4lu5iyCG2do292Pcs4Qq6moFmO4pw5a+zJXEhpg2490iOb EOFJdZQKSMUtexjZJzDAsZkwY2TImn4xCLDiT29Y6UBNv5A7onkuOB1bFUoJKKU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3DyHhLzwdEQEK7vzR4a 8Uo3rkAs/Kv5DpuVXdCCIpnCzfAYjxSeabRA24+x2m+exVgX+X4Z8nKnBo8zo0ph WR6vRR5YvXnfIK1Nw+WWwW/oTHaxUKcs5LofDeML1z4D3mnNVh9+keG3c0V9FyU1 UxR/NPvE8nuiHLFMpGgrtmV0uHpmxgGRG9ptqgEJXWojju/DY4WYcc3Qp5D300OX no8nSXw0NJSFN7Dx9uPIM7hJq+c+iwGhJhXj30/O6b2XoieCistXpMRjkN7ksaZQ 6WPv+VEgK0wzLY9qS44OWqjN17l8pXw8YZbygJq4CiD8Css8nGDCklas1bGB1ptX vwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12539751135134803361141861163 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign GCC R6 AlphaSSL CA 2023' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-27 01:48:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-30 01:18:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.nof.design' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21642445784874834398056380729228274149367009668337905109011505042613424413694490969764293483740931731854581239441561606018784289145051678857384636762866037532188834396430344515430011537347834256722059063925901961578851147089213569072034216919161842859779963674839228579580603118789718886202294099145012324096039790840624727237185150932160596468465438028142580918919590715407474892447303425895653444839296446266434006753683507952599049516097750010765231181944498468309824822148237641925855448687686311819539969919979447773254498652077234259949895578019136157740580179707035354911441928246477491209183467138376403736511 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (140 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsgccr6alphasslca2023.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsgccr6alphasslca2023' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.10.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsgccr6alphasslca2023.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nof.design' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nof.design' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bd05b7f38a933c73cb79fa0f8512a17796189174 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2f15a7320e26e1fc45306a3aef04ec2f0cb639c2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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