access02.cma.gov.uk
Issued by GeoTrust TLS DV RSA Mixed SHA256 2020 CA-1
About this certificate
This digital certificate with serial number 08:9e:75:20:e4:9f:ee:6e:3a:16:f2:29:23:a7:53:ed was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=access02.cma.gov.uk
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:9e:75:20:e4:9f:ee:6e:3a:16:f2:29:23:a7:53:edSerial Number (int): 11456582517908584851572651677899510765
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c3:e9:dd:7f:38:b9:9a:1c:69:c1:98:8f:a3:56:55:0e:6c:e0:ae:1f
AuthorityKeyId: 12:c9:88:9b:2f:c9:44:7a:7d:12:f1:df:40:03:42:98:92:c7:24:d6
Fingerprint (sha1): fb:c9:34:df:a2:a9:bb:42:67:68:51:a9:91:77:18:18:91:10:30:97
Fingerprint (sha256): 81:4e:12:ac:99:2e:42:7b:c3:28:fb:57:1b:64:1e:8a:54:66:31:ef:70:50:4a:41:e6:83:e9:33:87:c0:93:49
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustTLSDVRSAMixedSHA2562020CA-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustTLSDVRSAMixedSHA2562020CA-1-1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustTLSDVRSAMixedSHA2562020CA-1-1.crl
Check the revocation status for certificate access02.cma.gov.uk
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for access02.cma.gov.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
access02.cma.gov.uk
sip.cma.gov.uk
webconf02.cma.gov.uk
sip.cma.gov.uk
webconf02.cma.gov.uk
Other certificates including the domain name cma.gov.uk
(limited to 100 certificates)
access01.cma.gov.uk
*.cma.gov.uk
sts.cma.gov.uk
lyweb01.cma.gov.uk
aovpn.cma.gov.uk
mail.cma.gov.uk
vpn.cmaonline.org.uk
mail.cma.gov.uk
vpn.cmaonline.org.uk
vpn.cmaonline.org.uk
sftp-dfis.cma.gov.uk
mail.cma.gov.uk
access01.cma.gov.uk
access02.cma.gov.uk
access02.cma.gov.uk
mail.cma.gov.uk
sts.cma.gov.uk
*.cma.gov.uk
aovpn.cma.gov.uk
sts.cma.gov.uk
vpn.cmaonline.org.uk
*.cma.gov.uk
mail.cma.gov.uk
aovpn.cma.gov.uk
vpn.cmaonline.org.uk
*.cma.gov.uk
sts.cma.gov.uk
data.cma.gov.uk
lyweb01.cma.gov.uk
lyweb01.cma.gov.uk
vpn.cmaonline.org.uk
*.cma.gov.uk
sts.cma.gov.uk
lyweb01.cma.gov.uk
aovpn.cma.gov.uk
mail.cma.gov.uk
vpn.cmaonline.org.uk
mail.cma.gov.uk
vpn.cmaonline.org.uk
vpn.cmaonline.org.uk
sftp-dfis.cma.gov.uk
mail.cma.gov.uk
access01.cma.gov.uk
access02.cma.gov.uk
access02.cma.gov.uk
mail.cma.gov.uk
sts.cma.gov.uk
*.cma.gov.uk
aovpn.cma.gov.uk
sts.cma.gov.uk
vpn.cmaonline.org.uk
*.cma.gov.uk
mail.cma.gov.uk
aovpn.cma.gov.uk
vpn.cmaonline.org.uk
*.cma.gov.uk
sts.cma.gov.uk
data.cma.gov.uk
lyweb01.cma.gov.uk
lyweb01.cma.gov.uk
vpn.cmaonline.org.uk
Certificate
The complete raw certificate details for access02.cma.gov.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGsjCCBZqgAwIBAgIQCJ51IOSf7m46FvIpI6dT7TANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypH ZW9UcnVzdCBUTFMgRFYgUlNBIE1peGVkIFNIQTI1NiAyMDIwIENBLTEwHhcNMjIw NTE3MDAwMDAwWhcNMjMwNTMxMjM1OTU5WjAeMRwwGgYDVQQDExNhY2Nlc3MwMi5j bWEuZ292LnVrMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucxbw0R8 QSRWM90PxSIr+xYo6mFgysT2mfDxJfc10Lx7S1x9hhWSjUmbzl2UFRZADX/4ln9W oLlv8oX+bSaN904568UPSbsPyKPSS0QMT5yd8Cvn1afcs8s3PMnouxd6LzfLB+QC tjOqRbXAHjDh0/oy1DZmBZ6xLUDkCuMgElO16UVI6RUPbkYiYm9xsE1Y4wlohadw m6UgWy/strhjSYm7q7wDfaUoYC+7g/ou/+BmZ8a5c3cVdjq9zvOTf8lyfB45CECJ ZG6v3mQb59Z4rXS/o7ZVYI+mN+m6SjXdeICoSmhNMMxf9dffvvj2uqxY3yuJh8ud jg9BNm+PR6bqwwIDAQABo4IDrzCCA6swHwYDVR0jBBgwFoAUEsmImy/JRHp9EvHf QANCmJLHJNYwHQYDVR0OBBYEFMPp3X84uZocacGYj6NWVQ5s4K4fMEQGA1UdEQQ9 MDuCE2FjY2VzczAyLmNtYS5nb3YudWuCDnNpcC5jbWEuZ292LnVrghR3ZWJjb25m MDIuY21hLmdvdi51azAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMIGfBgNVHR8EgZcwgZQwSKBGoESGQmh0dHA6Ly9jcmwzLmRp Z2ljZXJ0LmNvbS9HZW9UcnVzdFRMU0RWUlNBTWl4ZWRTSEEyNTYyMDIwQ0EtMS0x LmNybDBIoEagRIZCaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0dlb1RydXN0VExT RFZSU0FNaXhlZFNIQTI1NjIwMjBDQS0xLTEuY3JsMD4GA1UdIAQ3MDUwMwYGZ4EM AQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCB hQYIKwYBBQUHAQEEeTB3MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2Vy dC5jb20wTwYIKwYBBQUHMAKGQ2h0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9H ZW9UcnVzdFRMU0RWUlNBTWl4ZWRTSEEyNTYyMDIwQ0EtMS5jcnQwCQYDVR0TBAIw ADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHcA6D7Q2j71BjUy51covIlryQPT y9ERa+zraeF3fW0GvW4AAAGA0aQ+CAAABAMASDBGAiEAkLZaOPkdZ1PRLNVzge1z d1RsRKFHvBb2N2x1cKSG3WcCIQCUE9jF3vEWPPVwGwgM66un5V8E7hOIBI2I8U/w egtcTQB1ADXPGRu/sWxXvw+tTG1Cy7u2JyAmUeo/4SrvqAPDO9ZMAAABgNGkPVMA AAQDAEYwRAIgMFFNlOfDe91aX0Qp1cOm9ASB9ft4vpAvZy9hHz5kfj0CICPnChOs mkj2bRSbXDAeuPiXx/q3BA/GoCHBdpKYIMPjAHUAs3N3B+GEUPhjhtYFqdwRCUp5 LbFnDAuH3PADDnk2pZoAAAGA0aQ9hgAABAMARjBEAiArKldBCsxM2cluJq3IpQHE LYdMMkAMREXHOu7LJVj4JQIgLvgVL4cfxgH+WPqjamWI5NnST5akkQ4vmFh5vOQB UUQwDQYJKoZIhvcNAQELBQADggEBAHDmhzOJxAqyXn1V6tAShaDmi5ysTnJ0liDI k9L097ho+GCtgJ7v4fxNnNWj/5UvGzK0q/KkLwTLapzX1tCa1OfpBJq24Ncap8ZK 1YlsZMD/bX3zVIecChWN8d07EyHaoMM2gc08rFXiZQduajSFUji4IhYkBPVnIKgI 4kEKwF9DZ2D/Enht0c5yPdVREjFGbvRUn1ojC8iI3Ecb8jZgJ7BoIu3GXt1Xgwxp p+6QNAswK1XPirkRfU6edoJfBMJjnFiDnZo5exDeMHs0SwildQXXKoktBjcMGCpR FS9qubBh8hT1aFmIMupPliuIkT2r4AkNRLpD2u1scy+X4ODIQgI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucxbw0R8QSRWM90PxSIr +xYo6mFgysT2mfDxJfc10Lx7S1x9hhWSjUmbzl2UFRZADX/4ln9WoLlv8oX+bSaN 904568UPSbsPyKPSS0QMT5yd8Cvn1afcs8s3PMnouxd6LzfLB+QCtjOqRbXAHjDh 0/oy1DZmBZ6xLUDkCuMgElO16UVI6RUPbkYiYm9xsE1Y4wlohadwm6UgWy/strhj SYm7q7wDfaUoYC+7g/ou/+BmZ8a5c3cVdjq9zvOTf8lyfB45CECJZG6v3mQb59Z4 rXS/o7ZVYI+mN+m6SjXdeICoSmhNMMxf9dffvvj2uqxY3yuJh8udjg9BNm+PR6bq wwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11456582517908584851572651677899510765 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS DV RSA Mixed SHA256 2020 CA-1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-31 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'access02.cma.gov.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23454859325433228023532144151021057717474433680578988401162969392887467977247395050572968109445478378003771922461045139250895140440012509046470140842869085668776528309420570363100248764897329876513897608414210727476564425565186575184520391361402586003179297681123050506878188974223662375133699911595901125430270926207421412629581322161010487258505455610669026752186604076299098084118606778946302281423694915296384672833888298847301432391057952481283097636340788250573706529269116888775678385385434522392520744794006897092711798416041010145328281263606706267781716518163602108768182429765673607545446685003031821871811 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 12c9889b2fc9447a7d12f1df4003429892c724d6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c3e9dd7f38b99a1c69c1988fa356550e6ce0ae1f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access02.cma.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sip.cma.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webconf02.cma.gov.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustTLSDVRSAMixedSHA2562020CA-1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustTLSDVRSAMixedSHA2562020CA-1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustTLSDVRSAMixedSHA2562020CA-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 0167007700e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000180d1a43e08000004030048304602210090b65a38f91d6753d12cd57381ed7377546c44a147bc16f6376c7570a486dd670221009413d8c5def1163cf5701b080cebaba7e55f04ee1388048d88f14ff07a0b5c4d00750035cf191bbfb16c57bf0fad4c6d42cbbbb627202651ea3fe12aefa803c33bd64c00000180d1a43d530000040300463044022030514d94e7c37bdd5a5f4429d5c3a6f40481f5fb78be902f672f611f3e647e3d022023e70a13ac9a48f66d149b5c301eb8f897c7fab7040fc6a021c176929820c3e3007500b3737707e18450f86386d605a9dc11094a792db1670c0b87dcf0030e7936a59a00000180d1a43d86000004030046304402202b2a57410acc4cd9c96e26adc8a501c42d874c32400c4445c73aeecb2558f82502202ef8152f871fc601fe58faa36a6588e4d9d24f96a4910e2f985879bce4015144 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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