*.humania.ca

Issued by Entrust Certification Authority - L1K

About this certificate


This digital certificate with serial number 50:d2:ad:04 was issued on by Entrust, Inc. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

Cerificate errors/warnings *beta

  • WARNING: Using depricated TeletexString for '[*.humania.ca]'
  • ERROR: KeyUsage extension SHOULD be marked as critical when present

Humania Assurance Inc.

Organization: Humania Assurance Inc.
Organization unit: Humania Assurance Inc.
State / Province: Quebec
Locality: St-Hyacinthe
Country: CA

Entrust, Inc.

Organization: Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
State / Province: Quebec
Locality: St-Hyacinthe
Country: CA

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 50:d2:ad:04
Serial Number (int): 1355984132
Serial Number lenght: 31 bits, 4 octets

SubjectKeyId: d7:3e:e3:e5:8d:fa:e3:d1:12:18:d2:07:f4:2f:a1:3c:66:6e:3c:bc
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf

Fingerprint (sha1): 18:f4:09:77:12:e7:b1:df:74:7a:11:5f:84:db:1c:fd:6e:26:56:b7
Fingerprint (sha256): 32:b2:d2:f4:74:00:fd:52:20:3a:ef:90:91:42:32:ec:11:9b:d7:e3:0a:1f:e6:a9:4a:07:94:62:e8:f7:bd:20

Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer

Revocation information

OCSP Server: http://ocsp.entrust.net
CRL Distribution Point: http://crl.entrust.net/level1k.crl

Check the revocation status for the current certificate on *.humania.ca
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

*.humania.ca
humania.ca

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGVjCCBT6gAwIBAgIEUNKtBDANBgkqhkiG9w0BAQsFADCBujELMAkGA1UEBhMC VVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1NlZSB3d3cuZW50 cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAyMDEyIEVudHJ1c3Qs IEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwGA1UEAxMlRW50cnVz dCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0xNDEyMDgxMzIyMDVa Fw0xOTAyMDgxNTQ4NDZaMIGOMQswCQYDVQQGEwJDQTEPMA0GA1UECBMGUXVlYmVj MRUwEwYDVQQHEwxTdC1IeWFjaW50aGUxHzAdBgNVBAoTFkh1bWFuaWEgQXNzdXJh bmNlIEluYy4xHzAdBgNVBAsTFkh1bWFuaWEgQXNzdXJhbmNlIEluYy4xFTATBgNV BAMUDCouaHVtYW5pYS5jYTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AIZamjmf/oDz43FrzqXlvr9jwKyTL9JmHT4bE1ykRPkA/TPhYNqNDbGvD16Jllxt Xhlhm3iFvC76nuCmDn6IxEUSy5OcP9VFb/lJ9/4Vt8kvM4go8xNu1aWvggi3Cwth TVqRhULfhoFPKAEeXOTT6vUlerWONkxi5FjD58yKVIyvyQFlSLseQ50Cb8ZCRbKY XKuhiOu1ZbczPYr18FiwzK2zJdWAyzEmYniRfjBTpL72Nyf0Api4CkMbRJUJjxas lSujHEtZXzGQaq0M76gFKqrH3fP5pE0z0/w2/zS3PrG0DIrWasg9Xa663OnKPfiV Y+p8w/XgwZn1N9HzlFXG4XbqrY28ApzQ45KYRp1CgCUU4xKipTiqyhFdaH7okkIj njOl4/RwU6YNJ5heT0UU4sDZU4SJ+ouK9ulggLwc3+Ew0TIYY8p5yQF19P3YGWC8 zryVFLPa63l9OMaz4M0mfYawBy9Mg53IdKSGolhqN2fQFAbJZmVIk6PqzX7KwSKB RwNiukZE6YP9xkCkoDCSpCkTgbtZfI5VRDhr4z1bzoh1OBukhPJShoS5C/h/vsmZ GYIz8P2EuOS4NRrXfoRn07ouyH57IV1ImCrk3IQDeMV2ZtSYVPSIvKJ6VeGsvJdF cR5s5Qm6/ycIA3SRwFm8QYGQ3wGD/Pgz8U7+YEbDpjJ5AgMBAAGjggGMMIIBiDAL BgNVHQ8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDMGA1Ud HwQsMCowKKAmoCSGImh0dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxay5jcmww SwYDVR0gBEQwQjA2BgpghkgBhvpsCgEFMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly93 d3cuZW50cnVzdC5uZXQvcnBhMAgGBmeBDAECAjBoBggrBgEFBQcBAQRcMFowIwYI KwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChido dHRwOi8vYWlhLmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwIwYDVR0RBBww GoIMKi5odW1hbmlhLmNhggpodW1hbmlhLmNhMB8GA1UdIwQYMBaAFIKicHTdvFM/ z3vU981/p2DGCky/MB0GA1UdDgQWBBTXPuPljfrj0RIY0gf0L6E8Zm48vDAJBgNV HRMEAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQAi52rI4lI3wG2CGNkCtxUGC2H/u9wA Uc/+46IIHfWeBVWs8kS6kr3LnnYNkAVOuHBRTSQ6S/JgmwwWMy89zFELU8j0dA1z YfrFN/1jTXtVAo7bnFokQ9+VSxkroKqMb/EXkpQo25rd+UW7qw987ea8VNDdNsec qwsQiQGlIf6sCezKiaKulp2xbySupRfEWjkYG48gNRuPqxYqtGD6PSibTGvNW+Gm uygXurQY5XbGdhE4NhllXHUYACNDwG+10UqjbhMdcaQLjTZVtr6nl5x3PmRk1o15 4SG1UYk1JcJBAgwr0QV/C418l4zD5jyqHzk3fVej8JxA3Y6zGltHF/Wy -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAhlqaOZ/+gPPjcWvOpeW+ v2PArJMv0mYdPhsTXKRE+QD9M+Fg2o0Nsa8PXomWXG1eGWGbeIW8Lvqe4KYOfojE RRLLk5w/1UVv+Un3/hW3yS8ziCjzE27Vpa+CCLcLC2FNWpGFQt+GgU8oAR5c5NPq 9SV6tY42TGLkWMPnzIpUjK/JAWVIux5DnQJvxkJFsphcq6GI67VltzM9ivXwWLDM rbMl1YDLMSZieJF+MFOkvvY3J/QCmLgKQxtElQmPFqyVK6McS1lfMZBqrQzvqAUq qsfd8/mkTTPT/Db/NLc+sbQMitZqyD1drrrc6co9+JVj6nzD9eDBmfU30fOUVcbh duqtjbwCnNDjkphGnUKAJRTjEqKlOKrKEV1ofuiSQiOeM6Xj9HBTpg0nmF5PRRTi wNlThIn6i4r26WCAvBzf4TDRMhhjynnJAXX0/dgZYLzOvJUUs9rreX04xrPgzSZ9 hrAHL0yDnch0pIaiWGo3Z9AUBslmZUiTo+rNfsrBIoFHA2K6RkTpg/3GQKSgMJKk KROBu1l8jlVEOGvjPVvOiHU4G6SE8lKGhLkL+H++yZkZgjPw/YS45Lg1Gtd+hGfT ui7IfnshXUiYKuTchAN4xXZm1JhU9Ii8onpV4ay8l0VxHmzlCbr/JwgDdJHAWbxB gZDfAYP8+DPxTv5gRsOmMnkCAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1355984132 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-12-08 13:22:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-08 15:48:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Quebec' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'St-Hyacinthe' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Humania Assurance Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Humania Assurance Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.humania.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 548116155560736032357500658267363560886393949571318098456321223311874966511646455165628215163645406364774667794645914043503705702528812174242837581271240936725378386560581966165199735913678943731310924592168187743331819016637526635914023040949066738204696880026937838929306662951738038921734894101933085774171020144116275734146454433512208851992488420123338481096966617479747946294434756445840535913219912280555232899820588968984732236111685358528521739203459670619525654672594754754468345879628165696623563742282035702385354403467442664336542323745852669197376813307121003269239704986543408434749858094057575383300654428781685433921415488963848498256907938378581595189904559445858452440627497215803454477095738682088753594722520049155364206867050058885637851484771882612273717208305530575041599541302726538102384298418299994135566312932610035338359674081473546628612223536353094926528288940192141891571861772431241108974944983716412822243333386632334007355531618945956977921129546615250703126245565042133018910469212196941627708517562487846351583677072477805262132348889174741999561425177760222929314028908163201874360491801301892442545328770209611073958270731602999592928785798978532099086327197609269049265485145049838950254260857 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.humania.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'humania.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d73ee3e58dfae3d11218d207f42fa13c666e3cbc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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