freedomwell.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 25:a6:67:f1:dd:26:ac:0c was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=freedomwell.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): 25:a6:67:f1:dd:26:ac:0cSerial Number (int): 2712970114032380940
Serial Number lenght: 62 bits, 8 octets
SubjectKeyId: 10:7d:f0:a9:e5:38:3e:88:8a:1b:44:71:3c:65:28:55:e7:7c:8a:48
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 6e:af:62:1f:28:a8:98:ec:d8:bd:12:f1:c6:a0:0d:f7:50:14:ca:67
Fingerprint (sha256): 8c:95:1f:3a:ee:7b:0d:c6:4f:20:81:5e:0e:06:88:85:5a:97:4e:64:30:37:e1:ce:97:fe:5f:be:e4:66:14:c8
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-7098.crl
Check the revocation status for certificate freedomwell.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for freedomwell.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
freedomwell.com
Other certificates including the domain name freedomwell.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for freedomwell.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHgzCCBmugAwIBAgIIJaZn8d0mrAwwDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMjMwNzIxMDY0NzI3WhcN MjQwNzIxMDY0NzI3WjAaMRgwFgYDVQQDEw9mcmVlZG9td2VsbC5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCbkgsqQmCHdonle8S0zhytHzszavrZ KTAiBdpTsMUvsrET3VSYofMT7gRP7mTqfOj/vgXeoEZPDc5p2JlQsjYIlbb+Jut0 /DAYxDoPllMivV38zq2ybGR7PrQYgT1fB4EpVKVJd25VdbBtwycceM7JtE+gnyXB e3X3GU2DaPbu5khqAk2flNSLxaTriS78mz0u5hwWh7vtTy5GoTa5Wn2jjzPG35Ik TmDaeBq9egunRdp06OlItSm8VUdkXBnY96H1v471JXEmtQTwbJgzIFNoUCHM5j+a u/hlv526RqtamqDYnl/f3icw7qUsgCwj4NIRkCSIvtgPylrGL83x4ZulPjMsLVIJ 9UVSTf80uh8ErZgUcsgEbKcU5iVJkQsj+QgwpNM0yVPZQYzUlo1TzhDAWliDKXmo +A96qGfUawL7sFkuDWslkQrsy9QkhQDsPZ46sUfAiCpK1xkFFHjrbOvUyvePfOn0 PFf5RZjDgMx1+r5wf+SU9fJT2sSD2rxCtj7BOCIKUscyVAwu0ZiM1gVSm/EzY1wz OnQcCcwOISEDGcCRYPW8DUKiiPnzETSj+yHevv5gVXhwbozv4gZ3Wj4S4j7LoLmr EKWJigHjnDPfwUJ84/hG9xkkC+9rwxh+bD1v7oJ+MfYZDM1jzEMb2kza85lfFmaL 639JQB1wlVeYwwIDAQABo4IDMDCCAywwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMDgGA1UdHwQxMC8w LaAroCmGJ2h0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2RpZzJzMS03MDk4LmNybDBd BgNVHSAEVjBUMEgGC2CGSAGG/W0BBxcBMDkwNwYIKwYBBQUHAgEWK2h0dHA6Ly9j ZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIBMHYG CCsGAQUFBwEBBGowaDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZ29kYWRkeS5j b20vMEAGCCsGAQUFBzAChjRodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29t L3JlcG9zaXRvcnkvZ2RpZzIuY3J0MB8GA1UdIwQYMBaAFEDCvSeOzDSDMKIz1/ts s/C0LIDOMBoGA1UdEQQTMBGCD2ZyZWVkb213ZWxsLmNvbTAdBgNVHQ4EFgQUEH3w qeU4PoiKG0RxPGUoVed8ikgwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AO7N 0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABiXc0D64AAAQDAEcwRQIh AKFu3yoOmcAwiWY2EjOb9I3Rz+SCI3d+R4n1oCB53L+NAiBfXHEtBJCIeAQRi7LK SHyolwysowGbaMrnW4dRlJXeGAB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7 v6s52IRzAAABiXc0EHgAAAQDAEcwRQIgQWsdzS0cpJN1WkijfhX0r/hg1tLOVGmM iQAP2XR6spkCIQCX7xIw2ts22j6B8brnI1ZKoSUJxrHKP34nynKnbrUCIQB2ANq2 v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiXc0ENgAAAQDAEcwRQIg W5sN6QJTrfJCoGDXhYDuypdL1UGYRRDhB1bdyH9rNocCIQDgevksNU7ALz5wMsZn fZik8KbrvfDHIRXSXR3DZapTODANBgkqhkiG9w0BAQsFAAOCAQEAn8gprZZW2Y4t oTJmFL9fESMIcZrd72YLS9IK47gJi3YZojKoI26esBkfw8WVKm5Bqk64M5yKG+5N sTZVoI6J81tE0VTxuwzuEvDe89Jcxfp/yBWGQjCCHFzLWzEN4mRiK9710x581Ac7 6CMI/IaXq4Td3m8118Xd9nUsN14N7KRfT3e206dlIIN7gEadokwlycLDKr/Sqx/S SdxK+QRvEjebddBsozy5lwWU2nwDAqKDgkScSTZTb2RWNt6BUltJoF1FRoovgNtr Nz70VEG+U1FyaklrqjobzCGahHLtpXJO49Uaw3ylarD0SXp7s9yChn1Z74BSnPE1 PkMBtij+iA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAm5ILKkJgh3aJ5XvEtM4c rR87M2r62SkwIgXaU7DFL7KxE91UmKHzE+4ET+5k6nzo/74F3qBGTw3OadiZULI2 CJW2/ibrdPwwGMQ6D5ZTIr1d/M6tsmxkez60GIE9XweBKVSlSXduVXWwbcMnHHjO ybRPoJ8lwXt19xlNg2j27uZIagJNn5TUi8Wk64ku/Js9LuYcFoe77U8uRqE2uVp9 o48zxt+SJE5g2ngavXoLp0XadOjpSLUpvFVHZFwZ2Peh9b+O9SVxJrUE8GyYMyBT aFAhzOY/mrv4Zb+dukarWpqg2J5f394nMO6lLIAsI+DSEZAkiL7YD8paxi/N8eGb pT4zLC1SCfVFUk3/NLofBK2YFHLIBGynFOYlSZELI/kIMKTTNMlT2UGM1JaNU84Q wFpYgyl5qPgPeqhn1GsC+7BZLg1rJZEK7MvUJIUA7D2eOrFHwIgqStcZBRR462zr 1Mr3j3zp9DxX+UWYw4DMdfq+cH/klPXyU9rEg9q8QrY+wTgiClLHMlQMLtGYjNYF UpvxM2NcMzp0HAnMDiEhAxnAkWD1vA1Cooj58xE0o/sh3r7+YFV4cG6M7+IGd1o+ EuI+y6C5qxCliYoB45wz38FCfOP4RvcZJAvva8MYfmw9b+6CfjH2GQzNY8xDG9pM 2vOZXxZmi+t/SUAdcJVXmMMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2712970114032380940 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-21 06:47:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-21 06:47:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'freedomwell.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 634672197581383754143728577856745696694327955401315247905861959797921852417785539082799400135248507409157588662025863430627801936476554780346332060954096330983676862107469182467454582607879946864522730339857059437094666735256472345428089232545502264477767134065355371908856972971709209373456498392309734909568116219429562784416400391783106651219779147821742720208271407388297076205910869561787412475668116190129991171120994710707697494530108604236227178087302775447812361816766332842618300264639168176858553443435742501810264956259651945723554704479224346848545592206030117377323565162675607330388216548161460996665911637577568989608978351246910981187523412591587897088753594559696782532546188443586255671010220417817116090005189519356317732101669558021640433866595411177418222471259044989724788556704026268120239761421800509901514958144067759002901284334899202336264769518079632232023167970595372052466396212262125340100297957213015812287169728541308966069488123646675302253612413434819726670666247010761566158910000360257302192220419894357981598455360648509974678513756514976437176717026665021786277899687864274513438477147053090620402057301904733005626067672046283600151201271820982473103085121617674923177108780119070277541271747 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-7098.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freedomwell.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 107df0a9e5383e888a1b44713c652855e77c8a48 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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