angel.singhalls.org
Issued by SSL.com RSA SSL subCA
About this certificate
This digital certificate with serial number 66:a3:ae:a2:2d:c2:81:15:3b:a8:08:b0:9f:da:fc:cf was issued on by SSL Corporation.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=angel.singhalls.org
SSL Corporation
Organization:
SSL Corporation
State / Province:
Texas
Locality: Houston
Country: US
Locality: Houston
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): 66:a3:ae:a2:2d:c2:81:15:3b:a8:08:b0:9f:da:fc:cfSerial Number (int): 136431141946397925269037625309757373647
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 25:c0:cc:62:e8:aa:04:da:9c:e2:35:90:91:2c:2a:4d:5a:47:a9:25
AuthorityKeyId: 26:14:7e:e0:dc:d7:a6:f7:e2:d4:04:27:df:61:f1:c2:ec:e7:32:ca
Fingerprint (sha1): 08:ad:ef:79:2e:ad:d2:8e:f0:b0:3c:56:31:37:f0:8f:99:cc:51:56
Fingerprint (sha256): 96:e4:c4:5d:37:bc:a8:83:50:38:56:a5:3d:af:bb:be:3c:32:0a:ce:8d:f1:ab:4c:f7:29:41:21:3e:44:28:77
Issuing Certificate URL: http://cert.ssl.com/SSLcom-SubCA-SSL-RSA-4096-R1.cer
Revocation information
OCSP Server: http://ocsps.ssl.comCRL Distribution Point: http://crls.ssl.com/SSLcom-SubCA-SSL-RSA-4096-R1.crl
Check the revocation status for certificate angel.singhalls.org
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for angel.singhalls.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
angel.singhalls.org
portal.singhalls.org
singhalls.org
portal.singhalls.org
singhalls.org
Other certificates including the domain name singhalls.org
(limited to 100 certificates)
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
portal.singhalls.org
angel.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
site.singhalls.org
angel.singhalls.org
www.blog.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
angel.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
angel.singhalls.org
angel.singhalls.org
www.site.singhalls.org
angel.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
portal.singhalls.org
angel.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
site.singhalls.org
angel.singhalls.org
www.blog.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
angel.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
angel.singhalls.org
angel.singhalls.org
www.site.singhalls.org
angel.singhalls.org
www.site.singhalls.org
www.site.singhalls.org
Certificate
The complete raw certificate details for angel.singhalls.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHaTCCBVGgAwIBAgIQZqOuoi3CgRU7qAiwn9r8zzANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJVUzEOMAwGA1UECAwFVGV4YXMxEDAOBgNVBAcMB0hvdXN0b24x GDAWBgNVBAoMD1NTTCBDb3Jwb3JhdGlvbjEeMBwGA1UEAwwVU1NMLmNvbSBSU0Eg U1NMIHN1YkNBMB4XDTIzMDQzMDE2MTUzN1oXDTI0MDUzMDE2MTUzN1owHjEcMBoG A1UEAwwTYW5nZWwuc2luZ2hhbGxzLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOXRd7vB1WMLsGJTf5UwnPI+W1byFcQDZfMPIEHrmbmK8wvx28Q5 rJ1yiABl7ws1SJNPoKHykvaIDv2QWkT1vwxMc267zoeuAqXQxQzSkJfpszDXXh4n 0cei08a8psc64AEJafS/cbqM30+NHjl+Ocb7gH6ByaZfsaQ3ZgLZKzsGRFBZPuBF yT+YV9IqqLWPFOWd59EsKUJnxl5XSDrk54bsahY1w0ScP/MQTvlrOMQdN8zyGJCL bMekQBLKCytuJvgv+JAF4RnECpp8rAtzKRqXZrYP2ko2/Le3CH7eMy7RwSLTxq63 v4TCeG6AOPg3GidtstPgNfv9p7vuHObNwz0CAwEAAaOCA1YwggNSMAwGA1UdEwEB /wQCMAAwHwYDVR0jBBgwFoAUJhR+4NzXpvfi1AQn32HxwuznMsowcgYIKwYBBQUH AQEEZjBkMEAGCCsGAQUFBzAChjRodHRwOi8vY2VydC5zc2wuY29tL1NTTGNvbS1T dWJDQS1TU0wtUlNBLTQwOTYtUjEuY2VyMCAGCCsGAQUFBzABhhRodHRwOi8vb2Nz cHMuc3NsLmNvbTBDBgNVHREEPDA6ghNhbmdlbC5zaW5naGFsbHMub3JnghRwb3J0 YWwuc2luZ2hhbGxzLm9yZ4INc2luZ2hhbGxzLm9yZzBRBgNVHSAESjBIMAgGBmeB DAECATA8BgwrBgEEAYKpMAEDAQEwLDAqBggrBgEFBQcCARYeaHR0cHM6Ly93d3cu c3NsLmNvbS9yZXBvc2l0b3J5MB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcD ATBFBgNVHR8EPjA8MDqgOKA2hjRodHRwOi8vY3Jscy5zc2wuY29tL1NTTGNvbS1T dWJDQS1TU0wtUlNBLTQwOTYtUjEuY3JsMB0GA1UdDgQWBBQlwMxi6KoE2pziNZCR LCpNWkepJTAOBgNVHQ8BAf8EBAMCBaAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoB aAB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABh9L78psAAAQD AEcwRQIhAPNbpSIHqG4hAq/lQ2hrvMLZewit1u//yjVi4QuMcjKIAiAbltnahn9e rb0BYyrmEq5Jo5HskhVGm2gChGuS72puqQB2AFWB1MIWkDYBSuoLm1c8U/DA5Dh4 cCUIFy+jqh0HE9MMAAABh9L78xkAAAQDAEcwRQIgdT+KrG6aCuci9iygiUxnjGeU ie0nOG3VtxnPbfxyu4gCIQDivv6/oeo+zwuG2ioUp4uli4aptC/KXy454EEsniJO FAB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABh9L78ygAAAQD AEcwRQIgeX4eALqi94eBsXW8cZnfTUfM2DoljpauhH8V7UyDrDcCIQD3LSyUQ73m z/o8KTSgPTEWe376e1MK9aSN0qFJPcp9ejANBgkqhkiG9w0BAQsFAAOCAgEAe4Hh 4/mEctKGlIgogVLJ2qur/ERIPJPtotN1oKhPfRHyZ2ARmK4f8AYtFSiigvufNsi0 58uN637gIimVcN8Vt41bzwd6lWucvaKeFRpQTH4DlXUCz5oUXuDJkZK/3yfIvSHh zQ5VetGMUH2vD8JxkviRu/mO4UfAyZ7XsCVPAgJvmVBDh4HBDH2YqSe23v9X8FY8 B/AFj6PTxdV0OmL2RibnlIXkv0MEHNYIFkvfX1HuY1ObR2raE3UVMWImQd0OY1Lx fTHm82x3s1s86N91qotl1V+EpiBxYeB7+WfC3iLh8gkedR/SZLYCUAXUzFE1AWQL ZWZSgfxdl+qncFhTnBg6b/+CbX6X3oSNTIlSj8OshsmlWbQQ4a6lG2wFyFcTJhV1 KIgnU/6TcISRhaKSISrpIN2AmYDz9MkcjTPWaqRpdaTOxLfOBQkzj6FhVEiS7ZM0 q7AlnCoSnLnGLgeKa/VmgRzhKEvUVK/LeA8qugT80OYR+eGiNevQ/5Fd0lmKG83i 6EpGALTMmv/4kVgjJd2YbSqUjgCICeK3c6gQnrYSttumlkohoh3YhYPw6aA7/Ko6 Tii58wKQ4tqZB16qItR/nwVhMY3M3obhaNQ8eeyoDFk4iKmE6QvqFT1rFhCEdeIt Gf7Qjk2v2tx0vktM8aAF6+QH9fvxWQwX5nZaB0A= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5dF3u8HVYwuwYlN/lTCc 8j5bVvIVxANl8w8gQeuZuYrzC/HbxDmsnXKIAGXvCzVIk0+gofKS9ogO/ZBaRPW/ DExzbrvOh64CpdDFDNKQl+mzMNdeHifRx6LTxrymxzrgAQlp9L9xuozfT40eOX45 xvuAfoHJpl+xpDdmAtkrOwZEUFk+4EXJP5hX0iqotY8U5Z3n0SwpQmfGXldIOuTn huxqFjXDRJw/8xBO+Ws4xB03zPIYkItsx6RAEsoLK24m+C/4kAXhGcQKmnysC3Mp Gpdmtg/aSjb8t7cIft4zLtHBItPGrre/hMJ4boA4+DcaJ22y0+A1+/2nu+4c5s3D PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 136431141946397925269037625309757373647 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Texas' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Houston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SSL Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SSL.com RSA SSL subCA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-30 16:15:37 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-30 16:15:37 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'angel.singhalls.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29011864214145491302682344754200892570008970083474240705383339794360522839871269592835937955727100840427374971075363318962590248650133235552550880534032385905479519090722380350481830813224625209415635676683679677309514934428216385854433579881254344195276694854812749451230995100638578420774684230214108224840379011222625564470299061898348248665114575325853109761215992505813194969839038956074054781884555436883362853620827827948670762887099337119026162677143243561609360414477367683667632066152251092681686058037155647960103916891750721129817182723852004841074721914948836815443807728583321518837787701007751538656061 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 26147ee0dcd7a6f7e2d40427df61f1c2ece732ca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (102 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.ssl.com/SSLcom-SubCA-SSL-RSA-4096-R1.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsps.ssl.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'angel.singhalls.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.singhalls.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'singhalls.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.38064.1.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.ssl.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.ssl.com/SSLcom-SubCA-SSL-RSA-4096-R1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 25c0cc62e8aa04da9ce23590912c2a4d5a47a925 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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