*.byemisys.com
Issued by GlobalSign Domain Validation CA - SHA256 - G2
About this certificate
This digital certificate with serial number 3a:53:3f:b7:89:05:4b:1d:3f:d0:b2:22 was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.byemisys.com,OU=Domain Control Validated
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 3a:53:3f:b7:89:05:4b:1d:3f:d0:b2:22Serial Number (int): 18050772307381994831110779426
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: b8:ba:67:75:c2:2e:f9:5c:05:1c:d1:ac:fe:e2:36:fe:b3:29:c7:f0
AuthorityKeyId: ea:4e:7c:d4:80:2d:e5:15:81:86:26:8c:82:6d:c0:98:a4:cf:97:0f
Fingerprint (sha1): 28:6f:c4:bc:4e:ef:31:21:cb:bf:17:b0:6b:3d:b1:52:db:20:9d:cc
Fingerprint (sha256): a5:c3:90:5a:0f:45:29:36:d7:ac:7b:10:72:65:a9:e1:9e:bd:bc:5d:ec:d6:11:b1:79:16:88:62:b6:33:f3:d8
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsdomainvalsha2g2CRL Distribution Point: http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl
Check the revocation status for certificate *.byemisys.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.byemisys.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.byemisys.com
byemisys.com
byemisys.com
Other certificates including the domain name byemisys.com
(limited to 100 certificates)
status.cloud.msg.systems
byemisys.com
status.cloud.msg.systems
sni.cloudflaressl.com
my-temp.byemisys.com
byemisys.com
*.byemisys.com
sni.cloudflaressl.com
frontoffice.byemisys.com
status.cloud.msg.systems
status.byemisys.com
status.cloud.msg.systems
status.cartx.io
status.cloud.msg.systems
live-test.byemisys.com
frontoffice.byemisys.com
status.cloud.msg.systems
api.byemisys.com
pos-temp.byemisys.com
lasemo-test.byemisys.com
byemisys.com
api-famoco.byemisys.com
rplvmons.byemisys.com
live-seb.byemisys.com
api.byemisys.com
status.cloud.msg.systems
status.cloud.msg.systems
byemisys.com
status.cloud.msg.systems
ipn-payconiq.byemisys.com
*.byemisys.com
frontoffice.byemisys.com
status.cloud.msg.systems
status.cloud.msg.systems
api-mobile.byemisys.com
status.cloud.msg.systems
byemisys.com
status.byemisys.com
live.byemisys.com
status.cloud.msg.systems
status.cloud.msg.systems
live.byemisys.com
status.cloud.msg.systems
live.byemisys.com
status.cloud.msg.systems
*.byemisys.com
*.byemisys.com
status.cloud.msg.systems
status.cloud.msg.systems
live.byemisys.com
status.cloud.msg.systems
*.byemisys.com
lasemo-test.byemisys.com
status.cloud.msg.systems
live.byemisys.com
*.byemisys.com
status.cloud.msg.systems
kiosk-temp.byemisys.com
sni.cloudflaressl.com
api.byemisys.com
byemisys.com
*.byemisys.com
status.cloud.msg.systems
byemisys.com
status.cloud.msg.systems
status.cloud.msg.systems
byemisys.com
byemisys.com
api.byemisys.com
frontoffice.byemisys.com
status.cloud.msg.systems
byemisys.com
status.cloud.msg.systems
sni.cloudflaressl.com
my-temp.byemisys.com
byemisys.com
*.byemisys.com
sni.cloudflaressl.com
frontoffice.byemisys.com
status.cloud.msg.systems
status.byemisys.com
status.cloud.msg.systems
status.cartx.io
status.cloud.msg.systems
live-test.byemisys.com
frontoffice.byemisys.com
status.cloud.msg.systems
api.byemisys.com
pos-temp.byemisys.com
lasemo-test.byemisys.com
byemisys.com
api-famoco.byemisys.com
rplvmons.byemisys.com
live-seb.byemisys.com
api.byemisys.com
status.cloud.msg.systems
status.cloud.msg.systems
byemisys.com
status.cloud.msg.systems
ipn-payconiq.byemisys.com
*.byemisys.com
frontoffice.byemisys.com
status.cloud.msg.systems
status.cloud.msg.systems
api-mobile.byemisys.com
status.cloud.msg.systems
byemisys.com
status.byemisys.com
live.byemisys.com
status.cloud.msg.systems
status.cloud.msg.systems
live.byemisys.com
status.cloud.msg.systems
live.byemisys.com
status.cloud.msg.systems
*.byemisys.com
*.byemisys.com
status.cloud.msg.systems
status.cloud.msg.systems
live.byemisys.com
status.cloud.msg.systems
*.byemisys.com
lasemo-test.byemisys.com
status.cloud.msg.systems
live.byemisys.com
*.byemisys.com
status.cloud.msg.systems
kiosk-temp.byemisys.com
sni.cloudflaressl.com
api.byemisys.com
byemisys.com
*.byemisys.com
status.cloud.msg.systems
byemisys.com
status.cloud.msg.systems
status.cloud.msg.systems
byemisys.com
byemisys.com
api.byemisys.com
frontoffice.byemisys.com
status.cloud.msg.systems
Certificate
The complete raw certificate details for *.byemisys.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGgTCCBWmgAwIBAgIMOlM/t4kFSx0/0LIiMA0GCSqGSIb3DQEBCwUAMGAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTYwNAYDVQQDEy1H bG9iYWxTaWduIERvbWFpbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0gRzIwHhcN MTkwMTAyMTUwMTQ5WhcNMjEwMTAyMTUwMTQ5WjA8MSEwHwYDVQQLExhEb21haW4g Q29udHJvbCBWYWxpZGF0ZWQxFzAVBgNVBAMMDiouYnllbWlzeXMuY29tMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtM7D1CdszSJvDZEaiGmOip/xsQZG tgRWbzWiEhlekDzujme65C8hFZSnoFidr4kForS8S54TplrYDndn1Oyy3LqsA/Q9 KDJpmYJWMqEda3pJRT4ZisW4VUy+IF722ApOYt9eS8aSr5h37NOq28pwN8/jSbc6 GgeFffu+VhO/Bo/Y3ZNzv0AifBp019xPMK+rfrsbnFx9erBOHW0U2IR1EA4ef74s oWjvC2B5ebOqvvPSTwh10aRkYMHTziAVPaikNSCNR7/tgLmGp0CmGdSlZGRQ8e2t p/ET+MfwzCmGcSfhwNDHCpcObuBFYWzekdnOfIhk3TjEHYQ3l+xS8KQ0mwIDAQAB o4IDXTCCA1kwDgYDVR0PAQH/BAQDAgWgMIGUBggrBgEFBQcBAQSBhzCBhDBHBggr BgEFBQcwAoY7aHR0cDovL3NlY3VyZS5nbG9iYWxzaWduLmNvbS9jYWNlcnQvZ3Nk b21haW52YWxzaGEyZzJyMS5jcnQwOQYIKwYBBQUHMAGGLWh0dHA6Ly9vY3NwMi5n bG9iYWxzaWduLmNvbS9nc2RvbWFpbnZhbHNoYTJnMjBWBgNVHSAETzBNMEEGCSsG AQQBoDIBCjA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNv bS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwCQYDVR0TBAIwADBDBgNVHR8EPDA6MDig NqA0hjJodHRwOi8vY3JsLmdsb2JhbHNpZ24uY29tL2dzL2dzZG9tYWludmFsc2hh MmcyLmNybDAnBgNVHREEIDAegg4qLmJ5ZW1pc3lzLmNvbYIMYnllbWlzeXMuY29t MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQUuLpndcIu +VwFHNGs/uI2/rMpx/AwHwYDVR0jBBgwFoAU6k581IAt5RWBhiaMgm3AmKTPlw8w ggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AId1v+dZfPiMQ5lfvfNu/1aNR1Y2 /0q1YMG06v9eoIMPAAABaA8VwloAAAQDAEcwRQIhAKtB8Z335DrBi2pFtTCBZUBB wLK6+fSQKKgIy/67rNooAiAlKB3S6/35H4OgStXnl8I/JIgJmT/jW45KFA8cRjrH mgB2AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABaA8Vwm8AAAQD AEcwRQIhANTKgdemQy4b8md+cTkMuBTo68oUetSFJqdbPm/ErRy9AiAFAdK6VYnk nPSmrYo/4f45u68bHSZmhMhzIwqTR0MdagB2AO5Lvbd1zmC64UJpH6vhnmajD35f sHLYgwDEe4l6qP3LAAABaA8VxbkAAAQDAEcwRQIhAIqopChZIM+sFKcsHt/EqFt7 4fFOfyp/M7gJNSa4kAkzAiAPpyDEEFlTDyf9DEyEZWSNPbXs5YSYbOCNa3DwzeUJ qzANBgkqhkiG9w0BAQsFAAOCAQEAp53IotuYi0nGu2F695GWdj5n1zA8eIrtrG69 /ceV/G2cfCTEDUSnLuAL3/zuM7J/90EvlKeHo7YgESJ89XSt0fbOJ32aHaoT8tiL wVzR+SS+7wRDWj8aPlyelKtwVih5Ec6NVt2vQ7SMCebAsHpbtgcmzj8csXwuvNJo WCzBZ6DOwDmU1V+Vaxl4W0lI6UCwRZja9z6jKShMousIwdsPz12LGp/TbUMuYmNa pAQfIqD8x5au34ukxDC83FTx0oH0PJUgDg2TitOxfOw+GyCPqSW0W56Im5HribxJ E7S6RNEhfp9QNng2rtA5Au5146CU+/S5OS+pqOsiM+ggmoortw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtM7D1CdszSJvDZEaiGmO ip/xsQZGtgRWbzWiEhlekDzujme65C8hFZSnoFidr4kForS8S54TplrYDndn1Oyy 3LqsA/Q9KDJpmYJWMqEda3pJRT4ZisW4VUy+IF722ApOYt9eS8aSr5h37NOq28pw N8/jSbc6GgeFffu+VhO/Bo/Y3ZNzv0AifBp019xPMK+rfrsbnFx9erBOHW0U2IR1 EA4ef74soWjvC2B5ebOqvvPSTwh10aRkYMHTziAVPaikNSCNR7/tgLmGp0CmGdSl ZGRQ8e2tp/ET+MfwzCmGcSfhwNDHCpcObuBFYWzekdnOfIhk3TjEHYQ3l+xS8KQ0 mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18050772307381994831110779426 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Domain Validation CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-02 15:01:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-02 15:01:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.byemisys.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22824854493762331112308028188485708172462499256750273074116530282748078661816510533579716873523827607423179656027382859756563438503052145792254627539939804986605095437436895664130374954126829740315120847386961360762708557441042331347391585868032579567664627010883361461847216640162080215345986800039818998558759117279245351642345915419230146712036214311922743361137546168217983260188031441879322483835315257827738194482360612283371099700235965031728975668696106426783090859756294456641447937976162959839087462508211234476928066235811513044409355479209633567011704756932088211148901077063787352719716749899005656577179 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsdomainvalsha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10 (globalsignDVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.byemisys.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'byemisys.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b8ba6775c22ef95c051cd1acfee236feb329c7f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ea4e7cd4802de5158186268c826dc098a4cf970f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 01680076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001680f15c25a0000040300473045022100ab41f19df7e43ac18b6a45b53081654041c0b2baf9f49028a808cbfebbacda28022025281dd2ebfdf91f83a04ad5e797c23f248809993fe35b8e4a140f1c463ac79a0076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c000001680f15c26f0000040300473045022100d4ca81d7a6432e1bf2677e71390cb814e8ebca147ad48526a75b3e6fc4ad1cbd02200501d2ba5589e49cf4a6ad8a3fe1fe39bbaf1b1d266684c873230a9347431d6a007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb000001680f15c5b900000403004730450221008aa8a4285920cfac14a72c1edfc4a85b7be1f14e7f2a7f33b8093526b890093302200fa720c41059530f27fd0c4c8465648d3db5ece584986ce08d6b70f0cde509ab . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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