shipafrika.com
Issued by R3
About this certificate
This digital certificate with serial number 04:5b:eb:7a:1c:09:40:85:ef:6a:1b:f9:b2:bd:da:87:dc:ff was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=shipafrika.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:5b:eb:7a:1c:09:40:85:ef:6a:1b:f9:b2:bd:da:87:dc:ffSerial Number (int): 379727841724713074564006448521578283523327
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c9:23:30:ad:53:42:0e:db:5f:d1:89:79:97:cc:73:d9:7a:36:f3:62
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): dc:a1:1b:7e:77:cc:b6:8f:17:a9:f4:0e:a4:01:3e:ec:db:26:bf:b5
Fingerprint (sha256): ab:d3:12:ed:5b:fa:61:07:a9:21:26:6e:cb:9b:47:40:7e:01:ad:78:ec:82:37:96:7c:88:3b:1e:2a:99:eb:39
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate shipafrika.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shipafrika.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shipafrika.com
www.shipafrika.com
www.shipafrika.com
Other certificates including the domain name shipafrika.com
(limited to 100 certificates)
account.flyachtcharters.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
shipafrika.com
shipafrika.com
account.flyachtcharters.com
shipafrika.com
account.flyachtcharters.com
invoice.shipafrika.com
pro.itekagency.com
invoice.shipafrika.com
invoice.shipafrika.com
account.flyachtcharters.com
account.flyachtcharters.com
shipafrika.com
billing.linkalone.ca
invoice.shipafrika.com
account.flyachtcharters.com
invoices.youfirst.biz
account.flyachtcharters.com
payments.42ndstreettours.com
account.flyachtcharters.com
shipafrika.com
invoice.instantcard.net
account.flyachtcharters.com
shipafrika.com
shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.clahvay.com
shipafrika.com
account.flyachtcharters.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
account.flyachtcharters.com
invoice.shipafrika.com
invoice.instantsecur.com
billing.aiudapp.com
account.flyachtcharters.com
account.flyachtcharters.com
invoice.shipafrika.com
shipafrika.com
shipafrika.com
account.flyachtcharters.com
shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
account.flyachtcharters.com
shipafrika.com
invoice.shipafrika.com
shipafrika.com
shipafrika.com
account.flyachtcharters.com
account.flyachtcharters.com
invoice.shipafrika.com
account.flyachtcharters.com
account.flyachtcharters.com
invoice.magentahive.com
account.flyachtcharters.com
shipafrika.com
shipafrika.com
invoice.shipafrika.com
shipafrika.com
invoice.shipafrika.com
account.flyachtcharters.com
account.flyachtcharters.com
account.flyachtcharters.com
shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
shipafrika.com
shipafrika.com
account.flyachtcharters.com
shipafrika.com
account.flyachtcharters.com
invoice.shipafrika.com
pro.itekagency.com
invoice.shipafrika.com
invoice.shipafrika.com
account.flyachtcharters.com
account.flyachtcharters.com
shipafrika.com
billing.linkalone.ca
invoice.shipafrika.com
account.flyachtcharters.com
invoices.youfirst.biz
account.flyachtcharters.com
payments.42ndstreettours.com
account.flyachtcharters.com
shipafrika.com
invoice.instantcard.net
account.flyachtcharters.com
shipafrika.com
shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.clahvay.com
shipafrika.com
account.flyachtcharters.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
account.flyachtcharters.com
invoice.shipafrika.com
invoice.instantsecur.com
billing.aiudapp.com
account.flyachtcharters.com
account.flyachtcharters.com
invoice.shipafrika.com
shipafrika.com
shipafrika.com
account.flyachtcharters.com
shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
account.flyachtcharters.com
shipafrika.com
invoice.shipafrika.com
shipafrika.com
shipafrika.com
account.flyachtcharters.com
account.flyachtcharters.com
invoice.shipafrika.com
account.flyachtcharters.com
account.flyachtcharters.com
invoice.magentahive.com
account.flyachtcharters.com
shipafrika.com
shipafrika.com
invoice.shipafrika.com
shipafrika.com
invoice.shipafrika.com
account.flyachtcharters.com
account.flyachtcharters.com
account.flyachtcharters.com
shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
invoice.shipafrika.com
Certificate
The complete raw certificate details for shipafrika.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgISBFvrehwJQIXvahv5sr3ah9z/MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMDYxOTE0NDhaFw0yNDA0MDUxOTE0NDdaMBkxFzAVBgNVBAMT DnNoaXBhZnJpa2EuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA 3gr66dC36a51i52TG3vHkn69JS54HcrGsg8E5uXkf7kAO9lrGbM494MWh/HyI5q6 9xg85/o2WWsD8dQMbu08ltOnSwZjmmN5sULMd4k9gWRZtE9mYjqHmTYwMt2OGEYO DJg37aDBZp1XIM9S8LTFCBIkKr6cObvBeWCRhJcAXbu1fEjsv/AgqdBJCORS3cc6 xtmdrg9KMBalrpduHPw+oDk3IZXMoDJH35G4o2MruJQD8t1T7aAjgM0eQVbtDcCi epu9NPSIcRQISASUc5n8v6xrgWSldi+9nJlGkM6FoBdjucgjEjwlQ5UgYND5gR4v kUWxAIA6MzUOKBvtqianABJi1cHXI+0wOPbCwgJaQjporXA/AK/9Yr9vOoHCK7fo sRaYTVFjUnJrIr4GndhI/cCK7PAP5bqUGL/vOpqYJ9BYMzEQUKszR7iswrEvg0gT btVTl0jEArPPIP/xfnj9/kIgW67Ev+8a4cPATbtMN/plMnwDy9fat9nsWi4OkJbk 6P3skAVovaC9mqM1uOjRkCNNq/y8ooHfldKm5OamVpRZZJZs5CY1m+hp8wWakgTU Rgx3RUIxV2ehDT+Ga0IpRiydzfV3jDumNZJ7ptlmquACzYIVzVz0VKum7J1/ff9o DBJhpMmOEKpIHvecy7IpimlZ3qkQJIpjmIP5nc1JuGMCAwEAAaOCAiQwggIgMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQUySMwrVNCDttf0Yl5l8xz2Xo282IwHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wLQYDVR0RBCYwJIIOc2hpcGFmcmlrYS5jb22CEnd3 dy5zaGlwYWZyaWthLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB 1nkCBAIEgfUEgfIA8AB1ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQX AAABjOBp8jsAAAQDAEYwRAIgWxTrPjb7EErjcsNZezkW3B2tSEd6KPVLd3ibvzeE 55wCIGH5OV7O/HHfLOlvAGte43MaIgeMJzBvDww372dhsbo1AHcA7s3QZNXbGs7F XLedtM0TojKHRny87N7DUUhZRnEftZsAAAGM4Gn0PwAABAMASDBGAiEAoqhsPiY4 tj90JegyCvrC9u96HBzZlrYaABte7uzfAsMCIQCGp4sfRtwYgjsW7edn4wd/bS9U YtX1/L5DWopToijgXjANBgkqhkiG9w0BAQsFAAOCAQEAFUnsaHx2dowKSLKY5Lwi VHV6Wu3I3IHLrEgBDF67CR0Zx5UyqSpU+2iWi5QwHyQ2OSYkIUDzIgmXKWNtfxst csDxo4GXWtQ584zKCgKC5ytOLjXePwAixD2BLngKHMda7pNmFmWfr0B+5S+Zi3vE YtQO8T4VVRkrZ8MipdaGP64ZpVjMZE2mf7BUInlKAQa2LdKD9nUintOgPn1FLy7v lRWp/Tky3CVHK+yCPt9wjTX2mhQ5YNbmpzVDOdZAzZjs+solrDPCxbDvZeqXdS6O aWh1dIyutrAVWvidHDh0TJZQGuihhfKBRAxHUQDz4fePwiEp//mVs4deuj3kWQ4b Wg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3gr66dC36a51i52TG3vH kn69JS54HcrGsg8E5uXkf7kAO9lrGbM494MWh/HyI5q69xg85/o2WWsD8dQMbu08 ltOnSwZjmmN5sULMd4k9gWRZtE9mYjqHmTYwMt2OGEYODJg37aDBZp1XIM9S8LTF CBIkKr6cObvBeWCRhJcAXbu1fEjsv/AgqdBJCORS3cc6xtmdrg9KMBalrpduHPw+ oDk3IZXMoDJH35G4o2MruJQD8t1T7aAjgM0eQVbtDcCiepu9NPSIcRQISASUc5n8 v6xrgWSldi+9nJlGkM6FoBdjucgjEjwlQ5UgYND5gR4vkUWxAIA6MzUOKBvtqian ABJi1cHXI+0wOPbCwgJaQjporXA/AK/9Yr9vOoHCK7fosRaYTVFjUnJrIr4GndhI /cCK7PAP5bqUGL/vOpqYJ9BYMzEQUKszR7iswrEvg0gTbtVTl0jEArPPIP/xfnj9 /kIgW67Ev+8a4cPATbtMN/plMnwDy9fat9nsWi4OkJbk6P3skAVovaC9mqM1uOjR kCNNq/y8ooHfldKm5OamVpRZZJZs5CY1m+hp8wWakgTURgx3RUIxV2ehDT+Ga0Ip RiydzfV3jDumNZJ7ptlmquACzYIVzVz0VKum7J1/ff9oDBJhpMmOEKpIHvecy7Ip imlZ3qkQJIpjmIP5nc1JuGMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 379727841724713074564006448521578283523327 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-06 19:14:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-05 19:14:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shipafrika.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 905855963659817145993899841255112638638115819870168928068378669747759558918855015806368603221905240043177168060114717684522264426804539924587053880617129549795010302469697613074180868242178531036501520463475763405321222239564179734365737498938201471516172597516944082804988298890824623227775764391426381248666180707500693243010490794392596209868349546264683251536066210683497017549194768741781788127091679848525054848149500960904997550729257546738852969797101277380198827745514763120064902328359998021301891280508941822020692205941638068007298565021062170488065759365003244496388227563822627480633288544872975305680022575301443002169719153218444555066244718547296446498065897349726848103012322646661178807190955731525509962618002536161973701058016962323889149166808411025738064665885806070692374373268224667626675531086618302077173495240173749166662084978638827496824051380328512526226405536080734012978449412023147606086373326658044559985006800726067120183560742639096667353301277824796972520630977009022804303686413814423139306140839155024365470173778107354297728207414509193289139878598955520490655199808026105055345905024161682645113110598263296250874368963884412258026430262544330334538047572819119863717550772764028351927662691 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c92330ad53420edb5fd1897997cc73d97a36f362 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shipafrika.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.shipafrika.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ce069f23b000004030046304402205b14eb3e36fb104ae372c3597b3916dc1dad48477a28f54b77789bbf3784e79c022061f9395ecefc71df2ce96f006b5ee3731a22078c27306f0f0c37ef6761b1ba35007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ce069f43f0000040300483046022100a2a86c3e2638b63f7425e8320afac2f6ef7a1c1cd996b61a001b5eeeecdf02c302210086a78b1f46dc18823b16ede767e3077f6d2f5462d5f5fcbe435a8a53a228e05e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001549ec687c76768c0a48b298e4bc2254757a5aedc8dc81cbac48010c5ebb091d19c79532a92a54fb68968b94301f24363926242140f322099729636d7f1b2d72c0f1a381975ad439f38cca0a0282e72b4e2e35de3f0022c43d812e780a1cc75aee936616659faf407ee52f998b7bc462d40ef13e1555192b67c322a5d6863fae19a558cc644da67fb05422794a0106b62dd283f675229ed3a03e7d452f2eef9515a9fd3932dc25472bec823edf708d35f69a143960d6e6a7354339d640cd98ecfaca25ac33c2c5b0ef65ea97752e8e696875748caeb6b0155af89d1c38744c96501ae8a185f281440c475100f3e1f78fc22129fff995b3875eba3de4590e1b5a