nlg.co.nz
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 6c:70:e3:43:5b:e3:47:58:11:0d:31:97:53:b8:9a:c2 was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=nlg.co.nz
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 6c:70:e3:43:5b:e3:47:58:11:0d:31:97:53:b8:9a:c2Serial Number (int): 144142770236631631320260809999856999106
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: a5:f5:c4:cc:a8:38:22:2b:ec:63:eb:6e:71:0d:3e:02:95:cc:27:aa
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): a9:54:04:d5:9b:b6:3d:11:4c:34:e6:49:b8:b0:f6:5d:6f:6a:9c:32
Fingerprint (sha256): bd:3e:30:94:04:c8:19:85:c6:5d:63:da:03:e6:88:7c:8a:c0:53:28:ed:e5:45:dc:38:26:8b:14:fd:cd:87:7d
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/JshntidEm6wCRL Distribution Point: http://crls.pki.goog/gts1p5/WG5wH53YbGk.crl
Check the revocation status for certificate nlg.co.nz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nlg.co.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nlg.co.nz
*.nlg.co.nz
*.nlg.co.nz
Other certificates including the domain name nlg.co.nz
(limited to 100 certificates)
sni.cloudflaressl.com
glaukosnl.nlg.co.nz
rogers-alpha.go.colonynetworks.com
www.klnr.app
www.nlg.co.nz
ssl454038.cloudflaressl.com
ssl454038.cloudflaressl.com
ssl454039.cloudflaressl.com
nlg.co.nz
*.nlg.co.nz
ssl454037.cloudflaressl.com
himalia.nlg.co.nz
sni.cloudflaressl.com
ssl454038.cloudflaressl.com
glaukosnl.nlg.co.nz
*.nlg.co.nz
hybrid.thewarehouse.co.nz
ssl454037.cloudflaressl.com
mta-sts.nlg.co.nz
ssl454039.cloudflaressl.com
jupiter.nlg.co.nz
ssl454037.cloudflaressl.com
www.nlg.co.nz
ssl454039.cloudflaressl.com
www.ptitcoinsavonnerie.fr
ssl454039.cloudflaressl.com
sni.cloudflaressl.com
hybrid.thewarehouse.co.nz
island-llama.wiselysoftware.com
hybrid.thewarehouse.co.nz
ganymedenl.nlg.co.nz
neptune.nlg.co.nz
corvus.nlg.co.nz
hybrid.thewarehouse.co.nz
ganymedenl.nlg.co.nz
wwwqa.nlg.co.nz
neptune.nlg.co.nz
himalia.nlg.co.nz
ssl454039.cloudflaressl.com
ssl454038.cloudflaressl.com
jupiter.nlg.co.nz
sni.cloudflaressl.com
corvus.nlg.co.nz
ssl454039.cloudflaressl.com
hybrid.thewarehouse.co.nz
sni.cloudflaressl.com
nlg.co.nz
wwwdev.nlg.co.nz
sni.cloudflaressl.com
hybrid.thewarehouse.co.nz
www.nlg.co.nz
ssl454037.cloudflaressl.com
ganymedenl.nlg.co.nz
glaukosnl.nlg.co.nz
ssl454039.cloudflaressl.com
glaukosnl.nlg.co.nz
rogers-alpha.go.colonynetworks.com
www.klnr.app
www.nlg.co.nz
ssl454038.cloudflaressl.com
ssl454038.cloudflaressl.com
ssl454039.cloudflaressl.com
nlg.co.nz
*.nlg.co.nz
ssl454037.cloudflaressl.com
himalia.nlg.co.nz
sni.cloudflaressl.com
ssl454038.cloudflaressl.com
glaukosnl.nlg.co.nz
*.nlg.co.nz
hybrid.thewarehouse.co.nz
ssl454037.cloudflaressl.com
mta-sts.nlg.co.nz
ssl454039.cloudflaressl.com
jupiter.nlg.co.nz
ssl454037.cloudflaressl.com
www.nlg.co.nz
ssl454039.cloudflaressl.com
www.ptitcoinsavonnerie.fr
ssl454039.cloudflaressl.com
sni.cloudflaressl.com
hybrid.thewarehouse.co.nz
island-llama.wiselysoftware.com
hybrid.thewarehouse.co.nz
ganymedenl.nlg.co.nz
neptune.nlg.co.nz
corvus.nlg.co.nz
hybrid.thewarehouse.co.nz
ganymedenl.nlg.co.nz
wwwqa.nlg.co.nz
neptune.nlg.co.nz
himalia.nlg.co.nz
ssl454039.cloudflaressl.com
ssl454038.cloudflaressl.com
jupiter.nlg.co.nz
sni.cloudflaressl.com
corvus.nlg.co.nz
ssl454039.cloudflaressl.com
hybrid.thewarehouse.co.nz
sni.cloudflaressl.com
nlg.co.nz
wwwdev.nlg.co.nz
sni.cloudflaressl.com
hybrid.thewarehouse.co.nz
www.nlg.co.nz
ssl454037.cloudflaressl.com
ganymedenl.nlg.co.nz
glaukosnl.nlg.co.nz
ssl454039.cloudflaressl.com
Certificate
The complete raw certificate details for nlg.co.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIQbHDjQ1vjR1gRDTGXU7iawjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDA1MjYwMDM3NDVaFw0yNDA4MjQw MDM3NDRaMBQxEjAQBgNVBAMTCW5sZy5jby5uejCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJ66bKse+7kNYYqs4RFnEOyWjJ5fM9jvIC4Y1ObzymnKS8Ju 1aKj2MPv8frWydt+qOHJY8J/0rUrpw2sUp9xaPAe/+Nz7Zbo4ESbJM8TKnFdy176 Jpa6vQoZgzK/72JvHICk9BT8nBZXU0u1sXr+Ggy6uUkXcePwWip5/AeHrKkAAfQI koicKP5ZdymlPSi/b0Ze57FTQYBLaSsSt8q1X4woW1gA2v95CSSIzg1Cr54742sp furr6j2lc3p9M6L7grRj2dww9NCDM8h+4aitAhB9WoKPBygL+koZSkyiRmYSwKYw VGS5dflR1rnaddI+4IMFKwFRCdF02Qyw8KkpyakCAwEAAaOCAn0wggJ5MA4GA1Ud DwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBSl9cTMqDgiK+xj625xDT4ClcwnqjAfBgNVHSMEGDAWgBTV/J4N3x7K 3QiXl24rxV/FK/XsuDB4BggrBgEFBQcBAQRsMGowNQYIKwYBBQUHMAGGKWh0dHA6 Ly9vY3NwLnBraS5nb29nL3MvZ3RzMXA1L0pzaG50aWRFbTZ3MDEGCCsGAQUFBzAC hiVodHRwOi8vcGtpLmdvb2cvcmVwby9jZXJ0cy9ndHMxcDUuZGVyMCEGA1UdEQQa MBiCCW5sZy5jby5ueoILKi5ubGcuY28ubnowIQYDVR0gBBowGDAIBgZngQwBAgEw DAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Jscy5wa2ku Z29vZy9ndHMxcDUvV0c1d0g1M1liR2suY3JsMIIBBAYKKwYBBAHWeQIEAgSB9QSB 8gDwAHUAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGPsovwSQAA BAMARjBEAiA+6EFp4gfu2vrIiAjh7CxzzZeKc6IJVKTEU9aR8AyscAIgNzqgIImv 1lTuoBoywCzcWlMylE6B14nJeUcPxzqtSJIAdwB2/4g/Crb7lVHCYcz1h7o0tKTN uyncaEIKn+ZnTFo6dAAAAY+yi/JRAAAEAwBIMEYCIQDLCLdyr8lBkyJJ058FOsQL rGP2eg5HjtAd3Y4t1TGeIAIhAJEOLFZHAZt76vCKBhU9bhf/jw4+s6YrZ6WTn/0I H28IMA0GCSqGSIb3DQEBCwUAA4IBAQB06ABGDhE/RCJbUvZsceKxxWypoA7M9+nX X4jUkaamkd/nv2zLWGllmSTzAZUbElkVxoeW+fTnTN21+M6fnlHkfvsVBNee+XPy 8eCw8I/C+33aSarhAAOfTqMp0wCeUZk5ZNR6K00EY5i0MyyJYlynaOEzGbQfpFYm MYybYodkIBesxdPympgqDnMe52h8ROlAs63YzxME10ZC95Qh5lTXh0mCJs5CUnee 7s7/UF8UQSuhxHFHCWaClO5SS95zyHlEPMwCRLV3ypd/X3VXgUvx5shVYmq75cY1 vHjh4LNzxjBbvaeQ/rcWAp5UCiI2+a5RQSWfq5jkh2tMY9QXxLAe -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrpsqx77uQ1hiqzhEWcQ 7JaMnl8z2O8gLhjU5vPKacpLwm7VoqPYw+/x+tbJ236o4cljwn/StSunDaxSn3Fo 8B7/43PtlujgRJskzxMqcV3LXvomlrq9ChmDMr/vYm8cgKT0FPycFldTS7Wxev4a DLq5SRdx4/BaKnn8B4esqQAB9AiSiJwo/ll3KaU9KL9vRl7nsVNBgEtpKxK3yrVf jChbWADa/3kJJIjODUKvnjvjayl+6uvqPaVzen0zovuCtGPZ3DD00IMzyH7hqK0C EH1ago8HKAv6ShlKTKJGZhLApjBUZLl1+VHWudp10j7ggwUrAVEJ0XTZDLDwqSnJ qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 144142770236631631320260809999856999106 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-26 00:37:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-24 00:37:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nlg.co.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20037581524986449372889917308778970045989157386734282717331537151050084004687737922659201085335595944386161724005995325262682735126716363977211216214544255523310765620200583721812223013696911351047569418971588771344253254320649746710542322666217412829135835447297324328742255944583566018804623673167402913832014002701980135216699573249566912833218142586644314478833355338810928317665298825187080622341141374430763760340177897080805939929929182265773576375557614961450269213901559983393000113569024804474764260355727358193089567229491501883013538707506701362427890430963229371263397580856247731703302617329695151737257 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a5f5c4cca838222bec63eb6e710d3e0295cc27aa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/JshntidEm6w' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nlg.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.nlg.co.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/WG5wH53YbGk.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018fb28bf049000004030046304402203ee84169e207eedafac88808e1ec2c73cd978a73a20954a4c453d691f00cac700220373aa02089afd654eea01a32c02cdc5a5332944e81d789c979470fc73aad489200770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018fb28bf2510000040300483046022100cb08b772afc941932249d39f053ac40bac63f67a0e478ed01ddd8e2dd5319e20022100910e2c5647019b7beaf08a06153d6e17ff8f0e3eb3a62b67a5939ffd081f6f08 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0074e800460e113f44225b52f66c71e2b1c56ca9a00eccf7e9d75f88d491a6a691dfe7bf6ccb5869659924f301951b125915c68796f9f4e74cddb5f8ce9f9e51e47efb1504d79ef973f2f1e0b0f08fc2fb7dda49aae100039f4ea329d3009e51993964d47a2b4d046398b4332c89625ca768e13319b41fa45626318c9b6287642017acc5d3f29a982a0e731ee7687c44e940b3add8cf1304d74642f79421e654d787498226ce4252779eeeceff505f14412ba1c4714709668294ee524bde73c879443ccc0244b577ca977f5f7557814bf1e6c855626abbe5c635bc78e1e0b373c6305bbda790feb716029e540a2236f9ae5141259fab98e4876b4c63d417c4b01e