geoescape.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 84:54:18:6f:52:cd:55:d8 was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=geoescape.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): 84:54:18:6f:52:cd:55:d8Serial Number (int): 9535273177459807704
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: 30:1a:7b:89:0d:c6:9b:88:02:f9:f3:af:1b:b4:fb:8a:9f:66:f7:e4
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 94:0b:aa:a4:66:7e:39:b3:63:a9:44:90:16:d4:db:2e:af:b0:e7:13
Fingerprint (sha256): be:9a:1c:d0:aa:2e:d3:3f:50:a9:4a:a8:fd:35:6b:d4:c4:1a:c9:f5:10:7a:96:e4:30:75:39:1b:bd:15:20:e8
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-7229.crl
Check the revocation status for certificate geoescape.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for geoescape.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
geoescape.com
Other certificates including the domain name geoescape.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for geoescape.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHgTCCBmmgAwIBAgIJAIRUGG9SzVXYMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDcyNDA5NTk0NloX DTI0MDcyNDA5NTk0NlowGDEWMBQGA1UEAxMNZ2VvZXNjYXBlLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAL/CfI/OlKLz8gNpN4nsabMcXhbtHGYa LoUNKKaQLqRvw3vRW91ZuSWn9DLgzsx++89rUCXC919WVxn/CQGpNTk2NzoUkwRc YB/nh9VV43ICTQzxv8jesiOv6VuOorqNIEOvr16l06Uypam8xSXnrP8BPEapuhWR Jbx77WUljBbtAI6foCkYhJnoO/TUcPmhY+coIThpGk0RUMjSgG58T7LMaU7OHFNE LRLoS3/ZkSwNx2keOh+gbk6qtLU/0duXS6jGyqbV3HKhPmeslPExTKGIrkkzoF8z dxR61UkrocDeFuR8tWOz5dgX4FYj60hE76DL9Xp1oylwy1wGfywhwG8DcZQ7py3s 83IHIVD7gYmSmyZkKrqa8NY0bkfRtd9CG9Z27ApH8aCzLJYJxNkWaoLrMVYXasCc MEqqLRO/jHnjAAw/e2Yrp9A68Mg9+gADVoFR6IrdeN4VhARcOETWPKSR6ClyuXwr 3ykN3SCxRkZ9wHf1KFL460+aUOMUkVVdw0YBECVwpG3TPuPesHmAXUUHUtp+IlLR WxYyEebUQAkHpuRIN/7c08HTQ0KAbrXF0fTVMe8zGpJwKp3dGYMbc5MXcvM4LWN+ BUUkVCt81UO6IRhtxMy7TpPaZSpqa1s/X5hKH8cJbOl8hxgcOH2Ej4LmobSLF+Up mU5Yzo/C93XhAgMBAAGjggMvMIIDKzAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAOBgNVHQ8BAf8EBAMCBaAwOAYDVR0fBDEwLzAt oCugKYYnaHR0cDovL2NybC5nb2RhZGR5LmNvbS9nZGlnMnMxLTcyMjkuY3JsMF0G A1UdIARWMFQwSAYLYIZIAYb9bQEHFwEwOTA3BggrBgEFBQcCARYraHR0cDovL2Nl cnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwdgYI KwYBBQUHAQEEajBoMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5nb2RhZGR5LmNv bS8wQAYIKwYBBQUHMAKGNGh0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20v cmVwb3NpdG9yeS9nZGlnMi5jcnQwHwYDVR0jBBgwFoAUQMK9J47MNIMwojPX+2yz 8LQsgM4wGAYDVR0RBBEwD4INZ2VvZXNjYXBlLmNvbTAdBgNVHQ4EFgQUMBp7iQ3G m4gC+fOvG7T7ip9m9+QwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB3AO7N0GTV 2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABiYdXNosAAAQDAEgwRgIhAMMd bnGK25M5kVGQBj62/z6PrSnd19MF1RWHFafthSdGAiEAxDgYmUZtcdzZ+gNETizI DzPa+/Udz2ODCAqSgpugGvQAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+r OdiEcwAAAYmHVzdxAAAEAwBHMEUCIEXZrZI0y4+VMdx0jLiOgTabHcc7yEMz7of4 ZeCpAPziAiEAgPi85jdAJWcvaRHoxQM0dAZ+Y/ZNGDW1M3NV993GO/UAdgDatr9r P7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYmHVzfOAAAEAwBHMEUCIQCb gS/AIL7SDwR278azfVisTgPw+Zgl+erWdc9Jzpx2SAIgKr+L6DPKgXstJ3GPdGSl MPjGvV0/vYMS90kgvshFXjAwDQYJKoZIhvcNAQELBQADggEBAEgTF40Cu77G+NmH R70jSqcrxskmyL4k58hnrlJNf2GQ20Gk7VH4KH8TS8+y6pWgT8p85XUq3ydun+s/ Gb7gsrNRQDSlRi11fUYWKalywLXai/DZ0MU8/OfHCk3pu+DHCMmH/ApxWz0DL8tO wYNuHjEKrqJGcatn/4h568Nd72wvqAG83wLH778+0m2ipOsA+BhneVaHhv/YqzNs UnuDOWUS5LiBvFyLZqyhUiodrc7m4Az8dl078Z3iVM3Wz9LlqEkIwzE+lZl40o4V Ac0NEHlHCZZYHpKo40H2glmwkWaSgeVtDa01z4NNkSEHruRvksaZyW41PYKyPIux IkeVz+k= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv8J8j86UovPyA2k3iexp sxxeFu0cZhouhQ0oppAupG/De9Fb3Vm5Jaf0MuDOzH77z2tQJcL3X1ZXGf8JAak1 OTY3OhSTBFxgH+eH1VXjcgJNDPG/yN6yI6/pW46iuo0gQ6+vXqXTpTKlqbzFJees /wE8Rqm6FZElvHvtZSWMFu0Ajp+gKRiEmeg79NRw+aFj5yghOGkaTRFQyNKAbnxP ssxpTs4cU0QtEuhLf9mRLA3HaR46H6BuTqq0tT/R25dLqMbKptXccqE+Z6yU8TFM oYiuSTOgXzN3FHrVSSuhwN4W5Hy1Y7Pl2BfgViPrSETvoMv1enWjKXDLXAZ/LCHA bwNxlDunLezzcgchUPuBiZKbJmQquprw1jRuR9G130Ib1nbsCkfxoLMslgnE2RZq gusxVhdqwJwwSqotE7+MeeMADD97Ziun0DrwyD36AANWgVHoit143hWEBFw4RNY8 pJHoKXK5fCvfKQ3dILFGRn3Ad/UoUvjrT5pQ4xSRVV3DRgEQJXCkbdM+496weYBd RQdS2n4iUtFbFjIR5tRACQem5Eg3/tzTwdNDQoButcXR9NUx7zMaknAqnd0Zgxtz kxdy8zgtY34FRSRUK3zVQ7ohGG3EzLtOk9plKmprWz9fmEofxwls6XyHGBw4fYSP guahtIsX5SmZTljOj8L3deECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9535273177459807704 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-24 09:59:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-24 09:59:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'geoescape.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 782311376284172076548342898003148707117495182178815841077874484433858064869649828320135879377529788539754606657718152394311341551536891426335193777384374638733908685830955206802508373341815836357442447683033375059602824828501214523568162273328813723564513716902449722063079360978286287338833215459277589137923281465499014725819661267009846059913745865970415310970529198683000739366559777214137706759483815937249252155209114286735704642278783517140506476790500619439143525189339987426505719683432323011301318173824437204819983751278511546949309208547106521095312987197367944072101031269735565818588482848625990210153311511054061141017465897568260747702021260339778487730149471800013563567184686187067555732564859155286117313385684974771120904835236845916402233992743270663679705564079748114138725692587377293313902413455453213331333884289418757188672506485037740166511126030116255474551360591810753627016400817984960721379543050046568292161493015741641677817652686377886295980820605616055822538546841978445862832972781313862665312313258695520595979451678629622712042378576224467242952452931016818566236358485912317018071689486594290976307240957778192304968579117487691308944638742390862646102751170795138779865365804925670593788343777 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-7229.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geoescape.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 301a7b890dc69b8802f9f3af1bb4fb8a9f66f7e4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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