cffczion.org
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 2b:80:e4:8c:62:fa:d2:5d was issued on by GoDaddy.com, Inc..
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cffczion.org,OU=Domain Control Validated
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 2b:80:e4:8c:62:fa:d2:5dSerial Number (int): 3134756632257024605
Serial Number lenght: 62 bits, 8 octets
SubjectKeyId: ac:89:50:cb:c3:b9:09:de:72:53:32:92:95:b8:84:ef:00:85:81:f9
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 95:be:45:27:f8:86:da:ef:2c:d2:54:38:bb:54:c3:2a:76:1a:ec:26
Fingerprint (sha256): be:aa:c7:7e:fe:a7:06:cd:54:58:8b:7a:33:0b:2f:9d:12:93:03:69:ff:bd:2c:23:8a:17:01:86:4a:95:fa:7b
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-1651.crl
Check the revocation status for certificate cffczion.org
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cffczion.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cffczion.org
www.cffczion.org
mail.cffczion.org
www.cffczion.org
mail.cffczion.org
Other certificates including the domain name cffczion.org
(limited to 100 certificates)
cffczion.org
shop.cffczion.org
mail.cffczion.org
cffczion.org
shop.cffczion.org
shop.cffczion.org
cffczion.org
mail.cffczion.org
mail.cffczion.org
cffczion.org
cffczion.org
cffczion.org
mail.cffczion.org
cffczion.org
cffczion.org
cffczion.org
cffczion.org
cffczion.org
cffczion.org
cffczion.org
cffczion.org
shop.cffczion.org
mail.cffczion.org
cffczion.org
shop.cffczion.org
shop.cffczion.org
cffczion.org
mail.cffczion.org
mail.cffczion.org
cffczion.org
cffczion.org
cffczion.org
mail.cffczion.org
cffczion.org
cffczion.org
cffczion.org
cffczion.org
cffczion.org
cffczion.org
cffczion.org
cffczion.org
Certificate
The complete raw certificate details for cffczion.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGxDCCBaygAwIBAgIIK4DkjGL60l0wDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMjAwMTE2MTY0NjM4WhcN MjIwMTE2MjAzMzAxWjA6MSEwHwYDVQQLExhEb21haW4gQ29udHJvbCBWYWxpZGF0 ZWQxFTATBgNVBAMTDGNmZmN6aW9uLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM6yXVzKWx9CTxeCd+uh1AU+VYmkQJMMQnwhqu0tw+WCxQQf/RMp hKM+S2OMLtgjIiqcQ/guf6KOOsSyFDBi/ZXPW51v8OdTxmR9udD3GAktvPxmEYoj 9Z+DlT/NvGLB29M2UhdTtIhConqjQahul/F6spBoOvf1tpCfcMmS6D/3nGgNEhJt 4iJFLAlfkI8whKCHjjvwoGgsRvcR4vxdnncPXfDK2pzrTHNDCOJluGtwt5xhUoRb ygXZuuZ198ktsa+Ahq+EhLuTPbMGLuNBY9UQjiesIqCw00gwYMesYs2cZgWBubhY hSY/p3fhJ3a1DE14Sq0cnXPRjcoLcghTuqECAwEAAaOCA1EwggNNMAwGA1UdEwEB /wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQE AwIFoDA4BgNVHR8EMTAvMC2gK6AphidodHRwOi8vY3JsLmdvZGFkZHkuY29tL2dk aWcyczEtMTY1MS5jcmwwXQYDVR0gBFYwVDBIBgtghkgBhv1tAQcXATA5MDcGCCsG AQUFBwIBFitodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL3JlcG9zaXRv cnkvMAgGBmeBDAECATB2BggrBgEFBQcBAQRqMGgwJAYIKwYBBQUHMAGGGGh0dHA6 Ly9vY3NwLmdvZGFkZHkuY29tLzBABggrBgEFBQcwAoY0aHR0cDovL2NlcnRpZmlj YXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5L2dkaWcyLmNydDAfBgNVHSMEGDAW gBRAwr0njsw0gzCiM9f7bLPwtCyAzjA8BgNVHREENTAzggxjZmZjemlvbi5vcmeC EHd3dy5jZmZjemlvbi5vcmeCEW1haWwuY2ZmY3ppb24ub3JnMB0GA1UdDgQWBBSs iVDLw7kJ3nJTMpKVuITvAIWB+TCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYA pLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFvrz/0MAAABAMARzBF AiAS0A4sFFyv7zn4RFcEsrhHnq9iy4QyPKTNca5MWw3QywIhAJ9I1QBQ5Gwuv0b/ BQQUDRYfB9H6+0XEoa+E2odn11Q3AHUA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiD AMR7iXqo/csAAAFvrz/4lgAABAMARjBEAiBw1w/QLmFWHkrIeuH6ruvVuVC0NTgz a/T11SVBNQ9S/gIgUTOHN+oTkmyiONWMnn9nGqNKE48mWImst3iORnFBoB0AdgBW FAaaL9fC7NP14b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAW+vP/pUAAAEAwBHMEUC IQD4oMuNFzvG4k4K5RVxghokvnNn2zkfJU83JX+u3n2RgQIgOOHkGdav6qcglAKM SJFlCS9trwU2FwU6B5ppXlC1YqMwDQYJKoZIhvcNAQELBQADggEBAIsTZ+DIg2w4 G9rQA9bGr/JnvexXMHah3rzL68LG+H9zW7v7la73avL/Gopk87dF1nHw1RG9SYQ6 57BbmKt5ycgciAyzJdeuDUpxz/StBqaxaxmHWiqgbNKvr4Zxr/dNAoChEx2kjfJy Rqf4GmgTeW4qu85PzdO+E750bIsZ075vUe7aUh9w+BOxwKf1GEmjHkzNKGYeOnzB 0eTvD3+XKsClZ9oQpjWeF2uprNpmVlPJyg7gn0K9beOfL/EEKjicemgmCez8/3nr EzSJnbC0XnXygLTJ/aEE/2YjUpbTKGkjRjqmodBqZNcPf59mVxeJpTw7wYuJV6+V DorYlyX9vaE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzrJdXMpbH0JPF4J366HU BT5ViaRAkwxCfCGq7S3D5YLFBB/9EymEoz5LY4wu2CMiKpxD+C5/oo46xLIUMGL9 lc9bnW/w51PGZH250PcYCS28/GYRiiP1n4OVP828YsHb0zZSF1O0iEKieqNBqG6X 8XqykGg69/W2kJ9wyZLoP/ecaA0SEm3iIkUsCV+QjzCEoIeOO/CgaCxG9xHi/F2e dw9d8MranOtMc0MI4mW4a3C3nGFShFvKBdm65nX3yS2xr4CGr4SEu5M9swYu40Fj 1RCOJ6wioLDTSDBgx6xizZxmBYG5uFiFJj+nd+EndrUMTXhKrRydc9GNygtyCFO6 oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3134756632257024605 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-16 16:46:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-16 20:33:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cffczion.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26093045733282321012702936936800709947446472699748627579611219964024544233763746914660210350300919257266699427974313555760034006341872322698108486446482388607787601076225553648718109503869366159652094077218400133302105219379433027687422114960315052295286258481557233748535343301341027154919381738565744144183250819911270141390851145047486013540469527325332581090540214301708668425910914574792903504811535544325269583764592610594295628838005193998845701515987304657053581777685589167055328663955618404106768197986735243344832285411097440059617691259896425242912971889577799520742376868944989992295459035993617842027169 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-1651.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cffczion.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cffczion.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.cffczion.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ac8950cbc3b909de7253329295b884ef008581f9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008b1367e0c8836c381bdad003d6c6aff267bdec573076a1debccbebc2c6f87f735bbbfb95aef76af2ff1a8a64f3b745d671f0d511bd49843ae7b05b98ab79c9c81c880cb325d7ae0d4a71cff4ad06a6b16b19875a2aa06cd2afaf8671aff74d0280a1131da48df27246a7f81a6813796e2abbce4fcdd3be13be746c8b19d3be6f51eeda521f70f813b1c0a7f51849a31e4ccd28661e3a7cc1d1e4ef0f7f972ac0a567da10a6359e176ba9acda665653c9ca0ee09f42bd6de39f2ff1042a389c7a682609ecfcff79eb1334899db0b45e75f280b4c9fda104ff66235296d3286923463aa6a1d06a64d70f7f9f66571789a53c3bc18b8957af950e8ad89725fdbda1