*.ghn.vn
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 3e:23:9e:e4:b3:81:59:ce was issued on by GoDaddy.com, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
Certificate Subject
CN=*.ghn.vn
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 3e:23:9e:e4:b3:81:59:ceSerial Number (int): 4477597159637735886
Serial Number lenght: 62 bits, 8 octets
SubjectKeyId: 0f:c4:73:45:2f:f0:72:b7:6d:db:c1:36:3d:f8:9b:d4:8c:be:f3:c1
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 83:e2:37:bd:d0:a9:79:f3:f0:b7:dd:21:f1:56:37:97:16:0b:31:d8
Fingerprint (sha256): c0:8d:3c:32:16:6c:68:b6:07:8c:8d:b9:b9:d0:04:08:39:1f:3f:18:c5:04:51:3c:ac:3c:57:2c:66:ab:76:e0
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-5496.crl
Check the revocation status for certificate *.ghn.vn
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.ghn.vn
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.ghn.vn
ghn.vn
ghn.vn
Other certificates including the domain name ghn.vn
(limited to 100 certificates)
ghn.vn
ghn.vn
phukien.ghn.vn
ghn.vn
ghn.vn
ghn.vn
ghn.vn
ghn.vn
ghn.vn
smartlog.ghn.vn
giaohangnhanh.vn
*.ghn.vn
*.ghn.vn
*.ghn.vn
*.ghn.vn
ontime.ghn.vn
www.ghn.vn
ghn.vn
smartlog.ghn.vn
webadmin.ghn.vn
ghn.vn
smartlog.ghn.vn
ghn.vn
smartlog.ghn.vn
ghn.vn
ghn.vn
ghn.vn
smartlog.ghn.vn
ghn.vn
*.ghn.vn
*.ghn.vn
smartlog.ghn.vn
ghn.vn
phucloi.ghn.vn
*.ghn.vn
smartlog.ghn.vn
ghn.vn
tgh.ghn.vn
ghn.vn
ghn.vn
tgh.ghn.vn
tgh.ghn.vn
ghn.vn
ghn.vn
phukien.ghn.vn
ghn.vn
ghn.vn
ghn.vn
ghn.vn
ghn.vn
ghn.vn
smartlog.ghn.vn
giaohangnhanh.vn
*.ghn.vn
*.ghn.vn
*.ghn.vn
*.ghn.vn
ontime.ghn.vn
www.ghn.vn
ghn.vn
smartlog.ghn.vn
webadmin.ghn.vn
ghn.vn
smartlog.ghn.vn
ghn.vn
smartlog.ghn.vn
ghn.vn
ghn.vn
ghn.vn
smartlog.ghn.vn
ghn.vn
*.ghn.vn
*.ghn.vn
smartlog.ghn.vn
ghn.vn
phucloi.ghn.vn
*.ghn.vn
smartlog.ghn.vn
ghn.vn
tgh.ghn.vn
ghn.vn
ghn.vn
tgh.ghn.vn
tgh.ghn.vn
ghn.vn
Certificate
The complete raw certificate details for *.ghn.vn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGfDCCBWSgAwIBAgIIPiOe5LOBWc4wDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMjMwNDE3MDMzNDQ0WhcN MjQwNTE4MDMzNDQ0WjATMREwDwYDVQQDDAgqLmdobi52bjCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAI8yM2VnDSlj1M2p2tJwA24UBsUSyZJfJw5ADACB XdjLyNAPjACFHI8gqxVny4QCmiS7gkVmGOaoH0GHbaPEeKm/wFKzutFS13iDtHdy 7cPQoBdMDyor4bxhCj59LgujUPZ0GiH7FYYR5Tz8cdxhJV7Coe7JyRRLGcwG5Mce R0qL6xzkU0gtXgIRqY0H11JnwRQK2rZ9JRlaJZkjJy3+/Sqq5opzVib1Rx5AM4GM F1ydvireXGt9IBLAtcQ81AGaws4tuuo81z+J++mCyK8F4GD1qMeqkb85XBQakqT1 ZBG5mt5SJQQQYCXvJhiFgaGGFS3aipqbz8Q5ca1HLRKMCbsCAwEAAaOCAzAwggMs MAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4G A1UdDwEB/wQEAwIFoDA4BgNVHR8EMTAvMC2gK6AphidodHRwOi8vY3JsLmdvZGFk ZHkuY29tL2dkaWcyczEtNTQ5Ni5jcmwwXQYDVR0gBFYwVDBIBgtghkgBhv1tAQcX ATA5MDcGCCsGAQUFBwIBFitodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29t L3JlcG9zaXRvcnkvMAgGBmeBDAECATB2BggrBgEFBQcBAQRqMGgwJAYIKwYBBQUH MAGGGGh0dHA6Ly9vY3NwLmdvZGFkZHkuY29tLzBABggrBgEFBQcwAoY0aHR0cDov L2NlcnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5L2dkaWcyLmNydDAf BgNVHSMEGDAWgBRAwr0njsw0gzCiM9f7bLPwtCyAzjAbBgNVHREEFDASgggqLmdo bi52boIGZ2huLnZuMB0GA1UdDgQWBBQPxHNFL/Byt23bwTY9+JvUjL7zwTCCAX0G CisGAQQB1nkCBAIEggFtBIIBaQFnAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7D UUhZRnEftZsAAAGHjUd8BgAABAMASDBGAiEA0/XlhhL0A5vXYW8geYiqG9HEleX5 z+NDZyEuTp4QHY4CIQDtCCWd8e6BiFHkYyFc0Sa4VJoX4IAj+LEl1Id5jTGaQwB1 AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABh41HfNAAAAQDAEYw RAIgZhvn7sTluvQVFT7WAt04Kzz/da8jJWf21Du+6oYL0UECIDnmj3K2BSNz0E66 vA2nydkhC2P4fR4e4KGT7LuqHAe0AHUA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0 vaQ9MEjX+6sAAAGHjUd9QwAABAMARjBEAiBvek7jN4htf/wPV6/w4+HDMyrbRU5q RjPMXZEFmw8hBwIgUbvWjjUGL8qdi27p3LD9ow6306XgSCVQjWnqkvPJAQEwDQYJ KoZIhvcNAQELBQADggEBAB57o7gYJgF4ReAg2oycs1pod9uY+SnNF9xS2LLnpOZu wtQlVp5AIegAaB4/prcRRKF+ciCYfLJ1t2aYhnvZxYeivyRk2sGRzbffvAUGQmqF 8aSSXk4BvLTe5AHKiVCiY/EbJ02et/tFY/iSmnSZWzAo4OkNVP/rcSJeXxuLI6te TqIFcoILfzTjFZf+QsrQkUzeyK2fun0Yc+RU7+1bgg0uooNi8St/ibXRUO6D+LfC 72AI7SMz4hv1GHSqG6425YR6FHVnO7BdgwMf1JM5d1PEgOSMUfq7AnfjCcS1JZQU vcVBH0CfC6sU26JpFCNIexhlHWHZbHJt8d673fXb9Zo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjzIzZWcNKWPUzana0nAD bhQGxRLJkl8nDkAMAIFd2MvI0A+MAIUcjyCrFWfLhAKaJLuCRWYY5qgfQYdto8R4 qb/AUrO60VLXeIO0d3Ltw9CgF0wPKivhvGEKPn0uC6NQ9nQaIfsVhhHlPPxx3GEl XsKh7snJFEsZzAbkxx5HSovrHORTSC1eAhGpjQfXUmfBFAratn0lGVolmSMnLf79 KqrminNWJvVHHkAzgYwXXJ2+Kt5ca30gEsC1xDzUAZrCzi266jzXP4n76YLIrwXg YPWox6qRvzlcFBqSpPVkEbma3lIlBBBgJe8mGIWBoYYVLdqKmpvPxDlxrUctEowJ uwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4477597159637735886 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-17 03:34:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-18 03:34:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.ghn.vn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18076832530504311555030906607197932196447055066297665816525081011093189367742701375507694491011357725655433529513483307505903549628751640115864755917304465058997478264562023493322037294496237168289593422551453048864162441668754296979447942734858073303954737910160915247256936745829789453196934495092569039161195474828607197736856765365594641204427631942730344594927896755585091949882180310221432204102843425577636769474507734835582700943529316136555155536670475000371728920586287529307657317274166010665308084908417965033862683661493432992163822813176188690084776950071822857097867369983344149368348359514778560629179 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-5496.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ghn.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ghn.vn' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0fc473452ff072b76ddbc1363df89bd48cbef3c1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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