www.haddad.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number a0:8b:f8:eb:3c:c2:ce:5e was issued on by GoDaddy.com, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
Certificate Subject
CN=www.haddad.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): a0:8b:f8:eb:3c:c2:ce:5eSerial Number (int): 11568613757051653726
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: b2:1a:8b:42:81:c3:fb:49:c9:9b:ed:76:e1:01:93:36:a8:da:67:0d
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 5c:33:c9:65:25:09:1e:8f:ec:d6:01:14:cd:de:cb:c6:16:8f:6f:bf
Fingerprint (sha256): c0:ed:f0:fc:19:05:c6:7b:59:25:81:6b:c7:9a:1b:f1:91:d8:60:4d:dd:7c:b6:93:27:9b:b5:82:06:9f:09:c7
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-5815.crl
Check the revocation status for certificate www.haddad.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.haddad.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.haddad.com
haddad.com
haddad.com
Other certificates including the domain name haddad.com
(limited to 100 certificates)
*.haddad.com
*.haddad.com
*.haddad.com
sip.haddad.com
*.haddad.com
*.haddad.com
BYLyncWebExt.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
sip.haddad.com
bylyncwebext.haddad.com
*.haddad.com
*.haddad.com
haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
haddad.com
email.haddad.com
www.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
www.haddad.com
*.haddad.com
*.haddad.com
www.haddad.com
www.haddad.com
sip.haddad.com
www.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
sip.haddad.com
*.haddad.com
*.haddad.com
BYLyncWebExt.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
sip.haddad.com
bylyncwebext.haddad.com
*.haddad.com
*.haddad.com
haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
haddad.com
email.haddad.com
www.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
www.haddad.com
*.haddad.com
*.haddad.com
www.haddad.com
www.haddad.com
sip.haddad.com
www.haddad.com
*.haddad.com
Certificate
The complete raw certificate details for www.haddad.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGjjCCBXagAwIBAgIJAKCL+Os8ws5eMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDUyMzA3MTIxM1oX DTI0MDYyMzA3MTIxM1owGTEXMBUGA1UEAxMOd3d3LmhhZGRhZC5jb20wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDef9ps5OrKGcBOe6/oMsjZgGdN81cO NsQwbpwvtm6MEnapAA9iSXuwFbPhkm3cK45e30VifRPXLbORTpKtn3ds+rlyG8HM dTFyHR57PxS6DhPucRbRIkdg4oBfIOUQwXPoTA8MDtm02/4OPskX8y2kMp0RTB4k P5UlGLCD961ZAACTQkOiYpfBjYldb3AEV58V8i/96vnCgAJbU45vXb2SKwKJD/JR go/Tzc8VSJzdV5EKmqggkN1nbcjBGVztfzk7Rh/6Q9O9gc111VGr7UmC4yAAkRuA nVSUlwe8uDnhMV2LZTyiHI8/7Iomm9SlYRQRsbVP7U32fxWrj35lEHwXAgMBAAGj ggM7MIIDNzAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAOBgNVHQ8BAf8EBAMCBaAwOAYDVR0fBDEwLzAtoCugKYYnaHR0cDovL2Ny bC5nb2RhZGR5LmNvbS9nZGlnMnMxLTU4MTUuY3JsMF0GA1UdIARWMFQwSAYLYIZI AYb9bQEHFwEwOTA3BggrBgEFBQcCARYraHR0cDovL2NlcnRpZmljYXRlcy5nb2Rh ZGR5LmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwdgYIKwYBBQUHAQEEajBoMCQG CCsGAQUFBzABhhhodHRwOi8vb2NzcC5nb2RhZGR5LmNvbS8wQAYIKwYBBQUHMAKG NGh0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS9nZGln Mi5jcnQwHwYDVR0jBBgwFoAUQMK9J47MNIMwojPX+2yz8LQsgM4wJQYDVR0RBB4w HIIOd3d3LmhhZGRhZC5jb22CCmhhZGRhZC5jb20wHQYDVR0OBBYEFLIai0KBw/tJ yZvtduEBkzao2mcNMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgDuzdBk1dsa zsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYhHc4i0AAAEAwBHMEUCIQCoR0sX CITAyLYKwre2SMmVpEbXWw2xju/Ht21pxyRXpgIgOZil3SJxdC0/TYj9Gv8rZlba P6Q6XfAUpaJMtLROdVcAdQBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiE cwAAAYhHc4l+AAAEAwBGMEQCIEHJDSz0kR2tehLcp1W3hVE8YXWZOeQ9+ku8wpM7 gdtaAiAUUGEoq/dr61yFKODTRKFzrQ8BMz7Dm7VLLVvWhm8zzAB3ANq2v2s/tbYi n5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiEdzieAAAAQDAEgwRgIhAPzlrvC5 rcQGJ/lfd48nZE2TKdI2pHbEmC3Y7omWkQFxAiEA+ltkaUqLx0UakoWAGmK4K2Z8 Ks/qq58GnONFJJ7sV5AwDQYJKoZIhvcNAQELBQADggEBABxyImGVsgZtB2UVP2tC Re0652OuRBl9lafhCDuatJ0SwkOgdhjQ3Li1/K/OFssDOsvvp/G1Y1t0Lc57ttlF mDnQX52Nx2e8K2vFLesl2VVTfF8fyg5vqBF6rtle3btgQ6IVrm+N30M7O35qJHtU yGAwMyUmVkAoR0pi4W0WD1mq2NqKDM12IjlAGqKzRd8xyF2bA+/yufHHeOOh0Fc1 qYn4YlO727ECZySKoyQ90P5TMtDEGRde4wBAdKumpf1cNMArL310TuunlEYV+Din fvnWqyWEGiCc2XDaRquK9dYutReT14hrGykhcsAnBJOQ3GdlvfX4rDnCMUAJ7fUN Fpk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3n/abOTqyhnATnuv6DLI 2YBnTfNXDjbEMG6cL7ZujBJ2qQAPYkl7sBWz4ZJt3CuOXt9FYn0T1y2zkU6SrZ93 bPq5chvBzHUxch0eez8Uug4T7nEW0SJHYOKAXyDlEMFz6EwPDA7ZtNv+Dj7JF/Mt pDKdEUweJD+VJRiwg/etWQAAk0JDomKXwY2JXW9wBFefFfIv/er5woACW1OOb129 kisCiQ/yUYKP083PFUic3VeRCpqoIJDdZ23IwRlc7X85O0Yf+kPTvYHNddVRq+1J guMgAJEbgJ1UlJcHvLg54TFdi2U8ohyPP+yKJpvUpWEUEbG1T+1N9n8Vq49+ZRB8 FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11568613757051653726 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-23 07:12:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-23 07:12:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.haddad.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28087950477051107430180681658052296350819308386128206228669498885643806489872053011998836656220055200564971632013531089741697753283563835359857479784036398471929066262262712127604159670183432556057891187587844414875660249032586087180828669232223110944451585718277867689863276649681920169009606804213861110766776244350656686728037780030869194521272432625367873445574296111092832422641632713388867038617139502025471903631663633398300609228101507267292953487376533933389202645721417151103737477676567120764151077920713698892067314469258850286462666269164500075359132989010288692086558836526933525305270294137096094383127 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-5815.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.haddad.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'haddad.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b21a8b4281c3fb49c99bed76e1019336a8da670d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 0168007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000188477388b40000040300473045022100a8474b170884c0c8b60ac2b7b648c995a446d75b0db18eefc7b76d69c72457a602203998a5dd2271742d3f4d88fd1aff2b6656da3fa43a5df014a5a24cb4b44e755700750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d88473000001884773897e0000040300463044022041c90d2cf4911dad7a12dca755b785513c61759939e43dfa4bbcc2933b81db5a022014506128abf76beb5c8528e0d344a173ad0f01333ec39bb54b2d5bd6866f33cc007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab00000188477389e00000040300483046022100fce5aef0b9adc40627f95f778f27644d9329d236a476c4982dd8ee8996910171022100fa5b64694a8bc7451a9285801a62b82b667c2acfeaab9f069ce345249eec5790 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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