bpkco.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number db:48:2d:ee:5a:90:5c:92 was issued on by GoDaddy.com, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bpkco.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): db:48:2d:ee:5a:90:5c:92Serial Number (int): 15800929794374261906
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: 35:aa:94:d6:c2:7a:94:99:bb:d4:ab:9a:6f:d7:ce:23:89:7a:6f:77
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 14:c2:67:de:c9:18:f8:60:63:af:12:01:e7:6d:2c:69:f3:e5:8e:0f
Fingerprint (sha256): c1:4e:ea:76:ec:8b:90:7b:98:28:55:b4:0f:15:d3:21:99:c8:9e:91:52:c1:18:e8:54:4a:15:f9:f6:0c:d6:94
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-6463.crl
Check the revocation status for certificate bpkco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bpkco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bpkco.com
Other certificates including the domain name bpkco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for bpkco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHeDCCBmCgAwIBAgIJANtILe5akFySMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDcwMTA3MzIxNVoX DTI0MDcwMTA3MzIxNVowFDESMBAGA1UEAxMJYnBrY28uY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAnNPf+ASqc+4veUUphYhA8EXL+hyWi0bDwEJ7 0xlBZ8BpY5KtPxjTBDVaUQu7zu+UyKZCtew9oz0qQbb4E1ohKRguhG1x5/8d4JRA XX9lk27So3X2TKFWV0NL7lSWf93IQRLtKBrxTmqcwyr5mfRwXub6GWNCjJvYK+UH dL7+JIHM/AhcWNQ8g6kWKR5cl7BRHTO7AyUjeBbBUq6u5PPuVzGKoBlWH6fIcpUA Nfvbm8LpfXmi2BnS0BcZd9gPVELw1NpRO1Wz3ud2Ld+NOkvQOLR/Y0VH6XjJzUN9 PQo18ItymJcHOtEu8GHZdd7VYs0p0nd2UNFVM8cUwfrC+CTKFdqV9WqNe+Gdt+l5 LCG4nOB9KummJ7xvUgtSo2SN/Hsr/mtpPVd5wolNeAwU8PvVPDM6ZJnXpXLbzXL4 9mbsW8btdR02tBlBmMT1f4l1gl405vXAcGEKfhCIugHeHx6VHYDgGVnnlh6depm4 RiOYeUzgVoTI4WunlTsyQhdESr0uyN5Yc2yDhzlbzpn59b3yy79KG4JGK8pWVDcr qpd2IIWGKKDSeBqKsxa8RpP7avqJEJVvgrVgZBneW2AlyYsFCD9hbdSRgEO5xm4u bwSqSIUjqGEgivQFOqIF/2vdKX70PIJZC8HCe+GuN3wzh6uNXYRGJw60PusYudD5 8ZOMs2UCAwEAAaOCAyowggMmMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDA4BgNVHR8EMTAvMC2gK6Ap hidodHRwOi8vY3JsLmdvZGFkZHkuY29tL2dkaWcyczEtNjQ2My5jcmwwXQYDVR0g BFYwVDBIBgtghkgBhv1tAQcXATA5MDcGCCsGAQUFBwIBFitodHRwOi8vY2VydGlm aWNhdGVzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECATB2BggrBgEF BQcBAQRqMGgwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmdvZGFkZHkuY29tLzBA BggrBgEFBQcwAoY0aHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBv c2l0b3J5L2dkaWcyLmNydDAfBgNVHSMEGDAWgBRAwr0njsw0gzCiM9f7bLPwtCyA zjAUBgNVHREEDTALgglicGtjby5jb20wHQYDVR0OBBYEFDWqlNbCepSZu9Srmm/X ziOJem93MIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgDuzdBk1dsazsVct520 zROiModGfLzs3sNRSFlGcR+1mwAAAYkQXeNqAAAEAwBHMEUCIQD8RrSpehyeynqG 8oMwJ3O5DqHUK8W+couBY8JAp8qb5wIgbXl2PDs2nhyf8qWwsqU1ERTfPRYVICJN WNNFqdhQr/cAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYkQ XeQ8AAAEAwBHMEUCIQDGPxf36FChUoWmuAWoppIvgyC6weDIka2jicxl4K5tigIg JpEjaoRCBfrjjmuQaCoeKdRzHUpZkL/xE340A2TimDoAdgDatr9rP7W2Ip+bwrtc a+hwkXFsu1GEhTS9pD0wSNf7qwAAAYkQXeSkAAAEAwBHMEUCIQCudYz4HdqCqyC/ RuPOcm9SNgQWp9bwAwxDzHWWbzF+fgIgA/ulUDJm+9d3fFhbf8RzH/EDn6XlmUi4 CjWlrZWx4fQwDQYJKoZIhvcNAQELBQADggEBAEUjVTN4EKkgyeUPsiq4gKxT6fy0 2bH4MtACP5yZ1KwDNmoSOHyx3fVhcE+G8pc2EAZaxffvBGEF8QtJEH+eHRL9Mwkq OdTQl04sTvy0djTj+X68fQC2D1aSuvfUoddphmnFYhJdjbe4Sp1l/NiZG1ZdrfyV TU+8FpghDydFsGLJxtwq/1u1l2Ywplr+K4vRwlfll+VM9ONgaLzH4ECVICPRIXEU uGQnhcpXV0xZFr6b0bnRBEE2STnomyQUN5cU7UulgHjuaiM+7cbXHgjfW7qMKd1O SmcjrNZdhy4uFD6SwFx5TZBs14X2QQDB7lir0NdBY1aFaNj/ObvNjn48DX0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnNPf+ASqc+4veUUphYhA 8EXL+hyWi0bDwEJ70xlBZ8BpY5KtPxjTBDVaUQu7zu+UyKZCtew9oz0qQbb4E1oh KRguhG1x5/8d4JRAXX9lk27So3X2TKFWV0NL7lSWf93IQRLtKBrxTmqcwyr5mfRw Xub6GWNCjJvYK+UHdL7+JIHM/AhcWNQ8g6kWKR5cl7BRHTO7AyUjeBbBUq6u5PPu VzGKoBlWH6fIcpUANfvbm8LpfXmi2BnS0BcZd9gPVELw1NpRO1Wz3ud2Ld+NOkvQ OLR/Y0VH6XjJzUN9PQo18ItymJcHOtEu8GHZdd7VYs0p0nd2UNFVM8cUwfrC+CTK FdqV9WqNe+Gdt+l5LCG4nOB9KummJ7xvUgtSo2SN/Hsr/mtpPVd5wolNeAwU8PvV PDM6ZJnXpXLbzXL49mbsW8btdR02tBlBmMT1f4l1gl405vXAcGEKfhCIugHeHx6V HYDgGVnnlh6depm4RiOYeUzgVoTI4WunlTsyQhdESr0uyN5Yc2yDhzlbzpn59b3y y79KG4JGK8pWVDcrqpd2IIWGKKDSeBqKsxa8RpP7avqJEJVvgrVgZBneW2AlyYsF CD9hbdSRgEO5xm4ubwSqSIUjqGEgivQFOqIF/2vdKX70PIJZC8HCe+GuN3wzh6uN XYRGJw60PusYudD58ZOMs2UCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15800929794374261906 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-01 07:32:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-01 07:32:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bpkco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 639800935900369919975448948911110943655019404485161326007621671419995461700629462627614147509451947508290315493703994384389394122542345547037335018227969472054510748972152383640168204311908479817672149268409998122942044313132902199262898602622920456032016568073567056055489962964836723067959079008253162504660263994358225830577747447506129454020558983306023598661852034267944827439305965511351745257586443482819333020061371522181929901063463094596043318321398903325004747313209382171181650343648176029852521220553183451106178696128285200005086052476476921253439358428092557960087758195745318110419696231135271314653700829309637963342357273462478515954357525460766607924510905574003922307691059600802660295032213439404700715515164484561592695698778657923048794801384126959562799843920690764522556107080862137585059935739643669946977979194469466419550825623150937474253070097563238757719219365225359034991357076304333755852207495092931517260764963390325088803267143903417853628823288613308367605766687658023135379868273659256814793366069790101389778913489052412094602311783711740201057911574526016156531747970649812733282964115801065992082522877681938954400641041425293688066753954108176454772204969129462287765172175286998325552526181 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-6463.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bpkco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 35aa94d6c27a9499bbd4ab9a6fd7ce23897a6f77 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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