blog.gtn.com
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 79:5a:85:92:a3:e4:11:58:0e:28:11:35:ab:74:51:b0 was issued on by Google Trust Services LLC.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=blog.gtn.com
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 79:5a:85:92:a3:e4:11:58:0e:28:11:35:ab:74:51:b0Serial Number (int): 161306603385753741455003225767577670064
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 9b:39:f2:fc:4b:5e:09:f7:4f:8e:37:95:03:d9:91:85:32:16:38:15
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 89:4f:b5:54:96:66:ea:f7:0f:3a:30:97:ce:e8:ab:52:7c:ee:97:b1
Fingerprint (sha256): c6:1e:aa:b5:65:dc:9e:10:da:0e:e6:0b:4d:5d:ee:f5:ca:3e:ed:aa:ec:c1:3d:9e:a3:ac:71:22:1b:d4:f4:48
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/jm6VXbqnfY4CRL Distribution Point: http://crls.pki.goog/gts1p5/e8HO1MFk_io.crl
Check the revocation status for certificate blog.gtn.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for blog.gtn.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
blog.gtn.com
Other certificates including the domain name gtn.com
(limited to 100 certificates)
secure0126.hubspot.com
secure0127.hubspot.com
*.gtn.com
secure0127.hubspot.com
secure0126.hubspot.com
blog.gtn.com
info.gtn.com
secure0127.hubspot.com
secure0127.hubspot.com
gtn.com
secure0126.hubspot.com
secure0126.hubspot.com
info.gtn.com
gtn.com
*.gtn.com
www.gtn.com
www.gtn.com
blog.gtn.com
secure0127.hubspot.com
gtn.com
secure0126.hubspot.com
gtn.com
secure0127.hubspot.com
secure0127.hubspot.com
gtn.com
secure0126.hubspot.com
blog.gtn.com
*.gtn.com
blog.gtn.com
blog.gtn.com
www.gtn.com
secure0126.hubspot.com
gtn.com
gtn.com
secure0127.hubspot.com
gtn.com
gtn.com
*.gtn.com
www.gtn.com
secure0127.hubspot.com
www.gtn.com
secure0126.hubspot.com
blog.gtn.com
blog.gtn.com
secure0127.hubspot.com
servicedesk.gtn.com
secure0126.hubspot.com
gtn.com
gtn.com
gtn.com
secure0127.hubspot.com
secure0127.hubspot.com
*.gtn.com
info.gtn.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0126.hubspot.com
secure0126.hubspot.com
info.gtn.com
gtn.com
blog.gtn.com
*.gtn.com
gtn.com
info.gtn.com
blog.gtn.com
secure0126.hubspot.com
gtn.com
secure0127.hubspot.com
secure0126.hubspot.com
blog.gtn.com
gtn.com
secure0127.hubspot.com
www.gtn.com
info.gtn.com
info.gtn.com
secure0126.hubspot.com
gtn.com
secure0126.hubspot.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0126.hubspot.com
secure0127.hubspot.com
info.gtn.com
secure0127.hubspot.com
*.gtn.com
secure0127.hubspot.com
secure0126.hubspot.com
blog.gtn.com
info.gtn.com
secure0127.hubspot.com
secure0127.hubspot.com
gtn.com
secure0126.hubspot.com
secure0126.hubspot.com
info.gtn.com
gtn.com
*.gtn.com
www.gtn.com
www.gtn.com
blog.gtn.com
secure0127.hubspot.com
gtn.com
secure0126.hubspot.com
gtn.com
secure0127.hubspot.com
secure0127.hubspot.com
gtn.com
secure0126.hubspot.com
blog.gtn.com
*.gtn.com
blog.gtn.com
blog.gtn.com
www.gtn.com
secure0126.hubspot.com
gtn.com
gtn.com
secure0127.hubspot.com
gtn.com
gtn.com
*.gtn.com
www.gtn.com
secure0127.hubspot.com
www.gtn.com
secure0126.hubspot.com
blog.gtn.com
blog.gtn.com
secure0127.hubspot.com
servicedesk.gtn.com
secure0126.hubspot.com
gtn.com
gtn.com
gtn.com
secure0127.hubspot.com
secure0127.hubspot.com
*.gtn.com
info.gtn.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0126.hubspot.com
secure0126.hubspot.com
info.gtn.com
gtn.com
blog.gtn.com
*.gtn.com
gtn.com
info.gtn.com
blog.gtn.com
secure0126.hubspot.com
gtn.com
secure0127.hubspot.com
secure0126.hubspot.com
blog.gtn.com
gtn.com
secure0127.hubspot.com
www.gtn.com
info.gtn.com
info.gtn.com
secure0126.hubspot.com
gtn.com
secure0126.hubspot.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0127.hubspot.com
secure0126.hubspot.com
secure0127.hubspot.com
info.gtn.com
Certificate
The complete raw certificate details for blog.gtn.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIQeVqFkqPkEVgOKBE1q3RRsDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDAzMDMxMzU3MjBaFw0yNDA2MDEx MzU3MTlaMBcxFTATBgNVBAMTDGJsb2cuZ3RuLmNvbTCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAMumd2gloDbaLKT8zq8MZxbVOpD8QzJoy8K67lL3RPyO 8fP2++TSue7f5EwSGShcsqwkMkOuRX5r0xDl5vOLVC7JM8FFjkkeI4a2iTBm2hAO 5gpjnamS0aWSAwnoKM3L6v0T1zURntgkwf9ZMBKMhQDEL2U32ZAQy6WaHkKzkGiN DlYw3kGeH8tOM1zu5ApRtS+nsCsPKRXkt7IMT1KmDOIl8IRsIzZtd+sJzJFaYDNq aLVob+gd/gJ7MgX02e2HevEZc3hVUpC5UydjSZ2Z6r7vQ9xfjmArFJNleuLXnzqd 1dg+A5GuDtnGGapYJJ3H1XTV612UXajdqKj3DV7p6CMCAwEAAaOCAnMwggJvMA4G A1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBSbOfL8S14J90+ON5UD2ZGFMhY4FTAfBgNVHSMEGDAWgBTV/J4N 3x7K3QiXl24rxV/FK/XsuDB4BggrBgEFBQcBAQRsMGowNQYIKwYBBQUHMAGGKWh0 dHA6Ly9vY3NwLnBraS5nb29nL3MvZ3RzMXA1L2ptNlZYYnFuZlk0MDEGCCsGAQUF BzAChiVodHRwOi8vcGtpLmdvb2cvcmVwby9jZXJ0cy9ndHMxcDUuZGVyMBcGA1Ud EQQQMA6CDGJsb2cuZ3RuLmNvbTAhBgNVHSAEGjAYMAgGBmeBDAECATAMBgorBgEE AdZ5AgUDMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmxzLnBraS5nb29nL2d0 czFwNS9lOEhPMU1Ga19pby5jcmwwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBI sONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY4E0ch6AAAEAwBHMEUC IFmBq1AQC18wDRasBotBsZzhodzEa8svl221KVBvLnNMAiEAq6wsVzmSeMmRhytM b7rKQ4mbFohIv/gQaX9dCBAek8oAdgDuzdBk1dsazsVct520zROiModGfLzs3sNR SFlGcR+1mwAAAY4E0chRAAAEAwBHMEUCIBBqFruxYXWIBjid4H3J769RRFRupKzd zVkmFrjIXDg4AiEA1PIbEHDpHmoajeKoORf3jQT3AN/OAPRt/tXbuK1SWpIwDQYJ KoZIhvcNAQELBQADggEBAJblbagr4a5zNPWgfgEvqMrlns8VJNmpUpf8YqhaswBg KpxHwvrypchtAcYpVb6o0nTP5O4t0IGuXjDPv6IybrJydR83Jwb8gOPx66ZTZj7u ebHr9RXHIjXcJCDDW5D02rJnMEOlFIDBvy4ibb4vpQsVHDm9VDiXS/rGXDbQMMhU 0ne8Ud5F1yL/gI9x4GQHcRf+HqqE5Qqktgm2CO5VxDjxmAW+LQz8S5Nu0izhSRi0 tmaE5177CwSd/bvxb3GccSqyL7ea+FXEjLhTkkzKUSsUt8yc+HSS1aaUw/1GBY93 e/Ud0S48uHj9maQjppn91shWAHMhScFtd1lfF0/Yi4M= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6Z3aCWgNtospPzOrwxn FtU6kPxDMmjLwrruUvdE/I7x8/b75NK57t/kTBIZKFyyrCQyQ65FfmvTEOXm84tU LskzwUWOSR4jhraJMGbaEA7mCmOdqZLRpZIDCegozcvq/RPXNRGe2CTB/1kwEoyF AMQvZTfZkBDLpZoeQrOQaI0OVjDeQZ4fy04zXO7kClG1L6ewKw8pFeS3sgxPUqYM 4iXwhGwjNm136wnMkVpgM2potWhv6B3+AnsyBfTZ7Yd68RlzeFVSkLlTJ2NJnZnq vu9D3F+OYCsUk2V64tefOp3V2D4Dka4O2cYZqlgkncfVdNXrXZRdqN2oqPcNXuno IwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 161306603385753741455003225767577670064 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-03 13:57:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-01 13:57:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'blog.gtn.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25708463565625105869324323197136040499573946403075527207843764252012344623415659293245600508039242090668600741545194242437744536074331801752416879076926569659100137885852688578872521313152602303678143185398241799514222189043971108611298464737514881464257399342090067073151558404276413730254602550620887062061371006384018032134900704349490990098281228441544603102333766197221469064486572060137613559634964907895180670455448225610903868743956413224753798771947071643687367153721528252564592009218260718203178058657618606818388627204888749926341302592522407100687708444656452595141631709894419535534732103809993793988643 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9b39f2fc4b5e09f74f8e379503d9918532163815 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/jm6VXbqnfY4' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.gtn.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/e8HO1MFk_io.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e04d1c87a000004030047304502205981ab50100b5f300d16ac068b41b19ce1a1dcc46bcb2f976db529506f2e734c022100abac2c57399278c991872b4c6fbaca43899b168848bff810697f5d08101e93ca007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e04d1c85100000403004730450220106a16bbb161758806389de07dc9efaf5144546ea4acddcd592616b8c85c3838022100d4f21b1070e91e6a1a8de2a83917f78d04f700dfce00f46dfed5dbb8ad525a92 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0096e56da82be1ae7334f5a07e012fa8cae59ecf1524d9a95297fc62a85ab300602a9c47c2faf2a5c86d01c62955bea8d274cfe4ee2dd081ae5e30cfbfa2326eb272751f372706fc80e3f1eba653663eee79b1ebf515c72235dc2420c35b90f4dab2673043a51480c1bf2e226dbe2fa50b151c39bd5438974bfac65c36d030c854d277bc51de45d722ff808f71e064077117fe1eaa84e50aa4b609b608ee55c438f19805be2d0cfc4b936ed22ce14918b4b66684e75efb0b049dfdbbf16f719c712ab22fb79af855c48cb853924cca512b14b7cc9cf87492d5a694c3fd46058f777bf51dd12e3cb878fd99a423a699fdd6c85600732149c16d77595f174fd88b83