valmicro.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 72:f1:ba:29:17:dc:13:b2 was issued on by GoDaddy.com, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
Certificate Subject
CN=valmicro.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): 72:f1:ba:29:17:dc:13:b2Serial Number (int): 8282605875367777202
Serial Number lenght: 63 bits, 8 octets
SubjectKeyId: d1:ea:9f:5e:e4:2a:6a:28:e8:51:8d:4c:b9:59:68:d9:f0:17:19:ac
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 05:77:22:7a:20:92:28:5b:41:ed:f3:d5:f9:77:28:57:4f:52:78:94
Fingerprint (sha256): c6:6c:8b:79:bf:ad:a2:21:d5:dc:94:42:d8:38:ca:2b:8d:7d:a1:b9:c3:84:af:79:76:8b:c9:40:2c:c4:d7:b1
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-5707.crl
Check the revocation status for certificate valmicro.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for valmicro.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
valmicro.com
www.valmicro.com
www.valmicro.com
Other certificates including the domain name valmicro.com
(limited to 100 certificates)
dashboard.valmicro.com
mailprotect.valmicro.com
dashboard.valmicro.com
host.valmicro.com
mailprotect.valmicro.com
dashboard.valmicro.com
mailprotect.valmicro.com
dashboard.valmicro.com
dashboard.valmicro.com
host.valmicro.com
dashboard.valmicro.com
dashboard.valmicro.com
dashboard.valmicro.com
mailprotect.valmicro.com
dashboard.valmicro.com
dashboard.valmicro.com
mailprotect.valmicro.com
mailprotect.valmicro.com
host.valmicro.com
host.valmicro.com
valmicro.com
mailprotect.valmicro.com
mailprotect.valmicro.com
dashboard.valmicro.com
mailprotect.valmicro.com
host.valmicro.com
host.valmicro.com
dashboard.valmicro.com
mailprotect.valmicro.com
mailprotect.valmicro.com
dashboard.valmicro.com
host.valmicro.com
mailprotect.valmicro.com
dashboard.valmicro.com
mailprotect.valmicro.com
dashboard.valmicro.com
dashboard.valmicro.com
host.valmicro.com
dashboard.valmicro.com
dashboard.valmicro.com
dashboard.valmicro.com
mailprotect.valmicro.com
dashboard.valmicro.com
dashboard.valmicro.com
mailprotect.valmicro.com
mailprotect.valmicro.com
host.valmicro.com
host.valmicro.com
valmicro.com
mailprotect.valmicro.com
mailprotect.valmicro.com
dashboard.valmicro.com
mailprotect.valmicro.com
host.valmicro.com
host.valmicro.com
dashboard.valmicro.com
mailprotect.valmicro.com
Certificate
The complete raw certificate details for valmicro.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGjzCCBXegAwIBAgIIcvG6KRfcE7IwDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMjMwNTE4MjIxMjEzWhcN MjQwNjE4MjIxMjEzWjAXMRUwEwYDVQQDEwx2YWxtaWNyby5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyqvbYw3jSvHcnWKYwMFmi6LcJlLsj+WRS Wq3sQ2qvAb1I3kl8rXj+vADYj8KD2j3c8w+HSY5q+OnxROHv9N14/cuodI6p7ufH OMMj9TbZIMt39YK5D4Kfq8hljKqrW1euJc/Bmx1ab/Rb3rmXaStFBXKcsmWGxdy1 TdjPnllL/vzOLgfZP40AB9M5CMtdSezqYfflA6xWRoTMhSMm4prpBWr11czl3lUt QR/DyMA6cU77dgf2dRQUFGaf9KhN+EZgz5JpBVkxPeusZPK1SigY40bybElyn00z FC4rzB0h+CRgIJPPgRNndTHImROzzKft3QoY4fvFqmAgUgQ4D9ypAgMBAAGjggM/ MIIDOzAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAOBgNVHQ8BAf8EBAMCBaAwOAYDVR0fBDEwLzAtoCugKYYnaHR0cDovL2NybC5n b2RhZGR5LmNvbS9nZGlnMnMxLTU3MDcuY3JsMF0GA1UdIARWMFQwSAYLYIZIAYb9 bQEHFwEwOTA3BggrBgEFBQcCARYraHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5 LmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwdgYIKwYBBQUHAQEEajBoMCQGCCsG AQUFBzABhhhodHRwOi8vb2NzcC5nb2RhZGR5LmNvbS8wQAYIKwYBBQUHMAKGNGh0 dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS9nZGlnMi5j cnQwHwYDVR0jBBgwFoAUQMK9J47MNIMwojPX+2yz8LQsgM4wKQYDVR0RBCIwIIIM dmFsbWljcm8uY29tghB3d3cudmFsbWljcm8uY29tMB0GA1UdDgQWBBTR6p9e5Cpq KOhRjUy5WWjZ8BcZrDCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYA7s3QZNXb Gs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGIMOvbkQAABAMARzBFAiBRWNOH Pue9EpPaHF+FjRwgM/PLiE08KkX4q/EHcf9loAIhAOnkrYVZUd3i7KwTt1Fsr61p E5pRGRk2rNOLKchSE5xZAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznY hHMAAAGIMOvc+QAABAMARzBFAiEA6SqqAPpsNpyXv1s8HVDIdnjtnoVINdVYdlEt PvrzZowCIDnPg+kpoPq2ZEnrD4ONj/n/0kDd7itPJQXQKLwqGXFSAHYA2ra/az+1 tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGIMOvebgAABAMARzBFAiBF8t/P jQuDrecCt1QgUWkGD4sMVFOJcMNnmtkL0eelawIhAO7sdUy1bcYWSu9cfrzlEPiP WTahpuxEJXtPXuHkwIPnMA0GCSqGSIb3DQEBCwUAA4IBAQBX7a+j8tiOGkDNQyhy 31+gJqim3LywQ5BBUKHCGJyMxL5JNzbgwJljl8eDz1rT9mPZGvapFDbPL8Fph83Q lgLeVrDtAol/Bc6yb0rk+wIVtpJxzkDPXQDJj6kz+82pDlsEplbGyGbpaM785/hh srRXx+1mR2Yhbglk88jQhz8Gs4OaDdBkC5i7HG+DocdeQY6TUDUxN3u2Xqz7A54z zGNkJJoFI6g00Xw6Dz/SKBdb4TdNHMKi6yoHefOD7dB/8v6JdcnQDvREGVoIWxGU /GqIeELrC1m1gKxJtq+Fnci37GFOpNESVhp4JGFBROb5IpgqIYc9AOJ103I9cV00 XezG -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqr22MN40rx3J1imMDBZ oui3CZS7I/lkUlqt7ENqrwG9SN5JfK14/rwA2I/Cg9o93PMPh0mOavjp8UTh7/Td eP3LqHSOqe7nxzjDI/U22SDLd/WCuQ+Cn6vIZYyqq1tXriXPwZsdWm/0W965l2kr RQVynLJlhsXctU3Yz55ZS/78zi4H2T+NAAfTOQjLXUns6mH35QOsVkaEzIUjJuKa 6QVq9dXM5d5VLUEfw8jAOnFO+3YH9nUUFBRmn/SoTfhGYM+SaQVZMT3rrGTytUoo GONG8mxJcp9NMxQuK8wdIfgkYCCTz4ETZ3UxyJkTs8yn7d0KGOH7xapgIFIEOA/c qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8282605875367777202 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-18 22:12:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-18 22:12:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'valmicro.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22554723895305495502357501690209237956472987092145843509926922329900052868928154234600336417692933702223701648796887657495074686703781427457677920243294080786568076867987315843581167440134706926503287761754585506834609788567068073194988040221370619487468476232837584269817480618461228900604713006610262082225173930896883720133819482369474406502550128831995935092995295729101713875550717019669805693527480658908107415532549076905823521026867803504625117258890569898698165264856434286564500972129228141120198793883676899436468584381455837474905818977392609578817519646338932623189552052676842418516782757346328867495081 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-5707.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'valmicro.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.valmicro.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d1ea9f5ee42a6a28e8518d4cb95968d9f01719ac . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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