www.haddad.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number a1:df:b6:6b:ab:c7:8e:0a was issued on by GoDaddy.com, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.haddad.com,OU=Domain Control Validated
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): a1:df:b6:6b:ab:c7:8e:0aSerial Number (int): 11664242133472611850
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: b2:1a:8b:42:81:c3:fb:49:c9:9b:ed:76:e1:01:93:36:a8:da:67:0d
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): e7:11:69:56:3e:95:1e:f9:30:29:85:3e:5d:44:a3:4c:9d:dc:dc:99
Fingerprint (sha256): d8:31:ce:9b:e0:8d:14:38:8b:83:66:d2:b1:e1:d2:40:be:ea:26:0d:e3:6b:c9:64:02:4f:92:31:27:f1:1d:6e
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-849.crl
Check the revocation status for certificate www.haddad.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.haddad.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.haddad.com
haddad.com
haddad.com
Other certificates including the domain name haddad.com
(limited to 100 certificates)
*.haddad.com
*.haddad.com
*.haddad.com
sip.haddad.com
*.haddad.com
*.haddad.com
BYLyncWebExt.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
sip.haddad.com
bylyncwebext.haddad.com
*.haddad.com
*.haddad.com
haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
haddad.com
email.haddad.com
www.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
www.haddad.com
*.haddad.com
*.haddad.com
www.haddad.com
www.haddad.com
sip.haddad.com
www.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
sip.haddad.com
*.haddad.com
*.haddad.com
BYLyncWebExt.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
sip.haddad.com
bylyncwebext.haddad.com
*.haddad.com
*.haddad.com
haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
haddad.com
email.haddad.com
www.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
*.haddad.com
www.haddad.com
*.haddad.com
*.haddad.com
www.haddad.com
www.haddad.com
sip.haddad.com
www.haddad.com
*.haddad.com
Certificate
The complete raw certificate details for www.haddad.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGsjCCBZqgAwIBAgIJAKHftmurx44KMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTE4MDcyMDE5NTYxNVoX DTIwMDcyMDE5NTYxNVowPDEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRh dGVkMRcwFQYDVQQDEw53d3cuaGFkZGFkLmNvbTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAN5/2mzk6soZwE57r+gyyNmAZ03zVw42xDBunC+2bowSdqkA D2JJe7AVs+GSbdwrjl7fRWJ9E9cts5FOkq2fd2z6uXIbwcx1MXIdHns/FLoOE+5x FtEiR2DigF8g5RDBc+hMDwwO2bTb/g4+yRfzLaQynRFMHiQ/lSUYsIP3rVkAAJNC Q6Jil8GNiV1vcARXnxXyL/3q+cKAAltTjm9dvZIrAokP8lGCj9PNzxVInN1XkQqa qCCQ3WdtyMEZXO1/OTtGH/pD072BzXXVUavtSYLjIACRG4CdVJSXB7y4OeExXYtl PKIcjz/siiab1KVhFBGxtU/tTfZ/FauPfmUQfBcCAwEAAaOCAzwwggM4MAwGA1Ud EwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB /wQEAwIFoDA3BgNVHR8EMDAuMCygKqAohiZodHRwOi8vY3JsLmdvZGFkZHkuY29t L2dkaWcyczEtODQ5LmNybDBdBgNVHSAEVjBUMEgGC2CGSAGG/W0BBxcBMDkwNwYI KwYBBQUHAgEWK2h0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3Np dG9yeS8wCAYGZ4EMAQIBMHYGCCsGAQUFBwEBBGowaDAkBggrBgEFBQcwAYYYaHR0 cDovL29jc3AuZ29kYWRkeS5jb20vMEAGCCsGAQUFBzAChjRodHRwOi8vY2VydGlm aWNhdGVzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvZ2RpZzIuY3J0MB8GA1UdIwQY MBaAFEDCvSeOzDSDMKIz1/tss/C0LIDOMCUGA1UdEQQeMByCDnd3dy5oYWRkYWQu Y29tggpoYWRkYWQuY29tMB0GA1UdDgQWBBSyGotCgcP7Scmb7XbhAZM2qNpnDTCC AYAGCisGAQQB1nkCBAIEggFwBIIBbAFqAHcApLkJkLQYWBSHuxOizGdwCjw1mAT5 G9+443fNDsgN3BAAAAFkuUP1bAAABAMASDBGAiEAucrxhW8Y2OwbP7HEFf4qC3Fl +X8R7Z0cyT4V7vz7jssCIQDYUGJid1LHq1DKfd8etpeQMrVq8eTfBR6nVjedr/1o JAB3AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABZLlD+dwAAAQD AEgwRgIhAJBya+IsJL9btWSoDSLxn6wMlFKqZaVL3eYJzGRSz1AtAiEA/gslmVkd ULoSl5LQY6+1TZbT2LpQ929jmhyHcNPdhzsAdgBep3P531bA57U2SH3QSeAyepGa DIShEhKEGHWWgXFFWAAAAWS5RACbAAAEAwBHMEUCIGufZYyBJjMhCqt7ASgVtnci UqGfNtDBepnzMdZfsQ11AiEAyABIoNcM9ifWDAd4b8QKTUSjlC6YwTSH29r7X673 km8wDQYJKoZIhvcNAQELBQADggEBADOW000S/AUbc2YkKNep3d651tHS3dZJGv0N vWQ1/kwcWhCqy57ZA5WJDbiKBR1cVq6iiN2gQDo+dIDiuMFK+bWt+ljljYOGpIBu Zv1ouxrlb1bcq18aRQJxuAkhx5EobWHMA097AAkgsovqQr67ErvsHJN0xqiueVok vugLrLO8O9tGiOG4FWdNTwnNS/ly2cBTlRV/X3f6XzFUFHPESvpgHknq076Q2hYJ qFpFJahUpsnYWWk9NY1owbLYDcXiOWHn/ZNC3/S6NyaDHR4HHdP58Q136GJcvSVf vUKg+DBtilZqq/aoIXAEo+/Ke3cgJ2fCxF/W2hPoQuKGKlu9NTE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3n/abOTqyhnATnuv6DLI 2YBnTfNXDjbEMG6cL7ZujBJ2qQAPYkl7sBWz4ZJt3CuOXt9FYn0T1y2zkU6SrZ93 bPq5chvBzHUxch0eez8Uug4T7nEW0SJHYOKAXyDlEMFz6EwPDA7ZtNv+Dj7JF/Mt pDKdEUweJD+VJRiwg/etWQAAk0JDomKXwY2JXW9wBFefFfIv/er5woACW1OOb129 kisCiQ/yUYKP083PFUic3VeRCpqoIJDdZ23IwRlc7X85O0Yf+kPTvYHNddVRq+1J guMgAJEbgJ1UlJcHvLg54TFdi2U8ohyPP+yKJpvUpWEUEbG1T+1N9n8Vq49+ZRB8 FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11664242133472611850 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-20 19:56:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-20 19:56:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.haddad.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28087950477051107430180681658052296350819308386128206228669498885643806489872053011998836656220055200564971632013531089741697753283563835359857479784036398471929066262262712127604159670183432556057891187587844414875660249032586087180828669232223110944451585718277867689863276649681920169009606804213861110766776244350656686728037780030869194521272432625367873445574296111092832422641632713388867038617139502025471903631663633398300609228101507267292953487376533933389202645721417151103737477676567120764151077920713698892067314469258850286462666269164500075359132989010288692086558836526933525305270294137096094383127 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-849.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.haddad.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'haddad.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b21a8b4281c3fb49c99bed76e1019336a8da670d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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