www.reflectivelearning.ca
Issued by AlphaSSL CA - SHA256 - G2
About this certificate
This digital certificate with serial number 47:5c:f3:0b:46:03:02:a9:ef:e2:c3:8c was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.reflectivelearning.ca,OU=Domain Control Validated,C=CA
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 47:5c:f3:0b:46:03:02:a9:ef:e2:c3:8cSerial Number (int): 22085804615734446834606850956
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: d2:f4:21:f7:95:29:ff:2d:4a:ec:ad:5a:ee:9c:be:f5:d9:70:a8:0d
AuthorityKeyId: f5:cd:d5:3c:08:50:f9:6a:4f:3a:b7:97:da:56:83:e6:69:d2:68:f7
Fingerprint (sha1): fb:72:c1:5a:67:bd:8e:ea:dd:03:d3:07:ea:31:93:64:f8:ec:d8:f9
Fingerprint (sha256): db:41:24:96:41:b0:ee:45:54:9e:7f:88:77:5f:50:96:7d:32:8d:9f:71:a8:5f:82:4c:5e:5c:ef:7a:73:8c:1a
Issuing Certificate URL: http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsalphasha2g2CRL Distribution Point: http://crl2.alphassl.com/gs/gsalphasha2g2.crl
Check the revocation status for certificate www.reflectivelearning.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.reflectivelearning.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
Other certificates including the domain name reflectivelearning.ca
(limited to 100 certificates)
reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
programmedautoevaluation.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
adpkd.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
adpkd.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
programmedautoevaluation.ca
reflectivelearning.ca
programmedautoevaluation.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
programmedautoevaluation.ca
www.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
www.reflectivelearning.ca
reflectivelearning.ca
www.reflectivelearning.ca
reflectivelearning.ca
strokepreventionaf.reflectivelearning.ca
reflectivelearning.ca
strokepreventionaf.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
programmedautoevaluation.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
adpkd.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
adpkd.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
programmedautoevaluation.ca
reflectivelearning.ca
programmedautoevaluation.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
programmedautoevaluation.ca
www.reflectivelearning.ca
reflectivelearning.ca
reflectivelearning.ca
www.reflectivelearning.ca
reflectivelearning.ca
www.reflectivelearning.ca
reflectivelearning.ca
strokepreventionaf.reflectivelearning.ca
reflectivelearning.ca
strokepreventionaf.reflectivelearning.ca
Certificate
The complete raw certificate details for www.reflectivelearning.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHeTCCBmGgAwIBAgIMR1zzC0YDAqnv4sOMMA0GCSqGSIb3DQEBCwUAMEwxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSIwIAYDVQQDExlB bHBoYVNTTCBDQSAtIFNIQTI1NiAtIEcyMB4XDTE2MDkyODE2MjY1NFoXDTE3MTEx NzE1MTgzOFowVDELMAkGA1UEBhMCQ0ExITAfBgNVBAsTGERvbWFpbiBDb250cm9s IFZhbGlkYXRlZDEiMCAGA1UEAxMZd3d3LnJlZmxlY3RpdmVsZWFybmluZy5jYTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKVrWTn1ipDucKlCorFiIONC EdRSn+b3YeNUjJy/WV5sb7gDEzygWDRkfCHYUcxlmY366dWHdhHjpNxM8WbOyzrr anpymjZO/BqrFP6tt8Yp8KZeUX+fW+Qp7jFYIxQd3Z59n+k7I6Ibk0Jw5NjYi/gH NsH/5z7RqsevcPxN9d6v4Wpg/nS/ZQSzMmBfsS40TWjkM7NTokLDAjekfC+9rEnj id/Y3fbdMb7vQr/M5uFrELHbX1KQvFbmETGGSkD3Xj77JeZrrTp4dK3Y+aGGUOg1 QL1A9tJeX6rGpGh0Bguay+Xxj3ypKuAZ043hQSWed95yde/5vIpGMwcfugvk7SMC AwEAAaOCBFEwggRNMA4GA1UdDwEB/wQEAwIFoDCBiQYIKwYBBQUHAQEEfTB7MEIG CCsGAQUFBzAChjZodHRwOi8vc2VjdXJlMi5hbHBoYXNzbC5jb20vY2FjZXJ0L2dz YWxwaGFzaGEyZzJyMS5jcnQwNQYIKwYBBQUHMAGGKWh0dHA6Ly9vY3NwMi5nbG9i YWxzaWduLmNvbS9nc2FscGhhc2hhMmcyMFcGA1UdIARQME4wQgYKKwYBBAGgMgEK CjA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNvbS9yZXBv c2l0b3J5LzAIBgZngQwBAgEwCQYDVR0TBAIwADA+BgNVHR8ENzA1MDOgMaAvhi1o dHRwOi8vY3JsMi5hbHBoYXNzbC5jb20vZ3MvZ3NhbHBoYXNoYTJnMi5jcmwwOwYD VR0RBDQwMoIZd3d3LnJlZmxlY3RpdmVsZWFybmluZy5jYYIVcmVmbGVjdGl2ZWxl YXJuaW5nLmNhMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4E FgQU0vQh95Up/y1K7K1a7py+9dlwqA0wHwYDVR0jBBgwFoAU9c3VPAhQ+WpPOreX 2laD5mnSaPcwggJtBgorBgEEAdZ5AgQCBIICXQSCAlkCVwB1AGj2mPgfZIK+Oozu uSgdTPxxUV1nk9RE0QpnrLtPT/vEAAABV3Ge0zkAAAQDAEYwRAIgE08DETX5ovph QAJisObL5/KeD3hkNsPfoP8reYdq00MCIHeVAlIdpQnn8q3pALy581HS2imOkULW w8pW9S06Sy4hAHYApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFX cZ7bWAAABAMARzBFAiAEpS4x5bRWaMSWc1ulBDxeo+LKtgO+pwTs1kJ5DWX8xAIh AMgRKOU3HTozoaT84RF928PbZB0v0O5DLmL5lioB71ahAHYA7ku9t3XOYLrhQmkf q+GeZqMPfl+wctiDAMR7iXqo/csAAAFXcZ7j5QAABAMARzBFAiAfQuSs66LeeWal NLSlXvyX3vEwqhQ2z342c6pEyDKzowIhALBRk+2w4m9ihzW4UqgYfRZVpoz9iDov nOi9zLzQ+HezAHYA3esdK3oNT6Ygi4GtgWhwfi6OnQHVXIiNPRHEzbbsvswAAAFX cZ7oXwAABAMARzBFAiEAw9ExN5gz+dFHvXTu7sKV/m5mIb34x/MtNvmhZajcquYC IHC6V+5Yfyedlomf0AUDsnap5gWBTV3UN0Pm4fpUH8GvAHYAVhQGmi/XwuzT9eG9 RLI+x0Z2ubyZEVzA75SYVdaJ0N0AAAFXcZ7suwAABAMARzBFAiAOuGP3svZTmxmb h2KZZwsf+Vf6Abm3HumUZxvOGB0jJwIhAKNsR2suXRecJ0FMckunG8XAUiwti7lp O+c3ecaA5y0rMA0GCSqGSIb3DQEBCwUAA4IBAQCMbkjg/gI3bZXyICQc+wc18r1u 3cqle4HUSXmKDaYukJ2g2VpqDK6QEVG2tSDAyaGt9NwHu8I6Sz188bvnGWe77i2R To/ZuUomVfwF5mohjtUNNmMbb1mGneffFeQil7KW7hoIX31k05gZZ2nfFgHq1wIN zf/odw1Gqm1ZCKajRTg2KZucVGxqZ1wTmKuTUENRoaxSfWbjYDOUGhyZMAwGeg/M cotebiiUVruwGqeYmLQ4yWaJsIm8bHB9IrrgAFjWxNinDSGjv66p1tzhf+TbEpvf o8BJjH9GMk3x4Qai9khpZMBOa8OetB5Mod2nVfaBlw/w02QHjLb3ZxI3y2vV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWtZOfWKkO5wqUKisWIg 40IR1FKf5vdh41SMnL9ZXmxvuAMTPKBYNGR8IdhRzGWZjfrp1Yd2EeOk3EzxZs7L OutqenKaNk78GqsU/q23xinwpl5Rf59b5CnuMVgjFB3dnn2f6TsjohuTQnDk2NiL +Ac2wf/nPtGqx69w/E313q/hamD+dL9lBLMyYF+xLjRNaOQzs1OiQsMCN6R8L72s SeOJ39jd9t0xvu9Cv8zm4WsQsdtfUpC8VuYRMYZKQPdePvsl5mutOnh0rdj5oYZQ 6DVAvUD20l5fqsakaHQGC5rL5fGPfKkq4BnTjeFBJZ533nJ17/m8ikYzBx+6C+Tt IwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 22085804615734446834606850956 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AlphaSSL CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-28 16:26:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-17 15:18:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.reflectivelearning.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20882255857722001945301835048740373698448647573893307964758038569121625393787741952904442348735786173986163351935593751327950359539604375161899145311501641843942294424341618512011668256886287733186191531155225724527229519419339937852671435402112156939109554132359880263209785441405527570448900073089812328190749781531829127578372691101471052498029047733724993186559148515007180875202813582022972877335308940026973189622013196016563000823807949980508485514964772138324290575407810557787559741154767089067920088169578356671800945256923482941168418477891954255252387431997013848145455128159466865776991964864614200831267 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (125 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsalphasha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10.10 (Domain Validation Certificates Policy - AlphaSSL) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl2.alphassl.com/gs/gsalphasha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.reflectivelearning.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'reflectivelearning.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d2f421f79529ff2d4aecad5aee9cbef5d970a80d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f5cdd53c0850f96a4f3ab797da5683e669d268f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (605 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (601 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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