*.espoarte.net
Issued by Actalis Domain Validation Server CA G1
About this certificate
This digital certificate with serial number 4e:fa:2e:a1:11:ff:98:03 was issued on by Actalis S.p.A./03358520967.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.espoarte.net,OU=Domain Control Validated by Actalis S.p.A.
Actalis S.p.A./03358520967
Organization:
Actalis S.p.A./03358520967
State / Province:
Bergamo
Locality: Ponte San Pietro
Country: IT
Locality: Ponte San Pietro
Country: IT
This certificate has expire since
Certificate Details
Serial Number (hex): 4e:fa:2e:a1:11:ff:98:03Serial Number (int): 5690912348462618627
Serial Number lenght: 63 bits, 8 octets
SubjectKeyId: 83:ee:a0:75:4b:b0:d3:4e:dc:22:aa:83:25:e3:0c:8e:71:de:ad:60
AuthorityKeyId: 1b:42:7f:5c:45:7e:ff:7e:1e:1e:41:9c:f3:ad:ae:35:c6:65:eb:c5
Fingerprint (sha1): e6:57:ab:47:b6:dd:ae:b2:a5:d8:94:af:c7:f6:0e:61:ac:93:cf:e2
Fingerprint (sha256): e0:c9:b3:26:3a:67:59:29:59:67:b7:f1:39:59:b5:be:db:c3:06:3c:6e:1f:5d:fb:52:fc:22:22:35:6c:7d:aa
Issuing Certificate URL: http://cacert.actalis.it/certs/actalis-autdvg1
Revocation information
OCSP Server: http://ocsp06.actalis.it/VA/AUTHDV-G1CRL Distribution Point: ldap://ldap06.actalis.it/cn%3dActalis%20Domain%20Validation%20Server%20CA%20G1,o%3dActalis%20S.p.A./03358520967,c%3dIT?certificateRevocationList;binary
CRL Distribution Point: http://crl06.actalis.it/Repository/AUTHDV-G1/getLastCRL
Check the revocation status for certificate *.espoarte.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.espoarte.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.espoarte.net
espoarte.net
espoarte.net
Other certificates including the domain name espoarte.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.espoarte.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG1zCCBb+gAwIBAgIITvouoRH/mAMwDQYJKoZIhvcNAQELBQAwgZAxCzAJBgNV BAYTAklUMRAwDgYDVQQIDAdCZXJnYW1vMRkwFwYDVQQHDBBQb250ZSBTYW4gUGll dHJvMSMwIQYDVQQKDBpBY3RhbGlzIFMucC5BLi8wMzM1ODUyMDk2NzEvMC0GA1UE AwwmQWN0YWxpcyBEb21haW4gVmFsaWRhdGlvbiBTZXJ2ZXIgQ0EgRzEwHhcNMTkw MjE1MDQxNDMyWhcNMjAwMzE2MTUyOTMyWjBOMTMwMQYDVQQLDCpEb21haW4gQ29u dHJvbCBWYWxpZGF0ZWQgYnkgQWN0YWxpcyBTLnAuQS4xFzAVBgNVBAMMDiouZXNw b2FydGUubmV0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA137RUzVg loyF15966XLC6GbBS8g9I30u6OrDuBEgE87SUvBil+7VITOsHGLU2flAaNArgY0S e8rp+OF+UpBvmKb4qk2KeU/7cxJdfyA9+fFJVtlj4cTUeFpHDji+G4nPpO9F79p3 erRvLLK8VDUA3giJ6oVOaPST8tOUAqg+ZirLTkqt7R3A9ebxtfSVO6G4SKU+S9lW doDLIuC9UZGjO9r4o6ERHOxuq816gJHVM90v45RCnNjQCh/TVvcXy63VscG/vZzU cKeG6RB2kXOvJI3rvThl6vQsYHGlbFvJHPzzM6P8921Ga3xfCgF0t++UgraMQM48 G3Y0f4emI9K6mwIDAQABo4IDdDCCA3AwDAYDVR0TAQH/BAIwADAfBgNVHSMEGDAW gBQbQn9cRX7/fh4eQZzzra41xmXrxTB9BggrBgEFBQcBAQRxMG8wOgYIKwYBBQUH MAKGLmh0dHA6Ly9jYWNlcnQuYWN0YWxpcy5pdC9jZXJ0cy9hY3RhbGlzLWF1dGR2 ZzEwMQYIKwYBBQUHMAGGJWh0dHA6Ly9vY3NwMDYuYWN0YWxpcy5pdC9WQS9BVVRI RFYtRzEwJwYDVR0RBCAwHoIOKi5lc3BvYXJ0ZS5uZXSCDGVzcG9hcnRlLm5ldDBR BgNVHSAESjBIMDwGBiuBHwEXATAyMDAGCCsGAQUFBwIBFiRodHRwczovL3d3dy5h Y3RhbGlzLml0L2FyZWEtZG93bmxvYWQwCAYGZ4EMAQIBMB0GA1UdJQQWMBQGCCsG AQUFBwMCBggrBgEFBQcDATCB7QYDVR0fBIHlMIHiMIGgoIGdoIGahoGXbGRhcDov L2xkYXAwNi5hY3RhbGlzLml0L2NuJTNkQWN0YWxpcyUyMERvbWFpbiUyMFZhbGlk YXRpb24lMjBTZXJ2ZXIlMjBDQSUyMEcxLG8lM2RBY3RhbGlzJTIwUy5wLkEuLzAz MzU4NTIwOTY3LGMlM2RJVD9jZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0O2JpbmFy eTA9oDugOYY3aHR0cDovL2NybDA2LmFjdGFsaXMuaXQvUmVwb3NpdG9yeS9BVVRI RFYtRzEvZ2V0TGFzdENSTDAdBgNVHQ4EFgQUg+6gdUuw007cIqqDJeMMjnHerWAw DgYDVR0PAQH/BAQDAgWgMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAsh4FzIui zYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFo72YYqAAABAMARzBFAiBfNniW AGb30lQvFvqYJ1lZ4k2caLq/tvp0d9JmjG57WQIhAN9RwvVrbANN6eLcM1mNK+Pp pGGhoulN7UukRYVzxXVaAHYAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFx RVgAAAFo72YYugAABAMARzBFAiEA5LmQum1r09VgGKKRefvbPBG9Hlf2w9C8q9+q wabw5psCIGYKNE0dBE/8PIstm/UPO7uzdJumX3iSL7eQixxXH6AOMA0GCSqGSIb3 DQEBCwUAA4IBAQDUShg1emZUMgMMAJOBeTH9P2as5nfffkvWEnY7S9W3g6IlHFBC d5VNTFLF7ehdJA2BmKPXQUd5snrz6ObBtAdbcQf4f6yF5KzJjjuc/Xu6hvrMT/s0 F6VKTlv20MzZVjg4QuOkPX6KCtcc+OA/fmg+q4XwrdVQinesmD2hfpFmf+T/ArAw qofIz/dfG4jyVh+6FikQDcMlZJNDUvRvgk92NMiMAOft9Tg+HaTIGNyFBpiNyFs+ PdxTO1VeYkBG3axUOnKZHq4gtmHygmFNclkLNESFRTSIVvDtR7vvKShIftg4fYI7 Jn9+bcPGWrdYCztY/c0O0p+NZActbevtZTgJ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA137RUzVgloyF15966XLC 6GbBS8g9I30u6OrDuBEgE87SUvBil+7VITOsHGLU2flAaNArgY0Se8rp+OF+UpBv mKb4qk2KeU/7cxJdfyA9+fFJVtlj4cTUeFpHDji+G4nPpO9F79p3erRvLLK8VDUA 3giJ6oVOaPST8tOUAqg+ZirLTkqt7R3A9ebxtfSVO6G4SKU+S9lWdoDLIuC9UZGj O9r4o6ERHOxuq816gJHVM90v45RCnNjQCh/TVvcXy63VscG/vZzUcKeG6RB2kXOv JI3rvThl6vQsYHGlbFvJHPzzM6P8921Ga3xfCgF0t++UgraMQM48G3Y0f4emI9K6 mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5690912348462618627 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bergamo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ponte San Pietro' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis S.p.A./03358520967' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis Domain Validation Server CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-15 04:14:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-16 15:29:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Domain Control Validated by Actalis S.p.A.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.espoarte.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27203771694447693693603189402059408638810541348837900680606347139926449677558378211249851058446761209681621086875881838239351410873619420474345221755348499742704961086547089594328001060526027256191507881033528558646727784585934041787372724553787659729541952678069556672415921098738481383321939328487987540261841160171876061279902760997346112140986401555242268219083508081373910918979792971861468294065615615230168411470377326685838754657766826731398150276196830644523823523688300138242079656519346539551991138546416689227627745489972366273929346799865234905166270931191235415841702697115455689433975245370427882781339 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1b427f5c457eff7e1e1e419cf3adae35c665ebc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacert.actalis.it/certs/actalis-autdvg1' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp06.actalis.it/VA/AUTHDV-G1' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.espoarte.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'espoarte.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.159.1.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.actalis.it/area-download' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (229 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://ldap06.actalis.it/cn%3dActalis%20Domain%20Validation%20Server%20CA%20G1,o%3dActalis%20S.p.A./03358520967,c%3dIT?certificateRevocationList;binary' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl06.actalis.it/Repository/AUTHDV-G1/getLastCRL' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 83eea0754bb0d34edc22aa8325e30c8e71dead60 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000168ef6618a8000004030047304502205f3678960066f7d2542f16fa98275959e24d9c68babfb6fa7477d2668c6e7b59022100df51c2f56b6c034de9e2dc33598d2be3e9a461a1a2e94ded4ba4458573c5755a0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000168ef6618ba0000040300473045022100e4b990ba6d6bd3d56018a29179fbdb3c11bd1e57f6c3d0bcabdfaac1a6f0e69b0220660a344d1d044ffc3c8b2d9bf50f3bbbb3749ba65f78922fb7908b1c571fa00e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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