gerkencompanies.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number fc:86:70:f0:3e:12:4d:0d was issued on by GoDaddy.com, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
Certificate Subject
CN=gerkencompanies.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): fc:86:70:f0:3e:12:4d:0dSerial Number (int): 18196355521572916493
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: 73:88:b0:d4:06:30:15:a9:55:7e:a0:42:e9:02:78:d6:25:36:d7:8a
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): f8:88:4f:cb:a7:7e:17:7d:81:e1:a0:05:d4:66:73:1a:89:18:2f:8c
Fingerprint (sha256): e9:45:ee:d6:26:d9:a0:5c:5a:9f:41:2f:06:a5:c2:13:ce:4f:fb:dd:b1:e2:12:da:0f:54:86:a7:72:3c:fd:3f
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-7743.crl
Check the revocation status for certificate gerkencompanies.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gerkencompanies.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gerkencompanies.com
www.gerkencompanies.com
www.gerkencompanies.com
Other certificates including the domain name gerkencompanies.com
(limited to 100 certificates)
servicedesk.gerkencompanies.com
helpdesk.rdek.bc.ca
gerkencompanies.com
gerkencompanies.com
devopshelpdesk.hcss.com
gerkencompanies.com
sdp.tianjinjuilliard.edu.cn
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
servicedesk.gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
servicedesk.gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
servicedesk.gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
helpdesk.rdek.bc.ca
gerkencompanies.com
gerkencompanies.com
devopshelpdesk.hcss.com
gerkencompanies.com
sdp.tianjinjuilliard.edu.cn
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
servicedesk.gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
servicedesk.gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
servicedesk.gerkencompanies.com
gerkencompanies.com
gerkencompanies.com
Certificate
The complete raw certificate details for gerkencompanies.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGpDCCBYygAwIBAgIJAPyGcPA+Ek0NMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDgwMjE1MzMxNFoX DTI0MDkwMjE1MzMxNFowHjEcMBoGA1UEAxMTZ2Vya2VuY29tcGFuaWVzLmNvbTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOuxGvjoDso63jRLWWFn77dx YRdt/79+7F39PjZUxmFRbibIp7qA2nGIjAJ1D2TLRiSuqbKB3fq0Ovw8romYK9S6 78i9Jthcb3Qb0DyJ1Ekq+EbbsW9SpOlA7jtPVC+TZxBmC4EOUYHgcJiAptcG3fLx /LVSllYafrtjWlWL+HbqmksMs98OYbdCEgPlEK26+Y0WDtxjYxFbrEWoazMhL2kb K1H1YJZYjlOZ0Fyb2ktTFcxewM1/LdEzMYsfthG9tVf7CAWocNff4mLY1S2I9QhD tqac/og+vTRiL00BdSH0TMt0wSaLWQLmABGj60Xpg1nVO1petKair8B8AdeozhkC AwEAAaOCA0wwggNIMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDA4BgNVHR8EMTAvMC2gK6AphidodHRw Oi8vY3JsLmdvZGFkZHkuY29tL2dkaWcyczEtNzc0My5jcmwwXQYDVR0gBFYwVDBI BgtghkgBhv1tAQcXATA5MDcGCCsGAQUFBwIBFitodHRwOi8vY2VydGlmaWNhdGVz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECATB2BggrBgEFBQcBAQRq MGgwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmdvZGFkZHkuY29tLzBABggrBgEF BQcwAoY0aHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5 L2dkaWcyLmNydDAfBgNVHSMEGDAWgBRAwr0njsw0gzCiM9f7bLPwtCyAzjA3BgNV HREEMDAughNnZXJrZW5jb21wYW5pZXMuY29tghd3d3cuZ2Vya2VuY29tcGFuaWVz LmNvbTAdBgNVHQ4EFgQUc4iw1AYwFalVfqBC6QJ41iU214owggF9BgorBgEEAdZ5 AgQCBIIBbQSCAWkBZwB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7Wb AAABibbhwQkAAAQDAEcwRQIhALzO4GLt+DtQGBR179U5wyCTJMZZO5/3/TiM2C02 fkcwAiB8EvehOW8AGsDybi/SB7u5caQv8qXBwr0ts9qMLDTM3gB1AEiw42vapkc0 D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABibbhwdIAAAQDAEYwRAIgNoWebHbo 6uYAihJUyscvFBdrOe2twW7amdOgjFZidMQCIF2QOqt8HN0t6pJrVnLrw+2/6Y1J ERH6NVMN3bfNoryNAHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sA AAGJtuHCOQAABAMARzBFAiA4rWoqGIw34JvFs4e6kKN4WJYYDtyiLkgFgXbBCrOc fgIhAISytpLA8Bx5Z+WnSoPMjaSPqe1sUgzgO2AWZHeYrk47MA0GCSqGSIb3DQEB CwUAA4IBAQB3CR8JFYUSbm6SDrKxnWvJHSn9WRRMjJ1V/6kAS1FaVRKFS0IPE4nq zdOVy4Av5gMMGoC68wjurrackYWxh6PArQutlAspmmufFpi7v3R5t/VdFwlan+j9 kb20KS+KrMATIoCsOTI0iqRyHRSFzWZrhWFV4RK/XkGXR5O9UPrncSeTpaCWDVIv +116DSjPdxAYhlIJ42ImGxhHpBuxEaXkN7L1dg0aUw0fdICWhB8edNhFFgadWcSE +iJ/dcas3RaGpMcfAzGbr2J6LnCPtD/BPr2EuaX2xpebsX+iV4Yf7Ut42bFQAVWY MXrba8Yj6CpHVH8WTq1zfbxZ98q4s7HP -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA67Ea+OgOyjreNEtZYWfv t3FhF23/v37sXf0+NlTGYVFuJsinuoDacYiMAnUPZMtGJK6psoHd+rQ6/DyuiZgr 1LrvyL0m2FxvdBvQPInUSSr4Rtuxb1Kk6UDuO09UL5NnEGYLgQ5RgeBwmICm1wbd 8vH8tVKWVhp+u2NaVYv4duqaSwyz3w5ht0ISA+UQrbr5jRYO3GNjEVusRahrMyEv aRsrUfVglliOU5nQXJvaS1MVzF7AzX8t0TMxix+2Eb21V/sIBahw19/iYtjVLYj1 CEO2ppz+iD69NGIvTQF1IfRMy3TBJotZAuYAEaPrRemDWdU7Wl60pqKvwHwB16jO GQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18196355521572916493 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-02 15:33:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-02 15:33:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gerkencompanies.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29753335575271287797289234543355285817404458545573195680520787110977815393167014880207668982068282511329278218925321832610112792851495537278771599428260851224420900894494140449330529508532490475567506729734025655441617247003407137378639277375654223698752011442638426205669715269191475106706289907334180874944269647134360515792145078043242801347700484621283448624556488364308894095770653424582196272105480859103954376746070905384749960446666538862413003805710480606717830914568110723848122447209533211269716397036027224856372269696151639743012787361741695589727562992206876885010371550557764414714213986527190134083097 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-7743.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gerkencompanies.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gerkencompanies.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7388b0d4063015a9557ea042e90278d62536d78a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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