yic.ca
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number cf:6e:94:5c:c3:49:15:1d was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=yic.ca
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): cf:6e:94:5c:c3:49:15:1dSerial Number (int): 14947047339423503645
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: 2d:36:d8:02:07:3e:94:38:80:76:52:51:36:7d:a7:54:39:7c:45:1f
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 98:64:66:d3:1f:4a:87:87:14:06:68:25:79:09:30:c6:d7:f4:52:26
Fingerprint (sha256): eb:73:d2:71:59:f7:5e:f9:c8:59:62:a8:44:cc:07:d3:2f:cc:f4:30:f3:85:ba:c9:9a:72:ef:74:01:e5:47:d0
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-13304.crl
Check the revocation status for certificate yic.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for yic.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
yic.ca
Other certificates including the domain name yic.ca
(limited to 100 certificates)
www.docapp.tk
www.app.beseed.com.br
f68.org
puja.de
blog.re-ynd.com
mixedsignals.studio
mixedsignals.studio
blog.re-ynd.com
dev.bestbuymall.pk
www.4bilder1wort.app
bolco.ap1.com.br
www.andremyers.dev
promo.picprint.app
firststep.yic.ca
txschooltools.com
www.yic.ca
shareurl.hamrobazaar.com
www.baruque.app
viper.martik.site
www.visque.me
www.visque.me
yic.ca
criticalcontrol.harecord.com
www.bhadalafurniture.com
www.ingafoss.com
sundao.cc
flyeralarm.crowdsite.com
tv.next.lenarge.com.br
wallet.exymlab.dev
hepamet-fibrosis-score.es
rapidexpresskh.com
tv.next.lenarge.com.br
neatchecklist.com
lokobox.de
yic.ca
www.andremyers.dev
se-ngo.com
link.jooli.com
mindofmatthew.com
www.agapetherapy.co.uk
www.app.beseed.com.br
f68.org
puja.de
blog.re-ynd.com
mixedsignals.studio
mixedsignals.studio
blog.re-ynd.com
dev.bestbuymall.pk
www.4bilder1wort.app
bolco.ap1.com.br
www.andremyers.dev
promo.picprint.app
firststep.yic.ca
txschooltools.com
www.yic.ca
shareurl.hamrobazaar.com
www.baruque.app
viper.martik.site
www.visque.me
www.visque.me
yic.ca
criticalcontrol.harecord.com
www.bhadalafurniture.com
www.ingafoss.com
sundao.cc
flyeralarm.crowdsite.com
tv.next.lenarge.com.br
wallet.exymlab.dev
hepamet-fibrosis-score.es
rapidexpresskh.com
tv.next.lenarge.com.br
neatchecklist.com
lokobox.de
yic.ca
www.andremyers.dev
se-ngo.com
link.jooli.com
mindofmatthew.com
www.agapetherapy.co.uk
Certificate
The complete raw certificate details for yic.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcTCCBVmgAwIBAgIJAM9ulFzDSRUdMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMTIxMDE5MTQzNloX DTI0MTIxMDE5MTQzNlowETEPMA0GA1UEAxMGeWljLmNhMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAysvbeVFW3A9FlDkrtWECgeELJA+e8jQF6EAIYhGP X6SOH2Fy98zPNR07MXVfU4tczJOWMtub2Fj4b1tK+nwd9TXS2SbPjrJnvEmDN3pu yxWvIrzm+5vFWQQ4I/zjkgSYCpwTnAXfP9i18sewASs23uwn+TbMk10D2bsftA2W hePlDxLHD+ryx2QIzGsvF9wE+rV8WTV6npzMQIPsWf5m3/EfAKzJ1z2/kFAUCQvf w67Fcyleasp06sAaWxsrJql7eBQr0DaOMq+gHN+p1tNB9C0G3OPYRQAVtFQZetjk oioEWoo4ilFUzHVg296kQwZ3BKyIhdVNBxkLbBraWPLpUQIDAQABo4IDJjCCAyIw DAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDgYD VR0PAQH/BAQDAgWgMDkGA1UdHwQyMDAwLqAsoCqGKGh0dHA6Ly9jcmwuZ29kYWRk eS5jb20vZ2RpZzJzMS0xMzMwNC5jcmwwXQYDVR0gBFYwVDBIBgtghkgBhv1tAQcX ATA5MDcGCCsGAQUFBwIBFitodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29t L3JlcG9zaXRvcnkvMAgGBmeBDAECATB2BggrBgEFBQcBAQRqMGgwJAYIKwYBBQUH MAGGGGh0dHA6Ly9vY3NwLmdvZGFkZHkuY29tLzBABggrBgEFBQcwAoY0aHR0cDov L2NlcnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5L2dkaWcyLmNydDAf BgNVHSMEGDAWgBRAwr0njsw0gzCiM9f7bLPwtCyAzjARBgNVHREECjAIggZ5aWMu Y2EwHQYDVR0OBBYEFC022AIHPpQ4gHZSUTZ9p1Q5fEUfMIIBfAYKKwYBBAHWeQIE AgSCAWwEggFoAWYAdQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAA AYxVJyC/AAAEAwBGMEQCIHE0HVnXLVDH41EFi6//xHYxqhDg+k2sFzPDvZcnLH5b AiAgi9mnrh/Ms/qtRbw4ivHKMDMHonC/0XtH+ui7PXc1cQB2AEiw42vapkc0D+Vq AvqdMOscUgHLVt0sgdm7v6s52IRzAAABjFUnIb8AAAQDAEcwRQIgV9H5YH4RX9k/ jksr6SMSAUtVl5d7p3qSZKrRj3CO14kCIQCJHQ/3lyvKIUQaiGiYKrqRM6eaYHcu odptmcWEcdvmqAB1ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAAB jFUnIjAAAAQDAEYwRAIgRhXtlnfc1sRNHCNNIi3dfYSTtZm07Tu2S9+GqZEbU/EC IBMK0mdd5g4Hkg0tbalDXB4r+3nK7rHG9yF2KKxbrlALMA0GCSqGSIb3DQEBCwUA A4IBAQB6Pttoa++tHJN0cAdelPMYcuhbKdK1hiXXUvjfmuD4nTzZ65/mbR5haVCb 4Xerpm0HUMLmobKWaDUIWL6tmqxs/dKeIk4/cr9vg4IL8+VQcsvF0EtmdFl+IOcY iqmctcH6x+1qVFvkp1/jOROZ0xEFx1QpZujsqp15skMy4jB49u+lurd2WfkYB+as Ax4qBmeDTHuez8VJo1Hf8pkVhahNmuJO0ZCt6n/6Kf3Ho7+Bh0Xee6RzI9f77Poq R4JhZYUdETTZ0YMCTIxOKvspyg865q7Nk4yMCgsoe0tF0qYweCbxA3GS9ThvTRH7 OXBK0warA884PrkOZNLyO6E17qNh -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysvbeVFW3A9FlDkrtWEC geELJA+e8jQF6EAIYhGPX6SOH2Fy98zPNR07MXVfU4tczJOWMtub2Fj4b1tK+nwd 9TXS2SbPjrJnvEmDN3puyxWvIrzm+5vFWQQ4I/zjkgSYCpwTnAXfP9i18sewASs2 3uwn+TbMk10D2bsftA2WhePlDxLHD+ryx2QIzGsvF9wE+rV8WTV6npzMQIPsWf5m 3/EfAKzJ1z2/kFAUCQvfw67Fcyleasp06sAaWxsrJql7eBQr0DaOMq+gHN+p1tNB 9C0G3OPYRQAVtFQZetjkoioEWoo4ilFUzHVg296kQwZ3BKyIhdVNBxkLbBraWPLp UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14947047339423503645 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-10 19:14:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-10 19:14:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'yic.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25600663394239832229763475921358293748596442803497864496868816720722948430312927080488421482580634159014009380518219017597811494970317424661513131932739634389326757703040812844581733442173317762375578604647927164318532711880644761531630050422944121533481942067083521779184982609261495784920658235919214831694297039496697661948276118427478031013682261964461044131723949621634905846738798831086088111770918978154042320613567623672410927227426974780386782100240288654364301529258994007543856195593371560520207533874889926575116033150798964074744744571957189205866266030635400004949353000057361750967031441308663017564497 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-13304.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (10 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'yic.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2d36d802073e943880765251367da754397c451f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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