*.png.ca
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 36:91:fe:71:0e:47:14:ad was issued on by GoDaddy.com, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.png.ca,OU=Domain Control Validated
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 36:91:fe:71:0e:47:14:adSerial Number (int): 3932203711195452589
Serial Number lenght: 62 bits, 8 octets
SubjectKeyId: 35:f2:f1:4b:53:d4:a6:af:d2:71:22:77:18:9d:d6:23:ac:32:80:2b
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): fb:6f:5b:74:ae:c3:64:ff:27:31:6f:e8:10:71:ef:7a:fa:75:90:a1
Fingerprint (sha256): ef:d6:8a:2b:03:f5:0b:37:e0:eb:d0:c1:8a:fc:a3:64:06:13:1f:4c:2b:82:72:8e:06:04:6b:85:d5:ed:7f:34
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-1637.crl
Check the revocation status for certificate *.png.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.png.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.png.ca
png.ca
png.ca
Other certificates including the domain name png.ca
(limited to 100 certificates)
png.ca
png.ca
*.PNG.CA
ebill.png.ca
*.png.ca
aui2056.png.ca
webmail.png.ca
png.ca
png.ca
webmail.png.ca
*.png.ca
webmail.png.ca
aui0056.png.ca
png.ca
webmail.png.ca
*.sp-apps.png.ca
www.png.ca
png.ca
webmail.png.ca
ebill.png.ca
png.ca
png.ca
aui2055.png.ca
www.png.ca
png.ca
www.png.ca
legacy.png.ca
*.png.ca
ebill.png.ca
png.ca
*.png.ca
ebill.png.ca
png.ca
png.ca
webmail.png.ca
ebill.png.ca
dev.png.ca
*.png.ca
webmail.png.ca
aui0055.png.ca
png.ca
png.ca
*.PNG.CA
ebill.png.ca
*.png.ca
aui2056.png.ca
webmail.png.ca
png.ca
png.ca
webmail.png.ca
*.png.ca
webmail.png.ca
aui0056.png.ca
png.ca
webmail.png.ca
*.sp-apps.png.ca
www.png.ca
png.ca
webmail.png.ca
ebill.png.ca
png.ca
png.ca
aui2055.png.ca
www.png.ca
png.ca
www.png.ca
legacy.png.ca
*.png.ca
ebill.png.ca
png.ca
*.png.ca
ebill.png.ca
png.ca
png.ca
webmail.png.ca
ebill.png.ca
dev.png.ca
*.png.ca
webmail.png.ca
aui0055.png.ca
png.ca
Certificate
The complete raw certificate details for *.png.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGnjCCBYagAwIBAgIINpH+cQ5HFK0wDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMjAwMTExMDA0MjE4WhcN MjIwMTEzMDY0NTAwWjA2MSEwHwYDVQQLExhEb21haW4gQ29udHJvbCBWYWxpZGF0 ZWQxETAPBgNVBAMMCCoucG5nLmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAoXhcJ/C6UHE8NpOU/hh3mxw6/IKQOReX0Pnc4G0ku/ysxuAQtAejLDhp 95G5gWy3f2i7lyN0vBh0h+gyYGAOKUuAcsw0b63AEFXJFJydu29Qwmr6D3rF4Wus 4Nu3MYXSXmx46liTLQeEngllTbMRkg4x9gli0+5oHQ6hnJ21bNIAxLUmp9jgjWPn vmgF1zZKHNQHYlOA2g8DJ1ALBqWKutV4T9+x/Ib7GcfyqaiDNfdK5p3rM/V/FTI3 ARzP9MUediAEqVAK+Ralxrr60OD4T4nmnE+bbJnQH7wnfVC3MhYbJ2b9//d+vBlx xpdsLq0MKURDTQCMzbTnkA5tgGo5lQIDAQABo4IDLzCCAyswDAYDVR0TAQH/BAIw ADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWg MDgGA1UdHwQxMC8wLaAroCmGJ2h0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2RpZzJz MS0xNjM3LmNybDBdBgNVHSAEVjBUMEgGC2CGSAGG/W0BBxcBMDkwNwYIKwYBBQUH AgEWK2h0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS8w CAYGZ4EMAQIBMHYGCCsGAQUFBwEBBGowaDAkBggrBgEFBQcwAYYYaHR0cDovL29j c3AuZ29kYWRkeS5jb20vMEAGCCsGAQUFBzAChjRodHRwOi8vY2VydGlmaWNhdGVz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvZ2RpZzIuY3J0MB8GA1UdIwQYMBaAFEDC vSeOzDSDMKIz1/tss/C0LIDOMBsGA1UdEQQUMBKCCCoucG5nLmNhggZwbmcuY2Ew HQYDVR0OBBYEFDXy8UtT1Kav0nEidxid1iOsMoArMIIBfAYKKwYBBAHWeQIEAgSC AWwEggFoAWYAdQCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAAAW+S DXcOAAAEAwBGMEQCIHekPwq6oIDQBquVGgs+7KV9SKUvFZTdDAxV9/FjYvRpAiA7 DqYroAqAKzhIFAFq1uE2Ku9chTm3k7/eXzcrnXJL6wB2AO5Lvbd1zmC64UJpH6vh nmajD35fsHLYgwDEe4l6qP3LAAABb5INe4YAAAQDAEcwRQIhAIGqtR7xLXFjwvBr 63TYlbgu5plPmt76WZackswBk1keAiBeqB2O9GujERrxeEqv4VkDlxJkroWrCygd txCv3Q8w5AB1AFYUBpov18Ls0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDdAAABb5IN gYsAAAQDAEYwRAIgX27Rf42i4Cm6m2qS7MidO1Iz4E9APU88ij3MLBzCOt4CIB0M xogabiNpg8gjyHg8ya/qbEatFRfXt79mkSWTWgq6MA0GCSqGSIb3DQEBCwUAA4IB AQAArkFq2KL9Uegz3PpIpGr4EH0Tq3D7e+nfZ2SX4Hnckd97srdTUtKOLFT5JJ9j lAf/VkDR3MnLa0EvvRN9nO4YttCUikSCrbi8xirKm1YTbi4z8B5lRvKGEaqE5ZQc t9SjL5L/nLI0LiQ10K8Nhh5516DNFerc33IqYEkv6T1x2KYtIKfsC/97kPWgZGpT dzueXXCmE9sKFJFqazpMLz97A3nhQnOv8Ol9lcUFA785UqUAUIGqlUMWo+AbnDai XgmXkYYT85wBvV7dCUZuBRB+JU4hsqku7wQ3Ze1/fNwqw2cQhBM3KrvbEQ69ahAo SWONWp5HQSc6moUlYlU3TqP+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXhcJ/C6UHE8NpOU/hh3 mxw6/IKQOReX0Pnc4G0ku/ysxuAQtAejLDhp95G5gWy3f2i7lyN0vBh0h+gyYGAO KUuAcsw0b63AEFXJFJydu29Qwmr6D3rF4Wus4Nu3MYXSXmx46liTLQeEngllTbMR kg4x9gli0+5oHQ6hnJ21bNIAxLUmp9jgjWPnvmgF1zZKHNQHYlOA2g8DJ1ALBqWK utV4T9+x/Ib7GcfyqaiDNfdK5p3rM/V/FTI3ARzP9MUediAEqVAK+Ralxrr60OD4 T4nmnE+bbJnQH7wnfVC3MhYbJ2b9//d+vBlxxpdsLq0MKURDTQCMzbTnkA5tgGo5 lQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3932203711195452589 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 00:42:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-13 06:45:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.png.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20383718819932339908383427356122265733901686235066911582130289889776893656898127129210846002356509466605360787422615099299107588370057612896727874380099526578581172755588868157715567053877961544497871483575450791677648612912293763896298772231783183103743486864250256795309483512552066811396138051505370875987686386644770193446586731167584066898738458421117440728771735285335682690994483418270759289462659442691794312101748822796331265060173291625265644432150252336234002531736453070685885432964992667215555932544823642181028351508628820913795987327297453722138162388068591519479045501597449376620426987092341246540181 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-1637.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.png.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'png.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 35f2f14b53d4a6afd2712277189dd623ac32802b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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