vpn.sodra.com
- SodraSkogsagarna -
Issued by TeliaSonera Gateway CA v1
About this certificate
This digital certificate with serial number 29:7d:5d:f7:50:bd:f5:e1:12:32:94:62:a1:5d:f1:ca was issued on by TeliaSonera.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [ContentCommitment DataEncipherment DigitalSignature KeyEncipherment] (00001111) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- For certificates valid after 31 Dec 2013, all certificates using RSA public key algorithm MUST have 2048 bits of modulus (BRs: 6.1.5)
- Subscriber Certificate: authorityInformationAccess MUST contain the HTTP URL of the Issuing CA's OSCP responder. (BRs: 7.1.2.3)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
SodraSkogsagarna
Organization:
SodraSkogsagarna
Organization unit: Telia Secure Remote User
Organization unit: Telia Secure Remote User
State / Province:
Vaxjo
Locality: Vaxjo
Country: SE
Locality: Vaxjo
Country: SE
TeliaSonera
Organization:
TeliaSonera
This certificate has expire since
Certificate Details
Serial Number (hex): 29:7d:5d:f7:50:bd:f5:e1:12:32:94:62:a1:5d:f1:caSerial Number (int): 55149290792936133768494977864953622986
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: a2:b3:b8:4e:8b:c3:49:4f:c3:73:f2:79:d8:db:8c:70:28:75:e7:76
AuthorityKeyId: 8f:59:95:28:26:a2:b0:6d:19:49:99:d2:fb:b0:84:47:4d:cb:95:fc
Fingerprint (sha1): ba:75:b2:4f:25:82:10:52:4b:b2:39:fd:b4:32:4f:38:1b:25:4c:90
Fingerprint (sha256): f2:c9:44:29:db:96:68:ab:d9:90:81:ed:3a:b6:12:0b:8c:66:00:60:06:45:89:bc:c3:1f:86:df:77:cd:21:f0
Issuing Certificate URL: http://repository.trust.teliasonera.com/teliasoneragatewaycav1.cer
Revocation information
CRL Distribution Point: http://crl-3.trust.teliasonera.com/teliasoneragatewaycav1.crlCRL Distribution Point: ldap://crl-1.trust.teliasonera.com/cn=TeliaSonera%20Gateway%20CA%20v1,o=TeliaSonera?certificaterevocationlist;binary
Check the revocation status for certificate vpn.sodra.com
1
DNS Names
0
Email Addresses
2
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vpn.sodra.com
Public Key Algorithm
RSA
Key Size
1024
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Content Commitment
Key Encipherment
Data Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vpn.sodra.com
194.237.208.184
194.237.208.185
194.237.208.184
194.237.208.185
Other certificates including the domain name sodra.com
(limited to 100 certificates)
webmail.sodra.com
energiprodukter.sodra.com
pptest.sodra.com
ehub.sodra.com
latvia.sodra.com
lrf.sodra.com
support.sodra.com
VPN.Sodra.com
oncemore.sodra.com
*.sodra.com
redirect.sodra.com
latvia.sodra.com
guider.sodra.com
ucexternal.sodra.com
energiprodukter.sodra.com
latvia.sodra.com
karriar.sodra.com
psol.sodra.com
skog.sodra.com
sip.sodra.com
*.og.sodra.com
*.og-test.sodra.com
energiprodukter.sodra.com
*.og-test.sodra.com
karriar.sodra.com
energiprodukter.sodra.com
*.og.sodra.com
medlem.sodra.com
el.sodra.com
oncemore.sodra.com
servicedesk.ecm.software
*.sodra.com
energiprodukter.sodra.com
career.sodra.com
webmail.sodra.com
career.sodra.com
*.sodra.com
*.sodra.com
*.sodra.com
*.sodra.com
support.sodra.com
servicedesk.ecm.software
latvia.sodra.com
support.sodra.com
pellets.sodra.com
ucexternal.sodra.com
b2bwood.sodra.com
energiprodukter.sodra.com
vpn.sodra.com
webmail.sodra.com
entreprenor.sodra.com
pellets.sodra.com
karriar.sodra.com
lc.sodra.com
latvia.sodra.com
PULPSERVICES.SODRA.COM
*.og-test.sodra.com
wood1.sodra.com
energiprodukter.sodra.com
oncemore.sodra.com
ehubtest.sodra.com
*.og-test.sodra.com
energiprodukter.sodra.com
career.sodra.com
support.sodra.com
sip.sodra.com
*.sodra.com
latvia.sodra.com
pulpit.sodra.com
workplace.sodra.com
energiprodukter.sodra.com
vpn.sodra.com
energiprodukter.sodra.com
energiprodukter.sodra.com
energiprodukter.sodra.com
pptest.sodra.com
ehub.sodra.com
latvia.sodra.com
lrf.sodra.com
support.sodra.com
VPN.Sodra.com
oncemore.sodra.com
*.sodra.com
redirect.sodra.com
latvia.sodra.com
guider.sodra.com
ucexternal.sodra.com
energiprodukter.sodra.com
latvia.sodra.com
karriar.sodra.com
psol.sodra.com
skog.sodra.com
sip.sodra.com
*.og.sodra.com
*.og-test.sodra.com
energiprodukter.sodra.com
*.og-test.sodra.com
karriar.sodra.com
energiprodukter.sodra.com
*.og.sodra.com
medlem.sodra.com
el.sodra.com
oncemore.sodra.com
servicedesk.ecm.software
*.sodra.com
energiprodukter.sodra.com
career.sodra.com
webmail.sodra.com
career.sodra.com
*.sodra.com
*.sodra.com
*.sodra.com
*.sodra.com
support.sodra.com
servicedesk.ecm.software
latvia.sodra.com
support.sodra.com
pellets.sodra.com
ucexternal.sodra.com
b2bwood.sodra.com
energiprodukter.sodra.com
vpn.sodra.com
webmail.sodra.com
entreprenor.sodra.com
pellets.sodra.com
karriar.sodra.com
lc.sodra.com
latvia.sodra.com
PULPSERVICES.SODRA.COM
*.og-test.sodra.com
wood1.sodra.com
energiprodukter.sodra.com
oncemore.sodra.com
ehubtest.sodra.com
*.og-test.sodra.com
energiprodukter.sodra.com
career.sodra.com
support.sodra.com
sip.sodra.com
*.sodra.com
latvia.sodra.com
pulpit.sodra.com
workplace.sodra.com
energiprodukter.sodra.com
vpn.sodra.com
energiprodukter.sodra.com
energiprodukter.sodra.com
Certificate
The complete raw certificate details for vpn.sodra.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFqTCCA5GgAwIBAgIQKX1d91C99eESMpRioV3xyjANBgkqhkiG9w0BAQUFADA6 MRQwEgYDVQQKDAtUZWxpYVNvbmVyYTEiMCAGA1UEAwwZVGVsaWFTb25lcmEgR2F0 ZXdheSBDQSB2MTAeFw0xNDA1MjgxMjE5NDZaFw0xNzA1MjgxMjE5NDdaMIGDMQsw CQYDVQQGEwJTRTEOMAwGA1UECAwFVmF4am8xDjAMBgNVBAcMBVZheGpvMRkwFwYD VQQKDBBTb2RyYVNrb2dzYWdhcm5hMSEwHwYDVQQLDBhUZWxpYSBTZWN1cmUgUmVt b3RlIFVzZXIxFjAUBgNVBAMMDXZwbi5zb2RyYS5jb20wgZ8wDQYJKoZIhvcNAQEB BQADgY0AMIGJAoGBAM3pamVvT9yV/pgjFcTW+KH09FUotpvOAuMJMI1rS4Dx4Tky h7IKXYDdnYZtel0OagVbyC7u1J72hgQG5aj2f1n11ZbIp4sFIrH+1XZ9xZ9+IQD+ YzWa1zAgVK3dZJEWrVOwMV8gCTeNr22WTcu2A+Iycl5jO5XVfSUKQYYTeHVBAgMB AAGjggHjMIIB3zAkBgNVHREEHTAbhwTC7dC4hwTC7dC5gg12cG4uc29kcmEuY29t MF4GCCsGAQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3JlcG9zaXRvcnku dHJ1c3QudGVsaWFzb25lcmEuY29tL3RlbGlhc29uZXJhZ2F0ZXdheWNhdjEuY2Vy MB8GA1UdIwQYMBaAFI9ZlSgmorBtGUmZ0vuwhEdNy5X8MBkGA1UdIAQSMBAwDgYM KwYBBAGCDwIDAQEQMIHMBgNVHR8EgcQwgcEwQ6BBoD+GPWh0dHA6Ly9jcmwtMy50 cnVzdC50ZWxpYXNvbmVyYS5jb20vdGVsaWFzb25lcmFnYXRld2F5Y2F2MS5jcmww eqB4oHaGdGxkYXA6Ly9jcmwtMS50cnVzdC50ZWxpYXNvbmVyYS5jb20vY249VGVs aWFTb25lcmElMjBHYXRld2F5JTIwQ0ElMjB2MSxvPVRlbGlhU29uZXJhP2NlcnRp ZmljYXRlcmV2b2NhdGlvbmxpc3Q7YmluYXJ5MB0GA1UdJQQWMBQGCCsGAQUFBwMC BggrBgEFBQcDATAOBgNVHQ8BAf8EBAMCBPAwHQYDVR0OBBYEFKKzuE6Lw0lPw3Py edjbjHAoded2MA0GCSqGSIb3DQEBBQUAA4ICAQBuwZaq0z0UhwwgTpUMAKtBiaPI Rc9mmt3BMU+Hwt7aRPC9ObITBewAbvjJDAUe7cCfKnnbXwLypynlQbtTVjVNSMmb f4BoyNjj5kn++MC+8sN64zoJIq6vo4nX5s0fCzeqFTSFcLAyyFmoFcVpxJmrpLVz sf9DfC+Ye+nzEgkFDiIQ2jEcN3dOAKkrACP7lpo/KTECpllMS43BDvq6B2a0S4Gg YjGm+Dt98EabIfCDXOoNGQanxXTtDdWeZY0HR5+oSNdIkvCKiXoFZS8dWsCGZBD7 ZlcBxSU9vXDRKQ2xagFbzlLckruIiWVrsDBBy8LbvK5R/pHjBPBkJCszFvjeFRZo boAnkIcMRPPT5HeDObjyMerVkg1fqmqsvjwgptuE04nU1/5lpKHexwynf6nODPqF oSndFOozj1KvaUziNZGFz/XDDM0v207aniX/LgdWVZPBaEKkwGBBmjl743fesD/l QRgEXzj3CCMVpxrlHHQTzhqsQA2go7GIvGd4yFMlj3kRNuIvQ+BEylzUmVpQVh0D YpKvCq0/H46ert48Yyu+jPIjviQx0AFoyhpEQY7Mi4MDqSauX/fb1w8fhG265am4 mOwzYxZmPPpk0J0uxQ/TIY2L9boHF2a1i5MWE5zTz9TRU4JtWiqKHxLpBz7wepaW gy+gqIqDgAZ8bIB+5Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDN6Wplb0/clf6YIxXE1vih9PRV KLabzgLjCTCNa0uA8eE5MoeyCl2A3Z2GbXpdDmoFW8gu7tSe9oYEBuWo9n9Z9dWW yKeLBSKx/tV2fcWffiEA/mM1mtcwIFSt3WSRFq1TsDFfIAk3ja9tlk3LtgPiMnJe YzuV1X0lCkGGE3h1QQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 55149290792936133768494977864953622986 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'TeliaSonera' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'TeliaSonera Gateway CA v1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-05-28 12:19:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-28 12:19:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Vaxjo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Vaxjo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SodraSkogsagarna' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Telia Secure Remote User' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'vpn.sodra.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1120 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 144596169063920195609455679473854332262814044951765202649270961534460901906183605579184971978824085249994764013499554793500777236630901391540105688070295131901318499292380716268626513653322587525367422450348137652698047185310944047836897102456760056913504896005965285267229961090643524683714258579259783673153 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:7|false] OCTET STRING '194.237.208.184' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:7|false] OCTET STRING '194.237.208.185' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn.sodra.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://repository.trust.teliasonera.com/teliasoneragatewaycav1.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8f59952826a2b06d194999d2fbb084474dcb95fc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.271.2.3.1.1.16 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (196 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl-3.trust.teliasonera.com/teliasoneragatewaycav1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://crl-1.trust.teliasonera.com/cn=TeliaSonera%20Gateway%20CA%20v1,o=TeliaSonera?certificaterevocationlist;binary' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a2b3b84e8bc3494fc373f279d8db8c702875e776 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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