canaanspace.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 02:f0:bd:52:92:32:f7:bf was issued on by GoDaddy.com, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=canaanspace.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:f0:bd:52:92:32:f7:bfSerial Number (int): 211877344824195007
Serial Number lenght: 58 bits, 8 octets
SubjectKeyId: af:10:9a:77:1f:e9:26:60:65:d0:35:dd:a4:2f:ed:76:77:5d:5f:c3
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 56:44:5a:d7:fa:d9:3b:49:75:03:d6:8e:8f:15:6c:84:70:0a:57:90
Fingerprint (sha256): f5:58:e4:5d:98:08:1c:41:c0:a3:74:c0:a8:cc:b2:6a:a7:54:cb:db:8d:b8:d2:01:45:10:72:03:ee:f3:90:fd
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-5618.crl
Check the revocation status for certificate canaanspace.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for canaanspace.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
canaanspace.com
Other certificates including the domain name canaanspace.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for canaanspace.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHhDCCBmygAwIBAgIIAvC9UpIy978wDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMjMwNTA1MDAxMjM5WhcN MjQwNTA1MDAxMjM5WjAaMRgwFgYDVQQDEw9jYW5hYW5zcGFjZS5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQD1AGzqnN8/fIZtWyqANFeLwaa++x8H kKn9MwNvLA7ZAajcQLil6HBDBY/h9Ihi/DVV0CJU14HlccDHHZScBjil2AaNnk0o Wkau56mSD7Gb6bRNJ6PG8SBQJpkeiyK7IhrcEtEHUmY09MmTFQ8k8q07iUSdr/5y KS1FSdnwMxQadOVhUlU6sntwunu14FFDj1oV3oZgtPgLimbI4BsaWes0/o4QXoth WnsmtVv4qc+HKkZpgZTY7IsrP813jQ/4TBHgPbA1jysjC/8y3GLG/lQ14dVQaOSE RS0/urifsRnpmuuOWKQZHE5yLqDF3XPx88bM6kqDbUOnpekriZMcFI00YjToUWud JirbEgFWhcsjmm82wrjZ30dmFe1vfFyLQOL1W/S7Yho0aD1oKaa3ACT2NgPFhQsg H0BX5mdV02aIHrgCBmoJgXHhK8vFeP54KmcEJGIuhOvWjWD6e59meeQErnBqh/h8 raV/Flk8Y+zBfRLs5hOvzK0ZNQYWyldikcR3VVl9gSW8r4AujSa7SuJu9v1Y7zeU Bcktpw2h/5TbTefLWARleuTzDznWZlIZLYX2Eo+btexYQDKqznEVN+kfX2986xHe RLEOWMev1iFGg83ZX6OoJ0HX9YXDZHSxEOmXjp6nRTjW4lmnhZOgfZjcu57/DEJ/ TkaRgbAZ4iVGPwIDAQABo4IDMTCCAy0wDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMDgGA1UdHwQxMC8w LaAroCmGJ2h0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2RpZzJzMS01NjE4LmNybDBd BgNVHSAEVjBUMEgGC2CGSAGG/W0BBxcBMDkwNwYIKwYBBQUHAgEWK2h0dHA6Ly9j ZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIBMHYG CCsGAQUFBwEBBGowaDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZ29kYWRkeS5j b20vMEAGCCsGAQUFBzAChjRodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29t L3JlcG9zaXRvcnkvZ2RpZzIuY3J0MB8GA1UdIwQYMBaAFEDCvSeOzDSDMKIz1/ts s/C0LIDOMBoGA1UdEQQTMBGCD2NhbmFhbnNwYWNlLmNvbTAdBgNVHQ4EFgQUrxCa dx/pJmBl0DXdpC/tdnddX8MwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2AO7N 0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABh+lA8CQAAAQDAEcwRQIg DlKiT45ujkbvQMgZvH+6Cgj5dEvdDwQl746eQ0qd+nwCIQCE3Ena/K4uJiDV+UaQ 3Fa8ibAc8k3kAgq50RWy/FNr9QB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7 v6s52IRzAAABh+lA8OsAAAQDAEgwRgIhAO07ufGrW519kK6OMk1tDEvtg3a7j65w AD0QzsFAHX4GAiEAo/hc25XJuIi/r7gMw0YsSLEo7elq5umjpEfKIbcJWJoAdgDa tr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYfpQPFRAAAEAwBHMEUC IALjEiv2u9TX1NzrtzHEHj4B9oaft0iM0p9ziP0xlvG+AiEA4Hm82u74Cv0vj4y+ rFBZzNqo2wR8fhh7GO/FVFKAThkwDQYJKoZIhvcNAQELBQADggEBAAhoa4CXGw6g VAGeICLFkAjqTX6leZxciHRe8aBlGjYkGOQtE59jYQlNydN76lTs1kNbuPnLUiBn 68FYwtQp7n+9yYSlVysAh2OCJ9tO7vWWl/qMjTU29Rq54u/dlJX1gYNO6A/VcjhE LQbVjZHSWnxGVKox++IQMcjqzqLhyDTh2+LBq5JiCUv/lchDTuffWMtZkS+vKZL4 dysoWhjuKExszvKUOe5fZuBPPBQsBHiyof+HrneLOZkXkAtmMMewaLr1dEPihlHv FGZllh78RFhsY6bceKRBDaUrsiGbUsDYKgN7uM+8pVytyk9mliWND074FOrij2nF 8oEeEKeHyvw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA9QBs6pzfP3yGbVsqgDRX i8GmvvsfB5Cp/TMDbywO2QGo3EC4pehwQwWP4fSIYvw1VdAiVNeB5XHAxx2UnAY4 pdgGjZ5NKFpGruepkg+xm+m0TSejxvEgUCaZHosiuyIa3BLRB1JmNPTJkxUPJPKt O4lEna/+ciktRUnZ8DMUGnTlYVJVOrJ7cLp7teBRQ49aFd6GYLT4C4pmyOAbGlnr NP6OEF6LYVp7JrVb+KnPhypGaYGU2OyLKz/Nd40P+EwR4D2wNY8rIwv/Mtxixv5U NeHVUGjkhEUtP7q4n7EZ6ZrrjlikGRxOci6gxd1z8fPGzOpKg21Dp6XpK4mTHBSN NGI06FFrnSYq2xIBVoXLI5pvNsK42d9HZhXtb3xci0Di9Vv0u2IaNGg9aCmmtwAk 9jYDxYULIB9AV+ZnVdNmiB64AgZqCYFx4SvLxXj+eCpnBCRiLoTr1o1g+nufZnnk BK5waof4fK2lfxZZPGPswX0S7OYTr8ytGTUGFspXYpHEd1VZfYElvK+ALo0mu0ri bvb9WO83lAXJLacNof+U203ny1gEZXrk8w851mZSGS2F9hKPm7XsWEAyqs5xFTfp H19vfOsR3kSxDljHr9YhRoPN2V+jqCdB1/WFw2R0sRDpl46ep0U41uJZp4WToH2Y 3Lue/wxCf05GkYGwGeIlRj8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 211877344824195007 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-05 00:12:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-05 00:12:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'canaanspace.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 999519576760975347793458371240577109641015194462971765387703317138692759553103169895984755729930752938351557774177730952301701193691409391758042149586631908935881221634389155344488736315614304072085955860321781774525731119198172582038292441076366242260395407973695741383038375275897006390027165874582753934457112972913215413366337170590528451073706596289787166255879622103951582793770998408459145891791170548878827021001546534289905972528360932696027792568422938579602851166584364727707904443550760151820074706781555380742896956959532702653990556344634077622228782261492302772287391245721023373399832505929706587259065081074890878468402511701931263238353266586915107682139404868945327488465482392100997099800887080828236739396542572097310276473012092038937173678010202314661529272668684210640000405006864496747248322877556077811316227523726391604916865547765620634951607397789887296945090733522308707808695061418107224813439028641166168720074617706868846814659940886852024989664446214054449820639837431444952672529903548183225277380377480362521977975322695565517336393192021337214767410358623953640620834770005030292465609339971388385071944995698004076816656415565860038843318903868705384063995956309974129480812500909561959737017919 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-5618.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canaanspace.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) af109a771fe9266065d035dda42fed76775d5fc3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 0169007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000187e940f024000004030047304502200e52a24f8e6e8e46ef40c819bc7fba0a08f9744bdd0f0425ef8e9e434a9dfa7c02210084dc49dafcae2e2620d5f94690dc56bc89b01cf24de4020ab9d115b2fc536bf500770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d8847300000187e940f0eb0000040300483046022100ed3bb9f1ab5b9d7d90ae8e324d6d0c4bed8376bb8fae70003d10cec1401d7e06022100a3f85cdb95c9b888bfafb80cc3462c48b128ede96ae6e9a3a447ca21b709589a007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab00000187e940f1510000040300473045022002e3122bf6bbd4d7d4dcebb731c41e3e01f6869fb7488cd29f7388fd3196f1be022100e079bcdaeef80afd2f8f8cbeac5059ccdaa8db047c7e187b18efc55452804e19 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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