rfoco.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number ee:f7:d6:b4:48:c4:35:5a was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rfoco.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): ee:f7:d6:b4:48:c4:35:5aSerial Number (int): 17219467770077656410
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: 04:f6:22:16:ce:6a:f8:6a:02:3c:6d:a1:de:9a:d9:eb:ce:a5:30:43
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 52:b8:1d:c0:9f:93:fb:f6:5a:f2:7f:99:f3:6b:33:59:90:43:17:fc
Fingerprint (sha256): f6:18:fb:80:79:d0:41:c6:74:03:75:9d:54:c4:f7:b9:fe:b0:1c:20:1a:11:6e:2d:6b:59:77:72:d9:37:7d:17
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-7110.crl
Check the revocation status for certificate rfoco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rfoco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rfoco.com
Other certificates including the domain name rfoco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for rfoco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHdjCCBl6gAwIBAgIJAO731rRIxDVaMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDcyMTEyNTc1NVoX DTI0MDcyMTEyNTc1NVowFDESMBAGA1UEAxMJcmZvY28uY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAs1g1fAkB8pDgCOKqRbn/WXcqHRHECOC4SB/X XxL+CvibgTq44OzTleizlWBm74Xs9LrcXYe+4SRMojuVdLHHL0WAHdHJKYKoP0tU T3DEOgqbtwPE0AuobJ+NjpuhEiOwHJbpodyoXXZWfmalZ2h9ikFIO4WSRjkbWUyN kRg7q8QLMATmbNFm+QG5xrdi0Pc7uTfxSuOfBjeKXgzRsPuPfA675TP+FyD7q4A5 sJzmtHD7BaYSXcYmUbWgZZygz6loTZmc8/nsc4s6JVKKCOE07h0MU61U9vpvOhD7 EZZoWzGmfyla1Udz7AFoRBGspdX0JFctZoI8VcitjimJjBUc9PzoGDDoB7o5AaOh xlAc1Naj9ZUrF1+rr4pDmXEfH83i2B+QR6GD+oKd0l5Lrt6k5KnPdc8ywkGV7r+D dnqdp3Ro1G0k/7hXiE+n8ZASHnjX6gyw/XoemL/5Y6pfpIH3MBdQJDP4aeUyD5OJ l6ulCPP+afHF/rAZpX3TqFEBmVY7guq9BdTCVa9HuNr21e78lxQWCkpTxjSod2PQ R0g3dHUigw9hEb2qXU38g/ga7lKbxOXSDB3bF/6ULmwm2Kmw6Oi1tR2ojA27VPS8 KjKJRGcuWyvNRE9qQ6G8SQxWmS++wituU9wE/TwmGvPmDj7trAyrYyh8fisCzEDO eWW3FNMCAwEAAaOCAygwggMkMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDA4BgNVHR8EMTAvMC2gK6Ap hidodHRwOi8vY3JsLmdvZGFkZHkuY29tL2dkaWcyczEtNzExMC5jcmwwXQYDVR0g BFYwVDBIBgtghkgBhv1tAQcXATA5MDcGCCsGAQUFBwIBFitodHRwOi8vY2VydGlm aWNhdGVzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECATB2BggrBgEF BQcBAQRqMGgwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmdvZGFkZHkuY29tLzBA BggrBgEFBQcwAoY0aHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBv c2l0b3J5L2dkaWcyLmNydDAfBgNVHSMEGDAWgBRAwr0njsw0gzCiM9f7bLPwtCyA zjAUBgNVHREEDTALgglyZm9jby5jb20wHQYDVR0OBBYEFAT2IhbOavhqAjxtod6a 2evOpTBDMIIBfAYKKwYBBAHWeQIEAgSCAWwEggFoAWYAdgDuzdBk1dsazsVct520 zROiModGfLzs3sNRSFlGcR+1mwAAAYl4hz3CAAAEAwBHMEUCIBqxWmxfr0yeh/Tw C9CCOZ71SOiVNFe/mtV01x05U6CzAiEAy5yQJVVqNJBXdsZ81gpNvvgeUMLRtrlh DvetS+I/ri0AdQBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYl4 hz6VAAAEAwBGMEQCIC+lO7FKNRsGRB0PdEHrzkbxJGgSJ9hWEWNLLKHjVauTAiAz Kwp8ONfDh5LiYUW9NLn34ytImU8fsAmMGZg2u5tnIgB1ANq2v2s/tbYin5vCu1xr 6HCRcWy7UYSFNL2kPTBI1/urAAABiXiHPvsAAAQDAEYwRAIgEBGLtRLFV1mxM9ep Rko1+4/xmzDu42laOp/7E+Cc0qACIAhSo/UBRrAcKs1dVdfPvIh9No84BcQZNNnN vzNv6cWuMA0GCSqGSIb3DQEBCwUAA4IBAQA+dP+qy2hgP5mLtlIqibTXQhQWWD4A 6Q6Y+gKbodX29cg+HnKwwl0KyFtoAm0EyGQt9wqs7w91k+FhaGDQmYJD6/mAlMKp r1Gi0MX14NDixI2/OidqHvyCwbAkp1/IoL3hkej/8Pr6o0aJxUumB74ddQEntku8 IDDilW1wvWj5eZLiEufyF0XBd7C/rYjg8U/+GSG1rXZHK3DvI6IXmNJ1lrA1R4S+ OQg0eLPHMsxu6+m8H+e5pQCbKuENn+ZAp6Y09C7AcmLZC8bGrOFU1+BTnjZHtIAG toXfjNhBFef6+G4QBtDCOmUKkUlVtLajnjelqZ2q0WPv49jTpMklz7bo -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAs1g1fAkB8pDgCOKqRbn/ WXcqHRHECOC4SB/XXxL+CvibgTq44OzTleizlWBm74Xs9LrcXYe+4SRMojuVdLHH L0WAHdHJKYKoP0tUT3DEOgqbtwPE0AuobJ+NjpuhEiOwHJbpodyoXXZWfmalZ2h9 ikFIO4WSRjkbWUyNkRg7q8QLMATmbNFm+QG5xrdi0Pc7uTfxSuOfBjeKXgzRsPuP fA675TP+FyD7q4A5sJzmtHD7BaYSXcYmUbWgZZygz6loTZmc8/nsc4s6JVKKCOE0 7h0MU61U9vpvOhD7EZZoWzGmfyla1Udz7AFoRBGspdX0JFctZoI8VcitjimJjBUc 9PzoGDDoB7o5AaOhxlAc1Naj9ZUrF1+rr4pDmXEfH83i2B+QR6GD+oKd0l5Lrt6k 5KnPdc8ywkGV7r+Ddnqdp3Ro1G0k/7hXiE+n8ZASHnjX6gyw/XoemL/5Y6pfpIH3 MBdQJDP4aeUyD5OJl6ulCPP+afHF/rAZpX3TqFEBmVY7guq9BdTCVa9HuNr21e78 lxQWCkpTxjSod2PQR0g3dHUigw9hEb2qXU38g/ga7lKbxOXSDB3bF/6ULmwm2Kmw 6Oi1tR2ojA27VPS8KjKJRGcuWyvNRE9qQ6G8SQxWmS++wituU9wE/TwmGvPmDj7t rAyrYyh8fisCzEDOeWW3FNMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17219467770077656410 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-21 12:57:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-21 12:57:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rfoco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 731661995257790921427280896387807411615336245185943469176823723985549752286165830455481842495703082219575413050524362839671450203121170460791358925673204650735056717731220957783326516634667078950523557163514062574587000718278343402468440844455770321655261735383009052109694720371021635092051717764820959572554757778549658238105244007183540003488047847253736998392813075943794406063731996557568566673248239067026552172373559321410426311757838056150335458002028779554972835357047840965806442287690985283018318225608126941788492831065506745277529139356270393690978067272811280053971033974268929113121258006156138620644810423595613230441010862052082652079120441116195381323652444954613652191872779688035717525569465182898462434180738267343097532710056252281182822424200589768375744982077812341781315595498347972516529361182765230680250288050830552070013361039552782617999884737195107940286142256309582442309253623403934207452396132899396047055060155823389318380257059728980875539846879992738872552606526771232474029735898348455898937517732062213866119029945504537925048301580222484669459559427123948807724472685799336499599549116383270411009113931542116812720373107750061524432939092991148888764386086241699169876857336095915384017196243 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-7110.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rfoco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 04f62216ce6af86a023c6da1de9ad9ebcea53043 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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