www.epublimmo.sncf
- SNCF RESEAU -
Issued by GlobalSign RSA OV SSL CA 2018
About this certificate
This digital certificate with serial number 36:2b:83:ec:db:0e:c4:58:54:e5:b3:7b was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
SNCF RESEAU
Organization:
SNCF RESEAU
State / Province:
Île-de-France
Locality: Paris
Country: FR
Locality: Paris
Country: FR
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 36:2b:83:ec:db:0e:c4:58:54:e5:b3:7bSerial Number (int): 16764797339821689712268391291
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 36:a1:3a:90:fc:d5:ac:1a:02:c5:7a:c0:ce:ac:d0:f8:42:b6:b8:bb
AuthorityKeyId: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb
Fingerprint (sha1): 37:78:03:3b:66:11:e3:c2:61:4a:c8:f9:a3:49:2a:c7:d6:21:4b:e4
Fingerprint (sha256): f6:67:72:18:32:69:42:96:2d:87:3b:b5:42:a4:d7:4c:87:d0:29:2d:ce:8f:8a:7e:20:fb:40:a7:e4:f5:6d:e9
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018CRL Distribution Point: http://crl.globalsign.com/gsrsaovsslca2018.crl
Check the revocation status for certificate www.epublimmo.sncf
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.epublimmo.sncf
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.epublimmo.sncf
epublimmo.sncf
epublimmo.sncf
Other certificates including the domain name epublimmo.sncf
(limited to 100 certificates)
epublimmo.sncf
staging.epublimmo.sncf
epublimmo.sncf
staging.epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
www.epublimmo.sncf
www.epublimmo.sncf
staging.epublimmo.sncf
epublimmo.sncf
staging.epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
www.epublimmo.sncf
www.epublimmo.sncf
Certificate
The complete raw certificate details for www.epublimmo.sncf in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGmjCCBYKgAwIBAgIMNiuD7NsOxFhU5bN7MA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0xOTEyMjMwODM0MjhaFw0y MTEyMjMwODM0MjhaMGkxCzAJBgNVBAYTAkZSMRcwFQYDVQQIDA7DjmxlLWRlLUZy YW5jZTEOMAwGA1UEBxMFUGFyaXMxFDASBgNVBAoTC1NOQ0YgUkVTRUFVMRswGQYD VQQDExJ3d3cuZXB1YmxpbW1vLnNuY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCGLscpKMYt8zdUNAnINIeQut9ZAq5JNVqXLCZhd0wjypCwEqRHhfv6 Ldk3wUqNR2oK3zfRAGOYn4Epz1e/X9kZhardYrVUMFU0ORg2RU/JETw4pNfW2vm2 qF/5mfNZZ1q18NVHioCJDaiL+sUMS0Q0bsWsINfilrwem/IxjX6MZX7so2nN4thX oxs/dSJHJeB9/PmTMLRYJCAoLIEkm/y9nJy1p9d9INVx2G/4tSFU8rp6wyYleaA2 R/2VPgLDvk7RE9ATLkqOMmyOIkNLpVJQ+wFh2cxxZKdmK3VNJMcURTtc2+HvGysC gFCpGlTcNdioX5bzhXi34647AR5EQl9rAgMBAAGjggNZMIIDVTAOBgNVHQ8BAf8E BAMCBaAwgY4GCCsGAQUFBwEBBIGBMH8wRAYIKwYBBQUHMAKGOGh0dHA6Ly9zZWN1 cmUuZ2xvYmFsc2lnbi5jb20vY2FjZXJ0L2dzcnNhb3Zzc2xjYTIwMTguY3J0MDcG CCsGAQUFBzABhitodHRwOi8vb2NzcC5nbG9iYWxzaWduLmNvbS9nc3JzYW92c3Ns Y2EyMDE4MFYGA1UdIARPME0wQQYJKwYBBAGgMgEUMDQwMgYIKwYBBQUHAgEWJmh0 dHBzOi8vd3d3Lmdsb2JhbHNpZ24uY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECAjAJ BgNVHRMEAjAAMD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9jcmwuZ2xvYmFsc2ln bi5jb20vZ3Nyc2FvdnNzbGNhMjAxOC5jcmwwLQYDVR0RBCYwJIISd3d3LmVwdWJs aW1tby5zbmNmgg5lcHVibGltbW8uc25jZjAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwHwYDVR0jBBgwFoAU+O9/8s14Z6jeb48kjYjxhwMCs+swHQYDVR0O BBYEFDahOpD81awaAsV6wM6s0PhCtri7MIIBfgYKKwYBBAHWeQIEAgSCAW4EggFq AWgAdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAW8x5LngAAAE AwBHMEUCIEOhT+kAEaxyro6ONvCWqzg7DhVvIYO+84LqIrQ5mVdoAiEA7L9Mejf+ 1PFd+XA3GNaJyOOlqxmA1+gAMiMi/7LLT5wAdwD2XJQv0XcwIhRUGAgwlFaO400T GTO/3wwvIAvMTvFk4wAAAW8x5LmaAAAEAwBIMEYCIQDwp/7lG0VLodTxfk89gNbV weToNcnUu+Pq9KoHpDpvmQIhAJ7kZPq100rLTOYGTJ3esSSRkwiyTlNHlQHdJnhj /09SAHUAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAFvMeS5xgAA BAMARjBEAiAxHZ3+m+b7fFRgmGrYyAIbha+vrBVxnao0GWHku59qdgIgHRG0u3ow rP+vF/5eNNg7vrSQNK+IGxhGqnF1T/ffAQgwDQYJKoZIhvcNAQELBQADggEBAIOr o4z66WcYWCywj1SjPFKss+8sxtX6pwauHwlK17Zphn27akGqLEtQq2Ans6UkzSqb BwpbXqKtpNupjzhxEpcj+Cx0x+9zH7gq/nChF35OGPJ6RYqOlRgtCX5oM9IAN/q7 lE7MxglIdajUhUUluRW/mj3avMcKRrgfB2SqQhW/lQsiRuCQkpabiAgbRG0uOAqt f/BF7u1RE/aAGsKDes7/9rcJ6lzJrjtoQ+CJEuYwvxGiszXpoWcJDkEb5Gnwu9Vg uJMQPCJonZoEUDOZ5cy8myRuZ/HPzx2mOoA9k1hdk0kY03ZiiuXj/kXr36AZKwsj MgE16jNJ9zynXK9vxMM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhi7HKSjGLfM3VDQJyDSH kLrfWQKuSTValywmYXdMI8qQsBKkR4X7+i3ZN8FKjUdqCt830QBjmJ+BKc9Xv1/Z GYWq3WK1VDBVNDkYNkVPyRE8OKTX1tr5tqhf+ZnzWWdatfDVR4qAiQ2oi/rFDEtE NG7FrCDX4pa8HpvyMY1+jGV+7KNpzeLYV6MbP3UiRyXgffz5kzC0WCQgKCyBJJv8 vZyctafXfSDVcdhv+LUhVPK6esMmJXmgNkf9lT4Cw75O0RPQEy5KjjJsjiJDS6VS UPsBYdnMcWSnZit1TSTHFEU7XNvh7xsrAoBQqRpU3DXYqF+W84V4t+OuOwEeREJf awIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16764797339821689712268391291 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-23 08:34:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-23 08:34:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Île-de-France' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SNCF RESEAU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.epublimmo.sncf' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16938999943063595619297959162862786815810367432830772589900736286990735075880049574594016168161874664404555062457975481020190667531043467889313019465156364781737737312122829764885606971559668473521681711387633130612355665603521429669019618167869860238288682415607728423990385740244585012684409862427062851920484403498889184920992344751263756430808932033374188512270072318608301829576963556066343672451963845644292453236944571485826547755703957198009928754304707358795959156736999328146363855909334870153443477283923806107700753013098734280163663099154953604242693183606919813161347803386556863246415784679262977679211 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsrsaovsslca2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.epublimmo.sncf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'epublimmo.sncf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 36a13a90fcd5ac1a02c57ac0ceacd0f842b6b8bb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0083aba38cfae96718582cb08f54a33c52acb3ef2cc6d5faa706ae1f094ad7b669867dbb6a41aa2c4b50ab6027b3a524cd2a9b070a5b5ea2ada4dba98f3871129723f82c74c7ef731fb82afe70a1177e4e18f27a458a8e95182d097e6833d20037fabb944eccc6094875a8d4854525b915bf9a3ddabcc70a46b81f0764aa4215bf950b2246e09092969b88081b446d2e380aad7ff045eeed5113f6801ac2837acefff6b709ea5cc9ae3b6843e08912e630bf11a2b335e9a167090e411be469f0bbd560b893103c22689d9a04503399e5ccbc9b246e67f1cfcf1da63a803d93585d934918d376628ae5e3fe45ebdfa0192b0b23320135ea3349f73ca75caf6fc4c3