certapainting.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 91:20:97:56:a9:3d:57:01 was issued on by GoDaddy.com, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=certapainting.com
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): 91:20:97:56:a9:3d:57:01Serial Number (int): 10457524733216642817
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: b1:3b:88:cf:2d:44:6b:e6:98:bc:ff:91:e3:4c:e9:7c:db:41:0d:69
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 52:42:99:21:a7:65:19:4b:d3:e7:36:fa:c0:e6:08:eb:ec:7f:11:9a
Fingerprint (sha256): f9:cf:36:8e:6c:e2:56:1c:24:8a:3f:c7:31:72:c4:85:cf:81:2c:dd:da:f0:3f:b3:61:54:73:c9:0d:59:31:5f
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-6672.crl
Check the revocation status for certificate certapainting.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for certapainting.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
certapainting.com
Other certificates including the domain name certapainting.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for certapainting.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHiDCCBnCgAwIBAgIJAJEgl1apPVcBMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDcwNjExMDUwNVoX DTI0MDcwNjExMDUwNVowHDEaMBgGA1UEAxMRY2VydGFwYWludGluZy5jb20wggIi MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC5Lqzp4+rJZ9wAFkvaLyepD5C5 GvehkZMAIULoKBOMBu8ed1JdfonX9ONjiQO1JXUGME8iu7WMaepqUDUl1j4ySWqV /oLSWQgEooaEX8Bi49QwnyNusIMnjEsK/CLFw2N/lVpghlgmoJjuD8ZfiRd+vlyr QtiLXmKR+cO2gmuDwlU2B+cNTpdiQ7bRT205jBZ3wo+sWLNdOfbuke4W72M6tv35 78AHx/6afxd0axnGjVCHFOawXcpTlQNTTaLdqYpLTIDRERZ42V6fziSpYxHAYDUP 99xuEFRMpk75IXeOZQUurqEB/ZvJLbBcUAiSD8wH+uqpI8QEuxZ85R/Kk/7yLLzD Payi5FhLAL87dI2bIFiIKUWXWpvfJUS7OuLHWE9OHyfWX2pCxNCgHpwzvPsfGrCt Ag90YugstbRMakNYY3KzBYk7JAe70jXc+PewuXpksEXcZTXUVSgOStMAt0Uk2tF6 ea7CNXi2ATaL8RxdMJZlphWM1N5VJMBy/3hVDba83kwM9a/GjK0PKd9zBtdE2jTY wK54AJGC/9yzb4/EFd2gjiOQwfvoEU9Gsze9VsmJ1/hZQwxacV1JXJ0UizQaMs1L xG8qzWggH7gY68TUKZKSh6QyXPL9RZl5kvukTCA/VXf2aaVStP09VgxQM6YhB8Cw yuKjtkEdZK1oPghPXwIDAQABo4IDMjCCAy4wDAYDVR0TAQH/BAIwADAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMDgGA1UdHwQx MC8wLaAroCmGJ2h0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2RpZzJzMS02NjcyLmNy bDBdBgNVHSAEVjBUMEgGC2CGSAGG/W0BBxcBMDkwNwYIKwYBBQUHAgEWK2h0dHA6 Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIB MHYGCCsGAQUFBwEBBGowaDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZ29kYWRk eS5jb20vMEAGCCsGAQUFBzAChjRodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHku Y29tL3JlcG9zaXRvcnkvZ2RpZzIuY3J0MB8GA1UdIwQYMBaAFEDCvSeOzDSDMKIz 1/tss/C0LIDOMBwGA1UdEQQVMBOCEWNlcnRhcGFpbnRpbmcuY29tMB0GA1UdDgQW BBSxO4jPLURr5pi8/5HjTOl820ENaTCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFo AHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGJKuCPEQAABAMA SDBGAiEAovt4dn0qWkSWqfV382K0bu3ad1yR21YuuKAd8VweHFICIQDeTG0CbVHN KZ+SGucNdBYghbWLzbklZsIiAqBhkniSTQB2AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABiSrgj9cAAAQDAEcwRQIgAPpQKDpehpqUcxaBU5/jqaBi FqwyQVOteFEidhqxnGQCIQDWHjqrLOmzEbpOPMUyYersYc3Ym+DVCWrlJzwYig1q gQB1ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiSrgkD4AAAQD AEYwRAIgUg7DtWrm6LcPFwDNn8PBruxjtCqjt9pft64y1vLFqEACIFlQ5Ps9Us5L owaPtTJ7QqkHZvB7g65MdKlCQdB4Sif3MA0GCSqGSIb3DQEBCwUAA4IBAQCN3Uwg AzZVWpR3CVnfyNGlzNfCT7VPREikGSBIijkUE+cjQ+tKVvg5+zpK5sWei2lvBVP8 KFVcvV+kRvZLWK7ZNQgM3UDA2dtYKLLcNC3o6Q0eEyLi7uXhQTnPsbrLvORnsd3y BsCWrcrAnB043YL2wE/iZ47l7BVCuOoxfA82mjFr85ofEWvjgYUjR3NFFow9cDex Bd4PKzMvo5uaW4RAOaNEUrcGxYyG3K4JFR5jErEPoetvB1SvE5nirKbT+mojVtpz 8FmPX2fjBVYRyPPolseJcXUJVnSTY693/H3u+ZCfNZD+EJ4euUMrKUZ87t7RX4Y1 myaKBO7gfrMgN6mD -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuS6s6ePqyWfcABZL2i8n qQ+QuRr3oZGTACFC6CgTjAbvHndSXX6J1/TjY4kDtSV1BjBPIru1jGnqalA1JdY+ Mklqlf6C0lkIBKKGhF/AYuPUMJ8jbrCDJ4xLCvwixcNjf5VaYIZYJqCY7g/GX4kX fr5cq0LYi15ikfnDtoJrg8JVNgfnDU6XYkO20U9tOYwWd8KPrFizXTn27pHuFu9j Orb9+e/AB8f+mn8XdGsZxo1QhxTmsF3KU5UDU02i3amKS0yA0REWeNlen84kqWMR wGA1D/fcbhBUTKZO+SF3jmUFLq6hAf2byS2wXFAIkg/MB/rqqSPEBLsWfOUfypP+ 8iy8wz2souRYSwC/O3SNmyBYiClFl1qb3yVEuzrix1hPTh8n1l9qQsTQoB6cM7z7 HxqwrQIPdGLoLLW0TGpDWGNyswWJOyQHu9I13Pj3sLl6ZLBF3GU11FUoDkrTALdF JNrRenmuwjV4tgE2i/EcXTCWZaYVjNTeVSTAcv94VQ22vN5MDPWvxoytDynfcwbX RNo02MCueACRgv/cs2+PxBXdoI4jkMH76BFPRrM3vVbJidf4WUMMWnFdSVydFIs0 GjLNS8RvKs1oIB+4GOvE1CmSkoekMlzy/UWZeZL7pEwgP1V39mmlUrT9PVYMUDOm IQfAsMrio7ZBHWStaD4IT18CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10457524733216642817 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-06 11:05:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-06 11:05:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'certapainting.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 755477977574967846512492664565276421333824448829785062615072938293966476022661337971143856578977715431348157841172365952955313556039540289548873734155359451278491687702392303921771376579420047365241980800605334338241252627063303287683842058949763607774313789347100514506140302743742159173711026913938273371102137003088666675174822735763441078603424422979994555096347070493733065383739116031221385368682844541249655472953548294129735406900828175514441899375363435601584058019351346537046475788245438528062803577148584482385217518390762906000419334526797569427108810054162890718628607654521698420504219215815725052184322929418681547392541685749147298492346308691260537994513265771386320095566803119452889260153642776956325039414739960535970503800332497352940430209939173773297223152534701995621468263925398453806307014326768606743425307080482807427360362616907938003052481209160723607634462054558170765760131695250944977839712668081910128100369312022891969084085448554451493851088910804779665244693272934337647022561637875303665005838521720515981562756997159926341816216232202812512321501994690492471382122357067206505487121139660454717344567369427810313317418405989514835098331036686239113765752017742667469729170079193384220346568543 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-6672.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'certapainting.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b13b88cf2d446be698bcff91e34ce97cdb410d69 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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