ASN.1 PKCS7 certificate decoding help

712 views

Skip to first unread message

James Chapman

unread,

Jan 21, 2023, 5:47:49 AM1/21/23

to cryptop...@googlegroups.com

Hello list,

New subscriber and CryptoPP user list here. I'm hoping you can assist me and point me in the right direction. I'm trying to read information from PE file signing certificates which are typically in PKCS#7 format. I've extracted the certificate structure OK, but now I'm trying to use CryptoPP to extract information from the certificates.

I've used certutil to dump an ASN structure from acrobat.exe (for easy reference I've placed it at the bottom of this email).

So far, I've got this:

CryptoPP::VectorSource vs(certData.certificate, true);

CryptoPP::BERSequenceDecoder p7b(vs);

CryptoPP::BERSequenceDecoder outerObject(p7b, CryptoPP::OBJECT_IDENTIFIER);

Anything I try after this throws.

I presume I need to read the OPTIONAL somehow and then from there process the SEQUENCE. In fact, I suspect the best approach would be to somehow enumerate the SEQUENCE sections and then process those individually, but with the tools available to me in CryptoPP's ASN section I've not been able to work out how to do that yet :-(

I'm probably missing someting obvious (I should point out that I'm new to ASN1 too). Any guidance, words of wisdom or even examples would be greatly appreciated.

Thanks

James

-----------------------------

0000: 30 82 17 25 ; SEQUENCE (1725 Bytes)

0004: 06 09 ; OBJECT_ID (9 Bytes)

0006: | 2a 86 48 86 f7 0d 01 07 02

| ; 1.2.840.113549.1.7.2 PKCS 7 Signed

000f: a0 82 17 16 ; OPTIONAL[0] (1716 Bytes)

0013: 30 82 17 12 ; SEQUENCE (1712 Bytes)

0017: 02 01 ; INTEGER (1 Bytes)

0019: | 03

001a: 31 0f ; SET (f Bytes)

001c: | 30 0d ; SEQUENCE (d Bytes)

001e: | 06 09 ; OBJECT_ID (9 Bytes)

0020: | | 60 86 48 01 65 03 04 02 01

| | ; 2.16.840.1.101.3.4.2.1 sha256 (sha256NoSign)

0029: | 05 00 ; NULL (0 Bytes)

002b: 30 77 ; SEQUENCE (77 Bytes)

002d: | 06 0b ; OBJECT_ID (b Bytes)

002f: | | 2a 86 48 86 f7 0d 01 09 10 01 04

| | ; 1.2.840.113549.1.9.16.1.4

003a: | a0 68 ; OPTIONAL[0] (68 Bytes)

003c: | 04 66 ; OCTET_STRING (66 Bytes)

003e: | 30 64 ; SEQUENCE (64 Bytes)

0040: | 02 01 ; INTEGER (1 Bytes)

0042: | | 01

0043: | 06 09 ; OBJECT_ID (9 Bytes)

0045: | | 60 86 48 01 86 fd 6c 07 01

| | ; 2.16.840.1.114412.7.1

004e: | 30 31 ; SEQUENCE (31 Bytes)

0050: | | 30 0d ; SEQUENCE (d Bytes)

0052: | | | 06 09 ; OBJECT_ID (9 Bytes)

0054: | | | | 60 86 48 01 65 03 04 02 01

| | | | ; 2.16.840.1.101.3.4.2.1 sha256 (sha256NoSign)

005d: | | | 05 00 ; NULL (0 Bytes)

005f: | | 04 20 ; OCTET_STRING (20 Bytes)

0061: | | 1a d1 ee 21 40 81 10 30 fc 71 2a 37 c6 1e ec af ; ...!@..0.q*7....

0071: | | 88 5d 60 2e 16 05 5e 16 06 d0 d7 3a 33 53 96 81 ; .]`...^....:3S..

0081: | 02 10 ; INTEGER (10 Bytes)

0083: | | 26 c6 2b f8 92 e3 c0 2d 83 92 b7 84 f6 0e d1 bd

0093: | 18 0f ; GENERALIZED_TIME (f Bytes)

0095: | 32 30 32 32 31 32 32 33 32 30 31 39 34 31 5a ; 20221223201941Z

| ; 23/12/2022 20:19

00a4: a0 82 13 07 ; OPTIONAL[0] (1307 Bytes)

00a8: | 30 82 06 c0 ; SEQUENCE (6c0 Bytes)

00ac: | | 30 82 04 a8 ; SEQUENCE (4a8 Bytes)

00b0: | | | a0 03 ; OPTIONAL[0] (3 Bytes)

00b2: | | | | 02 01 ; INTEGER (1 Bytes)

00b4: | | | | 02

00b5: | | | 02 10 ; INTEGER (10 Bytes)

00b7: | | | | 0c 4d 69 72 4b 94 fa 3c 2a 4a 3d 29 07 80 3d 5a

00c7: | | | 30 0d ; SEQUENCE (d Bytes)

00c9: | | | | 06 09 ; OBJECT_ID (9 Bytes)

00cb: | | | | | 2a 86 48 86 f7 0d 01 01 0b

00d4: | | | | 05 00 ; NULL (0 Bytes)

00d6: | | | 30 63 ; SEQUENCE (63 Bytes)

00d8: | | | | 31 0b ; SET (b Bytes)

00da: | | | | | 30 09 ; SEQUENCE (9 Bytes)

00dc: | | | | | 06 03 ; OBJECT_ID (3 Bytes)

00de: | | | | | | 55 04 06

00e1: | | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)

00e3: | | | | | 55 53 ; US

| | | | | ; "US"

00e5: | | | | 31 17 ; SET (17 Bytes)

00e7: | | | | | 30 15 ; SEQUENCE (15 Bytes)

00e9: | | | | | 06 03 ; OBJECT_ID (3 Bytes)

00eb: | | | | | | 55 04 0a

00ee: | | | | | 13 0e ; PRINTABLE_STRING (e Bytes)

00f0: | | | | | 44 69 67 69 43 65 72 74 2c 20 49 6e 63 2e ; DigiCert, Inc.

00fe: | | | | 31 3b ; SET (3b Bytes)

0100: | | | | 30 39 ; SEQUENCE (39 Bytes)

0102: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0104: | | | | | 55 04 03

0107: | | | | 13 32 ; PRINTABLE_STRING (32 Bytes)

0109: | | | | 44 69 67 69 43 65 72 74 20 54 72 75 73 74 65 64 ; DigiCert Trusted

0119: | | | | 20 47 34 20 52 53 41 34 30 39 36 20 53 48 41 32 ; G4 RSA4096 SHA2

0129: | | | | 35 36 20 54 69 6d 65 53 74 61 6d 70 69 6e 67 20 ; 56 TimeStamping

0139: | | | | 43 41 ; CA

| | | | ; "DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"

013b: | | | 30 1e ; SEQUENCE (1e Bytes)

013d: | | | | 17 0d ; UTC_TIME (d Bytes)

013f: | | | | | 32 32 30 39 32 31 30 30 30 30 30 30 5a ; 220921000000Z

| | | | | ; 21/09/2022 00:00

014c: | | | | 17 0d ; UTC_TIME (d Bytes)

014e: | | | | 33 33 31 31 32 31 32 33 35 39 35 39 5a ; 331121235959Z

| | | | ; 21/11/2033 23:59

015b: | | | 30 46 ; SEQUENCE (46 Bytes)

015d: | | | | 31 0b ; SET (b Bytes)

015f: | | | | | 30 09 ; SEQUENCE (9 Bytes)

0161: | | | | | 06 03 ; OBJECT_ID (3 Bytes)

0163: | | | | | | 55 04 06

0166: | | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)

0168: | | | | | 55 53 ; US

| | | | | ; "US"

016a: | | | | 31 11 ; SET (11 Bytes)

016c: | | | | | 30 0f ; SEQUENCE (f Bytes)

016e: | | | | | 06 03 ; OBJECT_ID (3 Bytes)

0170: | | | | | | 55 04 0a

0173: | | | | | 13 08 ; PRINTABLE_STRING (8 Bytes)

0175: | | | | | 44 69 67 69 43 65 72 74 ; DigiCert

017d: | | | | 31 24 ; SET (24 Bytes)

017f: | | | | 30 22 ; SEQUENCE (22 Bytes)

0181: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0183: | | | | | 55 04 03

0186: | | | | 13 1b ; PRINTABLE_STRING (1b Bytes)

0188: | | | | 44 69 67 69 43 65 72 74 20 54 69 6d 65 73 74 61 ; DigiCert Timesta

0198: | | | | 6d 70 20 32 30 32 32 20 2d 20 32 ; mp 2022 - 2

| | | | ; "DigiCert Timestamp 2022 - 2"

01a3: | | | 30 82 02 22 ; SEQUENCE (222 Bytes)

01a7: | | | | 30 0d ; SEQUENCE (d Bytes)

01a9: | | | | | 06 09 ; OBJECT_ID (9 Bytes)

01ab: | | | | | | 2a 86 48 86 f7 0d 01 01 01

01b4: | | | | | 05 00 ; NULL (0 Bytes)

01b6: | | | | 03 82 02 0f ; BIT_STRING (20f Bytes)

01ba: | | | | 00

01bb: | | | | 30 82 02 0a ; SEQUENCE (20a Bytes)

01bf: | | | | 02 82 02 01 ; INTEGER (201 Bytes)

01c3: | | | | | 00

01c4: | | | | | cf ec a5 26 3a c6 a9 f2 6b bb 8d c1 0d 9a db a1

01d4: | | | | | e8 14 85 74 33 1a 26 ac d0 1c 55 1e 1e 36 6d bc

01e4: | | | | | 92 55 0c 61 f4 9d 09 77 3d 15 96 08 2f 6b 64 a4

01f4: | | | | | fd 06 83 16 d7 91 92 38 1c 31 02 96 fb 72 b1 97

0204: | | | | | 3a 55 af 33 ec 61 8a e9 a6 28 db 90 63 5c bd 89

0214: | | | | | 53 e0 3a 2d 8c 87 42 ae 26 a4 e4 bb 78 78 b9 7a

0224: | | | | | 16 e1 56 c6 c0 ba 64 53 bb 2a 16 e7 50 48 bb 88

0234: | | | | | 69 0c 88 c6 f1 be e0 2f 7d 3b b1 ca 53 8d 40 83

0244: | | | | | 1e e7 cb 72 49 28 1e 4c 80 1e 85 56 e7 85 ed f2

0254: | | | | | 61 bc aa 3a 07 7d f6 ab 6e e5 66 dd e2 5c f5 2f

0264: | | | | | ed 8d d4 4d 95 84 68 e3 80 cb 6a 79 d1 d2 10 91

0274: | | | | | 46 29 eb 3e 26 f2 b4 8c cd 4c b9 66 c8 bb aa 50

0284: | | | | | 38 0d e5 8c 94 5d 19 5a bf f5 7b 40 6e 6f 16 a8

0294: | | | | | 9a 9c 95 47 86 85 79 3e 0c 5e 66 8c 1a 0a 24 be

02a4: | | | | | 9c aa d2 9c b6 f7 4f 6e 78 c4 28 3f a3 1c 0f 50

02b4: | | | | | 06 37 ba 08 d9 35 a6 b5 1e da 78 58 1d 39 e8 f8

02c4: | | | | | 4c 91 10 96 7e 4d e1 dd c2 ad a5 7e f8 2d 1b 1f

02d4: | | | | | ec 2b 46 18 a3 19 f6 39 f7 f5 c1 4f 71 2e 89 03

02e4: | | | | | 11 a2 4b bb 98 bf fa 4f e4 7b 36 ef 06 44 e4 55

02f4: | | | | | ff 36 ea e5 7c 31 e7 f3 c2 52 c4 e6 16 7b 5a 7e

0304: | | | | | a5 25 73 db c0 6a 99 21 2d 63 e5 59 f5 4d 2f 90

0314: | | | | | 1f 27 b7 d2 ab 14 e5 38 66 87 51 08 6b fb 53 43

0324: | | | | | 39 d0 64 fa 56 cf e0 f4 0a e6 14 6d 64 78 bb 98

0334: | | | | | fd 94 c3 73 21 f3 2f c2 2e 20 d7 81 ac d3 f1 07

0344: | | | | | d4 e1 bd d9 5d 4b 6e 31 94 29 8b e6 41 a4 65 94

0354: | | | | | c0 58 e5 e5 2e 29 90 a6 b7 61 64 fa d9 20 6c 18

0364: | | | | | 51 60 ba a6 81 0f 09 25 53 f1 bf 3b e9 ab 07 0e

0374: | | | | | 6a 07 39 62 19 c9 d6 85 7f 13 d9 8d 79 cf 62 c5

0384: | | | | | ec e1 7b b9 cc 67 13 07 9a c1 78 ed c6 88 c8 b0

0394: | | | | | 6e 32 79 c7 0b 59 83 8d c6 ee f5 2c 7c 7b 8e cb

03a4: | | | | | 64 89 f1 b1 c4 b8 e7 53 5e 5f 55 d2 7d 19 29 59

03b4: | | | | | 03 4e fa 5d ea 45 73 1c 84 7e d7 ce e2 d4 3a 77

03c4: | | | | 02 03 ; INTEGER (3 Bytes)

03c6: | | | | 01 00 01

03c9: | | | a3 82 01 8b ; OPTIONAL[3] (18b Bytes)

03cd: | | | 30 82 01 87 ; SEQUENCE (187 Bytes)

03d1: | | | 30 0e ; SEQUENCE (e Bytes)

03d3: | | | | 06 03 ; OBJECT_ID (3 Bytes)

03d5: | | | | | 55 1d 0f

03d8: | | | | 01 01 ; BOOL (1 Bytes)

03da: | | | | | ff

03db: | | | | 04 04 ; OCTET_STRING (4 Bytes)

03dd: | | | | 03 02 ; BIT_STRING (2 Bytes)

03df: | | | | 07

03e0: | | | | 80

03e1: | | | 30 0c ; SEQUENCE (c Bytes)

03e3: | | | | 06 03 ; OBJECT_ID (3 Bytes)

03e5: | | | | | 55 1d 13

03e8: | | | | 01 01 ; BOOL (1 Bytes)

03ea: | | | | | ff

03eb: | | | | 04 02 ; OCTET_STRING (2 Bytes)

03ed: | | | | 30 00 ; SEQUENCE (0 Bytes)

03ef: | | | 30 16 ; SEQUENCE (16 Bytes)

03f1: | | | | 06 03 ; OBJECT_ID (3 Bytes)

03f3: | | | | | 55 1d 25

03f6: | | | | 01 01 ; BOOL (1 Bytes)

03f8: | | | | | ff

03f9: | | | | 04 0c ; OCTET_STRING (c Bytes)

03fb: | | | | 30 0a ; SEQUENCE (a Bytes)

03fd: | | | | 06 08 ; OBJECT_ID (8 Bytes)

03ff: | | | | 2b 06 01 05 05 07 03 08

| | | | ; 1.3.6.1.5.5.7.3.8 Time Stamping

0407: | | | 30 20 ; SEQUENCE (20 Bytes)

0409: | | | | 06 03 ; OBJECT_ID (3 Bytes)

040b: | | | | | 55 1d 20

040e: | | | | 04 19 ; OCTET_STRING (19 Bytes)

0410: | | | | 30 17 ; SEQUENCE (17 Bytes)

0412: | | | | 30 08 ; SEQUENCE (8 Bytes)

0414: | | | | | 06 06 ; OBJECT_ID (6 Bytes)

0416: | | | | | 67 81 0c 01 04 02

| | | | | ; 2.23.140.1.4.2

041c: | | | | 30 0b ; SEQUENCE (b Bytes)

041e: | | | | 06 09 ; OBJECT_ID (9 Bytes)

0420: | | | | 60 86 48 01 86 fd 6c 07 01

| | | | ; 2.16.840.1.114412.7.1

0429: | | | 30 1f ; SEQUENCE (1f Bytes)

042b: | | | | 06 03 ; OBJECT_ID (3 Bytes)

042d: | | | | | 55 1d 23

0430: | | | | 04 18 ; OCTET_STRING (18 Bytes)

0432: | | | | 30 16 ; SEQUENCE (16 Bytes)

0434: | | | | 80 14 ; CONTEXT_SPECIFIC[0] (14 Bytes)

0436: | | | | ba 16 d9 6d 4d 85 2f 73 29 76 9a 2f 75 8c 6a 20 ; ...mM./s)v./u.j

0446: | | | | 8f 9e c8 6f ; ...o

044a: | | | 30 1d ; SEQUENCE (1d Bytes)

044c: | | | | 06 03 ; OBJECT_ID (3 Bytes)

044e: | | | | | 55 1d 0e

0451: | | | | 04 16 ; OCTET_STRING (16 Bytes)

0453: | | | | 04 14 ; OCTET_STRING (14 Bytes)

0455: | | | | 62 8a de d0 61 fc 8f 31 14 ed 97 0b cd 3d 2a 94 ; b...a..1.....=*.

0465: | | | | 14 df 52 9c ; ..R.

0469: | | | 30 5a ; SEQUENCE (5a Bytes)

046b: | | | | 06 03 ; OBJECT_ID (3 Bytes)

046d: | | | | | 55 1d 1f

0470: | | | | 04 53 ; OCTET_STRING (53 Bytes)

0472: | | | | 30 51 ; SEQUENCE (51 Bytes)

0474: | | | | 30 4f ; SEQUENCE (4f Bytes)

0476: | | | | a0 4d ; OPTIONAL[0] (4d Bytes)

0478: | | | | a0 4b ; OPTIONAL[0] (4b Bytes)

047a: | | | | 86 49 ; CONTEXT_SPECIFIC[6] (49 Bytes)

047c: | | | | 68 74 74 70 3a 2f 2f 63 72 6c 33 2e 64 69 67 69 ; http://crl3.digi

048c: | | | | 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 43 65 72 ; cert.com/DigiCer

049c: | | | | 74 54 72 75 73 74 65 64 47 34 52 53 41 34 30 39 ; tTrustedG4RSA409

04ac: | | | | 36 53 48 41 32 35 36 54 69 6d 65 53 74 61 6d 70 ; 6SHA256TimeStamp

04bc: | | | | 69 6e 67 43 41 2e 63 72 6c ; ingCA.crl

04c5: | | | 30 81 90 ; SEQUENCE (90 Bytes)

04c8: | | | 06 08 ; OBJECT_ID (8 Bytes)

04ca: | | | | 2b 06 01 05 05 07 01 01

| | | | ; 1.3.6.1.5.5.7.1.1 Authority Information Access

04d2: | | | 04 81 83 ; OCTET_STRING (83 Bytes)

04d5: | | | 30 81 80 ; SEQUENCE (80 Bytes)

04d8: | | | 30 24 ; SEQUENCE (24 Bytes)

04da: | | | | 06 08 ; OBJECT_ID (8 Bytes)

04dc: | | | | | 2b 06 01 05 05 07 30 01

| | | | | ; 1.3.6.1.5.5.7.48.1 On-line Certificate Status Protocol

04e4: | | | | 86 18 ; CONTEXT_SPECIFIC[6] (18 Bytes)

04e6: | | | | 68 74 74 70 3a 2f 2f 6f 63 73 70 2e 64 69 67 69 ; http://ocsp.digi

04f6: | | | | 63 65 72 74 2e 63 6f 6d ; cert.com

04fe: | | | 30 58 ; SEQUENCE (58 Bytes)

0500: | | | 06 08 ; OBJECT_ID (8 Bytes)

0502: | | | | 2b 06 01 05 05 07 30 02

| | | | ; 1.3.6.1.5.5.7.48.2 Certification Authority Issuer

050a: | | | 86 4c ; CONTEXT_SPECIFIC[6] (4c Bytes)

050c: | | | 68 74 74 70 3a 2f 2f 63 61 63 65 72 74 73 2e 64 ; http://cacerts.d

051c: | | | 69 67 69 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 ; igicert.com/Digi

052c: | | | 43 65 72 74 54 72 75 73 74 65 64 47 34 52 53 41 ; CertTrustedG4RSA

053c: | | | 34 30 39 36 53 48 41 32 35 36 54 69 6d 65 53 74 ; 4096SHA256TimeSt

054c: | | | 61 6d 70 69 6e 67 43 41 2e 63 72 74 ; ampingCA.crt

0558: | | 30 0d ; SEQUENCE (d Bytes)

055a: | | | 06 09 ; OBJECT_ID (9 Bytes)

055c: | | | | 2a 86 48 86 f7 0d 01 01 0b

| | | | ; 1.2.840.113549.1.1.11 sha256RSA

0565: | | | 05 00 ; NULL (0 Bytes)

0567: | | 03 82 02 01 ; BIT_STRING (201 Bytes)

056b: | | 00

056c: | | 55 aa 2a 1a f3 46 f3 78 57 37 30 fc 75 e3 4f d6

057c: | | 85 23 f1 fc f9 95 39 9b 25 e6 f7 72 8a 98 c3 77

058c: | | d4 64 fc 15 fb 36 c2 49 51 2c 78 88 63 55 09 46

059c: | | 39 00 fc 69 d4 ca 9b 29 fb a3 3f c0 c9 00 9b 13

05ac: | | 1d b0 98 89 dc 78 f2 cd 7c 85 cd 53 9d af 62 e2

05bc: | | 61 66 a3 14 2a 45 87 4a 98 42 2b 50 fc 1b b5 9e

05cc: | | 08 30 09 fa e4 2d d7 09 89 79 f9 09 e6 88 ce 7d

05dc: | | 1b b8 6a a2 9b c1 53 60 09 e8 a3 b8 9d d7 ad 1f

05ec: | | 1c b8 ec 98 41 f0 f6 0e 80 fb e4 ff df 9d 10 a7

05fc: | | eb 00 ba 5f 4a 8f 1a 3a 52 b4 ea bf 09 49 15 35

060c: | | 36 59 9a 0f 54 d2 b2 1b 7f 7e 5e 09 ad 76 54 8a

061c: | | 74 6d ca d2 05 67 2b 76 eb ff 98 b2 26 95 38 19

062c: | | 88 44 14 e5 0a 59 a2 6b e7 22 3e 44 21 d2 3f 1c

063c: | | c0 9b ed 7c 48 b2 d8 92 0c 91 4f 3c 66 94 af 5d

064c: | | 02 53 eb 9e e2 9e e4 d3 1f 86 01 64 9c 00 c2 e9

065c: | | 5a 74 75 0d 3d e1 79 88 bf 1c 01 97 c9 19 23 80

066c: | | d7 36 5a 5f 96 16 b1 63 0c c6 46 40 3b ce 5d 35

067c: | | d4 59 3e 43 9a 18 ae c3 c9 cb c3 fb 9b 13 5f 6a

068c: | | b5 c7 e0 f3 05 c3 59 df 27 62 2b de 41 c9 53 b9

069c: | | ff 34 10 67 f6 26 32 98 7b fe 5c 42 94 81 94 82

06ac: | | 9d ac 0a 8b c6 4b 15 4a d3 98 90 45 60 33 80 e0

06bc: | | 23 de f8 03 a4 f6 45 47 e5 ce b8 03 42 47 e8 41

06cc: | | 36 71 77 ad fd a2 e8 97 74 4e 2e da 1e 1d 8c 5a

06dc: | | c8 1e 9a d5 c2 f0 c6 22 a8 4f 9b bd d8 1c 9a 51

06ec: | | c4 2f 9a f6 5f a7 27 97 ba 96 2e 85 57 c0 60 e7

06fc: | | 78 56 7f 6a ef c2 95 9a 4b 11 02 c8 82 9c c9 1a

070c: | | 05 7c ba 71 b5 4e 7a 99 6c f4 e8 9e d4 5a 98 c8

071c: | | 9f bf 8d bb 18 5c 43 f5 d0 2a e8 e2 62 ee 78 04

072c: | | db bd d1 fb 5b 0a a8 70 7e f0 97 84 78 e3 08 03

073c: | | 5d 47 2c 63 a8 25 38 97 01 d2 3f 3a da e5 e5 f6

074c: | | e6 9b dc 7e 2c cc ff 17 4c 4d 00 a2 d8 d6 01 0e

075c: | | b8 8b ee e6 e0 72 55 89 2c 27 19 61 f6 77 01 8c

076c: | 30 82 06 ae ; SEQUENCE (6ae Bytes)

0770: | | 30 82 04 96 ; SEQUENCE (496 Bytes)

0774: | | | a0 03 ; OPTIONAL[0] (3 Bytes)

0776: | | | | 02 01 ; INTEGER (1 Bytes)

0778: | | | | 02

0779: | | | 02 10 ; INTEGER (10 Bytes)

077b: | | | | 07 36 37 b7 24 54 7c d8 47 ac fd 28 66 2a 5e 5b

078b: | | | 30 0d ; SEQUENCE (d Bytes)

078d: | | | | 06 09 ; OBJECT_ID (9 Bytes)

078f: | | | | | 2a 86 48 86 f7 0d 01 01 0b

0798: | | | | 05 00 ; NULL (0 Bytes)

079a: | | | 30 62 ; SEQUENCE (62 Bytes)

079c: | | | | 31 0b ; SET (b Bytes)

079e: | | | | | 30 09 ; SEQUENCE (9 Bytes)

07a0: | | | | | 06 03 ; OBJECT_ID (3 Bytes)

07a2: | | | | | | 55 04 06

07a5: | | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)

07a7: | | | | | 55 53 ; US

| | | | | ; "US"

07a9: | | | | 31 15 ; SET (15 Bytes)

07ab: | | | | | 30 13 ; SEQUENCE (13 Bytes)

07ad: | | | | | 06 03 ; OBJECT_ID (3 Bytes)

07af: | | | | | | 55 04 0a

07b2: | | | | | 13 0c ; PRINTABLE_STRING (c Bytes)

07b4: | | | | | 44 69 67 69 43 65 72 74 20 49 6e 63 ; DigiCert Inc

07c0: | | | | 31 19 ; SET (19 Bytes)

07c2: | | | | | 30 17 ; SEQUENCE (17 Bytes)

07c4: | | | | | 06 03 ; OBJECT_ID (3 Bytes)

07c6: | | | | | | 55 04 0b

07c9: | | | | | 13 10 ; PRINTABLE_STRING (10 Bytes)

07cb: | | | | | 77 77 77 2e 64 69 67 69 63 65 72 74 2e 63 6f 6d ; www.digicert.com

07db: | | | | 31 21 ; SET (21 Bytes)

07dd: | | | | 30 1f ; SEQUENCE (1f Bytes)

07df: | | | | 06 03 ; OBJECT_ID (3 Bytes)

07e1: | | | | | 55 04 03

07e4: | | | | 13 18 ; PRINTABLE_STRING (18 Bytes)

07e6: | | | | 44 69 67 69 43 65 72 74 20 54 72 75 73 74 65 64 ; DigiCert Trusted

07f6: | | | | 20 52 6f 6f 74 20 47 34 ; Root G4

| | | | ; "DigiCert Trusted Root G4"

07fe: | | | 30 1e ; SEQUENCE (1e Bytes)

0800: | | | | 17 0d ; UTC_TIME (d Bytes)

0802: | | | | | 32 32 30 33 32 33 30 30 30 30 30 30 5a ; 220323000000Z

| | | | | ; 23/03/2022 00:00

080f: | | | | 17 0d ; UTC_TIME (d Bytes)

0811: | | | | 33 37 30 33 32 32 32 33 35 39 35 39 5a ; 370322235959Z

| | | | ; 22/03/2037 23:59

081e: | | | 30 63 ; SEQUENCE (63 Bytes)

0820: | | | | 31 0b ; SET (b Bytes)

0822: | | | | | 30 09 ; SEQUENCE (9 Bytes)

0824: | | | | | 06 03 ; OBJECT_ID (3 Bytes)

0826: | | | | | | 55 04 06

0829: | | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)

082b: | | | | | 55 53 ; US

| | | | | ; "US"

082d: | | | | 31 17 ; SET (17 Bytes)

082f: | | | | | 30 15 ; SEQUENCE (15 Bytes)

0831: | | | | | 06 03 ; OBJECT_ID (3 Bytes)

0833: | | | | | | 55 04 0a

0836: | | | | | 13 0e ; PRINTABLE_STRING (e Bytes)

0838: | | | | | 44 69 67 69 43 65 72 74 2c 20 49 6e 63 2e ; DigiCert, Inc.

0846: | | | | 31 3b ; SET (3b Bytes)

0848: | | | | 30 39 ; SEQUENCE (39 Bytes)

084a: | | | | 06 03 ; OBJECT_ID (3 Bytes)

084c: | | | | | 55 04 03

084f: | | | | 13 32 ; PRINTABLE_STRING (32 Bytes)

0851: | | | | 44 69 67 69 43 65 72 74 20 54 72 75 73 74 65 64 ; DigiCert Trusted

0861: | | | | 20 47 34 20 52 53 41 34 30 39 36 20 53 48 41 32 ; G4 RSA4096 SHA2

0871: | | | | 35 36 20 54 69 6d 65 53 74 61 6d 70 69 6e 67 20 ; 56 TimeStamping

0881: | | | | 43 41 ; CA

| | | | ; "DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"

0883: | | | 30 82 02 22 ; SEQUENCE (222 Bytes)

0887: | | | | 30 0d ; SEQUENCE (d Bytes)

0889: | | | | | 06 09 ; OBJECT_ID (9 Bytes)

088b: | | | | | | 2a 86 48 86 f7 0d 01 01 01

0894: | | | | | 05 00 ; NULL (0 Bytes)

0896: | | | | 03 82 02 0f ; BIT_STRING (20f Bytes)

089a: | | | | 00

089b: | | | | 30 82 02 0a ; SEQUENCE (20a Bytes)

089f: | | | | 02 82 02 01 ; INTEGER (201 Bytes)

08a3: | | | | | 00

08a4: | | | | | c6 86 35 06 49 b3 c1 3d 72 49 51 55 c7 25 03 c4

08b4: | | | | | f2 91 37 a9 97 51 a1 d6 d2 83 d1 9e 4c a2 6d a0

08c4: | | | | | b0 cc 83 f9 5a f6 11 a1 44 15 42 5f a4 88 f3 68

08d4: | | | | | fa 7d f3 9c 89 0b 7f 9d 1f 9e 0f 33 1f 50 13 0b

08e4: | | | | | 26 73 96 6d f8 57 a8 02 7d fd 43 b4 84 da 11 f1

08f4: | | | | | 73 b1 b3 ee 2b 80 84 8a 22 18 df eb da 3d c4 17

0904: | | | | | 7f ab 19 2b 3e 42 dc 67 8e ea 51 3d f0 d6 56 d4

0914: | | | | | e7 28 2d eb d3 b1 b5 75 e7 1f 06 65 8d 94 29 d3

0924: | | | | | d9 ec 69 df d9 90 87 46 00 7b db 44 41 89 dc 7c

0934: | | | | | 6a 57 7a f0 37 79 9f 5d ac cb e8 84 64 b4 52 f2

0944: | | | | | 76 47 f7 61 83 19 dd 5f b4 54 0b 21 68 6e 37 21

0954: | | | | | bb 40 ac 5f b2 de 4a 7d ce f5 39 12 67 ef 0e a5

0964: | | | | | 63 6c e4 a6 c5 1d cd 36 0d 5c d5 e6 1b a8 c1 64

0974: | | | | | 74 40 a7 c0 72 c5 ba 4e 1f b1 b5 58 4d 79 fe d7

0984: | | | | | 8f 73 93 ac 2c 39 e2 a5 48 d6 f0 b0 31 13 a9 57

0994: | | | | | 29 96 27 2e f5 87 a6 8f 4e 76 15 55 26 70 98 26

09a4: | | | | | 7f a0 1a 47 20 43 e3 43 63 80 7b 75 6e 27 25 90

09b4: | | | | | 98 3a 38 11 b3 f6 f6 9e e6 3b 5b ec 81 de 22 14

09c4: | | | | | d9 82 2a c7 92 bf a0 de e3 3e a2 73 fa e7 1f 5a

09d4: | | | | | 6c 94 f2 52 95 11 2b 58 74 40 28 ab 73 43 ce df

09e4: | | | | | 4a a1 1c 6b 38 c5 29 f3 ca aa 96 73 42 68 9f b6

09f4: | | | | | 46 b3 9d 3a a3 d5 03 e0 bf f0 a2 3c ca 42 dc 18

0a04: | | | | | 48 7f 14 34 cf d2 4c ab ef 9b 3d fe 0e b8 64 2a

0a14: | | | | | fa 75 28 24 41 ed 42 bf 05 9c 66 49 52 50 f4 51

0a24: | | | | | f3 36 49 4d 8b 20 d2 2c 57 35 79 2b a8 f3 45 60

0a34: | | | | | bc 23 8d 58 f7 dc 61 de 93 fe 39 c0 f9 b2 30 a5

0a44: | | | | | 4c d7 e9 98 4a 58 3e d3 03 88 fe b3 8f d3 5e 4b

0a54: | | | | | 76 12 51 93 c9 8c 0c 3b 5b 8a 22 a8 c1 26 08 f9

0a64: | | | | | 14 10 12 03 7d 5f 23 bb 64 e3 63 e0 a6 e1 3e f6

0a74: | | | | | c2 74 b2 3f 1e 09 76 ec ab 5d 46 75 e2 60 a3 58

0a84: | | | | | 09 01 28 00 0e 84 54 ee ce e9 5d c8 5e 30 12 bd

0a94: | | | | | 46 9e b5 d3 76 b9 d2 0e 6b 99 0c d2 33 b4 cd b1

0aa4: | | | | 02 03 ; INTEGER (3 Bytes)

0aa6: | | | | 01 00 01

0aa9: | | | a3 82 01 5d ; OPTIONAL[3] (15d Bytes)

0aad: | | | 30 82 01 59 ; SEQUENCE (159 Bytes)

0ab1: | | | 30 12 ; SEQUENCE (12 Bytes)

0ab3: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0ab5: | | | | | 55 1d 13

0ab8: | | | | 01 01 ; BOOL (1 Bytes)

0aba: | | | | | ff

0abb: | | | | 04 08 ; OCTET_STRING (8 Bytes)

0abd: | | | | 30 06 ; SEQUENCE (6 Bytes)

0abf: | | | | 01 01 ; BOOL (1 Bytes)

0ac1: | | | | | ff

0ac2: | | | | 02 01 ; INTEGER (1 Bytes)

0ac4: | | | | 00

0ac5: | | | 30 1d ; SEQUENCE (1d Bytes)

0ac7: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0ac9: | | | | | 55 1d 0e

0acc: | | | | 04 16 ; OCTET_STRING (16 Bytes)

0ace: | | | | 04 14 ; OCTET_STRING (14 Bytes)

0ad0: | | | | ba 16 d9 6d 4d 85 2f 73 29 76 9a 2f 75 8c 6a 20 ; ...mM./s)v./u.j

0ae0: | | | | 8f 9e c8 6f ; ...o

0ae4: | | | 30 1f ; SEQUENCE (1f Bytes)

0ae6: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0ae8: | | | | | 55 1d 23

0aeb: | | | | 04 18 ; OCTET_STRING (18 Bytes)

0aed: | | | | 30 16 ; SEQUENCE (16 Bytes)

0aef: | | | | 80 14 ; CONTEXT_SPECIFIC[0] (14 Bytes)

0af1: | | | | ec d7 e3 82 d2 71 5d 64 4c df 2e 67 3f e7 ba 98 ; .....q]dL..g?...

0b01: | | | | ae 1c 0f 4f ; ...O

0b05: | | | 30 0e ; SEQUENCE (e Bytes)

0b07: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0b09: | | | | | 55 1d 0f

0b0c: | | | | 01 01 ; BOOL (1 Bytes)

0b0e: | | | | | ff

0b0f: | | | | 04 04 ; OCTET_STRING (4 Bytes)

0b11: | | | | 03 02 ; BIT_STRING (2 Bytes)

0b13: | | | | 01

0b14: | | | | 86

0b15: | | | 30 13 ; SEQUENCE (13 Bytes)

0b17: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0b19: | | | | | 55 1d 25

0b1c: | | | | 04 0c ; OCTET_STRING (c Bytes)

0b1e: | | | | 30 0a ; SEQUENCE (a Bytes)

0b20: | | | | 06 08 ; OBJECT_ID (8 Bytes)

0b22: | | | | 2b 06 01 05 05 07 03 08

| | | | ; 1.3.6.1.5.5.7.3.8 Time Stamping

0b2a: | | | 30 77 ; SEQUENCE (77 Bytes)

0b2c: | | | | 06 08 ; OBJECT_ID (8 Bytes)

0b2e: | | | | | 2b 06 01 05 05 07 01 01

| | | | | ; 1.3.6.1.5.5.7.1.1 Authority Information Access

0b36: | | | | 04 6b ; OCTET_STRING (6b Bytes)

0b38: | | | | 30 69 ; SEQUENCE (69 Bytes)

0b3a: | | | | 30 24 ; SEQUENCE (24 Bytes)

0b3c: | | | | | 06 08 ; OBJECT_ID (8 Bytes)

0b3e: | | | | | | 2b 06 01 05 05 07 30 01

| | | | | | ; 1.3.6.1.5.5.7.48.1 On-line Certificate Status Protocol

0b46: | | | | | 86 18 ; CONTEXT_SPECIFIC[6] (18 Bytes)

0b48: | | | | | 68 74 74 70 3a 2f 2f 6f 63 73 70 2e 64 69 67 69 ; http://ocsp.digi

0b58: | | | | | 63 65 72 74 2e 63 6f 6d ; cert.com

0b60: | | | | 30 41 ; SEQUENCE (41 Bytes)

0b62: | | | | 06 08 ; OBJECT_ID (8 Bytes)

0b64: | | | | | 2b 06 01 05 05 07 30 02

| | | | | ; 1.3.6.1.5.5.7.48.2 Certification Authority Issuer

0b6c: | | | | 86 35 ; CONTEXT_SPECIFIC[6] (35 Bytes)

0b6e: | | | | 68 74 74 70 3a 2f 2f 63 61 63 65 72 74 73 2e 64 ; http://cacerts.d

0b7e: | | | | 69 67 69 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 ; igicert.com/Digi

0b8e: | | | | 43 65 72 74 54 72 75 73 74 65 64 52 6f 6f 74 47 ; CertTrustedRootG

0b9e: | | | | 34 2e 63 72 74 ; 4.crt

0ba3: | | | 30 43 ; SEQUENCE (43 Bytes)

0ba5: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0ba7: | | | | | 55 1d 1f

0baa: | | | | 04 3c ; OCTET_STRING (3c Bytes)

0bac: | | | | 30 3a ; SEQUENCE (3a Bytes)

0bae: | | | | 30 38 ; SEQUENCE (38 Bytes)

0bb0: | | | | a0 36 ; OPTIONAL[0] (36 Bytes)

0bb2: | | | | a0 34 ; OPTIONAL[0] (34 Bytes)

0bb4: | | | | 86 32 ; CONTEXT_SPECIFIC[6] (32 Bytes)

0bb6: | | | | 68 74 74 70 3a 2f 2f 63 72 6c 33 2e 64 69 67 69 ; http://crl3.digi

0bc6: | | | | 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 43 65 72 ; cert.com/DigiCer

0bd6: | | | | 74 54 72 75 73 74 65 64 52 6f 6f 74 47 34 2e 63 ; tTrustedRootG4.c

0be6: | | | | 72 6c ; rl

0be8: | | | 30 20 ; SEQUENCE (20 Bytes)

0bea: | | | 06 03 ; OBJECT_ID (3 Bytes)

0bec: | | | | 55 1d 20

| | | | ; 2.5.29.32 Certificate Policies

0bef: | | | 04 19 ; OCTET_STRING (19 Bytes)

0bf1: | | | 30 17 ; SEQUENCE (17 Bytes)

0bf3: | | | 30 08 ; SEQUENCE (8 Bytes)

0bf5: | | | | 06 06 ; OBJECT_ID (6 Bytes)

0bf7: | | | | 67 81 0c 01 04 02

| | | | ; 2.23.140.1.4.2

0bfd: | | | 30 0b ; SEQUENCE (b Bytes)

0bff: | | | 06 09 ; OBJECT_ID (9 Bytes)

0c01: | | | 60 86 48 01 86 fd 6c 07 01

| | | ; 2.16.840.1.114412.7.1

0c0a: | | 30 0d ; SEQUENCE (d Bytes)

0c0c: | | | 06 09 ; OBJECT_ID (9 Bytes)

0c0e: | | | | 2a 86 48 86 f7 0d 01 01 0b

| | | | ; 1.2.840.113549.1.1.11 sha256RSA

0c17: | | | 05 00 ; NULL (0 Bytes)

0c19: | | 03 82 02 01 ; BIT_STRING (201 Bytes)

0c1d: | | 00

0c1e: | | 7d 59 8e c0 93 b6 6f 98 a9 44 22 01 7e 66 d6 d8

0c2e: | | 21 42 e1 b0 18 2e 10 4d 13 cf 30 53 ce bf 18 fb

0c3e: | | c7 50 5d e2 4b 29 fb 70 8a 0d aa 29 69 fc 69 c1

0c4e: | | cf 1d 07 e9 3e 60 c8 d8 0b e5 5c 5b d7 6d 87 fa

0c5e: | | 84 20 25 34 31 67 cd b6 12 96 6f c4 50 4c 62 1d

0c6e: | | 0c 08 82 a8 16 bd a9 56 cf 15 73 8d 01 22 25 ce

0c7e: | | 95 69 3f 47 77 fb 72 74 14 d7 ff ab 4f 8a 2c 7a

0c8e: | | ab 85 cd 43 5f ed 60 b6 aa 4f 91 66 9e 2c 9e e0

0c9e: | | 8a ac e5 fd 8c bc 64 26 87 6c 92 bd 9d 7c d0 70

0cae: | | 0a 7c ef a8 bc 75 4f ba 5a f7 a9 10 b2 5d e9 ff

0cbe: | | 28 54 89 f0 d5 8a 71 76 65 da cc f0 72 a3 23 fa

0cce: | | c0 27 82 44 ae 99 27 1b ab 24 1e 26 c1 b7 de 2a

0cde: | | eb f6 9e b1 79 99 81 a3 56 86 ab 0a 45 c9 df c4

0cee: | | 8d a0 e7 98 fb fb a6 9d 72 af c4 c7 c1 c1 6a 71

0cfe: | | d9 c6 13 80 09 c4 b6 9f cd 87 87 24 bb 4f a3 49

0d0e: | | b9 77 66 91 f1 72 9c e9 4b 02 52 a7 37 7e 93 53

0d1e: | | ac 3b 1d 08 49 0f 94 cd 39 7a dd ff 25 63 99 27

0d2e: | | 2c 3d 3f 6b a7 f1 66 c3 41 cd 4f b6 40 9b 21 21

0d3e: | | 40 d0 b7 13 24 cd dc 1d 78 3a e4 9e ad e5 34 71

0d4e: | | 92 d7 26 6b e4 38 73 ab a6 01 4f bd 3f 3b 78 ad

0d5e: | | 4c ad fb c4 95 7b ed 0a 5f 33 39 87 41 78 7a 38

0d6e: | | e9 9c e1 dd 23 fd 1d 28 d3 c7 f9 e8 f1 98 5f fb

0d7e: | | 2b d8 7e f2 46 9d 75 2c 1e 27 2c 26 db 6f 15 7b

0d8e: | | 1e 19 8b 36 b8 93 d4 e6 f2 17 99 59 ca 70 f0 37

0d9e: | | bf 98 00 df 20 16 4f 27 fb 60 67 16 a1 66 ba dd

0dae: | | 55 c0 3a 29 86 b0 98 a0 2b ed 95 41 b7 3a d5 15

0dbe: | | 98 31 b4 62 09 0f 0a bd 81 d9 13 fe bf a4 d1 f3

0dce: | | 57 d9 bc 04 fa 82 de 32 df 04 89 f0 00 cd 5d c2

0dde: | | f9 d0 23 7f 00 0b e4 76 02 26 d9 f0 65 76 42 a6

0dee: | | 29 87 09 47 2b e6 7f 1a a4 85 0f fc 98 96 f6 55

0dfe: | | 54 2b 1f 80 fa c0 f2 0e 2b e5 d6 fb a9 2f 44 15

0e0e: | | 4a e7 13 0e 1d db 37 38 1a a1 2b f6 ed d6 7c fc

0e1e: | 30 82 05 8d ; SEQUENCE (58d Bytes)

0e22: | 30 82 04 75 ; SEQUENCE (475 Bytes)

0e26: | | a0 03 ; OPTIONAL[0] (3 Bytes)

0e28: | | | 02 01 ; INTEGER (1 Bytes)

0e2a: | | | 02

0e2b: | | 02 10 ; INTEGER (10 Bytes)

0e2d: | | | 0e 9b 18 8e f9 d0 2d e7 ef db 50 e2 08 40 18 5a

0e3d: | | 30 0d ; SEQUENCE (d Bytes)

0e3f: | | | 06 09 ; OBJECT_ID (9 Bytes)

0e41: | | | | 2a 86 48 86 f7 0d 01 01 0c

| | | | ; 1.2.840.113549.1.1.12 sha384RSA

0e4a: | | | 05 00 ; NULL (0 Bytes)

0e4c: | | 30 65 ; SEQUENCE (65 Bytes)

0e4e: | | | 31 0b ; SET (b Bytes)

0e50: | | | | 30 09 ; SEQUENCE (9 Bytes)

0e52: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0e54: | | | | | 55 04 06

0e57: | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)

0e59: | | | | 55 53 ; US

| | | | ; "US"

0e5b: | | | 31 15 ; SET (15 Bytes)

0e5d: | | | | 30 13 ; SEQUENCE (13 Bytes)

0e5f: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0e61: | | | | | 55 04 0a

0e64: | | | | 13 0c ; PRINTABLE_STRING (c Bytes)

0e66: | | | | 44 69 67 69 43 65 72 74 20 49 6e 63 ; DigiCert Inc

| | | | ; "DigiCert Inc"

0e72: | | | 31 19 ; SET (19 Bytes)

0e74: | | | | 30 17 ; SEQUENCE (17 Bytes)

0e76: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0e78: | | | | | 55 04 0b

0e7b: | | | | 13 10 ; PRINTABLE_STRING (10 Bytes)

0e7d: | | | | 77 77 77 2e 64 69 67 69 63 65 72 74 2e 63 6f 6d ; www.digicert.com

| | | | ; "www.digicert.com"

0e8d: | | | 31 24 ; SET (24 Bytes)

0e8f: | | | 30 22 ; SEQUENCE (22 Bytes)

0e91: | | | 06 03 ; OBJECT_ID (3 Bytes)

0e93: | | | | 55 04 03

| | | | ; 2.5.4.3 Common Name (CN)

0e96: | | | 13 1b ; PRINTABLE_STRING (1b Bytes)

0e98: | | | 44 69 67 69 43 65 72 74 20 41 73 73 75 72 65 64 ; DigiCert Assured

0ea8: | | | 20 49 44 20 52 6f 6f 74 20 43 41 ; ID Root CA

| | | ; "DigiCert Assured ID Root CA"

0eb3: | | 30 1e ; SEQUENCE (1e Bytes)

0eb5: | | | 17 0d ; UTC_TIME (d Bytes)

0eb7: | | | | 32 32 30 38 30 31 30 30 30 30 30 30 5a ; 220801000000Z

| | | | ; 01/08/2022 00:00

0ec4: | | | 17 0d ; UTC_TIME (d Bytes)

0ec6: | | | 33 31 31 31 30 39 32 33 35 39 35 39 5a ; 311109235959Z

| | | ; 09/11/2031 23:59

0ed3: | | 30 62 ; SEQUENCE (62 Bytes)

0ed5: | | | 31 0b ; SET (b Bytes)

0ed7: | | | | 30 09 ; SEQUENCE (9 Bytes)

0ed9: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0edb: | | | | | 55 04 06

0ede: | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)

0ee0: | | | | 55 53 ; US

| | | | ; "US"

0ee2: | | | 31 15 ; SET (15 Bytes)

0ee4: | | | | 30 13 ; SEQUENCE (13 Bytes)

0ee6: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0ee8: | | | | | 55 04 0a

0eeb: | | | | 13 0c ; PRINTABLE_STRING (c Bytes)

0eed: | | | | 44 69 67 69 43 65 72 74 20 49 6e 63 ; DigiCert Inc

| | | | ; "DigiCert Inc"

0ef9: | | | 31 19 ; SET (19 Bytes)

0efb: | | | | 30 17 ; SEQUENCE (17 Bytes)

0efd: | | | | 06 03 ; OBJECT_ID (3 Bytes)

0eff: | | | | | 55 04 0b

0f02: | | | | 13 10 ; PRINTABLE_STRING (10 Bytes)

0f04: | | | | 77 77 77 2e 64 69 67 69 63 65 72 74 2e 63 6f 6d ; www.digicert.com

| | | | ; "www.digicert.com"

0f14: | | | 31 21 ; SET (21 Bytes)

0f16: | | | 30 1f ; SEQUENCE (1f Bytes)

0f18: | | | 06 03 ; OBJECT_ID (3 Bytes)

0f1a: | | | | 55 04 03

| | | | ; 2.5.4.3 Common Name (CN)

0f1d: | | | 13 18 ; PRINTABLE_STRING (18 Bytes)

0f1f: | | | 44 69 67 69 43 65 72 74 20 54 72 75 73 74 65 64 ; DigiCert Trusted

0f2f: | | | 20 52 6f 6f 74 20 47 34 ; Root G4

| | | ; "DigiCert Trusted Root G4"

0f37: | | 30 82 02 22 ; SEQUENCE (222 Bytes)

0f3b: | | | 30 0d ; SEQUENCE (d Bytes)

0f3d: | | | | 06 09 ; OBJECT_ID (9 Bytes)

0f3f: | | | | | 2a 86 48 86 f7 0d 01 01 01

0f48: | | | | 05 00 ; NULL (0 Bytes)

0f4a: | | | 03 82 02 0f ; BIT_STRING (20f Bytes)

0f4e: | | | 00

0f4f: | | | 30 82 02 0a ; SEQUENCE (20a Bytes)

0f53: | | | 02 82 02 01 ; INTEGER (201 Bytes)

0f57: | | | | 00

0f58: | | | | bf e6 90 73 68 de bb e4 5d 4a 3c 30 22 30 69 33

0f68: | | | | ec c2 a7 25 2e c9 21 3d f2 8a d8 59 c2 e1 29 a7

0f78: | | | | 3d 58 ab 76 9a cd ae 7b 1b 84 0d c4 30 1f f3 1b

0f88: | | | | a4 38 16 eb 56 c6 97 6d 1d ab b2 79 f2 ca 11 d2

0f98: | | | | e4 5f d6 05 3c 52 0f 52 1f c6 9e 15 a5 7e be 9f

0fa8: | | | | a9 57 16 59 55 72 af 68 93 70 c2 b2 ba 75 99 6a

0fb8: | | | | 73 32 94 d1 10 44 10 2e df 82 f3 07 84 e6 74 3b

0fc8: | | | | 6d 71 e2 2d 0c 1b ee 20 d5 c9 20 1d 63 29 2d ce

0fd8: | | | | ec 5e 4e c8 93 f8 21 61 9b 34 eb 05 c6 5e ec 5b

0fe8: | | | | 1a bc eb c9 cf cd ac 34 40 5f b1 7a 66 ee 77 c8

0ff8: | | | | 48 a8 66 57 57 9f 54 58 8e 0c 2b b7 4f a7 30 d9

1008: | | | | 56 ee ca 7b 5d e3 ad c9 4f 5e e5 35 e7 31 cb da

1018: | | | | 93 5e dc 8e 8f 80 da b6 91 98 40 90 79 c3 78 c7

1028: | | | | b6 b1 c4 b5 6a 18 38 03 10 8d d8 d4 37 a4 2e 05

1038: | | | | 7d 88 f5 82 3e 10 91 70 ab 55 82 41 32 d7 db 04

1048: | | | | 73 2a 6e 91 01 7c 21 4c d4 bc ae 1b 03 75 5d 78

1058: | | | | 66 d9 3a 31 44 9a 33 40 bf 08 d7 5a 49 a4 c2 e6

1068: | | | | a9 a0 67 dd a4 27 bc a1 4f 39 b5 11 58 17 f7 24

1078: | | | | 5c 46 8f 64 f7 c1 69 88 76 98 76 3d 59 5d 42 76

1088: | | | | 87 89 97 69 7a 48 f0 e0 a2 12 1b 66 9a 74 ca de

1098: | | | | 4b 1e e7 0e 63 ae e6 d4 ef 92 92 3a 9e 3d dc 00

10a8: | | | | e4 45 25 89 b6 9a 44 19 2b 7e c0 94 b4 d2 61 6d

10b8: | | | | eb 33 d9 c5 df 4b 04 00 cc 7d 1c 95 c3 8f f7 21

10c8: | | | | b2 b2 11 b7 bb 7f f2 d5 8c 70 2c 41 60 aa b1 63

10d8: | | | | 18 44 95 1a 76 62 7e f6 80 b0 fb e8 64 a6 33 d1

10e8: | | | | 89 07 e1 bd b7 e6 43 a4 18 b8 a6 77 01 e1 0f 94

10f8: | | | | 0c 21 1d b2 54 29 25 89 6c e5 0e 52 51 47 74 be

1108: | | | | 26 ac b6 41 75 de 7a ac 5f 8d 3f c9 bc d3 41 11

1118: | | | | 12 5b e5 10 50 eb 31 c5 ca 72 16 22 09 df 7c 4c

1128: | | | | 75 3f 63 ec 21 5f c4 20 51 6b 6f b1 ab 86 8b 4f

1138: | | | | c2 d6 45 5f 9d 20 fc a1 1e c5 c0 8f a2 b1 7e 0a

1148: | | | | 26 99 f5 e4 69 2f 98 1d 2d f5 d9 a9 b2 1d e5 1b

1158: | | | 02 03 ; INTEGER (3 Bytes)

115a: | | | 01 00 01

115d: | | a3 82 01 3a ; OPTIONAL[3] (13a Bytes)

1161: | | 30 82 01 36 ; SEQUENCE (136 Bytes)

1165: | | 30 0f ; SEQUENCE (f Bytes)

1167: | | | 06 03 ; OBJECT_ID (3 Bytes)

1169: | | | | 55 1d 13

| | | | ; 2.5.29.19 Basic Constraints

116c: | | | 01 01 ; BOOL (1 Bytes)

116e: | | | | ff

116f: | | | 04 05 ; OCTET_STRING (5 Bytes)

1171: | | | 30 03 ; SEQUENCE (3 Bytes)

1173: | | | 01 01 ; BOOL (1 Bytes)

1175: | | | ff

1176: | | 30 1d ; SEQUENCE (1d Bytes)

1178: | | | 06 03 ; OBJECT_ID (3 Bytes)

117a: | | | | 55 1d 0e

| | | | ; 2.5.29.14 Subject Key Identifier

117d: | | | 04 16 ; OCTET_STRING (16 Bytes)

117f: | | | 04 14 ; OCTET_STRING (14 Bytes)

1181: | | | ec d7 e3 82 d2 71 5d 64 4c df 2e 67 3f e7 ba 98 ; .....q]dL..g?...

1191: | | | ae 1c 0f 4f ; ...O

1195: | | 30 1f ; SEQUENCE (1f Bytes)

1197: | | | 06 03 ; OBJECT_ID (3 Bytes)

1199: | | | | 55 1d 23

| | | | ; 2.5.29.35 Authority Key Identifier

119c: | | | 04 18 ; OCTET_STRING (18 Bytes)

119e: | | | 30 16 ; SEQUENCE (16 Bytes)

11a0: | | | 80 14 ; CONTEXT_SPECIFIC[0] (14 Bytes)

11a2: | | | 45 eb a2 af f4 92 cb 82 31 2d 51 8b a7 a7 21 9d ; E.......1-Q...!.

11b2: | | | f3 6d c8 0f ; .m..

11b6: | | 30 0e ; SEQUENCE (e Bytes)

11b8: | | | 06 03 ; OBJECT_ID (3 Bytes)

11ba: | | | | 55 1d 0f

| | | | ; 2.5.29.15 Key Usage

11bd: | | | 01 01 ; BOOL (1 Bytes)

11bf: | | | | ff

11c0: | | | 04 04 ; OCTET_STRING (4 Bytes)

11c2: | | | 03 02 ; BIT_STRING (2 Bytes)

11c4: | | | 01

11c5: | | | 86

11c6: | | 30 79 ; SEQUENCE (79 Bytes)

11c8: | | | 06 08 ; OBJECT_ID (8 Bytes)

11ca: | | | | 2b 06 01 05 05 07 01 01

| | | | ; 1.3.6.1.5.5.7.1.1 Authority Information Access

11d2: | | | 04 6d ; OCTET_STRING (6d Bytes)

11d4: | | | 30 6b ; SEQUENCE (6b Bytes)

11d6: | | | 30 24 ; SEQUENCE (24 Bytes)

11d8: | | | | 06 08 ; OBJECT_ID (8 Bytes)

11da: | | | | | 2b 06 01 05 05 07 30 01

| | | | | ; 1.3.6.1.5.5.7.48.1 On-line Certificate Status Protocol

11e2: | | | | 86 18 ; CONTEXT_SPECIFIC[6] (18 Bytes)

11e4: | | | | 68 74 74 70 3a 2f 2f 6f 63 73 70 2e 64 69 67 69 ; http://ocsp.digi

11f4: | | | | 63 65 72 74 2e 63 6f 6d ; cert.com

11fc: | | | 30 43 ; SEQUENCE (43 Bytes)

11fe: | | | 06 08 ; OBJECT_ID (8 Bytes)

1200: | | | | 2b 06 01 05 05 07 30 02

| | | | ; 1.3.6.1.5.5.7.48.2 Certification Authority Issuer

1208: | | | 86 37 ; CONTEXT_SPECIFIC[6] (37 Bytes)

120a: | | | 68 74 74 70 3a 2f 2f 63 61 63 65 72 74 73 2e 64 ; http://cacerts.d

121a: | | | 69 67 69 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 ; igicert.com/Digi

122a: | | | 43 65 72 74 41 73 73 75 72 65 64 49 44 52 6f 6f ; CertAssuredIDRoo

123a: | | | 74 43 41 2e 63 72 74 ; tCA.crt

1241: | | 30 45 ; SEQUENCE (45 Bytes)

1243: | | | 06 03 ; OBJECT_ID (3 Bytes)

1245: | | | | 55 1d 1f

| | | | ; 2.5.29.31 CRL Distribution Points

1248: | | | 04 3e ; OCTET_STRING (3e Bytes)

124a: | | | 30 3c ; SEQUENCE (3c Bytes)

124c: | | | 30 3a ; SEQUENCE (3a Bytes)

124e: | | | a0 38 ; OPTIONAL[0] (38 Bytes)

1250: | | | a0 36 ; OPTIONAL[0] (36 Bytes)

1252: | | | 86 34 ; CONTEXT_SPECIFIC[6] (34 Bytes)

1254: | | | 68 74 74 70 3a 2f 2f 63 72 6c 33 2e 64 69 67 69 ; http://crl3.digi

1264: | | | 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 43 65 72 ; cert.com/DigiCer

1274: | | | 74 41 73 73 75 72 65 64 49 44 52 6f 6f 74 43 41 ; tAssuredIDRootCA

1284: | | | 2e 63 72 6c ; .crl

1288: | | 30 11 ; SEQUENCE (11 Bytes)

128a: | | 06 03 ; OBJECT_ID (3 Bytes)

128c: | | | 55 1d 20

| | | ; 2.5.29.32 Certificate Policies

128f: | | 04 0a ; OCTET_STRING (a Bytes)

1291: | | 30 08 ; SEQUENCE (8 Bytes)

1293: | | 30 06 ; SEQUENCE (6 Bytes)

1295: | | 06 04 ; OBJECT_ID (4 Bytes)

1297: | | 55 1d 20 00

| | ; 2.5.29.32.0 All issuance policies

129b: | 30 0d ; SEQUENCE (d Bytes)

129d: | | 06 09 ; OBJECT_ID (9 Bytes)

129f: | | | 2a 86 48 86 f7 0d 01 01 0c

| | | ; 1.2.840.113549.1.1.12 sha384RSA

12a8: | | 05 00 ; NULL (0 Bytes)

12aa: | 03 82 01 01 ; BIT_STRING (101 Bytes)

12ae: | 00

12af: | 70 a0 bf 43 5c 55 e7 38 5f a0 a3 74 1b 3d b6 16

12bf: | d7 f7 bf 57 07 bd 9a ac a1 87 2c ec 85 5e a9 1a

12cf: | bb 22 f8 87 1a 69 54 22 ed a4 88 77 6d bd 1a 14

12df: | f4 13 4a 7a 2f 2d b7 38 ef f4 ff 80 b9 f8 a1 f7

12ef: | f2 72 de 24 bc 52 03 c8 4e d0 2a de fa 2d 56 cf

12ff: | f9 f4 f7 ac 30 7a 9a 8b b2 5e d4 cf d1 43 44 9b

130f: | 43 21 eb 96 72 a1 48 b4 99 cb 9d 4f a7 06 03 13

131f: | 77 27 44 d4 e7 7f e8 59 a8 f0 bf 2f 0b a6 e9 f2

132f: | 34 3c ec f7 03 c7 87 a8 d2 4c 40 19 35 46 6a 69

133f: | 54 b0 b8 a1 56 8e ec a4 d5 3d e8 b1 dc fd 1c d8

134f: | f4 77 5a 5c 54 8c 6f ef a1 50 3d fc 76 09 68 84

135f: | 9f 6f ca db 20 8d 35 60 1c 02 03 cb 20 b0 ac 58

136f: | a0 0e 40 63 c5 98 22 c1 b2 59 f5 55 6b cf 27 ab

137f: | 6c 76 ce 6f 23 2d f4 7e 71 6a 23 6b 22 ff 12 b8

138f: | 54 2d 27 7e d8 3a d9 f0 b6 87 96 fd 5b d1 5c ac

139f: | 18 c3 4d 9f 73 b7 01 a9 9f 57 aa 5e 28 e2 b9 94

13af: 31 82 03 76 ; SET (376 Bytes)

13b3: 30 82 03 72 ; SEQUENCE (372 Bytes)

13b7: 02 01 ; INTEGER (1 Bytes)

13b9: | 01

13ba: 30 77 ; SEQUENCE (77 Bytes)

13bc: | 30 63 ; SEQUENCE (63 Bytes)

13be: | | 31 0b ; SET (b Bytes)

13c0: | | | 30 09 ; SEQUENCE (9 Bytes)

13c2: | | | 06 03 ; OBJECT_ID (3 Bytes)

13c4: | | | | 55 04 06

| | | | ; 2.5.4.6 Country/Region (C)

13c7: | | | 13 02 ; PRINTABLE_STRING (2 Bytes)

13c9: | | | 55 53 ; US

| | | ; "US"

13cb: | | 31 17 ; SET (17 Bytes)

13cd: | | | 30 15 ; SEQUENCE (15 Bytes)

13cf: | | | 06 03 ; OBJECT_ID (3 Bytes)

13d1: | | | | 55 04 0a

| | | | ; 2.5.4.10 Organisation (O)

13d4: | | | 13 0e ; PRINTABLE_STRING (e Bytes)

13d6: | | | 44 69 67 69 43 65 72 74 2c 20 49 6e 63 2e ; DigiCert, Inc.

| | | ; "DigiCert, Inc."

13e4: | | 31 3b ; SET (3b Bytes)

13e6: | | 30 39 ; SEQUENCE (39 Bytes)

13e8: | | 06 03 ; OBJECT_ID (3 Bytes)

13ea: | | | 55 04 03

| | | ; 2.5.4.3 Common Name (CN)

13ed: | | 13 32 ; PRINTABLE_STRING (32 Bytes)

13ef: | | 44 69 67 69 43 65 72 74 20 54 72 75 73 74 65 64 ; DigiCert Trusted

13ff: | | 20 47 34 20 52 53 41 34 30 39 36 20 53 48 41 32 ; G4 RSA4096 SHA2

140f: | | 35 36 20 54 69 6d 65 53 74 61 6d 70 69 6e 67 20 ; 56 TimeStamping

141f: | | 43 41 ; CA

| | ; "DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"

1421: | 02 10 ; INTEGER (10 Bytes)

1423: | 0c 4d 69 72 4b 94 fa 3c 2a 4a 3d 29 07 80 3d 5a

1433: 30 0d ; SEQUENCE (d Bytes)

1435: | 06 09 ; OBJECT_ID (9 Bytes)

1437: | | 60 86 48 01 65 03 04 02 01

| | ; 2.16.840.1.101.3.4.2.1 sha256 (sha256NoSign)

1440: | 05 00 ; NULL (0 Bytes)

1442: a0 81 d1 ; OPTIONAL[0] (d1 Bytes)

1445: | 30 1a ; SEQUENCE (1a Bytes)

1447: | | 06 09 ; OBJECT_ID (9 Bytes)

1449: | | | 2a 86 48 86 f7 0d 01 09 03

| | | ; 1.2.840.113549.1.9.3 Content Type

1452: | | 31 0d ; SET (d Bytes)

1454: | | 06 0b ; OBJECT_ID (b Bytes)

1456: | | 2a 86 48 86 f7 0d 01 09 10 01 04

| | ; 1.2.840.113549.1.9.16.1.4

1461: | 30 1c ; SEQUENCE (1c Bytes)

1463: | | 06 09 ; OBJECT_ID (9 Bytes)

1465: | | | 2a 86 48 86 f7 0d 01 09 05

| | | ; 1.2.840.113549.1.9.5 Signing Time

146e: | | 31 0f ; SET (f Bytes)

1470: | | 17 0d ; UTC_TIME (d Bytes)

1472: | | 32 32 31 32 32 33 32 30 31 39 34 31 5a ; 221223201941Z

| | ; 23/12/2022 20:19

147f: | 30 2b ; SEQUENCE (2b Bytes)

1481: | | 06 0b ; OBJECT_ID (b Bytes)

1483: | | | 2a 86 48 86 f7 0d 01 09 10 02 0c

| | | ; 1.2.840.113549.1.9.16.2.12

148e: | | 31 1c ; SET (1c Bytes)

1490: | | 30 1a ; SEQUENCE (1a Bytes)

1492: | | 30 18 ; SEQUENCE (18 Bytes)

1494: | | 30 16 ; SEQUENCE (16 Bytes)

1496: | | 04 14 ; OCTET_STRING (14 Bytes)

1498: | | f3 87 22 4d 86 33 82 92 35 a9 94 bc bd 8f 96 e9 ; .."M.3..5.......

14a8: | | fe 1c 7c 73 ; ..|s

14ac: | 30 2f ; SEQUENCE (2f Bytes)

14ae: | | 06 09 ; OBJECT_ID (9 Bytes)

14b0: | | | 2a 86 48 86 f7 0d 01 09 04

| | | ; 1.2.840.113549.1.9.4 Message Digest

14b9: | | 31 22 ; SET (22 Bytes)

14bb: | | 04 20 ; OCTET_STRING (20 Bytes)

14bd: | | 4f b1 77 2a 39 6b 5b 31 2f 9c 8f e3 3c e1 9a 71 ; O.w*9k[1/...<..q

14cd: | | ef 53 40 63 40 da bf 6b ed 7e 01 12 08 91 2d f9 ; .S@c@..k.~....-.

14dd: | 30 37 ; SEQUENCE (37 Bytes)

14df: | 06 0b ; OBJECT_ID (b Bytes)

14e1: | | 2a 86 48 86 f7 0d 01 09 10 02 2f

| | ; 1.2.840.113549.1.9.16.2.47

14ec: | 31 28 ; SET (28 Bytes)

14ee: | 30 26 ; SEQUENCE (26 Bytes)

14f0: | 30 24 ; SEQUENCE (24 Bytes)

14f2: | 30 22 ; SEQUENCE (22 Bytes)

14f4: | 04 20 ; OCTET_STRING (20 Bytes)

14f6: | c7 f4 e1 be 32 28 89 20 ab e2 26 3a be 1a c4 fc ; ....2(. ..&:....

1506: | 4f e6 78 1c 2d 64 d0 4c 80 75 57 a0 23 b5 b6 fa ; O.x.-d.L.uW.#...

1516: 30 0d ; SEQUENCE (d Bytes)

1518: | 06 09 ; OBJECT_ID (9 Bytes)

151a: | | 2a 86 48 86 f7 0d 01 01 01

| | ; 1.2.840.113549.1.1.1 RSA (RSA_SIGN)

1523: | 05 00 ; NULL (0 Bytes)

1525: 04 82 02 00 ; OCTET_STRING (200 Bytes)

1529: 29 8c e8 2f 44 b2 1e 11 95 1f 63 51 e8 db dc 97 ; )../D.....cQ....

1539: ca f7 7b 6f 0e a4 4e f4 df 5f fd 07 11 8a 70 4c ; ..{o..N.._....pL

1549: 26 46 1c 9a fa f0 25 e7 94 b4 57 6f 54 8b d3 c2 ; &F....%...WoT...

1559: 71 1a b3 52 3f bd 1c fe 1c c0 37 64 64 bd 8a f8 ; q..R?.....7dd...

1569: d8 cd 47 6e 63 71 ca f7 bc d0 ff f0 33 b1 31 b8 ; ..Gncq......3.1.

1579: a5 6a c5 70 bd 97 62 f7 dd 0a ad c2 79 91 4d f0 ; .j.p..b.....y.M.

1589: f9 80 be ba f6 4e 5d de 22 ed 00 e3 fb a6 67 40 ; .....N].".....g@

1599: cf 69 ea be 9b 87 21 2a c2 bb 04 ff d9 b3 7c f6 ; .i....!*......|.

15a9: c2 9a d8 37 13 b8 d3 8d 3c c3 41 3c 10 1b 89 75 ; ...7....<.A<...u

15b9: f9 65 68 a3 bd 42 c8 36 95 3f bb 23 3c 15 48 11 ; .eh..B.6.?.#<.H.

15c9: 38 61 76 d9 8f 79 3c d1 a6 36 91 02 d3 73 e0 27 ; 8av..y<..6...s.'

15d9: 89 ef 72 5e 5a 08 fb 63 48 b3 35 cb fb 6c 86 c2 ; ..r^Z..cH.5..l..

15e9: f8 8c 5a 49 72 d2 bd 8d f8 b3 76 98 01 79 b8 65 ; ..ZIr.....v..y.e

15f9: 53 45 11 61 68 e9 ee e4 75 53 7c a6 21 f8 66 76 ; SE.ah...uS|.!.fv

1609: 7f 68 6d 9f 6e 04 5e aa 2e a8 3a 2e 6b 53 45 94 ; .hm.n.^...:.kSE.

1619: 18 94 a6 f3 fd eb 47 28 95 55 44 6d 42 5c 42 d3 ; ......G(.UDmB\B.

1629: 4c 8f 07 ef 74 5c 7f 35 a2 ed 9c e1 19 6e bb 3b ; L...t\.5.....n.;

1639: d4 64 6d 6e f1 57 0b bb c8 33 b4 e6 98 ae f2 22 ; .dmn.W...3....."

1649: 1e c7 9c af 28 c6 e8 c0 ab 8a 22 2e ac 4e 0b 56 ; ....(....."..N.V

1659: 93 06 59 33 94 ca 1f 49 7d 44 c9 1d f3 9f cf 51 ; ..Y3...I}D.....Q

1669: e3 04 30 08 28 50 51 94 12 0d 61 79 80 e0 00 6d ; ..0.(PQ...ay...m

1679: 38 e3 d5 da d7 eb 15 12 2c 2a df 59 39 3f 7c ae ; 8.......,*.Y9?|.

1689: 74 83 58 69 3b 5e a3 d8 fc 4b 87 bd 1f f4 f9 cf ; t.Xi;^...K......

1699: a9 0e a0 da 77 dd 9e 3a ac 8d 0d 1e fa e3 c1 fa ; ....w..:........

16a9: eb f6 8f 28 12 01 f3 d1 04 6f 5b 02 9a c0 3f fa ; ...(.....o[...?.

16b9: b9 db 4d a6 5c f8 d9 d0 25 81 44 23 a4 c7 11 6e ; ..M.\...%.D#...n

16c9: 79 42 12 1e 9a 5b 5c 59 bc 84 a7 ec d8 ac 88 fc ; yB...[\Y........

16d9: 30 86 5d f8 a2 53 08 bf 68 b1 bd b3 12 06 ef 1b ; 0.]..S..h.......

16e9: e0 88 05 7a eb 66 be e0 7d c9 ce 4f 54 3e 0d a9 ; ...z.f..}..OT>..

16f9: ed c5 ea 67 27 72 52 3c 47 82 50 aa 73 c8 27 e8 ; ...g'rR<G.P.s.'.

1709: 7c 14 40 7f 09 78 8f 7a b6 ae 47 1c f9 e5 14 f1 ; |.@..x.z..G.....

1719: a2 f6 f5 e3 83 05 a6 02 e9 f4 70 de 5b 7d b1 4f ; ..........p.[}.O

publickey - james@uplinkzero.com - 0x5A4B5B5D.asc

signature.asc

Jeffrey Walton

unread,

Jan 21, 2023, 11:16:57 AM1/21/23

to cryptop...@googlegroups.com

On Sat, Jan 21, 2023 at 5:47 AM James Chapman <ja...@uplinkzero.com> wrote:
>
> New subscriber and CryptoPP user list here. I'm hoping you can assist me and point me in the right direction. I'm trying to read information from PE file signing certificates which are typically in PKCS#7 format. I've extracted the certificate structure OK, but now I'm trying to use CryptoPP to extract information from the certificates.
>
> I've used certutil to dump an ASN structure from acrobat.exe (for easy reference I've placed it at the bottom of this email).
>
> So far, I've got this:
>
> CryptoPP::VectorSource vs(certData.certificate, true);
> CryptoPP::BERSequenceDecoder p7b(vs);
> CryptoPP::BERSequenceDecoder outerObject(p7b, CryptoPP::OBJECT_IDENTIFIER);
>
> Anything I try after this throws.

What was the exception? The ASN.1 gear likely does not know about OIDs
1.2.840.113549.1.7.2, 2.16.840.1.101.3.4.2.1,
1.2.840.113549.1.9.16.1.4 and friends. But the exception should tell
you the problem.

> I presume I need to read the OPTIONAL somehow and then from there process the SEQUENCE. In fact, I suspect the best approach would be to somehow enumerate the SEQUENCE sections and then process those individually, but with the tools available to me in CryptoPP's ASN section I've not been able to work out how to do that yet :-(
>

> I'm probably missing something obvious (I should point out that I'm new to ASN1 too). Any guidance, words of wisdom or even examples would be greatly appreciated.
>

Also see https://www.cryptopp.com/wiki/X509Certificate . It is an
example of parsing X.509 certificates.

Jeff

> 0000: 30 82 17 25 ; SEQUENCE (1725 Bytes)
> 0004: 06 09 ; OBJECT_ID (9 Bytes)
> 0006: | 2a 86 48 86 f7 0d 01 07 02
> | ; 1.2.840.113549.1.7.2 PKCS 7 Signed
> 000f: a0 82 17 16 ; OPTIONAL[0] (1716 Bytes)
> 0013: 30 82 17 12 ; SEQUENCE (1712 Bytes)
> 0017: 02 01 ; INTEGER (1 Bytes)
> 0019: | 03