ASN.1 PKCS7 certificate decoding help
151 views
Skip to first unread message
James Chapman
Jan 21, 2023, 5:47:49 AM1/21/23
to cryptop...@googlegroups.com
Hello list,
New subscriber and CryptoPP user list here. I'm hoping you can assist me and point me in the right direction. I'm trying to read information from PE file signing certificates which are typically in PKCS#7 format. I've extracted the certificate structure OK, but now I'm trying to use CryptoPP to extract information from the certificates.
I've used certutil to dump an ASN structure from acrobat.exe (for easy reference I've placed it at the bottom of this email).
So far, I've got this:
CryptoPP::VectorSource vs(certData.certificate, true);
CryptoPP::BERSequenceDecoder p7b(vs);
CryptoPP::BERSequenceDecoder outerObject(p7b, CryptoPP::OBJECT_IDENTIFIER);Anything I try after this throws.
I presume I need to read the OPTIONAL somehow and then from there process the SEQUENCE. In fact, I suspect the best approach would be to somehow enumerate the SEQUENCE sections and then process those individually, but with the tools available to me in CryptoPP's ASN section I've not been able to work out how to do that yet :-(
I'm probably missing someting obvious (I should point out that I'm new to ASN1 too). Any guidance, words of wisdom or even examples would be greatly appreciated.
Thanks
James
-----------------------------
0000: 30 82 17 25 ; SEQUENCE (1725 Bytes)
0004: 06 09 ; OBJECT_ID (9 Bytes)
0006: | 2a 86 48 86 f7 0d 01 07 02
| ; 1.2.840.113549.1.7.2 PKCS 7 Signed
000f: a0 82 17 16 ; OPTIONAL[0] (1716 Bytes)
0013: 30 82 17 12 ; SEQUENCE (1712 Bytes)
0017: 02 01 ; INTEGER (1 Bytes)
0019: | 03
001a: 31 0f ; SET (f Bytes)
001c: | 30 0d ; SEQUENCE (d Bytes)
001e: | 06 09 ; OBJECT_ID (9 Bytes)
0020: | | 60 86 48 01 65 03 04 02 01
| | ; 2.16.840.1.101.3.4.2.1 sha256 (sha256NoSign)
0029: | 05 00 ; NULL (0 Bytes)
002b: 30 77 ; SEQUENCE (77 Bytes)
002d: | 06 0b ; OBJECT_ID (b Bytes)
002f: | | 2a 86 48 86 f7 0d 01 09 10 01 04
| | ; 1.2.840.113549.1.9.16.1.4
003a: | a0 68 ; OPTIONAL[0] (68 Bytes)
003c: | 04 66 ; OCTET_STRING (66 Bytes)
003e: | 30 64 ; SEQUENCE (64 Bytes)
0040: | 02 01 ; INTEGER (1 Bytes)
0042: | | 01
0043: | 06 09 ; OBJECT_ID (9 Bytes)
0045: | | 60 86 48 01 86 fd 6c 07 01
| | ; 2.16.840.1.114412.7.1
004e: | 30 31 ; SEQUENCE (31 Bytes)
0050: | | 30 0d ; SEQUENCE (d Bytes)
0052: | | | 06 09 ; OBJECT_ID (9 Bytes)
0054: | | | | 60 86 48 01 65 03 04 02 01
| | | | ; 2.16.840.1.101.3.4.2.1 sha256 (sha256NoSign)
005d: | | | 05 00 ; NULL (0 Bytes)
005f: | | 04 20 ; OCTET_STRING (20 Bytes)
0061: | | 1a d1 ee 21 40 81 10 30 fc 71 2a 37 c6 1e ec af ; ...!@..0.q*7....
0071: | | 88 5d 60 2e 16 05 5e 16 06 d0 d7 3a 33 53 96 81 ; .]`...^....:3S..
0081: | 02 10 ; INTEGER (10 Bytes)
0083: | | 26 c6 2b f8 92 e3 c0 2d 83 92 b7 84 f6 0e d1 bd
0093: | 18 0f ; GENERALIZED_TIME (f Bytes)
0095: | 32 30 32 32 31 32 32 33 32 30 31 39 34 31 5a ; 20221223201941Z
| ; 23/12/2022 20:19
00a4: a0 82 13 07 ; OPTIONAL[0] (1307 Bytes)
00a8: | 30 82 06 c0 ; SEQUENCE (6c0 Bytes)
00ac: | | 30 82 04 a8 ; SEQUENCE (4a8 Bytes)
00b0: | | | a0 03 ; OPTIONAL[0] (3 Bytes)
00b2: | | | | 02 01 ; INTEGER (1 Bytes)
00b4: | | | | 02
00b5: | | | 02 10 ; INTEGER (10 Bytes)
00b7: | | | | 0c 4d 69 72 4b 94 fa 3c 2a 4a 3d 29 07 80 3d 5a
00c7: | | | 30 0d ; SEQUENCE (d Bytes)
00c9: | | | | 06 09 ; OBJECT_ID (9 Bytes)
00cb: | | | | | 2a 86 48 86 f7 0d 01 01 0b
| | | | | ; 1.2.840.113549.1.1.11 sha256RSA
00d4: | | | | 05 00 ; NULL (0 Bytes)
00d6: | | | 30 63 ; SEQUENCE (63 Bytes)
00d8: | | | | 31 0b ; SET (b Bytes)
00da: | | | | | 30 09 ; SEQUENCE (9 Bytes)
00dc: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
00de: | | | | | | 55 04 06
| | | | | | ; 2.5.4.6 Country/Region (C)
00e1: | | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)
00e3: | | | | | 55 53 ; US
| | | | | ; "US"
00e5: | | | | 31 17 ; SET (17 Bytes)
00e7: | | | | | 30 15 ; SEQUENCE (15 Bytes)
00e9: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
00eb: | | | | | | 55 04 0a
| | | | | | ; 2.5.4.10 Organisation (O)
00ee: | | | | | 13 0e ; PRINTABLE_STRING (e Bytes)
00f0: | | | | | 44 69 67 69 43 65 72 74 2c 20 49 6e 63 2e ; DigiCert, Inc.
| | | | | ; "DigiCert, Inc."
00fe: | | | | 31 3b ; SET (3b Bytes)
0100: | | | | 30 39 ; SEQUENCE (39 Bytes)
0102: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0104: | | | | | 55 04 03
| | | | | ; 2.5.4.3 Common Name (CN)
0107: | | | | 13 32 ; PRINTABLE_STRING (32 Bytes)
0109: | | | | 44 69 67 69 43 65 72 74 20 54 72 75 73 74 65 64 ; DigiCert Trusted
0119: | | | | 20 47 34 20 52 53 41 34 30 39 36 20 53 48 41 32 ; G4 RSA4096 SHA2
0129: | | | | 35 36 20 54 69 6d 65 53 74 61 6d 70 69 6e 67 20 ; 56 TimeStamping
0139: | | | | 43 41 ; CA
| | | | ; "DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"
013b: | | | 30 1e ; SEQUENCE (1e Bytes)
013d: | | | | 17 0d ; UTC_TIME (d Bytes)
013f: | | | | | 32 32 30 39 32 31 30 30 30 30 30 30 5a ; 220921000000Z
| | | | | ; 21/09/2022 00:00
014c: | | | | 17 0d ; UTC_TIME (d Bytes)
014e: | | | | 33 33 31 31 32 31 32 33 35 39 35 39 5a ; 331121235959Z
| | | | ; 21/11/2033 23:59
015b: | | | 30 46 ; SEQUENCE (46 Bytes)
015d: | | | | 31 0b ; SET (b Bytes)
015f: | | | | | 30 09 ; SEQUENCE (9 Bytes)
0161: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
0163: | | | | | | 55 04 06
| | | | | | ; 2.5.4.6 Country/Region (C)
0166: | | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)
0168: | | | | | 55 53 ; US
| | | | | ; "US"
016a: | | | | 31 11 ; SET (11 Bytes)
016c: | | | | | 30 0f ; SEQUENCE (f Bytes)
016e: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
0170: | | | | | | 55 04 0a
| | | | | | ; 2.5.4.10 Organisation (O)
0173: | | | | | 13 08 ; PRINTABLE_STRING (8 Bytes)
0175: | | | | | 44 69 67 69 43 65 72 74 ; DigiCert
| | | | | ; "DigiCert"
017d: | | | | 31 24 ; SET (24 Bytes)
017f: | | | | 30 22 ; SEQUENCE (22 Bytes)
0181: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0183: | | | | | 55 04 03
| | | | | ; 2.5.4.3 Common Name (CN)
0186: | | | | 13 1b ; PRINTABLE_STRING (1b Bytes)
0188: | | | | 44 69 67 69 43 65 72 74 20 54 69 6d 65 73 74 61 ; DigiCert Timesta
0198: | | | | 6d 70 20 32 30 32 32 20 2d 20 32 ; mp 2022 - 2
| | | | ; "DigiCert Timestamp 2022 - 2"
01a3: | | | 30 82 02 22 ; SEQUENCE (222 Bytes)
01a7: | | | | 30 0d ; SEQUENCE (d Bytes)
01a9: | | | | | 06 09 ; OBJECT_ID (9 Bytes)
01ab: | | | | | | 2a 86 48 86 f7 0d 01 01 01
| | | | | | ; 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
01b4: | | | | | 05 00 ; NULL (0 Bytes)
01b6: | | | | 03 82 02 0f ; BIT_STRING (20f Bytes)
01ba: | | | | 00
01bb: | | | | 30 82 02 0a ; SEQUENCE (20a Bytes)
01bf: | | | | 02 82 02 01 ; INTEGER (201 Bytes)
01c3: | | | | | 00
01c4: | | | | | cf ec a5 26 3a c6 a9 f2 6b bb 8d c1 0d 9a db a1
01d4: | | | | | e8 14 85 74 33 1a 26 ac d0 1c 55 1e 1e 36 6d bc
01e4: | | | | | 92 55 0c 61 f4 9d 09 77 3d 15 96 08 2f 6b 64 a4
01f4: | | | | | fd 06 83 16 d7 91 92 38 1c 31 02 96 fb 72 b1 97
0204: | | | | | 3a 55 af 33 ec 61 8a e9 a6 28 db 90 63 5c bd 89
0214: | | | | | 53 e0 3a 2d 8c 87 42 ae 26 a4 e4 bb 78 78 b9 7a
0224: | | | | | 16 e1 56 c6 c0 ba 64 53 bb 2a 16 e7 50 48 bb 88
0234: | | | | | 69 0c 88 c6 f1 be e0 2f 7d 3b b1 ca 53 8d 40 83
0244: | | | | | 1e e7 cb 72 49 28 1e 4c 80 1e 85 56 e7 85 ed f2
0254: | | | | | 61 bc aa 3a 07 7d f6 ab 6e e5 66 dd e2 5c f5 2f
0264: | | | | | ed 8d d4 4d 95 84 68 e3 80 cb 6a 79 d1 d2 10 91
0274: | | | | | 46 29 eb 3e 26 f2 b4 8c cd 4c b9 66 c8 bb aa 50
0284: | | | | | 38 0d e5 8c 94 5d 19 5a bf f5 7b 40 6e 6f 16 a8
0294: | | | | | 9a 9c 95 47 86 85 79 3e 0c 5e 66 8c 1a 0a 24 be
02a4: | | | | | 9c aa d2 9c b6 f7 4f 6e 78 c4 28 3f a3 1c 0f 50
02b4: | | | | | 06 37 ba 08 d9 35 a6 b5 1e da 78 58 1d 39 e8 f8
02c4: | | | | | 4c 91 10 96 7e 4d e1 dd c2 ad a5 7e f8 2d 1b 1f
02d4: | | | | | ec 2b 46 18 a3 19 f6 39 f7 f5 c1 4f 71 2e 89 03
02e4: | | | | | 11 a2 4b bb 98 bf fa 4f e4 7b 36 ef 06 44 e4 55
02f4: | | | | | ff 36 ea e5 7c 31 e7 f3 c2 52 c4 e6 16 7b 5a 7e
0304: | | | | | a5 25 73 db c0 6a 99 21 2d 63 e5 59 f5 4d 2f 90
0314: | | | | | 1f 27 b7 d2 ab 14 e5 38 66 87 51 08 6b fb 53 43
0324: | | | | | 39 d0 64 fa 56 cf e0 f4 0a e6 14 6d 64 78 bb 98
0334: | | | | | fd 94 c3 73 21 f3 2f c2 2e 20 d7 81 ac d3 f1 07
0344: | | | | | d4 e1 bd d9 5d 4b 6e 31 94 29 8b e6 41 a4 65 94
0354: | | | | | c0 58 e5 e5 2e 29 90 a6 b7 61 64 fa d9 20 6c 18
0364: | | | | | 51 60 ba a6 81 0f 09 25 53 f1 bf 3b e9 ab 07 0e
0374: | | | | | 6a 07 39 62 19 c9 d6 85 7f 13 d9 8d 79 cf 62 c5
0384: | | | | | ec e1 7b b9 cc 67 13 07 9a c1 78 ed c6 88 c8 b0
0394: | | | | | 6e 32 79 c7 0b 59 83 8d c6 ee f5 2c 7c 7b 8e cb
03a4: | | | | | 64 89 f1 b1 c4 b8 e7 53 5e 5f 55 d2 7d 19 29 59
03b4: | | | | | 03 4e fa 5d ea 45 73 1c 84 7e d7 ce e2 d4 3a 77
03c4: | | | | 02 03 ; INTEGER (3 Bytes)
03c6: | | | | 01 00 01
03c9: | | | a3 82 01 8b ; OPTIONAL[3] (18b Bytes)
03cd: | | | 30 82 01 87 ; SEQUENCE (187 Bytes)
03d1: | | | 30 0e ; SEQUENCE (e Bytes)
03d3: | | | | 06 03 ; OBJECT_ID (3 Bytes)
03d5: | | | | | 55 1d 0f
| | | | | ; 2.5.29.15 Key Usage
03d8: | | | | 01 01 ; BOOL (1 Bytes)
03da: | | | | | ff
03db: | | | | 04 04 ; OCTET_STRING (4 Bytes)
03dd: | | | | 03 02 ; BIT_STRING (2 Bytes)
03df: | | | | 07
03e0: | | | | 80
03e1: | | | 30 0c ; SEQUENCE (c Bytes)
03e3: | | | | 06 03 ; OBJECT_ID (3 Bytes)
03e5: | | | | | 55 1d 13
| | | | | ; 2.5.29.19 Basic Constraints
03e8: | | | | 01 01 ; BOOL (1 Bytes)
03ea: | | | | | ff
03eb: | | | | 04 02 ; OCTET_STRING (2 Bytes)
03ed: | | | | 30 00 ; SEQUENCE (0 Bytes)
03ef: | | | 30 16 ; SEQUENCE (16 Bytes)
03f1: | | | | 06 03 ; OBJECT_ID (3 Bytes)
03f3: | | | | | 55 1d 25
| | | | | ; 2.5.29.37 Enhanced Key Usage
03f6: | | | | 01 01 ; BOOL (1 Bytes)
03f8: | | | | | ff
03f9: | | | | 04 0c ; OCTET_STRING (c Bytes)
03fb: | | | | 30 0a ; SEQUENCE (a Bytes)
03fd: | | | | 06 08 ; OBJECT_ID (8 Bytes)
03ff: | | | | 2b 06 01 05 05 07 03 08
| | | | ; 1.3.6.1.5.5.7.3.8 Time Stamping
0407: | | | 30 20 ; SEQUENCE (20 Bytes)
0409: | | | | 06 03 ; OBJECT_ID (3 Bytes)
040b: | | | | | 55 1d 20
| | | | | ; 2.5.29.32 Certificate Policies
040e: | | | | 04 19 ; OCTET_STRING (19 Bytes)
0410: | | | | 30 17 ; SEQUENCE (17 Bytes)
0412: | | | | 30 08 ; SEQUENCE (8 Bytes)
0414: | | | | | 06 06 ; OBJECT_ID (6 Bytes)
0416: | | | | | 67 81 0c 01 04 02
| | | | | ; 2.23.140.1.4.2
041c: | | | | 30 0b ; SEQUENCE (b Bytes)
041e: | | | | 06 09 ; OBJECT_ID (9 Bytes)
0420: | | | | 60 86 48 01 86 fd 6c 07 01
| | | | ; 2.16.840.1.114412.7.1
0429: | | | 30 1f ; SEQUENCE (1f Bytes)
042b: | | | | 06 03 ; OBJECT_ID (3 Bytes)
042d: | | | | | 55 1d 23
| | | | | ; 2.5.29.35 Authority Key Identifier
0430: | | | | 04 18 ; OCTET_STRING (18 Bytes)
0432: | | | | 30 16 ; SEQUENCE (16 Bytes)
0434: | | | | 80 14 ; CONTEXT_SPECIFIC[0] (14 Bytes)
0436: | | | | ba 16 d9 6d 4d 85 2f 73 29 76 9a 2f 75 8c 6a 20 ; ...mM./s)v./u.j
0446: | | | | 8f 9e c8 6f ; ...o
044a: | | | 30 1d ; SEQUENCE (1d Bytes)
044c: | | | | 06 03 ; OBJECT_ID (3 Bytes)
044e: | | | | | 55 1d 0e
| | | | | ; 2.5.29.14 Subject Key Identifier
0451: | | | | 04 16 ; OCTET_STRING (16 Bytes)
0453: | | | | 04 14 ; OCTET_STRING (14 Bytes)
0455: | | | | 62 8a de d0 61 fc 8f 31 14 ed 97 0b cd 3d 2a 94 ; b...a..1.....=*.
0465: | | | | 14 df 52 9c ; ..R.
0469: | | | 30 5a ; SEQUENCE (5a Bytes)
046b: | | | | 06 03 ; OBJECT_ID (3 Bytes)
046d: | | | | | 55 1d 1f
| | | | | ; 2.5.29.31 CRL Distribution Points
0470: | | | | 04 53 ; OCTET_STRING (53 Bytes)
0472: | | | | 30 51 ; SEQUENCE (51 Bytes)
0474: | | | | 30 4f ; SEQUENCE (4f Bytes)
0476: | | | | a0 4d ; OPTIONAL[0] (4d Bytes)
0478: | | | | a0 4b ; OPTIONAL[0] (4b Bytes)
047a: | | | | 86 49 ; CONTEXT_SPECIFIC[6] (49 Bytes)
047c: | | | | 68 74 74 70 3a 2f 2f 63 72 6c 33 2e 64 69 67 69 ; http://crl3.digi
048c: | | | | 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 43 65 72 ; cert.com/DigiCer
049c: | | | | 74 54 72 75 73 74 65 64 47 34 52 53 41 34 30 39 ; tTrustedG4RSA409
04ac: | | | | 36 53 48 41 32 35 36 54 69 6d 65 53 74 61 6d 70 ; 6SHA256TimeStamp
04bc: | | | | 69 6e 67 43 41 2e 63 72 6c ; ingCA.crl
04c5: | | | 30 81 90 ; SEQUENCE (90 Bytes)
04c8: | | | 06 08 ; OBJECT_ID (8 Bytes)
04ca: | | | | 2b 06 01 05 05 07 01 01
| | | | ; 1.3.6.1.5.5.7.1.1 Authority Information Access
04d2: | | | 04 81 83 ; OCTET_STRING (83 Bytes)
04d5: | | | 30 81 80 ; SEQUENCE (80 Bytes)
04d8: | | | 30 24 ; SEQUENCE (24 Bytes)
04da: | | | | 06 08 ; OBJECT_ID (8 Bytes)
04dc: | | | | | 2b 06 01 05 05 07 30 01
| | | | | ; 1.3.6.1.5.5.7.48.1 On-line Certificate Status Protocol
04e4: | | | | 86 18 ; CONTEXT_SPECIFIC[6] (18 Bytes)
04e6: | | | | 68 74 74 70 3a 2f 2f 6f 63 73 70 2e 64 69 67 69 ; http://ocsp.digi
04f6: | | | | 63 65 72 74 2e 63 6f 6d ; cert.com
04fe: | | | 30 58 ; SEQUENCE (58 Bytes)
0500: | | | 06 08 ; OBJECT_ID (8 Bytes)
0502: | | | | 2b 06 01 05 05 07 30 02
| | | | ; 1.3.6.1.5.5.7.48.2 Certification Authority Issuer
050a: | | | 86 4c ; CONTEXT_SPECIFIC[6] (4c Bytes)
050c: | | | 68 74 74 70 3a 2f 2f 63 61 63 65 72 74 73 2e 64 ; http://cacerts.d
051c: | | | 69 67 69 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 ; igicert.com/Digi
052c: | | | 43 65 72 74 54 72 75 73 74 65 64 47 34 52 53 41 ; CertTrustedG4RSA
053c: | | | 34 30 39 36 53 48 41 32 35 36 54 69 6d 65 53 74 ; 4096SHA256TimeSt
054c: | | | 61 6d 70 69 6e 67 43 41 2e 63 72 74 ; ampingCA.crt
0558: | | 30 0d ; SEQUENCE (d Bytes)
055a: | | | 06 09 ; OBJECT_ID (9 Bytes)
055c: | | | | 2a 86 48 86 f7 0d 01 01 0b
| | | | ; 1.2.840.113549.1.1.11 sha256RSA
0565: | | | 05 00 ; NULL (0 Bytes)
0567: | | 03 82 02 01 ; BIT_STRING (201 Bytes)
056b: | | 00
056c: | | 55 aa 2a 1a f3 46 f3 78 57 37 30 fc 75 e3 4f d6
057c: | | 85 23 f1 fc f9 95 39 9b 25 e6 f7 72 8a 98 c3 77
058c: | | d4 64 fc 15 fb 36 c2 49 51 2c 78 88 63 55 09 46
059c: | | 39 00 fc 69 d4 ca 9b 29 fb a3 3f c0 c9 00 9b 13
05ac: | | 1d b0 98 89 dc 78 f2 cd 7c 85 cd 53 9d af 62 e2
05bc: | | 61 66 a3 14 2a 45 87 4a 98 42 2b 50 fc 1b b5 9e
05cc: | | 08 30 09 fa e4 2d d7 09 89 79 f9 09 e6 88 ce 7d
05dc: | | 1b b8 6a a2 9b c1 53 60 09 e8 a3 b8 9d d7 ad 1f
05ec: | | 1c b8 ec 98 41 f0 f6 0e 80 fb e4 ff df 9d 10 a7
05fc: | | eb 00 ba 5f 4a 8f 1a 3a 52 b4 ea bf 09 49 15 35
060c: | | 36 59 9a 0f 54 d2 b2 1b 7f 7e 5e 09 ad 76 54 8a
061c: | | 74 6d ca d2 05 67 2b 76 eb ff 98 b2 26 95 38 19
062c: | | 88 44 14 e5 0a 59 a2 6b e7 22 3e 44 21 d2 3f 1c
063c: | | c0 9b ed 7c 48 b2 d8 92 0c 91 4f 3c 66 94 af 5d
064c: | | 02 53 eb 9e e2 9e e4 d3 1f 86 01 64 9c 00 c2 e9
065c: | | 5a 74 75 0d 3d e1 79 88 bf 1c 01 97 c9 19 23 80
066c: | | d7 36 5a 5f 96 16 b1 63 0c c6 46 40 3b ce 5d 35
067c: | | d4 59 3e 43 9a 18 ae c3 c9 cb c3 fb 9b 13 5f 6a
068c: | | b5 c7 e0 f3 05 c3 59 df 27 62 2b de 41 c9 53 b9
069c: | | ff 34 10 67 f6 26 32 98 7b fe 5c 42 94 81 94 82
06ac: | | 9d ac 0a 8b c6 4b 15 4a d3 98 90 45 60 33 80 e0
06bc: | | 23 de f8 03 a4 f6 45 47 e5 ce b8 03 42 47 e8 41
06cc: | | 36 71 77 ad fd a2 e8 97 74 4e 2e da 1e 1d 8c 5a
06dc: | | c8 1e 9a d5 c2 f0 c6 22 a8 4f 9b bd d8 1c 9a 51
06ec: | | c4 2f 9a f6 5f a7 27 97 ba 96 2e 85 57 c0 60 e7
06fc: | | 78 56 7f 6a ef c2 95 9a 4b 11 02 c8 82 9c c9 1a
070c: | | 05 7c ba 71 b5 4e 7a 99 6c f4 e8 9e d4 5a 98 c8
071c: | | 9f bf 8d bb 18 5c 43 f5 d0 2a e8 e2 62 ee 78 04
072c: | | db bd d1 fb 5b 0a a8 70 7e f0 97 84 78 e3 08 03
073c: | | 5d 47 2c 63 a8 25 38 97 01 d2 3f 3a da e5 e5 f6
074c: | | e6 9b dc 7e 2c cc ff 17 4c 4d 00 a2 d8 d6 01 0e
075c: | | b8 8b ee e6 e0 72 55 89 2c 27 19 61 f6 77 01 8c
076c: | 30 82 06 ae ; SEQUENCE (6ae Bytes)
0770: | | 30 82 04 96 ; SEQUENCE (496 Bytes)
0774: | | | a0 03 ; OPTIONAL[0] (3 Bytes)
0776: | | | | 02 01 ; INTEGER (1 Bytes)
0778: | | | | 02
0779: | | | 02 10 ; INTEGER (10 Bytes)
077b: | | | | 07 36 37 b7 24 54 7c d8 47 ac fd 28 66 2a 5e 5b
078b: | | | 30 0d ; SEQUENCE (d Bytes)
078d: | | | | 06 09 ; OBJECT_ID (9 Bytes)
078f: | | | | | 2a 86 48 86 f7 0d 01 01 0b
| | | | | ; 1.2.840.113549.1.1.11 sha256RSA
0798: | | | | 05 00 ; NULL (0 Bytes)
079a: | | | 30 62 ; SEQUENCE (62 Bytes)
079c: | | | | 31 0b ; SET (b Bytes)
079e: | | | | | 30 09 ; SEQUENCE (9 Bytes)
07a0: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
07a2: | | | | | | 55 04 06
| | | | | | ; 2.5.4.6 Country/Region (C)
07a5: | | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)
07a7: | | | | | 55 53 ; US
| | | | | ; "US"
07a9: | | | | 31 15 ; SET (15 Bytes)
07ab: | | | | | 30 13 ; SEQUENCE (13 Bytes)
07ad: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
07af: | | | | | | 55 04 0a
| | | | | | ; 2.5.4.10 Organisation (O)
07b2: | | | | | 13 0c ; PRINTABLE_STRING (c Bytes)
07b4: | | | | | 44 69 67 69 43 65 72 74 20 49 6e 63 ; DigiCert Inc
| | | | | ; "DigiCert Inc"
07c0: | | | | 31 19 ; SET (19 Bytes)
07c2: | | | | | 30 17 ; SEQUENCE (17 Bytes)
07c4: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
07c6: | | | | | | 55 04 0b
| | | | | | ; 2.5.4.11 Organisational Unit (OU)
07c9: | | | | | 13 10 ; PRINTABLE_STRING (10 Bytes)
07cb: | | | | | 77 77 77 2e 64 69 67 69 63 65 72 74 2e 63 6f 6d ; www.digicert.com
07db: | | | | 31 21 ; SET (21 Bytes)
07dd: | | | | 30 1f ; SEQUENCE (1f Bytes)
07df: | | | | 06 03 ; OBJECT_ID (3 Bytes)
07e1: | | | | | 55 04 03
| | | | | ; 2.5.4.3 Common Name (CN)
07e4: | | | | 13 18 ; PRINTABLE_STRING (18 Bytes)
07e6: | | | | 44 69 67 69 43 65 72 74 20 54 72 75 73 74 65 64 ; DigiCert Trusted
07f6: | | | | 20 52 6f 6f 74 20 47 34 ; Root G4
| | | | ; "DigiCert Trusted Root G4"
07fe: | | | 30 1e ; SEQUENCE (1e Bytes)
0800: | | | | 17 0d ; UTC_TIME (d Bytes)
0802: | | | | | 32 32 30 33 32 33 30 30 30 30 30 30 5a ; 220323000000Z
| | | | | ; 23/03/2022 00:00
080f: | | | | 17 0d ; UTC_TIME (d Bytes)
0811: | | | | 33 37 30 33 32 32 32 33 35 39 35 39 5a ; 370322235959Z
| | | | ; 22/03/2037 23:59
081e: | | | 30 63 ; SEQUENCE (63 Bytes)
0820: | | | | 31 0b ; SET (b Bytes)
0822: | | | | | 30 09 ; SEQUENCE (9 Bytes)
0824: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
0826: | | | | | | 55 04 06
| | | | | | ; 2.5.4.6 Country/Region (C)
0829: | | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)
082b: | | | | | 55 53 ; US
| | | | | ; "US"
082d: | | | | 31 17 ; SET (17 Bytes)
082f: | | | | | 30 15 ; SEQUENCE (15 Bytes)
0831: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
0833: | | | | | | 55 04 0a
| | | | | | ; 2.5.4.10 Organisation (O)
0836: | | | | | 13 0e ; PRINTABLE_STRING (e Bytes)
0838: | | | | | 44 69 67 69 43 65 72 74 2c 20 49 6e 63 2e ; DigiCert, Inc.
| | | | | ; "DigiCert, Inc."
0846: | | | | 31 3b ; SET (3b Bytes)
0848: | | | | 30 39 ; SEQUENCE (39 Bytes)
084a: | | | | 06 03 ; OBJECT_ID (3 Bytes)
084c: | | | | | 55 04 03
| | | | | ; 2.5.4.3 Common Name (CN)
084f: | | | | 13 32 ; PRINTABLE_STRING (32 Bytes)
0851: | | | | 44 69 67 69 43 65 72 74 20 54 72 75 73 74 65 64 ; DigiCert Trusted
0861: | | | | 20 47 34 20 52 53 41 34 30 39 36 20 53 48 41 32 ; G4 RSA4096 SHA2
0871: | | | | 35 36 20 54 69 6d 65 53 74 61 6d 70 69 6e 67 20 ; 56 TimeStamping
0881: | | | | 43 41 ; CA
| | | | ; "DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"
0883: | | | 30 82 02 22 ; SEQUENCE (222 Bytes)
0887: | | | | 30 0d ; SEQUENCE (d Bytes)
0889: | | | | | 06 09 ; OBJECT_ID (9 Bytes)
088b: | | | | | | 2a 86 48 86 f7 0d 01 01 01
| | | | | | ; 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
0894: | | | | | 05 00 ; NULL (0 Bytes)
0896: | | | | 03 82 02 0f ; BIT_STRING (20f Bytes)
089a: | | | | 00
089b: | | | | 30 82 02 0a ; SEQUENCE (20a Bytes)
089f: | | | | 02 82 02 01 ; INTEGER (201 Bytes)
08a3: | | | | | 00
08a4: | | | | | c6 86 35 06 49 b3 c1 3d 72 49 51 55 c7 25 03 c4
08b4: | | | | | f2 91 37 a9 97 51 a1 d6 d2 83 d1 9e 4c a2 6d a0
08c4: | | | | | b0 cc 83 f9 5a f6 11 a1 44 15 42 5f a4 88 f3 68
08d4: | | | | | fa 7d f3 9c 89 0b 7f 9d 1f 9e 0f 33 1f 50 13 0b
08e4: | | | | | 26 73 96 6d f8 57 a8 02 7d fd 43 b4 84 da 11 f1
08f4: | | | | | 73 b1 b3 ee 2b 80 84 8a 22 18 df eb da 3d c4 17
0904: | | | | | 7f ab 19 2b 3e 42 dc 67 8e ea 51 3d f0 d6 56 d4
0914: | | | | | e7 28 2d eb d3 b1 b5 75 e7 1f 06 65 8d 94 29 d3
0924: | | | | | d9 ec 69 df d9 90 87 46 00 7b db 44 41 89 dc 7c
0934: | | | | | 6a 57 7a f0 37 79 9f 5d ac cb e8 84 64 b4 52 f2
0944: | | | | | 76 47 f7 61 83 19 dd 5f b4 54 0b 21 68 6e 37 21
0954: | | | | | bb 40 ac 5f b2 de 4a 7d ce f5 39 12 67 ef 0e a5
0964: | | | | | 63 6c e4 a6 c5 1d cd 36 0d 5c d5 e6 1b a8 c1 64
0974: | | | | | 74 40 a7 c0 72 c5 ba 4e 1f b1 b5 58 4d 79 fe d7
0984: | | | | | 8f 73 93 ac 2c 39 e2 a5 48 d6 f0 b0 31 13 a9 57
0994: | | | | | 29 96 27 2e f5 87 a6 8f 4e 76 15 55 26 70 98 26
09a4: | | | | | 7f a0 1a 47 20 43 e3 43 63 80 7b 75 6e 27 25 90
09b4: | | | | | 98 3a 38 11 b3 f6 f6 9e e6 3b 5b ec 81 de 22 14
09c4: | | | | | d9 82 2a c7 92 bf a0 de e3 3e a2 73 fa e7 1f 5a
09d4: | | | | | 6c 94 f2 52 95 11 2b 58 74 40 28 ab 73 43 ce df
09e4: | | | | | 4a a1 1c 6b 38 c5 29 f3 ca aa 96 73 42 68 9f b6
09f4: | | | | | 46 b3 9d 3a a3 d5 03 e0 bf f0 a2 3c ca 42 dc 18
0a04: | | | | | 48 7f 14 34 cf d2 4c ab ef 9b 3d fe 0e b8 64 2a
0a14: | | | | | fa 75 28 24 41 ed 42 bf 05 9c 66 49 52 50 f4 51
0a24: | | | | | f3 36 49 4d 8b 20 d2 2c 57 35 79 2b a8 f3 45 60
0a34: | | | | | bc 23 8d 58 f7 dc 61 de 93 fe 39 c0 f9 b2 30 a5
0a44: | | | | | 4c d7 e9 98 4a 58 3e d3 03 88 fe b3 8f d3 5e 4b
0a54: | | | | | 76 12 51 93 c9 8c 0c 3b 5b 8a 22 a8 c1 26 08 f9
0a64: | | | | | 14 10 12 03 7d 5f 23 bb 64 e3 63 e0 a6 e1 3e f6
0a74: | | | | | c2 74 b2 3f 1e 09 76 ec ab 5d 46 75 e2 60 a3 58
0a84: | | | | | 09 01 28 00 0e 84 54 ee ce e9 5d c8 5e 30 12 bd
0a94: | | | | | 46 9e b5 d3 76 b9 d2 0e 6b 99 0c d2 33 b4 cd b1
0aa4: | | | | 02 03 ; INTEGER (3 Bytes)
0aa6: | | | | 01 00 01
0aa9: | | | a3 82 01 5d ; OPTIONAL[3] (15d Bytes)
0aad: | | | 30 82 01 59 ; SEQUENCE (159 Bytes)
0ab1: | | | 30 12 ; SEQUENCE (12 Bytes)
0ab3: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0ab5: | | | | | 55 1d 13
| | | | | ; 2.5.29.19 Basic Constraints
0ab8: | | | | 01 01 ; BOOL (1 Bytes)
0aba: | | | | | ff
0abb: | | | | 04 08 ; OCTET_STRING (8 Bytes)
0abd: | | | | 30 06 ; SEQUENCE (6 Bytes)
0abf: | | | | 01 01 ; BOOL (1 Bytes)
0ac1: | | | | | ff
0ac2: | | | | 02 01 ; INTEGER (1 Bytes)
0ac4: | | | | 00
0ac5: | | | 30 1d ; SEQUENCE (1d Bytes)
0ac7: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0ac9: | | | | | 55 1d 0e
| | | | | ; 2.5.29.14 Subject Key Identifier
0acc: | | | | 04 16 ; OCTET_STRING (16 Bytes)
0ace: | | | | 04 14 ; OCTET_STRING (14 Bytes)
0ad0: | | | | ba 16 d9 6d 4d 85 2f 73 29 76 9a 2f 75 8c 6a 20 ; ...mM./s)v./u.j
0ae0: | | | | 8f 9e c8 6f ; ...o
0ae4: | | | 30 1f ; SEQUENCE (1f Bytes)
0ae6: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0ae8: | | | | | 55 1d 23
| | | | | ; 2.5.29.35 Authority Key Identifier
0aeb: | | | | 04 18 ; OCTET_STRING (18 Bytes)
0aed: | | | | 30 16 ; SEQUENCE (16 Bytes)
0aef: | | | | 80 14 ; CONTEXT_SPECIFIC[0] (14 Bytes)
0af1: | | | | ec d7 e3 82 d2 71 5d 64 4c df 2e 67 3f e7 ba 98 ; .....q]dL..g?...
0b01: | | | | ae 1c 0f 4f ; ...O
0b05: | | | 30 0e ; SEQUENCE (e Bytes)
0b07: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0b09: | | | | | 55 1d 0f
| | | | | ; 2.5.29.15 Key Usage
0b0c: | | | | 01 01 ; BOOL (1 Bytes)
0b0e: | | | | | ff
0b0f: | | | | 04 04 ; OCTET_STRING (4 Bytes)
0b11: | | | | 03 02 ; BIT_STRING (2 Bytes)
0b13: | | | | 01
0b14: | | | | 86
0b15: | | | 30 13 ; SEQUENCE (13 Bytes)
0b17: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0b19: | | | | | 55 1d 25
| | | | | ; 2.5.29.37 Enhanced Key Usage
0b1c: | | | | 04 0c ; OCTET_STRING (c Bytes)
0b1e: | | | | 30 0a ; SEQUENCE (a Bytes)
0b20: | | | | 06 08 ; OBJECT_ID (8 Bytes)
0b22: | | | | 2b 06 01 05 05 07 03 08
| | | | ; 1.3.6.1.5.5.7.3.8 Time Stamping
0b2a: | | | 30 77 ; SEQUENCE (77 Bytes)
0b2c: | | | | 06 08 ; OBJECT_ID (8 Bytes)
0b2e: | | | | | 2b 06 01 05 05 07 01 01
| | | | | ; 1.3.6.1.5.5.7.1.1 Authority Information Access
0b36: | | | | 04 6b ; OCTET_STRING (6b Bytes)
0b38: | | | | 30 69 ; SEQUENCE (69 Bytes)
0b3a: | | | | 30 24 ; SEQUENCE (24 Bytes)
0b3c: | | | | | 06 08 ; OBJECT_ID (8 Bytes)
0b3e: | | | | | | 2b 06 01 05 05 07 30 01
| | | | | | ; 1.3.6.1.5.5.7.48.1 On-line Certificate Status Protocol
0b46: | | | | | 86 18 ; CONTEXT_SPECIFIC[6] (18 Bytes)
0b48: | | | | | 68 74 74 70 3a 2f 2f 6f 63 73 70 2e 64 69 67 69 ; http://ocsp.digi
0b58: | | | | | 63 65 72 74 2e 63 6f 6d ; cert.com
0b60: | | | | 30 41 ; SEQUENCE (41 Bytes)
0b62: | | | | 06 08 ; OBJECT_ID (8 Bytes)
0b64: | | | | | 2b 06 01 05 05 07 30 02
| | | | | ; 1.3.6.1.5.5.7.48.2 Certification Authority Issuer
0b6c: | | | | 86 35 ; CONTEXT_SPECIFIC[6] (35 Bytes)
0b6e: | | | | 68 74 74 70 3a 2f 2f 63 61 63 65 72 74 73 2e 64 ; http://cacerts.d
0b7e: | | | | 69 67 69 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 ; igicert.com/Digi
0b8e: | | | | 43 65 72 74 54 72 75 73 74 65 64 52 6f 6f 74 47 ; CertTrustedRootG
0b9e: | | | | 34 2e 63 72 74 ; 4.crt
0ba3: | | | 30 43 ; SEQUENCE (43 Bytes)
0ba5: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0ba7: | | | | | 55 1d 1f
| | | | | ; 2.5.29.31 CRL Distribution Points
0baa: | | | | 04 3c ; OCTET_STRING (3c Bytes)
0bac: | | | | 30 3a ; SEQUENCE (3a Bytes)
0bae: | | | | 30 38 ; SEQUENCE (38 Bytes)
0bb0: | | | | a0 36 ; OPTIONAL[0] (36 Bytes)
0bb2: | | | | a0 34 ; OPTIONAL[0] (34 Bytes)
0bb4: | | | | 86 32 ; CONTEXT_SPECIFIC[6] (32 Bytes)
0bb6: | | | | 68 74 74 70 3a 2f 2f 63 72 6c 33 2e 64 69 67 69 ; http://crl3.digi
0bc6: | | | | 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 43 65 72 ; cert.com/DigiCer
0bd6: | | | | 74 54 72 75 73 74 65 64 52 6f 6f 74 47 34 2e 63 ; tTrustedRootG4.c
0be6: | | | | 72 6c ; rl
0be8: | | | 30 20 ; SEQUENCE (20 Bytes)
0bea: | | | 06 03 ; OBJECT_ID (3 Bytes)
0bec: | | | | 55 1d 20
| | | | ; 2.5.29.32 Certificate Policies
0bef: | | | 04 19 ; OCTET_STRING (19 Bytes)
0bf1: | | | 30 17 ; SEQUENCE (17 Bytes)
0bf3: | | | 30 08 ; SEQUENCE (8 Bytes)
0bf5: | | | | 06 06 ; OBJECT_ID (6 Bytes)
0bf7: | | | | 67 81 0c 01 04 02
| | | | ; 2.23.140.1.4.2
0bfd: | | | 30 0b ; SEQUENCE (b Bytes)
0bff: | | | 06 09 ; OBJECT_ID (9 Bytes)
0c01: | | | 60 86 48 01 86 fd 6c 07 01
| | | ; 2.16.840.1.114412.7.1
0c0a: | | 30 0d ; SEQUENCE (d Bytes)
0c0c: | | | 06 09 ; OBJECT_ID (9 Bytes)
0c0e: | | | | 2a 86 48 86 f7 0d 01 01 0b
| | | | ; 1.2.840.113549.1.1.11 sha256RSA
0c17: | | | 05 00 ; NULL (0 Bytes)
0c19: | | 03 82 02 01 ; BIT_STRING (201 Bytes)
0c1d: | | 00
0c1e: | | 7d 59 8e c0 93 b6 6f 98 a9 44 22 01 7e 66 d6 d8
0c2e: | | 21 42 e1 b0 18 2e 10 4d 13 cf 30 53 ce bf 18 fb
0c3e: | | c7 50 5d e2 4b 29 fb 70 8a 0d aa 29 69 fc 69 c1
0c4e: | | cf 1d 07 e9 3e 60 c8 d8 0b e5 5c 5b d7 6d 87 fa
0c5e: | | 84 20 25 34 31 67 cd b6 12 96 6f c4 50 4c 62 1d
0c6e: | | 0c 08 82 a8 16 bd a9 56 cf 15 73 8d 01 22 25 ce
0c7e: | | 95 69 3f 47 77 fb 72 74 14 d7 ff ab 4f 8a 2c 7a
0c8e: | | ab 85 cd 43 5f ed 60 b6 aa 4f 91 66 9e 2c 9e e0
0c9e: | | 8a ac e5 fd 8c bc 64 26 87 6c 92 bd 9d 7c d0 70
0cae: | | 0a 7c ef a8 bc 75 4f ba 5a f7 a9 10 b2 5d e9 ff
0cbe: | | 28 54 89 f0 d5 8a 71 76 65 da cc f0 72 a3 23 fa
0cce: | | c0 27 82 44 ae 99 27 1b ab 24 1e 26 c1 b7 de 2a
0cde: | | eb f6 9e b1 79 99 81 a3 56 86 ab 0a 45 c9 df c4
0cee: | | 8d a0 e7 98 fb fb a6 9d 72 af c4 c7 c1 c1 6a 71
0cfe: | | d9 c6 13 80 09 c4 b6 9f cd 87 87 24 bb 4f a3 49
0d0e: | | b9 77 66 91 f1 72 9c e9 4b 02 52 a7 37 7e 93 53
0d1e: | | ac 3b 1d 08 49 0f 94 cd 39 7a dd ff 25 63 99 27
0d2e: | | 2c 3d 3f 6b a7 f1 66 c3 41 cd 4f b6 40 9b 21 21
0d3e: | | 40 d0 b7 13 24 cd dc 1d 78 3a e4 9e ad e5 34 71
0d4e: | | 92 d7 26 6b e4 38 73 ab a6 01 4f bd 3f 3b 78 ad
0d5e: | | 4c ad fb c4 95 7b ed 0a 5f 33 39 87 41 78 7a 38
0d6e: | | e9 9c e1 dd 23 fd 1d 28 d3 c7 f9 e8 f1 98 5f fb
0d7e: | | 2b d8 7e f2 46 9d 75 2c 1e 27 2c 26 db 6f 15 7b
0d8e: | | 1e 19 8b 36 b8 93 d4 e6 f2 17 99 59 ca 70 f0 37
0d9e: | | bf 98 00 df 20 16 4f 27 fb 60 67 16 a1 66 ba dd
0dae: | | 55 c0 3a 29 86 b0 98 a0 2b ed 95 41 b7 3a d5 15
0dbe: | | 98 31 b4 62 09 0f 0a bd 81 d9 13 fe bf a4 d1 f3
0dce: | | 57 d9 bc 04 fa 82 de 32 df 04 89 f0 00 cd 5d c2
0dde: | | f9 d0 23 7f 00 0b e4 76 02 26 d9 f0 65 76 42 a6
0dee: | | 29 87 09 47 2b e6 7f 1a a4 85 0f fc 98 96 f6 55
0dfe: | | 54 2b 1f 80 fa c0 f2 0e 2b e5 d6 fb a9 2f 44 15
0e0e: | | 4a e7 13 0e 1d db 37 38 1a a1 2b f6 ed d6 7c fc
0e1e: | 30 82 05 8d ; SEQUENCE (58d Bytes)
0e22: | 30 82 04 75 ; SEQUENCE (475 Bytes)
0e26: | | a0 03 ; OPTIONAL[0] (3 Bytes)
0e28: | | | 02 01 ; INTEGER (1 Bytes)
0e2a: | | | 02
0e2b: | | 02 10 ; INTEGER (10 Bytes)
0e2d: | | | 0e 9b 18 8e f9 d0 2d e7 ef db 50 e2 08 40 18 5a
0e3d: | | 30 0d ; SEQUENCE (d Bytes)
0e3f: | | | 06 09 ; OBJECT_ID (9 Bytes)
0e41: | | | | 2a 86 48 86 f7 0d 01 01 0c
| | | | ; 1.2.840.113549.1.1.12 sha384RSA
0e4a: | | | 05 00 ; NULL (0 Bytes)
0e4c: | | 30 65 ; SEQUENCE (65 Bytes)
0e4e: | | | 31 0b ; SET (b Bytes)
0e50: | | | | 30 09 ; SEQUENCE (9 Bytes)
0e52: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0e54: | | | | | 55 04 06
| | | | | ; 2.5.4.6 Country/Region (C)
0e57: | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)
0e59: | | | | 55 53 ; US
| | | | ; "US"
0e5b: | | | 31 15 ; SET (15 Bytes)
0e5d: | | | | 30 13 ; SEQUENCE (13 Bytes)
0e5f: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0e61: | | | | | 55 04 0a
| | | | | ; 2.5.4.10 Organisation (O)
0e64: | | | | 13 0c ; PRINTABLE_STRING (c Bytes)
0e66: | | | | 44 69 67 69 43 65 72 74 20 49 6e 63 ; DigiCert Inc
| | | | ; "DigiCert Inc"
0e72: | | | 31 19 ; SET (19 Bytes)
0e74: | | | | 30 17 ; SEQUENCE (17 Bytes)
0e76: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0e78: | | | | | 55 04 0b
| | | | | ; 2.5.4.11 Organisational Unit (OU)
0e7b: | | | | 13 10 ; PRINTABLE_STRING (10 Bytes)
0e7d: | | | | 77 77 77 2e 64 69 67 69 63 65 72 74 2e 63 6f 6d ; www.digicert.com
0e8d: | | | 31 24 ; SET (24 Bytes)
0e8f: | | | 30 22 ; SEQUENCE (22 Bytes)
0e91: | | | 06 03 ; OBJECT_ID (3 Bytes)
0e93: | | | | 55 04 03
| | | | ; 2.5.4.3 Common Name (CN)
0e96: | | | 13 1b ; PRINTABLE_STRING (1b Bytes)
0e98: | | | 44 69 67 69 43 65 72 74 20 41 73 73 75 72 65 64 ; DigiCert Assured
0ea8: | | | 20 49 44 20 52 6f 6f 74 20 43 41 ; ID Root CA
| | | ; "DigiCert Assured ID Root CA"
0eb3: | | 30 1e ; SEQUENCE (1e Bytes)
0eb5: | | | 17 0d ; UTC_TIME (d Bytes)
0eb7: | | | | 32 32 30 38 30 31 30 30 30 30 30 30 5a ; 220801000000Z
| | | | ; 01/08/2022 00:00
0ec4: | | | 17 0d ; UTC_TIME (d Bytes)
0ec6: | | | 33 31 31 31 30 39 32 33 35 39 35 39 5a ; 311109235959Z
| | | ; 09/11/2031 23:59
0ed3: | | 30 62 ; SEQUENCE (62 Bytes)
0ed5: | | | 31 0b ; SET (b Bytes)
0ed7: | | | | 30 09 ; SEQUENCE (9 Bytes)
0ed9: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0edb: | | | | | 55 04 06
| | | | | ; 2.5.4.6 Country/Region (C)
0ede: | | | | 13 02 ; PRINTABLE_STRING (2 Bytes)
0ee0: | | | | 55 53 ; US
| | | | ; "US"
0ee2: | | | 31 15 ; SET (15 Bytes)
0ee4: | | | | 30 13 ; SEQUENCE (13 Bytes)
0ee6: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0ee8: | | | | | 55 04 0a
| | | | | ; 2.5.4.10 Organisation (O)
0eeb: | | | | 13 0c ; PRINTABLE_STRING (c Bytes)
0eed: | | | | 44 69 67 69 43 65 72 74 20 49 6e 63 ; DigiCert Inc
| | | | ; "DigiCert Inc"
0ef9: | | | 31 19 ; SET (19 Bytes)
0efb: | | | | 30 17 ; SEQUENCE (17 Bytes)
0efd: | | | | 06 03 ; OBJECT_ID (3 Bytes)
0eff: | | | | | 55 04 0b
| | | | | ; 2.5.4.11 Organisational Unit (OU)
0f02: | | | | 13 10 ; PRINTABLE_STRING (10 Bytes)
0f04: | | | | 77 77 77 2e 64 69 67 69 63 65 72 74 2e 63 6f 6d ; www.digicert.com
0f14: | | | 31 21 ; SET (21 Bytes)
0f16: | | | 30 1f ; SEQUENCE (1f Bytes)
0f18: | | | 06 03 ; OBJECT_ID (3 Bytes)
0f1a: | | | | 55 04 03
| | | | ; 2.5.4.3 Common Name (CN)
0f1d: | | | 13 18 ; PRINTABLE_STRING (18 Bytes)
0f1f: | | | 44 69 67 69 43 65 72 74 20 54 72 75 73 74 65 64 ; DigiCert Trusted
0f2f: | | | 20 52 6f 6f 74 20 47 34 ; Root G4
| | | ; "DigiCert Trusted Root G4"
0f37: | | 30 82 02 22 ; SEQUENCE (222 Bytes)
0f3b: | | | 30 0d ; SEQUENCE (d Bytes)
0f3d: | | | | 06 09 ; OBJECT_ID (9 Bytes)
0f3f: | | | | | 2a 86 48 86 f7 0d 01 01 01
| | | | | ; 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
0f48: | | | | 05 00 ; NULL (0 Bytes)
0f4a: | | | 03 82 02 0f ; BIT_STRING (20f Bytes)
0f4e: | | | 00
0f4f: | | | 30 82 02 0a ; SEQUENCE (20a Bytes)
0f53: | | | 02 82 02 01 ; INTEGER (201 Bytes)
0f57: | | | | 00
0f58: | | | | bf e6 90 73 68 de bb e4 5d 4a 3c 30 22 30 69 33
0f68: | | | | ec c2 a7 25 2e c9 21 3d f2 8a d8 59 c2 e1 29 a7
0f78: | | | | 3d 58 ab 76 9a cd ae 7b 1b 84 0d c4 30 1f f3 1b
0f88: | | | | a4 38 16 eb 56 c6 97 6d 1d ab b2 79 f2 ca 11 d2
0f98: | | | | e4 5f d6 05 3c 52 0f 52 1f c6 9e 15 a5 7e be 9f
0fa8: | | | | a9 57 16 59 55 72 af 68 93 70 c2 b2 ba 75 99 6a
0fb8: | | | | 73 32 94 d1 10 44 10 2e df 82 f3 07 84 e6 74 3b
0fc8: | | | | 6d 71 e2 2d 0c 1b ee 20 d5 c9 20 1d 63 29 2d ce
0fd8: | | | | ec 5e 4e c8 93 f8 21 61 9b 34 eb 05 c6 5e ec 5b
0fe8: | | | | 1a bc eb c9 cf cd ac 34 40 5f b1 7a 66 ee 77 c8
0ff8: | | | | 48 a8 66 57 57 9f 54 58 8e 0c 2b b7 4f a7 30 d9
1008: | | | | 56 ee ca 7b 5d e3 ad c9 4f 5e e5 35 e7 31 cb da
1018: | | | | 93 5e dc 8e 8f 80 da b6 91 98 40 90 79 c3 78 c7
1028: | | | | b6 b1 c4 b5 6a 18 38 03 10 8d d8 d4 37 a4 2e 05
1038: | | | | 7d 88 f5 82 3e 10 91 70 ab 55 82 41 32 d7 db 04
1048: | | | | 73 2a 6e 91 01 7c 21 4c d4 bc ae 1b 03 75 5d 78
1058: | | | | 66 d9 3a 31 44 9a 33 40 bf 08 d7 5a 49 a4 c2 e6
1068: | | | | a9 a0 67 dd a4 27 bc a1 4f 39 b5 11 58 17 f7 24
1078: | | | | 5c 46 8f 64 f7 c1 69 88 76 98 76 3d 59 5d 42 76
1088: | | | | 87 89 97 69 7a 48 f0 e0 a2 12 1b 66 9a 74 ca de
1098: | | | | 4b 1e e7 0e 63 ae e6 d4 ef 92 92 3a 9e 3d dc 00
10a8: | | | | e4 45 25 89 b6 9a 44 19 2b 7e c0 94 b4 d2 61 6d
10b8: | | | | eb 33 d9 c5 df 4b 04 00 cc 7d 1c 95 c3 8f f7 21
10c8: | | | | b2 b2 11 b7 bb 7f f2 d5 8c 70 2c 41 60 aa b1 63
10d8: | | | | 18 44 95 1a 76 62 7e f6 80 b0 fb e8 64 a6 33 d1
10e8: | | | | 89 07 e1 bd b7 e6 43 a4 18 b8 a6 77 01 e1 0f 94
10f8: | | | | 0c 21 1d b2 54 29 25 89 6c e5 0e 52 51 47 74 be
1108: | | | | 26 ac b6 41 75 de 7a ac 5f 8d 3f c9 bc d3 41 11
1118: | | | | 12 5b e5 10 50 eb 31 c5 ca 72 16 22 09 df 7c 4c
1128: | | | | 75 3f 63 ec 21 5f c4 20 51 6b 6f b1 ab 86 8b 4f
1138: | | | | c2 d6 45 5f 9d 20 fc a1 1e c5 c0 8f a2 b1 7e 0a
1148: | | | | 26 99 f5 e4 69 2f 98 1d 2d f5 d9 a9 b2 1d e5 1b
1158: | | | 02 03 ; INTEGER (3 Bytes)
115a: | | | 01 00 01
115d: | | a3 82 01 3a ; OPTIONAL[3] (13a Bytes)
1161: | | 30 82 01 36 ; SEQUENCE (136 Bytes)
1165: | | 30 0f ; SEQUENCE (f Bytes)
1167: | | | 06 03 ; OBJECT_ID (3 Bytes)
1169: | | | | 55 1d 13
| | | | ; 2.5.29.19 Basic Constraints
116c: | | | 01 01 ; BOOL (1 Bytes)
116e: | | | | ff
116f: | | | 04 05 ; OCTET_STRING (5 Bytes)
1171: | | | 30 03 ; SEQUENCE (3 Bytes)
1173: | | | 01 01 ; BOOL (1 Bytes)
1175: | | | ff
1176: | | 30 1d ; SEQUENCE (1d Bytes)
1178: | | | 06 03 ; OBJECT_ID (3 Bytes)
117a: | | | | 55 1d 0e
| | | | ; 2.5.29.14 Subject Key Identifier
117d: | | | 04 16 ; OCTET_STRING (16 Bytes)
117f: | | | 04 14 ; OCTET_STRING (14 Bytes)
1181: | | | ec d7 e3 82 d2 71 5d 64 4c df 2e 67 3f e7 ba 98 ; .....q]dL..g?...
1191: | | | ae 1c 0f 4f ; ...O
1195: | | 30 1f ; SEQUENCE (1f Bytes)
1197: | | | 06 03 ; OBJECT_ID (3 Bytes)
1199: | | | | 55 1d 23
| | | | ; 2.5.29.35 Authority Key Identifier
119c: | | | 04 18 ; OCTET_STRING (18 Bytes)
119e: | | | 30 16 ; SEQUENCE (16 Bytes)
11a0: | | | 80 14 ; CONTEXT_SPECIFIC[0] (14 Bytes)
11a2: | | | 45 eb a2 af f4 92 cb 82 31 2d 51 8b a7 a7 21 9d ; E.......1-Q...!.
11b2: | | | f3 6d c8 0f ; .m..
11b6: | | 30 0e ; SEQUENCE (e Bytes)
11b8: | | | 06 03 ; OBJECT_ID (3 Bytes)
11ba: | | | | 55 1d 0f
| | | | ; 2.5.29.15 Key Usage
11bd: | | | 01 01 ; BOOL (1 Bytes)
11bf: | | | | ff
11c0: | | | 04 04 ; OCTET_STRING (4 Bytes)
11c2: | | | 03 02 ; BIT_STRING (2 Bytes)
11c4: | | | 01
11c5: | | | 86
11c6: | | 30 79 ; SEQUENCE (79 Bytes)
11c8: | | | 06 08 ; OBJECT_ID (8 Bytes)
11ca: | | | | 2b 06 01 05 05 07 01 01
| | | | ; 1.3.6.1.5.5.7.1.1 Authority Information Access
11d2: | | | 04 6d ; OCTET_STRING (6d Bytes)
11d4: | | | 30 6b ; SEQUENCE (6b Bytes)
11d6: | | | 30 24 ; SEQUENCE (24 Bytes)
11d8: | | | | 06 08 ; OBJECT_ID (8 Bytes)
11da: | | | | | 2b 06 01 05 05 07 30 01
| | | | | ; 1.3.6.1.5.5.7.48.1 On-line Certificate Status Protocol
11e2: | | | | 86 18 ; CONTEXT_SPECIFIC[6] (18 Bytes)
11e4: | | | | 68 74 74 70 3a 2f 2f 6f 63 73 70 2e 64 69 67 69 ; http://ocsp.digi
11f4: | | | | 63 65 72 74 2e 63 6f 6d ; cert.com
11fc: | | | 30 43 ; SEQUENCE (43 Bytes)
11fe: | | | 06 08 ; OBJECT_ID (8 Bytes)
1200: | | | | 2b 06 01 05 05 07 30 02
| | | | ; 1.3.6.1.5.5.7.48.2 Certification Authority Issuer
1208: | | | 86 37 ; CONTEXT_SPECIFIC[6] (37 Bytes)
120a: | | | 68 74 74 70 3a 2f 2f 63 61 63 65 72 74 73 2e 64 ; http://cacerts.d
121a: | | | 69 67 69 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 ; igicert.com/Digi
122a: | | | 43 65 72 74 41 73 73 75 72 65 64 49 44 52 6f 6f ; CertAssuredIDRoo
123a: | | | 74 43 41 2e 63 72 74 ; tCA.crt
1241: | | 30 45 ; SEQUENCE (45 Bytes)
1243: | | | 06 03 ; OBJECT_ID (3 Bytes)
1245: | | | | 55 1d 1f
| | | | ; 2.5.29.31 CRL Distribution Points
1248: | | | 04 3e ; OCTET_STRING (3e Bytes)
124a: | | | 30 3c ; SEQUENCE (3c Bytes)
124c: | | | 30 3a ; SEQUENCE (3a Bytes)
124e: | | | a0 38 ; OPTIONAL[0] (38 Bytes)
1250: | | | a0 36 ; OPTIONAL[0] (36 Bytes)
1252: | | | 86 34 ; CONTEXT_SPECIFIC[6] (34 Bytes)
1254: | | | 68 74 74 70 3a 2f 2f 63 72 6c 33 2e 64 69 67 69 ; http://crl3.digi
1264: | | | 63 65 72 74 2e 63 6f 6d 2f 44 69 67 69 43 65 72 ; cert.com/DigiCer
1274: | | | 74 41 73 73 75 72 65 64 49 44 52 6f 6f 74 43 41 ; tAssuredIDRootCA
1284: | | | 2e 63 72 6c ; .crl
1288: | | 30 11 ; SEQUENCE (11 Bytes)
128a: | | 06 03 ; OBJECT_ID (3 Bytes)
128c: | | | 55 1d 20
| | | ; 2.5.29.32 Certificate Policies
128f: | | 04 0a ; OCTET_STRING (a Bytes)
1291: | | 30 08 ; SEQUENCE (8 Bytes)
1293: | | 30 06 ; SEQUENCE (6 Bytes)
1295: | | 06 04 ; OBJECT_ID (4 Bytes)
1297: | | 55 1d 20 00
| | ; 2.5.29.32.0 All issuance policies
129b: | 30 0d ; SEQUENCE (d Bytes)
129d: | | 06 09 ; OBJECT_ID (9 Bytes)
129f: | | | 2a 86 48 86 f7 0d 01 01 0c
| | | ; 1.2.840.113549.1.1.12 sha384RSA
12a8: | | 05 00 ; NULL (0 Bytes)
12aa: | 03 82 01 01 ; BIT_STRING (101 Bytes)
12ae: | 00
12af: | 70 a0 bf 43 5c 55 e7 38 5f a0 a3 74 1b 3d b6 16
12bf: | d7 f7 bf 57 07 bd 9a ac a1 87 2c ec 85 5e a9 1a
12cf: | bb 22 f8 87 1a 69 54 22 ed a4 88 77 6d bd 1a 14
12df: | f4 13 4a 7a 2f 2d b7 38 ef f4 ff 80 b9 f8 a1 f7
12ef: | f2 72 de 24 bc 52 03 c8 4e d0 2a de fa 2d 56 cf
12ff: | f9 f4 f7 ac 30 7a 9a 8b b2 5e d4 cf d1 43 44 9b
130f: | 43 21 eb 96 72 a1 48 b4 99 cb 9d 4f a7 06 03 13
131f: | 77 27 44 d4 e7 7f e8 59 a8 f0 bf 2f 0b a6 e9 f2
132f: | 34 3c ec f7 03 c7 87 a8 d2 4c 40 19 35 46 6a 69
133f: | 54 b0 b8 a1 56 8e ec a4 d5 3d e8 b1 dc fd 1c d8
134f: | f4 77 5a 5c 54 8c 6f ef a1 50 3d fc 76 09 68 84
135f: | 9f 6f ca db 20 8d 35 60 1c 02 03 cb 20 b0 ac 58
136f: | a0 0e 40 63 c5 98 22 c1 b2 59 f5 55 6b cf 27 ab
137f: | 6c 76 ce 6f 23 2d f4 7e 71 6a 23 6b 22 ff 12 b8
138f: | 54 2d 27 7e d8 3a d9 f0 b6 87 96 fd 5b d1 5c ac
139f: | 18 c3 4d 9f 73 b7 01 a9 9f 57 aa 5e 28 e2 b9 94
13af: 31 82 03 76 ; SET (376 Bytes)
13b3: 30 82 03 72 ; SEQUENCE (372 Bytes)
13b7: 02 01 ; INTEGER (1 Bytes)
13b9: | 01
13ba: 30 77 ; SEQUENCE (77 Bytes)
13bc: | 30 63 ; SEQUENCE (63 Bytes)
13be: | | 31 0b ; SET (b Bytes)
13c0: | | | 30 09 ; SEQUENCE (9 Bytes)
13c2: | | | 06 03 ; OBJECT_ID (3 Bytes)
13c4: | | | | 55 04 06
| | | | ; 2.5.4.6 Country/Region (C)
13c7: | | | 13 02 ; PRINTABLE_STRING (2 Bytes)
13c9: | | | 55 53 ; US
| | | ; "US"
13cb: | | 31 17 ; SET (17 Bytes)
13cd: | | | 30 15 ; SEQUENCE (15 Bytes)
13cf: | | | 06 03 ; OBJECT_ID (3 Bytes)
13d1: | | | | 55 04 0a
| | | | ; 2.5.4.10 Organisation (O)
13d4: | | | 13 0e ; PRINTABLE_STRING (e Bytes)
13d6: | | | 44 69 67 69 43 65 72 74 2c 20 49 6e 63 2e ; DigiCert, Inc.
| | | ; "DigiCert, Inc."
13e4: | | 31 3b ; SET (3b Bytes)
13e6: | | 30 39 ; SEQUENCE (39 Bytes)
13e8: | | 06 03 ; OBJECT_ID (3 Bytes)
13ea: | | | 55 04 03
| | | ; 2.5.4.3 Common Name (CN)
13ed: | | 13 32 ; PRINTABLE_STRING (32 Bytes)
13ef: | | 44 69 67 69 43 65 72 74 20 54 72 75 73 74 65 64 ; DigiCert Trusted
13ff: | | 20 47 34 20 52 53 41 34 30 39 36 20 53 48 41 32 ; G4 RSA4096 SHA2
140f: | | 35 36 20 54 69 6d 65 53 74 61 6d 70 69 6e 67 20 ; 56 TimeStamping
141f: | | 43 41 ; CA
| | ; "DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA"
1421: | 02 10 ; INTEGER (10 Bytes)
1423: | 0c 4d 69 72 4b 94 fa 3c 2a 4a 3d 29 07 80 3d 5a
1433: 30 0d ; SEQUENCE (d Bytes)
1435: | 06 09 ; OBJECT_ID (9 Bytes)
1437: | | 60 86 48 01 65 03 04 02 01
| | ; 2.16.840.1.101.3.4.2.1 sha256 (sha256NoSign)
1440: | 05 00 ; NULL (0 Bytes)
1442: a0 81 d1 ; OPTIONAL[0] (d1 Bytes)
1445: | 30 1a ; SEQUENCE (1a Bytes)
1447: | | 06 09 ; OBJECT_ID (9 Bytes)
1449: | | | 2a 86 48 86 f7 0d 01 09 03
| | | ; 1.2.840.113549.1.9.3 Content Type
1452: | | 31 0d ; SET (d Bytes)
1454: | | 06 0b ; OBJECT_ID (b Bytes)
1456: | | 2a 86 48 86 f7 0d 01 09 10 01 04
| | ; 1.2.840.113549.1.9.16.1.4
1461: | 30 1c ; SEQUENCE (1c Bytes)
1463: | | 06 09 ; OBJECT_ID (9 Bytes)
1465: | | | 2a 86 48 86 f7 0d 01 09 05
| | | ; 1.2.840.113549.1.9.5 Signing Time
146e: | | 31 0f ; SET (f Bytes)
1470: | | 17 0d ; UTC_TIME (d Bytes)
1472: | | 32 32 31 32 32 33 32 30 31 39 34 31 5a ; 221223201941Z
| | ; 23/12/2022 20:19
147f: | 30 2b ; SEQUENCE (2b Bytes)
1481: | | 06 0b ; OBJECT_ID (b Bytes)
1483: | | | 2a 86 48 86 f7 0d 01 09 10 02 0c
| | | ; 1.2.840.113549.1.9.16.2.12
148e: | | 31 1c ; SET (1c Bytes)
1490: | | 30 1a ; SEQUENCE (1a Bytes)
1492: | | 30 18 ; SEQUENCE (18 Bytes)
1494: | | 30 16 ; SEQUENCE (16 Bytes)
1496: | | 04 14 ; OCTET_STRING (14 Bytes)
1498: | | f3 87 22 4d 86 33 82 92 35 a9 94 bc bd 8f 96 e9 ; .."M.3..5.......
14a8: | | fe 1c 7c 73 ; ..|s
14ac: | 30 2f ; SEQUENCE (2f Bytes)
14ae: | | 06 09 ; OBJECT_ID (9 Bytes)
14b0: | | | 2a 86 48 86 f7 0d 01 09 04
| | | ; 1.2.840.113549.1.9.4 Message Digest
14b9: | | 31 22 ; SET (22 Bytes)
14bb: | | 04 20 ; OCTET_STRING (20 Bytes)
14bd: | | 4f b1 77 2a 39 6b 5b 31 2f 9c 8f e3 3c e1 9a 71 ; O.w*9k[1/...<..q
14cd: | | ef 53 40 63 40 da bf 6b ed 7e 01 12 08 91 2d f9 ; .S@c@..k.~....-.
14dd: | 30 37 ; SEQUENCE (37 Bytes)
14df: | 06 0b ; OBJECT_ID (b Bytes)
14e1: | | 2a 86 48 86 f7 0d 01 09 10 02 2f
| | ; 1.2.840.113549.1.9.16.2.47
14ec: | 31 28 ; SET (28 Bytes)
14ee: | 30 26 ; SEQUENCE (26 Bytes)
14f0: | 30 24 ; SEQUENCE (24 Bytes)
14f2: | 30 22 ; SEQUENCE (22 Bytes)
14f4: | 04 20 ; OCTET_STRING (20 Bytes)
14f6: | c7 f4 e1 be 32 28 89 20 ab e2 26 3a be 1a c4 fc ; ....2(. ..&:....
1506: | 4f e6 78 1c 2d 64 d0 4c 80 75 57 a0 23 b5 b6 fa ; O.x.-d.L.uW.#...
1516: 30 0d ; SEQUENCE (d Bytes)
1518: | 06 09 ; OBJECT_ID (9 Bytes)
151a: | | 2a 86 48 86 f7 0d 01 01 01
| | ; 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
1523: | 05 00 ; NULL (0 Bytes)
1525: 04 82 02 00 ; OCTET_STRING (200 Bytes)
1529: 29 8c e8 2f 44 b2 1e 11 95 1f 63 51 e8 db dc 97 ; )../D.....cQ....
1539: ca f7 7b 6f 0e a4 4e f4 df 5f fd 07 11 8a 70 4c ; ..{o..N.._....pL
1549: 26 46 1c 9a fa f0 25 e7 94 b4 57 6f 54 8b d3 c2 ; &F....%...WoT...
1559: 71 1a b3 52 3f bd 1c fe 1c c0 37 64 64 bd 8a f8 ; q..R?.....7dd...
1569: d8 cd 47 6e 63 71 ca f7 bc d0 ff f0 33 b1 31 b8 ; ..Gncq......3.1.
1579: a5 6a c5 70 bd 97 62 f7 dd 0a ad c2 79 91 4d f0 ; .j.p..b.....y.M.
1589: f9 80 be ba f6 4e 5d de 22 ed 00 e3 fb a6 67 40 ; .....N].".....g@
1599: cf 69 ea be 9b 87 21 2a c2 bb 04 ff d9 b3 7c f6 ; .i....!*......|.
15a9: c2 9a d8 37 13 b8 d3 8d 3c c3 41 3c 10 1b 89 75 ; ...7....<.A<...u
15b9: f9 65 68 a3 bd 42 c8 36 95 3f bb 23 3c 15 48 11 ; .eh..B.6.?.#<.H.
15c9: 38 61 76 d9 8f 79 3c d1 a6 36 91 02 d3 73 e0 27 ; 8av..y<..6...s.'
15d9: 89 ef 72 5e 5a 08 fb 63 48 b3 35 cb fb 6c 86 c2 ; ..r^Z..cH.5..l..
15e9: f8 8c 5a 49 72 d2 bd 8d f8 b3 76 98 01 79 b8 65 ; ..ZIr.....v..y.e
15f9: 53 45 11 61 68 e9 ee e4 75 53 7c a6 21 f8 66 76 ; SE.ah...uS|.!.fv
1609: 7f 68 6d 9f 6e 04 5e aa 2e a8 3a 2e 6b 53 45 94 ; .hm.n.^...:.kSE.
1619: 18 94 a6 f3 fd eb 47 28 95 55 44 6d 42 5c 42 d3 ; ......G(.UDmB\B.
1629: 4c 8f 07 ef 74 5c 7f 35 a2 ed 9c e1 19 6e bb 3b ; L...t\.5.....n.;
1639: d4 64 6d 6e f1 57 0b bb c8 33 b4 e6 98 ae f2 22 ; .dmn.W...3....."
1649: 1e c7 9c af 28 c6 e8 c0 ab 8a 22 2e ac 4e 0b 56 ; ....(....."..N.V
1659: 93 06 59 33 94 ca 1f 49 7d 44 c9 1d f3 9f cf 51 ; ..Y3...I}D.....Q
1669: e3 04 30 08 28 50 51 94 12 0d 61 79 80 e0 00 6d ; ..0.(PQ...ay...m
1679: 38 e3 d5 da d7 eb 15 12 2c 2a df 59 39 3f 7c ae ; 8.......,*.Y9?|.
1689: 74 83 58 69 3b 5e a3 d8 fc 4b 87 bd 1f f4 f9 cf ; t.Xi;^...K......
1699: a9 0e a0 da 77 dd 9e 3a ac 8d 0d 1e fa e3 c1 fa ; ....w..:........
16a9: eb f6 8f 28 12 01 f3 d1 04 6f 5b 02 9a c0 3f fa ; ...(.....o[...?.
16b9: b9 db 4d a6 5c f8 d9 d0 25 81 44 23 a4 c7 11 6e ; ..M.\...%.D#...n
16c9: 79 42 12 1e 9a 5b 5c 59 bc 84 a7 ec d8 ac 88 fc ; yB...[\Y........
16d9: 30 86 5d f8 a2 53 08 bf 68 b1 bd b3 12 06 ef 1b ; 0.]..S..h.......
16e9: e0 88 05 7a eb 66 be e0 7d c9 ce 4f 54 3e 0d a9 ; ...z.f..}..OT>..
16f9: ed c5 ea 67 27 72 52 3c 47 82 50 aa 73 c8 27 e8 ; ...g'rR<G.P.s.'.
1709: 7c 14 40 7f 09 78 8f 7a b6 ae 47 1c f9 e5 14 f1 ; |.@..x.z..G.....
1719: a2 f6 f5 e3 83 05 a6 02 e9 f4 70 de 5b 7d b1 4f ; ..........p.[}.O
Jeffrey Walton
Jan 21, 2023, 11:16:57 AM1/21/23
to cryptop...@googlegroups.com
On Sat, Jan 21, 2023 at 5:47 AM James Chapman <ja...@uplinkzero.com> wrote:
>
> New subscriber and CryptoPP user list here. I'm hoping you can assist me and point me in the right direction. I'm trying to read information from PE file signing certificates which are typically in PKCS#7 format. I've extracted the certificate structure OK, but now I'm trying to use CryptoPP to extract information from the certificates.
>
> I've used certutil to dump an ASN structure from acrobat.exe (for easy reference I've placed it at the bottom of this email).
>
> So far, I've got this:
>
> CryptoPP::VectorSource vs(certData.certificate, true);
> CryptoPP::BERSequenceDecoder p7b(vs);
> CryptoPP::BERSequenceDecoder outerObject(p7b, CryptoPP::OBJECT_IDENTIFIER);
>
> Anything I try after this throws.
What was the exception? The ASN.1 gear likely does not know about OIDs
>
> New subscriber and CryptoPP user list here. I'm hoping you can assist me and point me in the right direction. I'm trying to read information from PE file signing certificates which are typically in PKCS#7 format. I've extracted the certificate structure OK, but now I'm trying to use CryptoPP to extract information from the certificates.
>
> I've used certutil to dump an ASN structure from acrobat.exe (for easy reference I've placed it at the bottom of this email).
>
> So far, I've got this:
>
> CryptoPP::VectorSource vs(certData.certificate, true);
> CryptoPP::BERSequenceDecoder p7b(vs);
> CryptoPP::BERSequenceDecoder outerObject(p7b, CryptoPP::OBJECT_IDENTIFIER);
>
> Anything I try after this throws.
1.2.840.113549.1.7.2, 2.16.840.1.101.3.4.2.1,
1.2.840.113549.1.9.16.1.4 and friends. But the exception should tell
you the problem.
> I presume I need to read the OPTIONAL somehow and then from there process the SEQUENCE. In fact, I suspect the best approach would be to somehow enumerate the SEQUENCE sections and then process those individually, but with the tools available to me in CryptoPP's ASN section I've not been able to work out how to do that yet :-(
>
>
Also see https://www.cryptopp.com/wiki/X509Certificate . It is an
example of parsing X.509 certificates.
Jeff
> 0000: 30 82 17 25 ; SEQUENCE (1725 Bytes)
> 0004: 06 09 ; OBJECT_ID (9 Bytes)
> 0006: | 2a 86 48 86 f7 0d 01 07 02
> | ; 1.2.840.113549.1.7.2 PKCS 7 Signed
> 000f: a0 82 17 16 ; OPTIONAL[0] (1716 Bytes)
> 0013: 30 82 17 12 ; SEQUENCE (1712 Bytes)
> 0017: 02 01 ; INTEGER (1 Bytes)
> 0019: | 03
Reply all
Reply to author
Forward
0 new messages