1This is a valid real-world certificate. 2 3 4$ openssl asn1parse -i < [CERTIFICATE] 5 0:d=0 hl=4 l=1367 cons: SEQUENCE 6 4:d=1 hl=4 l=1087 cons: SEQUENCE 7 8:d=2 hl=2 l= 3 cons: cont [ 0 ] 8 10:d=3 hl=2 l= 1 prim: INTEGER :02 9 13:d=2 hl=2 l= 7 prim: INTEGER :2B63A42A705076 10 22:d=2 hl=2 l= 13 cons: SEQUENCE 11 24:d=3 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption 12 35:d=3 hl=2 l= 0 prim: NULL 13 37:d=2 hl=3 l= 202 cons: SEQUENCE 14 40:d=3 hl=2 l= 11 cons: SET 15 42:d=4 hl=2 l= 9 cons: SEQUENCE 16 44:d=5 hl=2 l= 3 prim: OBJECT :countryName 17 49:d=5 hl=2 l= 2 prim: PRINTABLESTRING :US 18 53:d=3 hl=2 l= 16 cons: SET 19 55:d=4 hl=2 l= 14 cons: SEQUENCE 20 57:d=5 hl=2 l= 3 prim: OBJECT :stateOrProvinceName 21 62:d=5 hl=2 l= 7 prim: PRINTABLESTRING :Arizona 22 71:d=3 hl=2 l= 19 cons: SET 23 73:d=4 hl=2 l= 17 cons: SEQUENCE 24 75:d=5 hl=2 l= 3 prim: OBJECT :localityName 25 80:d=5 hl=2 l= 10 prim: PRINTABLESTRING :Scottsdale 26 92:d=3 hl=2 l= 26 cons: SET 27 94:d=4 hl=2 l= 24 cons: SEQUENCE 28 96:d=5 hl=2 l= 3 prim: OBJECT :organizationName 29 101:d=5 hl=2 l= 17 prim: PRINTABLESTRING :GoDaddy.com, Inc. 30 120:d=3 hl=2 l= 51 cons: SET 31 122:d=4 hl=2 l= 49 cons: SEQUENCE 32 124:d=5 hl=2 l= 3 prim: OBJECT :organizationalUnitName 33 129:d=5 hl=2 l= 42 prim: PRINTABLESTRING :http://certificates.godaddy.com/repository 34 173:d=3 hl=2 l= 48 cons: SET 35 175:d=4 hl=2 l= 46 cons: SEQUENCE 36 177:d=5 hl=2 l= 3 prim: OBJECT :commonName 37 182:d=5 hl=2 l= 39 prim: PRINTABLESTRING :Go Daddy Secure Certification Authority 38 223:d=3 hl=2 l= 17 cons: SET 39 225:d=4 hl=2 l= 15 cons: SEQUENCE 40 227:d=5 hl=2 l= 3 prim: OBJECT :serialNumber 41 232:d=5 hl=2 l= 8 prim: PRINTABLESTRING :07969287 42 242:d=2 hl=2 l= 30 cons: SEQUENCE 43 244:d=3 hl=2 l= 13 prim: UTCTIME :120419135324Z 44 259:d=3 hl=2 l= 13 prim: UTCTIME :130419135324Z 45 274:d=2 hl=2 l= 79 cons: SEQUENCE 46 276:d=3 hl=2 l= 20 cons: SET 47 278:d=4 hl=2 l= 18 cons: SEQUENCE 48 280:d=5 hl=2 l= 3 prim: OBJECT :organizationName 49 285:d=5 hl=2 l= 11 prim: PRINTABLESTRING :kthulhu.net 50 298:d=3 hl=2 l= 33 cons: SET 51 300:d=4 hl=2 l= 31 cons: SEQUENCE 52 302:d=5 hl=2 l= 3 prim: OBJECT :organizationalUnitName 53 307:d=5 hl=2 l= 24 prim: PRINTABLESTRING :Domain Control Validated 54 333:d=3 hl=2 l= 20 cons: SET 55 335:d=4 hl=2 l= 18 cons: SEQUENCE 56 337:d=5 hl=2 l= 3 prim: OBJECT :commonName 57 342:d=5 hl=2 l= 11 prim: PRINTABLESTRING :kthulhu.net 58 355:d=2 hl=4 l= 290 cons: SEQUENCE 59 359:d=3 hl=2 l= 13 cons: SEQUENCE 60 361:d=4 hl=2 l= 9 prim: OBJECT :rsaEncryption 61 372:d=4 hl=2 l= 0 prim: NULL 62 374:d=3 hl=4 l= 271 prim: BIT STRING 63 649:d=2 hl=4 l= 442 cons: cont [ 3 ] 64 653:d=3 hl=4 l= 438 cons: SEQUENCE 65 657:d=4 hl=2 l= 15 cons: SEQUENCE 66 659:d=5 hl=2 l= 3 prim: OBJECT :X509v3 Basic Constraints 67 664:d=5 hl=2 l= 1 prim: BOOLEAN :255 68 667:d=5 hl=2 l= 5 prim: OCTET STRING [HEX DUMP]:3003010100 69 674:d=4 hl=2 l= 29 cons: SEQUENCE 70 676:d=5 hl=2 l= 3 prim: OBJECT :X509v3 Extended Key Usage 71 681:d=5 hl=2 l= 22 prim: OCTET STRING [HEX DUMP]:301406082B0601050507030106082B06010505070302 72 705:d=4 hl=2 l= 14 cons: SEQUENCE 73 707:d=5 hl=2 l= 3 prim: OBJECT :X509v3 Key Usage 74 712:d=5 hl=2 l= 1 prim: BOOLEAN :255 75 715:d=5 hl=2 l= 4 prim: OCTET STRING [HEX DUMP]:030205A0 76 721:d=4 hl=2 l= 51 cons: SEQUENCE 77 723:d=5 hl=2 l= 3 prim: OBJECT :X509v3 CRL Distribution Points 78 728:d=5 hl=2 l= 44 prim: OCTET STRING [HEX DUMP]:302A3028A026A0248622687474703A2F2F63726C2E676F64616464792E636F6D2F676473312D36382E63726C 79 774:d=4 hl=2 l= 83 cons: SEQUENCE 80 776:d=5 hl=2 l= 3 prim: OBJECT :X509v3 Certificate Policies 81 781:d=5 hl=2 l= 76 prim: OCTET STRING [HEX DUMP]:304A3048060B6086480186FD6D010717013039303706082B06010505070201162B687474703A2F2F6365727469666963617465732E676F64616464792E636F6D2F7265706F7369746F72792F 82 859:d=4 hl=3 l= 128 cons: SEQUENCE 83 862:d=5 hl=2 l= 8 prim: OBJECT :Authority Information Access 84 872:d=5 hl=2 l= 116 prim: OCTET STRING [HEX DUMP]:3072302406082B060105050730018618687474703A2F2F6F6373702E676F64616464792E636F6D2F304A06082B06010505073002863E687474703A2F2F6365727469666963617465732E676F64616464792E636F6D2F7265706F7369746F72792F67645F696E7465726D6564696174652E637274 85 990:d=4 hl=2 l= 31 cons: SEQUENCE 86 992:d=5 hl=2 l= 3 prim: OBJECT :X509v3 Authority Key Identifier 87 997:d=5 hl=2 l= 24 prim: OCTET STRING [HEX DUMP]:30168014FDAC6132936C45D6E2EE855F9ABAE7769968CCE7 88 1023:d=4 hl=2 l= 39 cons: SEQUENCE 89 1025:d=5 hl=2 l= 3 prim: OBJECT :X509v3 Subject Alternative Name 90 1030:d=5 hl=2 l= 32 prim: OCTET STRING [HEX DUMP]:301E820B6B7468756C68752E6E6574820F7777772E6B7468756C68752E6E6574 91 1064:d=4 hl=2 l= 29 cons: SEQUENCE 92 1066:d=5 hl=2 l= 3 prim: OBJECT :X509v3 Subject Key Identifier 93 1071:d=5 hl=2 l= 22 prim: OCTET STRING [HEX DUMP]:0414A31E1AB1A9E4F550BC3E05E174CF01D09E35E017 94 1095:d=1 hl=2 l= 13 cons: SEQUENCE 95 1097:d=2 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption 96 1108:d=2 hl=2 l= 0 prim: NULL 97 1110:d=1 hl=4 l= 257 prim: BIT STRING 98-----BEGIN CERTIFICATE----- 99MIIFVzCCBD+gAwIBAgIHK2OkKnBQdjANBgkqhkiG9w0BAQUFADCByjELMAkGA1UEBhMCVVMxEDA 100OBgNVBAgTB0FyaXpvbmExEzARBgNVBAcTClNjb3R0c2RhbGUxGjAYBgNVBAoTEUdvRGFkZHkuY2 1019tLCBJbmMuMTMwMQYDVQQLEypodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL3JlcG9za 102XRvcnkxMDAuBgNVBAMTJ0dvIERhZGR5IFNlY3VyZSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTER 103MA8GA1UEBRMIMDc5NjkyODcwHhcNMTIwNDE5MTM1MzI0WhcNMTMwNDE5MTM1MzI0WjBPMRQwEgY 104DVQQKEwtrdGh1bGh1Lm5ldDEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRQwEg 105YDVQQDEwtrdGh1bGh1Lm5ldDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK80JLhGb 106+cZDSye0QoAGJh+LxvOxRTxZuSfvTm3pzQBapvFeQuCM15tfrO66NLJ3Szsgx+SDTQLSpLqqe5K 107rm5dW2z92ePkWtxDb+3KcEG0I6Gmo0SghkVC7P4xTAgAEoov/t45JLnzYpru3AXw1zkkEdmEGS+ 108M4Q1u7LP88E1bKWJ8b1O6A3KjiMAphcEPxb2EwMRdbqMygbCXy/OeL9DCiOxhMsp+lvI2e3/HEn 109PGob6ywGLf3rQMa5h3DFFSW1voMV4sCbB349N0tf0cqR02+IEahM96V+sJfLKrST9C+Zl7kIBEq 110BAGeEqz2C8V8raq1Nci4t9sYFsB7tQO3yECAwEAAaOCAbowggG2MA8GA1UdEwEB/wQFMAMBAQAw 111HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDAzBgNVHR8ELDA 112qMCigJqAkhiJodHRwOi8vY3JsLmdvZGFkZHkuY29tL2dkczEtNjguY3JsMFMGA1UdIARMMEowSA 113YLYIZIAYb9bQEHFwEwOTA3BggrBgEFBQcCARYraHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5L 114mNvbS9yZXBvc2l0b3J5LzCBgAYIKwYBBQUHAQEEdDByMCQGCCsGAQUFBzABhhhodHRwOi8vb2Nz 115cC5nb2RhZGR5LmNvbS8wSgYIKwYBBQUHMAKGPmh0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5 116jb20vcmVwb3NpdG9yeS9nZF9pbnRlcm1lZGlhdGUuY3J0MB8GA1UdIwQYMBaAFP2sYTKTbEXW4u 1176FX5q653aZaMznMCcGA1UdEQQgMB6CC2t0aHVsaHUubmV0gg93d3cua3RodWxodS5uZXQwHQYDV 118R0OBBYEFKMeGrGp5PVQvD4F4XTPAdCeNeAXMA0GCSqGSIb3DQEBBQUAA4IBAQC3hBvUM0guBBJc 119qsVDNehFGtd+wsbgqEHMDGSMIK5ahg4rgqUevqe98xVb9n3fMF0zCs/3LYA6mbzKQo8i2Xdbbyc 120rA0Lc+k2LST1+i19rr0idYb6Dl8mzyObf0RQQHZ5wjj+GShOk4SGXuId1hJyEJZoNUjdu3yHyPf 121+K6UaDtp4B3ECZZPyz19SFsYTsBX7Pm1u0tA6kDpNaNQxOlEEQQ+ogKFeqSJ7d0/3D83WFmIxtH 122KV7jpWcZcSVDjacjFZIsVTgjQgkgIkkUrAvqsFPFTcUnXogk6qtGxH4C17wXoQO7Tsa+j3McYP1 123HZmCxBi7r3fZJEu5k5TpvDU4Kemf 124-----END CERTIFICATE----- 125 126$ openssl asn1parse -i < [TBS CERTIFICATE] 127 0:d=0 hl=4 l=1087 cons: SEQUENCE 128 4:d=1 hl=2 l= 3 cons: cont [ 0 ] 129 6:d=2 hl=2 l= 1 prim: INTEGER :02 130 9:d=1 hl=2 l= 7 prim: INTEGER :2B63A42A705076 131 18:d=1 hl=2 l= 13 cons: SEQUENCE 132 20:d=2 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption 133 31:d=2 hl=2 l= 0 prim: NULL 134 33:d=1 hl=3 l= 202 cons: SEQUENCE 135 36:d=2 hl=2 l= 11 cons: SET 136 38:d=3 hl=2 l= 9 cons: SEQUENCE 137 40:d=4 hl=2 l= 3 prim: OBJECT :countryName 138 45:d=4 hl=2 l= 2 prim: PRINTABLESTRING :US 139 49:d=2 hl=2 l= 16 cons: SET 140 51:d=3 hl=2 l= 14 cons: SEQUENCE 141 53:d=4 hl=2 l= 3 prim: OBJECT :stateOrProvinceName 142 58:d=4 hl=2 l= 7 prim: PRINTABLESTRING :Arizona 143 67:d=2 hl=2 l= 19 cons: SET 144 69:d=3 hl=2 l= 17 cons: SEQUENCE 145 71:d=4 hl=2 l= 3 prim: OBJECT :localityName 146 76:d=4 hl=2 l= 10 prim: PRINTABLESTRING :Scottsdale 147 88:d=2 hl=2 l= 26 cons: SET 148 90:d=3 hl=2 l= 24 cons: SEQUENCE 149 92:d=4 hl=2 l= 3 prim: OBJECT :organizationName 150 97:d=4 hl=2 l= 17 prim: PRINTABLESTRING :GoDaddy.com, Inc. 151 116:d=2 hl=2 l= 51 cons: SET 152 118:d=3 hl=2 l= 49 cons: SEQUENCE 153 120:d=4 hl=2 l= 3 prim: OBJECT :organizationalUnitName 154 125:d=4 hl=2 l= 42 prim: PRINTABLESTRING :http://certificates.godaddy.com/repository 155 169:d=2 hl=2 l= 48 cons: SET 156 171:d=3 hl=2 l= 46 cons: SEQUENCE 157 173:d=4 hl=2 l= 3 prim: OBJECT :commonName 158 178:d=4 hl=2 l= 39 prim: PRINTABLESTRING :Go Daddy Secure Certification Authority 159 219:d=2 hl=2 l= 17 cons: SET 160 221:d=3 hl=2 l= 15 cons: SEQUENCE 161 223:d=4 hl=2 l= 3 prim: OBJECT :serialNumber 162 228:d=4 hl=2 l= 8 prim: PRINTABLESTRING :07969287 163 238:d=1 hl=2 l= 30 cons: SEQUENCE 164 240:d=2 hl=2 l= 13 prim: UTCTIME :120419135324Z 165 255:d=2 hl=2 l= 13 prim: UTCTIME :130419135324Z 166 270:d=1 hl=2 l= 79 cons: SEQUENCE 167 272:d=2 hl=2 l= 20 cons: SET 168 274:d=3 hl=2 l= 18 cons: SEQUENCE 169 276:d=4 hl=2 l= 3 prim: OBJECT :organizationName 170 281:d=4 hl=2 l= 11 prim: PRINTABLESTRING :kthulhu.net 171 294:d=2 hl=2 l= 33 cons: SET 172 296:d=3 hl=2 l= 31 cons: SEQUENCE 173 298:d=4 hl=2 l= 3 prim: OBJECT :organizationalUnitName 174 303:d=4 hl=2 l= 24 prim: PRINTABLESTRING :Domain Control Validated 175 329:d=2 hl=2 l= 20 cons: SET 176 331:d=3 hl=2 l= 18 cons: SEQUENCE 177 333:d=4 hl=2 l= 3 prim: OBJECT :commonName 178 338:d=4 hl=2 l= 11 prim: PRINTABLESTRING :kthulhu.net 179 351:d=1 hl=4 l= 290 cons: SEQUENCE 180 355:d=2 hl=2 l= 13 cons: SEQUENCE 181 357:d=3 hl=2 l= 9 prim: OBJECT :rsaEncryption 182 368:d=3 hl=2 l= 0 prim: NULL 183 370:d=2 hl=4 l= 271 prim: BIT STRING 184 645:d=1 hl=4 l= 442 cons: cont [ 3 ] 185 649:d=2 hl=4 l= 438 cons: SEQUENCE 186 653:d=3 hl=2 l= 15 cons: SEQUENCE 187 655:d=4 hl=2 l= 3 prim: OBJECT :X509v3 Basic Constraints 188 660:d=4 hl=2 l= 1 prim: BOOLEAN :255 189 663:d=4 hl=2 l= 5 prim: OCTET STRING [HEX DUMP]:3003010100 190 670:d=3 hl=2 l= 29 cons: SEQUENCE 191 672:d=4 hl=2 l= 3 prim: OBJECT :X509v3 Extended Key Usage 192 677:d=4 hl=2 l= 22 prim: OCTET STRING [HEX DUMP]:301406082B0601050507030106082B06010505070302 193 701:d=3 hl=2 l= 14 cons: SEQUENCE 194 703:d=4 hl=2 l= 3 prim: OBJECT :X509v3 Key Usage 195 708:d=4 hl=2 l= 1 prim: BOOLEAN :255 196 711:d=4 hl=2 l= 4 prim: OCTET STRING [HEX DUMP]:030205A0 197 717:d=3 hl=2 l= 51 cons: SEQUENCE 198 719:d=4 hl=2 l= 3 prim: OBJECT :X509v3 CRL Distribution Points 199 724:d=4 hl=2 l= 44 prim: OCTET STRING [HEX DUMP]:302A3028A026A0248622687474703A2F2F63726C2E676F64616464792E636F6D2F676473312D36382E63726C 200 770:d=3 hl=2 l= 83 cons: SEQUENCE 201 772:d=4 hl=2 l= 3 prim: OBJECT :X509v3 Certificate Policies 202 777:d=4 hl=2 l= 76 prim: OCTET STRING [HEX DUMP]:304A3048060B6086480186FD6D010717013039303706082B06010505070201162B687474703A2F2F6365727469666963617465732E676F64616464792E636F6D2F7265706F7369746F72792F 203 855:d=3 hl=3 l= 128 cons: SEQUENCE 204 858:d=4 hl=2 l= 8 prim: OBJECT :Authority Information Access 205 868:d=4 hl=2 l= 116 prim: OCTET STRING [HEX DUMP]:3072302406082B060105050730018618687474703A2F2F6F6373702E676F64616464792E636F6D2F304A06082B06010505073002863E687474703A2F2F6365727469666963617465732E676F64616464792E636F6D2F7265706F7369746F72792F67645F696E7465726D6564696174652E637274 206 986:d=3 hl=2 l= 31 cons: SEQUENCE 207 988:d=4 hl=2 l= 3 prim: OBJECT :X509v3 Authority Key Identifier 208 993:d=4 hl=2 l= 24 prim: OCTET STRING [HEX DUMP]:30168014FDAC6132936C45D6E2EE855F9ABAE7769968CCE7 209 1019:d=3 hl=2 l= 39 cons: SEQUENCE 210 1021:d=4 hl=2 l= 3 prim: OBJECT :X509v3 Subject Alternative Name 211 1026:d=4 hl=2 l= 32 prim: OCTET STRING [HEX DUMP]:301E820B6B7468756C68752E6E6574820F7777772E6B7468756C68752E6E6574 212 1060:d=3 hl=2 l= 29 cons: SEQUENCE 213 1062:d=4 hl=2 l= 3 prim: OBJECT :X509v3 Subject Key Identifier 214 1067:d=4 hl=2 l= 22 prim: OCTET STRING [HEX DUMP]:0414A31E1AB1A9E4F550BC3E05E174CF01D09E35E017 215-----BEGIN TBS CERTIFICATE----- 216MIIEP6ADAgECAgcrY6QqcFB2MA0GCSqGSIb3DQEBBQUAMIHKMQswCQYDVQQGEwJVUzEQMA4GA1U 217ECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEaMBgGA1UEChMRR29EYWRkeS5jb20sIE 218luYy4xMzAxBgNVBAsTKmh0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9ye 219TEwMC4GA1UEAxMnR28gRGFkZHkgU2VjdXJlIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MREwDwYD 220VQQFEwgwNzk2OTI4NzAeFw0xMjA0MTkxMzUzMjRaFw0xMzA0MTkxMzUzMjRaME8xFDASBgNVBAo 221TC2t0aHVsaHUubmV0MSEwHwYDVQQLExhEb21haW4gQ29udHJvbCBWYWxpZGF0ZWQxFDASBgNVBA 222MTC2t0aHVsaHUubmV0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzQkuEZv5xkNL 223J7RCgAYmH4vG87FFPFm5J+9ObenNAFqm8V5C4IzXm1+s7ro0sndLOyDH5INNAtKkuqp7kqubl1b 224bP3Z4+Ra3ENv7cpwQbQjoaajRKCGRULs/jFMCAASii/+3jkkufNimu7cBfDXOSQR2YQZL4zhDW7 225ss/zwTVspYnxvU7oDcqOIwCmFwQ/FvYTAxF1uozKBsJfL854v0MKI7GEyyn6W8jZ7f8cSc8ahvr 226LAYt/etAxrmHcMUVJbW+gxXiwJsHfj03S1/RypHTb4gRqEz3pX6wl8sqtJP0L5mXuQgESoEAZ4S 227rPYLxXytqrU1yLi32xgWwHu1A7fIQIDAQABo4IBujCCAbYwDwYDVR0TAQH/BAUwAwEBADAdBgNV 228HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMDMGA1UdHwQsMCowKKA 229moCSGImh0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2RzMS02OC5jcmwwUwYDVR0gBEwwSjBIBgtghk 230gBhv1tAQcXATA5MDcGCCsGAQUFBwIBFitodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL 2313JlcG9zaXRvcnkvMIGABggrBgEFBQcBAQR0MHIwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmdv 232ZGFkZHkuY29tLzBKBggrBgEFBQcwAoY+aHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5LmNvbS9 233yZXBvc2l0b3J5L2dkX2ludGVybWVkaWF0ZS5jcnQwHwYDVR0jBBgwFoAU/axhMpNsRdbi7oVfmr 234rndplozOcwJwYDVR0RBCAwHoILa3RodWxodS5uZXSCD3d3dy5rdGh1bGh1Lm5ldDAdBgNVHQ4EF 235gQUox4asank9VC8PgXhdM8B0J414Bc= 236-----END TBS CERTIFICATE----- 237 238$ openssl asn1parse -i < [SIGNATURE ALGORITHM] 239 0:d=0 hl=2 l= 13 cons: SEQUENCE 240 2:d=1 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption 241 13:d=1 hl=2 l= 0 prim: NULL 242-----BEGIN SIGNATURE ALGORITHM----- 243MA0GCSqGSIb3DQEBBQUA 244-----END SIGNATURE ALGORITHM----- 245 246-----BEGIN SIGNATURE----- 247t4Qb1DNILgQSXKrFQzXoRRrXfsLG4KhBzAxkjCCuWoYOK4KlHr6nvfMVW/Z93zBdMwrP9y2AOpm 2488ykKPItl3W28nKwNC3PpNi0k9fotfa69InWG+g5fJs8jm39EUEB2ecI4/hkoTpOEhl7iHdYSchC 249WaDVI3bt8h8j3/iulGg7aeAdxAmWT8s9fUhbGE7AV+z5tbtLQOpA6TWjUMTpRBEEPqIChXqkie3 250dP9w/N1hZiMbRyle46VnGXElQ42nIxWSLFU4I0IJICJJFKwL6rBTxU3FJ16IJOqrRsR+Ate8F6E 251Du07Gvo9zHGD9R2ZgsQYu6932SRLuZOU6bw1OCnpnw== 252-----END SIGNATURE----- 253