www.umdphysics.umd.edu

- University of Maryland, College Park -

Issued by DigiCert SHA2 High Assurance Server CA

About this certificate

This digital certificate with serial number 0a:4c:35:ce:5b:16:1b:9f:68:15:6d:8f:00:0e:02:55 was issued on by DigiCert Inc.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

University of Maryland, College Park

Organization: University of Maryland, College Park
Organization unit: Department of Physics
State / Province: Maryland
Locality: College Park
Country: US

DigiCert Inc

Organization: DigiCert Inc
Organization unit: www.digicert.com
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0a:4c:35:ce:5b:16:1b:9f:68:15:6d:8f:00:0e:02:55
Serial Number (int): 13687985835998139811993691309638287957
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: dc:a3:6b:5a:50:c6:b2:43:bf:fd:af:15:71:32:2a:1c:14:a6:82:ae
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b

Fingerprint (sha1): cf:54:21:b3:91:b4:68:17:00:d7:c2:22:9a:75:95:1a:1d:81:58:c3
Fingerprint (sha256): 00:33:e5:2d:54:4e:33:70:2e:86:fc:c9:21:86:e9:94:07:fc:c4:a9:58:9a:85:db:b4:6e:b6:77:5c:14:a9:d5

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g6.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g6.crl

Check the revocation status for certificate www.umdphysics.umd.edu

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.umdphysics.umd.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.umdphysics.umd.edu
umdphysics.umd.edu

Other certificates including the domain name umd.edu

(limited to 100 certificates)
grades.cs.umd.edu
sims.eng.it.umd.edu
sfunder1cert.net
www.see.umd.edu
www.bioscience.umd.edu
legacylamp-faculty.elb.it-prod-cots.aws.umd.edu
calce.umd.edu
test-web-lws.edu.help
kfs.umd.edu
www.recoveringdemocracyarchives.umd.edu
bsos.umd.edu
*.givegab.com
www.umdphysics.umd.edu
view.e.rhsmith.umd.edu
bfs-trans2.qa.umd.edu
oer.umd.edu
hcixdementia.umd.edu
vicarious.cs.umd.edu
user.eng.umd.edu
tin.umd.edu
www.temperamentandnarrativeslab.umd.edu
aast.umd.edu
*.rhsmith.umd.edu
me.umd.edu
universityhonors.umd.edu
lasonline.umd.edu
msmc.umd.edu
rcpsl.ece.umd.edu
ercimpaqt.umd.edu
publish.lib.umd.edu
qa.ccebh.umd.edu
akamaisan.qualtrics.com
www.aast.umd.edu
jmail.umd.edu
diversity.umd.edu
dns-vetting1j.map.fastly.net
umeg.umd.edu
nartc.fcm.arizona.edu
apphosting-tools.qa.umd.edu
*.ibbr.umd.edu
item.umd.edu
copier.umd.edu
umincentiveawards.umd.edu
infosci.umd.edu
cfar.umd.edu
5703789046661120-fe2.pantheonsite.io
dcicblog.umd.edu
balldoolinglab.umd.edu
icdldev.lib.umd.edu
experts.umd.edu
smart.bgr.umd.edu
phr-app4.umd.edu
dev.vaslavehousing.umd.edu
cgunupd1.umd.edu
ITFHR.UMD.EDU
voyager-mac.umd.edu
pm.umd.edu
*.ibbr.umd.edu
jqi-wiki.physics.umd.edu
*.proxy-ce.researchport.umd.edu
diversity.umd.edu
webmeeting-dev.umd.edu
*.givegab.com
viz.umd.edu
tls.automattic.com
sbnpsi.astro.umd.edu
evidlab.umd.edu
dev.msac.umd.edu
checkio.reslife.qa.umd.edu
www.modarres.umd.edu
openknowledge.umd.edu
dev.studentaffairs.umd.edu
sophie-test.umd.edu
*.givegab.com
5639026912526336-fe4.pantheonsite.io
wireless.umd.edu
www.tt.umd.edu
marylandrha.umd.edu
icecube.umd.edu
congo.umd.edu
maestro2-public.it-dev-cots.aws.umd.edu
tls.automattic.com
5639026912526336-fe4.pantheonsite.io
www.arhu.umd.edu
sophie-test.nflc.umd.edu
*.givegab.com
qa.studentconduct.umd.edu
oitap254v.umd.edu
dev.education.umd.edu
fastbreakers.umd.edu
gened.umd.edu
*.cbcb.umd.edu
agnr.umd.edu
eit.umd.edu
ctg-ws.umd.edu
apm1.qa.umd.edu
nxterra.ucop.edu
float.umd.edu
prosamservices.dev.umd.edu
mim-dev.umd.edu

Certificate

The complete raw certificate details for www.umdphysics.umd.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomRGwCVxET9ulbgqgMMV
ocFV7Gqj8wiAuIm4bQX9kbMusMCXdlp98iKCrg+skm337LWMo6cEZ3gBiQv6J8JU
dYOaZC4CMGSjGNz7RFy0/GVwA68CaRhnmMh0JG8wrOLmXuj4gu9LT2X2Qa5mpuow
yiVScR76bXa1VbYSrEC5/OkKVwJ6OrK1u3bORu8ZRR+MgEI7I6N2/efqqpej27Bb
GC+n+dGPkr2y9bgYVKT6kZgrmnVjD5a/s2bSfBh0CadfzRJbwx37XQ3LfFVm/Z0B
IBYHSuJ5GCGxU4K6eQoRgHdZbZJlfav130q0qkkEu+n+rsssMMe53ODfH67CBuK/
KwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 13687985835998139811993691309638287957
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-06 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-08 00:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'College Park'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Maryland, College Park'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Department of Physics'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.umdphysics.umd.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20500053525218800701567808619862106721141488056398109463082759911544529981128621135589463150105656875498855086650414797108642063738639280720931132377569418171585384298425189477775898986109882484360006438149340191023872567907611384723992602132339949358476733202600664260913310739523856379459169959059558034334527151058509470471451206546247693016420646339680581820248965875278228946167289973026807616004956611391524118785533837587792331131011727506684780558351569033412590738019952800317164204784970737364856319872675862074890893960923135281606524103273075511073322995497661506113831595038480189189206384614689034387243
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							dca36b5a50c6b243bffdaf1571322a1c14a682ae
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.umdphysics.umd.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'umdphysics.umd.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g6.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g6.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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