michellebarryfranco.com
Issued by R3
About this certificate
This digital certificate with serial number 04:cc:1c:1d:95:74:56:b9:ed:06:44:83:5d:49:2a:71:92:50 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=michellebarryfranco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:cc:1c:1d:95:74:56:b9:ed:06:44:83:5d:49:2a:71:92:50Serial Number (int): 417904118570699646564657846416325479600720
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: dd:cd:86:60:52:17:6e:a1:7d:a2:06:99:06:d2:55:b5:5e:0f:36:46
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 16:3b:a0:f2:e4:74:00:40:90:43:42:9f:df:42:1a:56:0f:ba:d8:7f
Fingerprint (sha256): 00:34:f4:b1:e1:76:b4:4a:51:b7:44:4e:77:8c:76:9b:50:51:64:3d:d0:ba:8f:2e:9b:b4:e0:b2:1c:39:96:03
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate michellebarryfranco.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for michellebarryfranco.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
michellebarryfranco.com
www.michellebarryfranco.com
www.michellebarryfranco.com
Other certificates including the domain name michellebarryfranco.com
(limited to 100 certificates)
michellebarryfranco.com
michellebarryfranco.com
michellebarryfranco.com
michellebarryfranco.com
visits.thebalancebrands.com
hello.qosmic.tech
bookings.jasonoharris.com
booking.acceptancewindows.com
meetings.squaretalk.com
meetings.squaretalk.com
bookings.jasonoharris.com
bookings.scottcarley.com
michellebarryfranco.com
michellebarryfranco.com
bookcub.ccwa.us
michellebarryfranco.com
book.investel.es
michellebarryfranco.com
michellebarryfranco.com
book.elginsimages.com
book.elginsimages.com
bookings.cytocrom.mx
book.elginsimages.com
book.dxbme.com
book.elginsimages.com
bookings.cytocrom.mx
appointment.isatsjamaica.com
bookings.discoverprime.com
book.dxbme.com
meetings.squaretalk.com
book.dxbme.com
connect.ankitshah.me
connect.ankitshah.me
book.elginsimages.com
schedule.michellebarryfranco.com
forms.rjsa.co.za
visits.thebalancebrands.com
michellebarryfranco.com
bookings.dexterousgroup.com.au
booking.mvaengineering.mx
book.elginsimages.com
bookme.ohsnaptif.com
book.investel.es
hello.qosmic.tech
michellebarryfranco.com
bookings.cytocrom.mx
bookings.cytocrom.mx
meet.htcarolinas.com
appointment.isatsjamaica.com
bookings.scottcarley.com
bookings.discoverprime.com
michellebarryfranco.com
basefuelonly.baseracingfuel.com
meetnow.kinnoa.com
michellebarryfranco.com
appointment.isatsjamaica.com
michellebarryfranco.com
hello.qosmic.tech
michellebarryfranco.com
michellebarryfranco.com
michellebarryfranco.com
bookcub.ccwa.us
booking.acceptancewindows.com
booknow.bigbrocorp.co
michellebarryfranco.com
michellebarryfranco.com
michellebarryfranco.com
michellebarryfranco.com
visits.thebalancebrands.com
hello.qosmic.tech
bookings.jasonoharris.com
booking.acceptancewindows.com
meetings.squaretalk.com
meetings.squaretalk.com
bookings.jasonoharris.com
bookings.scottcarley.com
michellebarryfranco.com
michellebarryfranco.com
bookcub.ccwa.us
michellebarryfranco.com
book.investel.es
michellebarryfranco.com
michellebarryfranco.com
book.elginsimages.com
book.elginsimages.com
bookings.cytocrom.mx
book.elginsimages.com
book.dxbme.com
book.elginsimages.com
bookings.cytocrom.mx
appointment.isatsjamaica.com
bookings.discoverprime.com
book.dxbme.com
meetings.squaretalk.com
book.dxbme.com
connect.ankitshah.me
connect.ankitshah.me
book.elginsimages.com
schedule.michellebarryfranco.com
forms.rjsa.co.za
visits.thebalancebrands.com
michellebarryfranco.com
bookings.dexterousgroup.com.au
booking.mvaengineering.mx
book.elginsimages.com
bookme.ohsnaptif.com
book.investel.es
hello.qosmic.tech
michellebarryfranco.com
bookings.cytocrom.mx
bookings.cytocrom.mx
meet.htcarolinas.com
appointment.isatsjamaica.com
bookings.scottcarley.com
bookings.discoverprime.com
michellebarryfranco.com
basefuelonly.baseracingfuel.com
meetnow.kinnoa.com
michellebarryfranco.com
appointment.isatsjamaica.com
michellebarryfranco.com
hello.qosmic.tech
michellebarryfranco.com
michellebarryfranco.com
michellebarryfranco.com
bookcub.ccwa.us
booking.acceptancewindows.com
booknow.bigbrocorp.co
michellebarryfranco.com
Certificate
The complete raw certificate details for michellebarryfranco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISBMwcHZV0VrntBkSDXUkqcZJQMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MDQwNDAwNDRaFw0yNDA4MDIwNDAwNDNaMCIxIDAeBgNVBAMT F21pY2hlbGxlYmFycnlmcmFuY28uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAyBisYXHUTnbPSZMcFhcoXN4DACL1rWQLi/76YEhXZHHQwPWGrxjo T51URDLWvHJ2fZhvIgCde75MfeznRbBFBnN/U6PLrRCegrsdwh9XRUok0XIVoa/O lqJ6eClPMosfmRu6l/l4ySUq8PR9Sbr7j6ADowlZXkLVe162nQ0ftHhQ7FrSFm/K f4gQ5pLdFxH3pzoIm/qmzLi6puBOd5DSZTd0utIXe2AI9pdN+XvpPZyrzDy9qSkh lWEvso05lR6BraBMFBH7OBkC8/eLB/OmJN374E01HVQHSF9a2d74AOHT3x4Gdtq9 f2gkhLKpDGvfp7CPMK1LmV58TtZkC0v0aQIDAQABo4ICNjCCAjIwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8E AjAAMB0GA1UdDgQWBBTdzYZgUhduoX2iBpkG0lW1Xg82RjAfBgNVHSMEGDAWgBQU LrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGG FWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmku bGVuY3Iub3JnLzA/BgNVHREEODA2ghdtaWNoZWxsZWJhcnJ5ZnJhbmNvLmNvbYIb d3d3Lm1pY2hlbGxlYmFycnlmcmFuY28uY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIB MIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAPxdLT9ciR1iUHWUchL4NEu2QN38f hWrrwb8ohez4ZG4AAAGPQfna5AAABAMASDBGAiEA8oebnGzFJY+jwT7HLrB3ygml CZqp/dWSHAO2LyLsbLUCIQCUoHF7+yrO5YVTOmCnWXK8neHFCOFFKQ8UJY3keEgq VAB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABj0H52uUAAAQD AEYwRAIgTAzGjlzzO1lKzdxA9EBvgJnvvkV1U6gVnQok6UHm57sCICNiJ1OdIEAm nbvrS0Q/OXfLS80CsGvYG/azR5DTH4/5MA0GCSqGSIb3DQEBCwUAA4IBAQCcY1hf eypql8Y6qpWZWeP7iaUDRXwMdbh4GIXJqgABzz9y1TqzUirny0cW1TZ3x4JxfMEt dOhwdimrAncORKWmJQmKBlDrTbUSv1c/yP+05Jebe2Z2Gtgvhv3sc/4u3sQtniYo /PRjKiOzyrvuQ8cpXzaLq+4cojcVV5DJcwdwkqZ8zAJTBbTEoi0F5ZKwfX6LZwpq I+z90jRVehSsK4++PQNl+SDkXUoL96MuBTtNw0/dbeZwE9xCYgEb9IjgcVtLYV6g 2vNOQB11rb6YMVdG/6thpPuu31WVkEr9280tE35qJvBtucvJzrFO06Jl+35+Qx7X Kro81HvU68k7xyGI -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBisYXHUTnbPSZMcFhco XN4DACL1rWQLi/76YEhXZHHQwPWGrxjoT51URDLWvHJ2fZhvIgCde75MfeznRbBF BnN/U6PLrRCegrsdwh9XRUok0XIVoa/OlqJ6eClPMosfmRu6l/l4ySUq8PR9Sbr7 j6ADowlZXkLVe162nQ0ftHhQ7FrSFm/Kf4gQ5pLdFxH3pzoIm/qmzLi6puBOd5DS ZTd0utIXe2AI9pdN+XvpPZyrzDy9qSkhlWEvso05lR6BraBMFBH7OBkC8/eLB/Om JN374E01HVQHSF9a2d74AOHT3x4Gdtq9f2gkhLKpDGvfp7CPMK1LmV58TtZkC0v0 aQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 417904118570699646564657846416325479600720 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-04 04:00:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-02 04:00:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'michellebarryfranco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25259827881424483524263726779530511828923948196058243045064025743551519698994257041515801088380627070042221814282468792658991914397014127780076361367528165201402341876263033174514182621845306297515950669696694837824798342785082803461808833478491284521579867449497292162847179977031254720577501270534400720083183307408009284242530119473715812198590654517123682026134474460509044786220812563047349896335786146852579444196086949169265858893472121777544461344978761370355211960611913174687226058887182835446078806483695232995619063360298951889366846940546957656518088156957700731268529497622092613159653625012666365637737 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ddcd866052176ea17da2069906d255b55e0f3646 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michellebarryfranco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michellebarryfranco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f41f9dae40000040300483046022100f2879b9c6cc5258fa3c13ec72eb077ca09a5099aa9fdd5921c03b62f22ec6cb502210094a0717bfb2acee585533a60a75972bc9de1c508e145290f14258de478482a5400750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f41f9dae5000004030046304402204c0cc68e5cf33b594acddc40f4406f8099efbe457553a8159d0a24e941e6e7bb0220236227539d2040269dbbeb4b443f3977cb4bcd02b06bd81bf6b34790d31f8ff9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009c63585f7b2a6a97c63aaa959959e3fb89a503457c0c75b8781885c9aa0001cf3f72d53ab3522ae7cb4716d53677c782717cc12d74e8707629ab02770e44a5a625098a0650eb4db512bf573fc8ffb4e4979b7b66761ad82f86fdec73fe2edec42d9e2628fcf4632a23b3cabbee43c7295f368babee1ca237155790c973077092a67ccc025305b4c4a22d05e592b07d7e8b670a6a23ecfdd234557a14ac2b8fbe3d0365f920e45d4a0bf7a32e053b4dc34fdd6de67013dc4262011bf488e0715b4b615ea0daf34e401d75adbe98315746ffab61a4fbaedf5595904afddbcd2d137e6a26f06db9cbc9ceb14ed3a265fb7e7e431ed72aba3cd47bd4ebc93bc72188