nestoria.com.br
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:8e:9c:df:85:fe:6d:8b:5c:71:e0:1d:27:b6:c3:00:02:67 was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=nestoria.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:8e:9c:df:85:fe:6d:8b:5c:71:e0:1d:27:b6:c3:00:02:67Serial Number (int): 309865474065314234802018157756526360527463
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 68:03:89:27:a8:4b:8f:8f:ab:ec:ee:db:c7:dc:4b:d1:fd:d3:54:05
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): bc:c8:9d:c0:96:cc:0f:be:85:6e:02:59:a3:51:ce:42:10:4a:8b:a0
Fingerprint (sha256): 00:3b:63:ac:53:48:a4:32:a2:66:85:2f:48:57:78:4a:e0:10:c0:64:93:ce:5b:70:e3:77:ec:36:76:7e:83:96
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate nestoria.com.br
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nestoria.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.nestoria.com.br
nestoria.com.br
rss.nestoria.com.br
s.nestoria.com.br
share.nestoria.com.br
www.nestoria.com.br
nestoria.com.br
rss.nestoria.com.br
s.nestoria.com.br
share.nestoria.com.br
www.nestoria.com.br
Other certificates including the domain name nestoria.com.br
(limited to 100 certificates)
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
www.nestoria.cl
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
www.nestoria.cl
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
Certificate
The complete raw certificate details for nestoria.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFazCCBFOgAwIBAgISA46c34X+bYtcceAdJ7bDAAJnMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODAxMjMwODI0MDhaFw0x ODA0MjMwODI0MDhaMBoxGDAWBgNVBAMTD25lc3RvcmlhLmNvbS5icjCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALukrNFFp9HE4CpUdOf8O3zapBZYuNU7 7iSIlPy+hi8AoQmswiKUsLkFaTl21VJTXfq95EQtBcdRGoptNH2R8Z3p89E/8pKW vTh4/GBOAA776T1od1o/pO606XEV+c/1nyCKnLq3umJAcMnPOx6k9HXQ/HW7f+y+ zqsZqfchW7M2Tl/273bVhylr3cssmGuR74/j1RgPGbx7YAjIEbi/PTDIM3A6iuks v7XzEPhk9KpwCphKh4et8qYfdrl2wiEyIXkMcApdJoVKPK3sqLa7zxRId4QGtC+g pYviV7pZBWTbIclkW8vdNGMBmJwQspqJg5tM6aVUpwh802UGMH/X2EMCAwEAAaOC AnkwggJ1MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUaAOJJ6hLj4+r7O7bx9xL0f3T VAUwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEE YzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQu b3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQu b3JnLzCBgwYDVR0RBHwweoITYXBpLm5lc3RvcmlhLmNvbS5icoIPbmVzdG9yaWEu Y29tLmJyghNyc3MubmVzdG9yaWEuY29tLmJyghFzLm5lc3RvcmlhLmNvbS5icoIV c2hhcmUubmVzdG9yaWEuY29tLmJyghN3d3cubmVzdG9yaWEuY29tLmJyMIH+BgNV HSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcC ARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGb VGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5 aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0 aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcv cmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBAA1BwMGMfLY6E+Qz6xAb9i2l Ol7Lkp3eCWuv/vx1eFyuvzuaIM+DwREBRxGd9on1GM5G4bj+kX3uxOBMFJkDvoWQ PsBFIIP5KGf58U5ebclC12cC2t/7p6y9YnDXSQJeXkWbt2LdDbeBZbU1ZK/W5va9 TjgauNMEKb4LwY2RiTMaJ+zButGS7mo7PxUkHYx0hzfJF0XPJRpJAPr4n4rNi5Ju qlHsOwxDaCY4119f2adZQCpmv0uuBhm+j7FjfhGdrJH99Fp7q9/1ymDtCX5B29ZQ qkVyohAu1rJXjSavmcYizHyqnt1uZiB09ejgqbf0kp9orrj9qklLVFJLQEvfZ4Q= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6Ss0UWn0cTgKlR05/w7 fNqkFli41TvuJIiU/L6GLwChCazCIpSwuQVpOXbVUlNd+r3kRC0Fx1Eaim00fZHx nenz0T/ykpa9OHj8YE4ADvvpPWh3Wj+k7rTpcRX5z/WfIIqcure6YkBwyc87HqT0 ddD8dbt/7L7Oqxmp9yFbszZOX/bvdtWHKWvdyyyYa5Hvj+PVGA8ZvHtgCMgRuL89 MMgzcDqK6Sy/tfMQ+GT0qnAKmEqHh63yph92uXbCITIheQxwCl0mhUo8reyotrvP FEh3hAa0L6Cli+JXulkFZNshyWRby900YwGYnBCymomDm0zppVSnCHzTZQYwf9fY QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 309865474065314234802018157756526360527463 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-23 08:24:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-23 08:24:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nestoria.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23687767331327276978834164835429147136002203056354925157479338332136000077845257176889227238233879168500380876858651948436972681624556869180097342900720148677958191653901264612878124736865255102238082218327963047857065192878035398742994096842482935091915318699445822467079258703508099124170924945604032819117354543465039221428009732272540304774588067001926351012669047939748391262729805613802857663628309287330470726650437989074076590502224051108175329167484335948484011138428017979147493640620902546064936004172763341492260383809266646664162958078022152894589843109106648704434469873219888240960574656045061336717379 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 68038927a84b8f8fabeceedbc7dc4bd1fdd35405 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.nestoria.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nestoria.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss.nestoria.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's.nestoria.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'share.nestoria.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nestoria.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000d41c0c18c7cb63a13e433eb101bf62da53a5ecb929dde096baffefc75785caebf3b9a20cf83c1110147119df689f518ce46e1b8fe917deec4e04c149903be85903ec0452083f92867f9f14e5e6dc942d76702dadffba7acbd6270d749025e5e459bb762dd0db78165b53564afd6e6f6bd4e381ab8d30429be0bc18d9189331a27ecc1bad192ee6a3b3f15241d8c748737c91745cf251a4900faf89f8acd8b926eaa51ec3b0c43682638d75f5fd9a759402a66bf4bae0619be8fb1637e119dac91fdf45a7babdff5ca60ed097e41dbd650aa4572a2102ed6b2578d26af99c622cc7caa9edd6e662074f5e8e0a9b7f4929f68aeb8fdaa494b54524b404bdf6784