mdm-qa.msgqa.wellsfargo.com

- Wells Fargo & Company -

Issued by Wells Fargo Certificate Authority WS1

About this certificate

This digital certificate with serial number 1a:89:c9:90:02:0d:ae:cc:48:4f:c1:a7:92:f0:cf:02 was issued on by Wells Fargo.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Wells Fargo & Company

Organization: Wells Fargo & Company
Organization unit: TMS-ADCS
State / Province: California
Locality: San Francisco
Country: US

Wells Fargo

Organization: Wells Fargo
Organization unit: Symantec Trust Network
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 1a:89:c9:90:02:0d:ae:cc:48:4f:c1:a7:92:f0:cf:02
Serial Number (int): 35275360733848331635839575323325812482
Serial Number lenght: 125 bits, 16 octets

SubjectKeyId: 3a:32:29:89:68:8f:2a:0b:d1:8f:ac:2d:b7:b8:e6:a8:96:da:65:6e
AuthorityKeyId: fe:08:e3:63:85:07:7e:f5:00:58:89:b3:89:a9:4f:ed:0f:0a:41:4f

Fingerprint (sha1): a9:c9:19:d8:57:a1:ba:ea:c3:1a:0d:e0:5f:d8:74:62:b9:36:ee:48
Fingerprint (sha256): 00:90:9e:de:c1:8e:75:d4:09:f5:08:98:34:4c:a3:b9:09:53:98:08:b3:fd:1a:45:34:8e:86:48:e3:27:65:3e

Issuing Certificate URL: http://mssl-aia.ws.symantec.com/PrivateCA/821017909-RSA-SHA256.cer

Revocation information

OCSP Server: http://mssl-ocsp.ws.symantec.com
CRL Distribution Point: http://mssl-crl.ws.symantec.com/PrivateCA/821017909-RSA-SHA256.crl

Check the revocation status for certificate mdm-qa.msgqa.wellsfargo.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for mdm-qa.msgqa.wellsfargo.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

mdm-qa.msgqa.wellsfargo.com

Other certificates including the domain name wellsfargo.com

(limited to 100 certificates)
teamworks-uat.wellsfargo.com
st-adhoc.wellsfargo.com
ceosvfix.wellsfargo.com
ceomediauat.wellsfargo.com
achgpuat1.wellsfargo.com
mposapi-uat.wellsfargo.com
retirement-bpo-s-prod.wellsfargo.com
bwl.wellsfargo.com
acctagg.wellsfargo.com
proxy-ewpcs.wellsfargo.com
www.retirementcity.wellsfargo.com
ectz5863r9.wellsfargo.com
mwapp-sit2.wellsfargo.com
edisclosure-pm.wellsfargo.com
qa-static.evetest.wellsfargo.com
ectv4022r5.wellsfargo.com
imagenet-mortgage-uat.wellsfargo.com
st-adhoc.wellsfargo.com
uat-wib.isgpp.wellsfargo.com
ebtest-1bw-fccssqsa.wellsfargo.com
wellsorders.ceo.wellsfargo.com
wellsfs.wellsfargo.com
esignature.wellsfargo.com
equitylinkedreporting.wellsfargo.com
wellsreport.wellsfargo.com
ectx4004r8v.wellsfargo.com
tradeworks-wca.wellsfargo.com
backoffice.wellsfargo.com
eservices.wellsfargodealerservices.com
mxdalpv05.wellsfargo.com
mdm-qa.msgqa.wellsfargo.com
myedpulse.wellsfargo.com
wwwfix.ctslink.com
marketdata.wellsfargo.com
wellscontentfix.wellsfargo.com
onlinedecisiontool.wellsfargo.com
sit-www.evetest.wellsfargo.com
wellscontentuat.wellsfargo.com
pasline-uat.wellsfargo.com
wfadvisors-prod1.wellsfargo.com
marketdata.wellsfargo.com
labs.wellsfargo.com
www.wellsfargoassetmanagement.com
procuretopay.wellsfargo.com
oxi-m-cte-broker.wellsfargo.com
401knext-uat.wellsfargo.com
deposit.wellsfargo.com
bcereporting-sit.wellsfargo.com
ofxtax.wellsfargo.com
teamworks2-uat.wellsfargo.com
wellswcapa.sec.wellsfargo.com
www-wellsfargoadvisors.wellsfargo.com
cms.wellsfargo.com
ifs-cra.wellsfargo.com
cm-pfix.ceo.wellsfargo.com
ectv5858r8v.wellsfargo.com
creditweb-ist.wellsfargo.com
safe-t.wellsfargo.com
www.wellsfargo.com
pyd-WS2-client.wellsfargo.com
RAS-AZ-A.wellsfargo.com
3PV-TL3P003L.WELLSFARGO.COM
wfa-d-1trdfix-msg-v-01.wellsfargo.com
P2P-CLX.test.wellsfargo.com
retirement-bpo-uat.wellsfargo.com
ebprod-1bw-retail.wellsfargo.com
wmidsa.wellsfargo.com
pyd-WQE-client.wellsfargo.com
wfa-t-1trdapi-websvc-v-00.wellsfargo.com
hulavc-n-sit.wellsfargo.com
csfedportal-ext.wellsfargo.com
csfactor-uat.wellsfargo.com
m-wfadvisorbroker-cte1.wellsfargo.com
stg-admin.wellsfargo.com
wellstrustfix.wellsfargo.com
retirementservices-uat.wellsfargo.com
studentinsurance-uat.wellsfargo.com
ebprod-1wfw-wfapublic.wellsfargo.com
whlsleretirement-uat.wellsfargo.com
voltage-ps-0000.msgdev.wellsfargo.com
accountservices-wellsonecard.wellsfargo.com
godigitaldesktop.wellsfargo.com
ectv4008r8v.wellsfargo.com
coms-ceo-uat.wellsfargo.com
ect-lab-6912r5a.wellsfargo.com
m.wellsfargo.com
teamworks-uat.wellsfargo.com
nc2-qaapm-pfe-wtwt.wellsfargo.com
gpow.wellsfargo.com
corporateretirementportal.wellsfargo.com
fundservicesreporting.wellsfargo.com
sourcing.wellsfargo.com
ifs-cra-bcp.wellsfargo.com
ectx4020r8v.wellsfargo.com
eddwtuat.ceo.wellsfargo.com
scf-apps.wellsfargo.com
wit02-dev.wellsfargo.com
fxteller.wellsfargo.com
trust.wellsfargo.com
wellssuite.wellsfargo.com

Certificate

The complete raw certificate details for mdm-qa.msgqa.wellsfargo.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FC+FvOksNg1a8/oS6B5
O4qtrHlqIz80rb8XXxU2sYvTWYRh0KkvOkIPlLEeyjj0/JjWbIgaoujxzIOiAFzK
QykUXvboX9hVJBmhGNvuiKx3HelOPFHu3O/YlRxBN4j10szQZx6gc+vHy8txhUCv
ivh05M7Y5i1vAsLDS+LXQgDBgVEit3YSC/0XmsFbUUCnYwp2iL1g36MKivb22fBj
JN7D1uFf79AKWycV4a2YKbopdtzgqBx8uayaS07WzXGWq9pwoVJq82O9cHixFa0/
URU/vkTqAg1/jzkYDzHgUr26tAA0ys/enZDnC3WlJogUxDj7XT1HmWP2MF3K0lRX
EwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 35275360733848331635839575323325812482
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wells Fargo'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wells Fargo Certificate Authority WS1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-31 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-06 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'San Francisco'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Wells Fargo & Company'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'TMS-ADCS'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'mdm-qa.msgqa.wellsfargo.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26297383062236598057303642978235511422988039049327289654639399005937057052379261520220141458600843896760961111809401858005432694228626533351632782713697564708377512480822424424427860472021932020442561793661521977666004462761444888424514527184149534771973661359842409922853451658805373020710156360278490024501849560604188014411078905817541760644847068869637223652270635140785433156081860710691152022351981250334173356808733115892458489880806325799365010024188877697031582031087952199621387765390724553123480638007743778309623078517182705607625320285663243573498733490301814246597495587278410086211241714856781679974163
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mdm-qa.msgqa.wellsfargo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3a322989688f2a0bd18fac2db7b8e6a896da656e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName fe08e36385077ef5005889b389a94fed0f0a414f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (76 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mssl-crl.ws.symantec.com/PrivateCA/821017909-RSA-SHA256.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (128 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mssl-ocsp.ws.symantec.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mssl-aia.ws.symantec.com/PrivateCA/821017909-RSA-SHA256.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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