psgt.earth.lsa.umich.edu

- University of Michigan -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number 14:a2:e6:d5:8a:22:d8:21:86:98:84:f0:77:a2:7b:80 was issued on by Internet2.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

University of Michigan

Organization: University of Michigan
Organization unit: Information Technology Services
State / Province: Michigan
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 14:a2:e6:d5:8a:22:d8:21:86:98:84:f0:77:a2:7b:80
Serial Number (int): 27430393879339470439213516021215427456
Serial Number lenght: 125 bits, 16 octets

SubjectKeyId: c4:03:b2:63:10:d1:bb:6f:e1:71:c6:48:01:17:97:35:8e:f2:a1:f0
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): f1:b0:29:8e:d4:39:d6:c3:91:e5:fd:07:b7:ea:73:8a:58:80:cb:5c
Fingerprint (sha256): 00:ae:e8:81:10:0e:fc:bd:a4:c2:59:83:68:85:ee:08:43:b3:b5:a0:e4:9d:55:01:72:45:54:f6:0c:66:f7:c6

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate psgt.earth.lsa.umich.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for psgt.earth.lsa.umich.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

psgt.earth.lsa.umich.edu

Other certificates including the domain name umich.edu

(limited to 100 certificates)
pconway.people.si.umich.edu
5708235679989760-fe2.pantheonsite.io
his-364y.hosp.med.umich.edu
*.pathology.med.umich.edu
clips.vpcomm.umich.edu
jealexa.people.si.umich.edu
cshl.engin.umich.edu
charvat.people.si.umich.edu
his-351t.hosp.med.umich.edu
staging.wdi.bus.umich.edu
ephraims.people.si.umich.edu
exchange.umich.edu
exp-e3-ext.med.umich.edu
paulscot.people.si.umich.edu
prodremedy.med.umich.edu
msnyd.people.si.umich.edu
uofmjosh.people.si.umich.edu
ppethick.people.si.umich.edu
clinicaltrials.med.umich.edu
margauxk.people.si.umich.edu
www.umms.med.umich.edu
its-thistle.adsroot.itcs.umich.edu
his-752y.hosp.med.umich.edu
keunhou.people.si.umich.edu
grip.umich.edu
carpepm.almonds.com
vidyo3.umms.med.umich.edu
remotesupport-qa.it.umich.edu
drgage.people.si.umich.edu
dkimme.people.si.umich.edu
accounts.itcs.umich.edu
sitemaker.umich.edu
gtabach.people.si.umich.edu
his-788y.hosp.med.umich.edu
maggiel.people.si.umich.edu
kencald.people.si.umich.edu
seas.umich.edu
message.umich.edu
joshilyn.people.si.umich.edu
mcneilgroup.chem.lsa.umich.edu
mjcantle.people.si.umich.edu
kunsingh.people.si.umich.edu
kafedewa.people.si.umich.edu
yuchengh.people.si.umich.edu
it.umich.edu
haoyoliu.people.si.umich.edu
fentonic.people.si.umich.edu
his-374x.hosp.med.umich.edu
quant.sites.uofmhosting.net
earnestw.people.si.umich.edu
anjshah.people.si.umich.edu
chowcy.people.si.umich.edu
chollad.people.si.umich.edu
swborders.sites.uofmhosting.net
alicla.people.si.umich.edu
5708235679989760-fe2.pantheonsite.io
jobs.alumni.umich.edu
jpasche.people.si.umich.edu
quadrangle.law.umich.edu
mibytes.eecs.umich.edu
bssp.sites.uofmhosting.net
bmes.bme.umich.edu
nabgilby.people.si.umich.edu
www-a1.lsa.umich.edu
yunchang.people.si.umich.edu
tle.soe.umich.edu
veenap.people.si.umich.edu
mottgolf.sites.uofmhosting.net
kessen.people.si.umich.edu
api-esb.it.umich.edu
uprint.umd.umich.edu
crtye.people.si.umich.edu
hsseo.people.si.umich.edu
mlearningreports.med.umich.edu
eecs494-server-b.eecs.umich.edu
jjstant.people.si.umich.edu
bthoma.people.si.umich.edu
abudziak.people.si.umich.edu
msis.med.umich.edu
phzhao.people.si.umich.edu
umchina.umich.edu
5708235679989760-fe2.pantheonsite.io
wgluc.people.si.umich.edu
cluster3.technolutions.net
clasp-research.engin.umich.edu
cryoem.lsi.umich.edu
yckuo.people.si.umich.edu
mobley.lab.medicine.umich.edu
lila.rad.med.umich.edu
cjburwe.people.si.umich.edu
pratapak.people.si.umich.edu
campaign.law.umich.edu
chhecht.people.si.umich.edu
prt-819y.prt.med.umich.edu
shihyi.people.si.umich.edu
chirayil.people.si.umich.edu
ericroth.people.si.umich.edu
studentemployment.umich.edu
psgt.earth.lsa.umich.edu
desigosys2.med.umich.edu

Certificate

The complete raw certificate details for psgt.earth.lsa.umich.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9bEPWbq+wlneGZ8gw7+J
7g5+p4Jee7jjLzH2a/+i50LbjLXTK3G9gLWzLyvfXekChABkOm8c036TisSgtR6V
sruBqNW2BI7ANKdjEX2snh5cC5tt6k910nOSU0YipMAFjHbJfBjFIfuDGNnR9Nnt
0SCHPRAnhMBAS9I1Tyde/uHVfMJNu64JH52wqL+ZkMpY+A2o3DFE7Vw1DzS24vVH
Om10j4Sx0U4uRadkwv7v/dHp/xvEgZ6PwGzj5aR6e9dGH7r4hY905I8tlg6NAAMW
Zp8WGRGoAJ6rZpba2FoCUT8JROde2s5NdWn9rzcaFZxq+tDjjzS8i3AWalDEghHP
BQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 27430393879339470439213516021215427456
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-20 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-21 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Michigan'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Michigan'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Technology Services'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'psgt.earth.lsa.umich.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31015696238541798345525810327243042013708556650589028732150461275933578959328922964613813780795711041676153876926622387724073371658406604389820233343825452680007007120640442635914032341087368733424925566622697702385029887787524770555116458744793055200690809476407285229804864577894537811434820753698116499957608654577761058528475195961129576586983213579773759834465041376567014271443420926284245718283608891912433709701111855837171987400321967699875590021881680358687786509374922694180832321960424208057443782322088771196069102344514336491518078857531456049412547530504768216423712789851719650188304550589446032051973
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c403b26310d1bb6fe171c648011797358ef2a1f0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psgt.earth.lsa.umich.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0061bd91cde38c9962e370b8498d81a0ef13372ba609f7d80feea6fa543b4e8fa95465298561fa532a0921180128eabb80513e457900a06f97cc3c8bb7004db857dd56472b76e66db756b0b46446845b9831116551c5efd51ad8c0229d47e054f2b26adc00b86bc694f4503f29e8a5a4e220ec76c1d2194cb4424ea64de058d0e08b585d8a634ce6fb636480a6a35b89c32483218ff462fda0c9272a710e4b81a0466315a2c3234427bec5de45a97a7b7c04b9e7e11f43fba2e518b6521225dcc073632d9ecadbd5a3748c9e0115c281db2ee3e7988679fe2b0153c6f259898e34021f1531ab5046e14d2de4039101f29cbaaa413b658e70fbc92f0cb0b92ca96c