provostit.gmu.edu
Issued by R3
About this certificate
This digital certificate with serial number 03:2f:de:6e:fa:99:3d:d0:58:53:ca:28:67:c6:7a:a3:d0:e8 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=provostit.gmu.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:2f:de:6e:fa:99:3d:d0:58:53:ca:28:67:c6:7a:a3:d0:e8Serial Number (int): 277625793891026978114357617367298699677928
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 03:44:64:24:60:6b:dc:aa:99:ce:5a:a9:ab:f2:0a:ab:fb:61:9f:38
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 51:14:48:03:ed:8a:25:94:46:62:f2:c1:9b:fe:e0:9b:24:e5:aa:5d
Fingerprint (sha256): 00:e8:04:94:50:72:5d:26:cd:89:db:d0:11:61:98:55:12:4d:3d:40:1a:a8:1c:f7:43:12:7d:84:cb:f2:1d:68
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate provostit.gmu.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for provostit.gmu.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
provostit.gmu.edu
Other certificates including the domain name gmu.edu
(limited to 100 certificates)
lynda.gmu.edu
www.gmu.edu
administrativestate.gmu.edu
dshi.gmu.edu
mix.gmu.edu
eaglet.gmu.edu
www2.gmu.edu
surveys.c4i.gmu.edu
us.prod.campusgroups.com
stat.gmu.edu
healthcareers.gmu.edu
malthael.mesa.gmu.edu
club.gmu.edu
mars.gmu.edu
pbk.gmu.edu
corolla.mesa.gmu.edu
www.mix.gmu.edu
chhs.gmu.edu
us.prod.campusgroups.com
tls.automattic.com
*.physics.gmu.edu
ati.gmu.edu
volgenau.gmu.edu
campusimpactforum.gmu.edu
eastgermanposters.gmu.edu
gazette.gmu.edu
provostit.gmu.edu
mats.gmu.edu
qmc.gmu.edu
irr.gmu.edu
welcome2mason.gmu.edu
ularlington.gmu.edu
gec.gmu.edu
fiscal.gmu.edu
coursemedia.gmu.edu
docushare.gmu.edu
securedns.planmygift.org
casper.gmu.edu
jacklab.chss.gmu.edu
ott.gmu.edu
fndtadv1t.mesa.gmu.edu
gazette.gmu.edu
socialcomplexity.gmu.edu
test.gmu.edu
ncbid.gmu.edu
ippp.gmu.edu
anhpham.gmu.edu
computing.gmu.edu
gradfellows.gmu.edu
adr.gmu.edu
tedx.gmu.edu
cashiersoffice.gmu.edu
ready.gmu.edu
orientation.gmu.edu
cie.gmu.edu
publicservice.gmu.edu
greenmachine.gmu.edu
mvets.law.gmu.edu
iflood.vse.gmu.edu
explore.gmu.edu
us.prod.campusgroups.com
learningsolutions.gmu.edu
engage3.campuslabs.com
smfund.gmu.edu
transportation.gmu.edu
socialmedia.gmu.edu
edge-uc2.peopleadmin.com
socialcomplexity.gmu.edu
vision.gmu.edu
patriotlife.gmu.edu
ssac.gmu.edu
randed.gmu.edu
administrativestate.gmu.edu
test.gmu.edu
eip.gmu.edu
calendar.gmu.edu
pbk.gmu.edu
dining.gmu.edu
crdc.gmu.edu
chssweb2.gmu.edu
soa.gmu.edu
securedns.planmygift.org
gstf.gmu.edu
carterschool.gmu.edu
mason.gmu.edu
favs.gmu.edu
scylla.gmu.edu
aubreygrant.gmu.edu
ulbranding.gmu.edu
campusimpactforum.gmu.edu
edge-uc2.peopleadmin.com
robinsonprofessors.gmu.edu
pb.gmu.edu
web.offcampuspartners.com
artsmanagement.gmu.edu
printservices.gmu.edu
ventures.gmu.edu
csps.gmu.edu
call2.gmu.edu
assip.cos.gmu.edu
www.gmu.edu
administrativestate.gmu.edu
dshi.gmu.edu
mix.gmu.edu
eaglet.gmu.edu
www2.gmu.edu
surveys.c4i.gmu.edu
us.prod.campusgroups.com
stat.gmu.edu
healthcareers.gmu.edu
malthael.mesa.gmu.edu
club.gmu.edu
mars.gmu.edu
pbk.gmu.edu
corolla.mesa.gmu.edu
www.mix.gmu.edu
chhs.gmu.edu
us.prod.campusgroups.com
tls.automattic.com
*.physics.gmu.edu
ati.gmu.edu
volgenau.gmu.edu
campusimpactforum.gmu.edu
eastgermanposters.gmu.edu
gazette.gmu.edu
provostit.gmu.edu
mats.gmu.edu
qmc.gmu.edu
irr.gmu.edu
welcome2mason.gmu.edu
ularlington.gmu.edu
gec.gmu.edu
fiscal.gmu.edu
coursemedia.gmu.edu
docushare.gmu.edu
securedns.planmygift.org
casper.gmu.edu
jacklab.chss.gmu.edu
ott.gmu.edu
fndtadv1t.mesa.gmu.edu
gazette.gmu.edu
socialcomplexity.gmu.edu
test.gmu.edu
ncbid.gmu.edu
ippp.gmu.edu
anhpham.gmu.edu
computing.gmu.edu
gradfellows.gmu.edu
adr.gmu.edu
tedx.gmu.edu
cashiersoffice.gmu.edu
ready.gmu.edu
orientation.gmu.edu
cie.gmu.edu
publicservice.gmu.edu
greenmachine.gmu.edu
mvets.law.gmu.edu
iflood.vse.gmu.edu
explore.gmu.edu
us.prod.campusgroups.com
learningsolutions.gmu.edu
engage3.campuslabs.com
smfund.gmu.edu
transportation.gmu.edu
socialmedia.gmu.edu
edge-uc2.peopleadmin.com
socialcomplexity.gmu.edu
vision.gmu.edu
patriotlife.gmu.edu
ssac.gmu.edu
randed.gmu.edu
administrativestate.gmu.edu
test.gmu.edu
eip.gmu.edu
calendar.gmu.edu
pbk.gmu.edu
dining.gmu.edu
crdc.gmu.edu
chssweb2.gmu.edu
soa.gmu.edu
securedns.planmygift.org
gstf.gmu.edu
carterschool.gmu.edu
mason.gmu.edu
favs.gmu.edu
scylla.gmu.edu
aubreygrant.gmu.edu
ulbranding.gmu.edu
campusimpactforum.gmu.edu
edge-uc2.peopleadmin.com
robinsonprofessors.gmu.edu
pb.gmu.edu
web.offcampuspartners.com
artsmanagement.gmu.edu
printservices.gmu.edu
ventures.gmu.edu
csps.gmu.edu
call2.gmu.edu
assip.cos.gmu.edu
Certificate
The complete raw certificate details for provostit.gmu.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgISAy/ebvqZPdBYU8ooZ8Z6o9DoMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMDUyMDM2MzFaFw0yNDAzMDQyMDM2MzBaMBwxGjAYBgNVBAMT EXByb3Zvc3RpdC5nbXUuZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iX3DBBfqRQg9neJj5SfrQw7Yb0cgVotnO9pmk/DUYcUoCOBeJYwRBwxM7Q3 d7vd5wMOntSUmNvZCWuAeoRC+R0ivhl7DvtnVtoItuJfbDuXEzLyNN8wDjgO7lmJ lJ5ZEz2G68RffnH6b1osZLKV/rzbo8HfyoMYDkOGvymD4paPOxDfPFrivemMQpmk 0mVSqGedxa7WXQnkluKsKJrEZqDiH6Ohy3l3CUG5qTzhaYEyE0uDv8qsnN41sc+C iJJETtlyqnluTHrEQwCNWv03nhfyeb9NQDY61lFGwVHFWJZP8cxWmoyRYhZOixxg QtHdTKFyql45CwHCigO8+fvsFwIDAQABo4ICFDCCAhAwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBQDRGQkYGvcqpnOWqmr8gqr+2GfODAfBgNVHSMEGDAWgBQULrMXt1hW y65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6 Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iu b3JnLzAcBgNVHREEFTATghFwcm92b3N0aXQuZ211LmVkdTATBgNVHSAEDDAKMAgG BmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2ADtTd3U+LbmAToswWwb+ QDtn2E/D9Me9AA0tcm/h+tQXAAABjDvpP7gAAAQDAEcwRQIhALW8qUh8xzZwc+ai mIs1VeK4KWVL11LMJwRA0kmDZicIAiBQsvFWUwT4Xg+1UHWMxu24RqRbIqr60tr7 ch2QEIa5CwB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjDvp QaMAAAQDAEgwRgIhALpn9VRlsT2xIIvYgW8dEwESvuQDXaqC8duGvTjkr/FIAiEA 05ubUd8u8JEGP4b/ecTsWUHG9qt+aFt00FaAbmCRq7EwDQYJKoZIhvcNAQELBQAD ggEBAAb/J88A6iZXbWA1eaFEhIW972cteWp4JWzSVmVC9nqEkoYMHIqE926VnMnI 46B7BrT+2Rgfd8xfbhTFjOEmzUiw8SV8bvYhfkDUEW4AsDNa1HsY4WV41Ur5MC6/ XqTQTeKXuJC2Ouwl1DsDuRakeuTbaAIG66fL+bIqAbS1iOrAUh6ADs0ES1g0akiA Zj1kA6VAVCupdpU8j5G88/CTesX654vB7WPwjLSrOlJO37607HTeWXlYVumPLf9K cSkZn2DTKIde6LsZWH1/00BQYbLRI+sQ6lg7ISVrwI2kgrFGbUe1tsw3VeduLaQr P3yV58kJpcrdplM+DcUdMZCSoh0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0iX3DBBfqRQg9neJj5Sf rQw7Yb0cgVotnO9pmk/DUYcUoCOBeJYwRBwxM7Q3d7vd5wMOntSUmNvZCWuAeoRC +R0ivhl7DvtnVtoItuJfbDuXEzLyNN8wDjgO7lmJlJ5ZEz2G68RffnH6b1osZLKV /rzbo8HfyoMYDkOGvymD4paPOxDfPFrivemMQpmk0mVSqGedxa7WXQnkluKsKJrE ZqDiH6Ohy3l3CUG5qTzhaYEyE0uDv8qsnN41sc+CiJJETtlyqnluTHrEQwCNWv03 nhfyeb9NQDY61lFGwVHFWJZP8cxWmoyRYhZOixxgQtHdTKFyql45CwHCigO8+fvs FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 277625793891026978114357617367298699677928 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-05 20:36:31 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-04 20:36:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'provostit.gmu.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26528765295846635540208856658259011079842451342673548151590623069489957356275175975858542802934918587075217832136187864502945862798248012096061239062254531562950520566690072624140592872550893100562500906335355460412929309030058814553813982429853678472069909975817546078965912296689982449565835586128132090590846406684204182502386737277138648217071806889246704468201084340841691539650726553726723324598358555898120719290291375314503589976290847646445451201828307299448547934665013392044889066318777329020734804124529138148916775412410511652373642316990875625443875409912007958566938915567106849338263340349904448646167 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 03446424606bdcaa99ce5aa9abf20aabfb619f38 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'provostit.gmu.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c3be93fb80000040300473045022100b5bca9487cc7367073e6a2988b3555e2b829654bd752cc270440d24983662708022050b2f1565304f85e0fb550758cc6edb846a45b22aafad2dafb721d901086b90b007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c3be941a30000040300483046022100ba67f55465b13db1208bd8816f1d130112bee4035daa82f1db86bd38e4aff148022100d39b9b51df2ef091063f86ff79c4ec5941c6f6ab7e685b74d056806e6091abb1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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