news.seattle.gov
Issued by R3
About this certificate
This digital certificate with serial number 03:36:e1:0d:8f:62:dd:cd:ed:9e:7c:b0:bb:f5:8b:d3:70:15 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=news.seattle.gov
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:36:e1:0d:8f:62:dd:cd:ed:9e:7c:b0:bb:f5:8b:d3:70:15Serial Number (int): 280011252316139762378731195653393975832597
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: de:7a:25:dd:53:24:54:f6:4d:ed:a4:68:5c:a4:b4:69:ec:21:70:55
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 9d:88:ba:0d:75:30:5e:7c:b2:44:98:00:3c:49:fa:99:bb:3b:fc:f6
Fingerprint (sha256): 01:44:90:b0:b0:76:de:52:a9:04:07:c6:94:fb:92:53:62:44:ad:1c:c3:09:b0:64:f3:fa:b3:7b:a8:1d:9b:58
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate news.seattle.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for news.seattle.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
news.seattle.gov
Other certificates including the domain name seattle.gov
(limited to 100 certificates)
acceladevextsvc.seattle.gov
tls.automattic.com
my.seattle.gov
vsrvcjisprod01.seattle.gov
housing.seattle.gov
alert.seattle.gov
atyourservice.seattle.gov
news.seattle.gov
welcoming.seattle.gov
www.spdblotter.seattle.gov
atyourservice.seattle.gov
murray.seattle.gov
gtechna-test.seattle.gov
powerlines.seattle.gov
techtalk.seattle.gov
harrell.seattle.gov
council.seattle.gov
spuconnect.seattle.gov
slice.seattle.gov
designreviewoutreach.seattle.gov
wald1.seattle.gov
login.seattle.gov
juarez.seattle.gov
homelessness.seattle.gov
communityconnector.seattle.gov
amwo.seattle.gov
www.seattle.gov
strauss.seattle.gov
cosip-api.seattle.gov
rainwise.seattle.gov
talk2.seattle.gov
cttab.seattle.gov
perspectives.seattle.gov
data.seattle.gov
citylight.seattle.gov
gisdata.seattle.gov
council.seattle.gov
herbold.seattle.gov
mobe.seattle.gov
inweb.seattle.gov
herbold.seattle.gov
council.seattle.gov
webeoc.seattle.gov
consultants.seattle.gov
slice.seattle.gov
centerspotlight.seattle.gov
mydpdservicesqa.seattle.gov
opengis.seattle.gov
centerspotlight.seattle.gov
email.seattle.gov
webqa6.seattle.gov
webqa7.seattle.gov
web1.seattle.gov
greenspace.seattle.gov
www.perspectives.seattle.gov
council.seattle.gov
seattlerdy.seattle.gov
bagshaw.seattle.gov
pgp.seattle.gov
www.frontporch.seattle.gov
gonzalez.seattle.gov
resupdates.seattle.gov
thebuyline.seattle.gov
housing.seattle.gov
maps.seattle.gov
slice.seattle.gov
parkways.seattle.gov
data.seattle.gov
connect.seattle.gov
data.seattle.gov
smcivrextqa.seattle.gov
capitalprojects.seattle.gov
obrien.seattle.gov
climatechange.seattle.gov
data.seattle.gov
frontporch.seattle.gov
cosip-api-stage.seattle.gov
www.seattle.gov
bagshaw.seattle.gov
spo.seattle.gov
civiform.seattle.gov
tls.automattic.com
connect.seattle.gov
email.seattle.gov
cosaccela.seattle.gov
itchat.seattle.gov
citylight.seattle.gov
accelaextsvc.seattle.gov
durkan.seattle.gov
news.seattle.gov
hrisapi.seattle.gov
sawant.seattle.gov
webqa6.seattle.gov
cos-stage-nlb.seattle.gov
www.thescoop.seattle.gov
married.seattle.gov
olp.seattle.gov
consultants.seattle.gov
web1.seattle.gov
durkan.seattle.gov
tls.automattic.com
my.seattle.gov
vsrvcjisprod01.seattle.gov
housing.seattle.gov
alert.seattle.gov
atyourservice.seattle.gov
news.seattle.gov
welcoming.seattle.gov
www.spdblotter.seattle.gov
atyourservice.seattle.gov
murray.seattle.gov
gtechna-test.seattle.gov
powerlines.seattle.gov
techtalk.seattle.gov
harrell.seattle.gov
council.seattle.gov
spuconnect.seattle.gov
slice.seattle.gov
designreviewoutreach.seattle.gov
wald1.seattle.gov
login.seattle.gov
juarez.seattle.gov
homelessness.seattle.gov
communityconnector.seattle.gov
amwo.seattle.gov
www.seattle.gov
strauss.seattle.gov
cosip-api.seattle.gov
rainwise.seattle.gov
talk2.seattle.gov
cttab.seattle.gov
perspectives.seattle.gov
data.seattle.gov
citylight.seattle.gov
gisdata.seattle.gov
council.seattle.gov
herbold.seattle.gov
mobe.seattle.gov
inweb.seattle.gov
herbold.seattle.gov
council.seattle.gov
webeoc.seattle.gov
consultants.seattle.gov
slice.seattle.gov
centerspotlight.seattle.gov
mydpdservicesqa.seattle.gov
opengis.seattle.gov
centerspotlight.seattle.gov
email.seattle.gov
webqa6.seattle.gov
webqa7.seattle.gov
web1.seattle.gov
greenspace.seattle.gov
www.perspectives.seattle.gov
council.seattle.gov
seattlerdy.seattle.gov
bagshaw.seattle.gov
pgp.seattle.gov
www.frontporch.seattle.gov
gonzalez.seattle.gov
resupdates.seattle.gov
thebuyline.seattle.gov
housing.seattle.gov
maps.seattle.gov
slice.seattle.gov
parkways.seattle.gov
data.seattle.gov
connect.seattle.gov
data.seattle.gov
smcivrextqa.seattle.gov
capitalprojects.seattle.gov
obrien.seattle.gov
climatechange.seattle.gov
data.seattle.gov
frontporch.seattle.gov
cosip-api-stage.seattle.gov
www.seattle.gov
bagshaw.seattle.gov
spo.seattle.gov
civiform.seattle.gov
tls.automattic.com
connect.seattle.gov
email.seattle.gov
cosaccela.seattle.gov
itchat.seattle.gov
citylight.seattle.gov
accelaextsvc.seattle.gov
durkan.seattle.gov
news.seattle.gov
hrisapi.seattle.gov
sawant.seattle.gov
webqa6.seattle.gov
cos-stage-nlb.seattle.gov
www.thescoop.seattle.gov
married.seattle.gov
olp.seattle.gov
consultants.seattle.gov
web1.seattle.gov
durkan.seattle.gov
Certificate
The complete raw certificate details for news.seattle.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgISAzbhDY9i3c3tnnywu/WL03AVMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMTkyMDI5MDRaFw0yNDAxMTcyMDI5MDNaMBsxGTAXBgNVBAMT EG5ld3Muc2VhdHRsZS5nb3YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtN3SUQZFRmxdYqpuFdHDS4RO0ftoMIs1EjP8BgZIw2jh6WwvJo+uPd/HH6vre SochZjSUy6MVUKr7Y0DZi7ef8UOOXvqtqEWVKnhxhZH+Fu9+zBEcBRvy394+2G1r 2/UDmXo/KtYaCqD28f3LM7gyU+rv1zQ68OQtn7mpyAhFWBgs3daf8OzbWcAtUOpj QAogGPo6hrDPqhWurhrdE6ZgHsLZ+fn8IxoK/3YmOFcZH7RypDUdOikWx25kt3oN Aum8lUMgtxnlCVGaaOUrmGauONEWdq1OXjcWQYHU9tN+nnSfcnl8kfwZCT/vGgoW 9f/4Ivi2OOouy36ywi4taPFPAgMBAAGjggISMIICDjAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFN56Jd1TJFT2Te2kaFyktGnsIXBVMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMBsGA1UdEQQUMBKCEG5ld3Muc2VhdHRsZS5nb3YwEwYDVR0gBAwwCjAIBgZn gQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgDatr9rP7W2Ip+bwrtca+hw kXFsu1GEhTS9pD0wSNf7qwAAAYtJ14npAAAEAwBHMEUCIQCssmwZI57cm6Dqp1Hu jp8Lp1MQ/ERo6rh4+uXsEzGYKwIgB1cz1KQUBEox5ZHINV3kGuTBNgNebkIyba6l goOa0GMAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYtJ14nM AAAEAwBHMEUCIQDTQI/IduiflPpXCkNreWtf9yuMpjj5leTX1dxTGdzphwIgAk4K yqtc9zUMDEOn5zcDPhq7ZWEwZhkmNyPdWR84XY8wDQYJKoZIhvcNAQELBQADggEB ADD19sm8P1MXd4M5/TwOz4+uHNhh2/eosAsHw1BBWu/be7S/DrKJcGLzKlpalNWf ixQzd8SgB7WADY5fCP+D7xYSidTL7BpUWy0l0e9s7SMgY5Ime9TbixYkWGhHZ3G0 RR3Rubs3oAotsRkydNaHDsWK0/NfMne0wQDnFwZP5ja3JSBe6ZsvKk1mRft2A7W+ qe7neN6B/xygVAX3ivJgsZFtSNY19UjBv122vESewU932nswBjLiYbDTit/KVg9z n/gIW3KBMFd3kHKN39rHIPz8TqhIVUkvBiaz55pbj3ioGAsORMKdwrUYHl9/3b55 9iG8vBXEBEeL36uQtmWQBJA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Td0lEGRUZsXWKqbhXRw 0uETtH7aDCLNRIz/AYGSMNo4elsLyaPrj3fxx+r63kqHIWY0lMujFVCq+2NA2Yu3 n/FDjl76rahFlSp4cYWR/hbvfswRHAUb8t/ePthta9v1A5l6PyrWGgqg9vH9yzO4 MlPq79c0OvDkLZ+5qcgIRVgYLN3Wn/Ds21nALVDqY0AKIBj6Ooawz6oVrq4a3ROm YB7C2fn5/CMaCv92JjhXGR+0cqQ1HTopFsduZLd6DQLpvJVDILcZ5QlRmmjlK5hm rjjRFnatTl43FkGB1PbTfp50n3J5fJH8GQk/7xoKFvX/+CL4tjjqLst+ssIuLWjx TwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 280011252316139762378731195653393975832597 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-19 20:29:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-17 20:29:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'news.seattle.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29945824347590620956973319032413791527455873807506455371259208224772806158315976754541770433563348122754576864238734512806736625274989684608583909145408000194503841562302095779964870943699018452837507939900927124301704275684966986899068651655984236238309831423218396858946869477095407693624342799407745368778809625345766685024555386359541036497071569446501237963421855537899908565714082969959893061972809239170254630628926733992756084001175475429123140207815655455598074401911663999589797985978770473339367407945473248914193049379031776671053212793610834004350566194939566632422341089220471466622415624085514337448271 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) de7a25dd532454f64deda4685ca4b469ec217055 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'news.seattle.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b49d789e90000040300473045022100acb26c19239edc9ba0eaa751ee8e9f0ba75310fc4468eab878fae5ec1331982b0220075733d4a414044a31e591c8355de41ae4c136035e6e42326daea582839ad063007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b49d789cc0000040300473045022100d3408fc876e89f94fa570a436b796b5ff72b8ca638f995e4d7d5dc5319dce9870220024e0acaab5cf7350c0c43a7e737033e1abb6561306619263723dd591f385d8f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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