taf.ncitl.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:92:e6:51:bd:d7:61:72:71:60:93:f4:d6:0e:4e:02:b0:8e was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=taf.ncitl.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:92:e6:51:bd:d7:61:72:71:60:93:f4:d6:0e:4e:02:b0:8eSerial Number (int): 398436516163013702653591687914191461724302
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 1f:25:e6:26:bf:37:82:f8:21:9b:8a:f8:52:8a:2b:5d:53:17:e0:95
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 1e:04:02:f3:74:ba:9c:08:df:d2:5a:22:43:3e:1e:40:60:7f:d2:5e
Fingerprint (sha256): 01:59:de:1d:cc:28:e6:1c:6b:b6:da:a5:26:44:0b:dc:fb:8d:f3:90:81:97:dd:b4:91:b4:c9:26:e4:0e:93:12
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate taf.ncitl.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for taf.ncitl.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
taf.nci.fr
taf.ncitl.com
taf.ncitl.com
Other certificates including the domain name ncitl.com
(limited to 100 certificates)
taf.ncitl.com
ftp.ncitl.com
taf.ncitl.com
psion.ncitl.com
taf.ncitl.com
edi.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
mail.nci.fr
taf.ncitl.com
mail.nci.fr
chargeur.nci.fr
taf.ncitl.com
chargeur.nci.fr
taf.ncitl.com
rt.ncitl.com
mail.nci.fr
rt.ncitl.com
taf.ncitl.com
taf.ncitl.com
psion.ncitl.com
mail.nci.fr
mail.nci.fr
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
edi.ncitl.com
rt.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
mail.nci.fr
taf.ncitl.com
taf.ncitl.com
mail.nci.fr
chargeur.nci.fr
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
ftp.ncitl.com
taf.ncitl.com
psion.ncitl.com
taf.ncitl.com
edi.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
mail.nci.fr
taf.ncitl.com
mail.nci.fr
chargeur.nci.fr
taf.ncitl.com
chargeur.nci.fr
taf.ncitl.com
rt.ncitl.com
mail.nci.fr
rt.ncitl.com
taf.ncitl.com
taf.ncitl.com
psion.ncitl.com
mail.nci.fr
mail.nci.fr
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
edi.ncitl.com
rt.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
mail.nci.fr
taf.ncitl.com
taf.ncitl.com
mail.nci.fr
chargeur.nci.fr
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
taf.ncitl.com
Certificate
The complete raw certificate details for taf.ncitl.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXjCCBUagAwIBAgISBJLmUb3XYXJxYJP01g5OArCOMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMTYxNzMwNTdaFw0y MDAyMTQxNzMwNTdaMBgxFjAUBgNVBAMTDXRhZi5uY2l0bC5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDjw0CoTS1Je0+FLUFk/aOAbOnd5NjRAGu2 T8pQvdvpma8JgjQEMk8C8Zb7vCFCobb62P4ij7yf5MUQkk3W7OijxZOr1y0UvNx1 If5zZx6bAOWPZI2NaCygd5+KBANFgWQn7rjElsPpwKMqSaVP20N9Pkl8TxwWSGVJ Tb73rxhDF6d8mzz6NWt3Vv4NyXhgvOYQu97C7z3cK+Q+P+76NM1PTvMgh7L0XGsV Mzdjc9G42HTa7wBClaikbxz7U75u6c0Ho+HGFOWfPuwC32n0XflTWuraVp/Q8PyY Okr1RHg1aqmldsoAr2HkZonp4Q9uBdFqwtXH/TKYgdRkBTmMub1WHVXFfHX9dom/ 4XSyRc/D9SFeKAUGNl35pp9vppA16BQWHDuC/EaAMfKRAvMp8khskPFbiJUMgiVg ygBBu0HjxaBBAf+hNICTvXbsQW1PWcAjYyUn6JluFHQfhKTAu6YkK+oYUjJ5UcDQ KBQlkgRC1BQCFqsDCAdvASJqERZg8C26Za7aQlbhey4jkFNXYN2MzkpOUP5/A425 H+2bM2dcvVBHvAEeOQCQ+iMTbEaSBgJCTG0s6s0UbkP+J49s+55PqnCKq7oSxchy awmBdL0PIlSIOc5smsqCt1f+7hcaGkCMsyTe52LXhREbyMMaVkkWlesdLnqlmksB on4vxI+EaQIDAQABo4ICbjCCAmowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQfJeYm vzeC+CGbivhSiitdUxfglTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMCQGA1UdEQQdMBuCCnRhZi5uY2kuZnKCDXRhZi5u Y2l0bC5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEE AdZ5AgQCBIH1BIHyAPAAdwDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6y cwAAAW51e3tLAAAEAwBIMEYCIQDtVaJVSs9PRJH+I/3sHbEqXZd7qLt/ObmMA7Fj LxKBcQIhAKRZmGJ+wKYKCWI8ZNJbW6nGK6HffE2JQdeLjyrZZrSpAHUAB7dcG+V9 aP/xsMYdIxXHuuZXfFeUt2ruvGE6GmnTohwAAAFudXt7cQAABAMARjBEAiAVKp8/ T7DIrx62fqx6y5MOx043Cw0Fru4g/c5BrPwbZAIgYUXM+LrTH1f0xXU7tk7PMSp3 U+YLH+keraflrpvwzHEwDQYJKoZIhvcNAQELBQADggEBAFOdLhsQ0hx0SgZMbPRk 5EEJaDiaJTg66TCo8jSwpPFP9phPdVhZE9I9bHAsDv50EbYWx/a+5YwFrLaG9+eT XcvodPaUPvK7sHA0VH3F3+sIyU5pPtAhkH5xvUiZPTpzak8RhCUZ5q3HEYxgNPOb 0fVBsXnfwV0Q+9t64jpC70hp0f3rInUOn/Go6ydrEccttsMdLf7MTuYsn1nEiheH nlMSPBcz/RkxLboGDHJ0PNt42ffF8olyxmI/qQQ55GypZ3Jk7D0OwpXjR8+A0P0q 4TgOefeLaLYAmJoM9bLvtEf1BpDrtRCDgJ4Ac52IvV75rnrZ8KD+G6HDo/PSxBSn dsg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA48NAqE0tSXtPhS1BZP2j gGzp3eTY0QBrtk/KUL3b6ZmvCYI0BDJPAvGW+7whQqG2+tj+Io+8n+TFEJJN1uzo o8WTq9ctFLzcdSH+c2cemwDlj2SNjWgsoHefigQDRYFkJ+64xJbD6cCjKkmlT9tD fT5JfE8cFkhlSU2+968YQxenfJs8+jVrd1b+Dcl4YLzmELvewu893CvkPj/u+jTN T07zIIey9FxrFTM3Y3PRuNh02u8AQpWopG8c+1O+bunNB6PhxhTlnz7sAt9p9F35 U1rq2laf0PD8mDpK9UR4NWqppXbKAK9h5GaJ6eEPbgXRasLVx/0ymIHUZAU5jLm9 Vh1VxXx1/XaJv+F0skXPw/UhXigFBjZd+aafb6aQNegUFhw7gvxGgDHykQLzKfJI bJDxW4iVDIIlYMoAQbtB48WgQQH/oTSAk7127EFtT1nAI2MlJ+iZbhR0H4SkwLum JCvqGFIyeVHA0CgUJZIEQtQUAharAwgHbwEiahEWYPAtumWu2kJW4XsuI5BTV2Dd jM5KTlD+fwONuR/tmzNnXL1QR7wBHjkAkPojE2xGkgYCQkxtLOrNFG5D/iePbPue T6pwiqu6EsXIcmsJgXS9DyJUiDnObJrKgrdX/u4XGhpAjLMk3udi14URG8jDGlZJ FpXrHS56pZpLAaJ+L8SPhGkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 398436516163013702653591687914191461724302 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-16 17:30:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-14 17:30:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'taf.ncitl.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 929190769773067495235268017341104179100282270962340745713257486357365267094146779728856440092136567336421502493457309032837963817132272967287193349526377141673220834576688686655037540678339418099829981124505342180388036940475717569876641326917561205610193213033880290903669431793527637250061161956197999874650973612178245837400405650213184559388267067376256077976849467469619334498455433003529205191032381172946669065034939964031431458917599840743128780691504117461948909223522604169343758015030700178090130961940164465228978719324768074260024684440366992715064976496676326826662785649372680912651506121765467860740229709359523181059041029847423686970489797661565975297008030259545059791282358521875812113093462530411254287544265824357068534979390030609976883529983315743709986683922548491722067927763140542060603258205750428299874150435275042252852048551857116479308864131428457348289491774526218039348123070650662728578063756194651916033464700410605203295529481827979540968700490214243532541009538742097875948644393163944097830821168802885984439960890480502644445586408032507576705143975960224641540138165639408421505341800653067498120367427932146807891691735490242429360305060994801390164736552806474493801355941373000419361391721 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1f25e626bf3782f8219b8af8528a2b5d5317e095 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taf.nci.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taf.ncitl.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016e757b7b4b0000040300483046022100ed55a2554acf4f4491fe23fdec1db12a5d977ba8bb7f39b98c03b1632f128171022100a45998627ec0a60a09623c64d25b5ba9c62ba1df7c4d8941d78b8f2ad966b4a900750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e757b7b7100000403004630440220152a9f3f4fb0c8af1eb67eac7acb930ec74e370b0d05aeee20fdce41acfc1b6402206145ccf8bad31f57f4c5753bb64ecf312a7753e60b1fe91eada7e5ae9bf0cc71 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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