app1.massdot.state.ma.us

- Commonwealth Of Massachusetts -

Issued by DigiCert SHA2 Secure Server CA

About this certificate

This digital certificate with serial number 0b:02:b7:40:ab:37:75:d5:03:ae:c0:e6:8e:f6:e2:af was issued on by DigiCert Inc.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Commonwealth Of Massachusetts

Organization: Commonwealth Of Massachusetts
Organization unit: Massachusetts Department Of Transportation
State / Province: Massachusetts
Locality: Boston
Country: US

DigiCert Inc

Organization: DigiCert Inc
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0b:02:b7:40:ab:37:75:d5:03:ae:c0:e6:8e:f6:e2:af
Serial Number (int): 14635609351899997471633283319246283439
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: d1:17:e4:be:61:34:a4:d2:09:66:b9:1e:0a:cd:19:ff:7e:dd:b7:1f
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2

Fingerprint (sha1): dd:eb:42:19:ee:b0:cb:65:1e:c7:ef:fc:00:37:87:db:81:6a:44:e4
Fingerprint (sha256): 02:df:22:5a:bb:6e:3e:c9:42:d5:89:32:6e:e3:7b:c9:aa:5f:2b:59:a0:35:35:40:bf:db:1a:0c:0c:fc:50:61

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl

Check the revocation status for certificate app1.massdot.state.ma.us

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for app1.massdot.state.ma.us

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

app1.massdot.state.ma.us

Other certificates including the domain name state.ma.us

(limited to 100 certificates)
diaboinf-prod.dia.state.ma.us
vgapps-training.hhs.state.ma.us
secure.dor.state.ma.us
boscpauth.jud.state.ma.us
coplink.chs.state.ma.us
wiki.state.ma.us
hwyweb.massdot.state.ma.us
MyTRSPRDESS.trb.state.ma.us
maexcisestamp.dor.state.ma.us
swa.projectcontrols.massdot.state.ma.us
masshealth.ehs.state.ma.us
foreclosures.dob.state.ma.us
inet.chia.state.ma.us
massclearinghouse.ehs.state.ma.us
bcn3-web-uat.dta.state.ma.us
archives.lib.state.ma.us
ibmmq-st.hhs.state.ma.us
ctrwebintqa.osc.state.ma.us
email.state.ma.us
envdvaccaca.elicensing.state.ma.us
sso.hhs.state.ma.us
mcef.jud.state.ma.us
atlas-portal.massdot.state.ma.us
itd-sam-lws3.itd.state.ma.us
www.sec.state.ma.us
icori-train.chs.state.ma.us
earlyedncareop.eec.state.ma.us
trcsd.jud.state.ma.us
bcn-websrv-prod.dta.state.ma.us
app1.massdot.state.ma.us
sopsmeta.ehs.state.ma.us
csg.jud.state.ma.us
maps.massgis.state.ma.us
matris.dph.state.ma.us
wfb.dor.state.ma.us
legacyhscdev.hhs.state.ma.us
masstraffic.massdot.state.ma.us
virtualgatewaydw.ehs.state.ma.us
reportingsdkdev10.itd.state.ma.us
hhsvgapps03.hhs.state.ma.us
eohhsaimqa.ehs.state.ma.us
med-web-sftp.dph.state.ma.us
ieats-cg-cert.hhs.state.ma.us
www.sec.state.ma.us
sdm-uss.ehs.state.ma.us
hhsvgapps01-training.hhs.state.ma.us
vgapps3-qa.hhs.state.ma.us
incapsula.com
uatccfa.eec.state.ma.us
traingateway.edu.state.ma.us
checkalicense.hhs.state.ma.us
ieats-cg-cert.hhs.state.ma.us
rmvdashboard.massdot.state.ma.us
maps.env.state.ma.us
ecemp.chs.state.ma.us
reportingst10.itd.state.ma.us
icori-train.chs.state.ma.us
gicselfservice.gic.state.ma.us
reportingsdkqa10.itd.state.ma.us
gisdev.massdot.state.ma.us
webfusion.chs.state.ma.us
csg.jud.state.ma.us
aws-h92spt.hrcms.state.ma.us
reportingdev10.itd.state.ma.us
maps.massgis.state.ma.us
pmas-app.dcp.state.ma.us
atlas-myrmv.massdot.state.ma.us
sso-training.hhs.state.ma.us
elicensing.state.ma.us
ds1.massdot.state.ma.us
MyTRSUATMSS.trb.state.ma.us
cms.mgc.state.ma.us
gisstg.massdot.state.ma.us
comit.state.ma.us
securemail.state.ma.us
www.sport.state.ma.us
foreclosures.dob.state.ma.us
securefile.state.ma.us
wifi.massdot.state.ma.us
maps.env.state.ma.us
dlsgateway.dor.state.ma.us
abpweb.tre.state.ma.us
envtsaccadm.elicensing.state.ma.us
hwywebuat.massdot.state.ma.us
ibmmq-st.hhs.state.ma.us
acc.elicensing.state.ma.us
ufr.osd.state.ma.us
IMP-USE2-VPN.impact.dot.state.ma.us
wf.dor.state.ma.us
ecse.cse.state.ma.us
gateway.edu.state.ma.us
massachusettsgatewayservice.us
atm-dev.dor.state.ma.us
dor-uca-1.dor.state.ma.us
elr.dph.state.ma.us
coplink.chs.state.ma.us
matris.dph.state.ma.us
wiki.state.ma.us
dlsgateway.dor.state.ma.us
ehs-pr-mmis-lbase1.ehs.state.ma.us

Certificate

The complete raw certificate details for app1.massdot.state.ma.us in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBqbI/YvUN5JmsZGWFa6
OJ000X9pJuhMPH5SrL2iUBat1gl0ObPVZQMT6NJ0sotKTUo/n1fI1pv71Ny3EeXn
VWuIAqHR/qPQlZSv+6pByfEwMdtAQPIvQyzdvN72zYyJsZnnOKjvhOIYC3Q+jAwi
+YoDgri3zEmftBvDHFy7iOqSr6uCMxQsDMB5MQjRhT9HU2r/RuYuyz6XZwU6yiP2
iJLa+feFlG8PfYnpl49ebhJ5kFlbDL0Xs+ng1V6nispqZnvTcvf4Y29UcZvG1MRl
1/B1cdrJZLG87zdGLX/tNNtSvCubPZHv4Ym5E/L9Rz7Lf2zty9drSk5jEQot/eNn
VQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 14635609351899997471633283319246283439
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-21 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-26 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Massachusetts'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Boston'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Commonwealth Of Massachusetts'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Massachusetts Department Of Transportation'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'app1.massdot.state.ma.us'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21726108370368123185942459755090085135466057122068494213707059316933329718712991756593606667138029009701054896865457737357451914490544358130515815251818683300048468448743039104329992250495206030550673092644361614086455466445638851224294832812169512556402974544910652887766689309354778221855658855918366077243980889861741409339370164545378814927123933689611184599689441851170705890055088357255340020293712298091546077120914076946564050757133495388505892869036172969786831113760605184863693385252251108970540187256808819827500020987736173514855766998834350455476625012703627273543144781016331886050621417787936978724693
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d117e4be6134a4d20966b91e0acd19ff7eddb71f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app1.massdot.state.ma.us'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001655beb0a470000040300463044022073836bfebfeb7f25c049ab5495ce8ead9644e668dc42d39782deae3d6e46b5de02205e2672a20d1752d10cfa64b6a11fc40bb8dd268d21992e25cea114dda2c54fbd0075008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001655beb0a0d00000403004630440220508470eef25aa4e255b90ba6c6391a5f869ab66e96b3ea676da197a958d3da9002204bb61fb280f3bcd0a551776ceac01a0621d1503bbb8475099d2ebdbb2c478ee1
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0002893cab53ab3cb2646efa06d23841518a8d8e5078c568044dbc142944d0d7feeb268cf16169f6695a3f7466fe50541bb835a36020f1137f74632bc93c4e33eb2a0cd8acf4c1d1decc2276e4fbc8212c444440cde07aae5032c7ef5443250bedac0de843db43ab50199d144332989d6a971ade808991e4a4340f39b604ef1d799d3c96c9f59876f8a1c0fb4a65e98c34a3faab027772e1ae6b6b5a719574dd872b09da029e66536d3a57d8f5140b81f35f7163b578736b90d55b9ca95bd28309f39f2bf79fd896cc9b32e408353bfcd8b88d79f542ff79ee458c3edcee6161b984f40518223e3f172b8059a21832136c06ffb566c248bd0be42c86d38b6c124d