ja3yaq.ampr.org
Issued by R3
About this certificate
This digital certificate with serial number 03:14:c6:43:24:77:14:a5:39:fc:3d:65:e0:25:06:95:8e:6f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ja3yaq.ampr.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:14:c6:43:24:77:14:a5:39:fc:3d:65:e0:25:06:95:8e:6fSerial Number (int): 268406040900355730902867403967147189571183
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2f:b4:f8:0d:37:ed:80:ca:58:0b:16:ec:aa:02:18:20:7c:60:eb:47
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 67:63:e8:44:fe:58:07:26:2a:69:de:82:49:22:a6:b6:f8:7a:4d:e0
Fingerprint (sha256): 04:7a:9a:c9:c3:3e:8e:d0:31:3c:fb:f6:d3:8e:2f:f1:fb:8c:a1:4d:6e:ec:63:2a:e4:20:25:4c:22:5a:97:52
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ja3yaq.ampr.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ja3yaq.ampr.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ja3yaq.ampr.org
Other certificates including the domain name ampr.org
(limited to 100 certificates)
n1uro.ampr.org
db0gw-i.ampr.org
sp2l.ampr.org
jplarc.ampr.org
f4mzi.ampr.org
ja3yaq.ampr.org
sp2l.ampr.org
db0gw-i.ampr.org
www.n0qbj.ampr.org
mattermost.pi9noz.ampr.org
hosting.va4wan.ampr.org
as15780.ampr.org
www.crarc.ampr.org
www.n0qbj.ampr.org
ja3yaq.ampr.org
f4mzi.ampr.org
www.stagecraft.cx
de.ampr.org
jplarc.ampr.org
f5pql.ampr.org
hoseline.pd0mz.ampr.org
www.stagecraft.cx
www.crarc.ampr.org
jplarc.ampr.org
wiki.ampr.org
sp2l.ampr.org
f4mzi.ampr.org
n1uro.ampr.org
as15780.ampr.org
www.pb0fh.ampr.org
www.ampr.org
ja3yaq.ampr.org
portal.ampr.org
portal.ampr.org
f5pql.ampr.org
de.ampr.org
www.pb0fh.ampr.org
db0gw-i.ampr.org
www.pb0fh.nl
de.ampr.org
pi2shb.ampr.org
sp2l.ampr.org
db0gw-i.ampr.org
ampr.org
bm-lastheard.pi9noz.ampr.org
www.n0qbj.ampr.org
www.pb0fh.ampr.org
wiki.ampr.org
weblog.pe1pqf.ampr.org
f5pql.ampr.org
www.ampr.org
db0gw-i.ampr.org
gw.ampr.org
www.5150fm.net
ncpa.ampr.org
wiki.ampr.org
www.pb0fh.ampr.org
www.oz6bl.dk
www.n0qbj.ampr.org
www.pb0fh.ampr.org
as15780.ampr.org
db0gw-i.ampr.org
portal.ampr.org
www.ampr.org
weblog.pe1pqf.ampr.org
as15780.ampr.org
www.5150fm.net
jplarc.ampr.org
ja3yaq.ampr.org
www.pb0fh.nl
db0gw-i.ampr.org
ampr.org
bfoo.com
ncpa.ampr.org
jplarc.ampr.org
www.pb0fh.nl
serveurperso.flnet.org
gw.ampr.org
ncpa.ampr.org
de.ampr.org
db0gw-i.ampr.org
weblog.pe1pqf.ampr.org
www.ampr.org
mailman.ampr.org
jplarc.ampr.org
f4mzi.ampr.org
portal.ampr.org
ampr.org
f4mzi.ampr.org
weblog.pe1pqf.ampr.org
mailman.ampr.org
www.pa3get.ampr.org
wiki.ampr.org
portal.ampr.org
www.oz6bl.dk
mattermost.pi9noz.ampr.org
sys6.pe1pqf.ampr.org
mattermost.pi9noz.ampr.org
www.ampr.org
de.ampr.org
db0gw-i.ampr.org
sp2l.ampr.org
jplarc.ampr.org
f4mzi.ampr.org
ja3yaq.ampr.org
sp2l.ampr.org
db0gw-i.ampr.org
www.n0qbj.ampr.org
mattermost.pi9noz.ampr.org
hosting.va4wan.ampr.org
as15780.ampr.org
www.crarc.ampr.org
www.n0qbj.ampr.org
ja3yaq.ampr.org
f4mzi.ampr.org
www.stagecraft.cx
de.ampr.org
jplarc.ampr.org
f5pql.ampr.org
hoseline.pd0mz.ampr.org
www.stagecraft.cx
www.crarc.ampr.org
jplarc.ampr.org
wiki.ampr.org
sp2l.ampr.org
f4mzi.ampr.org
n1uro.ampr.org
as15780.ampr.org
www.pb0fh.ampr.org
www.ampr.org
ja3yaq.ampr.org
portal.ampr.org
portal.ampr.org
f5pql.ampr.org
de.ampr.org
www.pb0fh.ampr.org
db0gw-i.ampr.org
www.pb0fh.nl
de.ampr.org
pi2shb.ampr.org
sp2l.ampr.org
db0gw-i.ampr.org
ampr.org
bm-lastheard.pi9noz.ampr.org
www.n0qbj.ampr.org
www.pb0fh.ampr.org
wiki.ampr.org
weblog.pe1pqf.ampr.org
f5pql.ampr.org
www.ampr.org
db0gw-i.ampr.org
gw.ampr.org
www.5150fm.net
ncpa.ampr.org
wiki.ampr.org
www.pb0fh.ampr.org
www.oz6bl.dk
www.n0qbj.ampr.org
www.pb0fh.ampr.org
as15780.ampr.org
db0gw-i.ampr.org
portal.ampr.org
www.ampr.org
weblog.pe1pqf.ampr.org
as15780.ampr.org
www.5150fm.net
jplarc.ampr.org
ja3yaq.ampr.org
www.pb0fh.nl
db0gw-i.ampr.org
ampr.org
bfoo.com
ncpa.ampr.org
jplarc.ampr.org
www.pb0fh.nl
serveurperso.flnet.org
gw.ampr.org
ncpa.ampr.org
de.ampr.org
db0gw-i.ampr.org
weblog.pe1pqf.ampr.org
www.ampr.org
mailman.ampr.org
jplarc.ampr.org
f4mzi.ampr.org
portal.ampr.org
ampr.org
f4mzi.ampr.org
weblog.pe1pqf.ampr.org
mailman.ampr.org
www.pa3get.ampr.org
wiki.ampr.org
portal.ampr.org
www.oz6bl.dk
mattermost.pi9noz.ampr.org
sys6.pe1pqf.ampr.org
mattermost.pi9noz.ampr.org
www.ampr.org
de.ampr.org
Certificate
The complete raw certificate details for ja3yaq.ampr.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgISAxTGQyR3FKU5/D1l4CUGlY5vMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTkxNDA4MzVaFw0yNDA0MTgxNDA4MzRaMBoxGDAWBgNVBAMT D2phM3lhcS5hbXByLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMDtfRkD0KR8UKUuQ3v+eF11TuJhyfO2YkHv5KSqxOGVnBophXSQE2ZMdqsbQ+rJ Rxpaih0wVuFG2Wpdvg1WFYHPaLSwnkW7iVyZCFG40SpjQLv8FIZVgx7Hg4sMHdIQ 0EA3G80Lyjv8d6pmL7lRFsNPTqeX8WPlKKY92ZGuPxMBzHBCXkh82Hn3YT3ubl/Y 8L52hA8jVLz4FG2Ew6MXSspNIT+O7sgNG1e7Joq/rFiFDAwRhoPq+9WmFFbhicXr Cp95NqR94e3VwggcE6a2cJH1ygig2+ndBC3Dwm2pttyT7GiwiMLZoNFUz2cbQUWD w5Sal4pnophftaZdxVb/fRMCAwEAAaOCAhEwggINMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUL7T4DTftgMpYCxbsqgIYIHxg60cwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wGgYDVR0RBBMwEYIPamEzeWFxLmFtcHIub3JnMBMGA1UdIAQMMAowCAYGZ4EM AQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAO1N3dT4tuYBOizBbBv5AO2fY T8P0x70ADS1yb+H61BcAAAGNIkRErwAABAMARzBFAiEAwke9LsZoNhXuL6U7qDIT MD124BBxuiAvf850YKdC0ZYCIAYqmfB1jTgSU2RbXVtxzDeH2k4B3zHFvCfy2q/W hx9fAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGNIkRG7AAA BAMARzBFAiEAknYyHiFEazV/eL03rXnqSUKBpO+99XqJJRwQbw5X/n8CIDU//L4w aWMJhXjSP/OnOPsE4wefEcF7BdU1orXY8D5/MA0GCSqGSIb3DQEBCwUAA4IBAQA6 av/F+sae/r8gn6Qv/Q3eHE0Cn8GGgDRH1g4id9Kk+OG4hI+va53G4sFdf72YSMBB 5uGxbsRVi6YZe4GPOu+XNyTM7KCjqYFy4jtEUoXx1aUB7DwLgWlHHB2XLh9o8rZN gAIHR44OVSlGOEnUu86B3cS4k14RXRe1+vCCfGTsWuWsur8/ac0Fac2f0s6Hqgty Ul/JQ+/u+GMkWyaoRDk2rU+js5mIsWqRpsyLMpGwykOuuCcatljDcMC6mRQQ9ZaZ tUGSL/knSaTx9Tmta6bny2Afjuf0UA6/eyWmwuJi00FfoqIL9fIuKwdGC5Ngncpa VEK4NpghKjy5KdIS0zY+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwO19GQPQpHxQpS5De/54 XXVO4mHJ87ZiQe/kpKrE4ZWcGimFdJATZkx2qxtD6slHGlqKHTBW4UbZal2+DVYV gc9otLCeRbuJXJkIUbjRKmNAu/wUhlWDHseDiwwd0hDQQDcbzQvKO/x3qmYvuVEW w09Op5fxY+Uopj3Zka4/EwHMcEJeSHzYefdhPe5uX9jwvnaEDyNUvPgUbYTDoxdK yk0hP47uyA0bV7smir+sWIUMDBGGg+r71aYUVuGJxesKn3k2pH3h7dXCCBwTprZw kfXKCKDb6d0ELcPCbam23JPsaLCIwtmg0VTPZxtBRYPDlJqXimeimF+1pl3FVv99 EwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 268406040900355730902867403967147189571183 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-19 14:08:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-18 14:08:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ja3yaq.ampr.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24354864577932864453279315557126456076237912086924941439557588731162903677616254840251919243709545725624686248777797715047350122732446541866796429567267011545752759386944266918891599744448588909825944780154916580106593749338121287148831566166974808713353198559372525009088319459096927296681917258993125494081633251397082573913382625861665974018155775660955989097112354135317966321976661343048107015798710986900719288771750568840156709301416062662319683755167057914357169011465303316015985408499873962005102551013205199940796444914046272556625333787337188023977097122155101583703054398027331097506562183316467456376083 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2fb4f80d37ed80ca580b16ecaa0218207c60eb47 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ja3yaq.ampr.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d224444af0000040300473045022100c247bd2ec6683615ee2fa53ba83213303d76e01071ba202f7fce7460a742d1960220062a99f0758d381253645b5d5b71cc3787da4e01df31c5bc27f2daafd6871f5f00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d224446ec00000403004730450221009276321e21446b357f78bd37ad79ea494281a4efbdf57a89251c106f0e57fe7f0220353ffcbe306963098578d23ff3a738fb04e3079f11c17b05d535a2b5d8f03e7f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 003a6affc5fac69efebf209fa42ffd0dde1c4d029fc186803447d60e2277d2a4f8e1b8848faf6b9dc6e2c15d7fbd9848c041e6e1b16ec4558ba6197b818f3aef973724cceca0a3a98172e23b445285f1d5a501ec3c0b8169471c1d972e1f68f2b64d800207478e0e5529463849d4bbce81ddc4b8935e115d17b5faf0827c64ec5ae5acbabf3f69cd0569cd9fd2ce87aa0b72525fc943efeef863245b26a8443936ad4fa3b39988b16a91a6cc8b3291b0ca43aeb8271ab658c370c0ba991410f59699b541922ff92749a4f1f539ad6ba6e7cb601f8ee7f4500ebf7b25a6c2e262d3415fa2a20bf5f22e2b07460b93609dca5a5442b83698212a3cb929d212d3363e