kolibri.ca
Issued by R3
About this certificate
This digital certificate with serial number 04:6b:a8:1e:6e:8e:68:fc:02:c0:ee:29:fb:74:b2:80:9e:b2 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=kolibri.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:6b:a8:1e:6e:8e:68:fc:02:c0:ee:29:fb:74:b2:80:9e:b2Serial Number (int): 385082825302126970670594291204752333119154
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e1:36:65:8c:61:9b:e9:4e:27:a9:f8:0f:13:a7:3e:42:ab:04:00:3b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 9d:a6:19:86:75:1b:e1:7e:f8:a3:2c:9f:29:f3:39:fd:86:68:48:e6
Fingerprint (sha256): 04:81:ad:ed:53:7a:7a:8f:28:13:dd:dd:44:bc:3b:ab:ed:74:b4:63:6d:ef:42:99:96:c9:eb:44:ce:99:47:6c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate kolibri.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kolibri.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.kolibri.ca
kolibri.ca
kolibri.ca
Other certificates including the domain name kolibri.ca
(limited to 100 certificates)
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
www.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
az-3cxftp.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
spamportal.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
clients.kolibri.ca
kolibri.ca
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
livicare.liviathome.com
kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
www.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
helpdesk.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
support.designkarigor.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
www.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
helpdesk.kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
support.designkarigor.com
sni247930.cloudflaressl.com
kolibri.ca
www.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
clients.kolibri.ca
kolibri.ca
helpdesk.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
www.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
az-3cxftp.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
spamportal.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
clients.kolibri.ca
kolibri.ca
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
livicare.liviathome.com
kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
www.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
helpdesk.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
support.designkarigor.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
www.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
helpdesk.kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
support.designkarigor.com
sni247930.cloudflaressl.com
kolibri.ca
www.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
clients.kolibri.ca
kolibri.ca
helpdesk.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
Certificate
The complete raw certificate details for kolibri.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgISBGuoHm6OaPwCwO4p+3SygJ6yMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjkwOTU5MjdaFw0yNDA1MjkwOTU5MjZaMBUxEzARBgNVBAMT CmtvbGlicmkuY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKK3Rd zTAmqZhijV52DlA/yt4X2/WuZMM/iFyxWwm8AZGzW19eXgA9iUK16SAhY5U4Y7yH X+WU/X8vuE220Bb6q5NehSaRXRUd9RzM9IqIZbdDNGQJu9IjayF4ZDIUKFq/1zwK mbDgg2KscgrMOe+dg9NoOll7A4pGPqFOm4YJvHs52aqLj34RweavRpAYY0Zq2wcT 47+hcaIbf+W1j0hcxNy4ATOHYwCoJBQD5YN3+37avIIZqioxMB4MNWwecdGxMmjC pyLkupkJ8ywD2GGMO6xUKFzdNAeiUPb14bGLRbA7KbxWgihW01hfsIi5vuCGS/NH gpr0BDKHx7qNBcUHAgMBAAGjggIZMIICFTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FOE2ZYxhm+lOJ6n4DxOnPkKrBAA7MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCMG A1UdEQQcMBqCDCoua29saWJyaS5jYYIKa29saWJyaS5jYTATBgNVHSAEDDAKMAgG BmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2ADtTd3U+LbmAToswWwb+ QDtn2E/D9Me9AA0tcm/h+tQXAAABjfSE6LEAAAQDAEcwRQIhANhMp+c2vFs6jES4 J8qHItm21g8wLiN4k+TuoHMYwYGKAiBJBagijQsa2o+OqxxdNYaRDWd1DhuG2gzA NLg0S7v0cAB1AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjfSE 6QgAAAQDAEYwRAIgdyPqukVqAv2QV0WLPNKcW+NUKKE2e6a2VSktQmPttg0CIHBg 6hWfCSAOBUydH+9NozFzuspB909wbug4sP0UAnZyMA0GCSqGSIb3DQEBCwUAA4IB AQBF455qID2ip5/bu8exJ2uNC7w8A0RzM1d1Hhs6Uaxv3s+HomsugOBf0cHAlN5n 3O3RIf3ULIvukKgZ9cccKjQ97QqDCc77jDK+Jl/ymk2FdOrzlXv7SotuKZZ9qbwd fcTneCEiPeVK9R6UWiU6UBsly6vzSeuLwMZ6gVEDHRmKPGR+Bh2w5OqfU6CXPwvr L9g12jdG+CD141HfsZQRDz+mI7r2dH/cTFBOOpAMTdzquXGC6knDuiI0xAR5dpia jldsVIj2Aw/+ubkmjVOWeFpM/hZMcljgE/bAjVVJ2euFo3IvOiTeT6yIDyeLSP3o B7lgLt1HYA60RC4tZqUG1ADj -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyit0Xc0wJqmYYo1edg5Q P8reF9v1rmTDP4hcsVsJvAGRs1tfXl4APYlCtekgIWOVOGO8h1/llP1/L7hNttAW +quTXoUmkV0VHfUczPSKiGW3QzRkCbvSI2sheGQyFChav9c8Cpmw4INirHIKzDnv nYPTaDpZewOKRj6hTpuGCbx7Odmqi49+EcHmr0aQGGNGatsHE+O/oXGiG3/ltY9I XMTcuAEzh2MAqCQUA+WDd/t+2ryCGaoqMTAeDDVsHnHRsTJowqci5LqZCfMsA9hh jDusVChc3TQHolD29eGxi0WwOym8VoIoVtNYX7CIub7ghkvzR4Ka9AQyh8e6jQXF BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 385082825302126970670594291204752333119154 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-29 09:59:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-29 09:59:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kolibri.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25521565843495616613966155523354866553673269782687029542044964075382801058745951659727659793894352465634215113022255781885057880163895816135398198355636990915360674320934177854114222306075433819066885297686743390273302183281714330680332433478401222936612631073001123833791625839154488855458552430753412129103303618895460746734032623238631897583550206384663373821121180391935919863538557517955330407721957646925119242181493777739252286920063870826225790080748071675050920800839124480542283943125047991296915910759234976293000861250143091956450047775311252117473420216219573097944399502820753570317609995997232794813703 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e136658c619be94e27a9f80f13a73e42ab04003b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kolibri.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kolibri.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018df484e8b10000040300473045022100d84ca7e736bc5b3a8c44b827ca8722d9b6d60f302e237893e4eea07318c1818a02204905a8228d0b1ada8f8eab1c5d3586910d67750e1b86da0cc034b8344bbbf47000750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018df484e908000004030046304402207723eaba456a02fd9057458b3cd29c5be35428a1367ba6b655292d4263edb60d02207060ea159f09200e054c9d1fef4da33173baca41f74f706ee838b0fd14027672 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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