tip2.sbb.ch

- Schweizerische Bundesbahnen SBB -

Issued by SwissSign RSA TLS OV ICA 2021 - 1

About this certificate

This digital certificate with serial number 1e:65:18:b4:9b:55:89:10:e7:bc:18:ab:1e:99:a1:1f:fd:0a:42:6f was issued on by SwissSign AG.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Schweizerische Bundesbahnen SBB

Organization: Schweizerische Bundesbahnen SBB
State / Province: Bern
Locality: Bern
Country: CH

SwissSign AG

Organization: SwissSign AG
Country: CH

This certificate has expire since

Certificate Details

Serial Number (hex): 1e:65:18:b4:9b:55:89:10:e7:bc:18:ab:1e:99:a1:1f:fd:0a:42:6f
Serial Number (int): 173524250541929651288254519232299025469192946287
Serial Number lenght: 157 bits, 20 octets

SubjectKeyId: b8:c3:ef:df:43:bb:61:47:31:ec:dc:af:a9:dc:6f:41:5d:3b:27:15
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d

Fingerprint (sha1): d5:54:46:21:c5:fb:ea:93:79:b7:db:e5:70:83:c6:5f:a6:fe:6c:f4
Fingerprint (sha256): 04:e7:68:29:ec:9c:d4:57:4d:26:8c:91:19:3f:08:13:75:1f:2a:71:45:f0:2f:c1:54:02:e4:8d:3a:17:c4:2b

Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D

Revocation information

OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint

Check the revocation status for certificate tip2.sbb.ch

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for tip2.sbb.ch

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

tip2.sbb.ch
tip2-test.sbb.ch
tip2-int.sbb.ch

Other certificates including the domain name sbb.ch

(limited to 100 certificates)
i88507.sbb.ch
tel.sbb.ch
esq.sbb.ch
etcsst.sbb.ch
oraaux-otc2-t04.sbb.ch
webservice.zvs.b2b.sbb.ch
rpn.sbb.ch
edgemail.sbb.ch
besichtigunghaegendorf.event.sbb.ch
hrstrategieanlass2022.event.sbb.ch
bim-industry-days.event.sbb.ch
origin.int-www.sbb.ch
ausbau-bahnhof-lenzburg.event.sbb.ch
ipv.sbb.ch
auth.sbb.ch
f2test.sbb.ch
qt1-ssl-client.sbb.ch
fs.sbb.ch
viewer.mud.sbb.ch
mobileprod.sbb.ch
austausch-buspartner.event.sbb.ch
polarion-coordinator-t.sbb.ch
secure05.stage.lithium.com
186e-d5751.event.sbb.ch
gtech-modelviewer.sbb.ch
clicks.freizeit.sbb.ch
previewserver.sbb.ch
austausch-buspartner.event.sbb.ch
oauthtester-ws.sbb.ch
smo.test.single.sbb.ch
kundenstimme.sbb.ch
fntcmd-prod.sbb.ch
hi1-ssl-client.sbb.ch
aditest3.sbb.ch
carbon.sbb.ch
dcs.info.sbb.ch
gewinnen.sbb.ch
elazt.sbb.ch
railbuyer.sbb.ch
tip.sbb.ch
bpoelscom501.sbb.ch
lea.sbb.ch
ftp-secure.sbb.ch
koserv.sbb.ch
apu-p-paq.sbb.ch
vmits04-t.cdc-dmz.sbb.ch
lira.sbb.ch
test1.event.sbb.ch
secure01.lithium.com
ictsca.sbb.ch
miku-ws.sbb.ch
events.sbb.ch
secure05.stage.lithium.com
biv-zvl-25042022.event.sbb.ch
int-infoportal.sbb.ch
secure01.lithium.com
kmsp.sbb.ch
f5int.sbb.ch
dim.sbb.ch
dms-int16.sbb.ch
apaint-swc2-t01.sbb.ch
api.solace01t.otc-test.sbb.ch
186e-d5751.event.sbb.ch
rsdpext.sbb.ch
polarion-coordinator.sbb.ch
carflt-otc2-p01.sbb.ch
besichtigungbahntechnikhaegendorf.event.sbb.ch
journey-maps-tiles.geocdn.sbb.ch
pv.mailing.railaway.ch
data.sbb.ch
sapdms-test.sbb.ch
railbuyer.sbb.ch
*.fpl-nonprod.aws.sbb.ch
4765-ec38.event.sbb.ch
fntcmd-prod.sbb.ch
sbbstimme.sbb.ch
nova-koserv-ws.sbb.ch
lscmeeting.event.sbb.ch
sso-inactive.sbb.ch
orbita.sbb.ch
microtrategy-day.event.sbb.ch
rgs-appl-prod-de.sbb.ch
lvsschiene.sbb.ch
dms.sbb.ch
mediacenter.sbb.ch
code-t.sbb.ch
klesy.sbb.ch
depotsystem.sbb.ch
company.sbb.ch
risportal.sbb.ch
secure01.lithium.com
f1.sbb.ch
vmits06.cdc-dmz.sbb.ch
trace-d.sbb.ch
f1test.sbb.ch
secretescapes.sbb.ch
trace-t.sbb.ch
company.sbb.ch
lisaint.sbb.ch
tip2.sbb.ch

Certificate

The complete raw certificate details for tip2.sbb.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoBEW8hcG+5sCJML4OjP
k8vXSmr6f2ZajPm+G5rJtlEgiXncKgLrryT+hkyk+0l7xRAXD53sflmcWra6v9n+
9CnwoYv1RxTO9I5h3Al2b/qYVlcvWemPW5qSXcR0CAQtEFWpcP0RbhaShMf4U4tU
MPZqszbKt1blkhoFWuFXXhzba2dBeUH9S491U4g+SYu/dK0NSSmn5sHuJA6jwZ2f
TunyIrjo7FSvhU1ICJd0JhrdA3kSCJjYQMlDXfzwz0sZTDp4HiytdTnj6cVIIcEb
0IS/WjdxcpvQtbtgXFMWqvTaZN1xM/HpgQ6QEvpYPSEBiKOgwzQ5y439CIN6C+KR
2QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 173524250541929651288254519232299025469192946287
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-16 12:51:58 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-16 12:51:58 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Schweizerische Bundesbahnen SBB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tip2.sbb.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23038622331483493342224862221873140056696444965498578425272322789073890575555037158992504127200763143376552719411364127032457329612696739654465032117254275354843930662037777567795764255148483105004586113458687475149732992093455238019524612686618242512911283654187910128414889231200102732779582995220201017644997983740945467272260119062285962767203049986111126535867380566349753205942232516782740439333449687983563459228304083562694122605366434278697272241050633890779272815632294983264770967316113355824500312690600502410477879859856942203342073042836106616895679261036655146540228536505930434594838473016359908446681
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tip2.sbb.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tip2-test.sbb.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tip2-int.sbb.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b8c3efdf43bb614731ecdcafa9dc6f415d3b2715
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (606 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (602 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		00337c1933f2909045793a13d18ce894140fccc60271807fe867d873d95cf0da5480a12d88045a3f989d6caacfff966afdf34ede16f2a212a96deece99ca48b58864ddeda9356979d991df801e43079f69304b77422f1dbbe74dc03a4da7f2794149cd66a1c0560d7a02c0437ef707257c53da73f67a1fc69eaff2108a59216c498015329693f9ba9857b8f63aefbd3c1609d12036f253b80d98f9a847a3dc850208b4a2a4455c14cc13bfd6b45962da48b4ef18e3043ed5dd71551a3932d565e5d6fe5046e5328864c0c0fea9601e9dc838f31f7798b4f06f83bdfedcc7b655a4b02468e5df5f52aaf8466176a766725e4ef7c3c8988a5139ac694c292d8c6e237f9d81cad8efd56c380c92143273a02f1de7ba168e2b9f849603b2772ff616a6711f66c73950bb30af2194a47a09e6683801b5f01802403fe648b9a5236fe96560171aa6b9e534ee761d9b86aa399d553832f5a1e22db637e9d4194e7a3ae9399575165fd604ed18cee4d1a6610b120e60c1c84fbace7976b1720e323d9b8b5a5a93b3e2af328efbd653381439e19b5a5f0269803977f4ff5c312989836098c249333eb752598366174c035494165ad80809c38c92c7f35b2ad0e67a9140cbd17a28095c748699a7dc728494362bae6b05b9a298e23356bee3218c5e2e19e5bed81c8c9344c7b9cbd4ad2872c8fb7a7d8855dddcde2ea3d4b17b6518c26d1031