medsis.urmc.rochester.edu

- University of Rochester -

Issued by InCommon Server CA

About this certificate

This digital certificate with serial number 46:45:29:5f:38:15:4a:70:d1:66:6d:af:de:1d:4d:5f was issued on by Internet2.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

University of Rochester

Organization: University of Rochester
Organization unit: URMC
Address: 601 Elmwood Ave
Postal code: 14642
State / Province: New York
Locality: Rochester
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 46:45:29:5f:38:15:4a:70:d1:66:6d:af:de:1d:4d:5f
Serial Number (int): 93405067311009102311685719564455071071
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 8f:35:0b:bb:c6:6a:36:aa:23:42:b1:9b:f6:6f:f4:03:55:c4:2e:64
AuthorityKeyId: 48:4f:5a:fa:2f:4a:9a:5e:e0:50:f3:6b:7b:55:a5:de:f5:be:34:5d

Fingerprint (sha1): 08:ca:53:6f:76:d3:7e:74:7a:e6:57:bd:a3:64:60:83:e8:d3:84:2e
Fingerprint (sha256): 05:6b:24:78:13:99:07:11:5b:49:39:6c:ce:f6:82:46:67:bb:19:7b:ab:70:a5:61:14:05:fc:26:32:7b:82:65

Issuing Certificate URL: http://cert.incommon.org/InCommonServerCA.crt

Revocation information

OCSP Server: http://ocsp.incommon.org
CRL Distribution Point: http://crl.incommon.org/InCommonServerCA.crl

Check the revocation status for certificate medsis.urmc.rochester.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for medsis.urmc.rochester.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

medsis.urmc.rochester.edu

Other certificates including the domain name rochester.edu

(limited to 100 certificates)
ertest-mctrain.urmc-sh.rochester.edu
sjelderk.digitalscholar.rochester.edu
*.givegab.com
us.prod.campusgroups.com
ercprd3-dr.urmc-sh.rochester.edu
lists.rochester.edu
mmolchan.digitalscholar.rochester.edu
sjelderk.digitalscholar.rochester.edu
caponech.dslab.digitalscholar.rochester.edu
cluster.technolutions.net
*.mc.rochester.edu
cluster3.technolutions.net
admissionwebdev.urmc.rochester.edu
tstuber.digitalscholar.rochester.edu
us.prod.campusgroups.com
fertilegroundroc.org
myidentity.rochester.edu
rna.urmc.rochester.edu
simonadm.rochester.edu
bis.urmc.rochester.edu
filemaker.ur.rochester.edu
corona-dmc-3.its.rochester.edu
rclomeka2.lib.rochester.edu
*.givegab.com
digitalelmina.org
msrl-gw.circ.rochester.edu
cvsnas4.cvs.rochester.edu
test.mcdonough.digitalscholar.rochester.edu
public-art.dslab.digitalscholar.rochester.edu
its-cyhy-up01.its.rochester.edu
swang.digitalscholar.rochester.edu
fogbugz.lle.rochester.edu
its-bblmap-ud02.its.rochester.edu
its-fmsweb-wp01.ur.rochester.edu
info.circ.rochester.edu
*.givegab.com
urspace.ur.rochester.edu
www.cse.rochester.edu
spoons.digitalscholar.rochester.edu
studentservices.ur.rochester.edu
healthlab.urmc.rochester.edu
cluster3.technolutions.net
*.givegab.com
khuskin.digitalscholar.rochester.edu
tstuber.digitalscholar.rochester.edu
tracker.ctcc.rochester.edu
dslab.digitalscholar.rochester.edu
itgovernance.ur.rochester.edu
s.patricksullivan.digitalscholar.rochester.edu
research.son.rochester.edu
wchui.digitalscholar.rochester.edu
illiad.lib.rochester.edu
its-uceapp-wq1.ur.rochester.edu
*.lle.rochester.edu
us.prod.campusgroups.com
son.rochester.edu
rochesteraliaspages-dev.ur.rochester.edu
ercd-epcs.urmc-sh.rochester.edu
wchui.digitalscholar.rochester.edu
arcgis.ur.rochester.edu
brainlabweb.urmc-sh.rochester.edu
yourhealth.rochester.edu
mulberry.lle.rochester.edu
cluster.technolutions.net
urwell.rochester.edu
aths.digitalscholar.rochester.edu
its-uceapp-wt1.ur.rochester.edu
brainlabweb.urmc-sh.rochester.edu
voltage-pp-0000.ur.rochester.edu
cluster.technolutions.net
carolenasra.digitalscholar.rochester.edu
sbarrett.digitalscholar.rochester.edu
i2b2.urmc-sh.rochester.edu
helendavies.digitalscholar.rochester.edu
trials.ctcc.rochester.edu
tarmin2.circ.rochester.edu
uconnectlabs.com
pstestcont.acs.rochester.edu
cluster.technolutions.net
orbit.urmc.rochester.edu
sp-expcore01.urmc-sh.rochester.edu
connect.son.rochester.edu
its-cylancehybrid-ut1.ur.rochester.edu
lasso.rochester.edu
ucisarts.sa.digitalscholar.rochester.edu
idp.rochester.edu
*.givegab.com
*.givegab.com
rochestermd.urmc.rochester.edu
admissionsstage.urmc-sh.rochester.edu
www.cvs.rochester.edu
uofr.rochester.edu
urtransfer.ur.rochester.edu
totleben.digitalscholar.rochester.edu
its-bblmap-ud01.its.rochester.edu
spoons.digitalscholar.rochester.edu
tdzuba.digitalscholar.rochester.edu
us.prod.campusgroups.com
dev.lasso.rochester.edu
medsis.urmc.rochester.edu

Certificate

The complete raw certificate details for medsis.urmc.rochester.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlc/jeLSlWCvl8foVZPZm
QijKl7CGNbB31RZnzYeEOHpaO6kLxNc+wkgR71zfQDD6V97dbtjqsBYZrRUuqtAx
h025RLcd73t6+zay9tOTN5s0OzUyAUT4bNxkJaDxAcGwxS0MWswjG1uVRXiNNUN1
yO20i5S4C0LMw+JoNhzPuR1q3YUFUaiodfYbl3wdQj+Ot7nNGGnRKLg6xz7PU6dD
3FF2hPmLBhFt1E49lN7l2JMzCUiIjIRSkdq6hWA98GkzN3lC9rReG7WcqIsNkyx2
VtqI+4Jpbv9HIokXOf4y7iAjdvYntzJVF7xQfYuzdgDl0S7KZOouUkc3+rYjYQV4
awIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 93405067311009102311685719564455071071
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-05-15 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-14 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '14642'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rochester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '601 Elmwood Ave'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Rochester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'URMC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'medsis.urmc.rochester.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18912021109897600784296498946922631510659093082521776725977623705757236845863910503696884963723286169824155850283831489012153968338876559314339742070365030589634843101600106434982741514809873725307283494926037653517065584332563069475512409398190645850441687051136894326837238124985579083316284769783351762133007483236884580929841690337026551920979089631612977107837840692487925991045930861449189896492441487877053383238016422130777449458292789061426817299158420159952252167989102956233023860615154619838886048158436314775103835242566792318615977684965941998510456260048755961590189195161051077172705996168624070817899
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 484f5afa2f4a9a5ee050f36b7b55a5def5be345d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8f350bbbc66a36aa2342b19bf66ff40355c42e64
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon.org/InCommonServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.incommon.org/InCommonServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.incommon.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'medsis.urmc.rochester.edu'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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