ovam.be
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:36:aa:a1:d1:d2:55:a7:5c:4a:a6:3c:2c:e1:ea:16:d0:03 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ovam.be
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:36:aa:a1:d1:d2:55:a7:5c:4a:a6:3c:2c:e1:ea:16:d0:03Serial Number (int): 367051200515537353262635740879055897415683
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 0a:f5:4b:4e:82:b4:3e:49:b3:74:4a:97:9e:d9:d4:af:36:5d:ff:4e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 1f:10:18:47:f0:db:80:21:b7:ee:3c:91:4a:4d:71:d3:9a:e7:0a:85
Fingerprint (sha256): 05:70:30:9d:b5:6a:0d:6e:c5:57:3c:13:76:f0:a3:7b:bd:a3:bf:9b:3f:63:1d:eb:79:86:2e:0b:01:49:34:c5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ovam.be
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ovam.be
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ovam.be
www.ovam.be
www.ovam.be
Other certificates including the domain name ovam.be
(limited to 100 certificates)
*.dev.aws.ovam.be
jaarverslag.ovam.be
ovam.be
jaarverslag.ovam.be
ovam.be
*.tst.aws.ovam.be
*.uat.aws.ovam.be
*.uat.aws.ovam.be
ovam.be
*.ovam.be
K3000.ovam.be
jaarverslag.ovam.be
*.tst.aws.ovam.be
ovam.be
jaarverslag.ovam.be
ovam.be
*.uat.aws.ovam.be
jaarverslag.ovam.be
ovam.be
*.prd.aws.ovam.be
*.uat.aws.ovam.be
*.ovam.be
*.uat.aws.ovam.be
*.lt.aws.ovam.be
ovam.be
ovam.be
ovam.be
ovam.be
fluvius.ovam.be
*.lt.aws.ovam.be
*.uat.aws.ovam.be
*.tst.aws.ovam.be
ovam.be
ovam.be
*.tst.aws.ovam.be
ovam.be
*.ovam.be
jaarverslag.ovam.be
*.prd.aws.ovam.be
jaarverslag.ovam.be
services.ovam.be
*.lt.aws.ovam.be
*.lt.aws.ovam.be
*.dev.aws.ovam.be
ovam.be
*.ovam.be
jaarverslag.ovam.be
jaarverslag.ovam.be
ovam.be
ovam.be
*.prd.aws.ovam.be
ovam.be
*.tst.aws.ovam.be
*.tst.aws.ovam.be
*.uat.aws.ovam.be
*.ovam.be
*.uat.aws.ovam.be
*.dev.aws.ovam.be
www.ovam.be
jaarverslag.ovam.be
jaarverslag.ovam.be
*.dev.aws.ovam.be
*.ovamad.ovam.be
*.ovam.be
*.dev.aws.ovam.be
*.ovam.be
*.dev.aws.ovam.be
ovam.be
jaarverslag.ovam.be
jaarverslag.ovam.be
*.ovam.be
ovam.be
*.prd.aws.ovam.be
www.ovam.be
*.prd.aws.ovam.be
ovam.be
jaarverslag.ovam.be
ovam.be
jaarverslag.ovam.be
ovam.be
*.tst.aws.ovam.be
*.uat.aws.ovam.be
*.uat.aws.ovam.be
ovam.be
*.ovam.be
K3000.ovam.be
jaarverslag.ovam.be
*.tst.aws.ovam.be
ovam.be
jaarverslag.ovam.be
ovam.be
*.uat.aws.ovam.be
jaarverslag.ovam.be
ovam.be
*.prd.aws.ovam.be
*.uat.aws.ovam.be
*.ovam.be
*.uat.aws.ovam.be
*.lt.aws.ovam.be
ovam.be
ovam.be
ovam.be
ovam.be
fluvius.ovam.be
*.lt.aws.ovam.be
*.uat.aws.ovam.be
*.tst.aws.ovam.be
ovam.be
ovam.be
*.tst.aws.ovam.be
ovam.be
*.ovam.be
jaarverslag.ovam.be
*.prd.aws.ovam.be
jaarverslag.ovam.be
services.ovam.be
*.lt.aws.ovam.be
*.lt.aws.ovam.be
*.dev.aws.ovam.be
ovam.be
*.ovam.be
jaarverslag.ovam.be
jaarverslag.ovam.be
ovam.be
ovam.be
*.prd.aws.ovam.be
ovam.be
*.tst.aws.ovam.be
*.tst.aws.ovam.be
*.uat.aws.ovam.be
*.ovam.be
*.uat.aws.ovam.be
*.dev.aws.ovam.be
www.ovam.be
jaarverslag.ovam.be
jaarverslag.ovam.be
*.dev.aws.ovam.be
*.ovamad.ovam.be
*.ovam.be
*.dev.aws.ovam.be
*.ovam.be
*.dev.aws.ovam.be
ovam.be
jaarverslag.ovam.be
jaarverslag.ovam.be
*.ovam.be
ovam.be
*.prd.aws.ovam.be
www.ovam.be
*.prd.aws.ovam.be
ovam.be
Certificate
The complete raw certificate details for ovam.be in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgISBDaqodHSVadcSqY8LOHqFtADMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMTYwODQyMzlaFw0x OTA0MTYwODQyMzlaMBIxEDAOBgNVBAMTB292YW0uYmUwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQDASb2oauvy0Khdx2jLk+I1M5Xh3c11AExZDdKPt9jF qGkogaoTtypKkPzSRgwGOzj1cfrOO/Q1T/1wilCcqaRILzsPnfffus89FI9AyWUo ufJJM8aaOduNZJRzcwRA/WDo4bRshxKsBrRNVGDEQeRGrzejjiBILmb/VbG4GnnY CEN1zG0cPZYCPTPjJYFVp4Zfh4BXkg4THI+KOBYKe2GOMQ4ryKWOApHH2l/9Q/rh DnxazxgyEmY1fKHx7B8Xttf/HoIGfF0qWZOonAFjdlerstLNLNyZPcveXNmomYC7 3F/+Q8342O9gZojHNQ+JvXYYNeYv1M79re5M59bT1nMBAgMBAAGjggJoMIICZDAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFAr1S06CtD5Js3RKl57Z1K82Xf9OMB8GA1Ud IwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggr BgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggr BgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHwYD VR0RBBgwFoIHb3ZhbS5iZYILd3d3Lm92YW0uYmUwTAYDVR0gBEUwQzAIBgZngQwB AgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRz ZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQDiaUuuJujpQAno hhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWhWCpQ9AAAEAwBGMEQCIEP1IC0VW27F 81g/UtZ0uPAAYHVu6vKFlIREZM91TCT0AiBzrzDy5NSVP5KldtOWIBZgwRAGWK59 06Q7LI7ddx+1mwB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAAB aFYKkjwAAAQDAEcwRQIgdodr9T3n3gdXcwzgpAvmCqY6JTNNvi21RbECgU0sZysC IQD3BmmcM+acSk2LjbpEZYTxIYU2w2EHguHYvRF5FxTomDANBgkqhkiG9w0BAQsF AAOCAQEALwQTaboq5h7vafKLDjdI+MkVKoaGdQ4dBCU+gV4gwoXGjNqG/ylJGfXa Qmb5zA6dyrUq3NHvuEaU/1PlFnD/is2lJOZ/WUpIaf5S7ckLJUxg/3z1615XFDPd nMkZbSmDnABXWqg9oaKx7SPPV/Q+a7Y+SaamXNOyWc0fbpLPmQLhF6tFC83BXm6G fz3ipuJBjv5sZ7aPc5WKYz59roxjwAI4mxQP3l34nP0OJ+qVzN3Y0RUiXZkmWlxd Y4LEmrVIoS/iPA8PgDuhepVkYV8By90T/wE4sZeHPZYFrkgbq5LZSG5psoLHL87e btThsZe8fhjHhHRgdYzcb610dkGqEw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEm9qGrr8tCoXcdoy5Pi NTOV4d3NdQBMWQ3Sj7fYxahpKIGqE7cqSpD80kYMBjs49XH6zjv0NU/9cIpQnKmk SC87D53337rPPRSPQMllKLnySTPGmjnbjWSUc3MEQP1g6OG0bIcSrAa0TVRgxEHk Rq83o44gSC5m/1WxuBp52AhDdcxtHD2WAj0z4yWBVaeGX4eAV5IOExyPijgWCnth jjEOK8iljgKRx9pf/UP64Q58Ws8YMhJmNXyh8ewfF7bX/x6CBnxdKlmTqJwBY3ZX q7LSzSzcmT3L3lzZqJmAu9xf/kPN+NjvYGaIxzUPib12GDXmL9TO/a3uTOfW09Zz AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 367051200515537353262635740879055897415683 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-16 08:42:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-16 08:42:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ovam.be' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24274117522426876075613738616441611349793529567312963558390533536972555360259390844817550213121741258488166485243359130324020944203075770444429837500795189662931064272039419557117352945291256227310766600080627856018512945227309510136708835200225606719743315708670515228915962281619641110172979330450634795355064247569524107448592673639889160873987190320141869760121042715581774946948040849024934316646177424120669010165595795521363558298308898193827413204082485532076323251817356839663569765378024530280085032126658776112707628631037607025723540638315216480777718621965670359326185659384662080212388475587434613469953 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0af54b4e82b43e49b3744a979ed9d4af365dff4e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ovam.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ovam.be' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000168560a943d0000040300463044022043f5202d155b6ec5f3583f52d674b8f00060756eeaf28594844464cf754c24f4022073af30f2e4d4953f92a576d396201660c1100658ae7dd3a43b2c8edd771fb59b007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000168560a923c0000040300473045022076876bf53de7de0757730ce0a40be60aa63a25334dbe2db545b102814d2c672b022100f706699c33e69c4a4d8b8dba446584f1218536c3610782e1d8bd11791714e898 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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