legacy.com
Issued by R3
About this certificate
This digital certificate with serial number 03:7d:5a:6a:e7:59:cc:0a:d2:9b:61:9e:c9:fb:79:fb:9d:e5 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=legacy.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:7d:5a:6a:e7:59:cc:0a:d2:9b:61:9e:c9:fb:79:fb:9d:e5Serial Number (int): 303992339255836767926213876838357597396453
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b1:a1:40:2e:09:e3:cc:1e:e4:4f:16:db:0e:33:47:97:19:be:0f:fa
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f8:96:cb:39:03:1b:d7:f6:fa:80:80:b8:37:6e:19:60:f6:6f:61:1a
Fingerprint (sha256): 07:eb:7f:84:5b:98:97:a5:3c:73:0b:5f:5f:b8:ca:93:8c:5d:25:32:5e:d9:52:aa:f6:1b:7f:d6:c8:2d:e2:bc
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate legacy.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for legacy.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.legacy.com
legacy.com
legacy.com
Other certificates including the domain name legacy.com
(limited to 100 certificates)
carpepm.almonds.com
ssl003.insnw.net
ssl860932.cloudflaressl.com
calendar.sdzsafaripark.org
banking-business-review.com
cdn-test.battlefields.org
citeak.multidevcom.uaf.edu
ssl860932.cloudflaressl.com
chns120.courseresource.yale.edu
*.legacy.com
banking-business-review.com
tls.automattic.com
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
www.legacy.com
chns168.courseresource.yale.edu
uat.legacy.com
club.kjzz.org
legacy.com
memorialwebsites.legacy.com
www.legacy.com
legacy.com
5691967484723200-fe1.pantheonsite.io
160.167.tmcapital.com
160.167.tmcapital.com
brassunion.com
acadmintest.cuofco.org
www.legacy.com
chns168.courseresource.yale.edu
*.legacy.com
acadmintest.cuofco.org
uat.legacy.com
buyersguide.aaps.org
tls.automattic.com
cdi.uga.edu
citeak.multidevcom.uaf.edu
chns168.courseresource.yale.edu
click.alerts.legacy.com
caldesignlab.berkeley.edu
160.167.tmcapital.com
careers.whittier.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
leftwoods.com
sni.cloudflaressl.com
ssl003.insnw.net
cms.legacy.com
live-legacy-cms.pantheonsite.io
citrix.remote.naylor.com
2.www.upenn.edu
sni.cloudflaressl.com
banking-business-review.com
160.167.tmcapital.com
sympathy.legacy.com
clc.shawnee.edu
pro.legacy.com
chns150.courseresource.yale.edu
www.legacy.com
160.167.tmcapital.com
sni.cloudflaressl.com
tls.automattic.com
cci520-new.courtinnovation.org
cci520-new.courtinnovation.org
eduhup.com
media2.legacy.com
legacyowa.legacy.com
campaign.ucsc.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
caldesignlab.berkeley.edu
5691967484723200-fe1.pantheonsite.io
eduhup.com
5660980839186432-fe2.pantheonsite.io
lwozzk.legacy.com
census.arizona.edu
tls.automattic.com
pro.legacy.com
chns168.courseresource.yale.edu
ssl003.insnw.net
thepointalehouse.com
lwozzk.legacy.com
sni.cloudflaressl.com
leeanatankersley.com
ssl003.insnw.net
sni.cloudflaressl.com
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
ssl860932.cloudflaressl.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
www.legacy.com
*.legacy.com
banking-business-review.com
ssl003.insnw.net
ssl860932.cloudflaressl.com
calendar.sdzsafaripark.org
banking-business-review.com
cdn-test.battlefields.org
citeak.multidevcom.uaf.edu
ssl860932.cloudflaressl.com
chns120.courseresource.yale.edu
*.legacy.com
banking-business-review.com
tls.automattic.com
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
www.legacy.com
chns168.courseresource.yale.edu
uat.legacy.com
club.kjzz.org
legacy.com
memorialwebsites.legacy.com
www.legacy.com
legacy.com
5691967484723200-fe1.pantheonsite.io
160.167.tmcapital.com
160.167.tmcapital.com
brassunion.com
acadmintest.cuofco.org
www.legacy.com
chns168.courseresource.yale.edu
*.legacy.com
acadmintest.cuofco.org
uat.legacy.com
buyersguide.aaps.org
tls.automattic.com
cdi.uga.edu
citeak.multidevcom.uaf.edu
chns168.courseresource.yale.edu
click.alerts.legacy.com
caldesignlab.berkeley.edu
160.167.tmcapital.com
careers.whittier.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
leftwoods.com
sni.cloudflaressl.com
ssl003.insnw.net
cms.legacy.com
live-legacy-cms.pantheonsite.io
citrix.remote.naylor.com
2.www.upenn.edu
sni.cloudflaressl.com
banking-business-review.com
160.167.tmcapital.com
sympathy.legacy.com
clc.shawnee.edu
pro.legacy.com
chns150.courseresource.yale.edu
www.legacy.com
160.167.tmcapital.com
sni.cloudflaressl.com
tls.automattic.com
cci520-new.courtinnovation.org
cci520-new.courtinnovation.org
eduhup.com
media2.legacy.com
legacyowa.legacy.com
campaign.ucsc.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
caldesignlab.berkeley.edu
5691967484723200-fe1.pantheonsite.io
eduhup.com
5660980839186432-fe2.pantheonsite.io
lwozzk.legacy.com
census.arizona.edu
tls.automattic.com
pro.legacy.com
chns168.courseresource.yale.edu
ssl003.insnw.net
thepointalehouse.com
lwozzk.legacy.com
sni.cloudflaressl.com
leeanatankersley.com
ssl003.insnw.net
sni.cloudflaressl.com
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
ssl860932.cloudflaressl.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
www.legacy.com
*.legacy.com
banking-business-review.com
Certificate
The complete raw certificate details for legacy.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgISA31aaudZzArSm2Geyft5+53lMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MjUxNTUwMDhaFw0yNDA3MjQxNTUwMDdaMBUxEzARBgNVBAMT CmxlZ2FjeS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7kp0j PQNC6wyDmYzcwpaYgqv/V3v9qVLIu0wd848OOzzUZz6Pa4BxqghNI3mo02CfSdV2 0f71D3ca1+9sL/CTuKfv6XLAG1S4XxwUojMd6QVArRvMpdVPX4VF1krm0QaTx+zd BoCQVwxlYudeBuwry/Mt+iMbRVOQff+pmXENKlgsJT1iWEFHI91jrV93aIh5mMkx LANIkZZ/ADtASh8PLdk7l4DO9nn5gvWxmaJEOzNyqejVcTDa+KqJwgRVZyS660fC pUkDDgSIDCGN5RqLlmq2vbJwzEyWTXiynAq143Rwt4rTpOOX4C86Sm4BkmjTu7mV oFiCufjnV/lApI+DAgMBAAGjggIZMIICFTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FLGhQC4J48we5E8W2w4zR5cZvg/6MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCMG A1UdEQQcMBqCDCoubGVnYWN5LmNvbYIKbGVnYWN5LmNvbTATBgNVHSAEDDAKMAgG BmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2ABmYEHEJ8NZSLjCA0p4/ ZLuDbijM+Q9Sju7fzko/FrTKAAABjxYqGP0AAAQDAEcwRQIhAM1LucvfkRMo7iTV 05V0Q5k8uLQ5OJ/TOGxwBh8abGktAiB6LSYZttp6Hb3XMCXLNr41pC2FtJXA1zSc m1DUBQbUiwB1AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjxYq GSwAAAQDAEYwRAIgBY8k3zg4AslxJvaqTTnHATXsdbXfS/+v5RNkHhfyto4CIAew kkKIM24KDOQbllvGB4Vsc1x2OY0MVC87qSMn8/ssMA0GCSqGSIb3DQEBCwUAA4IB AQBGlG8c0D8NTE4XPJom0f/y9gkwh/C1a2neZKOMAS+4Gl6mW032D+2mNChCzN96 3cEBqyjpvGqbFAUFKWeQU7Hr3NRl9/8oF8FpQYnrJjQ6Cgt82jEuD9KmibCNfuDe uKsfdB1aZpgJ08qxL4el56vulprd63QMb2IGcq2t4bls2J95qWoX9RWzOyLiiMVL yt4yBcbF1yAEsUTLJdmuo5wDpcOQzZFFeSPp6TYlh0IO+4UXZr2Wtj6MteMKc8Yz 45kLAiwi4hTevyFTu/g2SgXiofp0zj4UodRTBkBFQxzuyCOAyjIEkdqMzmOiRRuj Jk161nJimFwf0W5IDi6S3uSV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5KdIz0DQusMg5mM3MKW mIKr/1d7/alSyLtMHfOPDjs81Gc+j2uAcaoITSN5qNNgn0nVdtH+9Q93GtfvbC/w k7in7+lywBtUuF8cFKIzHekFQK0bzKXVT1+FRdZK5tEGk8fs3QaAkFcMZWLnXgbs K8vzLfojG0VTkH3/qZlxDSpYLCU9YlhBRyPdY61fd2iIeZjJMSwDSJGWfwA7QEof Dy3ZO5eAzvZ5+YL1sZmiRDszcqno1XEw2viqicIEVWckuutHwqVJAw4EiAwhjeUa i5Zqtr2ycMxMlk14spwKteN0cLeK06Tjl+AvOkpuAZJo07u5laBYgrn451f5QKSP gwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 303992339255836767926213876838357597396453 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-25 15:50:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-24 15:50:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'legacy.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23678860997356571664065448128703062799780724183856662156662738887831462049264776145682673154764869070011516289927484121323213334641019564336457224304579493201178444354800346434189142991004726626032899042891945716302200341972290468317797293503511785704471518595914733849407143937838475021818599995942660083773525633580503722708982041512185364624840715185574620781065945681886315580908955857962455343196875841739020105414042453080949810654853586277958080549407615913828808793328710879477466101842529574414656085509910462998771769385399451271156782970836923866520894455441117869137326120253982976825477074303788544987011 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b1a1402e09e3cc1ee44f16db0e33479719be0ffa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.legacy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legacy.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018f162a18fd0000040300473045022100cd4bb9cbdf911328ee24d5d3957443993cb8b439389fd3386c70061f1a6c692d02207a2d2619b6da7a1dbdd73025cb36be35a42d85b495c0d7349c9b50d40506d48b00750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f162a192c00000403004630440220058f24df383802c97126f6aa4d39c70135ec75b5df4bffafe513641e17f2b68e022007b0924288336e0a0ce41b965bc607856c735c76398d0c542f3ba92327f3fb2c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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