portail-pca.factoring.societegenerale.com

- Societe Generale -

Issued by DigiCert SHA2 Secure Server CA

About this certificate

This digital certificate with serial number 0d:d8:48:46:13:4d:31:b4:df:72:2a:ce:69:84:b0:ef was issued on by DigiCert Inc.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Societe Generale

Organization: Societe Generale
Organization unit: RESG
Locality: PARIS
Country: FR

DigiCert Inc

Organization: DigiCert Inc
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0d:d8:48:46:13:4d:31:b4:df:72:2a:ce:69:84:b0:ef
Serial Number (int): 18402965952083805241474690057307992303
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: c3:44:8a:95:2e:11:45:82:2e:46:50:fa:18:45:0d:85:cd:8d:28:11
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2

Fingerprint (sha1): fb:ef:03:65:75:19:46:62:2f:50:4f:65:f7:2b:16:74:5b:cd:6e:47
Fingerprint (sha256): 08:ae:d4:62:1c:02:7c:cb:51:de:ae:2a:7d:f8:aa:fd:9f:f6:a5:6e:f3:fd:2b:84:cf:76:f6:f8:66:0e:c3:b3

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl

Check the revocation status for certificate portail-pca.factoring.societegenerale.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for portail-pca.factoring.societegenerale.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

portail-pca.factoring.societegenerale.com
portail-pca.cga.fr

Other certificates including the domain name societegenerale.com

(limited to 100 certificates)
h2-imap.societegenerale.com
partners-api.bsc.societegenerale.com
ceros3.map.fastly.net
warrantspushserver.societegenerale.com
parlons-auto.societegenerale.com
cash2business.factoring.societegenerale.com
infact.factoring.societegenerale.fr
jazz-ou-sobrio.societegenerale.com
demo-sgw.societegenerale.com
ceros3.map.fastly.net
ceros3.map.fastly.net
hsharinbox.societegenerale.com
itsat.societegenerale.com
taleo.exit.societegenerale.com
document-de-reference.societegenerale.com
pre1.ebanking.privatebanking.societegenerale.com
privatebanking.societegenerale.com
h-report.vip.equipmentfinance.societegenerale.com
sso-sogecashweb.societegenerale.com
chatbotrcf.assurances.societegenerale.com
gesop-subscribe.societegenerale.com
webclear.societegenerale.com
filetransfer.hpr.tomf.societegenerale.com
careers.socgen.com
sni.cloudflaressl.com
suite3.securitiesservices.societegenerale.com
homowebclear.societegenerale.com
hsharinbox.societegenerale.com
careers.societegenerale.com
unified-access.societegenerale.com
sgnews.societegenerale.com
san-004.ceros.com
sni.cloudflaressl.com
h-esign.societegenerale.com
coxetnel-oeuffactory.societegenerale.com
seasonsgreetings.societegenerale.com
linstantprive.privatebanking.societegenerale.com
assurances.societegenerale.com
www.equipmentfinance.societegenerale.com
factoring.societegenerale.com
h-taleo.exit.societegenerale.com
www.blackbird.societegenerale.com
ambassadorsday.societegenerale.com
assurances.societegenerale.com
homo.webadmin.societegenerale.com
h-partners-api.bsc.societegenerale.com
homowebsight.societegenerale.com
sni.cloudflaressl.com
*.pinterestceros.com
ceros3.map.fastly.net
sourcing-hub-reporting.societegenerale.com
h-lamatinale.societegenerale.com
san-004.ceros.com
monsieurmadame.societegenerale.com
san-004.ceros.com
hob-isis.societegenerale.com
netkin.eu
Nouveauxmodeles.societegenerale.com
sf-webtocase.societegenerale.com
sogecash-ebics.societegenerale.com
appliactionnaire.societegenerale.com
login.securitiesservices.societegenerale.com
ambassadorsday.societegenerale.com
portail-pca.factoring.societegenerale.com
infact.factoring.societegenerale.fr
san-004.ceros.com
swordphish.cert.societegenerale.com
apps.bsc.aws.societegenerale.com
www.scf-servicing-hom.societegenerale.com
h2-imap.societegenerale.com
immsituadmin.societegenerale.com
careers.socgen.com
getready.societegenerale.com
www.soactif.societegenerale.com
carte-bancaire-gratuite.societegenerale.com
cert.societegenerale.com
innovshare.societegenerale.com
ceros3.map.fastly.net
projects.societegenerale.com
www.scf-servicing.societegenerale.com
suite3.securitiesservices.societegenerale.com
sso-sogecashweb.societegenerale.com
live.societegenerale.com
homo-login.securitiesservices.societegenerale.com
h-unified-access.societegenerale.com
san-004.ceros.com
www.equipmentfinance.societegenerale.com
reglement.societegenerale.com
h-report.vip.equipmentfinance.societegenerale.com
h-report.vip.equipmentfinance.societegenerale.com
activation.caff.societegenerale.com
jazz-ou-sobrio.societegenerale.com
sni.cloudflaressl.com
dublinportal.societegenerale.com
boxallinclusive.societegenerale.com
ceros3.map.fastly.net
hfilegtw.societegenerale.com
ceros3.map.fastly.net
ceros3.map.fastly.net
seasonsgreetings.societegenerale.com

Certificate

The complete raw certificate details for portail-pca.factoring.societegenerale.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnOaA6oQQ1tIH92JuLzbu
FeKxIQ8taNK0ubVJBx1KDGboOxb8IOkmlr3cpc8nhgco/cOwhJ1dCkVPIEiMIFNr
18r90Tt6qK/F+rkImP6xczfvKoK74oTnMQQZMGPWozlW/TmEWa9CReLPxPdBHK1e
o61fHRfOYTA/z1fV3+29vKLnASevGzeH3ZLFATxeqhxNxiejQTaLZaidrAXvZ4ql
xf57rMTKPDlCeRhjpD7amVsFG4P4OL5sIRnbdgXFv3s/wmCdjUiMW22VpWCFspFU
u8gIYlCiQZtbhwd3fW5I7iuKmBrn9OMr5TuwTHQ7HoCeBLLlf/uOg6HYXkgL+v25
ZwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 18402965952083805241474690057307992303
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-13 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-13 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PARIS'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Societe Generale'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RESG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'portail-pca.factoring.societegenerale.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19806841125601273744201759232591273829350594678391297298667737289493973838451262291097519516115594072646872881235653344108439045407756856946071637852781892029429594537261599281450743192702988608231298402102499532343100002052765015955867112462788881066436108551513742448789157084537151886467939446651283546505159995424184249959296319928340537463940331331666320832208137235277782307964588296422288062244991129982680169722302391337305027191201339195085458336178206808076571861820208479915837594332584668497737848785022886578142087714890927490840560490581889439018585189982980265864793670761248970689325782006699814402407
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c3448a952e1145822e4650fa18450d85cd8d2811
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portail-pca.factoring.societegenerale.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portail-pca.cga.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0077ebdb7592ec3b909f17f1705de1ec8fbecaf3ede9e2a0b3a087056a76cabc0d7f8a5c9453b526e171cf05247e433066ac53c11e7b0d2add0599a38817d367a0cc4bb45f4b7243fe18ef61a380388f475c4e1b69884df4ed8ce9376e26467795721f85cd42ab6c8434eb60c65cf2b4e7ded1bb5a1f72070e58bf56a36614bb9255c49d80a6efcaae889071922d3bd1dd1878f45d191b42a2de78b135e48d11d73bea7394d3e6551e631f36e530f99f681571c67bebfe0f2a3ca9363a0c319060c5166076c00717ac4a3c282f97ebc34f489320b49152c7a869b4bee2851a4d35fa041db6d949b809d6bb3567fc2a3b72d32d8e16eaa9a0430c353dd45a28095b