thisone.rocks
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:98:e9:69:7a:6f:ee:97:83:21:b5:52:f0:75:64:02:31:b2 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=thisone.rocks
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:98:e9:69:7a:6f:ee:97:83:21:b5:52:f0:75:64:02:31:b2Serial Number (int): 313370035364773556225567414294408429973938
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e0:fd:ba:38:f6:58:c7:e3:f5:b4:07:c2:bf:dc:ec:9c:41:73:66:d4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 14:23:6b:6a:21:bd:00:cd:f3:44:58:df:a5:b9:b8:f6:e4:5e:cc:53
Fingerprint (sha256): 09:13:7e:0d:d6:af:bd:f1:cc:63:15:ab:f0:f8:c0:d3:05:58:b1:57:38:03:b4:09:16:ec:0e:91:4b:66:b8:8f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate thisone.rocks
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for thisone.rocks
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.thisone.rocks
thisone.rocks
thisone.rocks
Other certificates including the domain name thisone.rocks
(limited to 100 certificates)
discourse.thisone.rocks
thisone.rocks
logstash.thisone.rocks
discourse.thisone.rocks
drone.thisone.rocks
elasticsearch.kube.thisone.rocks
kibana.thisone.rocks
thisone.rocks
grafana.kube.thisone.rocks
elasticsearch-messdaten.thisone.rocks
grafana.thisone.rocks
discourse.thisone.rocks
grafana.kube.thisone.rocks
elasticsearch.thisone.rocks
discourse.thisone.rocks
thisone.rocks
kibana.kube.thisone.rocks
dashboard.kube.thisone.rocks
drone.thisone.rocks
thisone.rocks
dashboard.kube.thisone.rocks
kibana-messdaten.thisone.rocks
wwwurst.thisone.rocks
thisone.rocks
dashboard.kube.thisone.rocks
prometheus.thisone.rocks
prometheus.kube.thisone.rocks
grafana.thisone.rocks
registry.thisone.rocks
thisone.rocks
logstash.thisone.rocks
discourse.thisone.rocks
drone.thisone.rocks
elasticsearch.kube.thisone.rocks
kibana.thisone.rocks
thisone.rocks
grafana.kube.thisone.rocks
elasticsearch-messdaten.thisone.rocks
grafana.thisone.rocks
discourse.thisone.rocks
grafana.kube.thisone.rocks
elasticsearch.thisone.rocks
discourse.thisone.rocks
thisone.rocks
kibana.kube.thisone.rocks
dashboard.kube.thisone.rocks
drone.thisone.rocks
thisone.rocks
dashboard.kube.thisone.rocks
kibana-messdaten.thisone.rocks
wwwurst.thisone.rocks
thisone.rocks
dashboard.kube.thisone.rocks
prometheus.thisone.rocks
prometheus.kube.thisone.rocks
grafana.thisone.rocks
registry.thisone.rocks
Certificate
The complete raw certificate details for thisone.rocks in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISA5jpaXpv7peDIbVS8HVkAjGyMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTQxOTIxMzlaFw0y MDAzMTMxOTIxMzlaMBgxFjAUBgNVBAMTDXRoaXNvbmUucm9ja3MwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDCGQ3o1RYNYyPhyF9ZTbKScAlr+Si1uA1v BzezYH60o90Jgb0+S5CdweSlTznEd4lAX9a4N3kG9BewhmaDx3v4J5RDomse9Qu0 Z1t8V0MwpnDw4HfhxYa/kmoq+jjN17UUEaJoWq3L/vLm3PGcDojzrfbRjmu1umok ibg/sOJA1JdMvXaeX/7MhAgNYjYb+kTaEYrwxXaiP/MOnhhhwW9BNyXASb35aDkT fkt5g9vWf8fM/DU0WcP5yjVq/xuRcGbpIHb4gXlBzOKEy9ZLw9laGvleLgEqP7T/ RIlSVyl3vPmDzCHO+4r6wNiMHG5+7zS52Y+RPvn3RO2BB8avtCCjfqeny1Y9HGB1 okr90rTa5nEhUuJTo1Hghvb3DiFy656+0ARJ/vkkGp0vnXlcU/TgOBTHmH8K+IMb 0mQqI+hPT76CMbzfHixvgWKlMQTUqzn3RKzc1s+HGXgfPg+AuAiNBDhj4RqvZtJC aaXH2gtBdqpkLc3MXEPms0DMqfjo82J2guh81jdb0rFgVIspeNDTHD+0MO9/hT3L tXYGVR7kjOHCyf7lL8eXq8GyFD/fzl34l/B4x3BXsoi3dRLpTbUSQWA86cm/Y2dW sdOXAfEGf3iWpi062AMhd2vwSgKQhuvrRxHRwcgvGRS2UufYwHzYgiGambt5/PZS 3IXk6xiOWwIDAQABo4ICcTCCAm0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTg/bo4 9ljH4/W0B8K/3OycQXNm1DAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMCkGA1UdEQQiMCCCDyoudGhpc29uZS5yb2Nrc4IN dGhpc29uZS5yb2NrczBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEB ATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQIG CisGAQQB1nkCBAIEgfMEgfAA7gB1AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKESEoQY dZaBcUVYAAABbwYS5UwAAAQDAEYwRAIgMAesPTqHwoc4QOj4XKlaSbX9s0JlkrR/ SwfdJ0yccRoCIHSLIQqMyHY/PRBqvIQMnfugT4HvUf+Iedm9PJ8xo5/ZAHUAsh4F zIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFvBhLlNQAABAMARjBEAiBZ PBbtBUTLtBMexUT8ACkCrXiQ3tpysFB4kuaB5W91wwIgNl6UIsohK5zT6VkOEItE a8GRbXoa6VyzJAX3aPCIP1AwDQYJKoZIhvcNAQELBQADggEBAJr/X0oQJ4ws8TUG HG4A/jF6IEWS93PV/RYuAHZoN9G/ityPR484OzsSbTVdbHq6KD0mMhIoIY9jdCHq ExMhjAONy+bEvYAFIeDiYn3RdJ9kAtm8BrNSAWUGBafo6kvhxLHwt1Sc8I6C2AlC GOd7WO4LxRa5R6Lqc8w6tqTcDnnkxTwjt/ggR/klnAl0FjlJ/myILsAP7UCYR5Mw e2PzoKPj83YFEOz/j0MBmIxuaWHE5EQg+wZt9Y37oEQ9FcOH12k7S1JxRrkObC0R NYmMPUc20ycTSn2i1DHJzssPbcC6pTXlkPd4t28ktlUGl2TnsS4zUXrQTfyItCPF Qbu1h50= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwhkN6NUWDWMj4chfWU2y knAJa/kotbgNbwc3s2B+tKPdCYG9PkuQncHkpU85xHeJQF/WuDd5BvQXsIZmg8d7 +CeUQ6JrHvULtGdbfFdDMKZw8OB34cWGv5JqKvo4zde1FBGiaFqty/7y5tzxnA6I 86320Y5rtbpqJIm4P7DiQNSXTL12nl/+zIQIDWI2G/pE2hGK8MV2oj/zDp4YYcFv QTclwEm9+Wg5E35LeYPb1n/HzPw1NFnD+co1av8bkXBm6SB2+IF5QczihMvWS8PZ Whr5Xi4BKj+0/0SJUlcpd7z5g8whzvuK+sDYjBxufu80udmPkT7590TtgQfGr7Qg o36np8tWPRxgdaJK/dK02uZxIVLiU6NR4Ib29w4hcuuevtAESf75JBqdL515XFP0 4DgUx5h/CviDG9JkKiPoT0++gjG83x4sb4FipTEE1Ks590Ss3NbPhxl4Hz4PgLgI jQQ4Y+Ear2bSQmmlx9oLQXaqZC3NzFxD5rNAzKn46PNidoLofNY3W9KxYFSLKXjQ 0xw/tDDvf4U9y7V2BlUe5Izhwsn+5S/Hl6vBshQ/385d+JfweMdwV7KIt3US6U21 EkFgPOnJv2NnVrHTlwHxBn94lqYtOtgDIXdr8EoCkIbr60cR0cHILxkUtlLn2MB8 2IIhmpm7efz2UtyF5OsYjlsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 313370035364773556225567414294408429973938 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-14 19:21:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-13 19:21:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thisone.rocks' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 791850217809343862864391629047572181679969291724339349699284000335885431075833405648408637660794414120948068521153275265572827686083472897598764843420577496253357529195063021488676054609675918901626429463029044477281802371428675559999643039882407219664258616816133091031942710597317195326822708209224783668020560872119643869666394189280849907190429743203533207826432152450216516816031747902748438989523507310938143605840251208394852408215284488442817750367484858561945149841860775134205787298832282406998254571210108381230364456103541610411602534639298083653336286435242709770697314030517141207524540735423414966581270920686518773799225726310877394459065973157384784173757712610126621211053300992098299683427177889666311393655317988022398492441390271230147976501500887582344781612820940069228509566687766376688873558476893618541300823804566581213895804850352488371169874495655316377024566847287731225893734440479191670106819423209566905577367500808880501936979654138432883527022572936939179194264683493438915216431925708687673407380420209016440994291266110166140310130033537721731175575137738146551159226679127620682582289805936172746014238759280071720506867408144045406466925603948110613039494439402721929397332405171809298486431323 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e0fdba38f658c7e3f5b407c2bfdcec9c417366d4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.thisone.rocks' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thisone.rocks' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f0612e54c000004030046304402203007ac3d3a87c2873840e8f85ca95a49b5fdb3426592b47f4b07dd274c9c711a0220748b210a8cc8763f3d106abc840c9dfba04f81ef51ff8879d9bd3c9f31a39fd9007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f0612e53500000403004630440220593c16ed0544cbb4131ec544fc002902ad7890deda72b0507892e681e56f75c30220365e9422ca212b9cd3e9590e108b446bc1916d7a1ae95cb32405f768f0883f50 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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