af.one.un.org
Issued by R3
About this certificate
This digital certificate with serial number 04:e6:b1:12:2d:9b:9d:88:a6:42:a5:70:0b:d6:18:16:d5:56 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=af.one.un.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e6:b1:12:2d:9b:9d:88:a6:42:a5:70:0b:d6:18:16:d5:56Serial Number (int): 426949455860491768619104847594477795595606
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 90:41:bd:91:f9:f0:d7:23:cf:53:c1:81:95:5b:33:e6:1a:9d:2e:ea
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 77:76:7b:17:30:26:63:b2:70:ed:d2:89:97:18:0c:c8:cb:f5:24:0e
Fingerprint (sha256): 0a:99:33:6d:b3:36:2f:85:4c:75:8f:52:d5:a3:d7:54:42:70:b4:6f:41:de:61:5d:40:da:0c:9c:4b:46:2b:ca
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate af.one.un.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for af.one.un.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
af.one.un.org
Other certificates including the domain name un.org
(limited to 100 certificates)
*.un.org
*.un.org
lpk-cms.ilearn.un.org
kh.one.un.org
lpk-cms.ilearn.un.org
*.wf.un.org
cims-test.so.one.un.org
5726971199750144-fe1.pantheonsite.io
ilearn-cms.umoja.un.org
cerf.un.org
5679778661138432-fe3.pantheonsite.io
un.org
ask.un.org
jo.one.un.org
un.org
dprkorea.un.org
afghanistan.un.org
untermportal.un.org
mw.one.un.org
bkkuccx02.escap.un.org
ask.un.org
ask.un.org
*.qa.un.org
syria.un.org
5673073118281728-fe4.pantheonsite.io
hcc-hpsb-training.ilearn.un.org
*.news.un.org
elearning-cms.unstats.un.org
5684961520648192-fe4.pantheonsite.io
ci.one.un.org
*.escap.un.org
sdgprimer.un.org
expccl.ptc.un.org
elearning-cms.unstats.un.org
inspira.un.org
learning.un.org
5726971199750144-fe1.pantheonsite.io
ss.one.un.org
ask.un.org
cims.so.one.un.org
conf.un.org
kh.one.un.org
*.dss.un.org
papuanewguinea.un.org
migrationnetwork.un.org
ungsc-remotesupport.un.org
inspira.un.org
un.org
elearning.un.org
india.un.org
unp.un.org
5673073118281728-fe4.pantheonsite.io
*.dfs.un.org
uniteaware.un.org
peru.un.org
www.tm.one.un.org
lyncsip.dfs.un.org
roadsafetyfund.un.org
research.un.org
lpk.ilearn.un.org
ilearn-cms.umoja.un.org
ilearn.un.org
zm.one.un.org
research.un.org
expecl.video.un.org
mail.stc.un.org
apidocs.cna.com
*.unite.un.org
enterpriseenrollment.dfs.un.org
un-az.org
shop.un.org
countryteam.org
officewebapp.dfs.un.org
5673073118281728-fe4.pantheonsite.io
cims.so.one.un.org
roadsafetyfund.un.org
hcc-cms.ilearn.un.org
digitallibrary.in.one.un.org
journal.qa.un.org
morocco.un.org
crmlearning.un.org
crmlearning-cms.un.org
*.umoja.un.org
cims.so.one.un.org
af.one.un.org
cameroon.un.org
*.dfs.un.org
service.ilearn.un.org
fdp.un.org
remote.dfs.un.org
hcc-cms.ilearn.un.org
remote.dfs.un.org
lpk-cms.ilearn.un.org
cm.one.un.org
hcc-hpsb-training.ilearn.un.org
cd.one.un.org
mm.one.un.org
vdi.dfs.un.org
www.un.or.th
ci.one.un.org
*.un.org
lpk-cms.ilearn.un.org
kh.one.un.org
lpk-cms.ilearn.un.org
*.wf.un.org
cims-test.so.one.un.org
5726971199750144-fe1.pantheonsite.io
ilearn-cms.umoja.un.org
cerf.un.org
5679778661138432-fe3.pantheonsite.io
un.org
ask.un.org
jo.one.un.org
un.org
dprkorea.un.org
afghanistan.un.org
untermportal.un.org
mw.one.un.org
bkkuccx02.escap.un.org
ask.un.org
ask.un.org
*.qa.un.org
syria.un.org
5673073118281728-fe4.pantheonsite.io
hcc-hpsb-training.ilearn.un.org
*.news.un.org
elearning-cms.unstats.un.org
5684961520648192-fe4.pantheonsite.io
ci.one.un.org
*.escap.un.org
sdgprimer.un.org
expccl.ptc.un.org
elearning-cms.unstats.un.org
inspira.un.org
learning.un.org
5726971199750144-fe1.pantheonsite.io
ss.one.un.org
ask.un.org
cims.so.one.un.org
conf.un.org
kh.one.un.org
*.dss.un.org
papuanewguinea.un.org
migrationnetwork.un.org
ungsc-remotesupport.un.org
inspira.un.org
un.org
elearning.un.org
india.un.org
unp.un.org
5673073118281728-fe4.pantheonsite.io
*.dfs.un.org
uniteaware.un.org
peru.un.org
www.tm.one.un.org
lyncsip.dfs.un.org
roadsafetyfund.un.org
research.un.org
lpk.ilearn.un.org
ilearn-cms.umoja.un.org
ilearn.un.org
zm.one.un.org
research.un.org
expecl.video.un.org
mail.stc.un.org
apidocs.cna.com
*.unite.un.org
enterpriseenrollment.dfs.un.org
un-az.org
shop.un.org
countryteam.org
officewebapp.dfs.un.org
5673073118281728-fe4.pantheonsite.io
cims.so.one.un.org
roadsafetyfund.un.org
hcc-cms.ilearn.un.org
digitallibrary.in.one.un.org
journal.qa.un.org
morocco.un.org
crmlearning.un.org
crmlearning-cms.un.org
*.umoja.un.org
cims.so.one.un.org
af.one.un.org
cameroon.un.org
*.dfs.un.org
service.ilearn.un.org
fdp.un.org
remote.dfs.un.org
hcc-cms.ilearn.un.org
remote.dfs.un.org
lpk-cms.ilearn.un.org
cm.one.un.org
hcc-hpsb-training.ilearn.un.org
cd.one.un.org
mm.one.un.org
vdi.dfs.un.org
www.un.or.th
ci.one.un.org
Certificate
The complete raw certificate details for af.one.un.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgISBOaxEi2bnYimQqVwC9YYFtVWMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTA5MTEwNjU1MjJaFw0yMTEyMTAwNjU1MjFaMBgxFjAUBgNVBAMT DWFmLm9uZS51bi5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH 4XLqVEoTIhnwI6PwgOIxc+/YaaX+Ak1LRJ3cX8LcOl9vMzjwMzlZ/M11tl8zqra4 Ff3vMqOD+JBR6hrilkjF0fmp7S5N3deRo0wJ0E/A8oI0FqS9iTOK1Yv+u1U3JBeo pxHHcNtHmbihbie2Dc4L3tZ0ouSX2qX3G/3+Jc2D1WWU0xeP3IoRTTHcJpY1fnt8 gLy4bX+sU6PJurjBcoyPyL9Rez65ljncC3q/ACsLtt/6byiAYBHu/hiEeor1Rptb kYo7Rdg3oMY58/c5JcoCvFwOPu6HcdJjAkK+WMspv6hq457PcNDYz56vP/SXlb12 yuLtt4iqdOh9jNmIjjTdAgMBAAGjggJIMIICRDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFJBBvZH58Ncjz1PBgZVbM+YanS7qMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MBgGA1UdEQQRMA+CDWFmLm9uZS51bi5vcmcwTAYDVR0gBEUwQzAIBgZngQwBAgEw NwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5j cnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgCUILwejtWNbIhzH4KL IiwN0dpNXmxPlD1h204vWE2iwgAAAXvT2pXxAAAEAwBHMEUCIDwIh15bEtOpKeoh KdHNZQ5wkQElT4oBejzlFjjmINU+AiEAharMhSFbiH3nbKotx3y0SH4n6qZvKi5g KjPDkhEve4UAdgB9PvL4j/+IVWgkwsDKnlKJeSvFDngJfy5ql2iZfiLw1wAAAXvT 2pYZAAAEAwBHMEUCICtH0ozoXp8BRF3vfE4h0a7E6HEsnUQRXfTXwfoILvonAiEA 2Ijt+5oqDSbAtgbMmYfPKKg1BQSPNYpLDC3QfycywYUwDQYJKoZIhvcNAQELBQAD ggEBAJPZdJn5aAB/dZYkZs2ZEtIhCFtjLdFl/SOvOOj0hdRe7ep9Em4h/IBVFIij BarszZD1Np8K9pTyfb4l+ExW2CeKlRDlFGRga/jm5Xgy8eStux4gUKzAzZ4TDg8K +b2AnZY2t3EhJKYWiAOS09UML6vkXE8oSvd4Zao96xV7JRXfjGIEhx3TeB22C9xB Fvq7djMBnCxUDhPFkfVlwNvD6/ozMIMNJB7WkI3CM2jTLoSMnNke+umOlM9Mchij QeB2sSr3/3X9l5HHkqGpmm0m0dSvs/3/JIsZXsuffzYpS7k2a7llFLqnzpzMlDz8 470HL9cGCis5GQWcFsyzgOIin9I= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+Fy6lRKEyIZ8COj8IDi MXPv2Gml/gJNS0Sd3F/C3DpfbzM48DM5WfzNdbZfM6q2uBX97zKjg/iQUeoa4pZI xdH5qe0uTd3XkaNMCdBPwPKCNBakvYkzitWL/rtVNyQXqKcRx3DbR5m4oW4ntg3O C97WdKLkl9ql9xv9/iXNg9VllNMXj9yKEU0x3CaWNX57fIC8uG1/rFOjybq4wXKM j8i/UXs+uZY53At6vwArC7bf+m8ogGAR7v4YhHqK9UabW5GKO0XYN6DGOfP3OSXK ArxcDj7uh3HSYwJCvljLKb+oauOez3DQ2M+erz/0l5W9dsri7beIqnTofYzZiI40 3QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 426949455860491768619104847594477795595606 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-11 06:55:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-10 06:55:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'af.one.un.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25232595678432335380590072227388811277687458625539187793965201294768525972786882106392914342224562909315561031863261834656867658950958034071624749813453196237988498518412829090990548825991395115055211476714384013390989799008275312567432687203807606531100097068185540358871392811955949470353619828513649623450532338728409175225169524033695297524607924656594218474755999711807020159064501430110584841758712188581525662143287487355586355090306135938965690797054031239204275078263714002588128374906034698659810674349258025072044591405516049349037111429916374039322667125121032642903944692943920318379758083595309935375581 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9041bd91f9f0d723cf53c181955b33e61a9d2eea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'af.one.un.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076009420bc1e8ed58d6c88731f828b222c0dd1da4d5e6c4f943d61db4e2f584da2c20000017bd3da95f1000004030047304502203c08875e5b12d3a929ea2129d1cd650e709101254f8a017a3ce51638e620d53e02210085aacc85215b887de76caa2dc77cb4487e27eaa66f2a2e602a33c392112f7b850076007d3ef2f88fff88556824c2c0ca9e5289792bc50e78097f2e6a9768997e22f0d70000017bd3da9619000004030047304502202b47d28ce85e9f01445def7c4e21d1aec4e8712c9d44115df4d7c1fa082efa27022100d888edfb9a2a0d26c0b606cc9987cf28a83505048f358a4b0c2dd07f2732c185 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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