sis-schwerin.de
Issued by R3
About this certificate
This digital certificate with serial number 04:24:83:de:0f:ff:99:0c:81:c3:ac:a5:7c:d6:38:b5:01:1e was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sis-schwerin.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:24:83:de:0f:ff:99:0c:81:c3:ac:a5:7c:d6:38:b5:01:1eSerial Number (int): 360874590818031881804580811860746372972830
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 7c:0f:22:78:22:61:9d:97:aa:76:3f:e8:21:a0:ef:7a:4b:d8:9d:fb
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ad:57:51:0a:d4:c6:5a:5c:5e:6b:e7:ad:ac:a2:4d:0c:af:22:55:5f
Fingerprint (sha256): 0a:ba:5d:00:e6:b0:7c:90:b1:f4:fd:1f:2e:6d:e8:d5:8b:64:fe:a6:e2:c1:37:6b:c8:df:68:a5:9b:61:4b:5d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sis-schwerin.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sis-schwerin.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sis-schwerin.de
www.sis-schwerin.de
www.sis-schwerin.de
Other certificates including the domain name sis-schwerin.de
(limited to 100 certificates)
cag3.sis-schwerin.de
mobil.sis-schwerin.de
sis-schwerin.de
emmtest.sis-schwerin.de
sis-schwerin.de
sslvpn.sis-schwerin.de
sslvpn.sis-schwerin.de
sis-schwerin.de
mgw2.sis-schwerin.de
cag1.sis-schwerin.de
sis-schwerin.de
sis-schwerin.de
sslvpn.sis-schwerin.de
sis-schwerin.de
piwik.sis-schwerin.de
ssl-vpn.sis-schwerin.de
sslvpn.sis-schwerin.de
www.sis-schwerin.de
www.sis-schwerin.de
www.sis-schwerin.de
webmail.sis-schwerin.de
mgw1.sis-schwerin.de
*.sis-schwerin.de
www.sis-schwerin.de
sslvpn.sis-schwerin.de
*.sis-schwerin.de
sslvpn.sis-schwerin.de
sis-schwerin.de
sis-schwerin.de
*.sis-schwerin.de
sis-schwerin.de
mobil.sis-schwerin.de
cag3.sis-schwerin.de
emm.sis-schwerin.de
piwik.sis-schwerin.de
www.sis-schwerin.de
sslvpn.sis-schwerin.de
mgw1.sis-schwerin.de
mgw1.sis-schwerin.de
piwik.sis-schwerin.de
webmail.sis-schwerin.de
cag3.sis-schwerin.de
wlanportal.sis-schwerin.de
webmail.sis-schwerin.de
webmail.sis-schwerin.de
sis-ksm-wlanportal.sis-schwerin.de
www.sis-schwerin.de
sis-schwerin.de
cag3.sis-schwerin.de
sis-schwerin.de
sis-schwerin.de
webmail.sis-schwerin.de
www.sis-schwerin.de
sis-schwerin.de
wlanportal.sis-schwerin.de
analytics.sis-schwerin.de
*.sis-schwerin.de
webmail.sis-schwerin.de
piwik.sis-schwerin.de
mobil.sis-schwerin.de
sis-schwerin.de
emmtest.sis-schwerin.de
sis-schwerin.de
sslvpn.sis-schwerin.de
sslvpn.sis-schwerin.de
sis-schwerin.de
mgw2.sis-schwerin.de
cag1.sis-schwerin.de
sis-schwerin.de
sis-schwerin.de
sslvpn.sis-schwerin.de
sis-schwerin.de
piwik.sis-schwerin.de
ssl-vpn.sis-schwerin.de
sslvpn.sis-schwerin.de
www.sis-schwerin.de
www.sis-schwerin.de
www.sis-schwerin.de
webmail.sis-schwerin.de
mgw1.sis-schwerin.de
*.sis-schwerin.de
www.sis-schwerin.de
sslvpn.sis-schwerin.de
*.sis-schwerin.de
sslvpn.sis-schwerin.de
sis-schwerin.de
sis-schwerin.de
*.sis-schwerin.de
sis-schwerin.de
mobil.sis-schwerin.de
cag3.sis-schwerin.de
emm.sis-schwerin.de
piwik.sis-schwerin.de
www.sis-schwerin.de
sslvpn.sis-schwerin.de
mgw1.sis-schwerin.de
mgw1.sis-schwerin.de
piwik.sis-schwerin.de
webmail.sis-schwerin.de
cag3.sis-schwerin.de
wlanportal.sis-schwerin.de
webmail.sis-schwerin.de
webmail.sis-schwerin.de
sis-ksm-wlanportal.sis-schwerin.de
www.sis-schwerin.de
sis-schwerin.de
cag3.sis-schwerin.de
sis-schwerin.de
sis-schwerin.de
webmail.sis-schwerin.de
www.sis-schwerin.de
sis-schwerin.de
wlanportal.sis-schwerin.de
analytics.sis-schwerin.de
*.sis-schwerin.de
webmail.sis-schwerin.de
piwik.sis-schwerin.de
Certificate
The complete raw certificate details for sis-schwerin.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/zCCBOegAwIBAgISBCSD3g//mQyBw6ylfNY4tQEeMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMjEwODE3MjNaFw0yNDA0MjAwODE3MjJaMBoxGDAWBgNVBAMT D3Npcy1zY2h3ZXJpbi5kZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AKdoRCDJVZhEQN1v6npJLu45KBGFVtVIwh1gKeg0IHXypDvMrvXIrMKm2rO6lUZc rogCShaXbGnKnyZRr9JnzeOC77jqV6Ye+SPiIWEdM5YvOg9XCabmyHLCIaZwHsr3 gToUEZhwDD2NlvsQLDFnOIuSpUGXfT94WSalhM/T6MxobnJWl5DjBwyXA8JWphBd bqxS4cFjc7Uk2a4CsCQObrFJKBfxGHUSl14oy+W+3tp5hoA3/TLzU9F2SLggIgkg uRf3LS9mPlNsg5Z8iINnbOp7jpiShxVs7i4IapfPPu91W/4O0m2wH+tWnFuoTWXC +PIS7VzzHRM03BIoCZEfp80jAEvnDU9343/DH+6fHA6AmSys+P4SXRLuSi0xEGF9 QNaz8bVbUTeWTqS2kjURYbD/oslhqgTRV1hXizwwNPjdFi3ebbDBZghZ3ln5AmLA 4S/h0jEPDPJg6EzU4Rw8GmYH68ByN4E2M04B6kRy4LkFgnGdLHXigGjh7EbbjKuD 5PO0QW1iTSv6abnGzVki0NUDpu67MVtYQ83ezBd3OkjNE20m8pSZCL5ra5ckKbjK SW5EJXzGZ0qjrcrtQOcza/MvsRbCcRUvIIr1lkuWI+t5hDoQOfqSLLg0WZ1OJTEo W8miRNmWVxZJDLuXbAj3A1/pb5UpaEW3iE2u64RAzUaVAgMBAAGjggIlMIICITAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFHwPIngiYZ2XqnY/6CGg73pL2J37MB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMC8GA1UdEQQoMCaCD3Npcy1zY2h3ZXJpbi5kZYIT d3d3LnNpcy1zY2h3ZXJpbi5kZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisG AQQB1nkCBAIEgfQEgfEA7wB1ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h +tQXAAABjStPcjoAAAQDAEYwRAIgIpHf/N+QQvgXQiv4tkIwNdFHkynYpOx1G6bV ZALPsYcCICMLrYDSBjMUxTluumr6crCQihbSshNq9zWzyTdDVqt+AHYAouK/1h7e Ly8HoNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGNK09yvwAABAMARzBFAiEAiJ6+ ArTN6NNKgj3cbsaI1OMUWW7h2R3TYx3vTm11KdgCIB8ZLmGz/tWxUofsAd7IDcW4 0tLns47NBIxlc/LCGzJAMA0GCSqGSIb3DQEBCwUAA4IBAQALTWy9WBO50iFTnqhw 667IcL9cdHP6P10vCXQ/ZXmcxyGodWVHo7E7N6kCd33821j2kV7N8d3odMaHZn23 Tb3Bb5So2xL52sjavuNPXn1EGOsmBv6Uih4LDNMQhfj8H1pU9uPer4MC2IpHIKqS WyaRohDGyd80c31Lm+eXabvv3i6TwoHA0HaRzpWeEa1mYG948oz6TciHj2GJe6Iz LWd4OEFgjmkqA28BLXYehsWanqgXh0lpIVRz3SgDJLBnonLF0sqXhDcqQQNjF0Dd l/nMZms+aORsSn5qwcVBHzl1oHk/53mqqsmsV2evsMcEn24RsnwhDohsgJ+JTHSa TDjW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAp2hEIMlVmERA3W/qekku 7jkoEYVW1UjCHWAp6DQgdfKkO8yu9ciswqbas7qVRlyuiAJKFpdsacqfJlGv0mfN 44LvuOpXph75I+IhYR0zli86D1cJpubIcsIhpnAeyveBOhQRmHAMPY2W+xAsMWc4 i5KlQZd9P3hZJqWEz9PozGhuclaXkOMHDJcDwlamEF1urFLhwWNztSTZrgKwJA5u sUkoF/EYdRKXXijL5b7e2nmGgDf9MvNT0XZIuCAiCSC5F/ctL2Y+U2yDlnyIg2ds 6nuOmJKHFWzuLghql88+73Vb/g7SbbAf61acW6hNZcL48hLtXPMdEzTcEigJkR+n zSMAS+cNT3fjf8Mf7p8cDoCZLKz4/hJdEu5KLTEQYX1A1rPxtVtRN5ZOpLaSNRFh sP+iyWGqBNFXWFeLPDA0+N0WLd5tsMFmCFneWfkCYsDhL+HSMQ8M8mDoTNThHDwa ZgfrwHI3gTYzTgHqRHLguQWCcZ0sdeKAaOHsRtuMq4Pk87RBbWJNK/ppucbNWSLQ 1QOm7rsxW1hDzd7MF3c6SM0TbSbylJkIvmtrlyQpuMpJbkQlfMZnSqOtyu1A5zNr 8y+xFsJxFS8givWWS5Yj63mEOhA5+pIsuDRZnU4lMShbyaJE2ZZXFkkMu5dsCPcD X+lvlSloRbeITa7rhEDNRpUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 360874590818031881804580811860746372972830 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-21 08:17:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-20 08:17:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sis-schwerin.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 682962155763661918692563966478598611730812259272237499931133538826177028179024126754201022547658984830958447343453041796148571467788913411564805582837936991992012475527040036973923891932025744487207296924618870029041272306205112200090573788748116493024788676232840687773856355399771078305046316562120890559799692365186956003451985883935173259624918467490284141649135011157970425242639018376044161572455006856905956829045224600189774056750449176972446560606802975688751575457618935939789638014887010404489958422593480490415888930581478769769332036008223885551290837883295300872845796864925068362317218219486663617143664890573600673170524479897486696996980331680728078242591985325109335172720482637331775427084781818113676498247098262667837170789019154380803714192722035200694858051126375964298835790643165963118946028240453416403019805742633008847018686157342084876173882427208631514461558327363390163639676360637874281083032877176079452828950070360647708878050646935007067490209876563106010359847774548172987180285794595140004060914853903972806116197347027046806896857188450907017694651972070278660439010804838280890499873101994659934300761872172417045712744943255817271071307812021337498466425974936267650834800009430703784395097749 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7c0f227822619d97aa763fe821a0ef7a4bd89dfb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sis-schwerin.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sis-schwerin.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d2b4f723a000004030046304402202291dffcdf9042f817422bf8b6423035d1479329d8a4ec751ba6d56402cfb1870220230bad80d2063314c5396eba6afa72b0908a16d2b2136af735b3c9374356ab7e007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d2b4f72bf0000040300473045022100889ebe02b4cde8d34a823ddc6ec688d4e314596ee1d91dd3631def4e6d7529d802201f192e61b3fed5b15287ec01dec80dc5b8d2d2e7b38ecd048c6573f2c21b3240 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000b4d6cbd5813b9d221539ea870ebaec870bf5c7473fa3f5d2f09743f65799cc721a8756547a3b13b37a902777dfcdb58f6915ecdf1dde874c687667db74dbdc16f94a8db12f9dac8dabee34f5e7d4418eb2606fe948a1e0b0cd31085f8fc1f5a54f6e3deaf8302d88a4720aa925b2691a210c6c9df34737d4b9be79769bbefde2e93c281c0d07691ce959e11ad66606f78f28cfa4dc8878f61897ba2332d67783841608e692a036f012d761e86c59a9ea817874969215473dd280324b067a272c5d2ca9784372a4103631740dd97f9cc666b3e68e46c4a7e6ac1c5411f3975a0793fe779aaaac9ac5767afb0c7049f6e11b27c210e886c809f894c749a4c38d6