demo.waterloo.io
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d9:68:06:f5:af:b9:ee:27:dd:30:5f:9e:74:0a:ed:71:17 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=demo.waterloo.io
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d9:68:06:f5:af:b9:ee:27:dd:30:5f:9e:74:0a:ed:71:17Serial Number (int): 335316407265579992945241794454007059411223
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: cf:1a:97:6f:71:37:1c:96:b7:85:2f:02:22:1b:f3:c3:0e:9b:b8:a2
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e2:ba:cb:e0:75:c2:f4:14:20:6c:66:a3:0c:fc:1e:45:ab:3c:f0:4c
Fingerprint (sha256): 0d:14:9b:bc:e0:a0:1b:38:ca:0e:0a:19:83:14:b9:7c:da:f5:ad:e1:fa:ef:09:f1:d1:17:dd:28:56:12:ab:a1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate demo.waterloo.io
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for demo.waterloo.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
demo.waterloo.io
Other certificates including the domain name waterloo.io
(limited to 100 certificates)
dev.waterloo.io
app.waterloo.io
content.waterloo.io
app.waterloo.io
app.waterloo.io
demo.waterloo.io
app.waterloo.io
*.waterloo.io
waterloo.io
app.waterloo.io
demo.waterloo.io
waterloo.io
app.waterloo.io
waterloo.io
waterloo.io
demo.waterloo.io
app.waterloo.io
demo.waterloo.io
waterloo.io
waterloo.io
content.waterloo.io
waterloo.io
demo.waterloo.io
app.waterloo.io
waterloo.io
sni.cloudflaressl.com
demo.waterloo.io
sni.cloudflaressl.com
app.waterloo.io
demo.waterloo.io
dev.waterloo.io
dev.waterloo.io
app.waterloo.io
*.waterloo.io
demo.waterloo.io
demo.waterloo.io
demo.waterloo.io
demo.waterloo.io
start.waterloo.io
app.waterloo.io
dev.waterloo.io
demo.waterloo.io
demo.waterloo.io
waterloo.io
waterloo.io
demo.waterloo.io
app.waterloo.io
app.waterloo.io
*.waterloo.io
app.waterloo.io
demo.waterloo.io
app.waterloo.io
waterloo.io
demo.waterloo.io
content.waterloo.io
dev.waterloo.io
waterloo.io
dev.waterloo.io
demo.waterloo.io
content.waterloo.io
dev.waterloo.io
demo.waterloo.io
demo.waterloo.io
demo.waterloo.io
app.waterloo.io
app.waterloo.io
waterloo.io
app.waterloo.io
waterloo.io
app.waterloo.io
waterloo.io
content.waterloo.io
app.waterloo.io
app.waterloo.io
demo.waterloo.io
demo.waterloo.io
demo.waterloo.io
demo.waterloo.io
dev.waterloo.io
waterloo.io
demo.waterloo.io
app.waterloo.io
demo.waterloo.io
app.waterloo.io
app.waterloo.io
demo.waterloo.io
app.waterloo.io
app.waterloo.io
dev.waterloo.io
app.waterloo.io
help.waterloo.io
app.waterloo.io
sni.cloudflaressl.com
demo.waterloo.io
waterloo.io
waterloo.io
waterloo.io
app.waterloo.io
content.waterloo.io
app.waterloo.io
app.waterloo.io
demo.waterloo.io
app.waterloo.io
*.waterloo.io
waterloo.io
app.waterloo.io
demo.waterloo.io
waterloo.io
app.waterloo.io
waterloo.io
waterloo.io
demo.waterloo.io
app.waterloo.io
demo.waterloo.io
waterloo.io
waterloo.io
content.waterloo.io
waterloo.io
demo.waterloo.io
app.waterloo.io
waterloo.io
sni.cloudflaressl.com
demo.waterloo.io
sni.cloudflaressl.com
app.waterloo.io
demo.waterloo.io
dev.waterloo.io
dev.waterloo.io
app.waterloo.io
*.waterloo.io
demo.waterloo.io
demo.waterloo.io
demo.waterloo.io
demo.waterloo.io
start.waterloo.io
app.waterloo.io
dev.waterloo.io
demo.waterloo.io
demo.waterloo.io
waterloo.io
waterloo.io
demo.waterloo.io
app.waterloo.io
app.waterloo.io
*.waterloo.io
app.waterloo.io
demo.waterloo.io
app.waterloo.io
waterloo.io
demo.waterloo.io
content.waterloo.io
dev.waterloo.io
waterloo.io
dev.waterloo.io
demo.waterloo.io
content.waterloo.io
dev.waterloo.io
demo.waterloo.io
demo.waterloo.io
demo.waterloo.io
app.waterloo.io
app.waterloo.io
waterloo.io
app.waterloo.io
waterloo.io
app.waterloo.io
waterloo.io
content.waterloo.io
app.waterloo.io
app.waterloo.io
demo.waterloo.io
demo.waterloo.io
demo.waterloo.io
demo.waterloo.io
dev.waterloo.io
waterloo.io
demo.waterloo.io
app.waterloo.io
demo.waterloo.io
app.waterloo.io
app.waterloo.io
demo.waterloo.io
app.waterloo.io
app.waterloo.io
dev.waterloo.io
app.waterloo.io
help.waterloo.io
app.waterloo.io
sni.cloudflaressl.com
demo.waterloo.io
waterloo.io
waterloo.io
waterloo.io
Certificate
The complete raw certificate details for demo.waterloo.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgISA9loBvWvue4n3TBfnnQK7XEXMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTQwMTE4MjlaFw0y MDAxMTIwMTE4MjlaMBsxGTAXBgNVBAMTEGRlbW8ud2F0ZXJsb28uaW8wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHuZNxeISXlNIjBwS6eavjEfgQGgHH XA+fjHX4RHnU4+fU8noPa9P8Xvwz/ZUddM6f3ecd/NsM9FXnPQf997WzoyUnC73N qmF90RYuhyJd3fXY9x8R/Y8xJ4827iFkTqVcsoG2Mhj4Ki0k448Km0o0MKeEYuSR /ewYfYUHIO5picmLL6mUhrqAhP40K90Nd7Xn4GsSCJb9zkFau2PPzFTUDPi+MMLT WPojqhBWqG5qivmOBe24w4FqoZHHyLLUe8F0EiP+3Gw5eoBxYzcTXjcKyp3AG7eL fOrsgzFZiJVak0hkn/lFeNRRGmE2YAZfv7bdoqKREXX78WcfnVbbK6nLAgMBAAGj ggJkMIICYDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFM8al29xNxyWt4UvAiIb88MO m7iiMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEB BGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wGwYDVR0RBBQwEoIQZGVtby53YXRlcmxvby5pbzBMBgNVHSAERTBDMAgG BmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3Bz LmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AF6nc/nf VsDntTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAABbcgPUSYAAAQDAEYwRAIgROu8 KRdRt6OuCW879NloUvV5Ldfb6+mvr+bZ6kf6lOMCIGJDGCWmdexlVFssZXd0phm9 H6gnDwh4kCb3cz+QjkNFAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH 9HgAAAFtyA9RQAAABAMARzBFAiAunuceQbiB0BFrqVy0iLGE49MMZ0cukCG4pvgO Nw6k2wIhAMLWedhb1SEiPxpEfe4R6zTdNljSZemzqIA8ET5nKUUnMA0GCSqGSIb3 DQEBCwUAA4IBAQBVEqDLHWgOCUdZPc89F0VjABDdLOX3zpqfSQWbO9QbInUrocA7 aFZgpcJH0H/suVi99cBtf+rsmJyVUF6L7FGNTuvIz+CIOrwU/Ky5gv1Xdg5y642J cPXp8nKY7sJImzVTLeDnZVJmR9Nhv1/WbozOHlLrhIJB/7n5pAWkZCl/may8SnQH IlIzbBOvrmTyFaPieG9wD44ZC1m3Sjsp3n+vLxxCFbQdAzW289GaBNJC8R2VML+s hhjs6pJCRyuwyaUMQwmqxlNkbpfH6qUdcAPhBhULu2/biFvJNKlW//qwrDpFK4Hs zhpDO8gkcaXwht0XtaQxnXnGP2dpRbyD8PCV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7mTcXiEl5TSIwcEunmr 4xH4EBoBx1wPn4x1+ER51OPn1PJ6D2vT/F78M/2VHXTOn93nHfzbDPRV5z0H/fe1 s6MlJwu9zaphfdEWLociXd312PcfEf2PMSePNu4hZE6lXLKBtjIY+CotJOOPCptK NDCnhGLkkf3sGH2FByDuaYnJiy+plIa6gIT+NCvdDXe15+BrEgiW/c5BWrtjz8xU 1Az4vjDC01j6I6oQVqhuaor5jgXtuMOBaqGRx8iy1HvBdBIj/txsOXqAcWM3E143 CsqdwBu3i3zq7IMxWYiVWpNIZJ/5RXjUURphNmAGX7+23aKikRF1+/FnH51W2yup ywIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 335316407265579992945241794454007059411223 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-14 01:18:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-12 01:18:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demo.waterloo.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25212933599936130051599559171821468987856383234836208483375796345562128903633237550778969020972158854667078789078127355479434424327715354738172706442399892432786728045208627904309526493203835267914596951421714322993299647255570279361527800915087136142826611790230978567942161420090120852860612322179815696908044517132139221527535098830276267323960345144189555116037426098661383086388498065257047727991580796120037534610933964733236262567386086274982267442345397549308118422282981913733502808736901442791378895696251678560883768390487500985427131682872078426556758601737456363131653998001200659823000403666689776658891 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cf1a976f71371c96b7852f02221bf3c30e9bb8a2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.waterloo.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016dc80f51260000040300463044022044ebbc291751b7a3ae096f3bf4d96852f5792dd7dbebe9afafe6d9ea47fa94e3022062431825a675ec65545b2c657774a619bd1fa8270f08789026f7733f908e4345007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016dc80f5140000004030047304502202e9ee71e41b881d0116ba95cb488b184e3d30c67472e9021b8a6f80e370ea4db022100c2d679d85bd521223f1a447dee11eb34dd3658d265e9b3a8803c113e67294527 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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