www.artsfair.ca
Issued by R3
About this certificate
This digital certificate with serial number 03:25:fc:33:ca:27:ad:9f:71:34:34:b7:86:94:be:64:b0:fe was issued on by Let's Encrypt.
With 30 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.artsfair.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:25:fc:33:ca:27:ad:9f:71:34:34:b7:86:94:be:64:b0:feSerial Number (int): 274262539733623419100385961552384910209278
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: cb:6c:c3:8e:50:07:8b:63:3a:fb:fd:cc:f5:ac:85:18:b6:e8:ed:34
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): fc:78:a9:26:30:8b:05:c9:40:6a:13:c4:49:45:d0:5e:40:52:b5:37
Fingerprint (sha256): 0d:27:86:23:38:e1:d1:65:3c:14:08:0e:ca:38:89:01:04:f4:36:87:9b:15:c0:41:12:7d:b7:78:df:19:ad:98
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.artsfair.ca
30
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.artsfair.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
548.me
artsfair.ca
carrierone.one
coinraise.vc
digitalselling.ca
earlymovers.ca
flosalubritas.life
junglemedia.org
ksg.life
latinmassamerica.org
mailapp.ca
mysocial.ca
undertakings.ca
updating.ca
virtualtour.re
www.548.me
www.artsfair.ca
www.carrierone.one
www.coinraise.vc
www.digitalselling.ca
www.earlymovers.ca
www.flosalubritas.life
www.junglemedia.org
www.ksg.life
www.latinmassamerica.org
www.mailapp.ca
www.mysocial.ca
www.undertakings.ca
www.updating.ca
www.virtualtour.re
artsfair.ca
carrierone.one
coinraise.vc
digitalselling.ca
earlymovers.ca
flosalubritas.life
junglemedia.org
ksg.life
latinmassamerica.org
mailapp.ca
mysocial.ca
undertakings.ca
updating.ca
virtualtour.re
www.548.me
www.artsfair.ca
www.carrierone.one
www.coinraise.vc
www.digitalselling.ca
www.earlymovers.ca
www.flosalubritas.life
www.junglemedia.org
www.ksg.life
www.latinmassamerica.org
www.mailapp.ca
www.mysocial.ca
www.undertakings.ca
www.updating.ca
www.virtualtour.re
Other certificates including the domain name artsfair.ca
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.artsfair.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgISAyX8M8onrZ9xNDS3hpS+ZLD+MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA3MTIxMDMwNTRaFw0yMzEwMTAxMDMwNTNaMBoxGDAWBgNVBAMT D3d3dy5hcnRzZmFpci5jYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALcSAmAAAu9P6/gH2OrBQaE6H7QOfbdDNvVpUU9k4iFDmWTfhNKEJefAtkFOMxB3 l7jIjzkS565oWU04cuXMTkyxP6Mld2rjw2NRxWnX9tKaFYoSKJTBSOyjRn8rENSd pc4DtLpBL/qaXem5nuBHOl3M8BqsIpO6pQECUXqnz/ma4N5gaXeat1tnhALHeJp5 IVF+kBE7cDsSIKqWSBftgbfs3lYOOMPt03uIzbuZ28cRuJi1iRmrKIhKyfJYw4nz NGv+HqpQzL9iztHYg6kbxnFUlIkPHJaqtXn1pmlmtFJohkZ0GmNP0WFeHCzgZL4D 1eLayYOIQE94KjKxxFfQR78CAwEAAaOCBAcwggQDMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUy2zDjlAHi2M6+/3M9ayFGLbo7TQwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wggINBgNVHREEggIEMIICAIIGNTQ4Lm1lggthcnRzZmFpci5jYYIOY2Fycmll cm9uZS5vbmWCDGNvaW5yYWlzZS52Y4IRZGlnaXRhbHNlbGxpbmcuY2GCDmVhcmx5 bW92ZXJzLmNhghJmbG9zYWx1YnJpdGFzLmxpZmWCD2p1bmdsZW1lZGlhLm9yZ4II a3NnLmxpZmWCFGxhdGlubWFzc2FtZXJpY2Eub3JnggptYWlsYXBwLmNhggtteXNv Y2lhbC5jYYIPdW5kZXJ0YWtpbmdzLmNhggt1cGRhdGluZy5jYYIOdmlydHVhbHRv dXIucmWCCnd3dy41NDgubWWCD3d3dy5hcnRzZmFpci5jYYISd3d3LmNhcnJpZXJv bmUub25lghB3d3cuY29pbnJhaXNlLnZjghV3d3cuZGlnaXRhbHNlbGxpbmcuY2GC End3dy5lYXJseW1vdmVycy5jYYIWd3d3LmZsb3NhbHVicml0YXMubGlmZYITd3d3 Lmp1bmdsZW1lZGlhLm9yZ4IMd3d3LmtzZy5saWZlghh3d3cubGF0aW5tYXNzYW1l cmljYS5vcmeCDnd3dy5tYWlsYXBwLmNhgg93d3cubXlzb2NpYWwuY2GCE3d3dy51 bmRlcnRha2luZ3MuY2GCD3d3dy51cGRhdGluZy5jYYISd3d3LnZpcnR1YWx0b3Vy LnJlMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDx AHYAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGJSd5T6wAABAMA RzBFAiEA57zx68wLJTBZvkeRQYCSzWIcz6zs21KxD2H5EjcvnCECIEDwSjxU2XeF bz8d8ZJ6m1TDT3hGONaw3fvP+HHDSQdcAHcA6D7Q2j71BjUy51covIlryQPTy9ER a+zraeF3fW0GvW4AAAGJSd5UAAAABAMASDBGAiEAjChIH0/olS+Un69YNRpqplHo fiAfzUxcwaGwUqEHMQUCIQCf5H2qTVhBu3MGJq+2AKI3TEMI7HRelyq+rEeVlHNT BTANBgkqhkiG9w0BAQsFAAOCAQEAPV7KpJlbWaF9fGS64xkRNlunew8n6+DK46up kWf9lMAq1z4kYOhXwkz69EYDXcf1A2nNGXVZy0JCyu5ZGqyFQmmTkCqE0ov121l5 va6BxEErMBjzzqmMAXzANGOWOewLH4oeEe5SBNQ2zg0aw1V99g5+L/DZ0C46+/6V vLoK5ClKJ5LKnZEvo8JwafM0S7M6IsBlSuaqbpV5gz2hqBxemi8PtUpxYTig1DMe ui5cB+wM9h84jHHJ0rGjt/egGNUd+wMV5E7yvBQfE9K4osj/hMItGEa9oSt02Qk+ b+CwgwL71S+ljKMtwgVYYA+gLhTToqMDZZ0/ji/oDNuS6VyYGw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtxICYAAC70/r+AfY6sFB oToftA59t0M29WlRT2TiIUOZZN+E0oQl58C2QU4zEHeXuMiPORLnrmhZTThy5cxO TLE/oyV3auPDY1HFadf20poVihIolMFI7KNGfysQ1J2lzgO0ukEv+ppd6bme4Ec6 XczwGqwik7qlAQJReqfP+Zrg3mBpd5q3W2eEAsd4mnkhUX6QETtwOxIgqpZIF+2B t+zeVg44w+3Te4jNu5nbxxG4mLWJGasoiErJ8ljDifM0a/4eqlDMv2LO0diDqRvG cVSUiQ8clqq1efWmaWa0UmiGRnQaY0/RYV4cLOBkvgPV4trJg4hAT3gqMrHEV9BH vwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 274262539733623419100385961552384910209278 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-12 10:30:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-10 10:30:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.artsfair.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23110490514435700152924929697613829554396495642316021932584698810436437470723034414185364690422926536773374933868999301873275599461142399007714089579126193218539023957116768380792326723452182691402345402609338589618573968857047697510083348012670344170542647573090876844193481062239299210272098507348711270882243954109514575458729510771159790678278868045376263220967206822110560754798819333923067073666242426290160993506852612874843852368638472932177261967036828606092123289305695562791262662618289472103307275216432212931611695575947885882687392075477065509992612556563421745491904171457188109767327330589823309203391 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cb6cc38e50078b633afbfdccf5ac8518b6e8ed34 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (516 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '548.me' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artsfair.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'carrierone.one' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coinraise.vc' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitalselling.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'earlymovers.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flosalubritas.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'junglemedia.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ksg.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'latinmassamerica.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mailapp.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mysocial.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'undertakings.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'updating.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'virtualtour.re' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.548.me' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.artsfair.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.carrierone.one' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.coinraise.vc' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digitalselling.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.earlymovers.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.flosalubritas.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.junglemedia.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ksg.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.latinmassamerica.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mailapp.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mysocial.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.undertakings.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.updating.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.virtualtour.re' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018949de53eb0000040300473045022100e7bcf1ebcc0b253059be4791418092cd621ccfacecdb52b10f61f912372f9c21022040f04a3c54d977856f3f1df1927a9b54c34f784638d6b0ddfbcff871c349075c007700e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018949de540000000403004830460221008c28481f4fe8952f949faf58351a6aa651e87e201fcd4c5cc1a1b052a10731050221009fe47daa4d5841bb730626afb600a2374c4308ec745e972abeac479594735305 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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