www.benchmarknorth.co.uk
Issued by R3
About this certificate
This digital certificate with serial number 03:89:2b:17:fc:66:2a:1c:ec:21:6e:da:b6:f6:b9:27:a4:53 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.benchmarknorth.co.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:89:2b:17:fc:66:2a:1c:ec:21:6e:da:b6:f6:b9:27:a4:53Serial Number (int): 308012823409357333150030915012238563058771
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d7:9a:11:b7:02:89:6a:eb:59:6c:21:38:c4:4e:30:bd:26:c3:7a:fa
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 5f:56:16:b5:83:e5:57:e1:9c:63:70:3f:32:c9:12:6f:23:40:75:93
Fingerprint (sha256): 0e:d9:a6:3e:8e:44:c5:29:b0:0e:06:0c:75:26:d2:4c:b3:b6:6c:b8:2f:38:4c:e0:4c:5b:5c:c5:24:31:ae:fc
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.benchmarknorth.co.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.benchmarknorth.co.uk
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
benchmarknorth.co.uk
www.benchmarknorth.co.uk
www.benchmarknorth.co.uk
Other certificates including the domain name benchmarknorth.co.uk
(limited to 100 certificates)
support.ninatech.co
www.benchmarknorth.co.uk
community.thegreencatalyst.com
www.benchmarknorth.co.uk
www.benchmarknorth.co.uk
support.smartcon.pl
support.ninatech.co
support.smartcon.pl
support.gmlabs.net
asistencia.toptruck.es
support.smartcon.pl
www.benchmarknorth.co.uk
support.benchmarknorth.co.uk
support.smartcon.pl
customerportal.alphatronmarine.com
support.smartcon.pl
community.thegreencatalyst.com
www.benchmarknorth.co.uk
support.smartcon.pl
community.thegreencatalyst.com
support.dokicom.fr
support.globalamerican.us
support.smartcon.pl
sasupport.benchmarknorth.co.uk
support.zero2hero.community
support.smartcon.pl
support.smartcon.pl
support.smartcon.pl
support.smartcon.pl
support.smartcon.pl
www.benchmarknorth.co.uk
sasupport.benchmarknorth.co.uk
support.smartcon.pl
sasupport.benchmarknorth.co.uk
support.smartcon.pl
supporto.leonardocomputing.com
support.smartcon.pl
help.freex.shop
support.smartcon.pl
help-test.fluidtopics.com
www.benchmarknorth.co.uk
www.support.jidamarket.com
www.benchmarknorth.co.uk
sasupport.benchmarknorth.co.uk
support.earthhavenhealthcare.com
support.ninatech.co
community.thegreencatalyst.com
hilfe.drholldorf.de
support.herostudios.org
support.smartcon.pl
help.goodcitysense.nl
support.centrallimit.ai
support.smartcon.pl
www.benchmarknorth.co.uk
community.thegreencatalyst.com
www.benchmarknorth.co.uk
www.benchmarknorth.co.uk
support.smartcon.pl
support.ninatech.co
support.smartcon.pl
support.gmlabs.net
asistencia.toptruck.es
support.smartcon.pl
www.benchmarknorth.co.uk
support.benchmarknorth.co.uk
support.smartcon.pl
customerportal.alphatronmarine.com
support.smartcon.pl
community.thegreencatalyst.com
www.benchmarknorth.co.uk
support.smartcon.pl
community.thegreencatalyst.com
support.dokicom.fr
support.globalamerican.us
support.smartcon.pl
sasupport.benchmarknorth.co.uk
support.zero2hero.community
support.smartcon.pl
support.smartcon.pl
support.smartcon.pl
support.smartcon.pl
support.smartcon.pl
www.benchmarknorth.co.uk
sasupport.benchmarknorth.co.uk
support.smartcon.pl
sasupport.benchmarknorth.co.uk
support.smartcon.pl
supporto.leonardocomputing.com
support.smartcon.pl
help.freex.shop
support.smartcon.pl
help-test.fluidtopics.com
www.benchmarknorth.co.uk
www.support.jidamarket.com
www.benchmarknorth.co.uk
sasupport.benchmarknorth.co.uk
support.earthhavenhealthcare.com
support.ninatech.co
community.thegreencatalyst.com
hilfe.drholldorf.de
support.herostudios.org
support.smartcon.pl
help.goodcitysense.nl
support.centrallimit.ai
support.smartcon.pl
Certificate
The complete raw certificate details for www.benchmarknorth.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGETCCBPmgAwIBAgISA4krF/xmKhzsIW7atva5J6RTMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMjcxODAzMDBaFw0yNDAzMjYxODAyNTlaMCMxITAfBgNVBAMT GHd3dy5iZW5jaG1hcmtub3J0aC5jby51azCCAiIwDQYJKoZIhvcNAQEBBQADggIP ADCCAgoCggIBAJsPkockPK6TxywOV6V2CG0Di8Lvczr0v/VqxtQ8KfnhrSjT4emL 3TLvrZ7yemABq20kAKgzHOhiiUtfh61VDHAlnFZPC7Y7zBjCd7QGe8AaOLjKnyRH jHxN6O6mq3EpPEDy3k3EXYFoBYUSQtqhXsl1ZgTobUkwqI1PZ8Wf9JMH/YOR48IU JNbzMrH+BlsMXbxEinYgpbLFMH/02bx9lEoBKjKbZL5gp8V14dZzZlRuVhZ2orXo ckkeLDitOipj2sDuwOl2vAilfmMJSpYgn2p0sitBF6Wpv1mrjoG6G+jekHmS2LXu zTWNIlhy9K+wFg194TTMqmAQGFJOQMmGqIXh4mH4azeCixlNLuyAnmHTocNtnM6f W8IICQcqi2qNdkBoH9z6kQt6AosTfncrgCCbXOhHDOGmG9irLdzA/3UGDL4nd4fw 5a1B7VQWLbe/ZJKnfDnLQUc75G+oSjm/yw8TimDrNPoaDBtWun/awK5KApbq5W55 LonLHTRvtmn5LvFWftbaySLBsFNhWS+9jJ/0WT3PXcvRz42z+n5VEPO/BwRkb8TO IhTTg+jbPqwYNtWWFI5VVAmuHg7l9ICEdZECzuKXG65uD+tdXluNygCwBp5piO82 N2gHqoHltah1W8n3/D61yb6V9fb47A7uQLOL8qQ8TSKYL+fXCKmIn23lAgMBAAGj ggIuMIICKjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNeaEbcCiWrrWWwhOMROML0m w3r6MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEB BEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUF BzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMDkGA1UdEQQyMDCCFGJlbmNobWFy a25vcnRoLmNvLnVrghh3d3cuYmVuY2htYXJrbm9ydGguY28udWswEwYDVR0gBAww CjAIBgZngQwBAgEwggECBgorBgEEAdZ5AgQCBIHzBIHwAO4AdQBIsONr2qZHNA/l agL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYysqJreAAAEAwBGMEQCIAfc1r4DqmQw 8EyOsn0lcZgToO5Tubax/5eEU3gdOQSkAiAufC1ZdymMLf/PIwNqKPYDGbX66WH2 l9zHD9JcDj2ncQB1ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAAB jKyomukAAAQDAEYwRAIgHqcLdisDYKY6uCcJYUxaohWN5NnpnJ8GiY0OQqcqQgQC IA3E6vQCwkAeF0Ch2hv5qxPctN6aTlqtIRFiVYmQsXtSMA0GCSqGSIb3DQEBCwUA A4IBAQAQ/Xt4b4/05fe/qRdLzY+Ko2w6fK2MAIxZuwbxbiujBzXainNzW1dvUKby aR1KOi5JVgCaTZBfWy4ajV9NFKgFXkXKtoDzylyNIMENNBAZIcRgVpoEAggL2joA hkPH9B59uC8UNYm2sCFKiYExueVlABR9bbkTPLd6xbdGvqifZa6NER5LxgqFpAEq cBPZiTh2tF86Wph+AB1BVGBNz4mviRUfD4YytNewoxe8dEXCULPVyTk0SavjCcEc NsOHe6Pcf574Y3IniOb1gapbG6jm+ytBdMJ0X0j3Nv/OshvqsJ/J/acCivIHm5zo q2+wWkDygi0WiQTc7m3i5aOLynhC -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmw+ShyQ8rpPHLA5XpXYI bQOLwu9zOvS/9WrG1Dwp+eGtKNPh6YvdMu+tnvJ6YAGrbSQAqDMc6GKJS1+HrVUM cCWcVk8LtjvMGMJ3tAZ7wBo4uMqfJEeMfE3o7qarcSk8QPLeTcRdgWgFhRJC2qFe yXVmBOhtSTCojU9nxZ/0kwf9g5HjwhQk1vMysf4GWwxdvESKdiClssUwf/TZvH2U SgEqMptkvmCnxXXh1nNmVG5WFnaitehySR4sOK06KmPawO7A6Xa8CKV+YwlKliCf anSyK0EXpam/WauOgbob6N6QeZLYte7NNY0iWHL0r7AWDX3hNMyqYBAYUk5AyYao heHiYfhrN4KLGU0u7ICeYdOhw22czp9bwggJByqLao12QGgf3PqRC3oCixN+dyuA IJtc6EcM4aYb2Kst3MD/dQYMvid3h/DlrUHtVBYtt79kkqd8OctBRzvkb6hKOb/L DxOKYOs0+hoMG1a6f9rArkoClurlbnkuicsdNG+2afku8VZ+1trJIsGwU2FZL72M n/RZPc9dy9HPjbP6flUQ878HBGRvxM4iFNOD6Ns+rBg21ZYUjlVUCa4eDuX0gIR1 kQLO4pcbrm4P611eW43KALAGnmmI7zY3aAeqgeW1qHVbyff8PrXJvpX19vjsDu5A s4vypDxNIpgv59cIqYifbeUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 308012823409357333150030915012238563058771 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-27 18:03:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-26 18:02:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.benchmarknorth.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 632592993612054326996437023944803778172686513051771918905002491979804048816870265345620908130741444251530057120520403519258826239793650515965570454552002052335168696502508187686911202135891962233639234056948071416437142476504731375829182672903792934943486160056634065947895055126903559478679480207234471842352002184926006890215247685706630865121643649782550920513897136181346281605401690406195781745121340302947555370244796646916006991425411003620368843919296154168488384779217400621745978429904661388120831347464401625084823656410973417817618640662526862289335859888392329010541426035384343714563660685224117406900031549244784258577948959019452355838970668156382060118709734375632357879999004702264723018789323588689359630119899244554177528850170485617297753070237413441476104881940453346665386059718857717312367920144342629687913244239295082612822484149867838127892232568996672869381703114123698593301286111476760929875363587173938632739284059632421508874280113452086109490112311200787538002606698082242984278010643369179182691835952137306965973077852000164711183551092227232660493877951954854883750085270680054873144251096665245294058084574331394410469788983942412149649968467977303637655205981611558099043003138140272130491641317 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d79a11b702896aeb596c2138c44e30bd26c37afa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'benchmarknorth.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.benchmarknorth.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018caca89ade0000040300463044022007dcd6be03aa6430f04c8eb27d25719813a0ee53b9b6b1ff978453781d3904a402202e7c2d5977298c2dffcf23036a28f60319b5fae961f697dcc70fd25c0e3da7710075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018caca89ae9000004030046304402201ea70b762b0360a63ab82709614c5aa2158de4d9e99c9f06898d0e42a72a420402200dc4eaf402c2401e1740a1da1bf9ab13dcb4de9a4e5aad211162558990b17b52 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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