nflshop.com
Issued by R10
About this certificate
This digital certificate with serial number 04:99:97:78:6c:9a:a4:ce:dd:08:67:5c:f9:04:31:5b:97:11 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=nflshop.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:99:97:78:6c:9a:a4:ce:dd:08:67:5c:f9:04:31:5b:97:11Serial Number (int): 400713684571683497818220481221904220002065
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b7:0b:6d:b4:29:1f:f0:b7:7a:c4:3a:74:37:3e:21:d9:7e:c3:7c:e5
AuthorityKeyId: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8
Fingerprint (sha1): fb:97:e9:84:9a:93:45:77:00:db:17:ae:b7:45:c7:a8:52:74:a4:40
Fingerprint (sha256): 10:af:0c:8c:7a:70:65:72:58:b7:29:a6:65:41:a3:22:a4:f2:ac:a6:98:2c:de:7a:74:0e:38:c9:b3:8f:ca:92
Issuing Certificate URL: http://r10.i.lencr.org/
Revocation information
OCSP Server: http://r10.o.lencr.orgCheck the revocation status for certificate nflshop.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nflshop.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nflshop.com
www.nflshop.com
www.nflshop.com
Other certificates including the domain name nflshop.com
(limited to 100 certificates)
europe.nflshop.com
secure01.fanaticsretailgroup.com
domains.returnly.com
secure01.fanaticsretailgroup.com
www.nflshop.com
r.europe.nflshop.com
secure01.fanaticsretailgroup.com
nflshop.com
domains.returnly.com
secure01.fanaticsretailgroup.com
domains.returnly.com
insidenfl.nflshop.com
m.nflshop.com
nflshop.com
r.europe.nflshop.com
europe.nflshop.com
returns.nflshop.com
www.nflshop.com
www.nflshop.com
www.nflshop.com
returns.nflshop.com
domains.returnly.com
returns.nflshop.com
domains.returnly.com
insidenfl.nflshop.com
www.nflshop.com
secure04.dv.fanaticsretailgroup.com
domains.returnly.com
www.nflshop.com
secure04.dv.fanaticsretailgroup.com
secure01.fanaticsretailgroup.com
returns.nflshop.com
www.nflshop.com
nflshop.com
strack.europe.nflshop.com
europe.nflshop.com
m.europe.nflshop.com
secure01.fanaticsretailgroup.com
r.europe.nflshop.com
secure04.dv.fanaticsretailgroup.com
returns.nflshop.com
r.europe.nflshop.com
www.nflshop.com
m.europe.nflshop.com
europe.nflshop.com
secure01.fanaticsretailgroup.com
secure04.dv.fanaticsretailgroup.com
www.nflshop.com
m.nflshop.com
returns.nflshop.com
europe2.nflshop.com
strack.europe.nflshop.com
www.nflshop.com
www.nflshop.com
nflshop.com
m.nflshop.com
secure04.dv.fanaticsretailgroup.com
strack.europe.nflshop.com
nflshop.com
www.nflshop.com
insidenfl.nflshop.com
secure01.fanaticsretailgroup.com
nflshop.com
r.europe.nflshop.com
nflshop.com
www.nflshop.com
secure04.dv.fanaticsretailgroup.com
returns.nflshop.com
strack.europe.nflshop.com
secure04.dv.fanaticsretailgroup.com
returns.nflshop.com
secure01.fanaticsretailgroup.com
secure01.fanaticsretailgroup.com
europe.nflshop.com
domains.returnly.com
domains.returnly.com
secure01.fanaticsretailgroup.com
m.europe.nflshop.com
domains.returnly.com
europe.nflshop.com
r.europe.nflshop.com
domains.returnly.com
secure01.fanaticsretailgroup.com
secure01.fanaticsretailgroup.com
domains.returnly.com
nflshop.com
nflshop.com
www.nflshop.com
europe2.nflshop.com
secure01.fanaticsretailgroup.com
secure04.dv.fanaticsretailgroup.com
strack.europe.nflshop.com
www.nflshop.com
r.europe.nflshop.com
nflshop.com
www.nflshop.com
m.europe.nflshop.com
europe.nflshop.com
domains.returnly.com
www.nflshop.com
secure01.fanaticsretailgroup.com
domains.returnly.com
secure01.fanaticsretailgroup.com
www.nflshop.com
r.europe.nflshop.com
secure01.fanaticsretailgroup.com
nflshop.com
domains.returnly.com
secure01.fanaticsretailgroup.com
domains.returnly.com
insidenfl.nflshop.com
m.nflshop.com
nflshop.com
r.europe.nflshop.com
europe.nflshop.com
returns.nflshop.com
www.nflshop.com
www.nflshop.com
www.nflshop.com
returns.nflshop.com
domains.returnly.com
returns.nflshop.com
domains.returnly.com
insidenfl.nflshop.com
www.nflshop.com
secure04.dv.fanaticsretailgroup.com
domains.returnly.com
www.nflshop.com
secure04.dv.fanaticsretailgroup.com
secure01.fanaticsretailgroup.com
returns.nflshop.com
www.nflshop.com
nflshop.com
strack.europe.nflshop.com
europe.nflshop.com
m.europe.nflshop.com
secure01.fanaticsretailgroup.com
r.europe.nflshop.com
secure04.dv.fanaticsretailgroup.com
returns.nflshop.com
r.europe.nflshop.com
www.nflshop.com
m.europe.nflshop.com
europe.nflshop.com
secure01.fanaticsretailgroup.com
secure04.dv.fanaticsretailgroup.com
www.nflshop.com
m.nflshop.com
returns.nflshop.com
europe2.nflshop.com
strack.europe.nflshop.com
www.nflshop.com
www.nflshop.com
nflshop.com
m.nflshop.com
secure04.dv.fanaticsretailgroup.com
strack.europe.nflshop.com
nflshop.com
www.nflshop.com
insidenfl.nflshop.com
secure01.fanaticsretailgroup.com
nflshop.com
r.europe.nflshop.com
nflshop.com
www.nflshop.com
secure04.dv.fanaticsretailgroup.com
returns.nflshop.com
strack.europe.nflshop.com
secure04.dv.fanaticsretailgroup.com
returns.nflshop.com
secure01.fanaticsretailgroup.com
secure01.fanaticsretailgroup.com
europe.nflshop.com
domains.returnly.com
domains.returnly.com
secure01.fanaticsretailgroup.com
m.europe.nflshop.com
domains.returnly.com
europe.nflshop.com
r.europe.nflshop.com
domains.returnly.com
secure01.fanaticsretailgroup.com
secure01.fanaticsretailgroup.com
domains.returnly.com
nflshop.com
nflshop.com
www.nflshop.com
europe2.nflshop.com
secure01.fanaticsretailgroup.com
secure04.dv.fanaticsretailgroup.com
strack.europe.nflshop.com
www.nflshop.com
r.europe.nflshop.com
nflshop.com
www.nflshop.com
m.europe.nflshop.com
europe.nflshop.com
domains.returnly.com
www.nflshop.com
Certificate
The complete raw certificate details for nflshop.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgISBJmXeGyapM7dCGdc+QQxW5cRMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwNjEzMDMyMzM5WhcNMjQwOTExMDMyMzM4WjAWMRQwEgYDVQQD EwtuZmxzaG9wLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAN1Y KI6c/kUzZ+/E/oKTHI1MQ0kEk8IdYbtmzQA+BqdvLyfMw6i12gAhu0+d4ehDpUo8 jLOR4UK5vu/+vIVSnrnK4ikG864grWl4aNEIZaQT2imsbrA14vil5knPuY8i0/DS 6Ez/sYfEqNMiEN3eeTpKiHc+bDB4vf/RDfOKkCqKdvMgNaAuIyl68GV8XqsCGyTc HQ74G69bpTzBsTA+mVl7mVtqT4TMswURewbWWMCl+dFCjX3IMtVZusVlhDqq1zSK HBUZObXeZBEiiW+D+b46et9WaMpRGIOhuwH0JLi0kcySOS702N2reB1ehjuMRxmZ RB18Ddx+lV5nQQKXYAcCAwEAAaOCAh8wggIbMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUtwtttCkf8Ld6xDp0Nz4h2X7DfOUwHwYDVR0jBBgwFoAUu7zDR6XkvKnGw6Ry DBCNojXhyOgwVwYIKwYBBQUHAQEESzBJMCIGCCsGAQUFBzABhhZodHRwOi8vcjEw Lm8ubGVuY3Iub3JnMCMGCCsGAQUFBzAChhdodHRwOi8vcjEwLmkubGVuY3Iub3Jn LzAnBgNVHREEIDAeggtuZmxzaG9wLmNvbYIPd3d3Lm5mbHNob3AuY29tMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAPxdLT9ci R1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGQD9ZJOAAABAMARzBFAiEA1xVW NKbOllfnG9zaBRdlVc0g+FX2ONyiRwexEYWEahYCID4P27eZjL/Y/XuEDdMsMz3O SRBmTgqgxxT5+QfyOOO7AHUA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEf tZsAAAGQD9ZJQQAABAMARjBEAiBIBVLI+l+naHW2QMIf5Y11/Z71YRE+Xuo9nTfu T+PHOQIgR7ncPHNJi55qFFigoRudWq/5M+1VWe29+mh3Y4sinAQwDQYJKoZIhvcN AQELBQADggEBAJoqcuX2ZrKSSLDZiw9ppVPHGWfI5RnBAElGHjEmIk8JZqHfVcKn aRnvmGEDYDHdFlIyVRIW8Za4UYZYzJNyiSMElb9dHdoZWR8cAMFcbY+8Ly53qrI2 pXocMkQTXvVXC5fhrICwp5PCq25pZfB26lVuPThKh4+dl79OFJVexdTr+BIb6x/e NzhjUra17CcOPVIb9Jfs5xK0WH7R7+yeEGa9554aJAJeqi3WOIMYsVnsXBGT6zjA t+1Xfdbt7968ZlJ+XK8CD/xo7zAMDYI0D+yY5NjLqTqROGVoiAsyp9jHucy9+WUo 6nNRYcqvzU8raogHJU6CRmjJ1wRN4Gt6KFY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Vgojpz+RTNn78T+gpMc jUxDSQSTwh1hu2bNAD4Gp28vJ8zDqLXaACG7T53h6EOlSjyMs5HhQrm+7/68hVKe ucriKQbzriCtaXho0QhlpBPaKaxusDXi+KXmSc+5jyLT8NLoTP+xh8So0yIQ3d55 OkqIdz5sMHi9/9EN84qQKop28yA1oC4jKXrwZXxeqwIbJNwdDvgbr1ulPMGxMD6Z WXuZW2pPhMyzBRF7BtZYwKX50UKNfcgy1Vm6xWWEOqrXNIocFRk5td5kESKJb4P5 vjp631ZoylEYg6G7AfQkuLSRzJI5LvTY3at4HV6GO4xHGZlEHXwN3H6VXmdBApdg BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 400713684571683497818220481221904220002065 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-13 03:23:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-11 03:23:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nflshop.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27942137937655373944198915981261887278660612381358646539871735077208848623560986817897322228749190526855168442031093029740214442864988355599537160018068964561865230458280563680075976074569291137574142239753208826688373694070896109856428385746682441254152987515209580417447718407739137973517007162897866488835589493934186725724388952812710629541760088928590438580544260415193537270568898309815134956694283308190886660154607046043451895044878238658011063260547690663211621827093307925327495555651818973951941593493018754291568487009521720017754328896430757415276755385060176612420654339594995576348790985707593089376263 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b70b6db4291ff0b77ac43a74373e21d97ec37ce5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nflshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nflshop.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e000001900fd649380000040300473045022100d7155634a6ce9657e71bdcda05176555cd20f855f638dca24707b11185846a1602203e0fdbb7998cbfd8fd7b840dd32c333dce4910664e0aa0c714f9f907f238e3bb007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b000001900fd6494100000403004630440220480552c8fa5fa76875b640c21fe58d75fd9ef561113e5eea3d9d37ee4fe3c739022047b9dc3c73498b9e6a1458a0a11b9d5aaff933ed5559edbdfa6877638b229c04 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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