buchjunkies-blog.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:fe:a1:a0:b9:1d:2a:c4:ca:b9:94:53:73:90:ab:9f:8f:c4 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=buchjunkies-blog.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fe:a1:a0:b9:1d:2a:c4:ca:b9:94:53:73:90:ab:9f:8f:c4Serial Number (int): 347983419222574476353214126998754340868036
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d6:40:03:23:48:57:01:48:1e:03:b8:cd:15:5d:c9:ae:fb:53:75:ad
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6f:83:22:eb:f5:0a:df:70:07:49:9a:c6:45:d3:6b:c7:2a:a3:a2:cf
Fingerprint (sha256): 12:01:a4:8f:4a:a5:33:23:ab:bc:fa:64:92:a3:bc:ac:b4:b4:d5:a7:1a:0a:4e:b4:27:69:1a:e4:16:c2:ed:3a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate buchjunkies-blog.de
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for buchjunkies-blog.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
buchjunkies-blog.de
naschwerkstatt.buchjunkies-blog.de
www.buchjunkies-blog.de
www.naschwerkstatt.buchjunkies-blog.de
naschwerkstatt.buchjunkies-blog.de
www.buchjunkies-blog.de
www.naschwerkstatt.buchjunkies-blog.de
Other certificates including the domain name buchjunkies-blog.de
(limited to 100 certificates)
ankh-morpork-times.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
ankh-morpork.de
ankh-morpork-times.de
buchjunkies-blog.de
ankh-morpork-times.de
buchjunkies-blog.de
buchjunkies-blog.de
ankh-morpork-times.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
buchjunkies-blog.de
ankh-morpork.de
ankh-morpork-times.de
buchjunkies-blog.de
ankh-morpork-times.de
buchjunkies-blog.de
buchjunkies-blog.de
ankh-morpork-times.de
Certificate
The complete raw certificate details for buchjunkies-blog.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGeDCCBWCgAwIBAgISA/6hoLkdKsTKuZRTc5Crn4/EMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA1MTgwNjIwMzVaFw0x ODA4MTYwNjIwMzVaMB4xHDAaBgNVBAMTE2J1Y2hqdW5raWVzLWJsb2cuZGUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEUj2w2m5ygLclbBuhzMzuLhta 9vTHIoifxCdRJGbdwfwlS03Fmtuh9zqlrUv1bjgMm0xTHBGADkatpoqAA232sOe8 x7AKsIwqY1pyWj1N1CqF8z71FfkE67dudly1GD8rD+kJhYPpqFAIhkP6JMY8zz7i w9gjVgh+Si7bBtrpT7VxWuIaV73IiSJ7S07nKeNeZXu0PQ0WlIc+APn7rf5ZDTjv IoQlIj956xGnDYnb0j27ETyvBqjxGPDtBZP6GmMj3zIbNeMhozDqxn2SsTZldDiz YeVHZNz2qoEBxONj3MEKbdTCGEwtlFbHnqckSdoIyafQTeCXXaIdIy2M6N7fAgMB AAGjggOCMIIDfjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNZAAyNIVwFIHgO4zRVd ya77U3WtMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUF BwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNy eXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNy eXB0Lm9yZy8wgYMGA1UdEQR8MHqCE2J1Y2hqdW5raWVzLWJsb2cuZGWCIm5hc2No d2Vya3N0YXR0LmJ1Y2hqdW5raWVzLWJsb2cuZGWCF3d3dy5idWNoanVua2llcy1i bG9nLmRlgiZ3d3cubmFzY2h3ZXJrc3RhdHQuYnVjaGp1bmtpZXMtYmxvZy5kZTCB /gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYBBAGC3xMBAQEwgdYwJgYIKwYB BQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIGrBggrBgEFBQcCAjCB ngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkgYmUgcmVsaWVkIHVwb24gYnkg UmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFjY29yZGFuY2Ugd2l0aCB0aGUg Q2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0dHBzOi8vbGV0c2VuY3J5cHQu b3JnL3JlcG9zaXRvcnkvMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcA23Sv7ssp 7LH+yj5xbSzluaq7NveEcYPHXZ1PN7Yfv2QAAAFjch8qJgAABAMASDBGAiEAyMkO BCL+mp+SsuewqO8uvg3IX+M9Dqu9uwpY4r6rk2wCIQC5KBJOFb5lsxMLXTsreAYh L15Iq5NCkl59tF9OL+hf5AB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVF R/R4AAABY3IfKjkAAAQDAEcwRQIhAJZBhGtkXAMvOanNgpBSZS09yIpNCOE96Gbc F+3V0NpxAiBC9yRvocxsp0hHUXW/VYx5ffLsST9IYhb855DiSrFwYzANBgkqhkiG 9w0BAQsFAAOCAQEAENaxH/FOHunRzM5UeE9Qf8RBh+YCDaDKfjsJ4lcH5eqR71Q/ sUm8My8x+q2sABYlA01/98JZu04uTOPL4Yy6aVdG49RmLP+glNwJBWCuPWuAhP3A /yCdMdbj54MFz5NI72st/cxUbtJwRksaOgP+kqvVd0QXErmnXdsmYi8zagJMWf10 oDlBFXAOpsvZSy9eE/eDI8PRGbDt2iQ0g0TMwCyoflH8kZWL1vYodNyp7gf00XJ1 0Ju8l2t/aZ8EAGgU32QQrsLNOOjYv9R2mlMjAHWoH3NYuQnMcZiWKJpgPfm2HCRy vIEQTq4ZqBQSZlrItr+paNaN4HSFBWLGIA0FiA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFI9sNpucoC3JWwboczM 7i4bWvb0xyKIn8QnUSRm3cH8JUtNxZrbofc6pa1L9W44DJtMUxwRgA5GraaKgANt 9rDnvMewCrCMKmNaclo9TdQqhfM+9RX5BOu3bnZctRg/Kw/pCYWD6ahQCIZD+iTG PM8+4sPYI1YIfkou2wba6U+1cVriGle9yIkie0tO5ynjXmV7tD0NFpSHPgD5+63+ WQ047yKEJSI/eesRpw2J29I9uxE8rwao8Rjw7QWT+hpjI98yGzXjIaMw6sZ9krE2 ZXQ4s2HlR2Tc9qqBAcTjY9zBCm3UwhhMLZRWx56nJEnaCMmn0E3gl12iHSMtjOje 3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 347983419222574476353214126998754340868036 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-18 06:20:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-16 06:20:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'buchjunkies-blog.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24783262311983312475487872486262892530462522515770778202469611707362944790482718797016437608380149266701256726380866754647694221123156723051665290543402290704781816840032120795148163774699505872334110897773539241186724052271142806201083096411380022116859461135164008401354191763265106823322009115327301691043108982538786022001992663147185364322980866199510812502838032887315464258802890791052647107167977302045306576874908732295366074918843500370874598997125625365085245847094868562336344605073261016951243113492484743363216286096295273907692196323447595902049865764460091214311839071884670123648666846177285424864991 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d6400323485701481e03b8cd155dc9aefb5375ad . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'buchjunkies-blog.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'naschwerkstatt.buchjunkies-blog.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.buchjunkies-blog.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.naschwerkstatt.buchjunkies-blog.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf6400000163721f2a260000040300483046022100c8c90e0422fe9a9f92b2e7b0a8ef2ebe0dc85fe33d0eabbdbb0a58e2beab936c022100b928124e15be65b3130b5d3b2b7806212f5e48ab9342925e7db45f4e2fe85fe4007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000163721f2a3900000403004730450221009641846b645c032f39a9cd829052652d3dc88a4d08e13de866dc17edd5d0da71022042f7246fa1cc6ca748475175bf558c797df2ec493f486216fce790e24ab17063 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0010d6b11ff14e1ee9d1ccce54784f507fc44187e6020da0ca7e3b09e25707e5ea91ef543fb149bc332f31faadac001625034d7ff7c259bb4e2e4ce3cbe18cba695746e3d4662cffa094dc090560ae3d6b8084fdc0ff209d31d6e3e78305cf9348ef6b2dfdcc546ed270464b1a3a03fe92abd577441712b9a75ddb26622f336a024c59fd74a0394115700ea6cbd94b2f5e13f78323c3d119b0edda24348344ccc02ca87e51fc91958bd6f62874dca9ee07f4d17275d09bbc976b7f699f04006814df6410aec2cd38e8d8bfd4769a53230075a81f7358b909cc719896289a603df9b61c2472bc81104eae19a81412665ac8b6bfa968d68de074850562c6200d0588