ask.library.duq.edu
Issued by R3
About this certificate
This digital certificate with serial number 04:0d:88:b2:d0:cc:31:9a:3b:66:63:a2:6f:d4:92:68:aa:25 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ask.library.duq.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:0d:88:b2:d0:cc:31:9a:3b:66:63:a2:6f:d4:92:68:aa:25Serial Number (int): 353054517968199848302575473515202219649573
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 86:34:0f:a9:1e:4b:54:74:c9:13:5a:02:c8:b1:22:be:c2:8f:8e:17
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 46:62:9f:e2:81:02:9f:5d:59:36:7d:ed:45:c0:2f:3f:87:76:87:4a
Fingerprint (sha256): 13:38:30:2b:85:b8:18:d4:58:2b:2b:8b:e7:a5:e4:a3:9d:b6:17:1f:89:b3:ea:2e:ea:1f:c0:ae:6e:0c:60:ce
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ask.library.duq.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ask.library.duq.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ask.library.duq.edu
Other certificates including the domain name duq.edu
(limited to 100 certificates)
wpm.ccmp.eu
sfunder5cert.net
ddc.duq.edu
law.duq.edu
scalefunder.net
ask.library.duq.edu
sfunder5cert.net
dsc.duq.edu
sfunder29cert.net
sso.duq.edu
www.dupress.duq.edu
mosaic.duq.edu
sfunder5cert.net
archives-staff.library.duq.edu
*.msl.duq.edu
scalefunder.net
scalefunder.net
www.dupress.duq.edu
www.dupress.duq.edu
5714315743068160-fe4.pantheonsite.io
www.mathcs.duq.edu
www.sbdc.duq.edu
digital.library.duq.edu
onlinenursing.duq.edu
calendar.library.duq.edu
5714315743068160-fe4.pantheonsite.io
5714315743068160-fe4.pantheonsite.io
duqcrim.com
5714315743068160-fe4.pantheonsite.io
calendar.library.duq.edu
sites.law.duq.edu
sfunder5cert.net
wpm.ccmp.eu
dsc.duq.edu
ddc.duq.edu
scalefunder.net
scalefunder.net
dupress.duq.edu
scalefunder.net
*.duq.edu
ask.library.duq.edu
wpm.ccmp.eu
5714315743068160-fe4.pantheonsite.io
wpm.ccmp.eu
jurismagazine.duqlawblogs.org
quarantine.duq.edu
applications.duq.edu
www.jma.duq.edu
*.authenticate.library.duq.edu
sfunder1cert.net
*.cr.duq.edu
edtech.msltest.duq.edu
dupress.duq.edu
*.duq.edu
5714315743068160-fe4.pantheonsite.io
ddc.duq.edu
winapps.duq.edu
sfunder15cert.net
wpm.ccmp.eu
scalefunder.net
ask.library.duq.edu
calendar.library.duq.edu
calendar.library.duq.edu
5714315743068160-fe4.pantheonsite.io
jma.msl.duq.edu
dayofgiving.duq.edu
archives-staff.library.duq.edu
archives-staff.library.duq.edu
apply.duq.edu
www.dupress.duq.edu
wpm.ccmp.eu
edtech.msl.duq.edu
scalefunder.net
www.dupress.duq.edu
5714315743068160-fe4.pantheonsite.io
www.dupress.duq.edu
dsc.duq.edu
scalefunder.net
dsc.duq.edu
guides.library.duq.edu
5714315743068160-fe4.pantheonsite.io
scalefunder.net
applications.duq.edu
sedfmweb.cr.duq.edu
sfunder5cert.net
sfunder1cert.net
*.duq.edu
wpm.ccmp.eu
5714315743068160-fe4.pantheonsite.io
view.mail.online.duq.edu
wpm.ccmp.eu
*.duq.edu
5714315743068160-fe4.pantheonsite.io
discover.duq.edu
guides.library.duq.edu
cpass-pub.cr.duq.edu
dupress.duq.edu
mosaic.duq.edu
5714315743068160-fe4.pantheonsite.io
gtm.duq.edu
sfunder5cert.net
ddc.duq.edu
law.duq.edu
scalefunder.net
ask.library.duq.edu
sfunder5cert.net
dsc.duq.edu
sfunder29cert.net
sso.duq.edu
www.dupress.duq.edu
mosaic.duq.edu
sfunder5cert.net
archives-staff.library.duq.edu
*.msl.duq.edu
scalefunder.net
scalefunder.net
www.dupress.duq.edu
www.dupress.duq.edu
5714315743068160-fe4.pantheonsite.io
www.mathcs.duq.edu
www.sbdc.duq.edu
digital.library.duq.edu
onlinenursing.duq.edu
calendar.library.duq.edu
5714315743068160-fe4.pantheonsite.io
5714315743068160-fe4.pantheonsite.io
duqcrim.com
5714315743068160-fe4.pantheonsite.io
calendar.library.duq.edu
sites.law.duq.edu
sfunder5cert.net
wpm.ccmp.eu
dsc.duq.edu
ddc.duq.edu
scalefunder.net
scalefunder.net
dupress.duq.edu
scalefunder.net
*.duq.edu
ask.library.duq.edu
wpm.ccmp.eu
5714315743068160-fe4.pantheonsite.io
wpm.ccmp.eu
jurismagazine.duqlawblogs.org
quarantine.duq.edu
applications.duq.edu
www.jma.duq.edu
*.authenticate.library.duq.edu
sfunder1cert.net
*.cr.duq.edu
edtech.msltest.duq.edu
dupress.duq.edu
*.duq.edu
5714315743068160-fe4.pantheonsite.io
ddc.duq.edu
winapps.duq.edu
sfunder15cert.net
wpm.ccmp.eu
scalefunder.net
ask.library.duq.edu
calendar.library.duq.edu
calendar.library.duq.edu
5714315743068160-fe4.pantheonsite.io
jma.msl.duq.edu
dayofgiving.duq.edu
archives-staff.library.duq.edu
archives-staff.library.duq.edu
apply.duq.edu
www.dupress.duq.edu
wpm.ccmp.eu
edtech.msl.duq.edu
scalefunder.net
www.dupress.duq.edu
5714315743068160-fe4.pantheonsite.io
www.dupress.duq.edu
dsc.duq.edu
scalefunder.net
dsc.duq.edu
guides.library.duq.edu
5714315743068160-fe4.pantheonsite.io
scalefunder.net
applications.duq.edu
sedfmweb.cr.duq.edu
sfunder5cert.net
sfunder1cert.net
*.duq.edu
wpm.ccmp.eu
5714315743068160-fe4.pantheonsite.io
view.mail.online.duq.edu
wpm.ccmp.eu
*.duq.edu
5714315743068160-fe4.pantheonsite.io
discover.duq.edu
guides.library.duq.edu
cpass-pub.cr.duq.edu
dupress.duq.edu
mosaic.duq.edu
5714315743068160-fe4.pantheonsite.io
gtm.duq.edu
Certificate
The complete raw certificate details for ask.library.duq.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgISBA2IstDMMZo7ZmOib9SSaKolMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMTAxMjAzMTNaFw0yNDAxMDgxMjAzMTJaMB4xHDAaBgNVBAMT E2Fzay5saWJyYXJ5LmR1cS5lZHUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCYTlSI1n1TUKuEg3IDKsb6h0PQP/Pp7d0ZbMhAzWCdwN2FcuuK1vG+wZYu fK9x1ijNMrVInFWKV/cqgxRQImuOnO5YZyJ9buGdzdzqTu7FrQ/Fl6m2IWNs/FN1 2dbIiEmfaGLjJBeeMiWf5Jd7PBAVreC50h11Od/OZ46mM6wRVkATCLPvc11rz1+K fFLjPnrjJUNk0CqNQ4Xxk2C1kDHR9WzdcizoKcYBDzl5SMWU9vEAt5n92Q6bbrfF WRVjCwoSaY/zLI8sAgkjDdAXhIYUTmg2cVaDDiP6EVqpZFoN0c/zBdLocpJMPTBZ 7aJkjUrzBjUSOXh8q7CVHUBkJutRAgMBAAGjggIWMIICEjAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFIY0D6keS1R0yRNaAsixIr7Cj44XMB8GA1UdIwQYMBaAFBQusxe3 WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0 cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5j ci5vcmcvMB4GA1UdEQQXMBWCE2Fzay5saWJyYXJ5LmR1cS5lZHUwEwYDVR0gBAww CjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwDatr9rP7W2Ip+b wrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYsZrzLYAAAEAwBIMEYCIQCzN2j82fnk /68+IY+hRuwKQxoQGNAvHJYqoMfNDg9B6QIhAJm2ih747ttLwq8Op9iwz+3iBixS eoQBLfH4Em5ajQ4GAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcA AAGLGa8yyQAABAMARzBFAiAwJmUM2FWhOL1uT4qQaiKC9Nia30IoVXfo8Sxj3hC+ 3gIhAIK8pKwqb0fx1St9w7q/FExSxu78dkj4Lvn++RGcgnTOMA0GCSqGSIb3DQEB CwUAA4IBAQBwbvy8z3WY+cPjfg0K3YFMbWkfY/7U94aDYNe3we2XlJQP5EruTCtQ 6xZN4h+ADviLiZ1AVygEP/Cz9MgBr6uKS7gb/fqp48ptwTFmQNd6fR5noraYuUr1 BaVsH1CEAjvUxtfDM8EzpEgUeCCJG4C5IdTqk9Pr+x62En0CPTc9+93JVfY8gQj7 hTD8+fS3Unwh+ymoDlNUG4T8vcXyzQFjV1Z8i0Kj/M7a4ku23Y40FUUNVVlwg+oL +SebJCEtBPo1/Glkc971MjWXApFrJJhTihUT/NMKH22yImyjiDKl6UfTg6zrnDnn k5/cvp4DMZNeAliEx7QmjPob+6fDxx7N -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmE5UiNZ9U1CrhINyAyrG +odD0D/z6e3dGWzIQM1gncDdhXLritbxvsGWLnyvcdYozTK1SJxVilf3KoMUUCJr jpzuWGcifW7hnc3c6k7uxa0PxZeptiFjbPxTddnWyIhJn2hi4yQXnjIln+SXezwQ Fa3gudIddTnfzmeOpjOsEVZAEwiz73Nda89finxS4z564yVDZNAqjUOF8ZNgtZAx 0fVs3XIs6CnGAQ85eUjFlPbxALeZ/dkOm263xVkVYwsKEmmP8yyPLAIJIw3QF4SG FE5oNnFWgw4j+hFaqWRaDdHP8wXS6HKSTD0wWe2iZI1K8wY1Ejl4fKuwlR1AZCbr UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 353054517968199848302575473515202219649573 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-10 12:03:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-08 12:03:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ask.library.duq.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19226848422474548019859889948438048637878249134111967096275429057422604910484309070164152184501974945542405452919620509005078519826224604816450580472524169431769063576322153333752349432676510285245432803266849833691831250883294448356712188901510785474434553051402097242679545694590229888141899297209282374708753042328944239476515173809184481889733545089041844300012923391628494514294112924267757551526796277573319581331983364319656355389397152685305425979943640980655520884474387813368283157760678607160800770277172026462457983897808279690874604389507871795666830709619097886865093609268964777909511318092156271782737 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 86340fa91e4b5474c9135a02c8b122bec28f8e17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ask.library.duq.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b19af32d80000040300483046022100b33768fcd9f9e4ffaf3e218fa146ec0a431a1018d02f1c962aa0c7cd0e0f41e902210099b68a1ef8eedb4bc2af0ea7d8b0cfede2062c527a84012df1f8126e5a8d0e060076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b19af32c9000004030047304502203026650cd855a138bd6e4f8a906a2282f4d89adf42285577e8f12c63de10bede02210082bca4ac2a6f47f1d52b7dc3babf144c52c6eefc7648f82ef9fef9119c8274ce . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00706efcbccf7598f9c3e37e0d0add814c6d691f63fed4f7868360d7b7c1ed9794940fe44aee4c2b50eb164de21f800ef88b899d405728043ff0b3f4c801afab8a4bb81bfdfaa9e3ca6dc1316640d77a7d1e67a2b698b94af505a56c1f5084023bd4c6d7c333c133a448147820891b80b921d4ea93d3ebfb1eb6127d023d373dfbddc955f63c8108fb8530fcf9f4b7527c21fb29a80e53541b84fcbdc5f2cd016357567c8b42a3fccedae24bb6dd8e3415450d55597083ea0bf9279b24212d04fa35fc696473def532359702916b2498538a1513fcd30a1f6db2226ca38832a5e947d383aceb9c39e7939fdcbe9e0331935e025884c7b4268cfa1bfba7c3c71ecd