circuitodorock.com.br
Issued by R3
About this certificate
This digital certificate with serial number 03:87:04:fe:42:c4:c0:a7:59:2b:5a:05:c3:04:45:a9:3b:c6 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=circuitodorock.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:87:04:fe:42:c4:c0:a7:59:2b:5a:05:c3:04:45:a9:3b:c6Serial Number (int): 307281614439220017144530478306145319074758
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 6e:17:be:a3:08:6a:11:c7:cc:93:76:b9:e3:8c:38:32:1e:2d:cb:0f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 57:4e:2a:a3:1e:8d:ab:6c:02:0f:92:2a:94:e9:da:53:f4:38:86:7c
Fingerprint (sha256): 13:64:a1:c0:fc:65:1d:38:9e:23:c0:0b:16:f8:74:88:27:48:68:8d:c0:3b:2d:de:fc:01:02:ab:42:cf:5f:db
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate circuitodorock.com.br
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for circuitodorock.com.br
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.circuitodorock.com.br
circuitodorock.com.br
programacao.circuitodorock.com.br
www.circuitodorock.com.br
circuitodorock.com.br
programacao.circuitodorock.com.br
www.circuitodorock.com.br
Other certificates including the domain name circuitodorock.com.br
(limited to 100 certificates)
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
circuitodorock.com.br
circuitodorock.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
aplicativo.circuitodorock.com.br
circuitodorock.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
circuitodorock.com.br
brands.eventfly.com.br
circuitodorock.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
allegria2018.com.br
brands.eventfly.com.br
brands.eventfly.com.br
circuitodorock.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
circuitodorock.com.br
circuitodorock.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
aplicativo.circuitodorock.com.br
circuitodorock.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
circuitodorock.com.br
brands.eventfly.com.br
circuitodorock.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
brands.eventfly.com.br
allegria2018.com.br
brands.eventfly.com.br
brands.eventfly.com.br
circuitodorock.com.br
brands.eventfly.com.br
brands.eventfly.com.br
Certificate
The complete raw certificate details for circuitodorock.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgISA4cE/kLEwKdZK1oFwwRFqTvGMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMDMxNjI0NDFaFw0yNDA0MDIxNjI0NDBaMCAxHjAcBgNVBAMT FWNpcmN1aXRvZG9yb2NrLmNvbS5icjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCC AgoCggIBALTSOk5lqzv0oVxBm+cH3n5XH/e0K8HmXfnZQ/5x5DE707xIL/Jc/ZrC 7yqm3RAC1926IfsWuh7vsWPlBWXxNzCb1WzgM9C3HGl1MDpLstwti8SFDX2AiasK UXY9pHwxnzwLIJfZHvLGST6sPNeo8Ffs7pZliOv1YuIbIGJHSc6jlqw0yoNJgk2k D7HHHBz12MRwL2EpNRwPkOqerhxlX/OorddqSeACmEf1ezWS6ztorciBlofEZ+xk 1dW4UeD77ZMcmzQCwXW5dAhKeRyChxYaqXP+oPDjkKA7fBd8Aqjfx3ZeqIdyHrpQ UFV5iSV12RE/f3w0W04eogTHINNvsHsxgP7MyqG+XUtKCP377oLv+o34EjlYb1Tx XaSqWjdROCqFyCb059gBsST6UNEi5DHoRUg9TF7CRClrm7zBVVsY2bpj6Qy5THK0 7kNipTUPqlnxWLa/DE8cRkws4cUq+HlwMWbXM2OCmAv2nyl+R5d/jcktjJHupOAf fcIc1smMwkNef8elVWO71AqFx8bo2UBCvxnNTtL6r6AWAgL0n07fa+6HIhFlp2rX zrtXVZvCSxwrRvbFtc9Me84zL2Gj+lEcz8Ruz1gFKexuKLAnXG0AW1VwtDTMQXAm 6JgVCPgQwW8Vd+4WcLy6DwV+1Mf70RG1y6TG8J2FIEm43yaTvVuPAgMBAAGjggJv MIICazAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFG4XvqMIahHHzJN2ueOMODIeLcsP MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkw RzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAC hhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMHkGA1UdEQRyMHCCGWFwaS5jaXJjdWl0 b2Rvcm9jay5jb20uYnKCFWNpcmN1aXRvZG9yb2NrLmNvbS5icoIhcHJvZ3JhbWFj YW8uY2lyY3VpdG9kb3JvY2suY29tLmJyghl3d3cuY2lyY3VpdG9kb3JvY2suY29t LmJyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv AHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGM0FsfpAAABAMA RjBEAiBOD7pHpwaHqHRmLxDe3STQt1HdEX58S7/9/cvxFzZPiAIgMo1DbG2R+dsW bJ8t50Zs4O6Eu/WP03fHlmLd6e7EjdUAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuync aEIKn+ZnTFo6dAAAAYzQWyAQAAAEAwBHMEUCIBWgTAisDM019KVpUwqJvUvimsR3 NV2/IxzdoSAVQmrqAiEAqn4GsvUggzXnkdeJGEcBcDrXrSvAQUERuKDrsopFRgAw DQYJKoZIhvcNAQELBQADggEBACMkaHGnmyE8uHUeha3lEBOQ5Ea+9jCwHdcUiRG3 +ijBv0X+itzQ4AkI+UlbkKoKX0hV/S0p2r8N0pFP5DJ2EHUP7iHp3+byNG5zBnAL lHgj1jgiGKa66s9I82mTqk/iXqY67XLlkHSYUmwmEy4JpoRaXMxWx8DXbXHsP8LM tFzItZ9QZru/0Uw0nVyQtZvPR4a9yydcH2gKLCGGFJfVWjhzazHXi+9OZIMbR2Is KE1eXEZ4fQ+0tuGAQWDXAFB1NAMxFfZ+rVpKh4IGKLytSUgxwjDzlvGXtVpQtLHj zOQOlHwf8+bykLQGRRAwnzDjEiv1zHb+HgNcLjoW1+IOCE8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtNI6TmWrO/ShXEGb5wfe flcf97QrweZd+dlD/nHkMTvTvEgv8lz9msLvKqbdEALX3boh+xa6Hu+xY+UFZfE3 MJvVbOAz0LccaXUwOkuy3C2LxIUNfYCJqwpRdj2kfDGfPAsgl9ke8sZJPqw816jw V+zulmWI6/Vi4hsgYkdJzqOWrDTKg0mCTaQPscccHPXYxHAvYSk1HA+Q6p6uHGVf 86it12pJ4AKYR/V7NZLrO2ityIGWh8Rn7GTV1bhR4PvtkxybNALBdbl0CEp5HIKH Fhqpc/6g8OOQoDt8F3wCqN/Hdl6oh3IeulBQVXmJJXXZET9/fDRbTh6iBMcg02+w ezGA/szKob5dS0oI/fvugu/6jfgSOVhvVPFdpKpaN1E4KoXIJvTn2AGxJPpQ0SLk MehFSD1MXsJEKWubvMFVWxjZumPpDLlMcrTuQ2KlNQ+qWfFYtr8MTxxGTCzhxSr4 eXAxZtczY4KYC/afKX5Hl3+NyS2Mke6k4B99whzWyYzCQ15/x6VVY7vUCoXHxujZ QEK/Gc1O0vqvoBYCAvSfTt9r7ociEWWnatfOu1dVm8JLHCtG9sW1z0x7zjMvYaP6 URzPxG7PWAUp7G4osCdcbQBbVXC0NMxBcCbomBUI+BDBbxV37hZwvLoPBX7Ux/vR EbXLpMbwnYUgSbjfJpO9W48CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 307281614439220017144530478306145319074758 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-03 16:24:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 16:24:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'circuitodorock.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 737686144856510287845507069425744491783704272195435696866519974018816856320396315564877598075565889514862356796262337486602477313178147229909084435782487249131417008049180957157911355627875917325616047948378115766864937743318095791146496365334466134318248324376884338303941617043690020317237823907005301603211653885112333284426006739413517133597452350203354908702458365207906283654747770005115773591547920568534692697347943246041843745083429704397146370567195733069575437167507386061858986925213390085477208102729349202953463546630611826487839856352366544975597219813290803502737841192428228073570757495524428504522760282725244500580884669198348557500471837430400515341175936675470635735166462785108777637336917958051633225711758547795303479281626473424767130750420949260201607309282879569681622171112652190566266259931627567385207255961193846345358838269042310260796809257193381701489254192513743340298344657945738141690710909407350375776262006019337924195087794096066028886530928830156504398523481959975920070930489037558112912431189912955654998889256521966087997657329040927862687278396613190425271870860437548126400479317087894340774323431492254889005729634269408483878463075759557221131792147199769236071325014211395893786925967 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6e17bea3086a11c7cc9376b9e38c38321e2dcb0f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (114 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.circuitodorock.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'circuitodorock.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'programacao.circuitodorock.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.circuitodorock.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cd05b1fa4000004030046304402204e0fba47a70687a874662f10dedd24d0b751dd117e7c4bbffdfdcbf117364f880220328d436c6d91f9db166c9f2de7466ce0ee84bbf58fd377c79662dde9eec48dd500760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018cd05b20100000040300473045022015a04c08ac0ccd35f4a569530a89bd4be29ac477355dbf231cdda12015426aea022100aa7e06b2f5208335e791d789184701703ad7ad2bc0414111b8a0ebb28a454600 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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