aretha.deaftone.com
Issued by StartCom BR SSL ICA
About this certificate
This digital certificate with serial number 16:27:ae:b5:b9:99:a9:10 was issued on by StartCom CA.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=aretha.deaftone.com,C=GB
StartCom CA
Organization:
StartCom CA
Organization unit: StartCom Certification Authority
Organization unit: StartCom Certification Authority
Country:
ES
This certificate has expire since
Certificate Details
Serial Number (hex): 16:27:ae:b5:b9:99:a9:10Serial Number (int): 1596436688452299024
Serial Number lenght: 61 bits, 8 octets
SubjectKeyId: 96:e9:45:53:2f:9a:1e:67:47:4b:0c:55:8f:31:74:96:87:26:d8:f9
AuthorityKeyId: fb:10:4b:95:b1:35:55:2f:bd:62:14:a9:52:02:12:0a:68:e8:12:42
Fingerprint (sha1): 81:7d:a4:4b:57:40:53:f9:11:69:4b:97:f6:fb:5d:08:90:02:74:11
Fingerprint (sha256): 14:c8:9b:27:88:32:36:f9:95:6f:d6:39:82:25:c2:16:86:11:88:37:62:39:f4:52:a0:35:e0:f3:71:bd:c9:86
Issuing Certificate URL: http://aia.startcomca.com/certs/sca.server1.crt
Revocation information
OCSP Server: http://ocsp.startcomca.comCRL Distribution Point: http://crl.startcomca.com/sca-server1.crl
Check the revocation status for certificate aretha.deaftone.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aretha.deaftone.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aretha.deaftone.com
gxmap.staging.dtdns.net
galactic-map.c.dtdns.net
hch-events.staging.dtdns.net
mattr.dtdns.net
hch.mattr.dtdns.net
gxmap.staging.dtdns.net
galactic-map.c.dtdns.net
hch-events.staging.dtdns.net
mattr.dtdns.net
hch.mattr.dtdns.net
Other certificates including the domain name deaftone.com
(limited to 100 certificates)
peniche.org
aretha.deaftone.com
lemono.deaftone.com
aretha.deaftone.com
aretha.deaftone.com
peniche.org
pagesbook.deaftone.com
ncloud.peniche.org
cloud.peniche.org
peniche.org
dev.aretha.deaftone.com
peniche.org
mail.peniche.org
tiogfb.deaftone.com
aretha.deaftone.com
tiogfb.deaftone.com
www.pagesbook.deaftone.com
mailgate.deaftone.com
aretha.deaftone.com
tiogfb.deaftone.com
aretha.deaftone.com
lemono.deaftone.com
aretha.deaftone.com
aretha.deaftone.com
peniche.org
pagesbook.deaftone.com
ncloud.peniche.org
cloud.peniche.org
peniche.org
dev.aretha.deaftone.com
peniche.org
mail.peniche.org
tiogfb.deaftone.com
aretha.deaftone.com
tiogfb.deaftone.com
www.pagesbook.deaftone.com
mailgate.deaftone.com
aretha.deaftone.com
tiogfb.deaftone.com
Certificate
The complete raw certificate details for aretha.deaftone.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTTCCBDWgAwIBAgIIFieutbmZqRAwDQYJKoZIhvcNAQELBQAwbDELMAkGA1UE BhMCRVMxFDASBgNVBAoMC1N0YXJ0Q29tIENBMSkwJwYDVQQLDCBTdGFydENvbSBD ZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTEcMBoGA1UEAwwTU3RhcnRDb20gQlIgU1NM IElDQTAeFw0xNzA4MDMxMzAwNTlaFw0xOTA4MDMwNTEwMDBaMCsxCzAJBgNVBAYT AkdCMRwwGgYDVQQDDBNhcmV0aGEuZGVhZnRvbmUuY29tMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAurhKkkvSvR8sKPepWzmIJgAwIFyAuovqqTaFm0Bq XDbXhaD3iE6GQsYkh41jzXXTBo8bp33HWA42KyeiaGl8ilmNvZorMbZM8FC9K8O2 rRq9l41J0qqRppi1jNyZXTvrky1UXMYwYP3Kf/SQHd58Ip2/4oLrKHBxagdV2/7N 6PVRxsqR5t//W7oKVdCPSBP2RQw0M1eaO7Gd2UW2czKgNjYbpxVGuLEd7vV1SnFH DDKBBIXAw9Ng2KHnko5rMaaXCCCGENGrttVrPIeu57lD1JZ0HLyzjbW763WotBp9 6AAcAm0pIxBXq/rD/uzg25GdjxZxwFlc9IOalp8EUnpdzQIDAQABo4ICMjCCAi4w cwYIKwYBBQUHAQEEZzBlMDsGCCsGAQUFBzAChi9odHRwOi8vYWlhLnN0YXJ0Y29t Y2EuY29tL2NlcnRzL3NjYS5zZXJ2ZXIxLmNydDAmBggrBgEFBQcwAYYaaHR0cDov L29jc3Auc3RhcnRjb21jYS5jb20wHQYDVR0OBBYEFJbpRVMvmh5nR0sMVY8xdJaH Jtj5MAkGA1UdEwQCMAAwHwYDVR0jBBgwFoAU+xBLlbE1VS+9YhSpUgISCmjoEkIw UgYDVR0gBEswSTANBgsrBgEEAYG1NwECAzA4BgZngQwBAgEwLjAsBggrBgEFBQcC ARYgaHR0cDovL3d3dy5zdGFydGNvbWNhLmNvbS9wb2xpY3kwOgYDVR0fBDMwMTAv oC2gK4YpaHR0cDovL2NybC5zdGFydGNvbWNhLmNvbS9zY2Etc2VydmVyMS5jcmww DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATCB lwYDVR0RBIGPMIGMghNhcmV0aGEuZGVhZnRvbmUuY29tghdneG1hcC5zdGFnaW5n LmR0ZG5zLm5ldIIYZ2FsYWN0aWMtbWFwLmMuZHRkbnMubmV0ghxoY2gtZXZlbnRz LnN0YWdpbmcuZHRkbnMubmV0gg9tYXR0ci5kdGRucy5uZXSCE2hjaC5tYXR0ci5k dGRucy5uZXQwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggIB AHBKNKJ8l+2hogvCIsPVFolPUBIci835mYaOMpZmyHjcDDzr+P3QhwV29hCkQk7S EiYV4Fn7s9R3xX823WtB17T+4RPvPlW2y1A8sCheCCA3TxXYYeV0nIgqJjv+rS2A aQxvxlZYgD8edzDhV3fCEKz6EjfsaEnQS5i44+btlorZJ1ZvABEkuretf7euwxmu eza8fxNNbHl1L+nurVKyS0Y46O9F+/G64+C9GhVDN/KuYWe3YuDaQweytgRkfcwh bKQtG7bfmVt7zWXTXgOhVsS8umWAozAEfDHD+dhlyVr1ypdZ8JYbVg3aHTpwHqHx YcumKjll++E+udwoRNMUpJz/T5HNISyHMS+4BZxvAQ8s3zdIoXxOmRhNdyakrlDL 57nU8Gl3HUvjmvGno4RwYiUf7i4+8IcHIN3UP1oSaVasgcifn55mIkJMXoxjwElQ 2r1Mt4FHJXaxme+3+V2YqgwrsDRL3RGZPt4p5gTHh1exj6BEBbmUlwGV0cb9UJJW Oys4114iLt8H4Yja2Wa0tit1H0Tfbpzys6zTNqV4Ym1IX8awwQilCNpHTlKIsmAH VpQ5JPBihdQJV4ebH1xvVFs72YtjCyaxuuoqtW3NwNYJvPumkRiefq33LQh1emiz bXIgbpHQ6aUMR5xKX7DwAyYm42lgbhYwLR0YTGcXoUfo -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurhKkkvSvR8sKPepWzmI JgAwIFyAuovqqTaFm0BqXDbXhaD3iE6GQsYkh41jzXXTBo8bp33HWA42KyeiaGl8 ilmNvZorMbZM8FC9K8O2rRq9l41J0qqRppi1jNyZXTvrky1UXMYwYP3Kf/SQHd58 Ip2/4oLrKHBxagdV2/7N6PVRxsqR5t//W7oKVdCPSBP2RQw0M1eaO7Gd2UW2czKg NjYbpxVGuLEd7vV1SnFHDDKBBIXAw9Ng2KHnko5rMaaXCCCGENGrttVrPIeu57lD 1JZ0HLyzjbW763WotBp96AAcAm0pIxBXq/rD/uzg25GdjxZxwFlc9IOalp8EUnpd zQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1596436688452299024 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ES' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'StartCom CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'StartCom Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'StartCom BR SSL ICA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-03 13:00:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-03 05:10:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'aretha.deaftone.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23571202148202070522332708568631799347222660655562782306653096898853546553599046047327972479244058840171736669764672088350781238751511020236593612731124007503203730045893070773766240717354121952420753829787736125168429796598186841609013032042211256293193468732163429010618446283683788900864983851273080215490790463670588615728878439100203471090141827744408313687662119363970388480374946895304589856830662428417513722329913999301285491092913769915393688662976251564538024088190627478115467810281467155604758639780267847561432812607860882614679901052057357716650624653724799215735420450228434266156842614566992792411597 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.startcomca.com/certs/sca.server1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startcomca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 96e945532f9a1e67474b0c558f3174968726d8f9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName fb104b95b135552fbd6214a95202120a68e81242 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.startcomca.com/policy' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startcomca.com/sca-server1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (143 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aretha.deaftone.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gxmap.staging.dtdns.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'galactic-map.c.dtdns.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hch-events.staging.dtdns.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mattr.dtdns.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hch.mattr.dtdns.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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