onvista.de.onvista.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:cd:c9:01:e4:9c:f2:34:07:ed:ec:a8:14:d3:bd:9c:b6:99 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=onvista.de.onvista.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:cd:c9:01:e4:9c:f2:34:07:ed:ec:a8:14:d3:bd:9c:b6:99Serial Number (int): 331361927670346692833915762201083149858457
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e7:18:6a:e8:73:2a:c2:cc:00:62:e8:01:e2:71:0a:5f:35:c3:94:4a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 98:27:32:3c:b5:46:ec:50:2f:ee:4f:c9:92:21:67:77:04:85:d8:47
Fingerprint (sha256): 15:7b:af:c9:06:75:a3:69:77:ec:48:b2:ee:1b:21:61:0a:b1:f1:1b:27:4d:23:49:f1:af:f4:8f:b8:3d:67:c7
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate onvista.de.onvista.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for onvista.de.onvista.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
onvista.de.onvista.com
Other certificates including the domain name onvista.com
(limited to 100 certificates)
derstandard-spat.derstandard.at
onvista.com
derstandard-spat.derstandard.at
derstandard-spat.derstandard.at
source.cuisineactuelle.fr
onvista.de.onvista.com
www.onvista.com
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.com
derstandard-spat.derstandard.at
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.de.onvista.com
news-assets.onvista.com
onvista.com
onvista.com
images.onvista.com
newsimages.onvista.com
images.onvista.com
test-newsimages.onvista.com
images.onvista.com
onvista.com
onvista.com
derstandard-spat.derstandard.at
onvista.com
derstandard-spat.derstandard.at
test-images.onvista.com
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.de.onvista.com
onvista.de.onvista.com
onvista.com
derstandard-spat.derstandard.at
www.onvista.com
derstandard-spat.derstandard.at
onvista.com
derstandard-spat.derstandard.at
derstandard-spat.derstandard.at
source.cuisineactuelle.fr
onvista.de.onvista.com
www.onvista.com
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.com
derstandard-spat.derstandard.at
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.de.onvista.com
news-assets.onvista.com
onvista.com
onvista.com
images.onvista.com
newsimages.onvista.com
images.onvista.com
test-newsimages.onvista.com
images.onvista.com
onvista.com
onvista.com
derstandard-spat.derstandard.at
onvista.com
derstandard-spat.derstandard.at
test-images.onvista.com
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.de.onvista.com
onvista.de.onvista.com
onvista.com
derstandard-spat.derstandard.at
www.onvista.com
derstandard-spat.derstandard.at
Certificate
The complete raw certificate details for onvista.de.onvista.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYzCCBUugAwIBAgISA83JAeSc8jQH7eyoFNO9nLaZMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMTkxMzA3MjBaFw0y MDA0MTgxMzA3MjBaMCExHzAdBgNVBAMTFm9udmlzdGEuZGUub252aXN0YS5jb20w ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDlOY06y17PqO9BD575yys0 7Rvm+G4jskDi764w28AMPdy2nO8z3bFk+ugdVooJt5/4gbdHmIAPTGrZZaWZW7y1 hav5I/ZrY80ccl1vQrJEb8zdlOcL1nv97q3ClehPBh4+GFlOhjK1hlXBk8mypXWc EgG9RFvopB6cRtAt7xniOQYljh3TMvqbtupA8sxAvSyzIxH7Dr+AEcZGzqTKjaLV V7rAZDGaS5YWCPv7pk2jHETi80MnePqwiKynGFfdXXAoaszBWSSNIwX3OvyJABRh dkKJ4qh5NKoZdBU2c4MOLu7HnxMsGtjjyaj1gT/U+dJkgVv3B9PZDMtaRnmHZty4 HAHeXxHCBwQ7l2yz2kA1krSB2Fy7XwBJ8eln1rwH7v3euuurQUGJtBMoG7+MUl5q JOh2eik+yKoos7U5xV6HTayVc6Rs7u19DeT7fstbgmi3lbKf4JWmVJ145W5I1mvS Jp+lhHLYNrex3WtJio7X+/sSPtG0RGkzQRh7QoKadmHjTRKnMPZ7dCd0nWfqRfQG 5xs1BEueJrTzwI/bCh94bJXiZGKGj8fbntqixzt0Zr/Cl7VrmANnlYe84xY9kDy/ 0Q9gXegBuwE7HAdhX3lSjZDbKjEr3v7c0ykq74A3wOMM+dah/ra/5iuALNEhjvyq xqOsJM2Clgwh3gOrPPj2+QIDAQABo4ICajCCAmYwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBTnGGrocyrCzABi6AHicQpfNcOUSjAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFm9udmlzdGEu ZGUub252aXN0YS5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggED BgorBgEEAdZ5AgQCBIH0BIHxAO8AdgBep3P531bA57U2SH3QSeAyepGaDIShEhKE GHWWgXFFWAAAAW++ISTjAAAEAwBHMEUCIFLzlViRDNgqjsTrq5DSZfho0CEqe3Vu 1qpw0j5CZ16/AiEAif4GFhGRLoNA8jc6YMNmB9L5soE5xPXcS06Fkf3CPQYAdQAH t1wb5X1o//Gwxh0jFce65ld8V5S3au68YToaadOiHAAAAW++IST/AAAEAwBGMEQC IDY2Qeu+FXTtYyTgcFol95Sb5wbIru8jufh0Yv9Eaf6HAiB0f8bt7GW69iGKMr8Q 7hUomeyJ6yp3WhP5b5Nq7du95zANBgkqhkiG9w0BAQsFAAOCAQEAfGUlM8FQDiLb k/7yia6s5Aw0WISYrfycKGCtiPA13+2KPVzNhTvdfU4WmLRTlIXx44DcJmzwalxq BbIx75rzmCXmOnaym7vJ4XyCwH+/yz3M8vgZa/KdHVQ6lBCBaG3rK2h1080ORpsk CNT3xTrDfKtNTnfRWZs5GWmX4/mbInaIP4vHgCl+KltRSa73YKU/gEMtphpZEvlV UbHuYqs3Q1G1O0Lmx2Z5Y391Ps+zqJ8qaf7GYAwW6ORH4AjAHCYVnTT9KN2AG3rp 8s8jTwW5jXfmbpVAU4ncK5gKgLy3TrPTMu/BVBAnX088uv9fB9jN91OYuqzUODo4 NpDhQG2nfg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5TmNOstez6jvQQ+e+csr NO0b5vhuI7JA4u+uMNvADD3ctpzvM92xZProHVaKCbef+IG3R5iAD0xq2WWlmVu8 tYWr+SP2a2PNHHJdb0KyRG/M3ZTnC9Z7/e6twpXoTwYePhhZToYytYZVwZPJsqV1 nBIBvURb6KQenEbQLe8Z4jkGJY4d0zL6m7bqQPLMQL0ssyMR+w6/gBHGRs6kyo2i 1Ve6wGQxmkuWFgj7+6ZNoxxE4vNDJ3j6sIispxhX3V1wKGrMwVkkjSMF9zr8iQAU YXZCieKoeTSqGXQVNnODDi7ux58TLBrY48mo9YE/1PnSZIFb9wfT2QzLWkZ5h2bc uBwB3l8RwgcEO5dss9pANZK0gdhcu18ASfHpZ9a8B+793rrrq0FBibQTKBu/jFJe aiTodnopPsiqKLO1OcVeh02slXOkbO7tfQ3k+37LW4Jot5Wyn+CVplSdeOVuSNZr 0iafpYRy2Da3sd1rSYqO1/v7Ej7RtERpM0EYe0KCmnZh400SpzD2e3QndJ1n6kX0 BucbNQRLnia088CP2wofeGyV4mRiho/H257aosc7dGa/wpe1a5gDZ5WHvOMWPZA8 v9EPYF3oAbsBOxwHYV95Uo2Q2yoxK97+3NMpKu+AN8DjDPnWof62v+YrgCzRIY78 qsajrCTNgpYMId4Dqzz49vkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 331361927670346692833915762201083149858457 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-19 13:07:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-18 13:07:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'onvista.de.onvista.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 935155641433304504604970703903609480605288014224424516094802248562485634741251349998829165663503565378230651348735965148026557707418066737673902033811016921156595972996433376244569751768337233487533910765049152971353813744237661908712275889776040606315771903401541294542519476958872981747455358501113645649437750222527632325960511424976858035673027333487541254894697312902083297552672510128994828428734084369178094135085961168571693498205105837348564254706791770777977634334581976198772134034148638648367195647158795670356048662405071967280546672193525502867711961607962538922631889399039821787651665178141512005751684702249980535887433529248833090301993039056640357952922590867776247069896414823482409192136359609763484283525225776170581175616969941774349715053906185367193288814173897807209968413975087536392788343477151065879173240084635337931024984596681985531813993765101994389662048566760393185395927855445610196135496553879953362862358250464666373141707587232284522106362558036701312638728094202197388485025970471585639050372638992751052929968002672865678583649109565927320381113766329062802131876839316508982137833270111914171667516015856967177689250363522237871418225095630302695236490971193932159862110736563557026089203449 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e7186ae8732ac2cc0062e801e2710a5f35c3944a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onvista.de.onvista.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016fbe2124e30000040300473045022052f39558910cd82a8ec4ebab90d265f868d0212a7b756ed6aa70d23e42675ebf02210089fe061611912e8340f2373a60c36607d2f9b28139c4f5dc4b4e8591fdc23d0600750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016fbe2124ff00000403004630440220363641ebbe1574ed6324e0705a25f7949be706c8aeef23b9f87462ff4469fe870220747fc6edec65baf6218a32bf10ee152899ec89eb2a775a13f96f936aeddbbde7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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