webdisk.jafz.org
Issued by R3
About this certificate
This digital certificate with serial number 03:9d:e2:fc:a1:93:46:65:0a:d7:29:1b:d1:e5:bd:20:52:0d was issued on by Let's Encrypt.
With 24 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=webdisk.jafz.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9d:e2:fc:a1:93:46:65:0a:d7:29:1b:d1:e5:bd:20:52:0dSerial Number (int): 315062906664860092648363910065708297376269
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 15:83:ff:db:94:14:3a:0a:a6:1a:da:02:dc:f7:48:78:6a:78:be:59
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 9c:14:e5:7e:f6:c8:a8:b3:f2:9f:3a:f7:80:d5:5d:60:0b:0c:34:c0
Fingerprint (sha256): 15:d0:62:97:52:f7:af:b0:14:63:e0:47:1d:f4:0d:3a:5a:71:aa:9a:5c:34:a8:30:6e:36:80:9f:68:ce:00:f3
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate webdisk.jafz.org
24
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for webdisk.jafz.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
autodiscover.jafz.org
autodiscover.piolin.com
cpanel.jafz.org
cpanel.piolin.com
cpcalendars.jafz.org
cpcalendars.piolin.com
cpcontacts.jafz.org
cpcontacts.piolin.com
jafz-org.paytotake.com
jafz.org
mail.jafz.org
mail.piolin.com
pinolillo.paytotake.com
piolin.com
piolin.paytotake.com
webdisk.jafz.org
webdisk.piolin.com
webmail.jafz.org
webmail.piolin.com
www.jafz-org.paytotake.com
www.jafz.org
www.pinolillo.paytotake.com
www.piolin.com
www.piolin.paytotake.com
autodiscover.piolin.com
cpanel.jafz.org
cpanel.piolin.com
cpcalendars.jafz.org
cpcalendars.piolin.com
cpcontacts.jafz.org
cpcontacts.piolin.com
jafz-org.paytotake.com
jafz.org
mail.jafz.org
mail.piolin.com
pinolillo.paytotake.com
piolin.com
piolin.paytotake.com
webdisk.jafz.org
webdisk.piolin.com
webmail.jafz.org
webmail.piolin.com
www.jafz-org.paytotake.com
www.jafz.org
www.pinolillo.paytotake.com
www.piolin.com
www.piolin.paytotake.com
Other certificates including the domain name jafz.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for webdisk.jafz.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGyTCCBbGgAwIBAgISA53i/KGTRmUK1ykb0eW9IFINMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDMwNjAyMjFaFw0yNDA3MDIwNjAyMjBaMBsxGTAXBgNVBAMT EHdlYmRpc2suamFmei5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZBgq4nXRQ3kLYnuOX1JB8kR5z9wuxer9CKJiMxxs1ylS2iASoIAHUsrhPJmly CAGXKqqUDuuo9oGA/nMRUHBRDwzQpzOolszu5/dbDEZjGzP8FsAnKfVBjm0ZHnSl s4kOVU5gFIVSfGigI830+M22Gb+UJ8YfGTwzh1eTh/xpFBJC+20txS/WRjp+ng18 OXzHD3Pxmd14e5JFiKtcYHhzfpyrhDipR4CQxR1QeimQU3OhjUQZvIjRqSmiaBCl RYXlRf83aRwW3IjOLs1RaZ3WFV4Xm4Vw2CV/Qprm17vpqzIK3CygJc66ym70Nus+ HtsAcRT/FrJXHixMrijIa+p7AgMBAAGjggPuMIID6jAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFBWD/9uUFDoKphraAtz3SHhqeL5ZMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMIIB9QYDVR0RBIIB7DCCAeiCFWF1dG9kaXNjb3Zlci5qYWZ6Lm9yZ4IXYXV0 b2Rpc2NvdmVyLnBpb2xpbi5jb22CD2NwYW5lbC5qYWZ6Lm9yZ4IRY3BhbmVsLnBp b2xpbi5jb22CFGNwY2FsZW5kYXJzLmphZnoub3JnghZjcGNhbGVuZGFycy5waW9s aW4uY29tghNjcGNvbnRhY3RzLmphZnoub3JnghVjcGNvbnRhY3RzLnBpb2xpbi5j b22CFmphZnotb3JnLnBheXRvdGFrZS5jb22CCGphZnoub3Jngg1tYWlsLmphZnou b3Jngg9tYWlsLnBpb2xpbi5jb22CF3Bpbm9saWxsby5wYXl0b3Rha2UuY29tggpw aW9saW4uY29tghRwaW9saW4ucGF5dG90YWtlLmNvbYIQd2ViZGlzay5qYWZ6Lm9y Z4ISd2ViZGlzay5waW9saW4uY29tghB3ZWJtYWlsLmphZnoub3JnghJ3ZWJtYWls LnBpb2xpbi5jb22CGnd3dy5qYWZ6LW9yZy5wYXl0b3Rha2UuY29tggx3d3cuamFm ei5vcmeCG3d3dy5waW5vbGlsbG8ucGF5dG90YWtlLmNvbYIOd3d3LnBpb2xpbi5j b22CGHd3dy5waW9saW4ucGF5dG90YWtlLmNvbTATBgNVHSAEDDAKMAgGBmeBDAEC ATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABjqLED2YAAAQDAEcwRQIgHf0mX/ejGWl3o+lC2EA6+Dx2 8vWxLGw+1/ouIraabokCIQDSo27hHYLLCaiWYYH9NyJWHdTbfUGBswtpasmQ02yC AgB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjqLED3MAAAQD AEcwRQIgWU16PqC3JD2oD1CpAjqq49KIUkSQLeNHVWLfKqVBvN0CIQDUeT2uw5Ss P8BC/uUcKdf/+RCAiyX2Mt+Zuul44EnpGjANBgkqhkiG9w0BAQsFAAOCAQEAekp3 cuEQE0Qc+H2JKcbojji8WEgms/23Hrnw9D4Y5IIJJQQGvBo8rPvWlNMERnH+75zT +gFWnzOhPI+8ZXoBaxM2nFSZ4NQgrw+PGHg9ojPxe8nYWngAqCXh/vOmit/2X4zl Cau/tL/FfN+pKsQinOHttWqUJnAlkEsg79UsQbY+hnLqKHMYWUxZ7jtZdDgVUG+a w3hjrLHIp3CLb2EARdxLaryswGzB4O1PZtAwfTQBcq/qTEZ2JslIXhi2rJi7UCC3 hvD6WmhJjryASmieJHxVUkad3ePdhy+WpQks7jYJq5d89knhMKsvkhyDS/UQnDEq vWv/CQG5+21pLem2Pw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQYKuJ10UN5C2J7jl9SQ fJEec/cLsXq/QiiYjMcbNcpUtogEqCAB1LK4TyZpcggBlyqqlA7rqPaBgP5zEVBw UQ8M0KczqJbM7uf3WwxGYxsz/BbAJyn1QY5tGR50pbOJDlVOYBSFUnxooCPN9PjN thm/lCfGHxk8M4dXk4f8aRQSQvttLcUv1kY6fp4NfDl8xw9z8ZndeHuSRYirXGB4 c36cq4Q4qUeAkMUdUHopkFNzoY1EGbyI0akpomgQpUWF5UX/N2kcFtyIzi7NUWmd 1hVeF5uFcNglf0Ka5te76asyCtwsoCXOuspu9DbrPh7bAHEU/xayVx4sTK4oyGvq ewIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 315062906664860092648363910065708297376269 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-03 06:02:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-02 06:02:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'webdisk.jafz.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19317440021631839244432716354045064872340212504974513373079184622136546403236448856780186542028079764593593801226224678083032158410392343827032059384826211064521853187577743973937144308556292352703706957801936386462250107103217277132959300385667150078018329780319738940029875267004591834902200389667766740715744431938918851325554359418110491169097097987578748695684298832261692821848032779672832691169880113351410818833191617397727964422366285830556461542844164900505308550579748113654905673021137241460838991877551418164481320166578627655356295464802809601497220501726271313367559150979420786995355829697331294104187 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1583ffdb94143a0aa61ada02dcf748786a78be59 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (492 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.jafz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.piolin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.jafz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.piolin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcalendars.jafz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcalendars.piolin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcontacts.jafz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcontacts.piolin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jafz-org.paytotake.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jafz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.jafz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.piolin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pinolillo.paytotake.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'piolin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'piolin.paytotake.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.jafz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.piolin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.jafz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.piolin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jafz-org.paytotake.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jafz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pinolillo.paytotake.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.piolin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.piolin.paytotake.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ea2c40f66000004030047304502201dfd265ff7a3196977a3e942d8403af83c76f2f5b12c6c3ed7fa2e22b69a6e89022100d2a36ee11d82cb09a8966181fd3722561dd4db7d4181b30b696ac990d36c82020076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ea2c40f7300000403004730450220594d7a3ea0b7243da80f50a9023aaae3d2885244902de3475562df2aa541bcdd022100d4793daec394ac3fc042fee51c29d7fff910808b25f632df99bae978e049e91a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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