people.com
Issued by R3
About this certificate
This digital certificate with serial number 03:73:f0:c4:70:29:7a:05:b2:cb:c1:02:c5:36:0b:d2:58:71 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=people.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:73:f0:c4:70:29:7a:05:b2:cb:c1:02:c5:36:0b:d2:58:71Serial Number (int): 300789364675277310206110942422151961139313
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 11:46:96:92:51:fa:aa:49:29:c0:2f:8f:9d:8a:45:d1:f5:45:59:4c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d2:05:65:5d:b8:f9:7f:75:54:32:10:81:dd:3a:61:58:bb:ed:3a:f2
Fingerprint (sha256): 17:08:1d:b7:ca:13:9d:d6:01:1a:20:77:77:67:64:e1:f6:28:bf:a5:5f:02:09:a2:20:e8:18:8e:33:a1:8c:3d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate people.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for people.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.people.com
people.com
people.com
Other certificates including the domain name people.com
(limited to 100 certificates)
*.allyou.com
office.timeinc.com
subscription.timeinc.com
www.oxmoorhouse.com
subscription.timeinc.com
qa-subscription.ecommerce.timeinc.com
accounts.bhg.com
coupon-site.people.com
*.secure.meredith.com
secure.meredith.com
www.timeinclistrental.com
qa-subscription.ecommerce.timeinc.com
qa-subscription.ecommerce.timeinc.com
cgi.pathfinder.com
www.perkssignup.people.com
celebritybabies.people.com
smetrics.people.com
sli.dailypaws.com
office.timeinc.com
webreader.people.com
people.com
tracking.promocodesforyou.com
qa-subscription.ecommerce.timeinc.com
subscription.timeinc.com
app.dreader.timeinc.net
smetrics.people.com
www.meredith.com
xid.people.com
ent-saas.people.com
petbox.people.com
*.people.com
people.com
smetrics.people.com
specialoffers.meredith.com
celebritybabies.people.com
people.com
qa-www.oxmoorhouse.com
gdpr.ew.com
people.com
membership.people.com
qa-profiles-uat.timeinc.net
qa-profiles.timeinc.net
people.com
premium.people.com
games.people.com
tmpcaa.enterprise.corpad.timeinc.com
profiles.timeinc.net
dev-profiles.timeinc.net
sli.dailypaws.com
*.people.com
qa-www.oxmoorhouse.com
*.membership.people.com
www.timeinclistrental.com
cmbuild-aws-www.oxmoorhouse.com
dev.secure.meredith.com
celebritybabies.people.com
*.people.com
rails.timeinc.net
sli.dailypaws.com
xid.coastalliving.com
promotions.rslifestylers.com
xid.coastalliving.com
xid.coastalliving.com
celebritybabies.people.com
xid.people.com
www.reference.dcms-sa.timeinc.net
secure.meredith.com
celebritybabies.people.com
pages.email.coastalliving.com
accounts.bhg.com
office.timeinc.com
xid.coastalliving.com
subscription.timeinc.com
accounts.bhg.com
www.oxmoorhouse.com
accounts.people.com
subscription.timeinc.com
people.com
www.timeinclistrental.com
qa-www.oxmoorhouse.com
petbox.people.com
www.perkssignup.people.com
membership.people.com
coupon-site.people.com
smetrics.people.com
accounts.people.com
subscription.timeinc.com
www.meredith.com
subscription.timeinc.com
qa-profiles.timeinc.net
smetrics.people.com
secure.meredith.com
accounts.bhg.com
www.timeinclistrental.com
www.oxmoorhouse.com
qa-ucs.timeinc.net
celebritybabies.people.com
people.com
celebritybabies.people.com
dev-ucs.timeinc.net
office.timeinc.com
subscription.timeinc.com
www.oxmoorhouse.com
subscription.timeinc.com
qa-subscription.ecommerce.timeinc.com
accounts.bhg.com
coupon-site.people.com
*.secure.meredith.com
secure.meredith.com
www.timeinclistrental.com
qa-subscription.ecommerce.timeinc.com
qa-subscription.ecommerce.timeinc.com
cgi.pathfinder.com
www.perkssignup.people.com
celebritybabies.people.com
smetrics.people.com
sli.dailypaws.com
office.timeinc.com
webreader.people.com
people.com
tracking.promocodesforyou.com
qa-subscription.ecommerce.timeinc.com
subscription.timeinc.com
app.dreader.timeinc.net
smetrics.people.com
www.meredith.com
xid.people.com
ent-saas.people.com
petbox.people.com
*.people.com
people.com
smetrics.people.com
specialoffers.meredith.com
celebritybabies.people.com
people.com
qa-www.oxmoorhouse.com
gdpr.ew.com
people.com
membership.people.com
qa-profiles-uat.timeinc.net
qa-profiles.timeinc.net
people.com
premium.people.com
games.people.com
tmpcaa.enterprise.corpad.timeinc.com
profiles.timeinc.net
dev-profiles.timeinc.net
sli.dailypaws.com
*.people.com
qa-www.oxmoorhouse.com
*.membership.people.com
www.timeinclistrental.com
cmbuild-aws-www.oxmoorhouse.com
dev.secure.meredith.com
celebritybabies.people.com
*.people.com
rails.timeinc.net
sli.dailypaws.com
xid.coastalliving.com
promotions.rslifestylers.com
xid.coastalliving.com
xid.coastalliving.com
celebritybabies.people.com
xid.people.com
www.reference.dcms-sa.timeinc.net
secure.meredith.com
celebritybabies.people.com
pages.email.coastalliving.com
accounts.bhg.com
office.timeinc.com
xid.coastalliving.com
subscription.timeinc.com
accounts.bhg.com
www.oxmoorhouse.com
accounts.people.com
subscription.timeinc.com
people.com
www.timeinclistrental.com
qa-www.oxmoorhouse.com
petbox.people.com
www.perkssignup.people.com
membership.people.com
coupon-site.people.com
smetrics.people.com
accounts.people.com
subscription.timeinc.com
www.meredith.com
subscription.timeinc.com
qa-profiles.timeinc.net
smetrics.people.com
secure.meredith.com
accounts.bhg.com
www.timeinclistrental.com
www.oxmoorhouse.com
qa-ucs.timeinc.net
celebritybabies.people.com
people.com
celebritybabies.people.com
dev-ucs.timeinc.net
Certificate
The complete raw certificate details for people.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgISA3PwxHApegWyy8ECxTYL0lhxMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTAwODAyMTBaFw0yNDA3MDkwODAyMDlaMBUxEzARBgNVBAMT CnBlb3BsZS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzoHAW L8tRdOC7vni0WiRwlocPydNWE5nFNFneEFhcypFee/+B5vp205TxpRz9STct7G0O fJshO/PQaWaBe9bWta3BwbdJQnLmEmaRqdpiTiq52AqGLBM+xeOWBrS2cW2xw01p rrXGjwzhVHAJiJ5zfvoS9PhTLRk3gPR4uYhMS/oDEB72JgFKG28e9w6mpyZcqrns CGOYza5xxyjxQw02LfMAVH/BLiYPvGKePLahSODtQn4hXY5sn13zKr5sxkxyOTq8 opeT43jl4tUAGmWp7WD4TFmdLrzgpNh3VBB+Xjf3GXDGlWAJ3+o/w8M6cY3TMp8T 3N7j7bQk3/XqOtHZAgMBAAGjggIbMIICFzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FBFGlpJR+qpJKcAvj52KRdH1RVlMMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCMG A1UdEQQcMBqCDCoucGVvcGxlLmNvbYIKcGVvcGxlLmNvbTATBgNVHSAEDDAKMAgG BmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AHb/iD8KtvuVUcJhzPWH ujS0pM27KdxoQgqf5mdMWjp0AAABjsc+Q+MAAAQDAEgwRgIhAPqlHfOmSvIhWYt+ bq/Bcee5deKfr1VxJnqd3WdCHAQ0AiEAp2br2y4Ieh/zIE5YO8rnONm8OXPmViOK /14apeSvJBkAdgDf4VbrqgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75SXAAAAY7H PkRnAAAEAwBHMEUCIQCPPbKRAqHtr+hfBzd7KT5K6tWPN26jNul61deaZDdlAAIg XBO1630TtavTYZxoeOIbkmV+GVETNXook0erNX5k7OMwDQYJKoZIhvcNAQELBQAD ggEBAEkxnRtw3mrDZ5HkpgmHh2y5WA8IumSfUlf4eKuw16Hi1RIfnPp2cwnV3GI5 jxvHeozCO8Pc/6O6/SYb++gOJO45SUJtkkkJ+0+FSkEIw9M4QmU/kBV0ubboq7zy +XzmgYrILQMgKNjdBB/s7kHdvae3zoXGIms9V7kc5Opnusl9rRb+GVZHDrIGPRHy CT1sInOI+HgD+MCi12VHnwW+Fl38KAGlYZbxG8Vq2xoedmqxoAhFKOUGjVd8xcIa BY0AHQ7iW5evWRGOpkc3inJ9rHOYGy1mXVHXXzU1q+JGGDcaOAkA8bgTHEW4toGC SBn8KN7boylQcyZhRanBInKHquw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6BwFi/LUXTgu754tFok cJaHD8nTVhOZxTRZ3hBYXMqRXnv/geb6dtOU8aUc/Uk3LextDnybITvz0GlmgXvW 1rWtwcG3SUJy5hJmkanaYk4qudgKhiwTPsXjlga0tnFtscNNaa61xo8M4VRwCYie c376EvT4Uy0ZN4D0eLmITEv6AxAe9iYBShtvHvcOpqcmXKq57AhjmM2uccco8UMN Ni3zAFR/wS4mD7xinjy2oUjg7UJ+IV2ObJ9d8yq+bMZMcjk6vKKXk+N45eLVABpl qe1g+ExZnS684KTYd1QQfl439xlwxpVgCd/qP8PDOnGN0zKfE9ze4+20JN/16jrR 2QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 300789364675277310206110942422151961139313 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-10 08:02:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-09 08:02:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'people.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22675771435760333082141224477450389963693379279297166930442491302734689863830768504559117066978833222037941955832805037814541225088926113847642401307276039652505816869354574392297817980356557169227258207353940361136931836845020230655972274655192103671177634751146903746637919623875535227765418046733485840329119361660616527874095090523441902474424803221985824140118302599197530202575708740871785603424819492687796631006790665526851251098247197479241738657333084238673191278442178659243571805956699355490403063430778728062801443581266642752486873657450395082599912042234127559332020814905407412542050145301035759620569 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1146969251faaa4929c02f8f9d8a45d1f545594c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.people.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'people.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ec73e43e30000040300483046022100faa51df3a64af221598b7e6eafc171e7b975e29faf5571267a9ddd67421c0434022100a766ebdb2e087a1ff3204e583bcae738d9bc3973e656238aff5e1aa5e4af2419007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ec73e446700000403004730450221008f3db29102a1edafe85f07377b293e4aead58f376ea336e97ad5d79a6437650002205c13b5eb7d13b5abd3619c6878e21b92657e195113357a289347ab357e64ece3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0049319d1b70de6ac36791e4a60987876cb9580f08ba649f5257f878abb0d7a1e2d5121f9cfa767309d5dc62398f1bc77a8cc23bc3dcffa3bafd261bfbe80e24ee3949426d924909fb4f854a4108c3d33842653f901574b9b6e8abbcf2f97ce6818ac82d032028d8dd041fecee41ddbda7b7ce85c6226b3d57b91ce4ea67bac97dad16fe1956470eb2063d11f2093d6c227388f87803f8c0a2d765479f05be165dfc2801a56196f11bc56adb1a1e766ab1a0084528e5068d577cc5c21a058d001d0ee25b97af59118ea647378a727dac73981b2d665d51d75f3535abe24618371a380900f1b8131c45b8b681824819fc28dedba3295073266145a9c1227287aaec