goldbooks.co.il
Issued by R3
About this certificate
This digital certificate with serial number 04:7a:b0:57:d1:4e:b5:0d:8b:40:87:7a:5c:76:9b:64:b1:75 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=goldbooks.co.il
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:7a:b0:57:d1:4e:b5:0d:8b:40:87:7a:5c:76:9b:64:b1:75Serial Number (int): 390197992593739753852386402653891614519669
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 27:d3:fe:b8:6e:c8:0d:2d:5d:45:46:b9:26:b3:f4:a4:38:0d:ec:5b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 3d:02:6b:e3:f5:22:fa:82:32:e9:93:06:55:21:bb:7a:9e:c5:03:bf
Fingerprint (sha256): 1d:dd:16:5a:f7:2d:6c:87:c6:eb:0c:01:8c:99:6a:01:37:4c:99:0b:b8:7a:aa:c9:35:72:e9:b3:4a:41:38:ec
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate goldbooks.co.il
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for goldbooks.co.il
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
goldbooks.co.il
www.goldbooks.co.il
www.goldbooks.co.il
Other certificates including the domain name goldbooks.co.il
(limited to 100 certificates)
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
test.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
chanut.goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
chanut.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
chanut.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
test.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
chanut.goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
chanut.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
chanut.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
Certificate
The complete raw certificate details for goldbooks.co.il in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/jCCBOagAwIBAgISBHqwV9FOtQ2LQId6XHabZLF1MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjkyMTE2NTJaFw0yNDA1MjkyMTE2NTFaMBoxGDAWBgNVBAMT D2dvbGRib29rcy5jby5pbDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AMqqYQ/mkEQsD1d6TDRWthGu0SSgNT551dPxSi3icJC4yOSRUi5AkByhNFngvhkW f3BYH3wC1503W4oz5Gdkg9AdbPu6Zdx7TseZALzWXkl8/WhK3E9G2U0fTcX6tiH0 +SpJUBe66r7rKacvceo+M9arsm5Qf2xknmpMeo2zHfAChx+aoUAtC3wmYXmg8W7Y BTgO5gZ5iKK69xFIoVIhoe9UsDLXvqzO/1pXgBTEJYQ72kFB11glNSJVPIpytOMe 1bi++lwxQTzxOyGMhK3GyO7JSaj8d6W1Rl+qkOieDFR7Lldlv+ite4dMfBDgceZT 5xx4i0HrmyAk+rSmOGwpIJm6HH7KumkfOQ0GQ4cSy8JLBAIl/a1zqSOJKPczwkIB It9ILTk3j4IKPc3xfBaAGtnrIKSmYpnVNIkid8oDGk/qcVYFSOsy3wLFAVjU+6u4 MEZo0pK6r3W7twJTGRGDU3CpaMuTMl4RAaLPLzfw3zvTTJ6XJwbkw/hX2VoapH/X y+b4K5sSCCrHMUGtzxvSVXiYUL0qO1s+60nc7wBpgYcOB4ph3hC4ikt/30XckOjG humT1F7pvkbCxyp3XLC09gqjLZDOd4LdqLn92epUzK1XuNURT1KiaUyaVGQvA/An mWhcVPNuZ1x1dXvPVDbAXg4D9vaTXa5AiNOzkMO+C7h1AgMBAAGjggIkMIICIDAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFCfT/rhuyA0tXUVGuSaz9KQ4DexbMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMC8GA1UdEQQoMCaCD2dvbGRib29rcy5jby5pbIIT d3d3LmdvbGRib29rcy5jby5pbDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQIGCisG AQQB1nkCBAIEgfMEgfAA7gB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s5 2IRzAAABjfbxG3gAAAQDAEYwRAIgdRzIcKxbxHKslimpl/xDI6OyfP7DzKQjhpUX oMxeDigCIBb0krFaxgjswf7vZFS+0Gy57Igk/354pi9doD3Q2/2NAHUAouK/1h7e Ly8HoNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGN9vEbewAABAMARjBEAiBReCMp wpfTTdcNyyKb+haRV8wqpnPKNlhG+mtkS4k6iAIgBLz9WHj/9x7nPEDI4h+hpk/m D+RePAZrR3meV1WL4t8wDQYJKoZIhvcNAQELBQADggEBAIcIaj9fZ1awJqmkNfuv P/MIgq6es/VeJAAUMt0DBq8e3BWWJWpazRMjr5l8b5NaxrD8Xao5snMswKXhtdto vzReteN0QkjwmmXcG+uI1qErVaTdEObRxisWY5C9oExgvm2rNNt8Hs0NkkhtnvJ5 NPVBszTlfvVdXd07qQmhb91Efaxa+q2C4wv1cDWVb2iLwgyqRgIUpCxRdePd+CAq QKjEeJs03wSmMQL8UFDtqNOcxvAEH+0QGA6n5Z36oYYGL7zUb16rsww8ubC7KH2R eE5jIBkhxn+sTl7pjKRRfFaJC+3zNyDdJqndUsrevzj+5x3Xl4T0LDM3nKueCl02 fhw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyqphD+aQRCwPV3pMNFa2 Ea7RJKA1PnnV0/FKLeJwkLjI5JFSLkCQHKE0WeC+GRZ/cFgffALXnTdbijPkZ2SD 0B1s+7pl3HtOx5kAvNZeSXz9aErcT0bZTR9Nxfq2IfT5KklQF7rqvusppy9x6j4z 1quyblB/bGSeakx6jbMd8AKHH5qhQC0LfCZheaDxbtgFOA7mBnmIorr3EUihUiGh 71SwMte+rM7/WleAFMQlhDvaQUHXWCU1IlU8inK04x7VuL76XDFBPPE7IYyErcbI 7slJqPx3pbVGX6qQ6J4MVHsuV2W/6K17h0x8EOBx5lPnHHiLQeubICT6tKY4bCkg mbocfsq6aR85DQZDhxLLwksEAiX9rXOpI4ko9zPCQgEi30gtOTePggo9zfF8FoAa 2esgpKZimdU0iSJ3ygMaT+pxVgVI6zLfAsUBWNT7q7gwRmjSkrqvdbu3AlMZEYNT cKloy5MyXhEBos8vN/DfO9NMnpcnBuTD+FfZWhqkf9fL5vgrmxIIKscxQa3PG9JV eJhQvSo7Wz7rSdzvAGmBhw4HimHeELiKS3/fRdyQ6MaG6ZPUXum+RsLHKndcsLT2 CqMtkM53gt2ouf3Z6lTMrVe41RFPUqJpTJpUZC8D8CeZaFxU825nXHV1e89UNsBe DgP29pNdrkCI07OQw74LuHUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 390197992593739753852386402653891614519669 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-29 21:16:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-29 21:16:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'goldbooks.co.il' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 826803282537019348764973751107424549123040557297792602544878617751146360418721752264240315613930931040035466680037195341839456543291639678705591317222370688433636472533913392370344285527183029582257747236705951746145652561358246593019153321713411104251575238707797246550436110862335641078685021240822007063370064719187819402019382851154726792599017535809881897408540151642480302518482797811114982614101156772661240248443568542318318818376920547982399179259803354701346239938693641880661612013709838739511394719764347986625011919005341915866081032003063417348180977477106549511035231222811358871790676207447965599391013685518232860321378876480808586187934286410070939058416749465556894939741119316801407800341522330875725204314389649803006539658597492002845189511700512894415715377013978921530979290684282873594241119277973710195452583776809763962499848826074290133744489061684935859107641835257422962374991321932335501512499662186196950640956630135767297705257226706985353193499202333298018343114215106195184275063441174019719047510790412469380928052580811309683634801565722922711538879867006221312530916098987354011612395338400244200830250458971503461328427751702592706244835022684659041694775705480400741724809687773859021807401077 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 27d3feb86ec80d2d5d4546b926b3f4a4380dec5b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'goldbooks.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.goldbooks.co.il' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018df6f11b7800000403004630440220751cc870ac5bc472ac9629a997fc4323a3b27cfec3cca423869517a0cc5e0e28022016f492b15ac608ecc1feef6454bed06cb9ec8824ff7e78a62f5da03dd0dbfd8d007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018df6f11b7b0000040300463044022051782329c297d34dd70dcb229bfa169157cc2aa673ca365846fa6b644b893a88022004bcfd5878fff71ee73c40c8e21fa1a64fe60fe45e3c066b47799e57558be2df . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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