www.esufi.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:77:c5:fe:f8:34:e7:d7:78:82:1b:7b:2b:16:26:15:52:6d was issued on by Let's Encrypt.
With 18 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.esufi.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:77:c5:fe:f8:34:e7:d7:78:82:1b:7b:2b:16:26:15:52:6dSerial Number (int): 302093641251673311046952966976626798973549
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 78:ce:ff:5e:44:92:93:d3:17:49:85:7d:6e:6c:f6:a6:8b:34:d7:aa
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 1b:7b:5e:59:33:3a:d8:9d:18:1d:cb:b6:5c:04:99:1b:a5:90:4a:f7
Fingerprint (sha256): 25:2b:35:5c:7b:91:ca:58:00:c6:7b:5c:b8:bd:c1:65:5e:4e:45:a1:e2:00:07:4d:e7:57:0f:09:dc:e2:77:3a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.esufi.com
18
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.esufi.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
agilebull.com
amd-life.com
artvinhotel.com
canturinate.com
dailysham.com
esufi.com
securitytokenglobal.com
securitytokenworld.com
thefestivalgeek.com
www.agilebull.com
www.amd-life.com
www.artvinhotel.com
www.canturinate.com
www.dailysham.com
www.esufi.com
www.securitytokenglobal.com
www.securitytokenworld.com
www.thefestivalgeek.com
amd-life.com
artvinhotel.com
canturinate.com
dailysham.com
esufi.com
securitytokenglobal.com
securitytokenworld.com
thefestivalgeek.com
www.agilebull.com
www.amd-life.com
www.artvinhotel.com
www.canturinate.com
www.dailysham.com
www.esufi.com
www.securitytokenglobal.com
www.securitytokenworld.com
www.thefestivalgeek.com
Other certificates including the domain name esufi.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.esufi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGqzCCBZOgAwIBAgISA3fF/vg059d4ght7KxYmFVJtMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjcxMTQ3MzZaFw0x OTEwMjUxMTQ3MzZaMBgxFjAUBgNVBAMTDXd3dy5lc3VmaS5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxRI0IN9wtftpm1R0GKSg+LCR1xx8bXJpn HrNKYXs3NBdXKGbRvqU9mUEbci8YeupiiTgcQPbg7sP4b+4TlyoIlaTfAown8mrq vk8Ksuu7A4E1yk1Xm5G1JxbR9y37KcSuUBalYhhYB/k+YUQrpm4gU5smQc/UY6YA DVYhZg/OHG4oeW2LdiPecZl9MQo0BB8W49pNQF2Y2OIAAamelpr7CZ217fzbQiIt E2xp3AfdFUGRgNRhyJEj+dCZCveim2CyjknbJ7lLVJnLVGELWu+hqZch6uPX2s1G fBqLNWUPG9yEcPDUGm0bdQLWhFpqVJBy93UsdEuqsQauMxRnZ27DAgMBAAGjggO7 MIIDtzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHjO/15EkpPTF0mFfW5s9qaLNNeq MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMw YTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9y ZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9y Zy8wggFvBgNVHREEggFmMIIBYoINYWdpbGVidWxsLmNvbYIMYW1kLWxpZmUuY29t gg9hcnR2aW5ob3RlbC5jb22CD2NhbnR1cmluYXRlLmNvbYINZGFpbHlzaGFtLmNv bYIJZXN1ZmkuY29tghdzZWN1cml0eXRva2VuZ2xvYmFsLmNvbYIWc2VjdXJpdHl0 b2tlbndvcmxkLmNvbYITdGhlZmVzdGl2YWxnZWVrLmNvbYIRd3d3LmFnaWxlYnVs bC5jb22CEHd3dy5hbWQtbGlmZS5jb22CE3d3dy5hcnR2aW5ob3RlbC5jb22CE3d3 dy5jYW50dXJpbmF0ZS5jb22CEXd3dy5kYWlseXNoYW0uY29tgg13d3cuZXN1Zmku Y29tght3d3cuc2VjdXJpdHl0b2tlbmdsb2JhbC5jb22CGnd3dy5zZWN1cml0eXRv a2Vud29ybGQuY29tghd3d3cudGhlZmVzdGl2YWxnZWVrLmNvbTBMBgNVHSAERTBD MAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8v Y3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2ACk8 UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABbDN45ZgAAAQDAEcwRQIh AJ686uWkStxEX3tk086zity5wLaLMkf5otnT3OXMmwePAiBz/zFucztCcc3nj69g lraM/fbIIJjoZOfqVbwUo7EYygB2AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiT AZ3d8dv+AAABbDN455sAAAQDAEcwRQIgYY30ClUgj1Ru3OVg8/aJDdjaPN4Y9HXd tSEjdTaumDQCIQDmUkjoY/NO5miCqTRdMlUTlhoYCUWxY3r25qXIm8sR1TANBgkq hkiG9w0BAQsFAAOCAQEAG4QOqpBF2tJo3CBmmlCFTS/cF74H89fgCn237Kn1M7/L LfYBsncnf9R7mUZ+bakch+otP385bjwFFtRVYi68DQ3iVdbqTpwHZCzDaAOqULij 5T49UxPKJotPSX+GO1uf2dAiydyIpVQhG1AFr9Njs4KtdmGrzMzzmL11XdRrwtTu YI3w+7LIQNkivHhVYxf7yXVUpXVy9asdKIJ2tQWxN9m6VctYX3DOmsOPKta/6rzc NWEOcDCl3okhfj1eOd8V+jukI1o9wOYRtfWZITeORwWTD5czLOrInH0ogS1j4F2w TZlQSfIVNAmgyMnj9nMOGMQdu6DB/KVH0w+qPsPqwQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUSNCDfcLX7aZtUdBiko PiwkdccfG1yaZx6zSmF7NzQXVyhm0b6lPZlBG3IvGHrqYok4HED24O7D+G/uE5cq CJWk3wKMJ/Jq6r5PCrLruwOBNcpNV5uRtScW0fct+ynErlAWpWIYWAf5PmFEK6Zu IFObJkHP1GOmAA1WIWYPzhxuKHlti3Yj3nGZfTEKNAQfFuPaTUBdmNjiAAGpnpaa +wmdte3820IiLRNsadwH3RVBkYDUYciRI/nQmQr3optgso5J2ye5S1SZy1RhC1rv oamXIerj19rNRnwaizVlDxvchHDw1BptG3UC1oRaalSQcvd1LHRLqrEGrjMUZ2du wwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 302093641251673311046952966976626798973549 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-27 11:47:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-25 11:47:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.esufi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22377983690943006291405136711321961417417703024681264485106160674103560039033689710889915377086722133512037844565753460927658444909295315093850057024081873999107486619271965713982770882059439026731044758836430200139270803272865591521349784999474142337068985762395824345238970623525972319874691349721354795013398477315175251351412571390968518561309630687307469800028052727258257862420296138453530519616446779899321305703880468406249811346660069122095568050932619731389334236620668317666624160608253763584684513441367468015121027890695433156593493288556570311266919784914463130007129177518971190159570648785886151929539 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 78ceff5e449293d31749857d6e6cf6a68b34d7aa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (358 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agilebull.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amd-life.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artvinhotel.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canturinate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dailysham.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'esufi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securitytokenglobal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securitytokenworld.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thefestivalgeek.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.agilebull.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.amd-life.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.artvinhotel.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.canturinate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dailysham.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.esufi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.securitytokenglobal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.securitytokenworld.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thefestivalgeek.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c3378e59800000403004730450221009ebceae5a44adc445f7b64d3ceb38adcb9c0b68b3247f9a2d9d3dce5cc9b078f022073ff316e733b4271cde78faf6096b68cfdf6c82098e864e7ea55bc14a3b118ca007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c3378e79b00000403004730450220618df40a55208f546edce560f3f6890dd8da3cde18f475ddb521237536ae9834022100e65248e863f34ee66882a9345d325513961a180945b1637af6e6a5c89bcb11d5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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