monidentifiant.sncf
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 01:9a:9c:cf:9f:b3:47:61:71:38:06:0b:38:ab:db:26 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=monidentifiant.sncf
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:9a:9c:cf:9f:b3:47:61:71:38:06:0b:38:ab:db:26Serial Number (int): 2132022217551940809819141944174697254
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 63:9c:5e:23:75:08:7c:72:82:d6:1f:06:04:8a:5f:33:6d:f8:0e:e1
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 49:18:79:56:54:6a:be:0a:cf:ae:f0:e6:15:46:03:73:d1:1d:71:0e
Fingerprint (sha256): 2a:14:01:18:2a:e5:40:49:7f:88:f5:de:8b:29:21:fe:88:8e:c0:71:ca:ed:96:72:d7:61:87:d2:1b:04:31:db
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate monidentifiant.sncf
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for monidentifiant.sncf
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
Other certificates including the domain name monidentifiant.sncf
(limited to 100 certificates)
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
*.monidentifiant.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
monidentifiant.sncf
test.dev.aws.vsct.fr
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
*.monidentifiant.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
*.monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
maxactif-tgvinoui.sncf
maxactif-tgvinoui.sncf
recette1.ticketing-sncf.vsct.fr
*.monidentifiant.sncf
monidentifiant.sncf
*.monidentifiant.sncf
monidentifiant.sncf
test.dev.aws.vsct.fr
monidentifiant.sncf
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
recette1.ticketing-sncf.vsct.fr
monidentifiant.sncf
Certificate
The complete raw certificate details for monidentifiant.sncf in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6TCCBNGgAwIBAgIQAZqcz5+zR2FxOAYLOKvbJjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDExODAwMDAwMFoXDTI1MDIxNjIzNTk1OVowHjEc MBoGA1UEAxMTbW9uaWRlbnRpZmlhbnQuc25jZjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALCTNxph1TktPbvz6URN2ya4u6NEXO5BHXTpEHEMC0KVKpUF P01RL2OduVt1Xx5FarX+GQyrAvgVNHy0k04gOAXot+9LDVu3GfjaEQ7fd1WEaL3R XC7Apryj6SrPcJ38w7OsJlQ8WVoljZZKskUNq8IS48ZaemRGCIcAvCNi92YEWaDh AZhsepa0Y3JB9YSGJBVfkwgYV9VYB3wcqBmhxYUXAGrykrF9vWPH3NtNxKQDdHqx mtExNyk7HofHfrKx3si0i+gGveZ+kdL6vAYJX9xvtV7OHvnFGbPz0WX5BkzJ/OO8 jGFsMJJaIYvi2j3rZh6dXXqEq6rTme5fDIMxb+kCAwEAAaOCAwMwggL/MB8GA1Ud IwQYMBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBRjnF4jdQh8coLW HwYEil8zbfgO4TA1BgNVHREELjAsghNtb25pZGVudGlmaWFudC5zbmNmghUqLm1v bmlkZW50aWZpYW50LnNuY2YwEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAy MDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5j cmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0w Mi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDIu YW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMBAf8EAjAAMIIBfgYKKwYB BAHWeQIEAgSCAW4EggFqAWgAdwBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSx Ypo53wAAAY0bNARtAAAEAwBIMEYCIQCRLqf2A/IqHzxbCNUDPdB1nQzHl6LswGkT lSZdvLWmAwIhAM9n0Z4Zx0JiEtuiEiDYVOzddYD4oaQFsM00AWY1z6c0AHYAfVke EuF4KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGNGzQEqgAABAMARzBFAiAP E4w6RTQE6MLGumf0Zozv1/WOIfO1kvCl19UQWaCFxgIhANrHqoLT75Et5302Z/Ay icT5F5b/U6sovJpr3s+1+kj9AHUA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId /R43jlAAAAGNGzQEzAAABAMARjBEAiB8tTTkz7Xt7BLfYAdP6lfx26vA91tZ8lJQ 8JvOy9UqswIgKlIg9T/47hXOjmqY0njBVnegrccQdGWIw397xe/6eOYwDQYJKoZI hvcNAQELBQADggEBAKfqRrxTzAeLepLxK1JOOKvdniVym66ogqW1vRnKQL2sVNXe nydqo5qRWkrQArKqRNr4nIF6s3WXyjdevPdA9Yk2N9kqOpLL8gRca3jDAahY4ORh Ok07kEC9pSy/CgScKQeel1xtM8BY5OUeFY7VCJKfXOtIZ9W/G3ywlLNYqZQ4EQc2 oh9CAHYUkmQprhuc38SW8OdpsX+MMIODzQW7YjdLakrGiDRd2fCVHrPgg8Lw2Tk7 lOooGbxXp+088Y+a8RQCd6pIVN4AinkKGhQnDZwPeGesR87gbDULoUEa5GbeZn2v dWeEMHci5LkkjvUoj5q6PcV/AyYyMhJjk0zpzV0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJM3GmHVOS09u/PpRE3b Jri7o0Rc7kEddOkQcQwLQpUqlQU/TVEvY525W3VfHkVqtf4ZDKsC+BU0fLSTTiA4 Bei370sNW7cZ+NoRDt93VYRovdFcLsCmvKPpKs9wnfzDs6wmVDxZWiWNlkqyRQ2r whLjxlp6ZEYIhwC8I2L3ZgRZoOEBmGx6lrRjckH1hIYkFV+TCBhX1VgHfByoGaHF hRcAavKSsX29Y8fc203EpAN0erGa0TE3KTseh8d+srHeyLSL6Aa95n6R0vq8Bglf 3G+1Xs4e+cUZs/PRZfkGTMn847yMYWwwklohi+LaPetmHp1deoSrqtOZ7l8MgzFv 6QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2132022217551940809819141944174697254 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'monidentifiant.sncf' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22290536217617377556361274581279099566154909328651136609542605260199047751549233279052373231803008779895581510717133498672727701786263117648891797103362796176831516346744135454637260429526504397207631171988339319092934320786868452851127083856801222331233079683983569710501226917671215332767753280944051587858256942472086756141804779152566616187774269722442995558998935640520255777140733128709127178222176503453954540162113772975455771682825411930107698945134171117204189473458136236222977376518555700663483523565833987617214289055856001429995163475100967009944798122752451822374559303010109645639454213349206347837417 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 639c5e2375087c7282d61f06048a5f336df80ee1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monidentifiant.sncf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.monidentifiant.sncf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 01680077004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018d1b34046d0000040300483046022100912ea7f603f22a1f3c5b08d5033dd0759d0cc797a2ecc0691395265dbcb5a603022100cf67d19e19c7426212dba21220d854ecdd7580f8a1a405b0cd34016635cfa7340076007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000018d1b3404aa000004030047304502200f138c3a453404e8c2c6ba67f4668cefd7f58e21f3b592f0a5d7d51059a085c6022100dac7aa82d3ef912de77d3667f03289c4f91796ff53ab28bc9a6bdecfb5fa48fd007500e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e500000018d1b3404cc000004030046304402207cb534e4cfb5edec12df60074fea57f1dbabc0f75b59f25250f09bcecbd52ab302202a5220f53ff8ee15ce8e6a98d278c15677a0adc710746588c37f7bc5effa78e6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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