hollytreeproductions.co.uk
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:66:69:65:12:fb:0a:34:bc:90:d9:bf:25:c0:ae:98:1d:07 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hollytreeproductions.co.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:66:69:65:12:fb:0a:34:bc:90:d9:bf:25:c0:ae:98:1d:07Serial Number (int): 383298038899489638305533359295307831581959
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 11:14:be:12:a4:50:dd:0c:9e:86:f1:46:3a:2f:85:87:6a:27:24:41
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): db:60:bf:8d:10:26:56:33:26:4e:c7:fe:da:b1:f3:80:2c:2c:7f:5f
Fingerprint (sha256): 2b:82:9b:0c:bf:34:4d:ba:10:5d:31:50:32:ac:e2:af:4d:40:29:81:a0:a3:67:4a:f9:14:2a:d2:59:40:b9:12
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hollytreeproductions.co.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hollytreeproductions.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hollytreeproductions.co.uk
webmail.hollytreeproductions.co.uk
webmail.hollytreeproductions.co.uk
Other certificates including the domain name hollytreeproductions.co.uk
(limited to 100 certificates)
hollytreeproductions.co.uk
sni145277.cloudflaressl.com
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
sni.cloudflaressl.com
hollytreeproductions.co.uk
sni145277.cloudflaressl.com
sni145277.cloudflaressl.com
sni.cloudflaressl.com
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
sni145277.cloudflaressl.com
sni.cloudflaressl.com
hollytreeproductions.co.uk
hollytreeproductions.co.uk
sni.cloudflaressl.com
hollytreeproductions.co.uk
hollytreeproductions.co.uk
sni145277.cloudflaressl.com
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
sni145277.cloudflaressl.com
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
sni.cloudflaressl.com
hollytreeproductions.co.uk
sni145277.cloudflaressl.com
sni145277.cloudflaressl.com
sni.cloudflaressl.com
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
sni145277.cloudflaressl.com
sni.cloudflaressl.com
hollytreeproductions.co.uk
hollytreeproductions.co.uk
sni.cloudflaressl.com
hollytreeproductions.co.uk
hollytreeproductions.co.uk
sni145277.cloudflaressl.com
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
hollytreeproductions.co.uk
Certificate
The complete raw certificate details for hollytreeproductions.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRDCCBSygAwIBAgISBGZpZRL7CjS8kNm/JcCumB0HMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA5MDIxODI3MTRaFw0x ODEyMDExODI3MTRaMCUxIzAhBgNVBAMTGmhvbGx5dHJlZXByb2R1Y3Rpb25zLmNv LnVrMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Kyd2lRHL8QnL+ry EmJWo7F3/HtoS5DZhK9cwZ4aeIIdlKOElXXqPLIDOhv9su5yfmMueDNdRss9YHpw 88cn28cudFAQvhH2s7VwXWrUk7ss1KuN+PkKUxba7CbovODtCPQ5nE4oyp+EfyIy P3l9AcbWoxNlRp1qWDc/CBbFT56CGWvIPU7D6l0d2QaO4vBQNA34j8KhDk469PKQ V9bZ/U/X6aODrEL1rrXiQCRgb85XV4tOHUrxWbq6w422V1W6FU0FfoCGiRZk4icP v2rWRzQAR143KkBIre3Wrc4BgTieVNT1ajpymaJygIp215jc86eT8lxX+VWihYTq K1cxvQIDAQABo4IDRzCCA0MwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQRFL4SpFDd DJ6G8UY6L4WHaickQTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMEkGA1UdEQRCMECCGmhvbGx5dHJlZXByb2R1Y3Rpb25z LmNvLnVrgiJ3ZWJtYWlsLmhvbGx5dHJlZXByb2R1Y3Rpb25zLmNvLnVrMIH+BgNV HSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcC ARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGb VGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5 aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0 aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcv cmVwb3NpdG9yeS8wggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwDbdK/uyynssf7K PnFtLOW5qrs294Rxg8ddnU83th+/ZAAAAWWbwONrAAAEAwBIMEYCIQD0AvsdW8Ff pu8909Vo+ZvkhX8cWzUYlw2Pmst6il1YcgIhAIC59PqAouMqJb2r9RWpLc5GqgaN fiZHB1YYjDasAd4oAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgA AAFlm8DlQgAABAMARzBFAiAuJvk/XJsmPSoxnGbGCEUzvl5tl4fPDSnTICElv49Q lQIhAPPnBGmLqtAyXIencpuUF+8KMjXXCpNT3lVVnyvQDxJgMA0GCSqGSIb3DQEB CwUAA4IBAQCHSguPDP6Mn2usQ6nULDT4gb0WuQr/K1XR7lhaM4sR5qJZj9KIBTfO 4fIcspJkfUT4PXUMorF5GNea73kEk1t0vNgzE4S5fCzQhKxut2YVRQQNRZaDIZWx jpSvrysGc2PPqKaZFQawiwMO13F8BsOTKhQybBnTRFCwxwb6cyJMih8mHUbkAfRA VOgUve55ze1cX63uLyCCTgIW7Kr82/1dtkwNJEdNEejDaFPR7lJkXYW6cvThETvG eq9qChIsTQ62bJXk3ZEIahd8ZUf0P+zvTlsvl4//VxffshKkSc5+rVVweN2Eqe/m WhX5yRS7RsEjHPf3P6ZKnz2i/434+4+w -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Kyd2lRHL8QnL+ryEmJW o7F3/HtoS5DZhK9cwZ4aeIIdlKOElXXqPLIDOhv9su5yfmMueDNdRss9YHpw88cn 28cudFAQvhH2s7VwXWrUk7ss1KuN+PkKUxba7CbovODtCPQ5nE4oyp+EfyIyP3l9 AcbWoxNlRp1qWDc/CBbFT56CGWvIPU7D6l0d2QaO4vBQNA34j8KhDk469PKQV9bZ /U/X6aODrEL1rrXiQCRgb85XV4tOHUrxWbq6w422V1W6FU0FfoCGiRZk4icPv2rW RzQAR143KkBIre3Wrc4BgTieVNT1ajpymaJygIp215jc86eT8lxX+VWihYTqK1cx vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 383298038899489638305533359295307831581959 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-02 18:27:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-01 18:27:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hollytreeproductions.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26342687857138982505739164495877737033388243839129039759172001189491296583195689687763134447009500865358273643103860590430524884851773822971831392537147824430703720583422148307123770300874066798538182512915122592615842275863586573939495508744054729262218296187513419182863651380956961974992229412654480568356179408285980628167673210827243819538930157393898612607104407406016336761424730870644016441983469735117668870374379678682703115497958516540275736824029419273912341896923500580413849713007107241695453880184711140361104358863192912110360004273710301190490442385349375978019804773672302092532453831018270363693501 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1114be12a450dd0c9e86f1463a2f85876a272441 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hollytreeproductions.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.hollytreeproductions.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf64000001659bc0e36b0000040300483046022100f402fb1d5bc15fa6ef3dd3d568f99be4857f1c5b3518970d8f9acb7a8a5d587202210080b9f4fa80a2e32a25bdabf515a92dce46aa068d7e26470756188c36ac01de28007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001659bc0e542000004030047304502202e26f93f5c9b263d2a319c66c6084533be5e6d9787cf0d29d3202125bf8f5095022100f3e704698baad0325c87a7729b9417ef0a3235d70a9353de55559f2bd00f1260 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00874a0b8f0cfe8c9f6bac43a9d42c34f881bd16b90aff2b55d1ee585a338b11e6a2598fd2880537cee1f21cb292647d44f83d750ca2b17918d79aef7904935b74bcd8331384b97c2cd084ac6eb7661545040d4596832195b18e94afaf2b067363cfa8a6991506b08b030ed7717c06c3932a14326c19d34450b0c706fa73224c8a1f261d46e401f44054e814bdee79cded5c5fadee2f20824e0216ecaafcdbfd5db64c0d24474d11e8c36853d1ee52645d85ba72f4e1113bc67aaf6a0a122c4d0eb66c95e4dd91086a177c6547f43fecef4e5b2f978fff5717dfb212a449ce7ead557078dd84a9efe65a15f9c914bb46c1231cf7f73fa64a9f3da2ff8df8fb8fb0