heel.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:62:2c:82:ae:72:bf:4a:d9:19:7a:8f:90:34:49:a8:20:19 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=heel.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:62:2c:82:ae:72:bf:4a:d9:19:7a:8f:90:34:49:a8:20:19Serial Number (int): 294743694322169338869908729974761795887129
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9d:4e:3a:f2:dc:d7:a9:a3:56:ea:8b:53:95:82:26:c6:ff:87:75:58
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 5d:b1:59:21:99:e5:0d:1e:9e:10:58:18:93:2f:dd:c4:23:c7:93:d9
Fingerprint (sha256): 2c:5f:67:11:b6:49:3e:a4:ae:a9:bf:95:f6:7d:3d:d4:b1:ce:51:cf:0a:ed:07:ba:8f:68:6a:3a:02:8c:c5:6c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate heel.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for heel.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
heel.de
www.heel.de
www.heel.de
Other certificates including the domain name heel.de
(limited to 100 certificates)
lauf.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
Certificate
The complete raw certificate details for heel.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISA2Isgq5yv0rZGXqPkDRJqCAZMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDkwMjQ2NTRaFw0y MDA1MDkwMjQ2NTRaMBIxEDAOBgNVBAMTB2hlZWwuZGUwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQDFzMB6Vlf/iv/Fly9v5h3sLzdcZiti9dO7ITW/GZLk tUQ72/khh7V3iadHlO/zJBYFxbn6Cz4MBGZpT9mfrgG195xy0m3oxh8dZguBmj4l sq8hpPxUOT8sg/LgGSwWTQ0fU16fFMgNmVJR9vTbasmP5cisOpyDUs09u8oQfqQb px3+QdA2eQkc+uTb/4qyndGFTAu2o8BQuNPUmqNmgpU/0m6agrsIxUfqHAnq+Y/+ RBaj63HePv59UOeJY4gzCIa7JWliEGqRFEGAuC+TNt/yhLZmPmcAMIzpT7d4zxKR sjrZMvbnNwxx7kxCRt6OZzQR3pV1tBxv+0km6w3kzxGFuMp9cMOLG+4PdhceNYcn mwMcwSqZOvM73b8LfUTLLrsHTta9Qxe5viz1n7F3rpJ58TUsJjSptbh+fEnJS80+ 30QyAyUPqD9dd0q12vs3BjVzpEG6aNL4Ys/HWqwEDhSUHiZYb3wa7c9KcqyFp+2V ZqTtHopP3ZTz6bSxfZ0GEKnEpI6M2hKJexEkUSa+krdJz9vh5U9D6/dHiukoEUB6 kS+0o0wK6TtU9p9xt7dyRyYwlN4pve0qfnKl+bpVMCc1S+v4egxhf8s+v4UhhaCh 8IBJv0z0dYHNJ4Rbex3Gs4AJKwqB92dj4Tk1A8XT3rhpbUbVqTf4LpG7+dUv2D6B GwIDAQABo4ICZzCCAmMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSdTjry3Nepo1bq i1OVgibG/4d1WDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggr BgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRz ZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRz ZW5jcnlwdC5vcmcvMB8GA1UdEQQYMBaCB2hlZWwuZGWCC3d3dy5oZWVsLmRlMEwG A1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEW Gmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB8wSB 8ADuAHUAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFwKA6ocwAA BAMARjBEAiA+L44iqn88katQwZGHxqVJPEG1tZLzulOAD1OfGzpJSQIgadXTYOZ9 Mzx6sX2WD5nUYUmvTDSY4zZ5+ACRPnDDfg0AdQDnEvKwN34aYvuOyQxhhPHqezfL Vh0RJlvz4PNL8kFUbgAAAXAoDqh8AAAEAwBGMEQCHwhdEtVz04PRrTbDshQ8iyk3 amhXLSqbAs6y5yMNucsCIQCFUp++t29Oian5OCFn2c/HTe6YPyub2A8EuILli315 zjANBgkqhkiG9w0BAQsFAAOCAQEAkeBUSiRRIAhwnvLUW4vUaa7DBHJ/W8jnDfeo Yuuc3Hz0V5yOPkpxcGcgbCshNzazBF7lS2DSpMQ7P8KbPnxPwzaogUL6B91varCj SyQCXps3xKfa3B1MkYQIqDxKoCbMm+wdWqlYF0DaYXD/Pcy4alkY1K1ePEMaX68D h51+Yt+YZtLRNeCzTELOfBn6spfbtiVEUVGO3CqQZ9et/lW4dMwF1fRgkJ3DBj58 gG21lZXd8N+l32PgT4R5ucIjS6GaUvRrTP5noloFaC92tCMLAo1B1DWQc84eFYbu gOF+9I0/1nIh7Z5HTr50VtsJl9yAGKQ9gn+6+jPQwxIpjJV9Ig== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxczAelZX/4r/xZcvb+Yd 7C83XGYrYvXTuyE1vxmS5LVEO9v5IYe1d4mnR5Tv8yQWBcW5+gs+DARmaU/Zn64B tfecctJt6MYfHWYLgZo+JbKvIaT8VDk/LIPy4BksFk0NH1NenxTIDZlSUfb022rJ j+XIrDqcg1LNPbvKEH6kG6cd/kHQNnkJHPrk2/+Ksp3RhUwLtqPAULjT1JqjZoKV P9JumoK7CMVH6hwJ6vmP/kQWo+tx3j7+fVDniWOIMwiGuyVpYhBqkRRBgLgvkzbf 8oS2Zj5nADCM6U+3eM8SkbI62TL25zcMce5MQkbejmc0Ed6VdbQcb/tJJusN5M8R hbjKfXDDixvuD3YXHjWHJ5sDHMEqmTrzO92/C31Eyy67B07WvUMXub4s9Z+xd66S efE1LCY0qbW4fnxJyUvNPt9EMgMlD6g/XXdKtdr7NwY1c6RBumjS+GLPx1qsBA4U lB4mWG98Gu3PSnKshaftlWak7R6KT92U8+m0sX2dBhCpxKSOjNoSiXsRJFEmvpK3 Sc/b4eVPQ+v3R4rpKBFAepEvtKNMCuk7VPafcbe3ckcmMJTeKb3tKn5ypfm6VTAn NUvr+HoMYX/LPr+FIYWgofCASb9M9HWBzSeEW3sdxrOACSsKgfdnY+E5NQPF0964 aW1G1ak3+C6Ru/nVL9g+gRsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 294743694322169338869908729974761795887129 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-09 02:46:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-09 02:46:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'heel.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 806952829597133809541168931096901793187856851505207358230915426733713951493440399545749785408227983812226445473110026854372098871233064936249420763168139004139089613486674997392261476729167169983540285205496822115998713784664399746661893224664455776883037256787169267829540073889002324772879832533082956599294490183801539412434552762405373057217626144944338882945241389314270621747765057807880610184343362540433995966065810961284887624662417995178744023067539114500802317770486647887362060519087308744431612093740662106399697849341056949105496485999980608841913576332589425558140434514577904179062132484525131785321352547694449039647970692726093601433697913792271914038769441796595954464186296927535470110464775795263525914483264013375972772720122621899780111859829564955656377993986498567592133887420300679022580556582212973057556572351421554674995087592639567874350488728660549660277592742468291532799986900963030841896282690374143578927524669647289868326106158168821309431200235519956264627399044527138977220139733252841229933681383710791106633603526492011603513873864560132033576704815679659594102484961628132232292611635486927054057947309930129343768924041314101285375330203889534358532130538781834693379232080791263293367812379 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9d4e3af2dcd7a9a356ea8b53958226c6ff877558 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heel.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heel.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170280ea873000004030046304402203e2f8e22aa7f3c91ab50c19187c6a5493c41b5b592f3ba53800f539f1b3a4949022069d5d360e67d333c7ab17d960f99d46149af4c3498e33679f800913e70c37e0d007500e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e00000170280ea87c0000040300463044021f085d12d573d383d1ad36c3b2143c8b29376a68572d2a9b02ceb2e7230db9cb02210085529fbeb76f4e89a9f9382167d9cfc74dee983f2b9bd80f04b882e58b7d79ce . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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