heel.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:75:9f:1c:62:fa:ce:70:d6:3a:1a:77:22:02:ba:e0:45:36 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=heel.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:75:9f:1c:62:fa:ce:70:d6:3a:1a:77:22:02:ba:e0:45:36Serial Number (int): 301361389368219452873854857142179710649654
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: bc:52:f0:42:64:8d:04:5f:9d:bd:32:1a:66:7b:ca:e3:b1:d8:39:4c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0d:ae:26:23:5a:af:bb:44:f4:5a:b0:a6:90:f3:6a:fa:c0:f1:b7:c1
Fingerprint (sha256): 2e:73:e9:00:65:a0:79:7c:17:d7:b4:4d:d5:6f:86:17:25:a4:f1:34:ea:75:26:02:44:9c:91:27:ac:c8:5c:fd
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate heel.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for heel.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
heel.de
www.heel.de
www.heel.de
Other certificates including the domain name heel.de
(limited to 100 certificates)
lauf.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
Certificate
The complete raw certificate details for heel.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISA3WfHGL6znDWOhp3IgK64EU2MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MDQwMTQ2MTBaFw0x OTExMDIwMTQ2MTBaMBIxEDAOBgNVBAMTB2hlZWwuZGUwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQDVMwxbmqpPwqcKgaIgyrOqm9bqA83tYHD+a5c4aHGa Bx3DRXJP1wUXwPZ3HMfW+EXbeXXLXDi1SwqjrE9rLT9TxYG36+q4RLQUbunJaIYA /ME87ivjAZ365JAdG3i5RfzhphLD6tsWooEnjUSFY8nOg9wv5RzjHaA62lhY8f5I 7Umsj4t+5swO7qDtxsgxz0zAAoddz6MUHjhtvCi7IRLDMZB9mmKTx/pFHue5Ebdy al2CD/xXszKoO8wrN7JaFqQWbH6gBYuPNm3DxQ3lFicTD9bTmVsUb6IfQo0OZeeu zMDbxRbPOPfl3iL8G4rDreyLNTaZ9nDnS+GSn9R5hmxJGPTL5H3sru/4WCRa6DBM NQ+FHBDaApk6roKTYHzTwhIxxKLMnaJrtKolWUc8tTe1onXJAiL9VzipJZXYyf7i noDzLB964QxAUbdcrhQ/1LoiAK1E5JMwzb6wEtRpW9MsFFLVC2eluHyv07aoxTD1 sPxsh0hjjAHJtpCtHkGbFqjUwbobUP2vV3CFvZOpDrwh1TO0ketB1K3BWqPD0/CL buNNbD4g82CrXPg4ORzafFNXjQjsPuXhcCGrd1debXbizaNELn9ja3VYwmCEx+am b8XpsUdkN1r8G0S+9+t22ZAVdQS9RKic699iS4M/O7Og6ouzJrmzBI5+AABhtA+h LwIDAQABo4ICZzCCAmMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS8UvBCZI0EX529 Mhpme8rjsdg5TDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggr BgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRz ZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRz ZW5jcnlwdC5vcmcvMB8GA1UdEQQYMBaCB2hlZWwuZGWCC3d3dy5oZWVsLmRlMEwG A1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEW Gmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB8wSB 8ADuAHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFsWoUhsAAA BAMARjBEAiBWZEY9TabCYChqvETYpzN4G6Y2/d3jVXq2U9tKbvUjBAIgGAvmD8nY qyDHQ6G+0G+ecNwLZupXgfK0aRrdsvel7jgAdQBj8tvN6DvMLM8LcoQnV2szpI1h d4+9daY4scdoVEvYjQAAAWxahSHJAAAEAwBGMEQCIH1l6dgtpig4bcmzjpE7zkFe V3NjrC9oo0n/3tI4NdsxAiB5FLwp7j9HeiUfGF+QS/E8x9qZAJBfzg6tVfqCfRsU 9jANBgkqhkiG9w0BAQsFAAOCAQEAMUJJ79Tf3WkrLDGxn1rljyDdwtePJmU9Tu/3 KvxgWpNcioA+v69AknfR1y3b2TDPHW73X/cjTF64YYr9QC4YwQ7rAcu3Ux8TvZPn dLlKMh1eZdO4Qz27B8TQRPKZfLED3lbT85dlkUke7ANKGxBpBiSuqvNVy0KGReKv 4KgO3/fQhXGcdiUKyUkotx+bP66u8E8cAq/JoykV8clXPAY9kqqdvnGXjbdF6sn7 oCIPgR4e9SqlFjXcHk892YCU5Up0vPAg3Go6jI/aiaEg/DNYo2yG8qHV24MHIIB8 Do8y0PHlBoYxrZQ8DFw87efgzSoOE7lMTYrc1UhsAc9vgNGg1Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1TMMW5qqT8KnCoGiIMqz qpvW6gPN7WBw/muXOGhxmgcdw0VyT9cFF8D2dxzH1vhF23l1y1w4tUsKo6xPay0/ U8WBt+vquES0FG7pyWiGAPzBPO4r4wGd+uSQHRt4uUX84aYSw+rbFqKBJ41EhWPJ zoPcL+Uc4x2gOtpYWPH+SO1JrI+LfubMDu6g7cbIMc9MwAKHXc+jFB44bbwouyES wzGQfZpik8f6RR7nuRG3cmpdgg/8V7MyqDvMKzeyWhakFmx+oAWLjzZtw8UN5RYn Ew/W05lbFG+iH0KNDmXnrszA28UWzzj35d4i/BuKw63sizU2mfZw50vhkp/UeYZs SRj0y+R97K7v+FgkWugwTDUPhRwQ2gKZOq6Ck2B808ISMcSizJ2ia7SqJVlHPLU3 taJ1yQIi/Vc4qSWV2Mn+4p6A8ywfeuEMQFG3XK4UP9S6IgCtROSTMM2+sBLUaVvT LBRS1Qtnpbh8r9O2qMUw9bD8bIdIY4wBybaQrR5Bmxao1MG6G1D9r1dwhb2TqQ68 IdUztJHrQdStwVqjw9Pwi27jTWw+IPNgq1z4ODkc2nxTV40I7D7l4XAhq3dXXm12 4s2jRC5/Y2t1WMJghMfmpm/F6bFHZDda/BtEvvfrdtmQFXUEvUSonOvfYkuDPzuz oOqLsya5swSOfgAAYbQPoS8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 301361389368219452873854857142179710649654 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-04 01:46:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-02 01:46:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'heel.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 869777697360095582591525872860364264783522409575283385358285834574100320975052966378587095197473943465095120619906434154748833261373521301132554444209253820416794032610795515623388645103537409868104309140387883349315124400794440471563226552250901598397128367798269637741621088404827503529592813355036710280673419232497952483602209690637640185775800993102370156277166046723997624634046124107303681569605393604153146153072671160983231522332903797152541674922165418148347328068330386755477109099465873618651152434812322562952450751165635500562442248739106677628238143844108123260977769773265621641561081810842764110010173432032568255854235205470510630689355006211379803204975017041781429213028974098973145512675085721171701813347175470692545111024326872840930141273847134641870772153887292947006986244749697281840846171708376749109541518403104829424147549541668746942768885776762860623209257523142698293694885771065990075125964729570573731686081572628366417305220741464463226630521585763809380872552212877131174315722564256301920975255627084700204378987137718044555837536434615243033586188071514253442640780236666169750183467070838295955356621468676556840069063192237067263079946346620386658396713645122113452254126998174642398066352431 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bc52f042648d045f9dbd321a667bcae3b1d8394c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heel.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heel.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016c5a8521b0000004030046304402205664463d4da6c260286abc44d8a733781ba636fddde3557ab653db4a6ef523040220180be60fc9d8ab20c743a1bed06f9e70dc0b66ea5781f2b4691addb2f7a5ee3800750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c5a8521c9000004030046304402207d65e9d82da628386dc9b38e913bce415e577363ac2f68a349ffded23835db3102207914bc29ee3f477a251f185f904bf13cc7da9900905fce0ead55fa827d1b14f6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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