css.czastka.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:af:bf:7f:72:db:bd:5b:7a:9d:b8:cd:cb:61:0c:18:29:06 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=css.czastka.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:af:bf:7f:72:db:bd:5b:7a:9d:b8:cd:cb:61:0c:18:29:06Serial Number (int): 321140816304945189565854008994881429055750
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 7a:e1:c6:55:eb:d3:41:cc:a0:bf:b4:08:d1:4c:6f:5a:07:28:65:2f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 12:41:a0:c1:f6:54:5e:7e:db:54:6c:65:d6:c0:7e:89:6e:5c:62:16
Fingerprint (sha256): 30:da:d6:a8:f8:84:0a:bb:f5:5f:91:48:40:fd:63:3f:a4:8d:e4:c1:d1:34:49:b2:b4:dd:12:8f:c4:9e:e0:b9
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate css.czastka.de
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for css.czastka.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
css.czastka.de
icon.czastka.de
images.czastka.de
js.czastka.de
icon.czastka.de
images.czastka.de
js.czastka.de
Other certificates including the domain name czastka.de
(limited to 100 certificates)
czastka.de
css.czastka.de
czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
czastka.de
czastka.de
css.czastka.de
css.czastka.de
czastka.de
czastka.de
czastka.de
czastka.de
css.czastka.de
czastka.de
czastka.de
czastka.de
czastka.de
czastka.de
czastka.de
czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
czastka.de
css.czastka.de
czastka.de
czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
czastka.de
czastka.de
czastka.de
css.czastka.de
czastka.de
czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
czastka.de
css.czastka.de
czastka.de
css.czastka.de
czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
czastka.de
czastka.de
css.czastka.de
css.czastka.de
czastka.de
czastka.de
czastka.de
czastka.de
css.czastka.de
czastka.de
czastka.de
czastka.de
czastka.de
czastka.de
czastka.de
czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
czastka.de
css.czastka.de
czastka.de
czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
czastka.de
czastka.de
czastka.de
css.czastka.de
czastka.de
czastka.de
css.czastka.de
css.czastka.de
css.czastka.de
czastka.de
css.czastka.de
czastka.de
Certificate
The complete raw certificate details for css.czastka.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGMzCCBRugAwIBAgISA6+/f3LbvVt6nbjNy2EMGCkGMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjA2MTYyMzU1MDBaFw0x NjA5MTQyMzU1MDBaMBkxFzAVBgNVBAMTDmNzcy5jemFzdGthLmRlMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwWim5tt6bdTxERIb+1CO1UVuA1Z/MnoD /Olnu1Cdae8M973If4yxBww0lqNO3lcmD+lAXVY1QI2mxXB3HJd5c3cxLLidNrrB KGQJbG/ci9iuQw2vKJ/jAMHHdeqJ2uYssmoDzY222Z7Jbo9CIk7bZ7IROIrx+p6i 273cqS2RQpnHbS7yVjIfoD6ILpbwZKofkVRLRDxoxCcf3jMg/AxMtAg2Jf4l2MLX uoBtOMumk9WnVz0LCuqf78m/02c0aGTeXwouT4hVwGapqOI8W1PhYDzU1vRRiFpd qhQJXGRVFjn5uGg0RGb6F6IJV/ZAZGJVdP3viYhaHcKyF4iN3AmsP+9jZxugc6jw m3oa4csGybKdWmtVFEAZIyuKaapeQ1XOTKGh/au/v6p5ziDSeTShsZWpn24LwaiP jgj5bmsRJ+vpYH1F9Sc5bVi25XHrpTLV1StjHTt6ceUrjEOXceQfYRoSpKbW+fbY NBwrC6IzqjVAIqK284TDF8fo4HfMBmN+qUAPWv36KfiDA28Bw+oCfvEz5ieZ1SrA dh+Ab74u4pdvn/bmXNDjijCyJA1NUuhawSu0gKKOBpZKNz4KAz66VapjuFRs/PW/ fGpYwLnH+6706AjAbaWFv4qjcA3Ibh1xAGUog7FZiMAvcNWQX6L5W9RIrLBnx+hH fyR6EfaVCiECAwEAAaOCAkIwggI+MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUeuHG VevTQcygv7QI0UxvWgcoZS8wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwcAYIKwYBBQUHAQEEZDBiMC8GCCsGAQUFBzABhiNodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wTAYDVR0RBEUwQ4IOY3NzLmN6YXN0a2EuZGWC D2ljb24uY3phc3RrYS5kZYIRaW1hZ2VzLmN6YXN0a2EuZGWCDWpzLmN6YXN0a2Eu ZGUwgf4GA1UdIASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYG CCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUH AgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9u IGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGgg dGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNy eXB0Lm9yZy9yZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsFAAOCAQEAJX6wSz/Wy6zk 659uuuX1mk5WVj70KIZyFtuZ6tSSZhre4Qg+IdsSC1KHo+MVJ2qL2Ag+bZeaLsdC HyT4o1nMbYV/Z6TABBonBGsft6NV7ihcP49wiGKvm+AEdZmlTSMVEuJ1kgIhOeB2 axRB9L5Obt+qPnU1rWeO4Q3HsxmR5bokcwkFFHBY7Fwfq4TFrDrkQboITSsVLq+c ifG2gP9JcZ4Pa1qnHbJrucetedwiq74mxkzg1V+4EDJMsBTZlmWfudz3sRtysD0s iAskyaHUS6vrQB+flasv+KCeuQ47DgIigaFR+ur4RdQucP7RZOIIZ39hrFfoq13Y gGAgaZVwnQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwWim5tt6bdTxERIb+1CO 1UVuA1Z/MnoD/Olnu1Cdae8M973If4yxBww0lqNO3lcmD+lAXVY1QI2mxXB3HJd5 c3cxLLidNrrBKGQJbG/ci9iuQw2vKJ/jAMHHdeqJ2uYssmoDzY222Z7Jbo9CIk7b Z7IROIrx+p6i273cqS2RQpnHbS7yVjIfoD6ILpbwZKofkVRLRDxoxCcf3jMg/AxM tAg2Jf4l2MLXuoBtOMumk9WnVz0LCuqf78m/02c0aGTeXwouT4hVwGapqOI8W1Ph YDzU1vRRiFpdqhQJXGRVFjn5uGg0RGb6F6IJV/ZAZGJVdP3viYhaHcKyF4iN3Ams P+9jZxugc6jwm3oa4csGybKdWmtVFEAZIyuKaapeQ1XOTKGh/au/v6p5ziDSeTSh sZWpn24LwaiPjgj5bmsRJ+vpYH1F9Sc5bVi25XHrpTLV1StjHTt6ceUrjEOXceQf YRoSpKbW+fbYNBwrC6IzqjVAIqK284TDF8fo4HfMBmN+qUAPWv36KfiDA28Bw+oC fvEz5ieZ1SrAdh+Ab74u4pdvn/bmXNDjijCyJA1NUuhawSu0gKKOBpZKNz4KAz66 VapjuFRs/PW/fGpYwLnH+6706AjAbaWFv4qjcA3Ibh1xAGUog7FZiMAvcNWQX6L5 W9RIrLBnx+hHfyR6EfaVCiECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 321140816304945189565854008994881429055750 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-06-16 23:55:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-14 23:55:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'css.czastka.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 789039050238206938990339883925835857396148408031149346755645669200553685947863544912849571754340624463131215811790642964411013135828442793635930109902732017343948213411510763183595640199108781290968304389553255668311420824240164862871466577970498164300795362189533276445822513455202795106117935679360179281240799669240203521111849894998258563146416414875438913057284295589616046449254971124446918329624067032569178401104700672881300959374161837971333589772883637114769788573953246630687688499464078066030945884636573594386934232943525335443614585587739730869994387385698414650253982290965491871619971539785279911358801488980595354143531210555046271976905471537652207607868315258593446388550468564603276746643213219594320784870596308710932205618438496168881026001985535470747818550345589503884020626877279989687111039982895030888047047897014174173219158975674377717749852299417468558562357775755806028575463588448287950848324421599546977157829938906480833846409514305105448935649853983004215075423924072402632190959264388734763916518511693722293135578725113055324530933240096584049133665306621275024663023604167454835096819813006749209234160628728853082521397276591413010379123163249550571534878113847435454818789423111733336291478049 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7ae1c655ebd341cca0bfb408d14c6f5a0728652f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'css.czastka.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'icon.czastka.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.czastka.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'js.czastka.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00257eb04b3fd6cbace4eb9f6ebae5f59a4e56563ef428867216db99ead492661adee1083e21db120b5287a3e315276a8bd8083e6d979a2ec7421f24f8a359cc6d857f67a4c0041a27046b1fb7a355ee285c3f8f708862af9be0047599a54d231512e27592022139e0766b1441f4be4e6edfaa3e7535ad678ee10dc7b31991e5ba24730905147058ec5c1fab84c5ac3ae441ba084d2b152eaf9c89f1b680ff49719e0f6b5aa71db26bb9c7ad79dc22abbe26c64ce0d55fb810324cb014d996659fb9dcf7b11b72b03d2c880b24c9a1d44babeb401f9f95ab2ff8a09eb90e3b0e022281a151faeaf845d42e70fed164e208677f61ac57e8ab5dd88060206995709d