pointman.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:9b:84:37:20:9b:e8:e0:69:32:39:14:00:3d:d3:aa:7b:4e was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=pointman.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9b:84:37:20:9b:e8:e0:69:32:39:14:00:3d:d3:aa:7b:4eSerial Number (int): 314256369001186574412439136812591273900878
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f0:a2:05:73:ba:c5:b1:d9:0d:1d:76:10:ca:f8:ed:3e:dd:8d:1d:22
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3f:a9:03:92:87:01:af:c8:43:dd:74:85:9a:40:36:4e:a6:c3:20:e0
Fingerprint (sha256): 31:a4:9b:cd:3f:45:3d:72:32:4f:bd:a0:9f:66:90:12:7c:e6:4d:34:a4:ea:08:c6:c5:3c:d5:db:2e:73:22:5b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate pointman.ca
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pointman.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
autodiscover.pointman.ca
cpanel.pointman.ca
mail.pointman.ca
pointman.ca
pointman.webspirit.ca
webdisk.pointman.ca
webmail.pointman.ca
www.pointman.ca
www.pointman.webspirit.ca
cpanel.pointman.ca
mail.pointman.ca
pointman.ca
pointman.webspirit.ca
webdisk.pointman.ca
webmail.pointman.ca
www.pointman.ca
www.pointman.webspirit.ca
Other certificates including the domain name pointman.ca
(limited to 100 certificates)
pointman.ca
www.pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
www.pointman.ca
www.pointman.ca
www.pointman.ca
www.pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
www.pointman.ca
www.pointman.ca
www.pointman.ca
pointman.ca
pointman.ca
www.pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
www.pointman.ca
www.pointman.ca
www.pointman.ca
www.pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
pointman.ca
www.pointman.ca
www.pointman.ca
www.pointman.ca
pointman.ca
pointman.ca
Certificate
The complete raw certificate details for pointman.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGsTCCBZmgAwIBAgISA5uENyCb6OBpMjkUAD3TqntOMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA3MTYxMjE4NTRaFw0x ODEwMTQxMjE4NTRaMBYxFDASBgNVBAMTC3BvaW50bWFuLmNhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqKrl4cau97C5VlLAI1tEITQQHZEGtD0WI4g B2cAsBbLWO+w84g13aNkhP0JBKcpZwsUfiVW7RutUXQ/9r0Jtfxm86s7OkhuOgft Anq1KYcFajNRGnxkseDggrWnCvz0sCTbMTwsr3kUg77tnfFZj86P8u1PQR3sa/1C Z2ufVEFH/iRodY45LqFuO50U+QgH82x+rigeQbrwLvveEOVIQ2iMZ+tLG7/AHPLC ngaU80MeyyYumiq3aTBrTZv7qSqg6lW4A/9kooGz7EYiyQfSzOvpzjUtPur1Bq5m N4XvYLORWfSGtx9wptNmklDYPH0f7tsoCuc/UqCI+X3gw0MukwIDAQABo4IDwzCC A78wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTwogVzusWx2Q0ddhDK+O0+3Y0dIjAf BgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEw LgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcw LwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcv MIHFBgNVHREEgb0wgbqCGGF1dG9kaXNjb3Zlci5wb2ludG1hbi5jYYISY3BhbmVs LnBvaW50bWFuLmNhghBtYWlsLnBvaW50bWFuLmNhggtwb2ludG1hbi5jYYIVcG9p bnRtYW4ud2Vic3Bpcml0LmNhghN3ZWJkaXNrLnBvaW50bWFuLmNhghN3ZWJtYWls LnBvaW50bWFuLmNhgg93d3cucG9pbnRtYW4uY2GCGXd3dy5wb2ludG1hbi53ZWJz cGlyaXQuY2Ewgf4GA1UdIASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEB MIHWMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYI KwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGll ZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNl IHdpdGggdGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xl dHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5LzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA 8AB1ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABZKM+bL0AAAQD AEYwRAIgYV1fbWMX70YB6YEbYBViLpSrdkneWfkmowY0Q0soOdcCIDKSc14k+tDa 4HYLIMMZXXM8+pNg+OSsr7PZXEMgWAe4AHcAVYHUwhaQNgFK6gubVzxT8MDkOHhw JQgXL6OqHQcT0wwAAAFkoz5vagAABAMASDBGAiEAkZMgMdClOvHjzZAEu6vvLIad IyYubFOvxAMwvHRxOh0CIQDCev5FUvft7ZQFu7/x64UTreqcEiGkgOVim+R8tQxQ 5zANBgkqhkiG9w0BAQsFAAOCAQEAL2abGVVzbgTnAGE8t+pQE3ZJDX7B93lXB/tJ D2G6AtxOdQWzURNsOb83y+UNnpdKrHolpPkq0QISSJIsJC2gwUtEY9TbWGa0i6Ar IVGeKPfS9lFfxgTzjftF2kEcF3un6c54Cj/Q0/CUX2vhG3NSjFpLHGvMTTfqaJ/G o9H80kSwzFDSL1ne40tkeWYSXoAPo8uqOv4gIYKDyyz9MGXpsAoFvme63FtbftnF Ntz0fmpNjGdSAnuMzI5RBMErpjXOkIfnJydSCc0qv9oy8hHaijShvk59BsWwArOK svbnCW+8qTIvjt/hYwifCugI+MEzmbYGuyJhQO5p6G8WNKqo2w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqKrl4cau97C5VlLAI1t EITQQHZEGtD0WI4gB2cAsBbLWO+w84g13aNkhP0JBKcpZwsUfiVW7RutUXQ/9r0J tfxm86s7OkhuOgftAnq1KYcFajNRGnxkseDggrWnCvz0sCTbMTwsr3kUg77tnfFZ j86P8u1PQR3sa/1CZ2ufVEFH/iRodY45LqFuO50U+QgH82x+rigeQbrwLvveEOVI Q2iMZ+tLG7/AHPLCngaU80MeyyYumiq3aTBrTZv7qSqg6lW4A/9kooGz7EYiyQfS zOvpzjUtPur1Bq5mN4XvYLORWfSGtx9wptNmklDYPH0f7tsoCuc/UqCI+X3gw0Mu kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 314256369001186574412439136812591273900878 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-16 12:18:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-14 12:18:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pointman.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22045680769276402806394135400735170088464099085325232611603254129146780928779109832629938848265601339485411946017054530053077731264529978219730085641212074008760382332940197112710072362856704014048119011639591193823673533838253227918838799609316570100458097040015003483389854361246246329196543770469526657013517993278590193187643897125849316764737227045463075530253297011870895144317867842215771406484506805442248925032620651935056623296514652451474903122423040765306945606167962070838605272400781817913771825477021790156574443849445249297552136315431980793551028844562962602922247130326594609546906988147170460511891 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f0a20573bac5b1d90d1d7610caf8ed3edd8d1d22 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (189 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.pointman.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.pointman.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.pointman.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pointman.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pointman.webspirit.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.pointman.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.pointman.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pointman.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pointman.webspirit.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000164a33e6cbd00000403004630440220615d5f6d6317ef4601e9811b6015622e94ab7649de59f926a30634434b2839d702203292735e24fad0dae0760b20c3195d733cfa9360f8e4acafb3d95c43205807b80077005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000164a33e6f6a000004030048304602210091932031d0a53af1e3cd9004bbabef2c869d23262e6c53afc40330bc74713a1d022100c27afe4552f7eded9405bbbff1eb8513adea9c1221a480e5629be47cb50c50e7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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