thingscon.nl
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:05:dd:45:3b:ee:92:f8:b3:84:0e:0d:68:10:07:bd:2f:38 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=thingscon.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:05:dd:45:3b:ee:92:f8:b3:84:0e:0d:68:10:07:bd:2f:38Serial Number (int): 263332388501001092334826912908851371913016
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 77:25:e6:e0:17:4f:30:30:75:98:b2:37:aa:2a:05:04:33:95:fa:74
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 65:27:f5:15:7d:88:7c:47:fe:fb:54:25:d4:3b:63:4f:7a:ae:37:05
Fingerprint (sha256): 31:ce:8f:ed:d9:71:e9:39:7b:1b:64:e7:28:6a:ba:1e:ee:03:82:21:fe:45:41:6c:ca:39:05:20:64:c0:cd:37
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate thingscon.nl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for thingscon.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
thingscon.nl
www.thingscon.nl
www.thingscon.nl
Other certificates including the domain name thingscon.nl
(limited to 100 certificates)
thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
Certificate
The complete raw certificate details for thingscon.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISAwXdRTvukvizhA4NaBAHvS84MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTEyMjEzNDNaFw0y MDA1MTEyMjEzNDNaMBcxFTATBgNVBAMTDHRoaW5nc2Nvbi5ubDCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALyNSMIFH3Ldrk799x42HhPKdeG3FcchaZpw RTg/Dwr67PNhobkSNKqWeeGnuAxLZ3rSDZt8WQOpubtMgOt58ISohWI5ZbPw+AHF fStRbThWJD+LyUeej2rFkPw0KxkJ0vR1tzStMVLbwvHohBv7HhtY8ZRew6EqADfY Ts45ZMsMTmxzrkQffd9K8t0phYOyF5DIwvbHhyPJ++hDfhGdwvj2spOpIgM6VYU/ U4ENOb3txKPR7Xgmh/q9qO4dhhtN+bBPA2yqbO5F7AHOVQaueL1wsJUFUNEWaO3O CAX0hlsaEZJzytEfAzmSKALQCLBEH/5kRdGcD0V9UxcX5REThHGoMN7Ec3KmcdLm isJEMdGD7K5q/TgjytsqILYnC9jkeHU6KkvaCfr+Zcs539NDbKbGu5EvqyaTEux7 Nw6mvYL1VUxwMyNza4WwbY1ALSR/YMqmNkpkWP/yL5rwQyxrfzS7Vy5pTUUD9LLv R22uHSHt5iH/1jDsGHAdPsRoSQbxRRa7jmVjGOkpsRiM7KpWtiqPW7jNy9Nz+6hO DSg3Cy9mHz1PaVVGt+lD8uuWN+MCCg5SAXOEEd5BF2xnqpleWhFRzpGCc0918OsP XC6gicRTGvIhPRALEOiFFStWd/RVN4hlNcitmydiKtaIwQZb3l1LVMofJlNUK9XT cHEdd2vTAgMBAAGjggJyMIICbjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHcl5uAX TzAwdZiyN6oqBQQzlfp0MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wKQYDVR0RBCIwIIIMdGhpbmdzY29uLm5sghB3d3cu dGhpbmdzY29uLm5sMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYK KwYBBAHWeQIEAgSB9ASB8QDvAHYAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1 loFxRVgAAAFwNoekHwAABAMARzBFAiEAh6MychQkDB1MACw/eS1HNA9FG92UKfvW +6z2FrmwMxsCIF6idJ6kciojYAgIPM2H01Bumh6eCZ7q7F5aivjrPrKiAHUAB7dc G+V9aP/xsMYdIxXHuuZXfFeUt2ruvGE6GmnTohwAAAFwNoekbAAABAMARjBEAiBR 9auzPsw2cSHyBYGuNM/mp+T1i8miU6AowAaylkXMCwIgfzwqFRP71+rExR9pWjoC zTdZQ8OQq53aSUCgleN52KAwDQYJKoZIhvcNAQELBQADggEBAEV14r0K7vsVPc78 IDbUeKPCX5bgkosFhHkIAqUpr0taxDGUldFv7mdkS/8l76YVJrLY4xkz6CS/B5mV HRcU/HVScZOAa+jdlX+joMQdstFSGrz+06JLI1cg98mGFNOpTtWS1Gek5GXjQONM RaVTTWYL29LPnD29/BSQMX3NieBrocpnbA5IezFEWO/Vv+sdNijYtBvDuztt0Zmg IaHwP14kUCRi0+rR46AMf04rWxtsqU+EyR5xIqnmZH058lJHNAe9hTC03qTPNfkr GM6d1N4hT3QKo4TZoZmLWkee3ghyY6PXlXrYAzt0cpz6oeFx7pBRph1LA1otNFWa uAWakvA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvI1IwgUfct2uTv33HjYe E8p14bcVxyFpmnBFOD8PCvrs82GhuRI0qpZ54ae4DEtnetINm3xZA6m5u0yA63nw hKiFYjlls/D4AcV9K1FtOFYkP4vJR56PasWQ/DQrGQnS9HW3NK0xUtvC8eiEG/se G1jxlF7DoSoAN9hOzjlkywxObHOuRB9930ry3SmFg7IXkMjC9seHI8n76EN+EZ3C +Payk6kiAzpVhT9TgQ05ve3Eo9HteCaH+r2o7h2GG035sE8DbKps7kXsAc5VBq54 vXCwlQVQ0RZo7c4IBfSGWxoRknPK0R8DOZIoAtAIsEQf/mRF0ZwPRX1TFxflEROE cagw3sRzcqZx0uaKwkQx0YPsrmr9OCPK2yogticL2OR4dToqS9oJ+v5lyznf00Ns psa7kS+rJpMS7Hs3Dqa9gvVVTHAzI3NrhbBtjUAtJH9gyqY2SmRY//IvmvBDLGt/ NLtXLmlNRQP0su9Hba4dIe3mIf/WMOwYcB0+xGhJBvFFFruOZWMY6SmxGIzsqla2 Ko9buM3L03P7qE4NKDcLL2YfPU9pVUa36UPy65Y34wIKDlIBc4QR3kEXbGeqmV5a EVHOkYJzT3Xw6w9cLqCJxFMa8iE9EAsQ6IUVK1Z39FU3iGU1yK2bJ2Iq1ojBBlve XUtUyh8mU1Qr1dNwcR13a9MCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 263332388501001092334826912908851371913016 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-11 22:13:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-11 22:13:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thingscon.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 769224605456978232996197841296095891040469677274134752926283190669608179730563996557406119039007031132566225828626604376423546448488049039653128371486085368531057230958684237937520140844268956984129312684539424734417070592465615930346623507458108666932759176016706742400739147227373983062800003350962026237853992048284991053189660407911810778269222157735126187941258668473105098425615199891683066035656670933464495150059342860490514976695498268044375506006299777458314174292818344235825346062477981388618474821435895267877856639557331301514972622399949283743789402683290412175460252723271391467713753649674353301272937939989480177936373971504327683629872206516592583069386732468853189828061519304093467025393808051079851193883195167657787132432575697626317399326514341017008734069670030156960858613443299513858319786292721584104503642666250718543125177531177658911972245390414865309772537409909250486622321617976443537128984466821426445553993055456187582423866581680509920461477407508361078257213097802535021268648902260865965728995884357410215964758241995028619724384765052588143228135496166833830033628302667390185333035649291413972127587137847961911510987197777664385477027783473503852697297267026542334421630470475009097760992211 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7725e6e0174f30307598b237aa2a05043395fa74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thingscon.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thingscon.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a112128418759681714558000001703687a41f000004030047304502210087a3327214240c1d4c002c3f792d47340f451bdd9429fbd6fbacf616b9b0331b02205ea2749ea4722a236008083ccd87d3506e9a1e9e099eeaec5e5a8af8eb3eb2a200750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001703687a46c0000040300463044022051f5abb33ecc367121f20581ae34cfe6a7e4f58bc9a253a028c006b29645cc0b02207f3c2a1513fbd7eac4c51f695a3a02cd375943c390ab9dda4940a095e379d8a0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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