kuba.life

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:0e:4f:b7:db:9d:54:f4:ae:68:1a:46:1f:26:8e:0f:ce:2d was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=kuba.life

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:0e:4f:b7:db:9d:54:f4:ae:68:1a:46:1f:26:8e:0f:ce:2d
Serial Number (int): 266206774588478815912566790290086946655789
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: df:cf:a8:34:dc:32:27:36:d4:e8:69:7b:01:fd:2b:54:bd:be:4f:36
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 4b:4a:38:f0:7e:c2:06:c2:d7:3b:44:2d:8f:da:b0:1a:76:7c:52:d1
Fingerprint (sha256): 32:98:8c:10:80:6c:9d:a5:ad:2d:a9:83:17:b1:d2:f7:85:7d:07:64:69:64:5b:9a:45:52:e0:12:b9:31:0b:5c

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate kuba.life

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for kuba.life

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

kuba.life
www.kuba.life

Other certificates including the domain name kuba.life

(limited to 100 certificates)
kuba.life
kuba.life
kuba.life
kuba.life
kuba.life
kuba.life
kuba.life
kuba.life
kuba.life
kuba.life
kuba.life
kuba.life
kuba.life
kuba.life

Certificate

The complete raw certificate details for kuba.life in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIHDTCCBfWgAwIBAgISAw5Pt9udVPSuaBpGHyaOD84tMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA5MDkyMTM5MTNaFw0x
ODEyMDgyMTM5MTNaMBQxEjAQBgNVBAMTCWt1YmEubGlmZTCCAiIwDQYJKoZIhvcN
AQEBBQADggIPADCCAgoCggIBAMTyc1iTBzch8nfuO8lAkOcQvvrDXR5rE8M7aAst
uO5K2rD/XzMxFD72V8jzWf9CCcL8dK3GltjNTWdgYYmTZEnDsquwPsk+7OYSEyqD
hfic9Vxc/h7ftNQtinReeOTD28E2yJ22CY+ht9ZMmmHNncjqPJaZ5ydCFwyQHp8w
xDtQbJ03QYmEnMIWWJKbdxQxrikbI22hgjRf/rh+aEKypZrpPy1imlkM4gwq4Lkj
aQkHbSzuIXvPZYB91o/mSXZ/VbMarN30qg3AbwayyIq1+Wh8ygiiS1+R75GeF6iC
Z7TjWLsl4tajsO6bgtfGzPbtk5WBhgyBHqa6yhCPaDUsWoBBQazYJUp9zJXTSWij
M/xzKlA/tTwY7+LW0KwTQoluaezx2MdsFWxMeUjw24I6RNhRDa25Wq7iZWlTBvHz
3b7/IKzsONsQ06nwOyiQJEmn7SulEkyj1Pg5mwI8NJYPfLsx7Xgg+qctR8X+P37h
4UMCE2LBV/BNSQ+Wc7rRc2W6boUK4tE5aKwnSlYX5prp8XaisussCKgjnD7oCIoI
tTj8i8DJqlROcU898eHp6onyp4V/OezPEVNga0CpLntvXXXhPm1eguD7aM1J9+0/
K6pkPJxj+H54Ti4ZXZcoK5+UlBOaGlbZzZyElpYo3ydH5+KIt4ROfBbwI4C0nYzO
msgtAgMBAAGjggMhMIIDHTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB
BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFN/PqDTcMic2
1OhpewH9K1S9vk82MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G
CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl
dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl
dHNlbmNyeXB0Lm9yZy8wIwYDVR0RBBwwGoIJa3ViYS5saWZlgg13d3cua3ViYS5s
aWZlMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAm
BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUF
BwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBv
biBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRo
IHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5j
cnlwdC5vcmcvcmVwb3NpdG9yeS8wggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwDb
dK/uyynssf7KPnFtLOW5qrs294Rxg8ddnU83th+/ZAAAAWXAfSqnAAAEAwBIMEYC
IQDr1DikFKg5WMiwaAGOGmpeLwdrhOs8xwc65Vrmaas3UwIhAKs27fgTiCxT+gCv
p8YY2uWTsDEcyCRxxMI1bKFlzSBuAHYApFASaQVaFVReYhGrN7wQP2KuVXakXksX
FEU+GyIQaiUAAAFlwH0qtAAABAMARzBFAiBsW5jbCBidCM7VW6DrNUZ/JKZzMJ8S
/zD88YfCJxL/BwIhANizOclBcYZrveCNmePFMm0IX/stpA3wThTt7ChnrbUfMA0G
CSqGSIb3DQEBCwUAA4IBAQBBtATIgeVe/gyiEErTctPf+k6wwHVAsrfxe70ruyok
D0OAp5IQ/XPhgzx6zQG6kPbv9CYwpdMJRdS2p6myI9R+QLRO1GUpeeDKMWoN7H/d
ZOr6sEBd0vzKeCTwoeO5mriKdb/l2wWg4M8V8ur2cR+Fa5k9QY5wn7brpAFkgpEA
aSaheBu8FkO9/6srN8bAuBAos133uqGmbheQBO+ZlidYoRQLy0as+SbxHuaU0pFa
XF4R2ynKdvnA1HtoKtpphvyPDyaR+8WdGbs4j7apq6goNIPsJGdRfSRDYOwRlkXT
4zxmv/lHA9dknBqaelvtpJDhlyI2aeYLs63UAZt0ema/
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxPJzWJMHNyHyd+47yUCQ
5xC++sNdHmsTwztoCy247krasP9fMzEUPvZXyPNZ/0IJwvx0rcaW2M1NZ2BhiZNk
ScOyq7A+yT7s5hITKoOF+Jz1XFz+Ht+01C2KdF545MPbwTbInbYJj6G31kyaYc2d
yOo8lpnnJ0IXDJAenzDEO1BsnTdBiYScwhZYkpt3FDGuKRsjbaGCNF/+uH5oQrKl
muk/LWKaWQziDCrguSNpCQdtLO4he89lgH3Wj+ZJdn9Vsxqs3fSqDcBvBrLIirX5
aHzKCKJLX5HvkZ4XqIJntONYuyXi1qOw7puC18bM9u2TlYGGDIEeprrKEI9oNSxa
gEFBrNglSn3MldNJaKMz/HMqUD+1PBjv4tbQrBNCiW5p7PHYx2wVbEx5SPDbgjpE
2FENrblaruJlaVMG8fPdvv8grOw42xDTqfA7KJAkSaftK6USTKPU+DmbAjw0lg98
uzHteCD6py1Hxf4/fuHhQwITYsFX8E1JD5ZzutFzZbpuhQri0TlorCdKVhfmmunx
dqKy6ywIqCOcPugIigi1OPyLwMmqVE5xTz3x4enqifKnhX857M8RU2BrQKkue29d
deE+bV6C4PtozUn37T8rqmQ8nGP4fnhOLhldlygrn5SUE5oaVtnNnISWlijfJ0fn
4oi3hE58FvAjgLSdjM6ayC0CAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 266206774588478815912566790290086946655789
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-09 21:39:13 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-08 21:39:13 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kuba.life'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 803473956202489643331889099277264034665128848493634549196929413219564900527383460786008309353089294806025978124948791037354583544272629806336701022545134403951301869001016108733551286773742210250157654572680342063666761525496817934831413940626384629693168547402517429429637556581894968761000095418776467639833286335613242289173825246738052324189810891535091070085630733858892666532133579113777410974873381169823467233235042603618038418131167117318480903628725500723523018543297857266657120804292955239466044654689547734440100600298849021968839573267739933437748759874587396594465668328348575352943698467944615585576573587532907414272668403298692464134828304405273595293450438937370645952743417812647501133886927827069447739845241646167346395110659814117875780107918739738739269044408887865938278428913262725363099581698456669707624049283859794314447850559706465568013220168538896331107003434252390916329320689081374543788949244714476555961469577527307566322886987064213930329384531261381614479926384072708155214391617123180956808849331437712422422611549928449436885972646498607039132268688719527227832773716732487802379637415086190289232640578480255831756767288162131846273325656866680622840498221631958259625671506213860488299333677
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							dfcfa834dc322736d4e8697b01fd2b54bdbe4f36
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kuba.life'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kuba.life'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf6400000165c07d2aa70000040300483046022100ebd438a414a83958c8b068018e1a6a5e2f076b84eb3cc7073ae55ae669ab3753022100ab36edf813882c53fa00afa7c618dae593b0311cc82471c4c2356ca165cd206e007600a4501269055a15545e6211ab37bc103f62ae5576a45e4b1714453e1b22106a2500000165c07d2ab4000004030047304502206c5b98db08189d08ced55ba0eb35467f24a673309f12ff30fcf187c22712ff07022100d8b339c94171866bbde08d99e3c5326d085ffb2da40df04e14edec2867adb51f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0041b404c881e55efe0ca2104ad372d3dffa4eb0c07540b2b7f17bbd2bbb2a240f4380a79210fd73e1833c7acd01ba90f6eff42630a5d30945d4b6a7a9b223d47e40b44ed4652979e0ca316a0dec7fdd64eafab0405dd2fcca7824f0a1e3b99ab88a75bfe5db05a0e0cf15f2eaf6711f856b993d418e709fb6eba401648291006926a1781bbc1643bdffab2b37c6c0b81028b35df7baa1a66e179004ef99962758a1140bcb46acf926f11ee694d2915a5c5e11db29ca76f9c0d47b682ada6986fc8f0f2691fbc59d19bb388fb6a9aba8283483ec2467517d244360ec119645d3e33c66bff94703d7649c1a9a7a5beda490e197223669e60bb3add4019b747a66bf