*.aegon.sk
- AEGON Životná poisťovňa a.s. -
Issued by thawte SHA256 SSL CA
About this certificate
This digital certificate with serial number 60:d4:5d:33:dc:71:29:b2:ba:54:c4:a8:b9:ca:77:3f was issued on by thawte, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
AEGON Životná poisťovňa a.s.
Organization:
AEGON Životná poisťovňa a.s.
Organization unit: IT Department
Organization unit: IT Department
State / Province:
Bratislava
Locality: Bratislava
Country: SK
Locality: Bratislava
Country: SK
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 60:d4:5d:33:dc:71:29:b2:ba:54:c4:a8:b9:ca:77:3fSerial Number (int): 128708544902314242781129770983815280447
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 2b:9a:35:ae:01:18:38:30:e1:70:7a:05:e0:11:76:a3:ce:bd:90:14
Fingerprint (sha1): e9:3b:01:a3:92:cb:45:ce:4b:cc:01:8a:b0:63:80:b9:6a:ca:7c:ba
Fingerprint (sha256): 34:41:67:48:06:3d:7b:80:6a:ec:93:da:34:ee:9d:d9:d3:bd:5d:8e:74:85:8a:38:7a:aa:12:42:17:c0:52:86
Issuing Certificate URL: http://tg.symcb.com/tg.crt
Revocation information
OCSP Server: http://tg.symcd.comCRL Distribution Point: http://tg.symcb.com/tg.crl
Check the revocation status for certificate *.aegon.sk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.aegon.sk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.aegon.sk
aegon.sk
aegon.sk
Other certificates including the domain name aegon.sk
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.aegon.sk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGzzCCBbegAwIBAgIQYNRdM9xxKbK6VMSoucp3PzANBgkqhkiG9w0BAQsFADBD MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMR0wGwYDVQQDExR0 aGF3dGUgU0hBMjU2IFNTTCBDQTAeFw0xNzA0MTgwMDAwMDBaFw0yMDA2MTYyMzU5 NTlaMIGPMQswCQYDVQQGEwJTSzETMBEGA1UECAwKQnJhdGlzbGF2YTETMBEGA1UE BwwKQnJhdGlzbGF2YTEpMCcGA1UECgwgQUVHT04gxb1pdm90bsOhIHBvaXPFpW92 xYhhIGEucy4xFjAUBgNVBAsMDUlUIERlcGFydG1lbnQxEzARBgNVBAMMCiouYWVn b24uc2swggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIpI+STSxIKmxS vfqKAwX+bA1sdedx5YTR7UVxoBg78ylXZ27xO4lAXQZ7cIXxwiYW8AaXCN4F2KuK XuUpPJLa6qZ7QPy+SCNvaxwFQF6l/gG1EybyHllLEfTS41vUzMtacJokEEtSRLJj t6SXszjS20FRi3xFIp2qeyT8JbiNVLnimpQXVOW2OeJBc5bEYhum1IOooxcMSfWb eNcqg7lvPgqnQx9TITxrSQJp9zjXCXBUKe4qmUexdcyEaeThLtSHMQM11UM8AWej FJqaESOVfLHqqJRl6oO5vl3ZcgI1L1cp9QqWm4Tg6ZIx2bzVUHbalVVjyBIYpD+D FVGjs2+DAgMBAAGjggNwMIIDbDAfBgNVHREEGDAWggoqLmFlZ29uLnNrgghhZWdv bi5zazAJBgNVHRMEAjAAMG4GA1UdIARnMGUwYwYGZ4EMAQICMFkwJgYIKwYBBQUH AgEWGmh0dHBzOi8vd3d3LnRoYXd0ZS5jb20vY3BzMC8GCCsGAQUFBwICMCMMIWh0 dHBzOi8vd3d3LnRoYXd0ZS5jb20vcmVwb3NpdG9yeTAOBgNVHQ8BAf8EBAMCBaAw HwYDVR0jBBgwFoAUK5o1rgEYODDhcHoF4BF2o869kBQwKwYDVR0fBCQwIjAgoB6g HIYaaHR0cDovL3RnLnN5bWNiLmNvbS90Zy5jcmwwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDov L3RnLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL3RnLnN5bWNiLmNvbS90 Zy5jcnQwggH2BgorBgEEAdZ5AgQCBIIB5gSCAeIB4AB2AN3rHSt6DU+mIIuBrYFo cH4ujp0B1VyIjT0RxM227L7MAAABW3+ld6AAAAQDAEcwRQIhALl4bcjFhPx8JULr UjA16bHFpHFHYgWMhFJGjEnOF4YAAiBEon/o/xDj6abnXzlWZTcioIz3pE1sRAn3 CLqVyt4oKAB2AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABW3+l d94AAAQDAEcwRQIgagTrwVi3KrOBF8GVOW1KdAE9hUtfTLf7yVkxzaCzs3ACIQDc NAqHRyNhLyeCoxuuywh6ngjrVbLnSEaysdGfpwijUQB2AO5Lvbd1zmC64UJpH6vh nmajD35fsHLYgwDEe4l6qP3LAAABW3+leaAAAAQDAEcwRQIgZIqkjBVCy9+fy5Tx XGhnmb/wq9ImcCc5GadJibrEXqYCIQDN7X7eIIfqTItqoUb2HnOxfXYDq1OwJdZW bxC+qVMLpgB2ALx44d/F9jxoRkkzTaEPoV8JeWkgCcCBtPP2kX8+2bilAAABW3+l eKEAAAQDAEcwRQIgVKx1iP9Cbs8WNAuueCLlw+4GLp+5qyoeRpAK4aAX9msCIQCq XOAlDjOzYoQa9/RL3OlRAw8YPdGl7IDYV2mCD//ImzANBgkqhkiG9w0BAQsFAAOC AQEAEyHBnKKly84EiOJYvArwXVFN2d4wW9Aw032ecZaKtu7cVaKzjEHUTjX7MRQr rMp35xGBME5QDK3Kx3Yq8oA3+Pdfz9ULrb+MAHr0R20qU/PWX8k2NHamsHGaAI5g RvbJTbX8WthWJTao4OSK0Wj4HZMb/qIeFvDTK+6kK6n3Jy5QKzzXRzYO+KhmvTkl VA6ipLbC5NMgKQR8UHtuWarjWLFMR/B5ZbdN6yc0iqG9oHe0tnULjS+7AknaMZNE WICJaC3CmMHKK/AePep2i0pQXHIgUk6+gcUhjN6E1Tsbj6IKHnvNuu5dCSnF6ZJ0 45Dka+4Reo3G3WUNQG1xgHgxjg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiKSPkk0sSCpsUr36igMF /mwNbHXnceWE0e1FcaAYO/MpV2du8TuJQF0Ge3CF8cImFvAGlwjeBdiril7lKTyS 2uqme0D8vkgjb2scBUBepf4BtRMm8h5ZSxH00uNb1MzLWnCaJBBLUkSyY7ekl7M4 0ttBUYt8RSKdqnsk/CW4jVS54pqUF1TltjniQXOWxGIbptSDqKMXDEn1m3jXKoO5 bz4Kp0MfUyE8a0kCafc41wlwVCnuKplHsXXMhGnk4S7UhzEDNdVDPAFnoxSamhEj lXyx6qiUZeqDub5d2XICNS9XKfUKlpuE4OmSMdm81VB22pVVY8gSGKQ/gxVRo7Nv gwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 128708544902314242781129770983815280447 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SHA256 SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SK' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bratislava' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bratislava' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'AEGON Životná poisťovňa a.s.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT Department' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.aegon.sk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17249557443176367787450012194739244264779081556372133020783406538969189945507664615889463585508211873613460670713162911428674798720204770165343649853750867952329363494869370062701920323758668142670943187900056454709727319993090983880343961417221722219969661576004920635677444400641993626355345081464939421453508626032157962599693247409586685922186090729832268265201831592252314133251438387596779256962507713041125806735771703023625590530940805252290312216636900031790966853272988600597213304713533541777908934661467857051195999169045477829509386018794937844238634135312010166228292537294302446420221669965975107366787 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aegon.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aegon.sk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2b9a35ae01183830e1707a05e01176a3cebd9014 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tg.symcb.com/tg.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tg.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tg.symcb.com/tg.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 01e0007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015b7fa577a00000040300473045022100b9786dc8c584fc7c2542eb523035e9b1c5a4714762058c8452468c49ce178600022044a27fe8ff10e3e9a6e75f3956653722a08cf7a44d6c4409f708ba95cade2828007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015b7fa577de000004030047304502206a04ebc158b72ab38117c195396d4a74013d854b5f4cb7fbc95931cda0b3b370022100dc340a874723612f2782a31baecb087a9e08eb55b2e74846b2b1d19fa708a351007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000015b7fa579a000000403004730450220648aa48c1542cbdf9fcb94f15c686799bff0abd22670273919a74989bac45ea6022100cded7ede2087ea4c8b6aa146f61e73b17d7603ab53b025d6566f10bea9530ba6007600bc78e1dfc5f63c684649334da10fa15f0979692009c081b4f3f6917f3ed9b8a50000015b7fa578a10000040300473045022054ac7588ff426ecf16340bae7822e5c3ee062e9fb9ab2a1e46900ae1a017f66b022100aa5ce0250e33b362841af7f44bdce951030f183dd1a5ec80d85769820fffc89b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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