divinea.com
Issued by R3
About this certificate
This digital certificate with serial number 04:5d:5a:2b:53:4d:98:97:84:c4:14:6d:dc:57:c5:9d:d5:5b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=divinea.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:5d:5a:2b:53:4d:98:97:84:c4:14:6d:dc:57:c5:9d:d5:5bSerial Number (int): 380215259328661613627686821041991764006235
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 0e:5e:ca:d7:95:a1:39:1a:22:ea:d5:fd:c0:03:56:f8:79:a5:9f:a8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d8:5d:f5:cd:b9:3a:ba:08:48:6b:af:f4:36:98:b4:e8:88:ce:0f:87
Fingerprint (sha256): 34:77:a6:5c:a4:4c:2c:dd:93:02:29:86:c1:34:af:8a:6c:7c:ed:90:24:61:2c:45:02:9b:2a:96:f4:28:79:31
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate divinea.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for divinea.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
divinea.com
www.divinea.com
www.divinea.com
Other certificates including the domain name divinea.com
(limited to 100 certificates)
enoturismovaltellina.divinea.com
promo.divinea.com
divinea.com
*.divinea.com
*.api.divinea.com
promo.divinea.com
divinea.com
regalaesperienza.divinea.com
enoturismovaltellina.divinea.com
divinea.com
applicationsoap.beezsocialerp.com
divinea.com
*.divinea.com
www.thestorybookcharactercompany.com
divinea.com
divinea.com
pocketlearning.de
divinea.com
api.divinea.com
www.apur.am
divinea.com
*.divinea.com
api.divinea.com
www.bradshawandson.net
api-dws.divinea.com
divinea.com
www.promo.divinea.com
divinea.com
widget.divinea.com
divinea.com
*.divinea.com
www.gaminc.net
divinea.com
www.stevemasson.co.uk
api.divinea.com
www.guide2copenhagen.com
smart-tasting.divinea.com
*.divinea.com
api.divinea.com
*.divinea.com
api-dws.divinea.com
isitblackfridayyet.app
link-producer.xtrea.mr
promo.divinea.com
*.divinea.com
*.divinea.com
blog.divinea.com
www.divinea.com
*.api.divinea.com
promo.divinea.com
synthwave.app
promo.divinea.com
promo.divinea.com
divinea.com
divinea.com
divinea.com
*.divinea.com
divinea.com
*.divinea.com
regalaesperienza.divinea.com
openday.vu.edu.au
degustazionevino.divinea.com
api.divinea.com
nmbrs.pensioeninzichtelijk.nl
applicationsoap.beezsocialerp.com
promo.divinea.com
divinea.com
*.divinea.com
*.api.divinea.com
promo.divinea.com
divinea.com
regalaesperienza.divinea.com
enoturismovaltellina.divinea.com
divinea.com
applicationsoap.beezsocialerp.com
divinea.com
*.divinea.com
www.thestorybookcharactercompany.com
divinea.com
divinea.com
pocketlearning.de
divinea.com
api.divinea.com
www.apur.am
divinea.com
*.divinea.com
api.divinea.com
www.bradshawandson.net
api-dws.divinea.com
divinea.com
www.promo.divinea.com
divinea.com
widget.divinea.com
divinea.com
*.divinea.com
www.gaminc.net
divinea.com
www.stevemasson.co.uk
api.divinea.com
www.guide2copenhagen.com
smart-tasting.divinea.com
*.divinea.com
api.divinea.com
*.divinea.com
api-dws.divinea.com
isitblackfridayyet.app
link-producer.xtrea.mr
promo.divinea.com
*.divinea.com
*.divinea.com
blog.divinea.com
www.divinea.com
*.api.divinea.com
promo.divinea.com
synthwave.app
promo.divinea.com
promo.divinea.com
divinea.com
divinea.com
divinea.com
*.divinea.com
divinea.com
*.divinea.com
regalaesperienza.divinea.com
openday.vu.edu.au
degustazionevino.divinea.com
api.divinea.com
nmbrs.pensioeninzichtelijk.nl
applicationsoap.beezsocialerp.com
Certificate
The complete raw certificate details for divinea.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9TCCBN2gAwIBAgISBF1aK1NNmJeExBRt3FfFndVbMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMTYxNjUwMDlaFw0yNDAyMTQxNjUwMDhaMBYxFDASBgNVBAMT C2RpdmluZWEuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6B7p Q6lcshQrjfpsNlte0rw3RcV7icysSu1CqyxvSUL4PRTQv2c9UoG9sjoXIeNpINBz qSks9XEw8QfKHRDoU+a2sGnJRkVyxbY2Q7Tcpezei1clhQWI3S13z7Y/J8DOEXy3 xk9s3JYiyqvzcAWB3M4SL253rTvwkPrWUKk81KZ1oSwchArEe0JXHQQVrPZW2KL9 Swbumi/VnAYayWTop8dsblkUKK/7kXjX3CaPnums7yijhkZ/LnK8h9z3zB8BVf4O oCPfFuX5PtZnrR4n7IibwJx/HnxqgTnyPGKWolmiDGe+fSdA3R3KuXgVyGA7zfXC nKJHdQJ9cUx7l7xoBlHCnNbZMnKlGqL7KrGJlwpLzfr+y6Ji3dC8UKzQHKMRFn6z gDhQGM7z+MTYgCUFgOrKl2C/9ob/Nf/Rr4AhIYNUTRyTBCPlswOn+jLivLV6+rym EDO52rexDUYlqhxrTTdYIj2THP8MZ2AcYfoEky54XWV7PEBVuiW04Mym11kicJx2 yqraoQFpbGINMDt6GfFOstX4hjpxRBYdTmZs7kjlwVBlko41hvyS9YnQ7LrRYB8U QE8bB23Zsny09WJCrDLU9b6ogCarf8M+Tx2WTFt+9AUD7Ril6Y6mYj3AoHXEQ3W7 p8rdzN484FWaARpWTGuVzXNeLlAS2yF+Ku2jSn8CAwEAAaOCAh8wggIbMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUDl7K15WhORoi6tX9wANW+Hmln6gwHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wJwYDVR0RBCAwHoILZGl2aW5lYS5jb22CD3d3dy5kaXZp bmVhLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYE gfMA8QB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi9lBL5cA AAQDAEcwRQIhAOPAJW0C1C/sbCye75z3GusidvFclcbb/3WXICbeo+BRAiAP9QTf gMAGHcBtLpYYAc5sBpK6qQmFxTKfhEoKRrmEqQB3AEiw42vapkc0D+VqAvqdMOsc UgHLVt0sgdm7v6s52IRzAAABi9lBL6EAAAQDAEgwRgIhAK00Y1ek0uUTr+BzGjiu Kmb0IJI4xWY1pgkuBxi4EFPTAiEAv6ttrvA+bAri6o35OyecOw+eOM15xC7s4Xdb gqEuwr0wDQYJKoZIhvcNAQELBQADggEBAFymQQ/dEzlusbHZUp2MXGniAqP9tBo3 gMdJQSrIK1IV8h4NhVxdPIsgXgykeecSCWc56wVHoYbACE83BRkojiVnbYeoSirB Vo0ImJd6bvwl2rUP4KYh0iTO/hww3Hc7MgkW6LK4lOSarz0rDs5yIjrI9LQO8vNN hnsHG9FxcmrMz3n9byFTJb4D8l4d0XxetEAVM2laVquoVLmGER4VizlDmjV4toij pTRQmYpwhjeXiWcqJEWdaQu954qYsBvrRATxZ4wWAH4PC9qlWchjJWt3PhtlCEps fY/1Xq5vxBxjY3qeZnx9KNkHADrUEdrDh52wOO3bIQFMoM8Uu6FhsAQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6B7pQ6lcshQrjfpsNlte 0rw3RcV7icysSu1CqyxvSUL4PRTQv2c9UoG9sjoXIeNpINBzqSks9XEw8QfKHRDo U+a2sGnJRkVyxbY2Q7Tcpezei1clhQWI3S13z7Y/J8DOEXy3xk9s3JYiyqvzcAWB 3M4SL253rTvwkPrWUKk81KZ1oSwchArEe0JXHQQVrPZW2KL9Swbumi/VnAYayWTo p8dsblkUKK/7kXjX3CaPnums7yijhkZ/LnK8h9z3zB8BVf4OoCPfFuX5PtZnrR4n 7IibwJx/HnxqgTnyPGKWolmiDGe+fSdA3R3KuXgVyGA7zfXCnKJHdQJ9cUx7l7xo BlHCnNbZMnKlGqL7KrGJlwpLzfr+y6Ji3dC8UKzQHKMRFn6zgDhQGM7z+MTYgCUF gOrKl2C/9ob/Nf/Rr4AhIYNUTRyTBCPlswOn+jLivLV6+rymEDO52rexDUYlqhxr TTdYIj2THP8MZ2AcYfoEky54XWV7PEBVuiW04Mym11kicJx2yqraoQFpbGINMDt6 GfFOstX4hjpxRBYdTmZs7kjlwVBlko41hvyS9YnQ7LrRYB8UQE8bB23Zsny09WJC rDLU9b6ogCarf8M+Tx2WTFt+9AUD7Ril6Y6mYj3AoHXEQ3W7p8rdzN484FWaARpW TGuVzXNeLlAS2yF+Ku2jSn8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 380215259328661613627686821041991764006235 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-16 16:50:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-14 16:50:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'divinea.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 946970027872656336182272905914640940974257141402837987590549772852347058938042715875001953602881056488001970510332967957666089266096650125691112454085264069013650852471459123711742898772448935833037672292758692051281584951051726302186195103679536036780711844892997765952600124136343833668585056687209429804859647854165998222107623488788327199993845454254131483470988121282224535492342037025817424134460084044922040158335430002825770255637135966685038015898844575449910102477871667040678256375281117047282537034005561407429930745182223730151612964509509431398984304053928495625354167849243032216186138566915380405013435647128628464964278378242451434932716679824838194968346325106834534519343940884596417848893487316067673945269118554282437946603869654175813304379493463733755363021877361729778451809334837202013547785411340899666890362125489563103701211438689722192045967045434976340103830974604349597684462103426647454967760182506085377829614537635887358911714919059829467054551989665451140486774207531617293932839281808194642573755038867349969440388603340646492428930162809951396617529499354568024777444997459159180762267239803791489342455179883981323851850308993889731268399576553703503600644003789301071243046595856811115256433279 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0e5ecad795a1391a22ead5fdc00356f879a59fa8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'divinea.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.divinea.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bd9412f970000040300473045022100e3c0256d02d42fec6c2c9eef9cf71aeb2276f15c95c6dbff75972026dea3e05102200ff504df80c0061dc06d2e961801ce6c0692baa90985c5329f844a0a46b984a900770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bd9412fa10000040300483046022100ad346357a4d2e513afe0731a38ae2a66f4209238c56635a6092e0718b81053d3022100bfab6daef03e6c0ae2ea8df93b279c3b0f9e38cd79c42eece1775b82a12ec2bd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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