go.expedient.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:93:fb:3e:f7:26:1a:cd:85:33:2f:2a:0a:60:12:b6:a3:61 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=go.expedient.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:93:fb:3e:f7:26:1a:cd:85:33:2f:2a:0a:60:12:b6:a3:61Serial Number (int): 311692328894780074458971530486962640560993
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 1d:c7:e8:00:1f:aa:5f:fd:de:79:00:25:62:6a:70:d7:6f:52:91:6e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ef:9c:77:2d:58:23:8d:4e:49:82:dd:6b:ac:dc:c5:46:34:7f:b8:28
Fingerprint (sha256): 34:8b:27:2b:4e:c7:f1:ed:4f:e3:7e:b4:3a:55:f7:93:7d:f5:72:15:ef:a2:b5:64:76:62:f5:16:78:d2:ae:16
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate go.expedient.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for go.expedient.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
go.expedient.com
Other certificates including the domain name expedient.com
(limited to 100 certificates)
ideas.expedient.com
go.expedient.com
ideas.expedient.com
ideas.expedient.com
ideas.expedient.com
talk.expedient.com
*.expedient.com
talk.expedient.com
go.expedient.com
awstesting.expedient.com
console.rancher-demo.expedient.com
*.expedient.com
ideas.expedient.com
rpc.expedient.com
talk.expedient.com
*.expedient.com
talk.expedient.com
go.expedient.com
talk.expedient.com
go.expedient.com
*.expedient.com
talk.expedient.com
go.expedient.com
*.expedient.com
talk.expedient.com
talk.expedient.com
go.expedient.com
talk.expedient.com
talk.expedient.com
ideas.expedient.com
*.expedient.com
console.rancher-demo.expedient.com
*.expedient.com
go.expedient.com
talk.expedient.com
*.expedient.com
*.expedient.com
ideas.expedient.com
uptime.expedient.com
go.expedient.com
talk.expedient.com
talk.expedient.com
go.expedient.com
talk.expedient.com
ideas.expedient.com
talk.expedient.com
awstesting.expedient.com
talk.expedient.com
go.expedient.com
talk.expedient.com
go.expedient.com
ideas.expedient.com
ideas.expedient.com
ideas.expedient.com
talk.expedient.com
*.expedient.com
talk.expedient.com
go.expedient.com
awstesting.expedient.com
console.rancher-demo.expedient.com
*.expedient.com
ideas.expedient.com
rpc.expedient.com
talk.expedient.com
*.expedient.com
talk.expedient.com
go.expedient.com
talk.expedient.com
go.expedient.com
*.expedient.com
talk.expedient.com
go.expedient.com
*.expedient.com
talk.expedient.com
talk.expedient.com
go.expedient.com
talk.expedient.com
talk.expedient.com
ideas.expedient.com
*.expedient.com
console.rancher-demo.expedient.com
*.expedient.com
go.expedient.com
talk.expedient.com
*.expedient.com
*.expedient.com
ideas.expedient.com
uptime.expedient.com
go.expedient.com
talk.expedient.com
talk.expedient.com
go.expedient.com
talk.expedient.com
ideas.expedient.com
talk.expedient.com
awstesting.expedient.com
talk.expedient.com
go.expedient.com
talk.expedient.com
Certificate
The complete raw certificate details for go.expedient.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWTCCBUGgAwIBAgISA5P7PvcmGs2FMy8qCmAStqNhMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMDUxNzQ1NDFaFw0x OTA2MDMxNzQ1NDFaMBsxGTAXBgNVBAMTEGdvLmV4cGVkaWVudC5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDeRyjuZ0oq8i/ayAiZHq/X2WaoIqT9 dGCka54hqRtdHB8Bc/PDeqP9GRv8TJOtQlMLFSNF0/FEcp9UOeRPI9KIngkcX/dD SFJQw9E6ukDkNXMBGjSC8UNBzTduvsBixMQ5EX6VVMGwWmmp4AhsDVhR0sbHrADJ 2msadZFC9yFXFOlT71a66aLK04zdDaqPes/EvwYrT/xzo0cAEK23LmKbmNTDWtAd mI7k3MBMT6jrGn55XTtxwzE0rliHBbMiIGQ5fDWdM9Oxbb0caTeZn5Kg1q6un4S7 DOsH86fq7kMfE3d1MVulEwL/m2AnDCGvC17Zr8kHcW3WSXUWajBJT4S4PfgsrnDm SReIWemquD4c3pEe24tPXGjd0Y8+s+56k/RiXzY54C73yavZ+UJJtKuCCDKaf3Zj 457+KWL8Gab6ffDhFyz0hxL3ATZXbGY/1dVmXGKoKTivq8kJQ9nL4CxEerA/UZka 5/N6d7E+os3bWIr1+t213DrK+Yoq5SXqNWpaCXo+5PpX+xMmd8+c2+806U25BAWS GSv16GPVs+JfSTrgG8IA4wwDZBkRvPUg94ZkByAZOoq65iV+oy4doCxvnU8chUOd zCkt8G2Ps9V3ldpCPJw98BPuBAseCpFxVECj5F1vtRXEOMkp/3WVHPoYbnl54per FwNLZ/OB/yTloQIDAQABo4ICZjCCAmIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQd x+gAH6pf/d55ACVianDXb1KRbjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEGdvLmV4cGVkaWVudC5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQC BIH2BIHzAPEAdwDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWlP LP0qAAAEAwBIMEYCIQC4eF1XvsCXnhbxbaitCbmr2xvE2gMQUGCrIhK/J6PjvQIh APFChAFVJWLPylSBw1N0RUFUsUQDZpkJnlrVqD96GsenAHYAY/Lbzeg7zCzPC3KE J1drM6SNYXePvXWmOLHHaFRL2I0AAAFpTyz7jgAABAMARzBFAiEA0ZGwNWQwtsE7 LAWirF4EuuMuGffEdGmh7Ok3nKLp/hkCICZU61rUfL4y1sjiU46kj7tTRdsHJ1AK 0OW8SEezsTMtMA0GCSqGSIb3DQEBCwUAA4IBAQA8PIrfACC/eM0g3Cs0VGl1ax5o LHWYF8Kyos4CPMMbOXND4HWrIClfd4vp4YWWvX/oX10xKgwU5ChAMmrS9nrNIGzr EIa2OnJHqOh1WremSlltcjW3C1mjr92dS6jrkEclz9TemhalLg0Kh1VVf30yu43X I8gpkP3+0OHAz/YK/PbYv/wqDimWJ0nLmsQfj2gL3rH4nn5WGcfkxGs2n96UOfgS tkCDthuju1vC9SqshU1EN46R5e9InsICCef7bExXeeM3Znit6Xziz2jdBJYQGdYX KkQ5wz8xvi5hyPi+1tNhGCByOZlY/Sc9PQu+uj1Z1IJhAeg+hAGEJJ+UzK00 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3kco7mdKKvIv2sgImR6v 19lmqCKk/XRgpGueIakbXRwfAXPzw3qj/Rkb/EyTrUJTCxUjRdPxRHKfVDnkTyPS iJ4JHF/3Q0hSUMPROrpA5DVzARo0gvFDQc03br7AYsTEORF+lVTBsFppqeAIbA1Y UdLGx6wAydprGnWRQvchVxTpU+9WuumiytOM3Q2qj3rPxL8GK0/8c6NHABCtty5i m5jUw1rQHZiO5NzATE+o6xp+eV07ccMxNK5YhwWzIiBkOXw1nTPTsW29HGk3mZ+S oNaurp+EuwzrB/On6u5DHxN3dTFbpRMC/5tgJwwhrwte2a/JB3Ft1kl1FmowSU+E uD34LK5w5kkXiFnpqrg+HN6RHtuLT1xo3dGPPrPuepP0Yl82OeAu98mr2flCSbSr gggymn92Y+Oe/ili/Bmm+n3w4Rcs9IcS9wE2V2xmP9XVZlxiqCk4r6vJCUPZy+As RHqwP1GZGufzenexPqLN21iK9frdtdw6yvmKKuUl6jVqWgl6PuT6V/sTJnfPnNvv NOlNuQQFkhkr9ehj1bPiX0k64BvCAOMMA2QZEbz1IPeGZAcgGTqKuuYlfqMuHaAs b51PHIVDncwpLfBtj7PVd5XaQjycPfAT7gQLHgqRcVRAo+Rdb7UVxDjJKf91lRz6 GG55eeKXqxcDS2fzgf8k5aECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 311692328894780074458971530486962640560993 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-05 17:45:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-03 17:45:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'go.expedient.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 906814994873645958732481221814752830413198730374766861859926600346996629796199920105550532563892971696210649499815018626902160734917253857658542865075855864823675150915861956021971103325264731115639497682554148405919722003258658081486323627095255944828673346903261887682021315418085310584092282363003022416158015917409666488361408023515710840384357411653658238921125675042161113208820254501664177916850954012214647659583339598676299415237477979814064712982485883011751076487623615635968002070918395122732748510485612558013657711479524831485856317853470667547817403254793039659231151721246350039599545020830787968338273483795849632686614622868454827068293545823958703058595836770707841791233726394642029077429381285218994007362582166473362802089585529009645044008963405567840784852152056138648776122805440323369301581470723744319430929222306669036016372858509896167360728585912018773962597861145303156056458845553271453169896840735102633303379124333498552834682148817123562938233383652294972862753522066112606937443931785022146661166700797350822771190388450276082599817977061515424779066096646137730606663300512842418890173345737216583495519460327680110074061150418190492199075824901037748458919292129443867213060733993422603128464801 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1dc7e8001faa5ffdde790025626a70d76f52916e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'go.expedient.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe000001694f2cfd2a0000040300483046022100b8785d57bec0979e16f16da8ad09b9abdb1bc4da03105060ab2212bf27a3e3bd022100f1428401552562cfca5481c35374454154b144036699099e5ad5a83f7a1ac7a700760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d000001694f2cfb8e0000040300473045022100d191b0356430b6c13b2c05a2ac5e04bae32e19f7c47469a1ece9379ca2e9fe1902202654eb5ad47cbe32d6c8e2538ea48fbb5345db0727500ad0e5bc4847b3b1332d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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