jakma.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:25:57:1b:4a:21:85:3f:10:65:79:3a:4c:df:ab:f9:10:6e was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=jakma.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:25:57:1b:4a:21:85:3f:10:65:79:3a:4c:df:ab:f9:10:6eSerial Number (int): 274043089902558008988562089904990410313838
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 73:2b:28:f9:79:32:5d:6c:be:0d:a1:7c:2a:94:6b:54:e0:0f:7e:55
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e8:38:a6:ed:c4:c1:79:5e:b1:5b:c0:c0:7c:65:dd:38:2d:ab:41:cf
Fingerprint (sha256): 36:63:e7:47:51:ff:f1:5e:1d:ff:a0:15:ac:1e:97:4c:08:e4:41:3c:5d:be:76:70:a3:fe:c5:91:a3:14:2b:47
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate jakma.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for jakma.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
jakma.org
www.jakma.org
www.jakma.org
Other certificates including the domain name jakma.org
(limited to 100 certificates)
jakma.org
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
jakma.org
jakma.org
jakewpatrick.com
tls.automattic.com
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
tls.automattic.com
jakma.org
tls.automattic.com
jakma.org
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
tls.automattic.com
jakma.org
tls.automattic.com
jakma.org
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
jakma.org
jakma.org
jakewpatrick.com
tls.automattic.com
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
tls.automattic.com
jakma.org
jakma.org
tls.automattic.com
jakma.org
tls.automattic.com
jakma.org
jakma.org
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
tls.automattic.com
tls.automattic.com
jakma.org
tls.automattic.com
jakma.org
tls.automattic.com
jakma.org
Certificate
The complete raw certificate details for jakma.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBDCCBOygAwIBAgISAyVXG0ohhT8QZXk6TN+r+RBuMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA3MzEyMjAxMDBaFw0x NzEwMjkyMjAxMDBaMBQxEjAQBgNVBAMTCWpha21hLm9yZzCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAL2JmKAlU7VyV43j/2VUTmnGxsmDl+btSMMFSaho YE3geRQRxNMTeACQ/yWp+k4/5CBXPhhwna4VXiAXDn+QE/UeF9DyTQc71iFtLHYr tQpAPHiMK9j/HbPGl3Eahs8CUJPzGdtwOrhH5G6AthictfE9eSsPmaVrPQEbcMOx vkQaDFywl2Iptofi2Urvzm/AdV6tKxgiyM3y8dBY2A/TcmhcbvsjTG4QtPHBcw9C gg9F0Mba7VbC93rxrA2YEQrOLjEb6A2cSwrDbkwmz75Svd7EZx7/CVEXz6wSM6Sp HltfV/WDKoaSY5HDDM9Ozx/73YsfCd6X+KILwNT1Fhs4Bt/Ov5C+DhcWNlNO1IPn lzbytReu5szPz38vR8zrDDW9RM0vrmaknrbKpvT5LFNDckKhg2NrVtKjTFE9HBJC ZYCQ57gQ0j9V4Rrc0vHOTahoOZ1gC/ogaptz63LJWdTcKkOW4BkMeSXIVvXPpxP2 bbpxFLdLD8zYtGLb3bn7CAcC8Bqfm7nfbnd5ornh1PZBne+xxM0dnbpXs6lAQdwG b4AMxRsY2epGCOwnJssilbbpBfEnYpMw9tXxrxz6d5p9Y27k09XwHX9EzrOHECvy ffzWWwfHXit94DqoZ2kzqup9+AOf2nqPzp6iwSYV47huK4nuGIZQ+VfY4XnpvQgv 1JJ3AgMBAAGjggIYMIICFDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHMrKPl5Ml1s vg2hfCqUa1TgD35VMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wIwYDVR0RBBwwGoIJamFrbWEub3Jngg13d3cuamFrbWEu b3JnMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUF BwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBv biBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRo IHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5j cnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBAExwSxHtKr4n xqvX7at9aCZRkz0kS2V3dFguq+s7VJEMTyE+nym6bBvhOKc1gSQYEKVgwaz7mY/w gwAhS3tjCfbHQN7Mg+5tZ4ehBQfZlsXZmqUJTY5S2PFHddIohQ3tq8rGzVNkGlgc Z+Ysm7rg0kLVOwco9Bi+6efe3E81nmgazbUPTwaL6f92pv3EA1mgqoyqWbARVtD5 ExAtokQoHjqpW8gechACa2yysLw0UDUqOMbXj4RWc5k7FX/+c3Gsp9xAe2nFbi/O 8fS23kLWy8nbkfEJmVEyj87li5km3KCx/8jVWkRBG/vS/gvTtjqmWmeHODQbU45R kLjuYp5etAI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvYmYoCVTtXJXjeP/ZVRO acbGyYOX5u1IwwVJqGhgTeB5FBHE0xN4AJD/Jan6Tj/kIFc+GHCdrhVeIBcOf5AT 9R4X0PJNBzvWIW0sdiu1CkA8eIwr2P8ds8aXcRqGzwJQk/MZ23A6uEfkboC2GJy1 8T15Kw+ZpWs9ARtww7G+RBoMXLCXYim2h+LZSu/Ob8B1Xq0rGCLIzfLx0FjYD9Ny aFxu+yNMbhC08cFzD0KCD0XQxtrtVsL3evGsDZgRCs4uMRvoDZxLCsNuTCbPvlK9 3sRnHv8JURfPrBIzpKkeW19X9YMqhpJjkcMMz07PH/vdix8J3pf4ogvA1PUWGzgG 386/kL4OFxY2U07Ug+eXNvK1F67mzM/Pfy9HzOsMNb1EzS+uZqSetsqm9PksU0Ny QqGDY2tW0qNMUT0cEkJlgJDnuBDSP1XhGtzS8c5NqGg5nWAL+iBqm3PrcslZ1Nwq Q5bgGQx5JchW9c+nE/ZtunEUt0sPzNi0YtvdufsIBwLwGp+bud9ud3miueHU9kGd 77HEzR2dulezqUBB3AZvgAzFGxjZ6kYI7CcmyyKVtukF8SdikzD21fGvHPp3mn1j buTT1fAdf0TOs4cQK/J9/NZbB8deK33gOqhnaTOq6n34A5/aeo/OnqLBJhXjuG4r ie4YhlD5V9jheem9CC/UkncCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 274043089902558008988562089904990410313838 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-31 22:01:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-29 22:01:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jakma.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 773245476883652882410493079840582746994912438628780480705331334796995035438030647954749786653330167759382441414696492208136782106424039748738427411004549253229640319606021334770364418658917295064874557641373765317054855567991817910260097947917731704022753624915593198318781920104180554557844451070840766317950160692622039582648815951042699589414207472445014216220228178413053213635250541640550445310028554840473608063772630664342906720253474456354883546131526334544114990013573346307827727163152102164932385205468026080547119910781914041111592937348096123172204680059426530014158305814670704503560650392176698836879014135204403009944564441013845283969798024512481099880025667873324799437638521284410191051302391088371625183911267893466037673514453635644225068229769289944636584649912050400520842713561794558854553163882665837631203366542294431112769327312984012182090600287250036647897230466290368833926601531385511665796946875621919926238664759188146282822701365999435943566684962536612884960585117080328743585059137288711108983090910221325463198680607916570829236473217813425920522867278810372304517008624299035395049358192004388431018629946337476686648566844121275557723534321927497275952327649523155751828176767971746351706051191 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 732b28f979325d6cbe0da17c2a946b54e00f7e55 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jakma.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jakma.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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