www.roycastle.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:63:a0:81:da:d0:82:3f:ed:e2:fa:05:07:85:bf:6f:a0:7f was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.roycastle.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:63:a0:81:da:d0:82:3f:ed:e2:fa:05:07:85:bf:6f:a0:7fSerial Number (int): 295238162844159047091196855842464177561727
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 50:b6:88:b8:f9:2b:eb:e6:00:8d:90:6b:70:62:92:8d:21:f9:19:b4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 8f:af:71:27:3e:6b:03:5c:6b:1e:f3:9a:92:ac:dd:98:db:e0:9c:71
Fingerprint (sha256): 36:76:20:97:2f:90:ff:fd:05:69:23:5c:ac:a9:f4:52:2e:4e:92:98:7a:1d:42:37:33:53:24:0a:e8:89:f6:8f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.roycastle.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.roycastle.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
roycastle.org
www.roycastle.org
www.roycastle.org
Other certificates including the domain name roycastle.org
(limited to 100 certificates)
*.roycastle.org
support.roycastle.org
secure.roycastle.org
roycastle.org
support.roycastle.org
secure.roycastle.org
www.roycastle.org
support.roycastle.org
www.roycastle.org
www.roycastle.org
www.cleversteam.com
www.roycastle.org
www.cleversteam.com
roycastle.org
www.roycastle.org
secure.roycastle.org
secure.roycastle.org
www.cleversteam.com
roycastle.org
www.cleversteam.com
roycastle.org
www.roycastle.org
roycastle.org
roycastle.org
www.roycastle.org
rewebservice.roycastle.org
www.cleversteam.com
www.cleversteam.com
www.cleversteam.com
secure.roycastle.org
support.roycastle.org
roycastle.org
roycastle.org
roycastle.org
secure.roycastle.org
www.cleversteam.com
www.cleversteam.com
support.roycastle.org
secure.roycastle.org
roycastle.org
support.roycastle.org
secure.roycastle.org
www.roycastle.org
support.roycastle.org
www.roycastle.org
www.roycastle.org
www.cleversteam.com
www.roycastle.org
www.cleversteam.com
roycastle.org
www.roycastle.org
secure.roycastle.org
secure.roycastle.org
www.cleversteam.com
roycastle.org
www.cleversteam.com
roycastle.org
www.roycastle.org
roycastle.org
roycastle.org
www.roycastle.org
rewebservice.roycastle.org
www.cleversteam.com
www.cleversteam.com
www.cleversteam.com
secure.roycastle.org
support.roycastle.org
roycastle.org
roycastle.org
roycastle.org
secure.roycastle.org
www.cleversteam.com
www.cleversteam.com
Certificate
The complete raw certificate details for www.roycastle.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGaTCCBVGgAwIBAgISA2OggdrQgj/t4voFB4W/b6B/MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjAxMDM3MDhaFw0x OTEyMTkxMDM3MDhaMBwxGjAYBgNVBAMTEXd3dy5yb3ljYXN0bGUub3JnMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsgzI3uY0aoqN1VAAmE5qsCirxUVA 6rYf+TkEAWM4UuZXmbSLHHSvy5hzTSzIWHrEB0TnwcxziXLOwqw/LI5eWkMkWuYo +9sxarSXZbgl2wpwXrt/uKfuLDplLCXUfA/X5ER4bsZzq5cmGjcMAYo9yDn2arX3 CZ2N6M/0WS1Zv3qhTetqDXbNnyCVWvjJm1Xs34NtOVqAJEMc4O13sLtul5oVaNt6 t6Sz2mt60xb2rFD3avieUwGS20Hr5/rxSA3p4oZ+yO6SWVN5ECC8KPeQd6GwVQ5S vu53lyP0tSVubZvCYlmqjMn+dj9+V9VbzLAi3BcsPWyzWB0+V4ViWElFod1Hr45q +rJXpg5chreMgJXhxT/rVmD2unPwi/n0Uz93AnNO36tN7Kt+Pu3AkykNUnF9K+gd dGLn2vlAQyaNgTvEw4UWCmAJ8fhNlVF3D0mKU25uZXATcyUH5DxZ70IwrnbXpNIX rNgd8FbF+068soBB5FoxdNbWDv1d+qK/0YZ1RKZ/0hfWQYxrdnNQkMZYlhTht4VA WAkju0lfriYkYxvgLJN+g2RJA1M1wTrivnmMfB5XTxEffvTHf/uWH6YyRJ+QlqOO P3mLsiY6stL8cA92t5j4TUwT+QNqVRuzkxZVpWck0h9b4flyo3M2yQPiTX7Jz1WZ AnZzVBut1NGockkCAwEAAaOCAnUwggJxMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU ULaIuPkr6+YAjZBrcGKSjSH5GbQwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl 7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzArBgNVHREEJDAigg1yb3ljYXN0bGUub3Jn ghF3d3cucm95Y2FzdGxlLm9yZzBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEE AYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9y ZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AOJpS64m6OlACeiGG7Y7g9Q+5/50 iPukjyiTAZ3d8dv+AAABbU52JpEAAAQDAEcwRQIgIpspCL+yUrm5Hgg3gB9AYvYU AdbxHgWiFzRQTYGsM4cCIQD+7D5I0kY1SbTU2lsmAqmV7SYTnyFxhBUxog70LP8U 9wB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABbU52JoEAAAQD AEcwRQIhANYdlvdbwY9u4OZBKFucKqCrsG1MHxSq4B0aGdZEHmJIAiAgVafgt3Xm w5zLkVBM985V7yriXwAMqKpFQxVw+sAJqjANBgkqhkiG9w0BAQsFAAOCAQEAX3GZ GxdG4uMwpq22B8rBA9LN5+fzWAt2ZQf055Oaeag6xulHL70JXFF4eeEyHHgMEtl7 94PIaB2oLtG1lUUK5E9vxoCKKtkRztSm8rLrNPDhKBO4zjJ1teQxNP3yf5+NByBn 9/ebiE0e+0PYO3LUms8aCTfkud8d3q63NAzefU+wa1fmmkkFP3cFq+YAANi1xN/i ZnS6Up7mXr6tCutqzGjOawa9Qtp02gdF121XZrYpVJ9zNy7nVQb9Gnq1Q2smkYZf Sik/G5lmEaAKEAkIQA52I2RPHCieJaQNBSl05iCdIJhnjsPKnsjiQc2OIUfTLlDH +mEjpu9u0lCY+6GdKw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsgzI3uY0aoqN1VAAmE5q sCirxUVA6rYf+TkEAWM4UuZXmbSLHHSvy5hzTSzIWHrEB0TnwcxziXLOwqw/LI5e WkMkWuYo+9sxarSXZbgl2wpwXrt/uKfuLDplLCXUfA/X5ER4bsZzq5cmGjcMAYo9 yDn2arX3CZ2N6M/0WS1Zv3qhTetqDXbNnyCVWvjJm1Xs34NtOVqAJEMc4O13sLtu l5oVaNt6t6Sz2mt60xb2rFD3avieUwGS20Hr5/rxSA3p4oZ+yO6SWVN5ECC8KPeQ d6GwVQ5Svu53lyP0tSVubZvCYlmqjMn+dj9+V9VbzLAi3BcsPWyzWB0+V4ViWElF od1Hr45q+rJXpg5chreMgJXhxT/rVmD2unPwi/n0Uz93AnNO36tN7Kt+Pu3AkykN UnF9K+gddGLn2vlAQyaNgTvEw4UWCmAJ8fhNlVF3D0mKU25uZXATcyUH5DxZ70Iw rnbXpNIXrNgd8FbF+068soBB5FoxdNbWDv1d+qK/0YZ1RKZ/0hfWQYxrdnNQkMZY lhTht4VAWAkju0lfriYkYxvgLJN+g2RJA1M1wTrivnmMfB5XTxEffvTHf/uWH6Yy RJ+QlqOOP3mLsiY6stL8cA92t5j4TUwT+QNqVRuzkxZVpWck0h9b4flyo3M2yQPi TX7Jz1WZAnZzVBut1NGockkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 295238162844159047091196855842464177561727 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-20 10:37:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-19 10:37:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.roycastle.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 726380381710384824219969628991546730868607294218781249111772145923029142000442364743491844475410637628350235289583627347873596400535093364444128740573019959783657335226469445052574628200998958080428731399497221897275241344186561298390661228953686444519136621682069931129443099077064128709217229452867925988247084414087396238856078891353684033970516959669621165634288610083085418680269305553840680419260355062513980777508951621677830875776328063430143425114818612856128395194872939610402629539987438965913944348428688655097135691804633637402589741108572555466012346603418271918920924606647461134023829811969625479973302379175091861032017716566662586027027781423088426250521623268563128754588416934593461316607031311437087894639990847760398906123783463860081979499883802372367427814081507003294135184315140348985350463836525179230745813241081314746738725495766134001040841201314704701944146057032429013248234986796941500805848513246202380819064770699291120262879968273270122181070148528033147628215634662553821718388545925508807556284783480803258492769784431390381608991648234388346771194277843968505778328285748819209878932943781650490960607974800999682788577325751121450523900281208392718239900242134502839680646996086262220339049033 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 50b688b8f92bebe6008d906b7062928d21f919b4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roycastle.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.roycastle.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d4e76269100000403004730450220229b2908bfb252b9b91e0837801f4062f61401d6f11e05a21734504d81ac3387022100feec3e48d2463549b4d4da5b2602a995ed26139f2171841531a20ef42cff14f7007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d4e7626810000040300473045022100d61d96f75bc18f6ee0e641285b9c2aa0abb06d4c1f14aae01d1a19d6441e624802202055a7e0b775e6c39ccb91504cf7ce55ef2ae25f000ca8aa45431570fac009aa . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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