bikelibraries.yorkshire.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:9b:2c:26:dc:79:44:4c:60:86:13:8d:7c:a2:52:2a:2f:dc was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=bikelibraries.yorkshire.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:9b:2c:26:dc:79:44:4c:60:86:13:8d:7c:a2:52:2a:2f:dc
Serial Number (int): 314139312478859220180996489603397630701532
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: cd:fe:9a:52:92:a8:b6:a8:2f:3d:49:79:4b:66:6b:36:ef:4c:85:9c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): ef:5b:ba:9b:cb:a7:57:a1:00:11:2e:55:e2:15:6f:e6:4c:68:ec:74
Fingerprint (sha256): 3a:b6:84:9a:a1:82:23:65:2b:8c:37:81:25:f3:5b:69:1a:45:5f:d1:5c:cc:cb:c0:d5:f7:dc:46:59:c9:57:a2

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate bikelibraries.yorkshire.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for bikelibraries.yorkshire.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bikelibraries.wty.40.112.77.30.nip.io
bikelibraries.yorkshire.com

Other certificates including the domain name yorkshire.com

(limited to 100 certificates)
yorkshire.com
letour.yorkshire.com
letour.yorkshire.com
worlds.yorkshire.com
comms.yorkshire.com
bikelibraries.yorkshire.com
www.yorkshire.com
www.yorkshire.com
bikelibraries.yorkshire.com
plan.yorkshire.com
www.yorkshire.com
oldtdy.yorkshire.com
admin.yorkshire.com
www.yorkshire.com
yorkshire.com
letour.yorkshire.com
letour.yorkshire.com
bookings.yorkshire.com
www.yorkshire.com
letour.yorkshire.com
arts.yorkshire.com
bikehubs.yorkshire.com
www.yorkshire.com
tdf.yorkshire.com
yorkshire.com
bikelibraries.yorkshire.com
www.yorkshire.com
worlds.yorkshire.com
letour.yorkshire.com
worlds.yorkshire.com
www.yorkshire.com
bikehubs.yorkshire.com
www.yorkshire.com
autodiscover.yorkshire.com
worlds.yorkshire.com
www.yorkshire.com
letour.yorkshire.com
letour.yorkshire.com
worlds-admin.yorkshire.com
sip.yorkshire.com
assets.comms.yorkshire.com
worlds-admin.yorkshire.com
places.yorkshire.com
de.yorkshire.com
admin.yorkshire.com
admin.yorkshire.com
www.yorkshire.com
book.yorkshire.com
www.lostdogs.yorkshire.com
worlds-admin.yorkshire.com
m.yorkshire.com
www.yorkshire.com
letour.yorkshire.com
www.yorkshire.com
attractions.yorkshire.com
worlds-admin.yorkshire.com
tdffestival.yorkshire.com
industry.yorkshire.com
letour.yorkshire.com
be.yorkshire.com
bikelibraries.yorkshire.com
bikelibraries.yorkshire.com
letour.yorkshire.com
letour.yorkshire.com
www.yorkshire.com
www.letour.yorkshire.com
bikelibraries.yorkshire.com
bikelibraries.yorkshire.com
www.yorkshire.com
bikelibraries.yorkshire.com
cn.yorkshire.com
industry.yorkshire.com
www.yorkshire.com
letour.yorkshire.com
owa.yorkshire.com
worlds.yorkshire.com
bikelibraries.yorkshire.com
surveys.yorkshire.com
wra.yorkshire.com
www.yorkshire.com
www.yorkshire.com
mail.yorkshire.com
bikelibraries.yorkshire.com
industry.yorkshire.com
www.yorkshire.com
letour.yorkshire.com
attractions.yorkshire.com
www.yorkshire.com
fr.yorkshire.com
letour.yorkshire.com
www.yorkshire.com
tdf.yorkshire.com
chelsea.yorkshire.com
www.yorkshire.com
bikelibraries.yorkshire.com
www.yorkshire.com
yorkshire.com
tourde.yorkshire.com
accommodation.yorkshire.com
letour.yorkshire.com

Certificate

The complete raw certificate details for bikelibraries.yorkshire.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgISA5ssJtx5RExghhONfKJSKi/cMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMzAxOTQ3NDlaFw0y
MDAzMjkxOTQ3NDlaMCYxJDAiBgNVBAMTG2Jpa2VsaWJyYXJpZXMueW9ya3NoaXJl
LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJIf98tlwRhf83JF
vlKp6Ri67gv3hvK92ZXf4WfkFeM0CQK7+URR7c/TJYwL7IMNU8G7iXcvcNCBx+mT
dIpvvpZv8GzhxjiBeLYrwey46kp/Jxz4QNfRXG17/4kUzMN6bYZRNMwqgXKoPQrI
b+B+kY6waTq7qCCqR1WoxzqSu8zrdGt5PmvP8IACQrenHfJzpnJO9lo9RkK6aM+d
Ya+P0CFQWLE5GcHb342ODpqPyy9C1n2hqwCCJ0AqZw/1iRvIbGsfALSiVu6t9llE
wEHovR1yOV9129KzKJrQJgL1NCYRN7p2Ce3e12WQIqUVoTgkgkn5m/xXmD0Oa3bs
ctz0xUECAwEAAaOCApkwggKVMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr
BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUzf6aUpKo
tqgvPUl5S2ZrNu9MhZwwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw
bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu
bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu
bGV0c2VuY3J5cHQub3JnLzBNBgNVHREERjBEgiViaWtlbGlicmFyaWVzLnd0eS40
MC4xMTIuNzcuMzAubmlwLmlvghtiaWtlbGlicmFyaWVzLnlvcmtzaGlyZS5jb20w
TAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcC
ARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEGBgorBgEEAdZ5AgQCBIH3
BIH0APIAdwCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAW9YkJsZ
AAAEAwBIMEYCIQDYq8RQkNlIAgd6FIrEMPEBviNSGrCiTLFpdmKDr7IxBwIhAPhg
Df3IZtep4row9TQCamB41lOBhxVCHYCgePCJ/proAHcAb1N2rDHwMRnYmQCkURX/
dxUcEdkCwQApBo2yCJo32RMAAAFvWJCbUAAABAMASDBGAiEA7Mz2x17qeK1BG8sn
ITh8jJttGOabYdt7QwRc1nUcxN0CIQD+61s3Qajybng83JPC5+WI1Vv7ZCYiQGvE
BapBwbQuEjANBgkqhkiG9w0BAQsFAAOCAQEAauHnn4rwdvFr0aAg5WHgrbAA9YMF
pXVsOfHLb/qzDLq4CucGOdONMx18aqa3iAskQnOU32AqeqRR1SWyyjk1q4IWrU04
c5H3MiqXurskqURhkpZHX6uduqB53wEh7OY9C3WZ5GurH2ye8/hWsCuI1uzXI417
AcE0o0kAU5HZ5m96GTTiGaD6pebttYNJjJih6eWPZsw+lEG6WZwYZfs1vrqXP+R4
LLt2bqRat/GX3zPBy4/iSBIa8Gz+Z3BWRNHhFLvRwfvk/4bXDKp+ZCQR2fobqpVq
kS7dxbEBAhvj8R0mmvERmelUfQq4pOkQove/C/yVyMAxwHHxX8bj1DiKrw==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkh/3y2XBGF/zckW+Uqnp
GLruC/eG8r3Zld/hZ+QV4zQJArv5RFHtz9MljAvsgw1TwbuJdy9w0IHH6ZN0im++
lm/wbOHGOIF4tivB7LjqSn8nHPhA19FcbXv/iRTMw3pthlE0zCqBcqg9Cshv4H6R
jrBpOruoIKpHVajHOpK7zOt0a3k+a8/wgAJCt6cd8nOmck72Wj1GQrpoz51hr4/Q
IVBYsTkZwdvfjY4Omo/LL0LWfaGrAIInQCpnD/WJG8hsax8AtKJW7q32WUTAQei9
HXI5X3Xb0rMomtAmAvU0JhE3unYJ7d7XZZAipRWhOCSCSfmb/FeYPQ5rduxy3PTF
QQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 314139312478859220180996489603397630701532
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-30 19:47:49 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-29 19:47:49 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bikelibraries.yorkshire.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18446556507414121880721277575352139564057493968224976840590569395958724061351909178556729410521029089572702897859529218943628435267310625004219418524918946864260426878791361671125213768034627849573056487234801529557247796989602746417138561721324690655187360994959397029549226751656386809467021211393352620357850247837659120613655312592327679617709242435593011369160319254635062050131514277597080778592653945488367655359171653872584333298979324285020089659620119516059592625042499190956336532084967698305708691837339357350292719967605914169577490463606868212715212010598099072205686738145661377648917874262348683068737
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							cdfe9a5292a8b6a82f3d49794b666b36ef4c859c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (70 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bikelibraries.wty.40.112.77.30.nip.io'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bikelibraries.yorkshire.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f58909b190000040300483046022100d8abc45090d94802077a148ac430f101be23521ab0a24cb169766283afb23107022100f8600dfdc866d7a9e2ba30f534026a6078d653818715421d80a078f089fe9ae80077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f58909b500000040300483046022100ecccf6c75eea78ad411bcb2721387c8c9b6d18e69b61db7b43045cd6751cc4dd022100feeb5b3741a8f26e783cdc93c2e7e588d55bfb642622406bc405aa41c1b42e12
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		006ae1e79f8af076f16bd1a020e561e0adb000f58305a5756c39f1cb6ffab30cbab80ae70639d38d331d7c6aa6b7880b24427394df602a7aa451d525b2ca3935ab8216ad4d387391f7322a97babb24a944619296475fab9dbaa079df0121ece63d0b7599e46bab1f6c9ef3f856b02b88d6ecd7238d7b01c134a349005391d9e66f7a1934e219a0faa5e6edb583498c98a1e9e58f66cc3e9441ba599c1865fb35beba973fe4782cbb766ea45ab7f197df33c1cb8fe248121af06cfe67705644d1e114bbd1c1fbe4ff86d70caa7e642411d9fa1baa956a912eddc5b101021be3f11d269af11199e9547d0ab8a4e910a2f7bf0bfc95c8c031c071f15fc6e3d4388aaf