ethicalmaintenance.co.uk
Issued by R3
About this certificate
This digital certificate with serial number 03:6e:5f:12:e0:9b:c6:5a:51:63:d9:3b:4d:17:bf:e4:eb:d3 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ethicalmaintenance.co.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:6e:5f:12:e0:9b:c6:5a:51:63:d9:3b:4d:17:bf:e4:eb:d3Serial Number (int): 298894292833128495182973185441602642176979
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 46:06:83:49:d4:9f:c2:60:b5:af:94:cb:c2:86:36:8b:2b:3f:9f:53
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 03:2e:99:ae:af:4d:64:40:16:0b:8e:7a:a3:09:6b:1a:db:d4:4b:d3
Fingerprint (sha256): 3a:dd:cf:33:fd:a7:8f:22:50:f1:b8:b9:76:6b:83:a7:52:cd:c8:80:9e:a8:5f:63:25:f2:80:02:5a:7f:e3:53
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ethicalmaintenance.co.uk
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ethicalmaintenance.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.ethicalmaintenance.co.uk
*.ethicalmaintenance.org
ethicalmaintenance.co.uk
ethicalmaintenance.co.uk.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk
ethicalmaintenance.org
ethicalmaintenance.org.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk
www.ethicalmaintenance.co.uk.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk
www.ethicalmaintenance.org.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk
*.ethicalmaintenance.org
ethicalmaintenance.co.uk
ethicalmaintenance.co.uk.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk
ethicalmaintenance.org
ethicalmaintenance.org.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk
www.ethicalmaintenance.co.uk.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk
www.ethicalmaintenance.org.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk
Other certificates including the domain name ethicalmaintenance.co.uk
(limited to 100 certificates)
Certificate
The complete raw certificate details for ethicalmaintenance.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGljCCBX6gAwIBAgISA25fEuCbxlpRY9k7TRe/5OvTMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMzEwNTQxMDFaFw0yNDA2MjkwNTQxMDBaMCMxITAfBgNVBAMT GGV0aGljYWxtYWludGVuYW5jZS5jby51azCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL9csGvp6l15z0J5ZcUgW6ZM4w7+n3IPOAo/SYwV/lSR0RXbSEMH upY7PbBtTkEX8EQPoA2zm1Wx48uvR9Hg/e9oKaxlgVNLH8X6UVNJcMdsYWNgbdWi 1EC9JEJCozqotrc4iBpz82bz4URuoTcriadDfRDbRH/BI78hKXa1PGBEY2RRigdX LllMIbV7SL+RX+XwZ9EFvWfXf2/gt4662GK9YfS3+oZInjw4IXcdwBuuA5FMptbG 0zScQ2EF6YmkvzLiIEyZD3IJvWjx23yYvQ6Rk//qV5vmWloBK0tvUKbVfvQVuctV DNWgQ4DPy1QjEIiDSC+QR0k4RVtir++u/EcCAwEAAaOCA7MwggOvMA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/ BAIwADAdBgNVHQ4EFgQURgaDSdSfwmC1r5TLwoY2iys/n1MwHwYDVR0jBBgwFoAU FC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzAB hhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5p LmxlbmNyLm9yZy8wggG5BgNVHREEggGwMIIBrIIaKi5ldGhpY2FsbWFpbnRlbmFu Y2UuY28udWuCGCouZXRoaWNhbG1haW50ZW5hbmNlLm9yZ4IYZXRoaWNhbG1haW50 ZW5hbmNlLmNvLnVrgk5ldGhpY2FsbWFpbnRlbmFuY2UuY28udWsuMzcyNWE5MWNj MDEzNThlODE1MjViZDA3MC0xNTY3Ni5zaXRlcy5rLWhvc3RpbmcuY28udWuCFmV0 aGljYWxtYWludGVuYW5jZS5vcmeCTGV0aGljYWxtYWludGVuYW5jZS5vcmcuMzcy NWE5MWNjMDEzNThlODE1MjViZDA3MC0xNTY3Ni5zaXRlcy5rLWhvc3RpbmcuY28u dWuCUnd3dy5ldGhpY2FsbWFpbnRlbmFuY2UuY28udWsuMzcyNWE5MWNjMDEzNThl ODE1MjViZDA3MC0xNTY3Ni5zaXRlcy5rLWhvc3RpbmcuY28udWuCUHd3dy5ldGhp Y2FsbWFpbnRlbmFuY2Uub3JnLjM3MjVhOTFjYzAxMzU4ZTgxNTI1YmQwNzAtMTU2 NzYuc2l0ZXMuay1ob3N0aW5nLmNvLnVrMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIB BQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcAouK/1h7eLy8HoNZObTen3GVDsMa1LqLa t4r4mm31F9gAAAGOkz10qQAABAMASDBGAiEA3+i+eFvWhbRQS6zbz0DRiN1CWCeb l4z+2lS/qLOwwr8CIQCM4S8Ye7bj20V1uU45WH5SDUOWhV/rf3ZA1ddJ0OYNfgB2 AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjpM9dLkAAAQDAEcw RQIgTdIN6+RgVrjA8dzb3qN4b8heeCGbdfO4hz3kUjti6AkCIQDg6I2kOe8V3kPo OTSfkusGabHkNJr6WuCFOps+Mdgc/TANBgkqhkiG9w0BAQsFAAOCAQEAQVfXLIbj 7P0Q/R/il1MU7qwRec3f3hIgl2Y+6tl1y/Q91Fg/Fu/8HJplRg4Ufl+zp566XQRr bHowxhynqB+Qmbu/edVoQdSId0o4EmuZvHV+kGfFJ/sG7HRvHsvft/G4GSekqmgq dRcqDeycjytdV8cMflBLKwxdZpFEMq8WdE988OyoAy/AYqHX3C/nqeKGOz018flZ yw/d8+SP04Kon/Lnddxjh8zXNeieNwuv2SeQxWJz51OjTPSoflwHTM5J3xnALUln 4Yz4aav4cCI6w1ukNibzOycsTAph1r1H8O+9jDlZNuSIZPhpRBB8Ia/ZG6WaZNdg f3olie61lUl5RQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1ywa+nqXXnPQnllxSBb pkzjDv6fcg84Cj9JjBX+VJHRFdtIQwe6ljs9sG1OQRfwRA+gDbObVbHjy69H0eD9 72gprGWBU0sfxfpRU0lwx2xhY2Bt1aLUQL0kQkKjOqi2tziIGnPzZvPhRG6hNyuJ p0N9ENtEf8EjvyEpdrU8YERjZFGKB1cuWUwhtXtIv5Ff5fBn0QW9Z9d/b+C3jrrY Yr1h9Lf6hkiePDghdx3AG64DkUym1sbTNJxDYQXpiaS/MuIgTJkPcgm9aPHbfJi9 DpGT/+pXm+ZaWgErS29QptV+9BW5y1UM1aBDgM/LVCMQiINIL5BHSThFW2Kv7678 RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 298894292833128495182973185441602642176979 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-31 05:41:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-29 05:41:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ethicalmaintenance.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24157222970234716945416460404333384059832923986739801652012810109861131169658899091408490151557852240178337444922404100916730519021121141648343304762476669235766352822336247814820517918671207981017167325225835896051447132798906180544787907444993329902461779430085348456383162057693312908293576545061390346587464157803770718691123516882917670886059416964821085156682533279186004456202011188702693887265824142707059459384280544837040879430668806904247974031498400308344909650199246184991990526684259335231435060680625822966666533129703228678029236609456718432721178844824588919939243421605881534494550458951405803600967 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 46068349d49fc260b5af94cbc286368b2b3f9f53 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (432 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ethicalmaintenance.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ethicalmaintenance.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ethicalmaintenance.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ethicalmaintenance.co.uk.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ethicalmaintenance.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ethicalmaintenance.org.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ethicalmaintenance.co.uk.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ethicalmaintenance.org.3725a91cc01358e81525bd070-15676.sites.k-hosting.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e933d74a90000040300483046022100dfe8be785bd685b4504bacdbcf40d188dd4258279b978cfeda54bfa8b3b0c2bf0221008ce12f187bb6e3db4575b94e39587e520d4396855feb7f7640d5d749d0e60d7e00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e933d74b9000004030047304502204dd20debe46056b8c0f1dcdbdea3786fc85e78219b75f3b8873de4523b62e809022100e0e88da439ef15de43e839349f92eb0669b1e4349afa5ae0853a9b3e31d81cfd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 004157d72c86e3ecfd10fd1fe2975314eeac1179cddfde122097663eead975cbf43dd4583f16effc1c9a65460e147e5fb3a79eba5d046b6c7a30c61ca7a81f9099bbbf79d56841d488774a38126b99bc757e9067c527fb06ec746f1ecbdfb7f1b81927a4aa682a75172a0dec9c8f2b5d57c70c7e504b2b0c5d66914432af16744f7cf0eca8032fc062a1d7dc2fe7a9e2863b3d35f1f959cb0fddf3e48fd382a89ff2e775dc6387ccd735e89e370bafd92790c56273e753a34cf4a87e5c074cce49df19c02d4967e18cf869abf870223ac35ba43626f33b272c4c0a61d6bd47f0efbd8c395936e48864f86944107c21afd91ba59a64d7607f7a2589eeb595497945