fpf.pitools.org
Issued by R3
About this certificate
This digital certificate with serial number 03:71:6b:de:2f:19:7c:fc:2e:fb:89:69:80:e4:79:bc:89:91 was issued on by Let's Encrypt.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=fpf.pitools.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:71:6b:de:2f:19:7c:fc:2e:fb:89:69:80:e4:79:bc:89:91Serial Number (int): 299932146298091003488245670874935497361809
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 35:cc:13:d9:2c:c4:86:c8:eb:bb:84:ae:b2:1a:a8:03:17:0a:1f:cf
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e6:fb:f4:bf:07:51:fc:d5:8e:1f:61:b0:52:c2:b5:92:02:b9:dc:fb
Fingerprint (sha256): 3c:bd:9b:33:44:fd:08:1b:4f:a2:a4:65:b6:dc:81:5c:cb:0f:3d:c2:9f:23:7f:59:be:ff:a8:5d:af:ca:bb:90
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate fpf.pitools.org
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fpf.pitools.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
buyingsellingmarketplace.com
exchangedchurch.com
fpf.pitools.org
giraffemeat.com
hornyhospital.com
mark.istlm.com
matthewsdentistry.com
ministryofgoodhealth.com
oestringen.com
preparedbuyercourse.com
resellrightscatalog.com
russetpotato.com
www.patking.com
exchangedchurch.com
fpf.pitools.org
giraffemeat.com
hornyhospital.com
mark.istlm.com
matthewsdentistry.com
ministryofgoodhealth.com
oestringen.com
preparedbuyercourse.com
resellrightscatalog.com
russetpotato.com
www.patking.com
Other certificates including the domain name pitools.org
(limited to 100 certificates)
htp.hacker.rehab
projectbluebook.llc
www.faithfullyeducatingamerica.org
performancecalendar.com.sexerencontre.be
fpf.pitools.org
canibuild.world
accountabilitygroup.ca
purcahse.ogden.gold
enerpactoolsgroup.de
cyan.pitools.org
membership.cdnsoilex.ca
templar.vc
manahyl.org
www.mostamazingbook.org
fpf.pitools.org
jui.pitools.org
onlinebestellung.info.privatenetworkmarketing.org
fpf.pitools.org
pitools.org
sanl.co.za
sexerencontres.be
schoolhousemarketing.org
jui.pitools.org
programming.vc
containerhouse.online
shadi.world
www.pitools.org
awakenedrecruitment.ca
houstonroboticsclub.org
timwiens.ca
audio.bible
dumptruck.ca
canadianbiblesociety.ca
arbitrageur.vc
zatv.co.za
cyan.pitools.org
www.gameinn.org
www.pitools.org
www.mostamazingbook.org
pitools.org
allaboutltc.org
fpf.pitools.org
modmed.org
pitools.org
projectbluebook.llc
www.faithfullyeducatingamerica.org
performancecalendar.com.sexerencontre.be
fpf.pitools.org
canibuild.world
accountabilitygroup.ca
purcahse.ogden.gold
enerpactoolsgroup.de
cyan.pitools.org
membership.cdnsoilex.ca
templar.vc
manahyl.org
www.mostamazingbook.org
fpf.pitools.org
jui.pitools.org
onlinebestellung.info.privatenetworkmarketing.org
fpf.pitools.org
pitools.org
sanl.co.za
sexerencontres.be
schoolhousemarketing.org
jui.pitools.org
programming.vc
containerhouse.online
shadi.world
www.pitools.org
awakenedrecruitment.ca
houstonroboticsclub.org
timwiens.ca
audio.bible
dumptruck.ca
canadianbiblesociety.ca
arbitrageur.vc
zatv.co.za
cyan.pitools.org
www.gameinn.org
www.pitools.org
www.mostamazingbook.org
pitools.org
allaboutltc.org
fpf.pitools.org
modmed.org
pitools.org
Certificate
The complete raw certificate details for fpf.pitools.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7jCCBNagAwIBAgISA3Fr3i8ZfPwu+4lpgOR5vImRMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTUxNDQ5NTZaFw0yNDA3MTQxNDQ5NTVaMBoxGDAWBgNVBAMT D2ZwZi5waXRvb2xzLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALdvsEEXds4xfwOzP9Tn/hXzhTI2TUybe63JSZVnBOxFm6NBcEi0o7JSH7ugS4kX pfxJB7qRw+feMRccvJtLVUV1xEzvmzkfkttN13QzmeDMHz2CsVWDSrvlipC/wq4h iyz8UBYzXnY5qAh/bamaLzBcGEpCnHkTQfjznuP09+3ve1MzYidYQojenfs/yUaF SXK34UtoBxEVS9yaUOXp9OPYP15LeAaaTDEaWphqA3gIR3XK+8NyaQhukp+dp+W3 u9pFEL9dkQ8X5JUD8qx9H3n/JhSpj8MnWFwUxcJMw8KysdAKQfQN7mcU7wLmP+sD 49c4RmpPpHoxV4uMFJoStIsCAwEAAaOCAxQwggMQMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUNcwT2SzEhsjru4SushqoAxcKH88wHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wggEbBgNVHREEggESMIIBDoIcYnV5aW5nc2VsbGluZ21hcmtldHBsYWNlLmNv bYITZXhjaGFuZ2VkY2h1cmNoLmNvbYIPZnBmLnBpdG9vbHMub3Jngg9naXJhZmZl bWVhdC5jb22CEWhvcm55aG9zcGl0YWwuY29tgg5tYXJrLmlzdGxtLmNvbYIVbWF0 dGhld3NkZW50aXN0cnkuY29tghhtaW5pc3RyeW9mZ29vZGhlYWx0aC5jb22CDm9l c3RyaW5nZW4uY29tghdwcmVwYXJlZGJ1eWVyY291cnNlLmNvbYIXcmVzZWxscmln aHRzY2F0YWxvZy5jb22CEHJ1c3NldHBvdGF0by5jb22CD3d3dy5wYXRraW5nLmNv bTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjuJzYawAAAQDAEcw RQIhAIL1hZ8acpt0wmHc2qQc1Jhi2e24+be6xb0c37mwHFZlAiA+PR8/tDJM1dRC rcB8b4NkyUjekFs/BHyf8JoyAjOJ/gB2AHb/iD8KtvuVUcJhzPWHujS0pM27Kdxo Qgqf5mdMWjp0AAABjuJzYf4AAAQDAEcwRQIhAKqdswqyno9PYXNRpvAg4omKqlky 3EQJTWWfmSpBE/j+AiBwaJ81moc0FjvlWuz3Y3uDedm3KDWw7bHG38CHjLg4AjAN BgkqhkiG9w0BAQsFAAOCAQEADabxmnbmlM9Hf8F7JBGwemh3AaEW6COazgXZvatV Fx8+wyZQQY5m6xNM2kdEc+DkFcWZJmBIK+boPQ0hkVdzADlwSxPonG+GBAPJ4n0f KoPNms/J1uIcxiGhlJxrpXc0IDYOwHpHnsbVzeVhWzDeL1dW5MrwG9it4L5YzJfy Vt7926KgHoKa7Egwv/wcYCoPYuNKEauPkRroyrrYVY+uAxxajc7e+x34ASUIGgY5 /xcKJT4pI8b46ht49V+MERclKrGko7DWovMjOGZHaStVgS6WqRU2vencFXboIXG4 B5XKvNqhOWv3SSpk8t3T5au3ro2NqEctOeolN9pF4yoZIA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2+wQRd2zjF/A7M/1Of+ FfOFMjZNTJt7rclJlWcE7EWbo0FwSLSjslIfu6BLiRel/EkHupHD594xFxy8m0tV RXXETO+bOR+S203XdDOZ4MwfPYKxVYNKu+WKkL/CriGLLPxQFjNedjmoCH9tqZov MFwYSkKceRNB+POe4/T37e97UzNiJ1hCiN6d+z/JRoVJcrfhS2gHERVL3JpQ5en0 49g/Xkt4BppMMRpamGoDeAhHdcr7w3JpCG6Sn52n5be72kUQv12RDxfklQPyrH0f ef8mFKmPwydYXBTFwkzDwrKx0ApB9A3uZxTvAuY/6wPj1zhGak+kejFXi4wUmhK0 iwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 299932146298091003488245670874935497361809 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-15 14:49:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-14 14:49:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fpf.pitools.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23156685457492977618228060193333274939059276614655327095535196801537140380942162583607368532133690380930640110147299322866550524625679520889133263410768392848572945703936818729398445111144264053329665721942497614200551686392025729955942421643115390919307799107287904721377748212184502750357852310042971787309732664642505812025681994304528402553573291839421693416505102496718057609913550372689173731692973400153626138630507656707896636121938963726404420128257563923520009553755123319926739351685430584647933173875366244504871225716465938087182845355686637864757008343600676126766012297762415919545921963198689666315403 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 35cc13d92cc486c8ebbb84aeb21aa803170a1fcf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (274 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'buyingsellingmarketplace.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exchangedchurch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fpf.pitools.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giraffemeat.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hornyhospital.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mark.istlm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'matthewsdentistry.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ministryofgoodhealth.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oestringen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preparedbuyercourse.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resellrightscatalog.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'russetpotato.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.patking.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ee27361ac000004030047304502210082f5859f1a729b74c261dcdaa41cd49862d9edb8f9b7bac5bd1cdfb9b01c566502203e3d1f3fb4324cd5d442adc07c6f8364c948de905b3f047c9ff09a32023389fe00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ee27361fe0000040300473045022100aa9db30ab29e8f4f617351a6f020e2898aaa5932dc44094d659f992a4113f8fe022070689f359a8734163be55aecf7637b8379d9b72835b0edb1c6dfc0878cb83802 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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