eph-uio.uhad.no

Issued by TERENA SSL CA 2

About this certificate

This digital certificate with serial number 8e:0e:9c:43:a2:a1:40:a2:c9:20:ad:33:5a:89:7b:58 was issued on by TERENA.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=eph-uio.uhad.no,OU=Domain Control Validated

TERENA

Organization: TERENA
State / Province: Noord-Holland
Locality: Amsterdam
Country: NL

This certificate has expire since

Certificate Details

Serial Number (hex): 8e:0e:9c:43:a2:a1:40:a2:c9:20:ad:33:5a:89:7b:58
Serial Number (int): 188826236971994113537772858112798718808
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 8b:57:59:da:0e:64:47:05:21:10:85:a5:75:90:b9:3c:01:55:59:36
AuthorityKeyId: 5b:d0:8a:1c:9a:32:5b:e0:b5:dd:96:54:1b:e1:86:28:b0:fd:b6:bd

Fingerprint (sha1): b5:f6:81:43:af:bd:d8:1f:29:e8:a7:a5:61:34:ce:57:87:de:51:87
Fingerprint (sha256): 41:b0:fc:13:ea:cb:d7:a5:7b:15:74:da:fc:49:6c:c2:a6:ab:14:32:a3:63:7b:6a:c3:ac:d2:09:07:7e:fb:21

Issuing Certificate URL: http://crt.usertrust.com/TERENASSLCA2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.usertrust.com/TERENASSLCA2.crl

Check the revocation status for certificate eph-uio.uhad.no

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for eph-uio.uhad.no

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

eph-uio.uhad.no

Other certificates including the domain name uhad.no

(limited to 100 certificates)
sip.s2.l.uhad.no
ubw-web-t02.uhad.no
uhskypepool02.uhad.no
uhskypepool02.uhad.no
sip.s2.l.uhad.no
rdweb01.uhad.no
uhskypepool01.uhad.no
uhskypepool02.uhad.no
uhskypepool01.uhad.no
uhskypepool01.uhad.no
uhskypepool02.uhad.no
uhskypepool01.uhad.no
uhskypewaspool02.uhad.no
triopool1.uhad.no
triopool1.uhad.no
rdweb01.uhad.no
prudens.uhad.no
sip.s1.l.uhad.no
uhskypepool02.uhad.no
sip.s2.l.uhad.no
uhskypepool02.uhad.no
sip.s2.l.uhad.no
sip.s2.l.uhad.no
uhskypeedgepool01.uhad.no
sip.s2.l.uhad.no
uhskypepool01.uhad.no
uhad.no
uhskypepool01.uhad.no
uhskypepool01.uhad.no
rdlager01.uhad.no
uhskypepool02.uhad.no
uhskypemedpool02.uhad.no
uhskypewaspool01.uhad.no
uhskypeedgepool02.uhad.no
tos-compe.uhad.no
uhskypepool01.uhad.no
uhskypepool01.uhad.no
rdgateway01.utv.uhad.no
uhskypepool01.uhad.no
uhskypepool01.uhad.no
uhskypepool02.uhad.no
uhskypepool02.uhad.no
eph-uio.uhad.no
uhskypepool01.uhad.no
sip.s1.l.uhad.no
uhskypepool02.uhad.no
adfs.uhad.no
uhskypepool02.uhad.no
rdweb02.uhad.no
sip.s2.l.uhad.no
uhskypepool02.uhad.no
uhaddc02.uhad.no
sip.s2.l.uhad.no
crl.uhad.no
adfs.uhad.no
prudens-utv.uhad.no
prudens.uhad.no
uhskypepool01.uhad.no
rapport-utv.uhad.no
rdweb01.uhad.no
uhskypepool02.uhad.no
ubw-web-p04.uhad.no
uhskypepool01.uhad.no
prudens.uhad.no
sccm-ps01.uhad.no
uhskypewaspool02.uhad.no
uhskypepool02.uhad.no
sip.s1.l.uhad.no
uhskypepool02.uhad.no
adfs.uhad.no
sip.s1.l.uhad.no
sip.s1.l.uhad.no
sip.s2.l.uhad.no
uhskypepool02.uhad.no
prudens-utv.uhad.no
uhskypepool01.uhad.no
uhskypewaspool02.uhad.no
uhaddc01.uhad.no
uhskypepool01.uhad.no
prudens.uhad.no
uhskypepool01.uhad.no
uhskypepool02.uhad.no
uhskypepool02.uhad.no
uhskypemedpool02.uhad.no
adfs.uhad.no
uhskypepool02.uhad.no
uhskypepool01.uhad.no
uhskypepool02.uhad.no
uhskypewaspool01.uhad.no
rapport-tst.uhad.no
uhskypepool02.uhad.no
uhskypepool01.uhad.no
uhskypepool01.uhad.no
uhskypewaspool01.uhad.no
rdweb01.uhad.no
uhskypepool01.uhad.no
rdgateway01.uhad.no
uhskypepool01.uhad.no
uhskypepool01.uhad.no
uhskypepool01.uhad.no

Certificate

The complete raw certificate details for eph-uio.uhad.no in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIEmTCCA4GgAwIBAgIRAI4OnEOioUCiySCtM1qJe1gwDQYJKoZIhvcNAQELBQAw
ZDELMAkGA1UEBhMCTkwxFjAUBgNVBAgTDU5vb3JkLUhvbGxhbmQxEjAQBgNVBAcT
CUFtc3RlcmRhbTEPMA0GA1UEChMGVEVSRU5BMRgwFgYDVQQDEw9URVJFTkEgU1NM
IENBIDIwHhcNMTUwMjIzMDAwMDAwWhcNMTgwMjIyMjM1OTU5WjA9MSEwHwYDVQQL
ExhEb21haW4gQ29udHJvbCBWYWxpZGF0ZWQxGDAWBgNVBAMTD2VwaC11aW8udWhh
ZC5ubzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALInTvUUrTVn7+Pg
U+4yz7JHAEaVVz+d5t+rWx1rkm4AUfHi9nx7UfrWlIROZfvU9n/qHZnxsMDyLfsI
sEpTU7KnZbbATDCxErwKEm3nQp1MwF1fo1+OCuQL2zyVcg1ttGTHCTA5C9Oi2+Mo
fM50TC3jsYnCxttRiFlv+yRlU8v1bJFAelfN5NCjDdcSIXxzWbQdU139lmTRYvqZ
1ETGG/7VrwWw4kBV1Oxqe/oUG8wR1fajmQTyiKWvDb/cTRfrAbdnOjJgKZD7me+m
jC2ql81JeM21RWk4yiFJgAOiRpCmX5b4EkqlMSn6EMf/lKbwSvkMsuqxt0yBrwjN
JQewdlUCAwEAAaOCAWswggFnMB8GA1UdIwQYMBaAFFvQihyaMlvgtd2WVBvhhiiw
/ba9MB0GA1UdDgQWBBSLV1naDmRHBSEQhaV1kLk8AVVZNjAOBgNVHQ8BAf8EBAMC
BaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw
IgYDVR0gBBswGTANBgsrBgEEAbIxAQICHTAIBgZngQwBAgEwOgYDVR0fBDMwMTAv
oC2gK4YpaHR0cDovL2NybC51c2VydHJ1c3QuY29tL1RFUkVOQVNTTENBMi5jcmww
bAYIKwYBBQUHAQEEYDBeMDUGCCsGAQUFBzAChilodHRwOi8vY3J0LnVzZXJ0cnVz
dC5jb20vVEVSRU5BU1NMQ0EyLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3Au
dXNlcnRydXN0LmNvbTAaBgNVHREEEzARgg9lcGgtdWlvLnVoYWQubm8wDQYJKoZI
hvcNAQELBQADggEBABtXD7E4GFAVsefFRYLz2v2iJ+0ZLkRZBO/gnx3HRvyLIWwg
FpE4fCysycJCUJ5BIftl+jm6Fb2qnnV/gsKfiodicgMHgJ/1E7IWM2C3uHcuexmp
oextO59KSHrXjM7Q46ujBUZiWRbb2W0+FuJF0V81QC9vu22ClBmwZT1/kLCc5pYc
R9KZvHhuQpTKAANvf8DDBlgz1ywPf6yCfYZ3BNjs+ADwYi53nrZVuyOKJ2cBgXnW
X83Pr1J4dE4+cPaWFN17NhZLSQsYJRwwrGNtRfiSTecUPK2ksRhedBuTNKXi24J7
fB/6U15SuugIQCgwQODAAkr1GQVRj2QI9YQ5lnE=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsidO9RStNWfv4+BT7jLP
skcARpVXP53m36tbHWuSbgBR8eL2fHtR+taUhE5l+9T2f+odmfGwwPIt+wiwSlNT
sqdltsBMMLESvAoSbedCnUzAXV+jX44K5AvbPJVyDW20ZMcJMDkL06Lb4yh8znRM
LeOxicLG21GIWW/7JGVTy/VskUB6V83k0KMN1xIhfHNZtB1TXf2WZNFi+pnURMYb
/tWvBbDiQFXU7Gp7+hQbzBHV9qOZBPKIpa8Nv9xNF+sBt2c6MmApkPuZ76aMLaqX
zUl4zbVFaTjKIUmAA6JGkKZflvgSSqUxKfoQx/+UpvBK+Qyy6rG3TIGvCM0lB7B2
VQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 188826236971994113537772858112798718808
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-02-23 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-22 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'eph-uio.uhad.no'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22489801991819754402106207055121341571598981176644830515221148229968194713239487734794793459306467486530964481600351817297845649744123665443606098831124105286982632039580512793248085742229135000022420507199227282764269976352620643964604555766159720059751178476954941157802700715228039525697511505761088383110190091321457424232131913059907885035915335377929525895113083183870426853828344732877896935276998744402237359668346049656356948591621250962741254605286923983892272496178480788826780302974308175847609734086358503093069152216478621115109838386499430893760358406738981635965461634330981664788184765420803416159829
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5bd08a1c9a325be0b5dd96541be18628b0fdb6bd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8b5759da0e644705211085a57590b93c01555936
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.29
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/TERENASSLCA2.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/TERENASSLCA2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eph-uio.uhad.no'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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