rmk.ee
Issued by R3
About this certificate
This digital certificate with serial number 03:99:af:40:66:3c:d3:12:8c:8c:08:22:1b:6b:98:80:b3:04 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rmk.ee
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:99:af:40:66:3c:d3:12:8c:8c:08:22:1b:6b:98:80:b3:04Serial Number (int): 313633009214070424441272143836151107597060
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 82:2c:86:70:72:1e:c0:42:8f:0d:f2:bc:58:64:aa:32:75:77:80:e3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 01:0b:e6:96:ca:26:d0:81:08:00:52:23:ed:74:39:3a:e5:1c:4d:18
Fingerprint (sha256): 41:e3:48:ff:e3:5a:a1:d6:86:8a:b6:f1:45:5f:98:e3:1f:15:06:46:e9:fe:0d:5e:39:0d:5f:9d:63:eb:c9:0e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate rmk.ee
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rmk.ee
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rmk.ee
www.rmk.ee
www.rmk.ee
Other certificates including the domain name rmk.ee
(limited to 100 certificates)
customerportal.uk.rlb.com
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
*.rmk.ee
rmk-mobile-app-service.rmk.ee
yritused.rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
*.rmk.ee
rmk-mobile-app-service.rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
filesender2.rmk.ee
*.rmk.ee
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
*.rmk.ee
yritused.rmk.ee
yritused.rmk.ee
rmk.ee
ep.rmk.ee
rmk.ee
*.rmk.ee
filesender2.rmk.ee
filesender2.rmk.ee
rmk.ee
sslvpn.rmk.ee
*.rmk.ee
kampaania.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
*.rmk.ee
rmk.ee
it.rmk.ee
maksed.rmk.ee
it.rmk.ee
customerportal.uk.rlb.com
rmk.ee
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
rmk.ee
customerportal.uk.rlb.com
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
wfprwpa.rcs.it
*.rmk.ee
rmk.ee
puidumyykproxy.rmk.ee
rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
kampaania.rmk.ee
customerportal.uk.rlb.com
kampaania.rmk.ee
rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
kampaania.rmk.ee
rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
rmk.ee
kampaania.rmk.ee
*.rmk.ee
kampaania.rmk.ee
kampaania.rmk.ee
it.rmk.ee
*.rmk.ee
filesender2.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
rmk.ee
kampaania.rmk.ee
it.rmk.ee
rmk-mobile-app-service.rmk.ee
*.rmk.ee
kampaania.rmk.ee
wfprwpa.rcs.it
kampaania.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
*.rmk.ee
rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
*.rmk.ee
rmk-mobile-app-service.rmk.ee
yritused.rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
*.rmk.ee
rmk-mobile-app-service.rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
filesender2.rmk.ee
*.rmk.ee
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
*.rmk.ee
yritused.rmk.ee
yritused.rmk.ee
rmk.ee
ep.rmk.ee
rmk.ee
*.rmk.ee
filesender2.rmk.ee
filesender2.rmk.ee
rmk.ee
sslvpn.rmk.ee
*.rmk.ee
kampaania.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
*.rmk.ee
rmk.ee
it.rmk.ee
maksed.rmk.ee
it.rmk.ee
customerportal.uk.rlb.com
rmk.ee
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
rmk.ee
customerportal.uk.rlb.com
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
wfprwpa.rcs.it
*.rmk.ee
rmk.ee
puidumyykproxy.rmk.ee
rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
kampaania.rmk.ee
customerportal.uk.rlb.com
kampaania.rmk.ee
rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
kampaania.rmk.ee
rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
rmk.ee
kampaania.rmk.ee
*.rmk.ee
kampaania.rmk.ee
kampaania.rmk.ee
it.rmk.ee
*.rmk.ee
filesender2.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
rmk.ee
kampaania.rmk.ee
it.rmk.ee
rmk-mobile-app-service.rmk.ee
*.rmk.ee
kampaania.rmk.ee
wfprwpa.rcs.it
kampaania.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
*.rmk.ee
rmk.ee
customerportal.uk.rlb.com
Certificate
The complete raw certificate details for rmk.ee in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgISA5mvQGY80xKMjAgiG2uYgLMEMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA4MjAyMTE4MTdaFw0yMzExMTgyMTE4MTZaMBExDzANBgNVBAMT BnJtay5lZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM6mStcII7z7 2+YdVYpmQyKP9KVf/WoLzcH3+2sHvaOo9XNgiE47Zvbf25TGsBG7sQOABm2eLcmL BpETTBLkkndcJ2ZfqG97mrq0fRMxJmNlHx344XpM9UaBYxnDsHzPs6DbvwtAFRzZ n6asIV6YlbF2UuMQPWKz3d247K2uX3vSs3bne3vaUeVa7F3kcirQKfZ4tJR3NOze 4yGfbwGNeGj4zXboiB5piOmOGRgV+80DvF1t61lp8+m9D/7+WQZqnGxgzQ7rr6UK NLfbI/T+4QwXzH1C4tDTkhHEqOrRLU6afd+iVenZqCh07afIlLK4nP+yRb8mzKpJ 4TAEUJ58fNcCAwEAAaOCAhQwggIQMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUgiyG cHIewEKPDfK8WGSqMnV3gOMwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsU wsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5j ci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wHQYDVR0R BBYwFIIGcm1rLmVlggp3d3cucm1rLmVlMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIB BAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvS K8E6V6NS61IAAAGKFQcJgAAABAMARzBFAiAE7Zhbx5Q2jbse4Osp+2VyoQxJ1aVD 24oFjz1dEeZAxgIhAL5CxkWlMQKqFwxSqSjIwBQP2KYETrxzmuNZjeveM4kdAHYA rfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWGNOvcgooAAAGKFQcJlAAABAMARzBF AiEAz+vcw2oaw17bADzsarc0HQCZkSe1fHzagB3qICHuf70CIDrKnGkCTrWI7G1+ V+ZHOBMR9CDlVHdxN2VZFQ1kbjtrMA0GCSqGSIb3DQEBCwUAA4IBAQBy4iot1l7j R0DVSD9y/mHhl9N+OdIIKVPIt7gRew/0OE9iAbVvyFrqLOGyp7G6Hr6ON39DD0bm 9yISD6bX53KANNH9GOjsj5CMbbqd7h+GXCFZ0OkVFKdfSfEmtCe2co6txx6xbqcS CLW0i/HTMcuKwAL+ZtTnIzbuhdOd6YILHEzp6pB+ajZgPxIiipA+mh0Cph80c48l X8DO9/kFnWXhD/eVOsmTYNb1Bwl9J5SRORmU24TvUj3pHZa8jEHLhvwWQCSa658j 3JpE8OLPpWNP5p0TaAL4ixxu7oDAEOca2cWGePF2fqgSkSRDSa8nXxZBS/cmbRyN PRFoqprtn5Dn -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqZK1wgjvPvb5h1VimZD Io/0pV/9agvNwff7awe9o6j1c2CITjtm9t/blMawEbuxA4AGbZ4tyYsGkRNMEuSS d1wnZl+ob3uaurR9EzEmY2UfHfjhekz1RoFjGcOwfM+zoNu/C0AVHNmfpqwhXpiV sXZS4xA9YrPd3bjsra5fe9Kzdud7e9pR5VrsXeRyKtAp9ni0lHc07N7jIZ9vAY14 aPjNduiIHmmI6Y4ZGBX7zQO8XW3rWWnz6b0P/v5ZBmqcbGDNDuuvpQo0t9sj9P7h DBfMfULi0NOSEcSo6tEtTpp936JV6dmoKHTtp8iUsric/7JFvybMqknhMARQnnx8 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 313633009214070424441272143836151107597060 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-20 21:18:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-18 21:18:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rmk.ee' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26087092633898814247160513620089381783408201359336421901223069785026329916938735309561709138044520521578564284071797196988315799700690971100413965611149088496450970146304973117805443638499985247747315151557527381781506870399319414319678980500778351040328922861455522330079254759326566087187769377674098627851354322368228025212757280794453843088223191640741451031767848170696820934860412214235584843187890583230289583093532022351867412023970582205461252206431198934896805681584683175437384634795312114740188415878777382493489167646111308402474987353716974321872021638433968129144518581964479434472227584437935450914007 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 822c8670721ec0428f0df2bc5864aa32757780e3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rmk.ee' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rmk.ee' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a150709800000040300473045022004ed985bc794368dbb1ee0eb29fb6572a10c49d5a543db8a058f3d5d11e640c6022100be42c645a53102aa170c52a928c8c0140fd8a6044ebc739ae3598debde33891d007600adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018a150709940000040300473045022100cfebdcc36a1ac35edb003cec6ab7341d00999127b57c7cda801dea2021ee7fbd02203aca9c69024eb588ec6d7e57e647381311f420e5547771376559150d646e3b6b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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