www.rossroofing1950.com
Issued by R3
About this certificate
This digital certificate with serial number 03:e9:da:f2:49:48:b6:b3:d0:5b:b9:ef:82:64:06:b0:dc:86 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.rossroofing1950.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e9:da:f2:49:48:b6:b3:d0:5b:b9:ef:82:64:06:b0:dc:86Serial Number (int): 340913679013157151436469565652843801664646
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 06:b2:65:d0:4d:53:68:fd:51:8a:0b:8c:6e:4b:96:7c:f7:0a:f2:17
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ef:04:26:29:19:20:b8:49:32:ae:e1:87:ca:81:0a:83:ed:8a:fd:d9
Fingerprint (sha256): 44:dc:e2:91:2d:01:33:3d:76:95:2c:11:17:3c:09:00:2a:71:39:70:80:67:45:39:35:00:77:68:21:13:09:70
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.rossroofing1950.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.rossroofing1950.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rossroofing1950.com
www.rossroofing1950.com
www.rossroofing1950.com
Other certificates including the domain name rossroofing1950.com
(limited to 100 certificates)
www.angielewisinteriors.com
www.gileriodekel.com
www.idahohomerebates.com
www.bluegoatroofing.com
www.onlinebydesign.io
rossroofing.net
www.bluegoatroofing.com
www.nonprofitmarketing.us
rossroofing.net
www.rossroofing1950.com
www.angielewisinteriors.com
www.rossroofing1950.com
www.rossroofing1950.com
www.snaplitics.com
www.snaplitics.com
www.snaplitics.com
www.expressapplianceid.com
www.jrhbuyshouses.com
www.magicselfandspirit.com
www.bluegoatroofing.com
www.idahohomerebates.com
www.jrhbuyshouses.com
www.onlinebydesign.io
rossroofing.net
www.expressapplianceid.com
www.snaplitics.com
rossroofing.net
www.jrhbuyshouses.com
www.expressapplianceid.com
www.rossroofing1950.com
www.bluegoatroofing.com
rossroofing.net
rossroofing.net
www.magicselfandspirit.com
rossroofing.net
www.bluegoatroofing.com
www.rossroofing1950.com
www.onlinebydesign.io
www.angielewisinteriors.com
www.flatfeeidaho.com
www.angielewisinteriors.com
www.rossroofing1950.com
www.angielewisinteriors.com
rossroofing.net
www.flatfeeidaho.com
www.expressapplianceid.com
www.angielewisinteriors.com
www.snaplitics.com
rossroofing.net
www.flatfeeidaho.com
www.gileriodekel.com
www.idahohomerebates.com
www.bluegoatroofing.com
www.onlinebydesign.io
rossroofing.net
www.bluegoatroofing.com
www.nonprofitmarketing.us
rossroofing.net
www.rossroofing1950.com
www.angielewisinteriors.com
www.rossroofing1950.com
www.rossroofing1950.com
www.snaplitics.com
www.snaplitics.com
www.snaplitics.com
www.expressapplianceid.com
www.jrhbuyshouses.com
www.magicselfandspirit.com
www.bluegoatroofing.com
www.idahohomerebates.com
www.jrhbuyshouses.com
www.onlinebydesign.io
rossroofing.net
www.expressapplianceid.com
www.snaplitics.com
rossroofing.net
www.jrhbuyshouses.com
www.expressapplianceid.com
www.rossroofing1950.com
www.bluegoatroofing.com
rossroofing.net
rossroofing.net
www.magicselfandspirit.com
rossroofing.net
www.bluegoatroofing.com
www.rossroofing1950.com
www.onlinebydesign.io
www.angielewisinteriors.com
www.flatfeeidaho.com
www.angielewisinteriors.com
www.rossroofing1950.com
www.angielewisinteriors.com
rossroofing.net
www.flatfeeidaho.com
www.expressapplianceid.com
www.angielewisinteriors.com
www.snaplitics.com
rossroofing.net
www.flatfeeidaho.com
Certificate
The complete raw certificate details for www.rossroofing1950.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDjCCBPagAwIBAgISA+na8klItrPQW7nvgmQGsNyGMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMTAwNjIyNDZaFw0yNDA2MDgwNjIyNDVaMCIxIDAeBgNVBAMT F3d3dy5yb3Nzcm9vZmluZzE5NTAuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEAr4qzHnCH+cni9rE5th5FiW9f4PEtgWU36TBzS+E2/JgyolBLu8uK iCLaaS6SyYaMCc3/GI8TlEWYVYYrRurtTe+RIQ+0VUCPxxnTTJkAuD6SbNGjhCu1 i2Zzard+yhHmMOStQ+AOBE7mjBKvB7N1IKdK8fM2To2mv/wf+IKSrfDxYda4Z7SN 5eO7U57W3WlTEgmAbTRQbJBLVoY09Qs+UVc6Qep7v592YU8Ry8W3IxaoN/zFLPvc DK+5Ch4CnmVe0YAjPaW148+ovcdStmnb8kpmn/coG00yfplu5TOsMRPOZHx4NFPO LUU0+Flqc+/e5GLSXtz9F+51l2Qhcev38ZgWqRVKIzJFhCHKsk4ibjrxFKz4BJjv mVJub87whhjSTGxZ2tt0kjqDbCOmhb9hpFMRNVy8xEYSyg2O5IHWOWvqPjOqQvLK FPFWh8R51WYiLdyiYhD0Xwrs6pbVE9wEhD61QF4ELuT8htGvsNoUdcpAXColAnsi n9F8QpO7faD2U4mqUN3Zya9spJ9B36aqqe/Wi8cLYDyKhCx0n/XK/lNkpZVeyXBL p1h9qD8y+4gKAvur530z8KlO9nfQBcaRykxRMG7LYb6bXfPcL+yuj+Y0+N1vuH0s qOdZmX/OOjqaJXkh1pfvM3ZajnbfHrYjlAoePJIXpCiarDzkTvGwT+8CAwEAAaOC AiwwggIoMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUBrJl0E1TaP1RiguMbkuWfPcK 8hcwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEE STBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUH MAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wNwYDVR0RBDAwLoITcm9zc3Jvb2Zp bmcxOTUwLmNvbYIXd3d3LnJvc3Nyb29maW5nMTk1MC5jb20wEwYDVR0gBAwwCjAI BgZngQwBAgEwggECBgorBgEEAdZ5AgQCBIHzBIHwAO4AdQA7U3d1Pi25gE6LMFsG /kA7Z9hPw/THvQANLXJv4frUFwAAAY4nPh4tAAAEAwBGMEQCIAGY2JbytkhIKqXe b3P8B51fOUp9JuJu1lPEJcIqrmbmAiBiNuK9sz4VzpVeLip7FaccFbGD1wbWgPZm mmcJNndfCgB1AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjic+ HrUAAAQDAEYwRAIgXhk6duzp04g19UurXual1ZuUst5ZqBJErb9xL643FMwCIC8I El0TVT46fLjsP2zm3+jOiuP/eaI6ApxQTnu+DPKQMA0GCSqGSIb3DQEBCwUAA4IB AQAzQNu2+u1+D1dq4qMbVtEBVKC020suaJavw4IDuT1ORdTUDllPRgAjexoOABQZ JujNmVvV7Bmt5yDMjUV2rNh+ePLKAbZUTrDBomlsAdfsxN3fGGZ3gt5PfJsJw8+U 5YivPvMuIZ8+7Dw9ofvqNzdIeO5wFHGBztWnICElYTFvqyDJtxPyvVsVVz8LBIx9 JTuDbgipQU+7htrtlLiPBzDHY2TvvwSrMLV1K0ASnoiEyWje15V71wgy1PS7GovA +0XmedyM7L4dw3uXNnbHnBArjU2APyGLhD3yHOmE2vVIBzrmJkdFpwmPQggkCQc4 fmocB0PM2xiZ5ZBzplN+hhdj -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAr4qzHnCH+cni9rE5th5F iW9f4PEtgWU36TBzS+E2/JgyolBLu8uKiCLaaS6SyYaMCc3/GI8TlEWYVYYrRurt Te+RIQ+0VUCPxxnTTJkAuD6SbNGjhCu1i2Zzard+yhHmMOStQ+AOBE7mjBKvB7N1 IKdK8fM2To2mv/wf+IKSrfDxYda4Z7SN5eO7U57W3WlTEgmAbTRQbJBLVoY09Qs+ UVc6Qep7v592YU8Ry8W3IxaoN/zFLPvcDK+5Ch4CnmVe0YAjPaW148+ovcdStmnb 8kpmn/coG00yfplu5TOsMRPOZHx4NFPOLUU0+Flqc+/e5GLSXtz9F+51l2Qhcev3 8ZgWqRVKIzJFhCHKsk4ibjrxFKz4BJjvmVJub87whhjSTGxZ2tt0kjqDbCOmhb9h pFMRNVy8xEYSyg2O5IHWOWvqPjOqQvLKFPFWh8R51WYiLdyiYhD0Xwrs6pbVE9wE hD61QF4ELuT8htGvsNoUdcpAXColAnsin9F8QpO7faD2U4mqUN3Zya9spJ9B36aq qe/Wi8cLYDyKhCx0n/XK/lNkpZVeyXBLp1h9qD8y+4gKAvur530z8KlO9nfQBcaR ykxRMG7LYb6bXfPcL+yuj+Y0+N1vuH0sqOdZmX/OOjqaJXkh1pfvM3ZajnbfHrYj lAoePJIXpCiarDzkTvGwT+8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 340913679013157151436469565652843801664646 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-10 06:22:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-08 06:22:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.rossroofing1950.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 716148045262463756979453213081525992486055384715795625202228976729467859019594069872409681928197620045626236224213227975276233740690022519609215925052049793294421425387509903204286713500555404901751184117151269603286540546937802540346912261553561467943758308103389542641543644329730332470243681696926418608917613829195106343505039525076448343235199853085555678564283313211291387805296151686065724158993871552286021270906732827542537455803694044529547865313107185640037243993002008522307827739087853503105328361689228426723222219688825129407037188640719827572479906181005354428855536472738457600972576996139665919092366859146002513972806825032029787550464345077153447897944359973718266291323910146707883210880060618787607765905942736998998307783938675306713500834166942258238875892661639059892795724231123564112162894379445150317710924658056582600859661533312130680728383765726972124748051851284026815240886927381852661848756763963740752845033301626362568028639646084168961265150568310036782933900939966679475973969620568687440389368400670361139181554899086334557038395640986241099285980202859997476782675016233618702816598508282886685156609609233446959138810511110942509427258959881183879344674760543976812861186208773590417474080751 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 06b265d04d5368fd518a0b8c6e4b967cf70af217 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rossroofing1950.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rossroofing1950.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e273e1e2d000004030046304402200198d896f2b648482aa5de6f73fc079d5f394a7d26e26ed653c425c22aae66e602206236e2bdb33e15ce955e2e2a7b15a71c15b183d706d680f6669a670936775f0a007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e273e1eb5000004030046304402205e193a76ece9d38835f54bab5ee6a5d59b94b2de59a81244adbf712fae3714cc02202f08125d13553e3a7cb8ec3f6ce6dfe8ce8ae3ff79a23a029c504e7bbe0cf290 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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