purchasepointe-test.spark-staging.dev
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:52:dd:f5:bc:84:6a:62:f7:0f:1a:1b:19:8f:37:e5:f6:1e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=purchasepointe-test.spark-staging.dev
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:52:dd:f5:bc:84:6a:62:f7:0f:1a:1b:19:8f:37:e5:f6:1eSerial Number (int): 289535047206180549375420568279580863231518
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 82:55:8b:7a:29:ef:fd:9a:1d:f8:46:09:ce:de:e7:53:c0:b1:04:9c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): de:ec:eb:03:b0:97:54:7f:b8:ea:f4:ee:39:dd:1e:30:b7:63:0d:c8
Fingerprint (sha256): 45:77:34:3d:ed:30:41:87:48:61:07:43:12:9f:5c:c9:9c:bf:c5:c0:7a:c8:13:86:48:71:9b:d5:df:36:c1:ab
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate purchasepointe-test.spark-staging.dev
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for purchasepointe-test.spark-staging.dev
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
purchasepointe-test.spark-staging.dev
Other certificates including the domain name spark-staging.dev
(limited to 100 certificates)
app.my-guitar-tabs.com
inventory.carehomeshopping.com
www.zonaextrema.com.br
bazen.spark-staging.dev
www.jaydonnell.com
reports.farmart.co
www.chowgrabber.com
extramoneytunnel.com
kerstnachtdiensthasselt.nl
bazen.spark-staging.dev
eganhub.spark-staging.dev
pixis.eganhub.spark-staging.dev
hub.spark-staging.dev
api.mcm.spark-staging.dev
www.okdsc.com
www.fhirnative.com
auth-dev.swiftchatting.com
purchasepointe-test.spark-staging.dev
rewards.digitaldesignsdentallab.com
laborworx.spark-staging.dev
app.staging.xapobank.com
link.thepaint.art
www.zonaextrema.com.br
espoonstarwash.fi
www.shooniyh.com
data.estabiom.pl
centraltile.spark-staging.dev
surajconfectionery.com
www.jobayerislam.com
purchasepointe.spark-staging.dev
lexion.earth
klicks.uvarma.com
purchasepointe.spark-staging.dev
purchasepointe.spark-staging.dev
api.eganhub.spark-staging.dev
app.my-guitar-tabs.com
field-course.forestdesigner.com
www.rajeshkhetan.com
extramoneytunnel.com
purchasepointe-pixis.spark-staging.dev
field-course.forestdesigner.com
precision-wall.spark-staging.dev
report.ftrustee.com.br
www.shooniyh.com
element78.spark-staging.dev
kiran-tokens.ashva.app
base.spark-staging.dev
agent.oipcsp.in
trendzy.fr
csmgate.spark-staging.dev
poweroutage.atco.com
goerli.marketplace.openblox.io
app.staging.xapobank.com
laborworx.spark-staging.dev
www.adaptivetalent.com.au
admin.trisekt.com
reports.farmart.co
www.courseconsole.org
www.h9l.dev
proservices.spark-staging.dev
fetzer3.spark-staging.dev
csmgate.spark-staging.dev
inventory.carehomeshopping.com
inventory.carehomeshopping.com
www.zonaextrema.com.br
bazen.spark-staging.dev
www.jaydonnell.com
reports.farmart.co
www.chowgrabber.com
extramoneytunnel.com
kerstnachtdiensthasselt.nl
bazen.spark-staging.dev
eganhub.spark-staging.dev
pixis.eganhub.spark-staging.dev
hub.spark-staging.dev
api.mcm.spark-staging.dev
www.okdsc.com
www.fhirnative.com
auth-dev.swiftchatting.com
purchasepointe-test.spark-staging.dev
rewards.digitaldesignsdentallab.com
laborworx.spark-staging.dev
app.staging.xapobank.com
link.thepaint.art
www.zonaextrema.com.br
espoonstarwash.fi
www.shooniyh.com
data.estabiom.pl
centraltile.spark-staging.dev
surajconfectionery.com
www.jobayerislam.com
purchasepointe.spark-staging.dev
lexion.earth
klicks.uvarma.com
purchasepointe.spark-staging.dev
purchasepointe.spark-staging.dev
api.eganhub.spark-staging.dev
app.my-guitar-tabs.com
field-course.forestdesigner.com
www.rajeshkhetan.com
extramoneytunnel.com
purchasepointe-pixis.spark-staging.dev
field-course.forestdesigner.com
precision-wall.spark-staging.dev
report.ftrustee.com.br
www.shooniyh.com
element78.spark-staging.dev
kiran-tokens.ashva.app
base.spark-staging.dev
agent.oipcsp.in
trendzy.fr
csmgate.spark-staging.dev
poweroutage.atco.com
goerli.marketplace.openblox.io
app.staging.xapobank.com
laborworx.spark-staging.dev
www.adaptivetalent.com.au
admin.trisekt.com
reports.farmart.co
www.courseconsole.org
www.h9l.dev
proservices.spark-staging.dev
fetzer3.spark-staging.dev
csmgate.spark-staging.dev
inventory.carehomeshopping.com
Certificate
The complete raw certificate details for purchasepointe-test.spark-staging.dev in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgISA1Ld9byEamL3DxobGY835fYeMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDkxMzA3NDBaFw0y MDAzMDgxMzA3NDBaMDAxLjAsBgNVBAMTJXB1cmNoYXNlcG9pbnRlLXRlc3Quc3Bh cmstc3RhZ2luZy5kZXYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU zsn7b/yqgJWT/JokleRII87A4X7AzzJsLENccC4DvjrAySH7m79/BSke9F6l15jP f8Bh97AYEWOIlIDntWdVKlxkM/6LYfHrDaEt+MhwJru9sdomOxoyClY5gD7h8Dsh ZXQIMVRBwFth5LIwB7Autq13BdT8pXQRWsDtRjQidDAiFj6JHkzO+UFNMEvT0g44 WmQUcRT4JPmXisqY1MzV6KenhTOF3KURsewo8UKWvP4RR3Fh5UXY4m2eRA+R57kN 59eZL5irjs7e1v8IwiH8y4pWfSSwhq5onkPXVcENvn53yvwGGs/UZkYzd0KzhyD4 abHx2cyvJlWEiwGdgDa5AgMBAAGjggJ5MIICdTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFIJVi3op7/2aHfhGCc7e51PAsQScMB8GA1UdIwQYMBaAFKhKamMEfd265tE5 t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29j c3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2Nl cnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wMAYDVR0RBCkwJ4IlcHVyY2hhc2Vw b2ludGUtdGVzdC5zcGFyay1zdGFnaW5nLmRldjBMBgNVHSAERTBDMAgGBmeBDAEC ATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNl bmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AG9Tdqwx8DEZ2JkA pFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABbur8uFsAAAQDAEYwRAIgAgMnOckgSaF2 nqkdA62iKicu9Qdr/LBQ8nj8lnCWrmUCIHN0czo+eo8onLPlwG4AlioaqLWgkPw7 BRrIen40q492AHYAB7dcG+V9aP/xsMYdIxXHuuZXfFeUt2ruvGE6GmnTohwAAAFu 6vy4WAAABAMARzBFAiB5UNZpcldqK+MaN+PUJ0EJCGtqF4qecy/bD5E6ntwGngIh ANgGeDE98SiKYwBKpSjBgipEQ0XSf5HMAMwbFym1nuw0MA0GCSqGSIb3DQEBCwUA A4IBAQBmS2EyMU4pFWcyLveEJIxyV41Ns8pgh6XEi5St1hgc0nKbINV4+Ab4IQaK B65Mpg1hOTHSFgwDQT6noIwLNQXjob+hvolJfwzV6CGkIWjRtUpbt51RA1WwSNUt umTgTEReX5lH24wcITSYECfMhU1M7RW5LNaq8fABgx4F/dogikLqZ8gJX26UFigB VT2olySUlpPwwpv2ra73PGm+83W2Y3VEb9+ZCKyyK07rvbm3/18bKgNebYntirPe b/HzBYMruGAzXjaM2GqNl5qgM0ZafTs2XhKpm857DaNXjG4Is4l+hh9QGDl06Kqj cKrV9g7OnXWVQYC4yVwkyxBiqGBN -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1M7J+2/8qoCVk/yaJJXk SCPOwOF+wM8ybCxDXHAuA746wMkh+5u/fwUpHvRepdeYz3/AYfewGBFjiJSA57Vn VSpcZDP+i2Hx6w2hLfjIcCa7vbHaJjsaMgpWOYA+4fA7IWV0CDFUQcBbYeSyMAew LratdwXU/KV0EVrA7UY0InQwIhY+iR5MzvlBTTBL09IOOFpkFHEU+CT5l4rKmNTM 1einp4UzhdylEbHsKPFClrz+EUdxYeVF2OJtnkQPkee5DefXmS+Yq47O3tb/CMIh /MuKVn0ksIauaJ5D11XBDb5+d8r8BhrP1GZGM3dCs4cg+Gmx8dnMryZVhIsBnYA2 uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 289535047206180549375420568279580863231518 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-09 13:07:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-08 13:07:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'purchasepointe-test.spark-staging.dev' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26864492105722145237515785009793014848566073488868858416740006038194945133115904805346226652715542464340230916633563589264321191555772065103234069982777786215323784008016030860918014650637608901628151985721771024721378156787307557961531073405730856348569994677289919584382506891872907570506350446872123540008797067401257952792102429737673298815030531458024581248400605364157229687124099680686349421478878362632562749050020038902200141291186397441694537948120252786543396225509345299901169210017881615571838749547752981502721386158690361612127479695111230655023893762330322443868327896268052706116892787012819610515129 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 82558b7a29effd9a1df84609cedee753c0b1049c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (41 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'purchasepointe-test.spark-staging.dev' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016eeafcb85b0000040300463044022002032739c92049a1769ea91d03ada22a272ef5076bfcb050f278fc967096ae6502207374733a3e7a8f289cb3e5c06e00962a1aa8b5a090fc3b051ac87a7e34ab8f7600760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016eeafcb858000004030047304502207950d66972576a2be31a37e3d4274109086b6a178a9e732fdb0f913a9edc069e022100d80678313df1288a63004aa528c1822a444345d27f91cc00cc1b1729b59eec34 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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