*.chiarabiagini.it
Issued by Actalis Domain Validation Server CA G3
About this certificate
This digital certificate with serial number 77:44:e3:25:5f:db:b5:fe:12:62:dd:42:17:a9:12:04 was issued on by Actalis S.p.A..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.chiarabiagini.it
Actalis S.p.A.
Organization:
Actalis S.p.A.
State / Province:
Bergamo
Locality: Ponte San Pietro
Country: IT
Locality: Ponte San Pietro
Country: IT
This certificate will expire on
Certificate Details
Serial Number (hex): 77:44:e3:25:5f:db:b5:fe:12:62:dd:42:17:a9:12:04Serial Number (int): 158535814752874089233914484873375584772
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 6d:16:6c:c4:25:9a:fb:2e:d8:c3:b5:6f:0b:58:d3:ee:a1:69:b3:fb
AuthorityKeyId: 42:83:6d:80:7c:09:84:67:fd:80:57:ab:f1:26:f5:77:c8:22:82:71
Fingerprint (sha1): e9:24:b4:4d:4c:ed:8f:c7:92:77:58:47:4e:c7:c6:23:c1:88:cb:d6
Fingerprint (sha256): 49:14:f8:8d:d8:e3:ed:32:c5:6d:16:50:d7:3f:1c:29:07:1b:69:d6:b3:0f:b7:28:dc:5b:6b:4a:52:51:99:13
Issuing Certificate URL: http://cacert.actalis.it/certs/actalis-autdvg3
Revocation information
OCSP Server: http://ocsp06.actalis.it/VA/AUTHDV-G3CRL Distribution Point: http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL
Check the revocation status for certificate *.chiarabiagini.it
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.chiarabiagini.it
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.chiarabiagini.it
chiarabiagini.it
chiarabiagini.it
Other certificates including the domain name chiarabiagini.it
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.chiarabiagini.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHfjCCBWagAwIBAgIQd0TjJV/btf4SYt1CF6kSBDANBgkqhkiG9w0BAQsFADCB hDELMAkGA1UEBhMCSVQxEDAOBgNVBAgMB0JlcmdhbW8xGTAXBgNVBAcMEFBvbnRl IFNhbiBQaWV0cm8xFzAVBgNVBAoMDkFjdGFsaXMgUy5wLkEuMS8wLQYDVQQDDCZB Y3RhbGlzIERvbWFpbiBWYWxpZGF0aW9uIFNlcnZlciBDQSBHMzAeFw0yMzExMDYw NDMwNThaFw0yNDEyMDYwNDMwNTdaMB0xGzAZBgNVBAMMEiouY2hpYXJhYmlhZ2lu aS5pdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK20cw8qZI73aUDI MbGNbmuAMvN/CbcTCQKkP2HVKU2iTxXoo4egmsKi68gIOsEC8adVZCojyhcLWb2U e7epLOVsxPg3yFgEVK1Kh0NWk/EXbCb8ipOld2l+5oi+61GZ74VKP9gmHS2m0xhz zuTN4RZcCillLgDjlLK0P33zqAHqK00+ITPk5k/C6aECM3w2r3hBSgN1+uORkjcF Ym+fAK09iy3rWm93rU4bSo7nr9np6FECPbbTSPva3w8q45KA0M7ABfKwLkLTHFi3 MmADJAsqSvHiLLL1gD9T5i8kZ67Y6Rbm3XTy9xoLjoocG9R3hQK6G+A67x5H6rUp n9fx6Q0CAwEAAaOCA1AwggNMMAwGA1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAUQoNt gHwJhGf9gFer8Sb1d8gignEwfQYIKwYBBQUHAQEEcTBvMDoGCCsGAQUFBzAChi5o dHRwOi8vY2FjZXJ0LmFjdGFsaXMuaXQvY2VydHMvYWN0YWxpcy1hdXRkdmczMDEG CCsGAQUFBzABhiVodHRwOi8vb2NzcDA2LmFjdGFsaXMuaXQvVkEvQVVUSERWLUcz MC8GA1UdEQQoMCaCEiouY2hpYXJhYmlhZ2luaS5pdIIQY2hpYXJhYmlhZ2luaS5p dDBRBgNVHSAESjBIMDwGBiuBHwEXATAyMDAGCCsGAQUFBwIBFiRodHRwczovL3d3 dy5hY3RhbGlzLml0L2FyZWEtZG93bmxvYWQwCAYGZ4EMAQIBMB0GA1UdJQQWMBQG CCsGAQUFBwMCBggrBgEFBQcDATBIBgNVHR8EQTA/MD2gO6A5hjdodHRwOi8vY3Js MDYuYWN0YWxpcy5pdC9SZXBvc2l0b3J5L0FVVEhEVi1HMy9nZXRMYXN0Q1JMMB0G A1UdDgQWBBRtFmzEJZr7LtjDtW8LWNPuoWmz+zAOBgNVHQ8BAf8EBAMCBaAwggF+ BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0s gdm7v6s52IRzAAABi6LvFhoAAAQDAEYwRAIgY4k9TUm3+pQRT3ZG01+6pJh8iitW +b49TPQ45qtrREMCIGRbn6MKwRyNVWEUmXGgpXxy7map2GXvRgb2jRvYAk38AHYA dv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGLou8VugAABAMARzBF AiEAoeuDIjUdVhKcLC2/kIIUqYQ+E29MQQgHV5lsSDwKXI8CIGq5jLMlagO8CJ00 CKl2CbSxdGQIavJMc1L9uxpaeR3ZAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7D UUhZRnEftZsAAAGLou8V6AAABAMASDBGAiEAnLM3o1YO6VKOXJadVaTrE9uGcwIZ jatgM+cCwaWt8DICIQDX/RJfpFMXwLds4D9rvTdTEp04+tJ+Hj0TCszydwY5eTAN BgkqhkiG9w0BAQsFAAOCAgEAjYPiZLBZuzWw3t3R1XkAa1W1h0Gnh1GLb4pGnCYv BRMz3aUvPlAT85iXMcLj7GEmuG2ND49qXvZDBVTEbpRxyVdnw0IN8d+2U5oE1k/c Cl/NGGwLs3cysSO7lepKyyzwMS6NThCNso8IbbE7qMIxoGeECrmZuOm6ynSaXjch 93pQd+pCIdEoL0bBZQxl51J4rw25LzARJ3gjeQUq75TlMrOzW2sAGq7ltRKSaGSl xF+LGYDSEVB8NGx0hj7dxfd4hPzVsylzDyKbeomEvhwkh62NmByEvcRXvI4WYDXY BUcfC0rkAXanBjX+1viRybAAFN3752LZc3/3AqvdPYi/Vzn3a0ZSgTY8j2pN0Vpy mGl2heqVnoFgSMQogP1O1wHgmiRS8N7/+9kOCrjuoeE6zgs1ZAcyesiQJ2rWpsCg eeBL53r5+yfvwSFQNbYPfd23zGzlpxc2eqMJWwHzDVZ60k6xgVZPbTIBTi5GgcSd sw9+O50CspwuWcVt1LImIYWFtAOk3FMKt46XpkPqWOHZmJuNVAP6Ww5hotgDCfmS lwSmuJXGKTe+lAFw478ZFiOeLAIpfee/XPlQC8AyJt/Y6zMo//C7BbeRZnXrcnj+ Tqz8P4HPDhsGqC/pGlzO/8GSbtyzBkZC3A9cefFSXKp/EEtS5c42TOEx6DuaiKfT CsE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbRzDypkjvdpQMgxsY1u a4Ay838JtxMJAqQ/YdUpTaJPFeijh6CawqLryAg6wQLxp1VkKiPKFwtZvZR7t6ks 5WzE+DfIWARUrUqHQ1aT8RdsJvyKk6V3aX7miL7rUZnvhUo/2CYdLabTGHPO5M3h FlwKKWUuAOOUsrQ/ffOoAeorTT4hM+TmT8LpoQIzfDaveEFKA3X645GSNwVib58A rT2LLetab3etThtKjuev2enoUQI9ttNI+9rfDyrjkoDQzsAF8rAuQtMcWLcyYAMk CypK8eIssvWAP1PmLyRnrtjpFubddPL3GguOihwb1HeFArob4DrvHkfqtSmf1/Hp DQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 158535814752874089233914484873375584772 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bergamo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ponte San Pietro' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis S.p.A.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis Domain Validation Server CA G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-06 04:30:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-06 04:30:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.chiarabiagini.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21928209699440971771781821015502373433770511973511428818894084899487905551597719502431692465772013991055369364753021068302243302656504127725267249065587275571006161316537489521837569367201917404307010280551982718845133233522753612673420951734276595064694840045831475890169463675803324277417646310646288087901955056450600474551727725083296675682160920886403149421099685937412090361557153461187054930901197190526983147240197631820349484847488910514803293049102354708145623420652858415546130676877412864203069200645590920057257701407789557742113559227098026738520273124240065581436223318336015307922255527130813688834317 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 42836d807c098467fd8057abf126f577c8228271 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacert.actalis.it/certs/actalis-autdvg3' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp06.actalis.it/VA/AUTHDV-G3' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chiarabiagini.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chiarabiagini.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.159.1.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.actalis.it/area-download' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6d166cc4259afb2ed8c3b56f0b58d3eea169b3fb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 008d83e264b059bb35b0deddd1d579006b55b58741a787518b6f8a469c262f051333dda52f3e5013f3989731c2e3ec6126b86d8d0f8f6a5ef6430554c46e9471c95767c3420df1dfb6539a04d64fdc0a5fcd186c0bb37732b123bb95ea4acb2cf0312e8d4e108db28f086db13ba8c231a067840ab999b8e9baca749a5e3721f77a5077ea4221d1282f46c1650c65e75278af0db92f301127782379052aef94e532b3b35b6b001aaee5b512926864a5c45f8b1980d211507c346c74863eddc5f77884fcd5b329730f229b7a8984be1c2487ad8d981c84bdc457bc8e166035d805471f0b4ae40176a70635fed6f891c9b00014ddfbe762d9737ff702abdd3d88bf5739f76b465281363c8f6a4dd15a7298697685ea959e816048c42880fd4ed701e09a2452f0defffbd90e0ab8eea1e13ace0b356407327ac890276ad6a6c0a079e04be77af9fb27efc1215035b60f7dddb7cc6ce5a717367aa3095b01f30d567ad24eb181564f6d32014e2e4681c49db30f7e3b9d02b29c2e59c56dd4b226218585b403a4dc530ab78e97a643ea58e1d9989b8d5403fa5b0e61a2d80309f9929704a6b895c62937be940170e3bf1916239e2c02297de7bf5cf9500bc03226dfd8eb3328fff0bb05b7916675eb7278fe4eacfc3f81cf0e1b06a82fe91a5cceffc1926edcb3064642dc0f5c79f1525caa7f104b52e5ce364ce131e83b9a88a7d30ac1