mike.verdone.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:b2:7c:c3:db:ad:d6:22:0b:a2:0f:20:2e:be:9f:18:6d:d7 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=mike.verdone.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b2:7c:c3:db:ad:d6:22:0b:a2:0f:20:2e:be:9f:18:6d:d7Serial Number (int): 322072960332192976561178695916954983099863
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 6e:d2:26:de:47:fc:a6:77:57:7b:b5:f1:f7:6d:5b:cc:40:6d:f4:5d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 08:24:c7:59:d6:06:cf:9a:15:2c:6c:44:20:74:ef:96:7b:5e:97:ae
Fingerprint (sha256): 4b:03:b4:b2:72:e2:1d:34:0f:f4:45:75:b9:35:a7:de:e0:be:77:27:8e:d0:90:cf:2e:ca:bd:7d:20:df:53:a0
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate mike.verdone.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mike.verdone.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mike.verdone.ca
www.mike.verdone.ca
www.mike.verdone.ca
Other certificates including the domain name verdone.ca
(limited to 100 certificates)
verdone.ca
mike.verdone.ca
mike.verdone.ca
ray.verdone.ca
www.verdone.ca
verdone.ca
mike.verdone.ca
mike.verdone.ca
verdone.ca
mike.verdone.ca
verdone.ca
ray.verdone.ca
mike.verdone.ca
verdone.ca
verdone.ca
verdone.ca
ray.verdone.ca
verdone.ca
verdone.ca
verdone.ca
verdone.ca
verdone.ca
verdone.ca
mike.verdone.ca
mike.verdone.ca
mike.verdone.ca
mike.verdone.ca
mike.verdone.ca
verdone.ca
ray.verdone.ca
mike.verdone.ca
mike.verdone.ca
verdone.ca
verdone.ca
mike.verdone.ca
mike.verdone.ca
www.verdone.ca
www.verdone.ca
verdone.ca
verdone.ca
ray.verdone.ca
www.verdone.ca
ray.verdone.ca
verdone.ca
mike.verdone.ca
mike.verdone.ca
mike.verdone.ca
verdone.ca
mike.verdone.ca
verdone.ca
ray.verdone.ca
www.verdone.ca
verdone.ca
ray.verdone.ca
verdone.ca
mike.verdone.ca
ray.verdone.ca
mike.verdone.ca
mike.verdone.ca
ray.verdone.ca
www.verdone.ca
mike.verdone.ca
ray.verdone.ca
verdone.ca
mike.verdone.ca
verdone.ca
verdone.ca
www.verdone.ca
ray.verdone.ca
mike.verdone.ca
ray.verdone.ca
verdone.ca
mike.verdone.ca
mike.verdone.ca
ray.verdone.ca
ray.verdone.ca
mike.verdone.ca
mike.verdone.ca
ray.verdone.ca
www.verdone.ca
verdone.ca
mike.verdone.ca
mike.verdone.ca
verdone.ca
mike.verdone.ca
verdone.ca
ray.verdone.ca
mike.verdone.ca
verdone.ca
verdone.ca
verdone.ca
ray.verdone.ca
verdone.ca
verdone.ca
verdone.ca
verdone.ca
verdone.ca
verdone.ca
mike.verdone.ca
mike.verdone.ca
mike.verdone.ca
mike.verdone.ca
mike.verdone.ca
verdone.ca
ray.verdone.ca
mike.verdone.ca
mike.verdone.ca
verdone.ca
verdone.ca
mike.verdone.ca
mike.verdone.ca
www.verdone.ca
www.verdone.ca
verdone.ca
verdone.ca
ray.verdone.ca
www.verdone.ca
ray.verdone.ca
verdone.ca
mike.verdone.ca
mike.verdone.ca
mike.verdone.ca
verdone.ca
mike.verdone.ca
verdone.ca
ray.verdone.ca
www.verdone.ca
verdone.ca
ray.verdone.ca
verdone.ca
mike.verdone.ca
ray.verdone.ca
mike.verdone.ca
mike.verdone.ca
ray.verdone.ca
www.verdone.ca
mike.verdone.ca
ray.verdone.ca
verdone.ca
mike.verdone.ca
verdone.ca
verdone.ca
www.verdone.ca
ray.verdone.ca
mike.verdone.ca
ray.verdone.ca
verdone.ca
mike.verdone.ca
mike.verdone.ca
ray.verdone.ca
ray.verdone.ca
Certificate
The complete raw certificate details for mike.verdone.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISA7J8w9ut1iILog8gLr6fGG3XMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjEyMTkxMjQzMDBaFw0x NzAzMTkxMjQzMDBaMBoxGDAWBgNVBAMTD21pa2UudmVyZG9uZS5jYTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAN1rIgmTP2qBJse1Wtgn2oczChPdIu5t 1WnGfieapGnJHLnL0SuDCPvr2NyYqI8vbFrx73eDNTkZjRuI3K0FSulrYF3+NJQl nkt1AVnDf23YwTFsG7ktAAG/5VoFi7lJmXuc9riJLBPBGeoVcxAjGUQd5L0dCrpB Qgc2ViTbGss2tshLo8CsQ8apTLneUinaz6POoSS1k4NJ+1D/hls8VoMmB6tSHujj sdycUpcrcGjJm9Zfu2+ali2gyqM18AK16U6l+AlrxQUoNapEOJotHz0sNdCW3B2e tWIAAyqtoalF5Dw+5oGFotwCBkPUONuFp8T+9VgUv8/xSNz4e2dAxjECAwEAAaOC AiUwggIhMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUbtIm3kf8pndXe7Xx921bzEBt 9F0wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwcAYIKwYBBQUHAQEE ZDBiMC8GCCsGAQUFBzABhiNodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQu b3JnLzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wLwYDVR0RBCgwJoIPbWlrZS52ZXJkb25lLmNhghN3d3cubWlrZS52ZXJk b25lLmNhMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB 1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsG AQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQg dXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3 aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRz ZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBAGZMSOJd bw4Nay5PAqTqwfZbohZaQLKzvvw95XFIO4j9zHZda+98LAlvC6/kHZcWN7Hz6G3f Aq1s6JP0mNZUK6BiOvr/wOiybvPVaFD7DbxZf8aj00DXg/jNlymjCC0UjL3W+wyO Q5YWc4KsgCyptYl38Lse1v4m+XaLdphxzRqHGZCyvHGu1yu1eFZpRBV8fAwfP3WY 4ZFLZRPYvGZMBoOOg3FjH80AuFA0MFh6cMsqwuJZMOoTuCh1KH7HMsglSU6cHEd9 uW8fwfcr4/l0InkjyTJM0bkcAWpWxK8kvm0wMJ0LCqSgfnCciswOWJisz3P0SGPy 5BwuSzCBu5RXlwo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3WsiCZM/aoEmx7Va2Cfa hzMKE90i7m3VacZ+J5qkackcucvRK4MI++vY3Jiojy9sWvHvd4M1ORmNG4jcrQVK 6WtgXf40lCWeS3UBWcN/bdjBMWwbuS0AAb/lWgWLuUmZe5z2uIksE8EZ6hVzECMZ RB3kvR0KukFCBzZWJNsayza2yEujwKxDxqlMud5SKdrPo86hJLWTg0n7UP+GWzxW gyYHq1Ie6OOx3JxSlytwaMmb1l+7b5qWLaDKozXwArXpTqX4CWvFBSg1qkQ4mi0f PSw10JbcHZ61YgADKq2hqUXkPD7mgYWi3AIGQ9Q424WnxP71WBS/z/FI3Ph7Z0DG MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 322072960332192976561178695916954983099863 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-19 12:43:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-19 12:43:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mike.verdone.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27951494628359849056506316189187384534756137295707142540671168086059681152784457427486701679991296405128242487555591497365577010579904836465145205294375209518460265400216288394385737113495472918916506538428014673986833157355181773509084108795191004504324543899477095640083220435727264467017776972862354578860811277291140093571486773127376870597997951195467422755765238858548053657572648629668478991558556836042484091549237422074653374916230600291903650387590951145600925278521006242343381165439487621104044591359039805560178758235669897065101786274882677385645021711656234671149252172118286613494703816373433266128433 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6ed226de47fca677577bb5f1f76d5bcc406df45d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mike.verdone.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mike.verdone.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00664c48e25d6f0e0d6b2e4f02a4eac1f65ba2165a40b2b3befc3de571483b88fdcc765d6bef7c2c096f0bafe41d971637b1f3e86ddf02ad6ce893f498d6542ba0623afaffc0e8b26ef3d56850fb0dbc597fc6a3d340d783f8cd9729a3082d148cbdd6fb0c8e4396167382ac802ca9b58977f0bb1ed6fe26f9768b769871cd1a871990b2bc71aed72bb578566944157c7c0c1f3f7598e1914b6513d8bc664c06838e8371631fcd00b8503430587a70cb2ac2e25930ea13b82875287ec732c825494e9c1c477db96f1fc1f72be3f974227923c9324cd1b91c016a56c4af24be6d30309d0b0aa4a07e709c8acc0e5898accf73f44863f2e41c2e4b3081bb9457970a