parthealth-main.edge.bluestate.digital

Issued by Amazon

About this certificate

This digital certificate with serial number 07:02:5b:90:71:6f:81:a1:0f:15:64:df:09:6a:76:78 was issued on by Amazon.

With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=parthealth-main.edge.bluestate.digital

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 07:02:5b:90:71:6f:81:a1:0f:15:64:df:09:6a:76:78
Serial Number (int): 9316837707447424153735091534758049400
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 90:ef:77:43:b2:71:c0:c4:4e:0f:00:8b:d0:91:eb:b1:a6:b1:78:26
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): 8a:59:90:93:12:b2:e7:8a:a2:e6:45:98:7e:f5:3b:cd:70:91:58:d6
Fingerprint (sha256): 4b:63:89:75:2c:41:4d:42:9e:23:54:a6:a6:36:e7:e8:24:6b:e0:cf:00:e7:5b:3a:f5:bf:df:f4:27:e8:11:91

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate parthealth-main.edge.bluestate.digital

13

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for parthealth-main.edge.bluestate.digital

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

parthealth-main.edge.bluestate.digital
act.pih.org
action.pih.org
donate.pih.org
main-parthealth.api.bsd.net
main-parthealth.bsd.net
main-parthealth.cp.bsd.net
parthealth-quick.bluestatedigital.com
parthealth-skin.bluestatedigital.com
parthealth.api.bsd.net
parthealth.bluestatedigital.com
parthealth.bsd.net
parthealth.cp.bsd.net

Other certificates including the domain name bluestate.digital

(limited to 100 certificates)
rockefeller-context.edge.bluestate.digital
biss-main.edge.bluestate.digital
dccc-stephaniemurphy.edge.bluestate.digital
deeds-main.edge.bluestate.digital
battletx-main.edge.bluestate.digital
inslee-main.edge.bluestate.digital
glsen-southernnevada.edge.bluestate.digital
commonwealth-main.edge.bluestate.digital
holdthehouse-main.edge.bluestate.digital
pocan-main.edge.bluestate.digital
lkitchen-sandbox.edge.bluestate.digital
ymcala-santaclarita.edge.bluestate.digital
jimhimes-main.edge.bluestate.digital
herding-main.edge.bluestate.digital
neademo-main.edge.bluestate.digital
haleystevens-main.edge.bluestate.digital
ctdems-main.edge.bluestate.digital
uchicago-main.edge.bluestate.digital
timesup-main.edge.bluestate.digital
forwardmaj-main.edge.bluestate.digital
stageplays-main.edge.bluestate.digital
madems-main.edge.bluestate.digital
commonwealth-main.edge.bluestate.digital
winpac-main.edge.bluestate.digital
precisiondemo-main.edge.bluestate.digital
mrosata-oa.int.edge.bluestate.digital
petersmi-main.edge.bluestate.digital
lebua-main.edge.bluestate.digital
northam-main.edge.bluestate.digital
test4-test4.edge.bluestate.digital
warren-gusn.edge.bluestate.digital
freemarry-georgia.edge.bluestate.digital
iowadems-main.edge.bluestate.digital
ccoons-main.edge.bluestate.digital
seiumaster-fightfor15childcare.edge.bluestate.digital
tonko-main.edge.bluestate.digital
chop-main.edge.bluestate.digital
mccready-main.edge.bluestate.digital
seodemo-main.edge.bluestate.digital
glsen-downeastmaine.edge.bluestate.digital
venturefund-main.edge.bluestate.digital
tnchk-main.edge.bluestate.digital
manning-main.edge.bluestate.digital
*.esse-macros-demo-project-docker.bluestate.digital
seiumaster-fightfor15.edge.bluestate.digital
horsford-main.edge.bluestate.digital
ditchfund-main.edge.bluestate.digital
betsy-main.edge.bluestate.digital
tomwolf-main.edge.bluestate.digital
bustos-main.edge.bluestate.digital
bsykes-main.edge.bluestate.digital
latinovictory-main.edge.bluestate.digital
glsen-austin.edge.bluestate.digital
google-main.edge.bluestate.digital
tulsi-main.edge.bluestate.digital
civicnation-bettermakeroom.edge.bluestate.digital
repgovernors-main.edge.bluestate.digital
stream-api-int.bluestate.digital
civicnation-allinchallenge.edge.bluestate.digital
brownley-main.edge.bluestate.digital
tuc-main.edge.bluestate.digital
bustos-main.edge.bluestate.digital
fairness-floridadecides.edge.bluestate.digital
vsinitiative-main.edge.bluestate.digital
guycaron-main.edge.bluestate.digital
mackler-main.edge.bluestate.digital
nwica-sandbox.edge.bluestate.digital
ourbodies-main.edge.bluestate.digital
economie-main.edge.bluestate.digital
mackler-main.edge.bluestate.digital
equalpac-main.edge.bluestate.digital
client-database-api-int.bluestate.digital
lonelywhale-main.edge.bluestate.digital
glsen-connecticut.edge.bluestate.digital
porter-main.edge.bluestate.digital
searchlondon-main.edge.bluestate.digital
glsen-columbus.edge.bluestate.digital
wagr-main.edge.bluestate.digital
businessfwd-main.edge.bluestate.digital
bsddemo2014-main.edge.bluestate.digital
crfb-main.edge.bluestate.digital
glsen-colliercounty.edge.bluestate.digital
freemarry-wyomingunites.edge.bluestate.digital
opportunity-main.edge.bluestate.digital
hubproject-peoplegreater.edge.bluestate.digital
*.bluestatedigital.com
court13-main.edge.bluestate.digital
test4-branch.edge.bluestate.digital
glsen-dallasglsen.edge.bluestate.digital
seiumaster-1199ne.edge.bluestate.digital
autoprov-api-int.bluestate.digital
papac-main.edge.bluestate.digital
nrdclive-main.edge.bluestate.digital
berimdemo-main.edge.bluestate.digital
ffaa-main.edge.bluestate.digital
framework-int.bluestate.digital
sinema-main.edge.bluestate.digital
warnerforva-main.edge.bluestate.digital
googlemiyagi-afen.edge.bluestate.digital
gwindham-main.edge.bluestate.digital

Certificate

The complete raw certificate details for parthealth-main.edge.bluestate.digital in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnQVJpZISQwVIDbX4JkO
MCYJB9/5OnF13290i0g4iTlL8zli1sK3aYVXggBj4IiOXqAMygk2Yt5JKNOFWl5P
LXUmDz9DzI1RpO8Hpyv69uhLnID+jSoBL3A9Zryv3vGMl02whogNg+3k89ICPU2m
sVqpJOKeYWZpcbqKFpawYc20+mGZS6qhBrHUGtQAyg/bpaGE82q4phdXat7PKTHa
rzKv+T1HIm29uvSj5E9/0eMFfNUzPI5xSaDj1qNWyh6mJrrNAnhf36ca0CntWBr5
OeziorFLR8Lv9uo8eg7gFHPRjQOPNmEmGBFssoLbRDF1haa3adbAFH0Rl0N4vSI2
aQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 9316837707447424153735091534758049400
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-12 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-12 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'parthealth-main.edge.bluestate.digital'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21012801097764400891668614630778145073630722484886180371390899271821517165315868632653162151229279809543606767096317621050858034301476465063467440242422470904963274238382546750974105032364660109507081581800887439222387083566109517903337726437533013629582329244766197674824796209880444406328920485565371134308637994714293508209346952697569532410650208366916007256307960561892826306432489477321148710393007294054549602808441770996574295383728314712144335185693824827667492143754605429416877578414423580123598148847340395734407988234223391543181611730823006900343983652078977571957646024378237289169983222980584375727721
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							90ef7743b271c0c44e0f008bd091ebb1a6b17826
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (348 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parthealth-main.edge.bluestate.digital'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.pih.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'action.pih.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'donate.pih.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'main-parthealth.api.bsd.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'main-parthealth.bsd.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'main-parthealth.cp.bsd.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parthealth-quick.bluestatedigital.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parthealth-skin.bluestatedigital.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parthealth.api.bsd.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parthealth.bluestatedigital.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parthealth.bsd.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parthealth.cp.bsd.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001716bc6b562000004030047304502203083d0acfd718393f78d51ed33ed56552980ca0c08158fe417cec285250a8849022100d3fbbaf6051f82b88f772fc6aa00d656836fe1497d53b8634a9d31a982ffda2c0077005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca000001716bc6b5800000040300483046022100e79ba7fb359ee6208dfea27c06ec217fd5c4453a27a1fe0654ed9c6faa14501b022100e5a477db2b314d5301882eb0329586ec7fa6d6ce0e5cd2c0db2068fffc03236a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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