chronic-kidney-disease.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:6e:e1:65:b4:43:18:60:79:7a:15:d1:a7:8e:77:66:0f:c2 was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=chronic-kidney-disease.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:6e:e1:65:b4:43:18:60:79:7a:15:d1:a7:8e:77:66:0f:c2Serial Number (int): 299067522533767848826365945135302556651458
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f7:68:ac:09:40:f6:55:dc:3d:ec:17:aa:7f:dd:82:f4:a9:d2:9f:89
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 35:54:af:3e:c4:b4:22:de:b6:26:80:c7:90:60:a2:74:19:0d:43:89
Fingerprint (sha256): 4d:22:b7:26:df:21:11:3e:8e:e3:e8:b6:57:80:60:4f:a7:5c:f2:f1:a8:b2:ab:ff:a7:61:48:1d:9d:d5:c9:a2
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate chronic-kidney-disease.com
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for chronic-kidney-disease.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
chronic-kidney-disease.com
ckd.news
diet-in-chronic-kidney-disease.com
ketosteril.i-tribe.de
www.chronic-kidney-disease.com
www.ckd.news
www.ketosteril.i-tribe.de
ckd.news
diet-in-chronic-kidney-disease.com
ketosteril.i-tribe.de
www.chronic-kidney-disease.com
www.ckd.news
www.ketosteril.i-tribe.de
Other certificates including the domain name chronic-kidney-disease.com
(limited to 100 certificates)
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
bmi-bot.chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
bmi-bot.chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
bmi-bot.chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
chronic-kidney-disease.com
bmi-bot.chronic-kidney-disease.com
chronic-kidney-disease.com
Certificate
The complete raw certificate details for chronic-kidney-disease.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/zCCBOegAwIBAgISA27hZbRDGGB5ehXRp453Zg/CMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMDgxMTQ0MzNaFw0y MDAyMDYxMTQ0MzNaMCUxIzAhBgNVBAMTGmNocm9uaWMta2lkbmV5LWRpc2Vhc2Uu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtC3+IwR+wJJ7H9BA sgQEgLtnNoFc8FABAWPImu59W3IU0yXOp8H1Q8B2LcT7TKDAkbqWbcL1qK/Owb5u naLHqyUpnV6A/hz/GwDhlT5wzyt1o/2wY6LhOr9iWTpekR8/njdP10cc473+K12A y80rU2dKiht/Fqi7FCMH94+teWrPcP8oVXtCxL9vC0B2Duk7obiOLv3jDuexP3c2 4+t2vmpKBdZYkbS9FAcVVLtSx0nJfHhWrKp3qkAwzX0eYXWPGZXIJP8cq27nLDAQ tBr2uVfMf8cCfHHQkHHpx4lfSmW01uuFh/jmQulrH3DteTMwjEZOsDi+strye1fy MPhsHQIDAQABo4IDAjCCAv4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT3aKwJQPZV 3D3sF6p/3YL0qdKfiTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMIG1BgNVHREEga0wgaqCGmNocm9uaWMta2lkbmV5LWRp c2Vhc2UuY29tgghja2QubmV3c4IiZGlldC1pbi1jaHJvbmljLWtpZG5leS1kaXNl YXNlLmNvbYIVa2V0b3N0ZXJpbC5pLXRyaWJlLmRlgh53d3cuY2hyb25pYy1raWRu ZXktZGlzZWFzZS5jb22CDHd3dy5ja2QubmV3c4IZd3d3LmtldG9zdGVyaWwuaS10 cmliZS5kZTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYG CCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQYGCisGAQQB 1nkCBAIEgfcEgfQA8gB3APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSmsKiqjrJz AAABbksLep8AAAQDAEgwRgIhANfaovkd+ApCgqWVLWBF1GwUKIS/1mFDcsqI9KJB vkvMAiEAxCCV/Xa2T2hoDu1G0SEJ6FNmdbCDhScasRsNWKXViK4AdwCyHgXMi6LN iiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAW5LC3rRAAAEAwBIMEYCIQCSGFNz kU/UCxAudy8GFzlxFYHsGMUKe+Z1CGsaNFM0cAIhANXibGEhj2yUxdf7Ib6N3Rip /BBWdeEQmJGjLt6Cu14EMA0GCSqGSIb3DQEBCwUAA4IBAQCDhH1/SAyygAk1R4pl VXKg8WXTNxUYQcTE8rB1xS3ukr04lqRU9nLr3S2VJVF+cjcwA5tcr6Znmomy5VwI J4hzSXTXDU4+995uLyKcHNzp8A4dmsuW6HA916lI56fLOxaehupwcFAttOKVO0B6 bdumLfGhHzvSvW3IGKY1LYUx8JjPAxtfFyvLNzc1/lGCbntzaXgBI173q4Bgsok0 SbQA7iRikLHzrzQvYwrZDwh/iMQEF8f3yU9ieW1Gbp0mJC2oCh3i9htl8X3TMJ+a tvEff23XYAJQiS7n8a4s6dAkFRqqI9ovu0DtjZ5cGl164MugecJx6997aj1R8Mjj xwNP -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtC3+IwR+wJJ7H9BAsgQE gLtnNoFc8FABAWPImu59W3IU0yXOp8H1Q8B2LcT7TKDAkbqWbcL1qK/Owb5unaLH qyUpnV6A/hz/GwDhlT5wzyt1o/2wY6LhOr9iWTpekR8/njdP10cc473+K12Ay80r U2dKiht/Fqi7FCMH94+teWrPcP8oVXtCxL9vC0B2Duk7obiOLv3jDuexP3c24+t2 vmpKBdZYkbS9FAcVVLtSx0nJfHhWrKp3qkAwzX0eYXWPGZXIJP8cq27nLDAQtBr2 uVfMf8cCfHHQkHHpx4lfSmW01uuFh/jmQulrH3DteTMwjEZOsDi+strye1fyMPhs HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 299067522533767848826365945135302556651458 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-08 11:44:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-06 11:44:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'chronic-kidney-disease.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22745574750312554253341831596672172146185555739412164995587298559204309626875970846552492361154884304400756501813073021445599170170566130859414686602844219727932028292986577768655008087329882007623180836077204173048277763288781222071137364652326379988622817636790115457191800591779671351810536264572520894356931306607402274629827040934123030117803494775347301526146386130296108280366497538593479625884442000605286476794804414315341525392802384988269895185972932065410702470135712216319395509296425884871975537894589024618572126410352459669017763724437810109944097834091790413899989817913518146622231376057886351846429 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f768ac0940f655dc3dec17aa7fdd82f4a9d29f89 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (173 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chronic-kidney-disease.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ckd.news' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diet-in-chronic-kidney-disease.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ketosteril.i-tribe.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.chronic-kidney-disease.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ckd.news' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ketosteril.i-tribe.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016e4b0b7a9f0000040300483046022100d7daa2f91df80a4282a5952d6045d46c142884bfd6614372ca88f4a241be4bcc022100c42095fd76b64f68680eed46d12109e8536675b08385271ab11b0d58a5d588ae007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016e4b0b7ad1000004030048304602210092185373914fd40b102e772f061739711581ec18c50a7be675086b1a34533470022100d5e26c61218f6c94c5d7fb21be8ddd18a9fc105675e1109891a32ede82bb5e04 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0083847d7f480cb2800935478a655572a0f165d337151841c4c4f2b075c52dee92bd3896a454f672ebdd2d9525517e723730039b5cafa6679a89b2e55c082788734974d70d4e3ef7de6e2f229c1cdce9f00e1d9acb96e8703dd7a948e7a7cb3b169e86ea7070502db4e2953b407a6ddba62df1a11f3bd2bd6dc818a6352d8531f098cf031b5f172bcb373735fe51826e7b73697801235ef7ab8060b2893449b400ee246290b1f3af342f630ad90f087f88c40417c7f7c94f62796d466e9d26242da80a1de2f61b65f17dd3309f9ab6f11f7f6dd7600250892ee7f1ae2ce9d024151aaa23da2fbb40ed8d9e5c1a5d7ae0cba079c271ebdf7b6a3d51f0c8e3c7034f