riederalpbrunnen.de

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:65:59:ee:cd:d8:05:b8:88:1e:41:6a:00:3f:2a:73:a8:90 was issued on by Let's Encrypt.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=riederalpbrunnen.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:65:59:ee:cd:d8:05:b8:88:1e:41:6a:00:3f:2a:73:a8:90
Serial Number (int): 382937204019341982559833869666448647104656
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: a6:7f:93:77:36:67:88:58:79:71:f9:88:27:17:00:1c:dc:a9:f2:e0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 90:ac:d3:d5:1d:d3:6a:13:9c:84:f1:ef:cc:5d:aa:77:12:3a:6d:70
Fingerprint (sha256): 50:56:cb:f6:57:24:96:00:85:c2:ad:19:11:b0:f9:e2:11:d7:56:59:05:bd:66:be:d0:4d:51:b6:b2:a9:9d:ea

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate riederalpbrunnen.de

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for riederalpbrunnen.de

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

riederalpbrunnen.de
riederalpbrunnen.server320.star-server.info
www.riederalpbrunnen.de
www.riederalpbrunnen.server320.star-server.info

Other certificates including the domain name riederalpbrunnen.de

(limited to 100 certificates)
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de
riederalpbrunnen.de

Certificate

The complete raw certificate details for riederalpbrunnen.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIG2TCCBcGgAwIBAgISBGVZ7s3YBbiIHkFqAD8qc6iQMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMTUwMDMwNDdaFw0x
OTA2MTMwMDMwNDdaMB4xHDAaBgNVBAMTE3JpZWRlcmFscGJydW5uZW4uZGUwggIi
MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDEbUOsFy0NkILVAx6NLr83rk/c
tH9T26KRbwbmmb5HgBb8+OnI76CVboPcSBN7hQPG14IT/OCWapxFYAUP1QVVUmah
d1xyCNQf+kKvX3HtIA8+L7rtzqrS9mok23D/9EQ4/M/NM4a+UwP3zBI3m5iLEDSZ
sel+sZlRU27+JJhQVyqxLUvaf5jG/ake3hpwx2FzG+4tdn27yih74fpsH90cthkQ
4WIyN0B4v2rXaNGGE9VL8K5jQ0IqGPrinSp7VuS+ffIZaMQ+UsUo96mrSzFxCMNR
qGc6yYM4V8tLnEOJKBFc4QQWEeavxHM6dcFoMmNbQPSbYM+WPvyiG6VfQQLRQ2FO
fwVPvKrrTXPdOj4bDgZUTLN7rC33eE1UgG1qALCIOsUf8vGlhxiYmvESrVnauboj
/5TC7ZJPZF7Xwv3C8JdB26AGM9IQKK24MhJ5n8mYnmfQ+s09wRNevaVAH4pe9cZ7
x1Glsl3UOqwwaiPKAhRSBHVf7YOmUB8Rx6YRTCA6jtyeITWaD0YO3ie4zNRwlPop
c9KFyL+qL7daRXj3zCP49EUySxxYTZdDpAJhTKs5z6IfuBUn++oe1G/QRv6YiYrd
Y+4OH2DdXHMiQml4uwOLSpF441qPwQpb1OVLxRE1eUXDqOtzhi/eWCRDvF3uwU6f
AOS2nE7MxcDbNG4FYwIDAQABo4IC4zCCAt8wDgYDVR0PAQH/BAQDAgWgMB0GA1Ud
JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW
BBSmf5N3NmeIWHlx+YgnFwAc3Kny4DAfBgNVHSMEGDAWgBSoSmpjBH3duubRObem
RWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3Nw
LmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0
LmludC14My5sZXRzZW5jcnlwdC5vcmcvMIGXBgNVHREEgY8wgYyCE3JpZWRlcmFs
cGJydW5uZW4uZGWCK3JpZWRlcmFscGJydW5uZW4uc2VydmVyMzIwLnN0YXItc2Vy
dmVyLmluZm+CF3d3dy5yaWVkZXJhbHBicnVubmVuLmRlgi93d3cucmllZGVyYWxw
YnJ1bm5lbi5zZXJ2ZXIzMjAuc3Rhci1zZXJ2ZXIuaW5mbzBMBgNVHSAERTBDMAgG
BmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3Bz
LmxldHNlbmNyeXB0Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AOJpS64m
6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d8dv+AAABaX75Ft4AAAQDAEgwRgIhAO2I
srt1JTladA19kg1APtQ37ZnBn6oUr15+B7/tejYNAiEAkzlWKREWafHVbseDHYNF
jLQEih349LyaJR8y1BGa6TkAdgBj8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4scdo
VEvYjQAAAWl++RcfAAAEAwBHMEUCIG7IryOim29aEy7vWARYvxLbvG8grDUaFpB0
ENCYQHDVAiEA1PHemBDdXm8EBWHNvfY00l2Kt42fu138fXFhRbZUurUwDQYJKoZI
hvcNAQELBQADggEBAElyNxzvxnWm3i6YknXa/n+YhtzJ6D/d4qf90p+qER8+qdv8
3NVgibZc2U0HJ4M1IGDRlHACTxXRB/7b+8odxfOHU+YrwNZ85aeZ9JRXH0CgrcNn
L5txsioI5ngV4K96z1c06IUThc/yiX5YlAwcmHZ1HzkjAtSHH7vHm06L9NNB7kei
GcqsEoqna9uq9Xz+DUqJ4Y6xjZmLnOF+u0jBILzLe7mnqpV1vC23kGOTdwjf7OXa
4jNMahbW/KaQb6FWsqlm+H8iAjG1HyRmIRWMxSj2t+RNf/+sEr4cM19aenFe+7rp
0ycLRUA/2PyfP16W092hluWTCi1NBMQoOds2jOI=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxG1DrBctDZCC1QMejS6/
N65P3LR/U9uikW8G5pm+R4AW/PjpyO+glW6D3EgTe4UDxteCE/zglmqcRWAFD9UF
VVJmoXdccgjUH/pCr19x7SAPPi+67c6q0vZqJNtw//REOPzPzTOGvlMD98wSN5uY
ixA0mbHpfrGZUVNu/iSYUFcqsS1L2n+Yxv2pHt4acMdhcxvuLXZ9u8ooe+H6bB/d
HLYZEOFiMjdAeL9q12jRhhPVS/CuY0NCKhj64p0qe1bkvn3yGWjEPlLFKPepq0sx
cQjDUahnOsmDOFfLS5xDiSgRXOEEFhHmr8RzOnXBaDJjW0D0m2DPlj78ohulX0EC
0UNhTn8FT7yq601z3To+Gw4GVEyze6wt93hNVIBtagCwiDrFH/LxpYcYmJrxEq1Z
2rm6I/+Uwu2ST2Re18L9wvCXQdugBjPSECituDISeZ/JmJ5n0PrNPcETXr2lQB+K
XvXGe8dRpbJd1DqsMGojygIUUgR1X+2DplAfEcemEUwgOo7cniE1mg9GDt4nuMzU
cJT6KXPShci/qi+3WkV498wj+PRFMkscWE2XQ6QCYUyrOc+iH7gVJ/vqHtRv0Eb+
mImK3WPuDh9g3VxzIkJpeLsDi0qReONaj8EKW9TlS8URNXlFw6jrc4Yv3lgkQ7xd
7sFOnwDktpxOzMXA2zRuBWMCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 382937204019341982559833869666448647104656
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-15 00:30:47 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-13 00:30:47 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'riederalpbrunnen.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 801351485907997200647124394377304456703190833383445725147198991705452017238060213798544586191661445426611942964441879146484812851333853907175208975291443789160681588427357173962366652249010697949299672604925826161626626142671800758023344805994586151149082047101314681360244877620817692469762803089728722689001558104877056527985323264481137282723697195956250730761817297602867753444252633523133121916715795316819366849316718461535423225809042762271427870916894439295626022970532342955118906689675972269528617335417378321466583648838442037328711348853649073678269770358843685698348801415823400501468750096827871545780448359601809687801946923623300458606218048088975510545665578278607972644555629267035573840714161601282771830928882949118924955698896608003629519668144792990095028486955328063510003221751147489898479285155914104651885852081867235248820739856817839639993911107477825464711933242303224937143076618371030781690948430803631793144033018760951852653648796831057948652477678965802086537490016945776389390360284698096066991272328323245750708068830506577222074915296486359921561663964873640983263044743114122677241506244560921908310254885100817884648109056273290840085492676253293471044428311796643907987374080709959911679591779
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a67f9377366788587971f9882717001cdca9f2e0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (143 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'riederalpbrunnen.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'riederalpbrunnen.server320.star-server.info'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.riederalpbrunnen.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.riederalpbrunnen.server320.star-server.info'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe000001697ef916de0000040300483046022100ed88b2bb7525395a740d7d920d403ed437ed99c19faa14af5e7e07bfed7a360d02210093395629111669f1d56ec7831d83458cb4048a1df8f4bc9a251f32d4119ae93900760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d000001697ef9171f000004030047304502206ec8af23a29b6f5a132eef580458bf12dbbc6f20ac351a16907410d0984070d5022100d4f1de9810dd5e6f040561cdbdf634d25d8ab78d9fbb5dfc7d716145b654bab5
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		004972371cefc675a6de2e989275dafe7f9886dcc9e83fdde2a7fdd29faa111f3ea9dbfcdcd56089b65cd94d072783352060d19470024f15d107fedbfbca1dc5f38753e62bc0d67ce5a799f494571f40a0adc3672f9b71b22a08e67815e0af7acf5734e8851385cff2897e58940c1c9876751f392302d4871fbbc79b4e8bf4d341ee47a219caac128aa76bdbaaf57cfe0d4a89e18eb18d998b9ce17ebb48c120bccb7bb9a7aa9575bc2db79063937708dfece5dae2334c6a16d6fca6906fa156b2a966f87f220231b51f246621158cc528f6b7e44d7fffac12be1c335f5a7a715efbbae9d3270b45403fd8fc9f3f5e96d3dda196e5930a2d4d04c42839db368ce2