book.ai
Issued by cPanel, Inc. Certification Authority
About this certificate
This digital certificate with serial number fc:44:e7:8e:35:e0:3b:58:2f:2b:19:0b:fc:fa:c8:57 was issued on by cPanel, Inc..
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=book.ai
cPanel, Inc.
Organization:
cPanel, Inc.
State / Province:
TX
Locality: Houston
Country: US
Locality: Houston
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): fc:44:e7:8e:35:e0:3b:58:2f:2b:19:0b:fc:fa:c8:57Serial Number (int): 335323227627870473962363094295438346327
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: e6:ad:f0:42:22:9c:82:d5:ab:38:74:41:17:b1:eb:87:4b:97:24:c3
AuthorityKeyId: 7e:03:5a:65:41:6b:a7:7e:0a:e1:b8:9d:08:ea:1d:8e:1d:6a:c7:65
Fingerprint (sha1): 56:bb:65:be:ac:cf:63:86:22:b6:4c:b0:d7:59:b4:de:54:dd:ce:8f
Fingerprint (sha256): 50:a2:56:56:f0:c9:aa:b0:97:66:3f:d6:c6:46:6c:ff:37:4d:04:55:89:79:c6:a8:22:af:a4:26:8f:fe:f8:ba
Issuing Certificate URL: http://crt.comodoca.com/cPanelIncCertificationAuthority.crt
Revocation information
OCSP Server: http://ocsp.comodoca.comCRL Distribution Point: http://crl.comodoca.com/cPanelIncCertificationAuthority.crl
Check the revocation status for certificate book.ai
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for book.ai
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
book.ai
book.ai.trouble-free.net
cpanel.book.ai
mail.book.ai
webdisk.book.ai
webmail.book.ai
www.book.ai
www.book.ai.trouble-free.net
book.ai.trouble-free.net
cpanel.book.ai
mail.book.ai
webdisk.book.ai
webmail.book.ai
www.book.ai
www.book.ai.trouble-free.net
Other certificates including the domain name book.ai
(limited to 100 certificates)
Certificate
The complete raw certificate details for book.ai in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgIRAPxE54414DtYLysZC/z6yFcwDQYJKoZIhvcNAQELBQAw cjELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAlRYMRAwDgYDVQQHEwdIb3VzdG9uMRUw EwYDVQQKEwxjUGFuZWwsIEluYy4xLTArBgNVBAMTJGNQYW5lbCwgSW5jLiBDZXJ0 aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0xOTExMjAwMDAwMDBaFw0yMDAyMTgyMzU5 NTlaMBIxEDAOBgNVBAMTB2Jvb2suYWkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDvf0MVYA2lfec7wUBm0p6pdNFn+mm+AkodbDsZBisEtYAOL53adOEJ d6zoT3wykCJbz1OkdS/FxTyYl9bQ2s+uWm50AiKTP5j8imZoZ6SqOEGXnrmQdarw Z48deqsSI0TQry1t4eEqI4lEQjb4A6aHNL6iELoSMZlcBHW2siIiSJGruAiom/5k nFiihYcPYzqkcagCtj8iW6MP+r9G1R8B8rhrRnO1ojuWCSfboVMFujSB3CuR7boK 7eVuWGaefX4UT+gIFpVCFAYRj8oC9y0ELxPH9P3KjzPCBbVxqjotx3UPvvW+GK9l FT2GMmWQmU0vLt9Ihktf8RAgRmdX9fXJAgMBAAGjggM+MIIDOjAfBgNVHSMEGDAW gBR+A1plQWunfgrhuJ0I6h2OHWrHZTAdBgNVHQ4EFgQU5q3wQiKcgtWrOHRBF7Hr h0uXJMMwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQECAjQwJTAj BggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQIBMEwG A1UdHwRFMEMwQaA/oD2GO2h0dHA6Ly9jcmwuY29tb2RvY2EuY29tL2NQYW5lbElu Y0NlcnRpZmljYXRpb25BdXRob3JpdHkuY3JsMH0GCCsGAQUFBwEBBHEwbzBHBggr BgEFBQcwAoY7aHR0cDovL2NydC5jb21vZG9jYS5jb20vY1BhbmVsSW5jQ2VydGlm aWNhdGlvbkF1dGhvcml0eS5jcnQwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNv bW9kb2NhLmNvbTCBmQYDVR0RBIGRMIGOggdib29rLmFpghhib29rLmFpLnRyb3Vi bGUtZnJlZS5uZXSCDmNwYW5lbC5ib29rLmFpggxtYWlsLmJvb2suYWmCD3dlYmRp c2suYm9vay5haYIPd2VibWFpbC5ib29rLmFpggt3d3cuYm9vay5haYIcd3d3LmJv b2suYWkudHJvdWJsZS1mcmVlLm5ldDCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2 AAe3XBvlfWj/8bDGHSMVx7rmV3xXlLdq7rxhOhpp06IcAAABboeyP74AAAQDAEcw RQIgRcxnYeCBb/VzBlKMEpYb6HEPFcTIPKMafyh7GNU4Lx0CIQC4dNtZRZPtnkar +b+wRy40ldhm3ob83w+NtjEZzhgXrgB3AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKES EoQYdZaBcUVYAAABboeyPZwAAAQDAEgwRgIhAJ0uVVPmHUmlTUOjq4umHfBm/U3A 7VqDL6Zkl/6rrKCMAiEApf/HFqokclw5HPSW2BB5SQhM4SpeKtov0u5sgg832+4w DQYJKoZIhvcNAQELBQADggEBAEGA8HnfDA8vq62uIfGkp+OGVFF1ZtMgV/5wjTCE IzWWKHv4g5KkNl4O98hH3ONgPyaRnnzmfgbOpdwZhl/lkfOQj4J/ReEVZZAjvAdz qkY724AhXJyxH47ky++2s18zVlhpQLeidXwkoj3/4B+wyo49cfQfgR6EHWKKtku7 xwlYBeegOdpWzJJvN2XBRqrkFmDjZa6tHqUvpTyvXn4geX6fnhTVWY07LGw6KvD8 MitRLEm38K8exbwZgfRoU5HnX6OYPxNrGBXj1EGMKNAx+zR1glhKLiplrda7Kbqu 3Zg1Nrz5jZK7PJV2EOY4DkEANg4kwBCaN5hhz2CJu68WJH0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA739DFWANpX3nO8FAZtKe qXTRZ/ppvgJKHWw7GQYrBLWADi+d2nThCXes6E98MpAiW89TpHUvxcU8mJfW0NrP rlpudAIikz+Y/IpmaGekqjhBl565kHWq8GePHXqrEiNE0K8tbeHhKiOJREI2+AOm hzS+ohC6EjGZXAR1trIiIkiRq7gIqJv+ZJxYooWHD2M6pHGoArY/IlujD/q/RtUf AfK4a0ZztaI7lgkn26FTBbo0gdwrke26Cu3lblhmnn1+FE/oCBaVQhQGEY/KAvct BC8Tx/T9yo8zwgW1cao6Lcd1D771vhivZRU9hjJlkJlNLy7fSIZLX/EQIEZnV/X1 yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 335323227627870473962363094295438346327 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TX' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Houston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cPanel, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cPanel, Inc. Certification Authority' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'book.ai' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30233710140153349640648777669315763885030477485914719501414307255807952414423107642383230606844774819006257158816964985055654153845084145207945067915998316444658649394885915734974324213051834152032907769410359674381302848189825531229403999779884787116211801742493239278536058087046428627319835277912356637772037263717699878256163400751438914474077873595949662789529746606724086338355942229876038192844091143785495734964557023651790485983045698337176298033951960617532694632750564180650648504854963218181453065696014539565145029008392350642442752729614818720635269227271774200771408369927777281593421435862089083516361 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7e035a65416ba77e0ae1b89d08ea1d8e1d6ac765 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e6adf042229c82d5ab38744117b1eb874b9724c3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.52 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/cPanelIncCertificationAuthority.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/cPanelIncCertificationAuthority.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (145 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'book.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'book.ai.trouble-free.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.book.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.book.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.book.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.book.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.book.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.book.ai.trouble-free.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e87b23fbe0000040300473045022045cc6761e0816ff57306528c12961be8710f15c4c83ca31a7f287b18d5382f1d022100b874db594593ed9e46abf9bfb0472e3495d866de86fcdf0f8db63119ce1817ae0077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016e87b23d9c00000403004830460221009d2e5553e61d49a54d43a3ab8ba61df066fd4dc0ed5a832fa66497feabaca08c022100a5ffc716aa24725c391cf496d8107949084ce12a5e2ada2fd2ee6c820f37dbee . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 004180f079df0c0f2fabadae21f1a4a7e38654517566d32057fe708d3084233596287bf88392a4365e0ef7c847dce3603f26919e7ce67e06cea5dc19865fe591f3908f827f45e115659023bc0773aa463bdb80215c9cb11f8ee4cbefb6b35f3356586940b7a2757c24a23dffe01fb0ca8e3d71f41f811e841d628ab64bbbc7095805e7a039da56cc926f3765c146aae41660e365aead1ea52fa53caf5e7e20797e9f9e14d5598d3b2c6c3a2af0fc322b512c49b7f0af1ec5bc1981f4685391e75fa3983f136b1815e3d4418c28d031fb347582584a2e2a65add6bb29baaedd983536bcf98d92bb3c957610e6380e4100360e24c0109a379861cf6089bbaf16247d