ictzaak.nl
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:6b:4c:b4:86:f8:6c:ba:0c:fa:d2:04:31:f4:54:42:73:7b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ictzaak.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:6b:4c:b4:86:f8:6c:ba:0c:fa:d2:04:31:f4:54:42:73:7bSerial Number (int): 297849029734460465901186369537733552141179
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3d:0a:79:67:58:f3:61:ac:34:ee:88:67:9d:2e:b8:af:5e:43:00:2c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3d:df:66:88:aa:f4:a7:de:a1:88:59:9a:10:8b:1b:f4:b6:a8:30:70
Fingerprint (sha256): 52:40:6b:b0:16:a7:7c:f2:92:1b:94:fa:26:e1:3c:dc:9d:ee:dc:cc:60:b4:78:91:ee:18:df:10:ae:0d:69:5e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ictzaak.nl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ictzaak.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ictzaak.nl
www.ictzaak.nl
www.ictzaak.nl
Other certificates including the domain name ictzaak.nl
(limited to 100 certificates)
ictzaak.nl
ictzaak.nl
assist.oneeightyone.com
www.ictzaak.nl
assist.oneeightyone.com
helpdesk.ictzaak.nl
ftp.ictzaak.nl
assist.oneeightyone.com
deslock.ictzaak.nl
backup.ictzaak.nl
asistencia.okadrive.com
ictzaak.nl
ictzaak.nl
ictzaak.nl
assist.oneeightyone.com
ictzaak.nl
backup.ictzaak.nl
helpdesk.ictzaak.nl
eset.ictzaak.nl
www.ictzaak.nl
deslock.ictzaak.nl
ictzaak.nl
deslock.ictzaak.nl
helpdesk.ictzaak.nl
assist.oneeightyone.com
ictzaak.nl
assist.oneeightyone.com
ictzaak.nl
helpdesk.ictzaak.nl
ftp.ictzaak.nl
ictzaak.nl
assist.oneeightyone.com
www.ictzaak.nl
eset.ictzaak.nl
ftp.ictzaak.nl
ictzaak.nl
eset.ictzaak.nl
assist.oneeightyone.com
ictzaak.nl
assist.oneeightyone.com
www.ictzaak.nl
assist.oneeightyone.com
helpdesk.ictzaak.nl
ftp.ictzaak.nl
assist.oneeightyone.com
deslock.ictzaak.nl
backup.ictzaak.nl
asistencia.okadrive.com
ictzaak.nl
ictzaak.nl
ictzaak.nl
assist.oneeightyone.com
ictzaak.nl
backup.ictzaak.nl
helpdesk.ictzaak.nl
eset.ictzaak.nl
www.ictzaak.nl
deslock.ictzaak.nl
ictzaak.nl
deslock.ictzaak.nl
helpdesk.ictzaak.nl
assist.oneeightyone.com
ictzaak.nl
assist.oneeightyone.com
ictzaak.nl
helpdesk.ictzaak.nl
ftp.ictzaak.nl
ictzaak.nl
assist.oneeightyone.com
www.ictzaak.nl
eset.ictzaak.nl
ftp.ictzaak.nl
ictzaak.nl
eset.ictzaak.nl
assist.oneeightyone.com
Certificate
The complete raw certificate details for ictzaak.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXTCCBUWgAwIBAgISA2tMtIb4bLoM+tIEMfRUQnN7MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MjUyMTAwMjNaFw0x OTExMjMyMTAwMjNaMBUxEzARBgNVBAMTCmljdHphYWsubmwwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQCjXuSuBMZ9p4CpZSuMoCrQdbE8jgVrBM4RnJCT uuI5spdgM6dJ4nnZHNvaJ4wf6u5BEHjcm+GYD3QwxrKyqJNB3pF/PHuZc6jak4q5 apKsQAE4+uHJ6A96sOHSyLevtN7QqmisgiVFaiEHGLVbj1oFLgEHX4AE1fq/yAjC 3ajDPfcI62QenxZcI96WpS4buPIng71xH+HE3afr1Tmaa6w7tDfnniXmH/0Xl5Ng goKIutAs18swPXm8HEhP8Frf9PeeJhYHRiHSUVnxc+vS1gVQEnLRftNSG977Zb+M kHm8Efn4wTy8zmSkqrekJEqHcdcWTezDQCEoZdZTrTekJeDmTnrY0svNTdvlROQX BdOhrQsKPHy3KtXscPX1zrhR576+eBy117oYf5kFgIYXo4PENK23sCEDi5+BhKXM JpGPpbRpYKs46LNMBHkNHagbGy++Kz5I3myYe8WfoAUDhOCNRDWy9DJ/4LasoL49 qm7s5+7BPWPPQEMrtVpJIEKyJkpJICqaACnGFJfZYRg2zhdcpsVPBEdeVJJ8fqmb HaHxQ/xRcxk3F1O9fStBMcehXY8n/7lJb6b6+of0L5VjVtO5S7i/AexXW2jK7PDi 1rtgkti96P0exUw5bBFvSvAi6Nwnn3fXLc3Lphfz8pNYybxJK5SMScaL33FgT+PJ NWjDfwIDAQABo4ICcDCCAmwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ9CnlnWPNh rDTuiGedLrivXkMALDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMCUGA1UdEQQeMByCCmljdHphYWsubmyCDnd3dy5pY3R6 YWFrLm5sMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHW eQIEAgSB9gSB8wDxAHcAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYA AAFsystniQAABAMASDBGAiEAkEnXDEMKa6nBuVhrG9Ntml9+EFrmeIH5FeoMkq9C /qACIQCmEqchcnNhlSI2rlCuugGn9HfrhHokNZmTNOGeR2EOQAB2AGPy283oO8ws zwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABbMrLZ3kAAAQDAEcwRQIhAKoesk9f qZaFkwqCFEMLQ4gzuntiYq94O29PoGnBkCjKAiAIpda8KbRJqBvoSGPlrNWpsq7x iJ5GIT2lnpxjVtozsjANBgkqhkiG9w0BAQsFAAOCAQEAVMCVD+pxJTzamUiA+9ps YUAS0EZ2KfQgwZldBIjpNNkA57AkIB/FXYJlDPshSThsoVD+sSzbV4BXWDqZcQKw 7zRAfQIi6+iCuMG1TJNE36crZXqt7Yd/2sqDDVIJdQvRgZZvHFV8HQ4JvY9PZDLY ZdBKt7Q34z8akYyiz9PV0QJ4CwMogM5YH0LfddgAhxISYhyVLgOznPz+jHoyqT9b SM23sqLvUJ6jLRN4ka2L/D+beAy0zI194dsX4KP0wf/k3tFHKP/hjHEdbhvWQzJq 3mov0dR8jzaQ6M7yR0gBJpT2yiC908t3u+Dlve9YqKflcHgi9F1GNn7kAYqJO7Dv eg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAo17krgTGfaeAqWUrjKAq 0HWxPI4FawTOEZyQk7riObKXYDOnSeJ52Rzb2ieMH+ruQRB43JvhmA90MMaysqiT Qd6Rfzx7mXOo2pOKuWqSrEABOPrhyegPerDh0si3r7Te0KporIIlRWohBxi1W49a BS4BB1+ABNX6v8gIwt2owz33COtkHp8WXCPelqUuG7jyJ4O9cR/hxN2n69U5mmus O7Q3554l5h/9F5eTYIKCiLrQLNfLMD15vBxIT/Ba3/T3niYWB0Yh0lFZ8XPr0tYF UBJy0X7TUhve+2W/jJB5vBH5+ME8vM5kpKq3pCRKh3HXFk3sw0AhKGXWU603pCXg 5k562NLLzU3b5UTkFwXToa0LCjx8tyrV7HD19c64Uee+vngctde6GH+ZBYCGF6OD xDStt7AhA4ufgYSlzCaRj6W0aWCrOOizTAR5DR2oGxsvvis+SN5smHvFn6AFA4Tg jUQ1svQyf+C2rKC+Papu7OfuwT1jz0BDK7VaSSBCsiZKSSAqmgApxhSX2WEYNs4X XKbFTwRHXlSSfH6pmx2h8UP8UXMZNxdTvX0rQTHHoV2PJ/+5SW+m+vqH9C+VY1bT uUu4vwHsV1toyuzw4ta7YJLYvej9HsVMOWwRb0rwIujcJ5931y3Ny6YX8/KTWMm8 SSuUjEnGi99xYE/jyTVow38CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 297849029734460465901186369537733552141179 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-25 21:00:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-23 21:00:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ictzaak.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 666494212806529511867966247956387917792910543768560485557617743764915612144986950195156696667464560121905069299991728339226149966232918787029427036577412822845300455208252293916931194501367776267367653603103416524869748883266002959915598325224892246146328864468908790266524206530273894604270778900779254220982478174136748092739359366675673251755780067501468119967237746566044955549819592288855598045683203793183099591957241799287271848486731784888484951837343440872072518848847161722952147081032211657267163267545830510185055469923373615260019369032623594673298843045861243660046181452200443638491021605583761951875108611944908248455098388179338412091344648264547278046589623665836726698067114237792598732553182933124636627971646599276002020584151433656912608278316930894111331157590308629173129209000301731160757812636274541137835397312244142935902284745777618250944356606642224225057734833378073666264628480038300667689857844484722119357251978718737038167547462659352897525362861833392437185113763582985822203463391664763758746138384164380874770834775932410698517712687656824041961549431398710078602509569314319118673638435528607260858664296507757894237003923918026373218294253506139718703995536857828790818654547033961759920145279 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3d0a796758f361ac34ee88679d2eb8af5e43002c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ictzaak.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ictzaak.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016ccacb678900000403004830460221009049d70c430a6ba9c1b9586b1bd36d9a5f7e105ae67881f915ea0c92af42fea0022100a612a721727361952236ae50aeba01a7f477eb847a2435999334e19e47610e4000760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016ccacb67790000040300473045022100aa1eb24f5fa99685930a8214430b438833ba7b6262af783b6f4fa069c19028ca022008a5d6bc29b449a81be84863e5acd5a9b2aef1889e46213da59e9c6356da33b2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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