005653.tc-connect.elior.com
Issued by R3
About this certificate
This digital certificate with serial number 03:5e:5d:f3:a7:9e:3f:6d:d9:f9:78:6b:d5:99:2c:bd:11:5e was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=005653.tc-connect.elior.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:5e:5d:f3:a7:9e:3f:6d:d9:f9:78:6b:d5:99:2c:bd:11:5eSerial Number (int): 293448283617293660489693950767306490319198
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: eb:6b:ff:18:89:49:b9:ce:07:ca:39:b5:bc:f3:65:44:42:28:e8:63
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 5a:b5:4e:51:92:90:88:51:32:26:57:2c:d3:88:dc:5c:05:1d:28:52
Fingerprint (sha256): 52:9e:4b:28:ec:36:95:27:d7:35:f0:43:80:1c:32:c7:cc:22:4d:29:fd:5e:33:d4:b6:20:db:36:76:67:26:9e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate 005653.tc-connect.elior.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 005653.tc-connect.elior.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
005653.tc-connect.elior.com
Other certificates including the domain name elior.com
(limited to 100 certificates)
*.dashboard-rec.elior.com
toptrack.elior.com
049633.tc-connect.elior.com
bonapp-api.elior.com
*.elior.com
mobilite.elior.com
*.elior.com
mkt.minasdepresentes.com.br
achats.elior.com
webmail.elior.com
webmail.elior.com
timechef-v2.elior.com
portailrestaurant-dev.elior.com
kanji.elior.com
005653.tc-connect.elior.com
webmail.elior.com
applis-elior.elior.com
roomservice.elior.com
060001.tc-connect.elior.com
imperva.com
049629.tc-connect.elior.com
webmail.elior.com
*.elior.com
dashboard-rec.elior.com
048839.tc-connect.elior.com
portailrestaurant-rec.elior.com
toptrack.elior.com
toptrack.elior.com
timechef-v1.elior.com
bonapp-facturation-api.elior.com
apptable.elior.com
servichezvous.elior.com
toptrack.elior.com
bonapp-facturation-api-rec.elior.com
monparcours.elior.com
servichezvous.elior.com
webmail.elior.com
*.elior.com
bonapp.elior.com
webmail.elior.com
monparcours.elior.com
kanji-auth.elior.com
recrut.elior.com
applis-elior.elior.com
timechef.elior.com
smartordering.elior.com
webmail.elior.com
*.elior.com
achats.elior.com
060892.tc-connect.elior.com
047463.tc-connect.elior.com
*.elior.com
chefsandgo.elior.com
roomservice-v1.elior.com
monparcours.elior.com
003368.tc-connect.elior.com
remotectrl.elior.com
*.elior.com
si-pro-tre.elior.com
toptrack.elior.com
049633.tc-connect.elior.com
bonapp-api.elior.com
*.elior.com
mobilite.elior.com
*.elior.com
mkt.minasdepresentes.com.br
achats.elior.com
webmail.elior.com
webmail.elior.com
timechef-v2.elior.com
portailrestaurant-dev.elior.com
kanji.elior.com
005653.tc-connect.elior.com
webmail.elior.com
applis-elior.elior.com
roomservice.elior.com
060001.tc-connect.elior.com
imperva.com
049629.tc-connect.elior.com
webmail.elior.com
*.elior.com
dashboard-rec.elior.com
048839.tc-connect.elior.com
portailrestaurant-rec.elior.com
toptrack.elior.com
toptrack.elior.com
timechef-v1.elior.com
bonapp-facturation-api.elior.com
apptable.elior.com
servichezvous.elior.com
toptrack.elior.com
bonapp-facturation-api-rec.elior.com
monparcours.elior.com
servichezvous.elior.com
webmail.elior.com
*.elior.com
bonapp.elior.com
webmail.elior.com
monparcours.elior.com
kanji-auth.elior.com
recrut.elior.com
applis-elior.elior.com
timechef.elior.com
smartordering.elior.com
webmail.elior.com
*.elior.com
achats.elior.com
060892.tc-connect.elior.com
047463.tc-connect.elior.com
*.elior.com
chefsandgo.elior.com
roomservice-v1.elior.com
monparcours.elior.com
003368.tc-connect.elior.com
remotectrl.elior.com
*.elior.com
si-pro-tre.elior.com
Certificate
The complete raw certificate details for 005653.tc-connect.elior.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBTCCBO2gAwIBAgISA15d86eeP23Z+Xhr1ZksvRFeMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjYyMjAxMDBaFw0yNDA1MjYyMjAwNTlaMCYxJDAiBgNVBAMT GzAwNTY1My50Yy1jb25uZWN0LmVsaW9yLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQAD ggIPADCCAgoCggIBAKSMSt2ukFO8ykdY3jHtsBdbEJo19oNR/3vfyc4le55UUEXe q7+ua84K+jIuh8b8DG8X7AYoAi1k9Gs4bJMxAaagVBKWMMUnxa54RbdvXiS2c2jx 42TW0As3462xbbue9CfCTikQx79NL0T/Wveuso0O/OkDQVKic5DZBeQyoSKvQd++ /ZKKVhG0KthEYMvVzaMroDT/5YEqpdwdRh1gISgJ+PtYj5Kd9PCDereJRko3OjV6 raXOIyLA7S/91sIqEE864DrUYsRFbh1FzbUM5x7YhJKX+IX7LxMlFGFUYwTDIsMv OTKDapo8e8drHp+hoqJhDeW3+6euXYHnuLGESP2ZzTA4zTStjJQWXJLdRfkquPjg 85taqQPKCEQpC5WJ2abXK1J/gorHMODD4WPp2rhD6oBkm8zwYaoNX1e9MXmYj3Ox I7k9x5AIN8wEOCeuMhGX9Eygevha81m5uT7mh8N7iXDz1PUTYDCfIIrM1Bu8PH3E w/FzxVC0nHbyJlZ1NfzKlHRY3MqM8wGfOkR5k9ZZqS9fph7HYk8m+akcBhN6irPR X30qiUnlzAm27OmgI9R4jl3YzFTwdlDpJFtRYFHNwYTyeoHzibxFsxspVO/gExUj 7WQJ7SbWskQRCR16htikyEhu33czPbPyvkdLsaLm1AQPu9bDZ2mUIbQaLOI1AgMB AAGjggIfMIICGzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOtr/xiJSbnOB8o5tbzz ZURCKOhjMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUF BwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsG AQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCYGA1UdEQQfMB2CGzAwNTY1 My50Yy1jb25uZWN0LmVsaW9yLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYG CisGAQQB1nkCBAIEgfcEgfQA8gB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0t cm/h+tQXAAABjeemb/EAAAQDAEgwRgIhANfPHOXlvXVcy8kmUyfvdgZET8uaCJlB RZ6sy8MqU62qAiEA6uiHYfam+z0jeIEOOLYK6NDJnjME/gn992i8MJ8xAJgAdwCi 4r/WHt4vLweg1k5tN6fcZUOwxrUuotq3iviabfUX2AAAAY3npnAPAAAEAwBIMEYC IQC98ezz3Emo2tz2DfI7bbvs15Z93h/cB1rEJAfTEk4lxAIhAJKEHKzBRl3myy6g lLGL5qbJvjFWyNKiYjk2V2FDqGh9MA0GCSqGSIb3DQEBCwUAA4IBAQCX+prkzWoY wHZgfkEPvUjy/G9X16IvLy5yFm5SVjkG3TKPBI/2/y/3R2BvziZBeA0j32DUABAV ma2HPUHaT+7Ew7laAdC4B3+5WvglctF0UGyS5s8aGB97BppAYgBF6/QQaQHsLftX lBT16y3MFuSJU6X02/FfTiy7gJ8qHgbjZOO/LQza8mgw+osrH7d7lhSjQG/MdYEm bDT5juCVR1tTIo5u/NNKna7vrLvez/rtpqdJbWHyOWYPK1f1zsTkZoqiWW/nwmbq 8RbKJrAX3KiTVieMJEGf22h91ZQ11Y0t9UDk7ZeqyelCgT/gehQxGITI4cK4+Vdh BVi5CB13LiFv -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApIxK3a6QU7zKR1jeMe2w F1sQmjX2g1H/e9/JziV7nlRQRd6rv65rzgr6Mi6HxvwMbxfsBigCLWT0azhskzEB pqBUEpYwxSfFrnhFt29eJLZzaPHjZNbQCzfjrbFtu570J8JOKRDHv00vRP9a966y jQ786QNBUqJzkNkF5DKhIq9B3779kopWEbQq2ERgy9XNoyugNP/lgSql3B1GHWAh KAn4+1iPkp308IN6t4lGSjc6NXqtpc4jIsDtL/3WwioQTzrgOtRixEVuHUXNtQzn HtiEkpf4hfsvEyUUYVRjBMMiwy85MoNqmjx7x2sen6GiomEN5bf7p65dgee4sYRI /ZnNMDjNNK2MlBZckt1F+Sq4+ODzm1qpA8oIRCkLlYnZptcrUn+Ciscw4MPhY+na uEPqgGSbzPBhqg1fV70xeZiPc7EjuT3HkAg3zAQ4J64yEZf0TKB6+FrzWbm5PuaH w3uJcPPU9RNgMJ8giszUG7w8fcTD8XPFULScdvImVnU1/MqUdFjcyozzAZ86RHmT 1lmpL1+mHsdiTyb5qRwGE3qKs9FffSqJSeXMCbbs6aAj1HiOXdjMVPB2UOkkW1Fg Uc3BhPJ6gfOJvEWzGylU7+ATFSPtZAntJtayRBEJHXqG2KTISG7fdzM9s/K+R0ux oubUBA+71sNnaZQhtBos4jUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 293448283617293660489693950767306490319198 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-26 22:01:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-26 22:00:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '005653.tc-connect.elior.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 671297342942132113700655200893405089609445444943149285957727829593371861879867102632064150261169291236697806043189495685739804883321742810827393200721165935202113461345341189121878481262804157501377412776232862319621320355848621644296111622821012847841486598065030528023942153353961419999669170271129675035128687385859920095849168131975754461991512272689976099433640293693893090919170782307536818507578688235848384197693692533298407483172542802446580906011767560688264617115860966409501154017736541411808486724779431620788264997644127852381268458622198445679599036891626639834297353944171503456758615361599029808219817971015711863697035296992791911574052368915212672628324804413096382472480824161044040200894957727069812495723915969242750915857688326552854921379521767590787560112789208568244025176191953747398575383907716683372031865319699335181814878389020790174916105050406427383209409784903471885582497612959016492662018749127491482850286648380369168663018205736932898629894791865700076250519048214253326884109458042528099996299466905375763654390876627021177238089733161113180923756830814043316887141282867967511678913613491552995870607215107538140296078988678576029864275275476157746512623721596263822423780050970102430843068981 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) eb6bff188949b9ce07ca39b5bcf365444228e863 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '005653.tc-connect.elior.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018de7a66ff10000040300483046022100d7cf1ce5e5bd755ccbc9265327ef7606444fcb9a089941459eaccbc32a53adaa022100eae88761f6a6fb3d2378810e38b60ae8d0c99e3304fe09fdf768bc309f310098007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018de7a6700f0000040300483046022100bdf1ecf3dc49a8dadcf60df23b6dbbecd7967dde1fdc075ac42407d3124e25c402210092841cacc1465de6cb2ea094b18be6a6c9be3156c8d2a2623936576143a8687d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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