holdur.is
Issued by R3
About this certificate
This digital certificate with serial number 03:46:89:6a:07:36:1a:00:fb:91:a0:ac:34:de:3e:1d:e1:57 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=holdur.is
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:46:89:6a:07:36:1a:00:fb:91:a0:ac:34:de:3e:1d:e1:57Serial Number (int): 285339278244899206348212031775000068219223
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 85:f2:ac:0d:ca:dc:57:0e:5a:8b:58:b7:72:b9:e9:cd:2f:5a:4b:f0
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d4:d7:f1:3e:79:f1:13:1b:3e:23:26:67:9e:fb:2e:53:03:0b:9c:7e
Fingerprint (sha256): 58:92:3e:a0:d0:cf:9c:77:37:41:ab:22:94:91:84:19:5d:be:ac:8f:07:3d:6e:ac:9c:2a:91:69:1a:8b:e6:c2
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate holdur.is
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for holdur.is
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
holdur.is
www.holdur.is
www.holdur.is
Other certificates including the domain name holdur.is
(limited to 100 certificates)
holdur.is
holdur.is
bilar.holdur.is
holdur.is
holdur.is
innri.holdur.is
bilar.holdur.is
holdur.is
bilar.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
www.holdur.is
nav.holdur.is
nav.holdur.is
webmail.holdur.is
www.holdur.is
bilar.holdur.is
holdur.is
bilar.holdur.is
rentway.holdur.is
rentway.holdur.is
holdur.is
bilar.holdur.is
rentway.holdur.is
holdur.is
holdur.is
innri.holdur.is
nav.holdur.is
innri.holdur.is
holdur.is
innri.holdur.is
nav.holdur.is
bilar.holdur.is
innri.holdur.is
holdur.is
holdur.is
holdur.is
bilar.holdur.is
www.holdur.is
webmail.holdur.is
innri.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
www.holdur.is
innri.holdur.is
bilar.holdur.is
innri.holdur.is
holdur.is
holdur.is
nav.holdur.is
holdur.is
bilar.holdur.is
nav.holdur.is
holdur.is
www.holdur.is
bilar.holdur.is
holdur.is
www.holdur.is
holdur.is
bilar.holdur.is
innri.holdur.is
bilar.holdur.is
webmail.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
webmail.holdur.is
webmail.holdur.is
bilar.holdur.is
bilar.holdur.is
innri.holdur.is
rentway.holdur.is
innri.holdur.is
bilar.holdur.is
bilar.holdur.is
www.holdur.is
innri.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
holdur.is
nav.holdur.is
holdur.is
bilar.holdur.is
holdur.is
holdur.is
innri.holdur.is
bilar.holdur.is
holdur.is
bilar.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
www.holdur.is
nav.holdur.is
nav.holdur.is
webmail.holdur.is
www.holdur.is
bilar.holdur.is
holdur.is
bilar.holdur.is
rentway.holdur.is
rentway.holdur.is
holdur.is
bilar.holdur.is
rentway.holdur.is
holdur.is
holdur.is
innri.holdur.is
nav.holdur.is
innri.holdur.is
holdur.is
innri.holdur.is
nav.holdur.is
bilar.holdur.is
innri.holdur.is
holdur.is
holdur.is
holdur.is
bilar.holdur.is
www.holdur.is
webmail.holdur.is
innri.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
www.holdur.is
innri.holdur.is
bilar.holdur.is
innri.holdur.is
holdur.is
holdur.is
nav.holdur.is
holdur.is
bilar.holdur.is
nav.holdur.is
holdur.is
www.holdur.is
bilar.holdur.is
holdur.is
www.holdur.is
holdur.is
bilar.holdur.is
innri.holdur.is
bilar.holdur.is
webmail.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
webmail.holdur.is
webmail.holdur.is
bilar.holdur.is
bilar.holdur.is
innri.holdur.is
rentway.holdur.is
innri.holdur.is
bilar.holdur.is
bilar.holdur.is
www.holdur.is
innri.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
holdur.is
nav.holdur.is
Certificate
The complete raw certificate details for holdur.is in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7jCCBNagAwIBAgISA0aJagc2GgD7kaCsNN4+HeFXMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMDQwMzAxMTlaFw0yNDAzMDMwMzAxMThaMBQxEjAQBgNVBAMT CWhvbGR1ci5pczCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALmb55Qr vPpf2eztMRPcmkacvuzE3sy6O7QDrr3ikNIhGIOXB0X7vQs7gpBYwXsDqTY79L7n 93LOnKH0hQk4BL6ES+1+QKDHoEp150SMOCgUMxq2RV8eyk0wtqqxnKTqB4gNorFp 3NVH6+Tiy6pMLircM4fgqL0SZ8e7IE4B1JzH7LDe84YQgGX5ftHcy4D2wyQOdvxb e+xTF3XFmw7EPV7YeqKhY2fp/PWsQZbqDXM4FhOAqWPSy076vXgEqQENy5NXhSAv VFlEA1zIT1es2eeVXKiNUNM571vG4xWj5TDaO+6MH6S+cTDm5847xkqMohdnyL3G Ekhi3OarpVNzFMFpPl3FnON+77Hq6VFxNtrhPiHw2v8RjMA9b7+ierC5uxqFpva9 QEQfgJjXhiaK4rRIenn2/onjz51ZGL12RemzeA6c+1rExg0Vv62e/mWNYVG/Br0w ktjt78guX2RhxzdsKQesw/Il7EWHb+xE3g1+h9/TN5Ed5bKRXcg74lTIi0RRYUJZ fIrFtIvuc48VfpRuyG/d/M67rjR1AQr3zyZtaOM+IweF4Ug4ystRDyv1UJd41RLa 91RrJ3a9FCOI/ecU+VxVAkugYhtWrLuGTmp+cU4Srhid6kcI6RJlFAyAZWbxyztt /fhrcI5MJj38TThKeOiVNFUREgRcBGSafBWrAgMBAAGjggIaMIICFjAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFIXyrA3K3FcOWotYt3K56c0vWkvwMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMCMGA1UdEQQcMBqCCWhvbGR1ci5pc4INd3d3LmhvbGR1ci5p czATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjDL81H0AAAQDAEcw RQIgSYbLaIGUEgw0trlvOE6hJKOCtkSo/A1YLSeeEhcQwPECIQD6y/FpPch9wll5 pOsgflNF7k2FdbOr7fdrA4ML/xpZKwB2AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i 2reK+Jpt9RfYAAABjDL81IQAAAQDAEcwRQIhAND5I32WwJVgFxwC6hyf35+Fc0F6 mrC/5lPbjCfd84M/AiA6jMggm3gbQBlMEyR8uDN/n9//1pBAXaXt3duVYZDIjDAN BgkqhkiG9w0BAQsFAAOCAQEAUMIG5x9U/9x2Mie2xk8tendMc6u7U7iainto6l9q XxcO9MWIZlXYGL+hsNB+lKDknGjd/YqeTl6hvGvQ7jZvPlLmbQiP5tN762FuJ/jW CE9pYhyMJDpoy/biz5DGXZ+TiM6RORsHMu8ySD96cgLQGJARabLMCkvLX1VAmg4l IAFFFZwPYMWICW9HOXP78kKQVej/2QhBC8FB0CgqUQ8nHTp7PFi46bEnQC3NLc66 PG9yOzUDmv60Xi9Q5zxkRcAhFJz5o8Szdo/MIi6DSP4S2eS0DAd25Kcyfwk54g45 X05OZYY4DawKGIJeIZbwDQM0n74OBbPIpIXUPFuHdETy0A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuZvnlCu8+l/Z7O0xE9ya Rpy+7MTezLo7tAOuveKQ0iEYg5cHRfu9CzuCkFjBewOpNjv0vuf3cs6cofSFCTgE voRL7X5AoMegSnXnRIw4KBQzGrZFXx7KTTC2qrGcpOoHiA2isWnc1Ufr5OLLqkwu Ktwzh+CovRJnx7sgTgHUnMfssN7zhhCAZfl+0dzLgPbDJA52/Ft77FMXdcWbDsQ9 Xth6oqFjZ+n89axBluoNczgWE4CpY9LLTvq9eASpAQ3Lk1eFIC9UWUQDXMhPV6zZ 55VcqI1Q0znvW8bjFaPlMNo77owfpL5xMObnzjvGSoyiF2fIvcYSSGLc5qulU3MU wWk+XcWc437vserpUXE22uE+IfDa/xGMwD1vv6J6sLm7GoWm9r1ARB+AmNeGJori tEh6efb+iePPnVkYvXZF6bN4Dpz7WsTGDRW/rZ7+ZY1hUb8GvTCS2O3vyC5fZGHH N2wpB6zD8iXsRYdv7ETeDX6H39M3kR3lspFdyDviVMiLRFFhQll8isW0i+5zjxV+ lG7Ib938zruuNHUBCvfPJm1o4z4jB4XhSDjKy1EPK/VQl3jVEtr3VGsndr0UI4j9 5xT5XFUCS6BiG1asu4ZOan5xThKuGJ3qRwjpEmUUDIBlZvHLO239+GtwjkwmPfxN OEp46JU0VRESBFwEZJp8FasCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 285339278244899206348212031775000068219223 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-04 03:01:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-03 03:01:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'holdur.is' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 757218665457040439233341523318004254693732675882753393889491208814145930962168510978984786039920697215875845519294229988220190130745865797317202634747378977303467466920726006423650616300034255074668534936499970289661600234912669224143288271295492338165643833127344795513982138966131076996150137811436124559719256116068809175548372758093385672033923082120087092681090748169753379034938881330639996026914634864478053890067337304081508830650530184765526799910349477928100008054029162491014122568037753635960069244613448413544886511036048011035179483298317917324226927963923921126018607945080212206426307191776585136139398457556991681778615056549734580100949694509312756763642337117424661109596536182192271975540400166545636792716594226306616395625323661372016444872142892267572644987215329921019065342256286869290321823909102776304640830570023067326462184715214242964642205033005552764650299067004357888376684340870945389835150150876093419092788485507117644474451014716927691532487315789064998632385839845930745903023380348987538959682237083112951386026743532402911439831571634963675245175816188854859930936634437043464593637572071046179321106726688695864861087174263141157691765497471453390066654093164354982211896696024675000231138731 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 85f2ac0dcadc570e5a8b58b772b9e9cd2f5a4bf0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'holdur.is' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.holdur.is' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c32fcd47d000004030047304502204986cb688194120c34b6b96f384ea124a382b644a8fc0d582d279e121710c0f1022100facbf1693dc87dc25979a4eb207e5345ee4d8575b3abedf76b03830bff1a592b007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c32fcd4840000040300473045022100d0f9237d96c09560171c02ea1c9fdf9f8573417a9ab0bfe653db8c27ddf3833f02203a8cc8209b781b40194c13247cb8337f9fdfffd690405da5eddddb956190c88c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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