hajoscho.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:70:b4:fd:2c:11:19:c9:1f:14:96:54:57:86:9b:7d:cf:89 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hajoscho.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:70:b4:fd:2c:11:19:c9:1f:14:96:54:57:86:9b:7d:cf:89Serial Number (int): 299689058474553223605806754816001891487625
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: cc:32:83:b3:d6:8d:ae:f3:30:d3:b1:10:81:dc:d5:67:42:bd:83:aa
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a4:ee:40:4f:da:6e:7a:0d:d7:8d:c0:61:78:84:8a:8d:d1:02:ee:67
Fingerprint (sha256): 58:ec:8a:00:ba:7a:26:e0:ae:67:5d:48:0f:48:25:0a:f9:86:5f:96:10:80:da:be:eb:56:a1:48:31:e1:b2:5e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hajoscho.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hajoscho.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hajoscho.de
www.hajoscho.de
www.hajoscho.de
Other certificates including the domain name hajoscho.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for hajoscho.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHEjCCBfqgAwIBAgISA3C0/SwRGckfFJZUV4abfc+JMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA1MzAwNjExMDdaFw0x ODA4MjgwNjExMDdaMBYxFDASBgNVBAMTC2hham9zY2hvLmRlMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAyT+A7jraDga2E9v5DW1XnjfetKOSnwuj5EMK wAp5d/bJc8L7j4OOd4IMwsQcnaS4Sz6Zg1JGGLIoVC8pSQqUhANG5mpTUa7X1YPu hpx4h9bwrMh1TJfa1jEwaTw6ufjMwb1mmQep915mSC1sxHio2CQd5JhSlOV5/zrC YJkZFn38LjQZTfI4Old9yG2gOcNWZF+GpPWsc41Dbyqt+7qqR6gC1EtzwHLrXwQD WtzO/phfFJHMphM/OtGns4ie93HcR24nfDlgVlA6B/rW9o8txcAodSIRFzSacSxk SQO/2LZ6bYXBI3YLG2imikAu1V68EyZup0Js1nBFhoIHxoAjb5CbAOUGe5pOFVwe bqky71CZ6T5WQWIvj+ybrohi3HMLXPmVvv9zz+ZKQKGyfobZzqnbhgT8s5ibcEAc WjSzqnqrvteG9uTeh8mg0lrzn7jsBtPeT3At00KWDRJLH0E0HgYFmvLlp+L0krqC l0EH85EehAVQ4n1HPi6uyNhb09ZyY/SfUMwFb9rdQWPEyJSqoWoIkKNXs8XlsgNI lUewOOXjkG2BzxSG4ONh2kqrAG8UR0+RF7X9hPqpBWDXqCvwbmbjaL7u3F9ln4cX ngR5Vovzofp2kWyIFTkzBe8UV5nb+g/r1M8GD7WTdgJOsuL9l2alO3Hum1zK/8O4 5STaYAUCAwEAAaOCAyQwggMgMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUzDKDs9aN rvMw07EQgdzVZ0K9g6owHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAnBgNVHREEIDAeggtoYWpvc2Noby5kZYIPd3d3Lmhh am9zY2hvLmRlMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEB ATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasG CCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxp ZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5j ZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9s ZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdgDbdK/uyynssf7KPnFtLOW5qrs294Rxg8ddnU83th+/ZAAAAWOv4tHjAAAE AwBHMEUCIQDpySVbQyzN36sUTbT8m2mirlXXyYAm1NUVb5NEsKYKtwIgTeQfnklD Rel2UEcfOL3xJX0FEo8wZ5SlHWd87ipQ4f8AdgApPFGWVMg5ZbqqUPxYB9S3b79Y eily3KTDDPTlRUf0eAAAAWOv4tHzAAAEAwBHMEUCIEVubhlgFcS8wdFv4aqaILB8 8NqSxZ3+Jqv1fW7ZVQx+AiEAgXM8aBJ6sCd1eiGhBfq5Wlg9233gvFiLsOjOCxWF GlkwDQYJKoZIhvcNAQELBQADggEBAI4ZKVgt67R47HiWA+gar9vycLDM6Ve0NPlp aaOWh6oQU69xM1FNifyIcu49d5WXUJm5+3wbMjAOkRsGe0cUbFmgVd02ttPHDv5d ZcAkuI6L+8pHaTKGWdSRhkk+ZtmLpWW8reH+chNhYg7yi+cS0HkRuVkMgFJlmNgd MsypuwGOBfwvJi9Yd/ISvNqvtNfMPPell6EpAV0SWpeu5ke5F6W8RDKDbnM5ePK0 aI3rkULTv9xTd5lVJko7hm2GnUg/jxmH7uBpmzicmoQeQJ/ztN7yfHWetEiAI104 svkHJKDizrFLjLGsc3TKGaZVqC3VfyXI/U9FUqURDYCZqGIPv3Y= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyT+A7jraDga2E9v5DW1X njfetKOSnwuj5EMKwAp5d/bJc8L7j4OOd4IMwsQcnaS4Sz6Zg1JGGLIoVC8pSQqU hANG5mpTUa7X1YPuhpx4h9bwrMh1TJfa1jEwaTw6ufjMwb1mmQep915mSC1sxHio 2CQd5JhSlOV5/zrCYJkZFn38LjQZTfI4Old9yG2gOcNWZF+GpPWsc41Dbyqt+7qq R6gC1EtzwHLrXwQDWtzO/phfFJHMphM/OtGns4ie93HcR24nfDlgVlA6B/rW9o8t xcAodSIRFzSacSxkSQO/2LZ6bYXBI3YLG2imikAu1V68EyZup0Js1nBFhoIHxoAj b5CbAOUGe5pOFVwebqky71CZ6T5WQWIvj+ybrohi3HMLXPmVvv9zz+ZKQKGyfobZ zqnbhgT8s5ibcEAcWjSzqnqrvteG9uTeh8mg0lrzn7jsBtPeT3At00KWDRJLH0E0 HgYFmvLlp+L0krqCl0EH85EehAVQ4n1HPi6uyNhb09ZyY/SfUMwFb9rdQWPEyJSq oWoIkKNXs8XlsgNIlUewOOXjkG2BzxSG4ONh2kqrAG8UR0+RF7X9hPqpBWDXqCvw bmbjaL7u3F9ln4cXngR5Vovzofp2kWyIFTkzBe8UV5nb+g/r1M8GD7WTdgJOsuL9 l2alO3Hum1zK/8O45STaYAUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 299689058474553223605806754816001891487625 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-30 06:11:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-28 06:11:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hajoscho.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 821020458563576558682292267122600005408350522169428132990550358912797827890837169445537892656214408373577125291575981269216298544630485207681852390490013102094258670030126236321377842629671384437156410971836807675782886767539295137908591426353925689645111383320582753686606258916843691849140166385195675084754059914481047254969010040430658275277924840320187059854375006934689116818967708661252801561787597083080593147877321862725748045836226447905278933229076367912732420621708934755033606351973604215522924394004386773914497381150131139958487180889902964952669692414634936837145376028995221278524184703342409604585868615820619397496324467825224227372367561399705270273877713765101255157379319865962381149314318162089128497744383765445969333939826722698802975927272961778407884302405606037042720061228361391003239260612363995853197363951077816652237350293845619124620980838860013626665478501751454353995340950805269398460341954830583509656906893348423589341940294662940403995236992684371374831991299808646985021396542826852407276793837629954235044316976035427953880363106754393255320260506928655417636942635173008714549926406414211711487878795519971618622654357363468294568039308794536527128190204006140040850965985854465851006803973 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cc3283b3d68daef330d3b11081dcd56742bd83aa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hajoscho.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hajoscho.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf6400000163afe2d1e30000040300473045022100e9c9255b432ccddfab144db4fc9b69a2ae55d7c98026d4d5156f9344b0a60ab702204de41f9e494345e97650471f38bdf1257d05128f306794a51d677cee2a50e1ff007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000163afe2d1f300000403004730450220456e6e196015c4bcc1d16fe1aa9a20b07cf0da92c59dfe26abf57d6ed9550c7e02210081733c68127ab027757a21a105fab95a583ddb7de0bc588bb0e8ce0b15851a59 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008e1929582debb478ec789603e81aafdbf270b0cce957b434f96969a39687aa1053af7133514d89fc8872ee3d7795975099b9fb7c1b32300e911b067b47146c59a055dd36b6d3c70efe5d65c024b88e8bfbca4769328659d49186493e66d98ba565bcade1fe721361620ef28be712d07911b9590c80526598d81d32cca9bb018e05fc2f262f5877f212bcdaafb4d7cc3cf7a597a129015d125a97aee647b917a5bc4432836e733978f2b4688deb9142d3bfdc53779955264a3b866d869d483f8f1987eee0699b389c9a841e409ff3b4def27c759eb44880235d38b2f90724a0e2ceb14b8cb1ac7374ca19a655a82dd57f25c8fd4f4552a5110d8099a8620fbf76