hb2b.org
Issued by R3
About this certificate
This digital certificate with serial number 04:ab:56:c4:32:ec:45:1b:a7:bd:d5:9b:ca:f3:58:a1:13:d9 was issued on by Let's Encrypt.
With 23 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=hb2b.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ab:56:c4:32:ec:45:1b:a7:bd:d5:9b:ca:f3:58:a1:13:d9Serial Number (int): 406752760801182953864779311928056150561753
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 90:4e:9c:1e:53:81:b2:8f:d4:4a:61:88:d0:97:c2:eb:a6:9c:ae:82
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 35:f8:1e:f9:6c:ae:3d:d2:ce:f7:9f:f3:a3:71:97:f8:f6:b4:e0:f6
Fingerprint (sha256): 59:51:40:3e:15:bb:87:4f:05:ac:72:31:03:5b:82:28:ca:18:8d:20:c9:c0:f4:90:9b:6e:0a:7f:87:3d:4d:82
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate hb2b.org
23
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hb2b.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
batyaungarsargon.com
beliefjournal.com
brainrasmussen.com
chinablogs.com
churchsanantonio.com
contactof.com
donleycounty.com
ecovergraphics.com
faphousesubs1.bdsmsecurity.com
faqgod.net
flfmt.com
fortworthmomdirectory.com
hb2b.org
internettv.ai
linearmotorpress.com
mainetango.com
mcdonoughcounty.com
mdgproductions.com
proverbsmediagroup.org
redeemhotelgiftcard.com
stockbond.com
thoughtforthesoul.org
tillmancounty.com
beliefjournal.com
brainrasmussen.com
chinablogs.com
churchsanantonio.com
contactof.com
donleycounty.com
ecovergraphics.com
faphousesubs1.bdsmsecurity.com
faqgod.net
flfmt.com
fortworthmomdirectory.com
hb2b.org
internettv.ai
linearmotorpress.com
mainetango.com
mcdonoughcounty.com
mdgproductions.com
proverbsmediagroup.org
redeemhotelgiftcard.com
stockbond.com
thoughtforthesoul.org
tillmancounty.com
Other certificates including the domain name hb2b.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for hb2b.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGljCCBX6gAwIBAgISBKtWxDLsRRunvdWbyvNYoRPZMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjIyMjM0NDNaFw0yNDA2MjAyMjM0NDJaMBMxETAPBgNVBAMT CGhiMmIub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1skamCBF jxaiMgkciqJLajHFayLUxwZL0vUjc1QvYT6Q+/dP23VKb/cbCGi2otPyfxb0hwiu 0bZWAeFMYrsfP+AdFnwTYGjRGZYUFKI+8NUC/baJjybVzs6XRfKDlHAXsOzJwdEp oFknxC/O4MC9Vj9PZhUXaTVcpRvoW1L0USBNGWL8o3jsJMs1hXeykM9A50I0AG93 6tOIT5v4LLXsYyETHWZ6r7+CRLeGmtCTiwRILoiBlIt2g6iX4PP4s8kmIG3op7h6 7VonzL6pW/B/BwIUbL53frHSbcRZqbQv1ktN1g7trDPw2yTBvjakGIQuvkerWyyF rdLM5HGZhrqJPwIDAQABo4IDwzCCA78wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSQ TpweU4Gyj9RKYYjQl8LrppyugjAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+d ixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxl bmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzCCAckG A1UdEQSCAcAwggG8ghRiYXR5YXVuZ2Fyc2FyZ29uLmNvbYIRYmVsaWVmam91cm5h bC5jb22CEmJyYWlucmFzbXVzc2VuLmNvbYIOY2hpbmFibG9ncy5jb22CFGNodXJj aHNhbmFudG9uaW8uY29tgg1jb250YWN0b2YuY29tghBkb25sZXljb3VudHkuY29t ghJlY292ZXJncmFwaGljcy5jb22CHmZhcGhvdXNlc3ViczEuYmRzbXNlY3VyaXR5 LmNvbYIKZmFxZ29kLm5ldIIJZmxmbXQuY29tghlmb3J0d29ydGhtb21kaXJlY3Rv cnkuY29tgghoYjJiLm9yZ4INaW50ZXJuZXR0di5haYIUbGluZWFybW90b3JwcmVz cy5jb22CDm1haW5ldGFuZ28uY29tghNtY2Rvbm91Z2hjb3VudHkuY29tghJtZGdw cm9kdWN0aW9ucy5jb22CFnByb3ZlcmJzbWVkaWFncm91cC5vcmeCF3JlZGVlbWhv dGVsZ2lmdGNhcmQuY29tgg1zdG9ja2JvbmQuY29tghV0aG91Z2h0Zm9ydGhlc291 bC5vcmeCEXRpbGxtYW5jb3VudHkuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIB BQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70A DS1yb+H61BcAAAGOaIRITQAABAMASDBGAiEAwZ0KJNiJe0a3M0RnhKVCw88wcazY TgTqeMhGwmoMQsQCIQDEbF+nULCUjFAyMchAy5uAazXjO//A9cg4t/QcD+5B5QB2 AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjmiESGEAAAQDAEcw RQIhAKktwVpypG/M63QL/310eDiEz/464EH/b9hiJiatiAZ3AiBnx0oCW3SFxBOG 2m2N44pRNHv17VbfORLEIN/IKLx5sDANBgkqhkiG9w0BAQsFAAOCAQEAYFAAqoTf ujHCAbmw9XfuAl3jYFMSbRCUsLdTq1ztEEK02kirUG2JeCBZ5RZDMeP6Qe3dZia7 IPsz0/XRFB0nGnNNkJ7YHwFi0qOGrVl8ZxCgBLmkftAAnd4pOUuOgLuCR2EaoGLL CPojMUzDNSco85sENqyckF+4H6rsZEXoACQ6f+t1h/pZMd3s0Nr/CjshoTHXzQun oH/MsTtu9c0pORgu8Fkd7yM/o/cthn7c4vBqRlLXl7NJXPlHMw7ua5iuyxPTSDPN ftnw+pZ3lIsJjhM9YbCVd2CPljLJSUHKRql++kIyIoBlUgM07HLlstn6skIGXKP6 09xAQ1kww6j0Sg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1skamCBFjxaiMgkciqJL ajHFayLUxwZL0vUjc1QvYT6Q+/dP23VKb/cbCGi2otPyfxb0hwiu0bZWAeFMYrsf P+AdFnwTYGjRGZYUFKI+8NUC/baJjybVzs6XRfKDlHAXsOzJwdEpoFknxC/O4MC9 Vj9PZhUXaTVcpRvoW1L0USBNGWL8o3jsJMs1hXeykM9A50I0AG936tOIT5v4LLXs YyETHWZ6r7+CRLeGmtCTiwRILoiBlIt2g6iX4PP4s8kmIG3op7h67VonzL6pW/B/ BwIUbL53frHSbcRZqbQv1ktN1g7trDPw2yTBvjakGIQuvkerWyyFrdLM5HGZhrqJ PwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 406752760801182953864779311928056150561753 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-22 22:34:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-20 22:34:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hb2b.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27114165283861108603467945182712418026605129023809870159577215280603686763667638993607349773588784500344541412207289247139901273714952025967198729583299785112040910927087723615807233423847094206316923209586418214531415734182349313592355425515292883490982345039828092088403776852142317082072994354307224131182896901737437204546543434483281091624090509964981050956441125199212971549735363206159289505170984057752541912493394623891242065549725499952208685947007216222957582792041033347875341278887929765878445388462645492398693703821216065088426172980167684522136510395300958697812502952747659685410314127792516598761791 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 904e9c1e5381b28fd44a6188d097c2eba69cae82 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (448 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'batyaungarsargon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beliefjournal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brainrasmussen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chinablogs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'churchsanantonio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'contactof.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'donleycounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ecovergraphics.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'faphousesubs1.bdsmsecurity.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'faqgod.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flfmt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fortworthmomdirectory.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hb2b.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internettv.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'linearmotorpress.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mainetango.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mcdonoughcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mdgproductions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'proverbsmediagroup.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redeemhotelgiftcard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stockbond.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thoughtforthesoul.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tillmancounty.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e6884484d0000040300483046022100c19d0a24d8897b46b733446784a542c3cf3071acd84e04ea78c846c26a0c42c4022100c46c5fa750b0948c503231c840cb9b806b35e33bffc0f5c838b7f41c0fee41e5007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e688448610000040300473045022100a92dc15a72a46fcceb740bff7d74783884cffe3ae041ff6fd8622626ad880677022067c74a025b7485c41386da6d8de38a51347bf5ed56df3912c420dfc828bc79b0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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