www2.avocada.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:f8:b8:84:d7:ca:b6:5a:1e:14:89:8d:2a:58:20:9c:1b:fb was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www2.avocada.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f8:b8:84:d7:ca:b6:5a:1e:14:89:8d:2a:58:20:9c:1b:fbSerial Number (int): 345972152502861818826801496129448533826555
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9e:d3:9e:db:cd:fd:1a:3b:22:3d:53:29:87:52:cc:96:23:77:8b:6c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 62:59:91:d6:e3:a8:74:d6:3e:e9:b8:2b:e2:dd:49:93:87:ca:30:2e
Fingerprint (sha256): 5c:b2:26:22:20:3d:d2:80:1d:fc:a6:31:88:25:90:83:d1:d5:9c:d0:d8:4d:38:e4:30:71:34:4c:01:42:7a:a5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www2.avocada.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www2.avocada.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
avocada.sf-digital.de
www2.avocada.de
www2.avocada.de
Other certificates including the domain name avocada.de
(limited to 100 certificates)
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
montblanc.avocada.de
www2.avocada.de
iwc.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
montblanc.avocada.de
www2.avocada.de
iwc.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
montblanc.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
www2.avocada.de
montblanc.avocada.de
www2.avocada.de
Certificate
The complete raw certificate details for www2.avocada.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGIDCCBQigAwIBAgISA/i4hNfKtloeFImNKlggnBv7MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA4MTQyMjAyMTdaFw0x ODExMTIyMjAyMTdaMBoxGDAWBgNVBAMTD3d3dzIuYXZvY2FkYS5kZTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAMt1/zyp8NhGl+hvDOZEX2OwKIMjgopm aLyYozHfctxfYRkhECT8PCvuAspS/kZWRkhA9ZLkHdptQEhR9rkpIpn3sOobHocn bgt8/wJAsoL/p3dEuGdjVy+xMqbxU3EbqBVGDhXw3t9FTD3zyfo9hmcupo3613n4 dP7cuiCKoTouHobCnHKM7N0YUvRqIGXfKZQEnZJ5BtuE1UkYFjhINw9hHNBZKkUs cvDR2cm4FWk6IDKxIBKfbaq3j6eVOucgNqcjR6uorDn9xfsixezrKkO9mu83j2h1 pxnSgyUUFzaApIP/+xkxiEva83ltV0dPOSWkcrcultXswhQFo+L74c8CAwEAAaOC Ay4wggMqMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUntOe2839GjsiPVMph1LMliN3 i2wwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEE YzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQu b3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQu b3JnLzAxBgNVHREEKjAoghVhdm9jYWRhLnNmLWRpZ2l0YWwuZGWCD3d3dzIuYXZv Y2FkYS5kZTCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYBBAGC3xMBAQEw gdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIGrBggr BgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkgYmUgcmVsaWVk IHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFjY29yZGFuY2Ug d2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0dHBzOi8vbGV0 c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHUAwRZK4Kdy0tQ5LcgKwQdw1PDEm96ZGkhAwfoHUWT2M2AAAAFlOqzyTQAABAMA RjBEAiAFWuW+bnbej7nglVMQDkAGlvZm5o+d1QR92XOhwDWlrgIgEnc7IOaGeT64 YgZOFypiZgb9CwWu20h5UVQ8J/k0uo0AdwApPFGWVMg5ZbqqUPxYB9S3b79Yeily 3KTDDPTlRUf0eAAAAWU6rPJiAAAEAwBIMEYCIQDC0c60bhpst3aptAk9fPJvmW5o AO+L7wOVN97skjR8IgIhAJ8/aGL3+IkytoinNES8jqAoEvaAR2zBd+akUeL9Psn7 MA0GCSqGSIb3DQEBCwUAA4IBAQBZl2mLMHDrSdNMxa80JiK8YzRggY2z+6Ldy0ym qNbetqqUtwPYB06IIHONq/zS4EsC0GwhKGJlpWe+AW9P7n/e5cVGm44UjeaiRTR7 4XtFSSx79Mqcn/G/yaAGrV9eIW4D1/v6adqCFVIzTzMXl3aAjjg5WVo+wmX/y4uT 5HeQ3dSRHnZki6zkHimqgvyFtZ/eAms/LgujiSzVgZ5wBREqvLkQt7bnpY1h3arX AGCCQv5zqxOJUY+antEE6mmlEZn8lK2Kx0j/EEiEQdl90/PkGmrsf0hmMTNzzgOr X1jD2xUI1DxDIV5ZMCcVHtUAf49eDOT5oHsdb4FP14Yc3cuL -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3X/PKnw2EaX6G8M5kRf Y7AogyOCimZovJijMd9y3F9hGSEQJPw8K+4CylL+RlZGSED1kuQd2m1ASFH2uSki mfew6hsehyduC3z/AkCygv+nd0S4Z2NXL7EypvFTcRuoFUYOFfDe30VMPfPJ+j2G Zy6mjfrXefh0/ty6IIqhOi4ehsKccozs3RhS9GogZd8plASdknkG24TVSRgWOEg3 D2Ec0FkqRSxy8NHZybgVaTogMrEgEp9tqrePp5U65yA2pyNHq6isOf3F+yLF7Osq Q72a7zePaHWnGdKDJRQXNoCkg//7GTGIS9rzeW1XR085JaRyty6W1ezCFAWj4vvh zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 345972152502861818826801496129448533826555 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-14 22:02:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-12 22:02:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www2.avocada.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25684562407019810128938811318531863592190876230357834758673591629942667860638788170015955796249940300830856687949191563982289570334907657375602548448203054354756150662408887573500037338280755351572926308822203648541116851249115696592109801508205339341165642105164477508695360538052518384301294786679407129436290056886543349837464994201430435019906303346946040306020725955579772502684762707216952999576082631670829186363567327076268967196751132715669184799954195661114192286414516373825713143719395662613791613857081505659472843294527066952290253297737722634194832317272074699851152044935057992459781416594101409407439 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9ed39edbcdfd1a3b223d53298752cc9623778b6c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avocada.sf-digital.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www2.avocada.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500c1164ae0a772d2d4392dc80ac10770d4f0c49bde991a4840c1fa075164f63360000001653aacf24d00000403004630440220055ae5be6e76de8fb9e09553100e400696f666e68f9dd5047dd973a1c035a5ae022012773b20e686793eb862064e172a626606fd0b05aedb487951543c27f934ba8d007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001653aacf2620000040300483046022100c2d1ceb46e1a6cb776a9b4093d7cf26f996e6800ef8bef039537deec92347c220221009f3f6862f7f88932b688a73444bc8ea02812f680476cc177e6a451e2fd3ec9fb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 005997698b3070eb49d34cc5af342622bc633460818db3fba2ddcb4ca6a8d6deb6aa94b703d8074e8820738dabfcd2e04b02d06c21286265a567be016f4fee7fdee5c5469b8e148de6a245347be17b45492c7bf4ca9c9ff1bfc9a006ad5f5e216e03d7fbfa69da821552334f33179776808e3839595a3ec265ffcb8b93e47790ddd4911e76648bace41e29aa82fc85b59fde026b3f2e0ba3892cd5819e7005112abcb910b7b6e7a58d61ddaad700608242fe73ab1389518f9a9ed104ea69a51199fc94ad8ac748ff10488441d97dd3f3e41a6aec7f4866313373ce03ab5f58c3db1508d43c43215e593027151ed5007f8f5e0ce4f9a07b1d6f814fd7861cddcb8b