translation-request.fifa.org
Issued by R3
About this certificate
This digital certificate with serial number 04:ac:76:d4:87:46:f7:fe:08:79:b6:1c:b8:35:9d:7a:c0:92 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=translation-request.fifa.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ac:76:d4:87:46:f7:fe:08:79:b6:1c:b8:35:9d:7a:c0:92Serial Number (int): 407135663251627049532238103860772735729810
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: fa:f1:81:c1:e4:2a:04:37:34:9e:dd:b9:26:40:33:ed:fd:4e:fd:2d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d8:c0:4c:cb:95:b2:14:86:55:e6:bc:af:e3:d4:05:31:c5:d0:f9:bb
Fingerprint (sha256): 5d:85:10:61:7d:6a:86:bc:8e:da:ba:65:5c:29:18:77:13:41:04:38:e1:c1:41:2e:ee:8e:ef:11:14:ad:1a:e2
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate translation-request.fifa.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for translation-request.fifa.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
translation-request-fifa.xtm-intl.com
translation-request.fifa.org
translation-request.fifa.org
Other certificates including the domain name fifa.org
(limited to 100 certificates)
mi.fifa.org
cargo.fifa.org
mail.fifa.org
*.xtm-intl.com
querydb.fifa.org
webmail.fifa.org
sip.fifa.org
sts.fifa.org
sentry.fifa.org
*.fifa.org
owa.fifa.org
*.ifes-uat.fifa.org
sentry2.fifa.org
*.fifa.org
sts.fifa.org
reg.fifa.org
cargo.fifa.org
sam.fifa.org
portal.fifa.org
*.fifa.org
eptest.fifa.org
survey.fifa.org
portal.fifa.org
fqp.fifa.org
login-dev.fifa.org
survey.fifa.org
survey.fifa.org
*.fifa.org
*.fifa.org
webmaillight.fifa.org
survey.fifa.org
mi.fifa.org
sentry2.fifa.org
turftender.fifa.org
reg.fifa.org
tmscms.fifa.org
webmaillight.fifa.org
share.fifa.org
forward.fifa.org
survey.fifa.org
portal.fifa.org
mi.fifa.org
survey.fifa.org
querydb.fifa.org
survey.fifa.org
survey.fifa.org
translation.fifa.org
*.apps-u.fifa.org
turfmaintenance.fifa.org
testforward.fifa.org
*.ifes2-ibm.fifa.org
reg.fifa.org
sts.fifa.org
owalight.fifa.org
cargo.fifa.org
translation-request.fifa.org
epuat.fifa.org
*.fifa.org
tmscms.fifa.org
guest.fifa.org
*.ifes2-dev.fifa.org
survey.fifa.org
mail.fifa.org
*.fifa.org
webmail.fifa.org
tmscms.fifa.org
survey.fifa.org
legal-backoffice.fifa.org
apps.fifa.org
portal.fifa.org
sts.fifa.org
match.fifa.org
input.fifa.org
*.apps-u.fifa.org
mail.fifa.org
reg.fifa.org
translation-uat.fifa.org
*.xtm-intl.com
ifes2-prd.fifa.org
sni.cloudflaressl.com
turfmaintenance.fifa.org
querydb.fifa.org
match.fifa.org
accreditation.fifa.org
tmscms.fifa.org
*.fifa.org
sip.fifa.org
*.ifes2-tst.fifa.org
pmkt.fifa.org
sip.fifa.org
*.fifa.org
turfmaintenance.fifa.org
survey.fifa.org
*.xtm-intl.com
webmaillight.fifa.org
*.ifes2.fifa.org
tfs.fifa.org
webmail.fifa.org
survey.fifa.org
*.ifes2-uatrc.fifa.org
cargo.fifa.org
mail.fifa.org
*.xtm-intl.com
querydb.fifa.org
webmail.fifa.org
sip.fifa.org
sts.fifa.org
sentry.fifa.org
*.fifa.org
owa.fifa.org
*.ifes-uat.fifa.org
sentry2.fifa.org
*.fifa.org
sts.fifa.org
reg.fifa.org
cargo.fifa.org
sam.fifa.org
portal.fifa.org
*.fifa.org
eptest.fifa.org
survey.fifa.org
portal.fifa.org
fqp.fifa.org
login-dev.fifa.org
survey.fifa.org
survey.fifa.org
*.fifa.org
*.fifa.org
webmaillight.fifa.org
survey.fifa.org
mi.fifa.org
sentry2.fifa.org
turftender.fifa.org
reg.fifa.org
tmscms.fifa.org
webmaillight.fifa.org
share.fifa.org
forward.fifa.org
survey.fifa.org
portal.fifa.org
mi.fifa.org
survey.fifa.org
querydb.fifa.org
survey.fifa.org
survey.fifa.org
translation.fifa.org
*.apps-u.fifa.org
turfmaintenance.fifa.org
testforward.fifa.org
*.ifes2-ibm.fifa.org
reg.fifa.org
sts.fifa.org
owalight.fifa.org
cargo.fifa.org
translation-request.fifa.org
epuat.fifa.org
*.fifa.org
tmscms.fifa.org
guest.fifa.org
*.ifes2-dev.fifa.org
survey.fifa.org
mail.fifa.org
*.fifa.org
webmail.fifa.org
tmscms.fifa.org
survey.fifa.org
legal-backoffice.fifa.org
apps.fifa.org
portal.fifa.org
sts.fifa.org
match.fifa.org
input.fifa.org
*.apps-u.fifa.org
mail.fifa.org
reg.fifa.org
translation-uat.fifa.org
*.xtm-intl.com
ifes2-prd.fifa.org
sni.cloudflaressl.com
turfmaintenance.fifa.org
querydb.fifa.org
match.fifa.org
accreditation.fifa.org
tmscms.fifa.org
*.fifa.org
sip.fifa.org
*.ifes2-tst.fifa.org
pmkt.fifa.org
sip.fifa.org
*.fifa.org
turfmaintenance.fifa.org
survey.fifa.org
*.xtm-intl.com
webmaillight.fifa.org
*.ifes2.fifa.org
tfs.fifa.org
webmail.fifa.org
survey.fifa.org
*.ifes2-uatrc.fifa.org
Certificate
The complete raw certificate details for translation-request.fifa.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgISBKx21IdG9/4IebYcuDWdesCSMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTExMjM4NDJaFw0yNDA0MTAxMjM4NDFaMCcxJTAjBgNVBAMT HHRyYW5zbGF0aW9uLXJlcXVlc3QuZmlmYS5vcmcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+5ewrpDSrGR76HGl/bdmGK0L+fvtW7/Rb8WFpGSJa0zLm AwbKIHhrYgRQLvDSkTptbLeGoH+Gb0+eLQ/gC1goPVIdsR0lMFt6vY2MtuwJGm7K KEXS58nihkaEX1m07WeMW3aor37q7kt3qPjQx3tvIvL+JfbjPXZDh53npMk9yQbs 7UmhTr+PO9FgKbtZyjcGwztTCtq7Tf+Qs95UAVEZsKh6eSnFL4EImdEXGHIC1nqF 65sfwbqbAAAuP02epGCEUA6+AVgUkC5KqJW5zNB++QpTfN3yYJl1R5Z0p55huwlx 3Zouf/PJSfDV0PshhyAa8B4yty3HQAzb5525tgnxAgMBAAGjggJFMIICQTAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFPrxgcHkKgQ3NJ7duSZAM+39Tv0tMB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvME4GA1UdEQRHMEWCJXRyYW5zbGF0aW9uLXJlcXVlc3Qt ZmlmYS54dG0taW50bC5jb22CHHRyYW5zbGF0aW9uLXJlcXVlc3QuZmlmYS5vcmcw EwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdwBI sONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYz4vxstAAAEAwBIMEYC IQCP3IaKJEFyjSvXKh3cmKnSbaBBe5Y4zUqMFMyEQL9Q2AIhAL5LrprfWfRbGxlE tdsuYwEwm4juJ4RJwafxneEGJIvdAHUAouK/1h7eLy8HoNZObTen3GVDsMa1LqLa t4r4mm31F9gAAAGM+L8bMgAABAMARjBEAiAuj3dqJ27sgpAGjRXPlB+xWFspd1hX AHjVEXVYDnxQ5QIgN1Fq+gE0fMdu9rkL2OALDjfsGX4HLP/YrIOwkgem4XowDQYJ KoZIhvcNAQELBQADggEBAI8xThvH63h13x3Qv7deUhfkpw4T9r/TEggM3AaNEnWH v3BThyAKuNRUSYOEzcYbE4n9yTsEbIHDJVtUblGyXv0YN13Dv/QNPNa8ggEfJbEP g7J36zY4cyugI+JqTGIgC4hoT+UtVNMi79Q151yWs2h3/XkNHa+VAt65KVvyDVun tdTLMHO3X1xC1WxnLy6HPxUdL1keTmBycJI2K063rKoZk8J+OWX5gtKO6R+FXH9J hSzQimdoFO6CH3XrtxALOAAC3XGsM/xXuiaoor7QCdO9/GKHF1YlpaLNbjzdnXTX lpgcVeT4MzCoRTPThtIUP5TXGyrB7j5MIPj0aQe71aA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuXsK6Q0qxke+hxpf23Z hitC/n77Vu/0W/FhaRkiWtMy5gMGyiB4a2IEUC7w0pE6bWy3hqB/hm9Pni0P4AtY KD1SHbEdJTBber2NjLbsCRpuyihF0ufJ4oZGhF9ZtO1njFt2qK9+6u5Ld6j40Md7 byLy/iX24z12Q4ed56TJPckG7O1JoU6/jzvRYCm7Wco3BsM7Uwrau03/kLPeVAFR GbCoenkpxS+BCJnRFxhyAtZ6heubH8G6mwAALj9NnqRghFAOvgFYFJAuSqiVuczQ fvkKU3zd8mCZdUeWdKeeYbsJcd2aLn/zyUnw1dD7IYcgGvAeMrctx0AM2+edubYJ 8QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 407135663251627049532238103860772735729810 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-11 12:38:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-10 12:38:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'translation-request.fifa.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24098656974170839713578151353752833675623315772807886323121590237755676990621655097623615427628826958673411812107183460347191928934743822747356307448048074026825704561213782762327687801784702054408655194904431609922571812931277362555165685759320050969818434551154306122053964979514394723022201659852781084773836602979904277573352430064239095319747899761772731609184522446643907512729609696440189238163322994764265942054261307000018292637510196929251898699951418232738967028240411291327408504210711696312961987997015029094157179754491335082900868614135623454143553379830417332985183862664692168526247834565544999520753 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) faf181c1e42a0437349eddb9264033edfd4efd2d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (71 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'translation-request-fifa.xtm-intl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'translation-request.fifa.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cf8bf1b2d00000403004830460221008fdc868a2441728d2bd72a1ddc98a9d26da0417b9638cd4a8c14cc8440bf50d8022100be4bae9adf59f45b1b1944b5db2e6301309b88ee278449c1a7f19de106248bdd007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018cf8bf1b32000004030046304402202e8f776a276eec8290068d15cf941fb1585b297758570078d51175580e7c50e5022037516afa01347cc76ef6b90bd8e00b0e37ec197e072cffd8ac83b09207a6e17a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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