kulturstiftung-thueringen.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:3e:d3:d5:f3:bf:99:15:39:15:28:48:e2:71:02:47:2b:e8 was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=kulturstiftung-thueringen.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:3e:d3:d5:f3:bf:99:15:39:15:28:48:e2:71:02:47:2b:e8Serial Number (int): 369828228486286146079782857126666587024360
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 9b:d5:b9:12:35:2d:ef:d4:00:6a:07:47:1f:04:b0:68:8d:53:31:6f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 56:a0:b9:af:ff:7a:ec:07:65:57:93:51:e2:65:a9:6f:4d:60:95:84
Fingerprint (sha256): 5f:28:8d:0b:c2:7e:a7:3e:6e:b0:40:25:50:ad:a0:9e:a1:79:b5:c8:05:65:fd:ae:a4:aa:2e:c8:d5:bb:34:99
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate kulturstiftung-thueringen.de
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kulturstiftung-thueringen.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.kulturstiftung-thueringen.de
backend.kulturstiftung-thueringen.de
cron.kulturstiftung-thueringen.de
kultstift.api.itool4.net
kultstift.b01.itool4.net
kultstift.cron.itool4.net
kultstift.f01.itool4.net
kulturstiftung-thueringen.de
www.kulturstiftung-thueringen.de
backend.kulturstiftung-thueringen.de
cron.kulturstiftung-thueringen.de
kultstift.api.itool4.net
kultstift.b01.itool4.net
kultstift.cron.itool4.net
kultstift.f01.itool4.net
kulturstiftung-thueringen.de
www.kulturstiftung-thueringen.de
Other certificates including the domain name kulturstiftung-thueringen.de
(limited to 100 certificates)
www.kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
kulturstiftung-thueringen.de
Certificate
The complete raw certificate details for kulturstiftung-thueringen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgISBD7T1fO/mRU5FShI4nECRyvoMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA3MzAwMDAxNThaFw0x ODEwMjgwMDAxNThaMCcxJTAjBgNVBAMTHGt1bHR1cnN0aWZ0dW5nLXRodWVyaW5n ZW4uZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpfcyIhbVy18hf 7+7kTswjRJJjwGROKfEkhQ0jDoB+dIntzt6FbJ8Vs+hIaHjPqur9RhiFMRgOyZwb FzXpnw5mRKCCLwcYKxuxok+FyUQaAGu7Oau7ytNFHQKHuXQDc6sSrndBUzQuMBzp 9sRJ30K/P4Y3mVDZTp+E1glA2gpMAAuwNPk3431/3DtcXA+M+MkXIRzCBkinRt/+ t83taP0uTcAioxKU6uA/dyc/FLcb3DAc3eo2QHBCfanZ1NNYon+pXIiziR7yGBEe Rpimv3E28JDrgqihQCIUSKZbPFm9FGNxKwfmZFWkNlsH3z/zMDKzJoYZ6i2yLddy 7hkIIBA7AgMBAAGjggQhMIIEHTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJvVuRI1 Le/UAGoHRx8EsGiNUzFvMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wggEhBgNVHREEggEYMIIBFIIgYXBpLmt1bHR1cnN0 aWZ0dW5nLXRodWVyaW5nZW4uZGWCJGJhY2tlbmQua3VsdHVyc3RpZnR1bmctdGh1 ZXJpbmdlbi5kZYIhY3Jvbi5rdWx0dXJzdGlmdHVuZy10aHVlcmluZ2VuLmRlghhr dWx0c3RpZnQuYXBpLml0b29sNC5uZXSCGGt1bHRzdGlmdC5iMDEuaXRvb2w0Lm5l dIIZa3VsdHN0aWZ0LmNyb24uaXRvb2w0Lm5ldIIYa3VsdHN0aWZ0LmYwMS5pdG9v bDQubmV0ghxrdWx0dXJzdGlmdHVuZy10aHVlcmluZ2VuLmRlgiB3d3cua3VsdHVy c3RpZnR1bmctdGh1ZXJpbmdlbi5kZTCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB 5gYLKwYBBAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2Vu Y3J5cHQub3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5 IG9ubHkgYmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5 IGluIGFjY29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5k IGF0IGh0dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMIIBBQYKKwYB BAHWeQIEAgSB9gSB8wDxAHcAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH 9HgAAAFk6LTE6gAABAMASDBGAiEAyNLQvffutw7tWek/ysB9POTCvV992f6F17Ni EJn5h6ICIQD1CjNe66lIPUPZHAyBg7Jsz77fFaJaOruh0Y9euztpngB2AG9Tdqwx 8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABZOi0xSQAAAQDAEcwRQIhAIKU WQO9fpp4Qu3lD4gTb3ADaYPO90xMtg27zy6zRyBDAiB0BZw4O7JA/Ik+R7OEVmws gs8GIJY9jMkLJyPuBbDKgjANBgkqhkiG9w0BAQsFAAOCAQEAM0c4gC4ATOJRJvL9 itT9E45cwR1dAfp2MbD6EFvoLM4vstGhwOj8FNM15im56tcsE2uGyCGsYwdYU4JE /4V9DfIvZ8NzajrnmhpWs/isT4vuAWm0ee//beCig5MY8jQs7bVAACYUbjHtbSQs CBx+QHhNwLraQthEoMlDJHQ80AVKfdj8gRYDHxzMn1n3lRGZkBpCHL6RVs1K1eHz BXbPa7trBJgYTlD8ImoaKN7SaaaqaSig67/pYxEzgNKYOib6O8nyrycZKjCOtauU etMrQNBNGfg9a+WUgxP7HhNwfr1FTEq2Qz3oGPb4Whc3NrZLMrDEvFzLCHK2Tf+Z 6GP58A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqX3MiIW1ctfIX+/u5E7M I0SSY8BkTinxJIUNIw6AfnSJ7c7ehWyfFbPoSGh4z6rq/UYYhTEYDsmcGxc16Z8O ZkSggi8HGCsbsaJPhclEGgBruzmru8rTRR0Ch7l0A3OrEq53QVM0LjAc6fbESd9C vz+GN5lQ2U6fhNYJQNoKTAALsDT5N+N9f9w7XFwPjPjJFyEcwgZIp0bf/rfN7Wj9 Lk3AIqMSlOrgP3cnPxS3G9wwHN3qNkBwQn2p2dTTWKJ/qVyIs4ke8hgRHkaYpr9x NvCQ64KooUAiFEimWzxZvRRjcSsH5mRVpDZbB98/8zAysyaGGeotsi3Xcu4ZCCAQ OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 369828228486286146079782857126666587024360 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-30 00:01:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-28 00:01:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kulturstiftung-thueringen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21396307317565636941796879516345274511245774039539334143926450278763687175208954099050738488066000766806630981883642752000839900698985115050937099633620379375420602950996150799354031221871072330992027149331619254722682032957814833162225762417816207644855470142803290627714346496126606666738180381098391064836853227746177957833968590216289408233724291421249686420058195291238262505031503068118188592306638491536401892852821091157879114050621857307016906413627100690606815032988838856442655490498124723571505982188539514977295812602189956423779770922304022099622522980281216878865172713665054765422800276241248327569467 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9bd5b912352defd4006a07471f04b0688d53316f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (280 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.kulturstiftung-thueringen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'backend.kulturstiftung-thueringen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cron.kulturstiftung-thueringen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kultstift.api.itool4.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kultstift.b01.itool4.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kultstift.cron.itool4.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kultstift.f01.itool4.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kulturstiftung-thueringen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kulturstiftung-thueringen.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000164e8b4c4ea0000040300483046022100c8d2d0bdf7eeb70eed59e93fcac07d3ce4c2bd5f7dd9fe85d7b3621099f987a2022100f50a335eeba9483d43d91c0c8183b26ccfbedf15a25a3abba1d18f5ebb3b699e0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000164e8b4c524000004030047304502210082945903bd7e9a7842ede50f88136f70036983cef74c4cb60dbbcf2eb3472043022074059c383bb240fc893e47b384566c2c82cf0620963d8cc90b2723ee05b0ca82 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00334738802e004ce25126f2fd8ad4fd138e5cc11d5d01fa7631b0fa105be82cce2fb2d1a1c0e8fc14d335e629b9ead72c136b86c821ac630758538244ff857d0df22f67c3736a3ae79a1a56b3f8ac4f8bee0169b479efff6de0a2839318f2342cedb5400026146e31ed6d242c081c7e40784dc0bada42d844a0c94324743cd0054a7dd8fc8116031f1ccc9f59f7951199901a421cbe9156cd4ad5e1f30576cf6bbb6b0498184e50fc226a1a28ded269a6aa6928a0ebbfe963113380d2983a26fa3bc9f2af27192a308eb5ab947ad32b40d04d19f83d6be5948313fb1e13707ebd454c4ab6433de818f6f85a173736b64b32b0c4bc5ccb0872b64dff99e863f9f0