charlottekitchenandbathroom.com.shapefashion.org
Issued by R3
About this certificate
This digital certificate with serial number 03:36:18:79:2f:9e:00:5a:1f:9c:98:25:1e:9e:c3:53:60:48 was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=charlottekitchenandbathroom.com.shapefashion.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:36:18:79:2f:9e:00:5a:1f:9c:98:25:1e:9e:c3:53:60:48Serial Number (int): 279744636314621547663474727697335337574472
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d5:ba:70:90:a0:a4:cb:5c:eb:20:01:b6:7d:bd:be:0a:d0:74:79:3e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 13:88:e2:38:f8:12:2a:94:d8:9b:d2:07:43:70:7c:62:cf:ff:9b:37
Fingerprint (sha256): 5f:99:18:30:74:81:4e:4a:4b:0c:5b:35:f9:25:1b:88:ea:af:ba:2c:43:03:0b:2a:91:81:55:42:4d:9f:f7:11
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate charlottekitchenandbathroom.com.shapefashion.org
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for charlottekitchenandbathroom.com.shapefashion.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
acemannan101.com
africoin.org.epik.co
allanblock.com.do
charlottekitchenandbathroom.com.shapefashion.org
commonlawdivorce.com
homelifeacademy.org
passamaquoddybaskets.com
republicanphotographer.net.michiganusedchillers.com
volumepills.org.saspaguide.com
africoin.org.epik.co
allanblock.com.do
charlottekitchenandbathroom.com.shapefashion.org
commonlawdivorce.com
homelifeacademy.org
passamaquoddybaskets.com
republicanphotographer.net.michiganusedchillers.com
volumepills.org.saspaguide.com
Other certificates including the domain name shapefashion.org
(limited to 100 certificates)
shapefashion.org
trade.limited
thematch.co.za
shapefashion.org
shapefashion.org
trade.limited
shapefashion.org
arbitrage.ag
powerbilt.club
shapefashion.org
justwanna.world
www.shapefashion.org
aplacetorecycle.org
trade.limited
cars101.world
medicalforkids.com.shapefashion.org
usc.mba
sculpit.media
jenksamericatoastmasters.club
upgrader.de
charlottekitchenandbathroom.com.shapefashion.org
jenksamericatoastmasters.club
shapefashion.org
justwanna.world
www.shapefashion.org
www.shapefashion.org
justwanna.world
radiantresults.world
www.shapefashion.org
trade.limited
wharf.website
drama.vc
impossible.ca
jenksamericatoastmasters.club
usc.mba
allanblock.ca
shapefashion.org
usc.mba
justwanna.world
impossible.ca
cryogenic.ninja
jenksamericatoastmasters.club
www.shapefashion.org
aplacetorecycle.org
jenksamericatoastmasters.club
arbitrageurs.cc
jenksamericatoastmasters.club
aaron.cc
jenksamericatoastmasters.club
shapefashion.org
www.cbbt.bible
hydratight.ca
trade.limited
thematch.co.za
shapefashion.org
shapefashion.org
trade.limited
shapefashion.org
arbitrage.ag
powerbilt.club
shapefashion.org
justwanna.world
www.shapefashion.org
aplacetorecycle.org
trade.limited
cars101.world
medicalforkids.com.shapefashion.org
usc.mba
sculpit.media
jenksamericatoastmasters.club
upgrader.de
charlottekitchenandbathroom.com.shapefashion.org
jenksamericatoastmasters.club
shapefashion.org
justwanna.world
www.shapefashion.org
www.shapefashion.org
justwanna.world
radiantresults.world
www.shapefashion.org
trade.limited
wharf.website
drama.vc
impossible.ca
jenksamericatoastmasters.club
usc.mba
allanblock.ca
shapefashion.org
usc.mba
justwanna.world
impossible.ca
cryogenic.ninja
jenksamericatoastmasters.club
www.shapefashion.org
aplacetorecycle.org
jenksamericatoastmasters.club
arbitrageurs.cc
jenksamericatoastmasters.club
aaron.cc
jenksamericatoastmasters.club
shapefashion.org
www.cbbt.bible
hydratight.ca
Certificate
The complete raw certificate details for charlottekitchenandbathroom.com.shapefashion.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBjCCBO6gAwIBAgISAzYYeS+eAFofnJglHp7DU2BIMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMDQxNzMwNTlaFw0yNDA0MDMxNzMwNThaMDsxOTA3BgNVBAMT MGNoYXJsb3R0ZWtpdGNoZW5hbmRiYXRocm9vbS5jb20uc2hhcGVmYXNoaW9uLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALhrQbATCmtQaRGCP1p+ Ou58/aW74qg8g8yetyrtmuVM7TEHgxhd5JX0eQ19+B8E11bJDa2UW2dKNRyc5Vx5 2IEPw9GjC+pSQOi9eHj9129Qcwgqt0qsnbQlVXOIc0QDvCaXpYaqyQkCWdJ0XgLz dYa4nn85YNznmh1NI+Nsdv4zXqjtJp2fAlTG5RNRNj7uCTQC9CgvV9wpR9AOMMBT YNTqemYXq7ss2DZIbMmscuIz+L1B0bR6T2yARu3aK6wEAYMgvWxn9oisp73IqTSr 4lS6NR5wfIwQ52tR9kqCiT/4Lm7augksi+v0gNwbI/6chcchFRJjWPmIZx2x0svm 9D0CAwEAAaOCAwswggMHMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1bpwkKCky1zr IAG2fb2+CtB0eT4wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYI KwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcw IgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wggEUBgNVHREEggEL MIIBB4IQYWNlbWFubmFuMTAxLmNvbYIUYWZyaWNvaW4ub3JnLmVwaWsuY2+CEWFs bGFuYmxvY2suY29tLmRvgjBjaGFybG90dGVraXRjaGVuYW5kYmF0aHJvb20uY29t LnNoYXBlZmFzaGlvbi5vcmeCFGNvbW1vbmxhd2Rpdm9yY2UuY29tghNob21lbGlm ZWFjYWRlbXkub3JnghhwYXNzYW1hcXVvZGR5YmFza2V0cy5jb22CM3JlcHVibGlj YW5waG90b2dyYXBoZXIubmV0Lm1pY2hpZ2FudXNlZGNoaWxsZXJzLmNvbYIedm9s dW1lcGlsbHMub3JnLnNhc3BhZ3VpZGUuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIB MIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUASLDja9qmRzQP5WoC+p0w6xxSActW 3SyB2bu/qznYhHMAAAGM1b4urAAABAMARjBEAiAx7hxZc93YtZjVR7ZgS4d+q3C5 qKwGTxCbZboPT7T2TQIgGNXQaANpfMKJzRzkJkroL+5EbYtvNiWzRXriZq2NotMA dQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYzVvi6xAAAEAwBG MEQCIA7D10PNkg1Pi48l1bSNWrmoR9cXZgZl7lr0nWcLF/lFAiBXVOvS2HpKc8KQ xKC2PvhhT1xZ4g3GLfCVrzcQcbl/QDANBgkqhkiG9w0BAQsFAAOCAQEApV1GXRRs fGxW2DP6Gv2s0GwvITPHdjpN/N6PypiwC5I1t2uNhwemsIZ5TV/7+GFVyHxgMfUf oCokjNuhZLYPwx1v7gskNx6HORNWueyLn2wNT6dT27W/jlg+bmABo1N1zJ1vt2BA Pd9olMKCJXLGL/g2hGfNRRDEE8oJ0G16IBBAebxXKVJPrSCDlayorbwogJBxayAv gjtXuQBJXSFyjadG7FoMJqwoNyKdgE4tuXiTn1TsfS3XXVlW5uX31OLZUNUrKc5T medrtEHRrooodtURGNze8prnZu350Csu89D4SzMZhcs9jk4WyrlyfPP17GZlSfhG LJMOdhetrkK6PA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGtBsBMKa1BpEYI/Wn46 7nz9pbviqDyDzJ63Ku2a5UztMQeDGF3klfR5DX34HwTXVskNrZRbZ0o1HJzlXHnY gQ/D0aML6lJA6L14eP3Xb1BzCCq3SqydtCVVc4hzRAO8JpelhqrJCQJZ0nReAvN1 hriefzlg3OeaHU0j42x2/jNeqO0mnZ8CVMblE1E2Pu4JNAL0KC9X3ClH0A4wwFNg 1Op6ZheruyzYNkhsyaxy4jP4vUHRtHpPbIBG7dorrAQBgyC9bGf2iKynvcipNKvi VLo1HnB8jBDna1H2SoKJP/gubtq6CSyL6/SA3Bsj/pyFxyEVEmNY+YhnHbHSy+b0 PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 279744636314621547663474727697335337574472 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-04 17:30:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-03 17:30:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'charlottekitchenandbathroom.com.shapefashion.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23280738310974097464133024335780983762230101621263265349073220713896984429884553958967405058824531534010880187943073305726515267536507169275303563533282386942995645475069398664938338848691816909181799204469644771436057247485522184926044056484461438894408201572742565453221841448925846198160345245376926723139740574493030270768730590315132887509237097556360700053936474267932946280015994463002807446669516748224683532956598291532037469576035586529172428917330867746438605238620936505400447590209189323592580783802911649069626441481369029276560502924854555589925179631344722929334351304189846258242548494458830778201149 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d5ba7090a0a4cb5ceb2001b67dbdbe0ad074793e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (267 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'acemannan101.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'africoin.org.epik.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allanblock.com.do' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'charlottekitchenandbathroom.com.shapefashion.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'commonlawdivorce.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homelifeacademy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'passamaquoddybaskets.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'republicanphotographer.net.michiganusedchillers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'volumepills.org.saspaguide.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cd5be2eac0000040300463044022031ee1c5973ddd8b598d547b6604b877eab70b9a8ac064f109b65ba0f4fb4f64d022018d5d06803697cc289cd1ce4264ae82fee446d8b6f3625b3457ae266ad8da2d30075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018cd5be2eb1000004030046304402200ec3d743cd920d4f8b8f25d5b48d5ab9a847d717660665ee5af49d670b17f94502205754ebd2d87a4a73c290c4a0b63ef8614f5c59e20dc62df095af371071b97f40 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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