www.sonypictures.es
Issued by R3
About this certificate
This digital certificate with serial number 03:e4:ed:5b:a3:af:85:b9:f8:50:f5:ea:0a:3f:a5:e4:41:66 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.sonypictures.es
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e4:ed:5b:a3:af:85:b9:f8:50:f5:ea:0a:3f:a5:e4:41:66Serial Number (int): 339236740307208941506155260597824508936550
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b8:30:e1:05:c4:3e:0d:0d:19:00:90:11:57:ee:fc:81:b0:20:9b:31
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 06:7f:35:e5:9e:8b:3d:ee:bb:85:aa:be:8e:a6:87:8f:96:a5:ff:83
Fingerprint (sha256): 60:c1:c4:65:fb:89:33:d5:b2:7d:d5:2b:51:26:9b:59:47:7c:aa:6c:96:41:59:41:93:0c:d2:3b:eb:b0:66:68
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.sonypictures.es
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.sonypictures.es
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.sonypictures.es
Other certificates including the domain name sonypictures.es
(limited to 100 certificates)
flash.sonypictures.com
flash.sonypictures.com
stage-microsites.sonypictures.com
perc.sonypictures.com
www.sonypictures.es
perc.sonypictures.com
flash.sonypictures.com
edge-micros2.sonypictures.com
perc.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
www.sonypictures.es
microsites.sonypictures.com
perc.sonypictures.com
flash.sonypictures.com
portals.sonypictures.net
stage-perc.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
api.stg.sonypictures.es
microsites.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
www.sonypictures.es
stage-perc.sonypictures.com
flash.sonypictures.com
flash.sonypictures.com
edge-micros1.sonypictures.com
stage-perc.sonypictures.com
microsites.sonypictures.com
microsites.sonypictures.com
stage-perc.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
microsites.sonypictures.com
edge-micros2.sonypictures.com
flash.sonypictures.com
stage-microsites.sonypictures.com
dev.sonypictures.es
portals.sonypictures.net
flash.sonypictures.com
flash.sonypictures.com
dev.sonypictures.co.uk
flash.sonypictures.com
perc.sonypictures.com
microsites.sonypictures.com
flash.sonypictures.com
edge-affiliates.cinesony.com
stage-perc.sonypictures.com
microsites.sonypictures.com
www.sonypictures.es
microsites.sonypictures.com
flash.sonypictures.com
flash.sonypictures.com
edge-micros1.sonypictures.com
cms-prod.sonypictures.es
flash.sonypictures.com
stage-microsites.sonypictures.com
edge-micros1.sonypictures.com
www.sonypictures.es
microsites.sonypictures.com
stage-microsites.sonypictures.com
edge-micros2.sonypictures.com
stage-perc.sonypictures.com
stage.sonypictures.es
perc.sonypictures.com
edge-micros2.sonypictures.com
perc.sonypictures.com
flash.sonypictures.com
perc.sonypictures.com
dev.sonypictures.es
stage-microsites.sonypictures.com
edge-affiliates.cinesony.com
perc.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
edge-affiliates.cinesony.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
portals.sonypictures.net
flash.sonypictures.com
edge-micros1.sonypictures.com
microsites.sonypictures.com
edge-micros2.sonypictures.com
perc.sonypictures.com
microsites.sonypictures.com
stage-microsites.sonypictures.com
portals.sonypictures.net
microsites.sonypictures.com
flash.sonypictures.com
flash.sonypictures.com
dev.sonypictures.co.uk
flash.sonypictures.com
sonypictures.es
stage-microsites.sonypictures.com
flash.sonypictures.com
portals.sonypictures.net
edge-micros2.sonypictures.com
flash.sonypictures.com
stage-microsites.sonypictures.com
perc.sonypictures.com
www.sonypictures.es
perc.sonypictures.com
flash.sonypictures.com
edge-micros2.sonypictures.com
perc.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
www.sonypictures.es
microsites.sonypictures.com
perc.sonypictures.com
flash.sonypictures.com
portals.sonypictures.net
stage-perc.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
api.stg.sonypictures.es
microsites.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
www.sonypictures.es
stage-perc.sonypictures.com
flash.sonypictures.com
flash.sonypictures.com
edge-micros1.sonypictures.com
stage-perc.sonypictures.com
microsites.sonypictures.com
microsites.sonypictures.com
stage-perc.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
microsites.sonypictures.com
edge-micros2.sonypictures.com
flash.sonypictures.com
stage-microsites.sonypictures.com
dev.sonypictures.es
portals.sonypictures.net
flash.sonypictures.com
flash.sonypictures.com
dev.sonypictures.co.uk
flash.sonypictures.com
perc.sonypictures.com
microsites.sonypictures.com
flash.sonypictures.com
edge-affiliates.cinesony.com
stage-perc.sonypictures.com
microsites.sonypictures.com
www.sonypictures.es
microsites.sonypictures.com
flash.sonypictures.com
flash.sonypictures.com
edge-micros1.sonypictures.com
cms-prod.sonypictures.es
flash.sonypictures.com
stage-microsites.sonypictures.com
edge-micros1.sonypictures.com
www.sonypictures.es
microsites.sonypictures.com
stage-microsites.sonypictures.com
edge-micros2.sonypictures.com
stage-perc.sonypictures.com
stage.sonypictures.es
perc.sonypictures.com
edge-micros2.sonypictures.com
perc.sonypictures.com
flash.sonypictures.com
perc.sonypictures.com
dev.sonypictures.es
stage-microsites.sonypictures.com
edge-affiliates.cinesony.com
perc.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
edge-affiliates.cinesony.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
portals.sonypictures.net
flash.sonypictures.com
edge-micros1.sonypictures.com
microsites.sonypictures.com
edge-micros2.sonypictures.com
perc.sonypictures.com
microsites.sonypictures.com
stage-microsites.sonypictures.com
portals.sonypictures.net
microsites.sonypictures.com
flash.sonypictures.com
flash.sonypictures.com
dev.sonypictures.co.uk
flash.sonypictures.com
sonypictures.es
stage-microsites.sonypictures.com
flash.sonypictures.com
portals.sonypictures.net
edge-micros2.sonypictures.com
Certificate
The complete raw certificate details for www.sonypictures.es in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgISA+TtW6Ovhbn4UPXqCj+l5EFmMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMTUxNTE5MzVaFw0yNDAyMTMxNTE5MzRaMB4xHDAaBgNVBAMT E3d3dy5zb255cGljdHVyZXMuZXMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC53euCCCyymxts1f5tuO6jcTQo8odDd9zx5bS/aLqWdsFP2mdkG6tKfXjJ D6Wp2nDntQ1wNQGTSeenaxoPbcDt48tTKA5VG4/xvJgwJAVNyPkW/7gFvOJf4GRd DmlIN2UN+jQIeZ+mHaKrUiliT20RQs7HePnhaosJj0GwU7td+5ka0kou5sFYg/F2 ywcKCc2BL4UHfg+PmjXu3D+ijNpXQrlj3C9KAPDxeszhNY0Z7umqJfOh6Tu3TJtL /ARLCZlIsMxTKEYhS5Y9Vng8ebqXFRrIwX8KYlo3j7raoe9C9nriG19lyVgqOGnT yqCQW2LQ5iLBcVuhFIUMOXWEJkg1AgMBAAGjggIVMIICETAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFLgw4QXEPg0NGQCQEVfu/IGwIJsxMB8GA1UdIwQYMBaAFBQusxe3 WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0 cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5j ci5vcmcvMB4GA1UdEQQXMBWCE3d3dy5zb255cGljdHVyZXMuZXMwEwYDVR0gBAww CjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBIsONr2qZHNA/l agL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYvTx+fSAAAEAwBHMEUCIQCfznhI1v6x Woa+44lnLJ9kvkKtYGZugnXb/D7m54E+KwIgMvBFBS/+nRoWb4J8msEUN5+d4A8m P8o6ktBhdeShID4AdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAA AYvTx+fTAAAEAwBHMEUCIQDkAHCJEc2OnZ9br3bQtgXNdWaz5C9s6ElKyCUHdIn0 mQIgTQ4ZzIwjAwYe5nvvSgyM3mjVpiQLbkJNPWhfS1/cylUwDQYJKoZIhvcNAQEL BQADggEBAGIStxst8NBDUELlXLbL6O3na3M8+JqZq/YCN1RJtkSH+j45lR8B3kWM jCmpRbbDkLW/xeGFDaiPOy8HtTGqhix9xQwWIPK27qTM0hhUijDTdZgjplEc3W9T 7Lhivuof5WxAi9S6+awZEt9IVjURauSOOt+rissEs0tL+hQRaLefjnGB8RY1sll9 iRb91eGwbt2GDdPYDFT94QGEYt8flzLbHduWlHGLuuZnnsDAoDIorXB5mU0rIcN8 veg1qEPtsuXlaqKT2WaIExZgNaRjA6r8hBLi7VmLqGrKimsTqXYg/rzPXHiWp/jk d4tPhp2rm4RfWyHgM2GY5KwSPuQQZZE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAud3rgggsspsbbNX+bbju o3E0KPKHQ3fc8eW0v2i6lnbBT9pnZBurSn14yQ+lqdpw57UNcDUBk0nnp2saD23A 7ePLUygOVRuP8byYMCQFTcj5Fv+4BbziX+BkXQ5pSDdlDfo0CHmfph2iq1IpYk9t EULOx3j54WqLCY9BsFO7XfuZGtJKLubBWIPxdssHCgnNgS+FB34Pj5o17tw/ooza V0K5Y9wvSgDw8XrM4TWNGe7pqiXzoek7t0ybS/wESwmZSLDMUyhGIUuWPVZ4PHm6 lxUayMF/CmJaN4+62qHvQvZ64htfZclYKjhp08qgkFti0OYiwXFboRSFDDl1hCZI NQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 339236740307208941506155260597824508936550 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-15 15:19:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-13 15:19:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.sonypictures.es' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23463519226102471539389447936646842751904570124528113369248832026918466603518426726761181236734074323164481961037611635916119202026515915565757719394685961686487431447038568446675128832307772228361846819866520792398779476452901653662788393859941717316939210575682507943984317314120624763694367560188892579003636572833085822858284377907776925248121461373428848728806555927033533684898941706944699705504698591057908611494017275243918986893542908267637606764960653030764166117300509664717104347305411077413052620568701187880135005817882841940021119800415698188630254294702322672746572758868579579566691962610600175355957 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b830e105c43e0d0d1900901157eefc81b0209b31 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sonypictures.es' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bd3c7e7d200000403004730450221009fce7848d6feb15a86bee389672c9f64be42ad60666e8275dbfc3ee6e7813e2b022032f045052ffe9d1a166f827c9ac114379f9de00f263fca3a92d06175e4a1203e0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bd3c7e7d30000040300473045022100e400708911cd8e9d9f5baf76d0b605cd7566b3e42f6ce8494ac825077489f49902204d0e19cc8c2303061ee67bef4a0c8cde68d5a6240b6e424d3d685f4b5fdcca55 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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