charlesriverapparel.com

Issued by Amazon

About this certificate

This digital certificate with serial number 0d:77:1b:e0:8d:3e:be:8b:7b:ed:02:ef:0e:4e:bb:8b was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=charlesriverapparel.com

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0d:77:1b:e0:8d:3e:be:8b:7b:ed:02:ef:0e:4e:bb:8b
Serial Number (int): 17898412687250492234142418415601499019
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 7f:6a:7a:6f:dc:cf:be:9b:72:de:66:55:4c:23:74:99:e5:16:3e:17
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): c4:1a:8f:a3:f1:7d:9c:e9:92:74:dc:7b:bc:fc:62:d1:40:f3:b6:b1
Fingerprint (sha256): 68:e4:fa:96:7a:ab:2c:23:c9:5d:5f:46:3e:5f:9f:66:69:b6:fb:b7:fd:56:c2:d8:b9:de:35:49:75:a0:76:ef

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate charlesriverapparel.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for charlesriverapparel.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

charlesriverapparel.com
*.charlesriverapparel.com

Other certificates including the domain name charlesriverapparel.com

(limited to 100 certificates)
www.charlesriverapparel.com
help.signbees.com
support.spitzerind.com
www.charlesriverapparel.com
help.signbees.com
help.signbees.com
help.signbees.com
help.signbees.com
support.spitzerind.com
sp.charlesriverapparel.com
help.signbees.com
access.charlesriverapparel.com
support.spitzerind.com
help.signbees.com
soporte.softpme.cl
help.signbees.com
mail.charlesriverapparel.com
help.signbees.com
support.spitzerind.com
support.infinitydma.com
help.signbees.com
blog.charlesriverapparel.com
info.charlesriverapparel.com
help.roitechnologyinc.com
help.signbees.com
*.charlesriverapparel.com
charlesriverapparel.com
help.signbees.com
help.signbees.com
support.spitzerind.com
help.signbees.com
support.spitzerind.com
support.gamaxlabsol.com
help.signbees.com
helpdesk.edgepoint.co.nz
charlesriverapparel.com
support.spitzerind.com
helpdesk.edgepoint.co.nz
info.charlesriverapparel.com
help.signbees.com
*.charlesriverapparel.com
help.signbees.com
info.charlesriverapparel.com
support.spitzerind.com
supporto.10punto10.eu
help.signbees.com
charlesriverapparel.com
charlesriverapparel.com
help.signbees.com
support.welearn.sg
help.signbees.com
support.spitzerind.com
helpdesk.precisemri.com
help.signbees.com
info.charlesriverapparel.com
support.mytransmosis.com
support.spitzerind.com
help.signbees.com
*.charlesriverapparel.com
blog.charlesriverapparel.com
help.roitechnologyinc.com
help.signbees.com
support.welearn.sg
help.signbees.com
access.charlesriverapparel.com
support.spitzerind.com
help.signbees.com
help.signbees.com
blog.charlesriverapparel.com
info.charlesriverapparel.com
help.signbees.com
help.signbees.com
support.spitzerind.com
support.spitzerind.com
support.welearn.sg
help.signbees.com
help.signbees.com
info.charlesriverapparel.com
support.welearn.sg
www.CharlesRiverApparel.com
help.signbees.com
help.signbees.com
help.signbees.com
blog.charlesriverapparel.com
help.signbees.com
help.signbees.com
help.signbees.com
support.welearn.sg
help.signbees.com
support.welearn.sg
help.signbees.com
help.signbees.com
help.signbees.com
support.infinitydma.com
support.spitzerind.com
soporte.softpme.cl
supporto.10punto10.eu
help.signbees.com
support.spitzerind.com
charlesriverapparel.com

Certificate

The complete raw certificate details for charlesriverapparel.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgIQDXcb4I0+vot77QLvDk67izANBgkqhkiG9w0BAQsFADBG
MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg
Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDA0MTEwMDAwMDBaFw0yMTA1MTEx
MjAwMDBaMCIxIDAeBgNVBAMTF2NoYXJsZXNyaXZlcmFwcGFyZWwuY29tMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxRNl31bMH0Y+7rwb64+3RcQHdhqs
W7CctvYgFcJr7dU1XsKcB7nqzkPxD0fn1JCn9CfSv+3R8F2lv0QuqJzJ8Yc9nlao
JhmUM7FDZxDtLe2DWfoDab3Naa7hg93sYQl1XGsgAnoDPlvm+sPNK3BkJr9Jmrqe
qKZtn6jMk7SzeKB0Y/sjvsvenuKr9MzxP9knWTT3PQiO48f/snqGFSZdIkVv2bPI
Jnx0vb9j4bhnM1m8Icg1YTqVEhzCfxpkTahLY/V1/0r2+RAPlYJtIoSYPYVTtzCS
61j3tgKwVS8Rxc6bX23UYIfc3JyJu5WZE8MnQndAWpoZl+r8ZE5vfR1/bwIDAQAB
o4ICnzCCApswHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0O
BBYEFH9qem/cz76bct5mVUwjdJnlFj4XMD0GA1UdEQQ2MDSCF2NoYXJsZXNyaXZl
cmFwcGFyZWwuY29tghkqLmNoYXJsZXNyaXZlcmFwcGFyZWwuY29tMA4GA1UdDwEB
/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQw
MjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIu
Y3JsMCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEFBQcB
AQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0
LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5j
b20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwggEFBgorBgEEAdZ5AgQCBIH2BIHz
APEAdgD2XJQv0XcwIhRUGAgwlFaO400TGTO/3wwvIAvMTvFk4wAAAXFm1wewAAAE
AwBHMEUCIQCvWaYvwoVjpvfId/tsjI+YJLH7vxKsmz7KNUePxboToAIgFqJZ+sdQ
3jYJ1jhXRD2zE9Si17MRJLK6f1pR+5IpJIYAdwBc3EOS/uarRUSxXprUVuYQN/vV
+kfcoXOUsl7m9scOygAAAXFm1wfpAAAEAwBIMEYCIQCMon7oUDkUyuZg+8aRn0Nw
/p9S5IeDTofliIaeRwWWvQIhAMsZmERoTjGmzzT/3OArjnxjCtDb1Aq8WULEEyGb
u96CMA0GCSqGSIb3DQEBCwUAA4IBAQCx94oMsw3FA7SunPFJ/24iHljiURCc0qVn
jbK3vxzTWFIol46/jUHj890a0upAPobmVNabfyBzfxHTHBgCakuJXIUKPuemmLrT
O2lz6rQqXXn9lNXkGn1hSr5LU0Q46QFOLK8UqtJJzlFTgWXtKlzoynJQKo8EmepN
+zwMyeRXg2w6IxVEMeAVUyZm+QQkCatVT+tDGw0WLo3xfWHr4rPxd/8kHKDhgc43
zeNy7r9U1cc5utPu5qIxZNQczVh9K2oeYdAXmRo2Q8mE1Wmd9lKNYx+bYWeup/c7
/xCRJF3hrhIuiyQ/p+BdqzZEwTC0fe4UqXfzg382SZglXfGHqTgo
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxRNl31bMH0Y+7rwb64+3
RcQHdhqsW7CctvYgFcJr7dU1XsKcB7nqzkPxD0fn1JCn9CfSv+3R8F2lv0QuqJzJ
8Yc9nlaoJhmUM7FDZxDtLe2DWfoDab3Naa7hg93sYQl1XGsgAnoDPlvm+sPNK3Bk
Jr9JmrqeqKZtn6jMk7SzeKB0Y/sjvsvenuKr9MzxP9knWTT3PQiO48f/snqGFSZd
IkVv2bPIJnx0vb9j4bhnM1m8Icg1YTqVEhzCfxpkTahLY/V1/0r2+RAPlYJtIoSY
PYVTtzCS61j3tgKwVS8Rxc6bX23UYIfc3JyJu5WZE8MnQndAWpoZl+r8ZE5vfR1/
bwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 17898412687250492234142418415601499019
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-11 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-11 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'charlesriverapparel.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24878511558610603603973223416820758610415339805781712823787907928830733839324885939362730478133476321566344590969877656344096270805885867260920290624496039110556533950899018328242430889784168583463253889903414000753142073850063337628979473044175766508083134100109954135085279168976516580963655850202663752955204676265319724108336126593994619262084669543611333965088083152279550418222818956920360492791066744190638984954398897147666226313181422568815759707236504610569956242602787039765282043399307765163370684529263331300048703380745673086137965269908478160697332244267551039057889745914746785465646382928033262436207
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7f6a7a6fdccfbe9b72de66554c237499e5163e17
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'charlesriverapparel.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.charlesriverapparel.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e30000017166d707b00000040300473045022100af59a62fc28563a6f7c877fb6c8c8f9824b1fbbf12ac9b3eca35478fc5ba13a0022016a259fac750de3609d63857443db313d4a2d7b31124b2ba7f5a51fb922924860077005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca0000017166d707e900000403004830460221008ca27ee8503914cae660fbc6919f4370fe9f52e487834e87e588869e470596bd022100cb199844684e31a6cf34ffdce02b8e7c630ad0dbd40abc5942c413219bbbde82
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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