www.riviere-rouge.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:2f:77:a1:30:65:88:55:d5:c3:c9:60:50:09:1b:c9:8b:00 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.riviere-rouge.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:2f:77:a1:30:65:88:55:d5:c3:c9:60:50:09:1b:c9:8b:00Serial Number (int): 364601430045217622584124886260355772812032
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ec:3c:4a:59:0d:87:ba:4e:21:a6:63:e1:27:33:7a:19:e9:77:8e:22
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2b:86:62:9c:07:19:1f:2c:58:6f:87:c6:6e:a5:a0:2f:02:80:d7:73
Fingerprint (sha256): 6a:44:3e:4b:1f:2b:6a:26:5b:b0:c5:c4:7c:99:2f:e5:74:07:7e:3c:ed:8c:96:82:56:46:e7:b9:aa:91:38:d1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.riviere-rouge.ca
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.riviere-rouge.ca
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
riviere-rouge.ca
villerr.aegir3.koumbit.net
www-riviere--rouge-ca.aegir3.koumbit.net
www.riviere-rouge.ca
villerr.aegir3.koumbit.net
www-riviere--rouge-ca.aegir3.koumbit.net
www.riviere-rouge.ca
Other certificates including the domain name riviere-rouge.ca
(limited to 100 certificates)
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
www.riviere-rouge.ca
Certificate
The complete raw certificate details for www.riviere-rouge.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYzCCBUugAwIBAgISBC93oTBliFXVw8lgUAkbyYsAMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzEyMDgxMjUxNDNaFw0x ODAzMDgxMjUxNDNaMB8xHTAbBgNVBAMTFHd3dy5yaXZpZXJlLXJvdWdlLmNhMIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwWTZeYbLKlNCi3zsoe2xFqUI TBN70vJqqgtLAkAymc92Hk+oRo6OZXW8n91MYz86Yw6z/YE5rBC1p8ZH4a1w0qz7 3DzF+rrYSOBVsVMl3oCW/9AlB9tL0InUUaxBTJS7UYh2/yzk3iaOAolBQP5VNKB5 4+g2bN2FV7GSzfeFVaFHXjz9eoAH/1ySYTpBR4juqSIgm7JhAddDZgVQnIimYLA0 N2Lp7yECBRQ/1OQ+VX130srrn/HBu0vB/SJGIfEGjHTUaqq03jzuOFZq+dfug4xB UCNigP0yLoI4/5j1Xm4izNsR5/t/QSNw+e8RdF8WxJCWDR6r6P8HqaP6nMnf3HOQ CmRMidE6vzphxCdMjclXlVKaBdvUP74qkPcDFak8a6P0Q7eDRP3MLTmcYW3tvThs exLvSVeRS0ePkENcW0j3HlkgDnxjFIK+xDEBJD5pI1lSHVMmhWQvu9SO+ej/LP9N GhDpFz3VDJ3n6x5Qw2JpFCw7PBdmtb5ShaVxt9K3zVk282hJbckxy1jb/rswb7PP +um/AIZ3y8i/a1Lxkqmz14HmVau1tIQO6/4QWWgriw4OvoxJLAtdf1aOE4XqW8p1 O+IllOpL439oQVL8r+7wKVgz5UraMm9hVimF1Uq+WOdf2SbqzCmxIyYI8rxZquoI jQBU2dy6JEKK4vQW59sCAwEAAaOCAmwwggJoMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQU7DxKWQ2Huk4hpmPhJzN6Gel3jiIwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3 pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2Nz cC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2Vy dC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzB3BgNVHREEcDBughByaXZpZXJlLXJv dWdlLmNhghp2aWxsZXJyLmFlZ2lyMy5rb3VtYml0Lm5ldIIod3d3LXJpdmllcmUt LXJvdWdlLWNhLmFlZ2lyMy5rb3VtYml0Lm5ldIIUd3d3LnJpdmllcmUtcm91Z2Uu Y2Ewgf4GA1UdIASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYG CCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUH AgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9u IGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGgg dGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNy eXB0Lm9yZy9yZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsFAAOCAQEAjW04qkHmJOxy MP5Tn7f2E2KYO/SmKcamUZr8308bD8i6VPCbIQruMcEnbkt6ZMi++jYBd/xjN04b o6YThiT3gMPy6YIyxOg1Qh56W9RbMrNLfdG8PXoSqTOs+VATFlrAnFxx4Uu5+Ur2 ajPOlOgOtbAsnjusL2nXZauX25z6nJmjUOLn9hCLQgyVYjc3KfWOWoOI9xoQX/xA WZBTLfnlg8hLeNxO/qVOUuuC5rntALUHSVYsXrZRl0K3l9L/9jwAGf48QO+a835c ZDV3ZyMcceIpa4SBVTr+bL2SslkeSPp2ae054fZQrUQSCPUQsVS7zmsFJ5rv77vt Jy+EQNJ81w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwWTZeYbLKlNCi3zsoe2x FqUITBN70vJqqgtLAkAymc92Hk+oRo6OZXW8n91MYz86Yw6z/YE5rBC1p8ZH4a1w 0qz73DzF+rrYSOBVsVMl3oCW/9AlB9tL0InUUaxBTJS7UYh2/yzk3iaOAolBQP5V NKB54+g2bN2FV7GSzfeFVaFHXjz9eoAH/1ySYTpBR4juqSIgm7JhAddDZgVQnIim YLA0N2Lp7yECBRQ/1OQ+VX130srrn/HBu0vB/SJGIfEGjHTUaqq03jzuOFZq+dfu g4xBUCNigP0yLoI4/5j1Xm4izNsR5/t/QSNw+e8RdF8WxJCWDR6r6P8HqaP6nMnf 3HOQCmRMidE6vzphxCdMjclXlVKaBdvUP74qkPcDFak8a6P0Q7eDRP3MLTmcYW3t vThsexLvSVeRS0ePkENcW0j3HlkgDnxjFIK+xDEBJD5pI1lSHVMmhWQvu9SO+ej/ LP9NGhDpFz3VDJ3n6x5Qw2JpFCw7PBdmtb5ShaVxt9K3zVk282hJbckxy1jb/rsw b7PP+um/AIZ3y8i/a1Lxkqmz14HmVau1tIQO6/4QWWgriw4OvoxJLAtdf1aOE4Xq W8p1O+IllOpL439oQVL8r+7wKVgz5UraMm9hVimF1Uq+WOdf2SbqzCmxIyYI8rxZ quoIjQBU2dy6JEKK4vQW59sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 364601430045217622584124886260355772812032 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-08 12:51:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-08 12:51:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.riviere-rouge.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 788978453985982382685156989172157654940617734994404048779931447773195585878996164204702051481528311919411799485408244349017643261686631298170864668759554749127721618207670179808250845229947074713494316871258881114537658667705692854608739646650995043221526168517927938916377849203813272316525626364626405869779399885415220093804733909401912458801304749927180497054462122159397701847056441885708014049021842023642041933019894058746304286215895688798490249617088815491076297149420166860606562175959639424955315955748072572637298526403578421049450393545361618481921352095218121689648308410604039754485709414057201789336653578982024500428956650075275471263687722679849362325260668111926384470643410840425546239902671454372874048357459037936184440660412809526512347881891997696768255698189489868028736104239231731211280414937725019986710324025185588814308335028436563875835655705989276217110362554242474440473109755159420623257541717670292879813110893067191022648793266966126236684706469474210770328915530628130277200917221738934620931024130613498160445361883697297334601992651825578107644241892307092858790812039608736611379875930828838862715610389177456186696613095662840848211031660011593699246583622886274020975589267623048998506915803 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ec3c4a590d87ba4e21a663e127337a19e9778e22 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'riviere-rouge.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'villerr.aegir3.koumbit.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-riviere--rouge-ca.aegir3.koumbit.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.riviere-rouge.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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