www.shapefashion.org
Issued by R3
About this certificate
This digital certificate with serial number 03:d8:3e:d5:8f:1d:a0:da:ec:ad:2c:08:a6:cc:a2:ec:80:56 was issued on by Let's Encrypt.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.shapefashion.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d8:3e:d5:8f:1d:a0:da:ec:ad:2c:08:a6:cc:a2:ec:80:56Serial Number (int): 334921370047904953050541104012464527016022
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 0e:f0:8f:a6:d2:50:5f:5a:31:e2:e8:c8:d2:e5:9e:2f:b0:7f:f2:ec
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 87:d7:e5:4a:9a:a4:c4:cb:8e:59:9e:f4:83:bb:e2:1f:2d:17:58:46
Fingerprint (sha256): 6a:c3:9b:f7:7e:97:64:13:00:5d:2f:f3:20:fa:fa:b4:c9:02:62:58:80:28:6f:21:67:c7:1b:4a:6d:9c:ab:ce
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.shapefashion.org
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.shapefashion.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
allisonbeatty.com
graciefilm.com
leasing4vip.com
nwmountainguides.com.swarmbox.co
omgurudev.com
reelstopixels.com
scottsbluffcounty.com
stillwaters.agency.viraltrafficsolutions.com
teamformative.com.showassessments.com
www.shapefashion.org
yeshivocation.com
graciefilm.com
leasing4vip.com
nwmountainguides.com.swarmbox.co
omgurudev.com
reelstopixels.com
scottsbluffcounty.com
stillwaters.agency.viraltrafficsolutions.com
teamformative.com.showassessments.com
www.shapefashion.org
yeshivocation.com
Other certificates including the domain name shapefashion.org
(limited to 100 certificates)
shapefashion.org
trade.limited
thematch.co.za
shapefashion.org
shapefashion.org
trade.limited
shapefashion.org
arbitrage.ag
powerbilt.club
shapefashion.org
justwanna.world
www.shapefashion.org
aplacetorecycle.org
trade.limited
cars101.world
medicalforkids.com.shapefashion.org
usc.mba
sculpit.media
jenksamericatoastmasters.club
upgrader.de
charlottekitchenandbathroom.com.shapefashion.org
jenksamericatoastmasters.club
shapefashion.org
justwanna.world
www.shapefashion.org
www.shapefashion.org
justwanna.world
radiantresults.world
www.shapefashion.org
trade.limited
wharf.website
drama.vc
impossible.ca
jenksamericatoastmasters.club
usc.mba
allanblock.ca
shapefashion.org
usc.mba
justwanna.world
impossible.ca
cryogenic.ninja
jenksamericatoastmasters.club
www.shapefashion.org
aplacetorecycle.org
jenksamericatoastmasters.club
arbitrageurs.cc
jenksamericatoastmasters.club
aaron.cc
jenksamericatoastmasters.club
shapefashion.org
www.cbbt.bible
hydratight.ca
trade.limited
thematch.co.za
shapefashion.org
shapefashion.org
trade.limited
shapefashion.org
arbitrage.ag
powerbilt.club
shapefashion.org
justwanna.world
www.shapefashion.org
aplacetorecycle.org
trade.limited
cars101.world
medicalforkids.com.shapefashion.org
usc.mba
sculpit.media
jenksamericatoastmasters.club
upgrader.de
charlottekitchenandbathroom.com.shapefashion.org
jenksamericatoastmasters.club
shapefashion.org
justwanna.world
www.shapefashion.org
www.shapefashion.org
justwanna.world
radiantresults.world
www.shapefashion.org
trade.limited
wharf.website
drama.vc
impossible.ca
jenksamericatoastmasters.club
usc.mba
allanblock.ca
shapefashion.org
usc.mba
justwanna.world
impossible.ca
cryogenic.ninja
jenksamericatoastmasters.club
www.shapefashion.org
aplacetorecycle.org
jenksamericatoastmasters.club
arbitrageurs.cc
jenksamericatoastmasters.club
aaron.cc
jenksamericatoastmasters.club
shapefashion.org
www.cbbt.bible
hydratight.ca
Certificate
The complete raw certificate details for www.shapefashion.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8TCCBNmgAwIBAgISA9g+1Y8doNrsrSwIpsyi7IBWMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMDgxMDE3NTZaFw0yNDA0MDcxMDE3NTVaMB8xHTAbBgNVBAMT FHd3dy5zaGFwZWZhc2hpb24ub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEA8YonHqMpk+R9QlGuF43J0HTcDWebzwcbYBdpiMCiVoYy3p2p5C+NGuLE hix+Rdooih7bvKvMp6PiTMpG3gISmOeaxms6kvEQpVts06x3MWGeLJdBNMt4hgF4 KPFcZtZzJnbV23WMfZoOo+Q+spq6ixluga/19wBR4hJfdlwyNZv70GJIE2VP6x1R uvdfS+x5IQkj7W9KdLPbKzjqgsfca+7FtVYeEPoW0jnSdT2FPKUZ5cIdFqnOXeI2 cPOR3tgxPhpe3RZia5YSfoLQxxXmTOGLo+yz+ACvgxLUk4ATl365mg6WWZXtMX3S vXgYdxeqh47IUozQc28IA5VsHc3iuQIDAQABo4IDEjCCAw4wDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBQO8I+m0lBfWjHi6MjS5Z4vsH/y7DAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCCARoGA1UdEQSCAREwggENghFhbGxpc29uYmVhdHR5LmNvbYIOZ3Jh Y2llZmlsbS5jb22CD2xlYXNpbmc0dmlwLmNvbYIgbndtb3VudGFpbmd1aWRlcy5j b20uc3dhcm1ib3guY2+CDW9tZ3VydWRldi5jb22CEXJlZWxzdG9waXhlbHMuY29t ghVzY290dHNibHVmZmNvdW50eS5jb22CLHN0aWxsd2F0ZXJzLmFnZW5jeS52aXJh bHRyYWZmaWNzb2x1dGlvbnMuY29tgiV0ZWFtZm9ybWF0aXZlLmNvbS5zaG93YXNz ZXNzbWVudHMuY29tghR3d3cuc2hhcGVmYXNoaW9uLm9yZ4IReWVzaGl2b2NhdGlv bi5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHx AO8AdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYzoyyUbAAAE AwBHMEUCIE8oD8dUpvIHNhUXzquhaUVZq4E24AIvvpSfblCNM3rWAiEAnriNNs2o LXVRMAcH9QPPHoJ//AF4y+XtizwJZLOvKMYAdQB2/4g/Crb7lVHCYcz1h7o0tKTN uyncaEIKn+ZnTFo6dAAAAYzoyyd3AAAEAwBGMEQCIDl6n7GSFoQni8iK4gyDb34Y 61kht6LqjmKHnH2abNQxAiAJ2m3CRxnNIagIKH6fZBqh4w1AUm7j0KFyoNPcb1/g VTANBgkqhkiG9w0BAQsFAAOCAQEAGieAMXatbz2/3lmOULVmYM/Su3tYqXiv9ERi fKuJBZ19uNajtLur6L5d+XVccjBJVpgZPyEvr7ea2P2LWNnvzXK8FPvuYhw9qltK XpEbjbanmdLYYTQ2s38JYl2+DGeIErDM7toTQWuV9yuI5Po94hKaFAYeWyeYEoKX EZDs/ND5LksK6ymGMwIPjjCHE2Gso1NfyXPrB9KnHrR/2wgHYlvdinbAzGx7FTXk jppzbf6xtOQvJubqizFSG+YgIkD+E0Yk4Th1bZy7XnRiVbKFnE1bd03O1cbG+V1D GpN5rjET0uOOh08eayCoSQBz3Th6+E/DWGLa86OX31p0DemSCw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8YonHqMpk+R9QlGuF43J 0HTcDWebzwcbYBdpiMCiVoYy3p2p5C+NGuLEhix+Rdooih7bvKvMp6PiTMpG3gIS mOeaxms6kvEQpVts06x3MWGeLJdBNMt4hgF4KPFcZtZzJnbV23WMfZoOo+Q+spq6 ixluga/19wBR4hJfdlwyNZv70GJIE2VP6x1RuvdfS+x5IQkj7W9KdLPbKzjqgsfc a+7FtVYeEPoW0jnSdT2FPKUZ5cIdFqnOXeI2cPOR3tgxPhpe3RZia5YSfoLQxxXm TOGLo+yz+ACvgxLUk4ATl365mg6WWZXtMX3SvXgYdxeqh47IUozQc28IA5VsHc3i uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 334921370047904953050541104012464527016022 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-08 10:17:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-07 10:17:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.shapefashion.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30491557187121283409191261274847343351453368623690447142077340456568097820795885362604601611062414856110669209567580925998241573241926205445939167057236355586670791242547123119541685773869051866370879371473532615850969374836382668946293823742766438440760350052803995206212573239769042960030085692548643107794985394812657425842653248528338452369033547646127373233950422312082702364268493520946056875787140361436457397556504537528050690761246683524624158465289215103245341207880182308284434430283621341168955269299773988024098302891050274701715502145935034673511600522149341044829770953247405904042893522112912055722681 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0ef08fa6d2505f5a31e2e8c8d2e59e2fb07ff2ec . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (273 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allisonbeatty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'graciefilm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'leasing4vip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nwmountainguides.com.swarmbox.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'omgurudev.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'reelstopixels.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scottsbluffcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stillwaters.agency.viraltrafficsolutions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'teamformative.com.showassessments.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.shapefashion.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'yeshivocation.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ce8cb251b000004030047304502204f280fc754a6f207361517ceaba1694559ab8136e0022fbe949f6e508d337ad60221009eb88d36cda82d7551300707f503cf1e827ffc0178cbe5ed8b3c0964b3af28c600750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ce8cb277700000403004630440220397a9fb1921684278bc88ae20c836f7e18eb5921b7a2ea8e62879c7d9a6cd431022009da6dc24719cd21a808287e9f641aa1e30d40526ee3d0a172a0d3dc6f5fe055 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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