citytwist.experiencegr.com
Issued by R3
About this certificate
This digital certificate with serial number 04:f2:75:46:4c:ae:2b:a7:9e:85:65:db:ca:ea:33:0a:fb:90 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=citytwist.experiencegr.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f2:75:46:4c:ae:2b:a7:9e:85:65:db:ca:ea:33:0a:fb:90Serial Number (int): 430953361213457367989333796950041760037776
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 99:78:c0:d9:77:73:16:0f:79:1d:c7:89:88:8d:d4:ed:d4:5e:92:f5
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 9b:c6:7d:f9:61:ce:a1:b9:42:bd:8c:5e:04:81:e9:af:d6:74:dc:39
Fingerprint (sha256): 6d:60:5e:36:a4:e0:f5:ae:8c:fc:bb:2f:57:d6:0d:0f:3a:38:ea:9e:fb:98:17:01:55:cc:08:95:39:46:dd:bf
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate citytwist.experiencegr.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for citytwist.experiencegr.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
citytwist.experiencegr.com
Other certificates including the domain name experiencegr.com
(limited to 100 certificates)
explore.seemore.org
explore.beginatbothell.com
ssl3.simpleviewcms.com
explore.visitcanton.com
experience.visitsugarlandtx.com
cheers.visitroanokeva.com
app.bandwango.com
mail.experiencegr.com
ssl3.simpleviewcms.com
ticket.pikes-peak.com
ssl3.simpleviewcms.com
app.bandwango.com
pif.experiencegr.com
crafts.visitcos.com
experience.fxva.com
culturepass.denver.org
app.bandwango.com
marketing.experiencegr.com
shop.goodcausecommunity.com
experience.charlestonwv.com
app.bandwango.com
mail.experiencegr.com
buy.duluthdiscountpass.com
app.bandwango.com
explore.traveltacoma.com
*.experiencegr.com
go.visitlakecharles.org
cheers.visitroanokeva.com
app.bandwango.com
app.bandwango.com
app.bandwango.com
ssl3.simpleviewcms.com
app.bandwango.com
ssl8.simpleviewcms.com
experiencegr.com
app.bandwango.com
app.bandwango.com
SSL9.simpleviewcms.com
experience.bloomingtonmn.org
www.exploretucsonattractions.com
ssl3.simpleviewcms.com
app.bandwango.com
ssl8.simpleviewcms.com
app.bandwango.com
redemption.bandwango.com
app.bandwango.com
app.bandwango.com
explore.visitphoenix.com
ssl3.simpleviewcms.com
experience.visitcorvallis.com
ssl3.simpleviewcms.com
app.bandwango.com
ssl8.simpleviewcms.com
dashboard.bandwango.com
ssl8.simpleviewcms.com
app.bandwango.com
app.bandwango.com
*.experiencegr.com
ssl8.simpleviewcms.com
app.bandwango.com
app.bandwango.com
app.bandwango.com
m.experiencegr.com
app.bandwango.com
ssl3.simpleviewcms.com
experience.fxva.com
experience.visitomaha.com
app.bandwango.com
buy.duluthdiscountpass.com
dashboard.bandwango.com
*.experiencegr.com
experience.visithouston.com
app.bandwango.com
visit.experiencegr.com
explore.visitjacksonville.com
experiencegr.com
app.bandwango.com
marketing.experiencegr.com
app.bandwango.com
app.bandwango.com
deals.baltimore.org
app.bandwango.com
experience.discoverlosangeles.com
app.bandwango.com
explore.traveltacoma.com
app.bandwango.com
app.bandwango.com
app.bandwango.com
app.bandwango.com
www.seefortworth.com
app.bandwango.com
citytwist.experiencegr.com
app.bandwango.com
buy.duluthdiscountpass.com
marketing.experiencegr.com
find.visitduluth.com
*.experiencegr.com
marketing.experiencegr.com
experience.carmelcalifornia.com
app.bandwango.com
explore.beginatbothell.com
ssl3.simpleviewcms.com
explore.visitcanton.com
experience.visitsugarlandtx.com
cheers.visitroanokeva.com
app.bandwango.com
mail.experiencegr.com
ssl3.simpleviewcms.com
ticket.pikes-peak.com
ssl3.simpleviewcms.com
app.bandwango.com
pif.experiencegr.com
crafts.visitcos.com
experience.fxva.com
culturepass.denver.org
app.bandwango.com
marketing.experiencegr.com
shop.goodcausecommunity.com
experience.charlestonwv.com
app.bandwango.com
mail.experiencegr.com
buy.duluthdiscountpass.com
app.bandwango.com
explore.traveltacoma.com
*.experiencegr.com
go.visitlakecharles.org
cheers.visitroanokeva.com
app.bandwango.com
app.bandwango.com
app.bandwango.com
ssl3.simpleviewcms.com
app.bandwango.com
ssl8.simpleviewcms.com
experiencegr.com
app.bandwango.com
app.bandwango.com
SSL9.simpleviewcms.com
experience.bloomingtonmn.org
www.exploretucsonattractions.com
ssl3.simpleviewcms.com
app.bandwango.com
ssl8.simpleviewcms.com
app.bandwango.com
redemption.bandwango.com
app.bandwango.com
app.bandwango.com
explore.visitphoenix.com
ssl3.simpleviewcms.com
experience.visitcorvallis.com
ssl3.simpleviewcms.com
app.bandwango.com
ssl8.simpleviewcms.com
dashboard.bandwango.com
ssl8.simpleviewcms.com
app.bandwango.com
app.bandwango.com
*.experiencegr.com
ssl8.simpleviewcms.com
app.bandwango.com
app.bandwango.com
app.bandwango.com
m.experiencegr.com
app.bandwango.com
ssl3.simpleviewcms.com
experience.fxva.com
experience.visitomaha.com
app.bandwango.com
buy.duluthdiscountpass.com
dashboard.bandwango.com
*.experiencegr.com
experience.visithouston.com
app.bandwango.com
visit.experiencegr.com
explore.visitjacksonville.com
experiencegr.com
app.bandwango.com
marketing.experiencegr.com
app.bandwango.com
app.bandwango.com
deals.baltimore.org
app.bandwango.com
experience.discoverlosangeles.com
app.bandwango.com
explore.traveltacoma.com
app.bandwango.com
app.bandwango.com
app.bandwango.com
app.bandwango.com
www.seefortworth.com
app.bandwango.com
citytwist.experiencegr.com
app.bandwango.com
buy.duluthdiscountpass.com
marketing.experiencegr.com
find.visitduluth.com
*.experiencegr.com
marketing.experiencegr.com
experience.carmelcalifornia.com
app.bandwango.com
Certificate
The complete raw certificate details for citytwist.experiencegr.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgISBPJ1RkyuK6eehWXbyuozCvuQMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjkxMzE1MjFaFw0yNDA2MjcxMzE1MjBaMCUxIzAhBgNVBAMT GmNpdHl0d2lzdC5leHBlcmllbmNlZ3IuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEA56bDdRgSqVUNvXqlnuHdon5BkCyWIECbfaye+0F6QZ5/VyPq EDBYY71czpWeDk5w4SV3IErzIvHdF5qJ5Hbl88TrRqvvLpGUwzrFKVAMfzkt5T25 bJyLkEqszXufOIwiUY5vrLSLn4zdABoei80f4HKuZoTM/EDshsDS7LDC/ShmgaBu AVdHcean1sDvzzVmz1LCvulTZcLzP4JITGBotuM7gHb6wXOL6C8dsa/SVPgClfxT pSB5ewZ/Yv2t/IF/rPIGuqaypJVzhnbN5YsNvW1um8M+kKIdK2n2fllzZ565RxgQ lVWiAqYs6b+Zom0MoRjeZOqdAV6GWPSBWdMntwIDAQABo4ICHDCCAhgwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBSZeMDZd3MWD3kdx4mIjdTt1F6S9TAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghpjaXR5dHdpc3QuZXhwZXJpZW5jZWdy LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA 8AB1AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjoqQroQAAAQD AEYwRAIgJdH5yedaHXQ5G6mrHCkj/+KhsyECtPFst5MstRjp/iMCIAnE0X19HXox z1rwdl7gDPags97TvHnRi0sWWWXCmWfEAHcASLDja9qmRzQP5WoC+p0w6xxSActW 3SyB2bu/qznYhHMAAAGOipCupQAABAMASDBGAiEArhJNt1HLBivqR7fmA7fNIxZD Czr/tczZ0NvBNXnfrKACIQDqvCnIU7D9DZA3Dz4gcYSfbzL0n6vwQKXsfG0ra/7x cDANBgkqhkiG9w0BAQsFAAOCAQEAk3o5AyJdc/aUJZpEAVymP7g4ZNuFsXkHKuGR CIarkBUJon34jyolNsZQjenRWPuDIGxpyWhLhOjS7e+wMe+peIXu4blRV70/WKjj kdZejpeNK2TPVfH8i/3xVNAlOv2lK7KGQ8aVfBS14oz9oQTPTFfoTZL0vCLsRxmN qKr/8mWKfVddn99427DPTuGjrDJKl6ZT2Q0psti+Nn+JyDmblLWRJnmXpBgyE2xv qN15LY6AC12TyDY5XCZvHnwfnPIA1fi5BZ8EXRJpnuqTOySn7mPMF7ibeRPy+ii1 zarLGTMBQibUkiyEybu6Y2fyYQClItj6TkgMmnfPGN8pL93BQw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA56bDdRgSqVUNvXqlnuHd on5BkCyWIECbfaye+0F6QZ5/VyPqEDBYY71czpWeDk5w4SV3IErzIvHdF5qJ5Hbl 88TrRqvvLpGUwzrFKVAMfzkt5T25bJyLkEqszXufOIwiUY5vrLSLn4zdABoei80f 4HKuZoTM/EDshsDS7LDC/ShmgaBuAVdHcean1sDvzzVmz1LCvulTZcLzP4JITGBo tuM7gHb6wXOL6C8dsa/SVPgClfxTpSB5ewZ/Yv2t/IF/rPIGuqaypJVzhnbN5YsN vW1um8M+kKIdK2n2fllzZ565RxgQlVWiAqYs6b+Zom0MoRjeZOqdAV6GWPSBWdMn twIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 430953361213457367989333796950041760037776 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-29 13:15:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-27 13:15:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'citytwist.experiencegr.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29243282596612156935929901658609621131973514764697637159627621380885552500726725112807930940565406876752429408335386963248876020804745845414185634776609046169479660832028241066889785643974543777446398886316038473804142035688713501209725181157749851407571741595898615755569213362226759400517660819616903638136820334160388420213492237548498786026066963200352238900268895034803518894714768996575835631111423994796284811728785218010909441051233508130221106089402452606098482351086138925376207811261852841630241893003167545384408191352405556857390045624879015547151802104641343317490860567281113536106934839455879340959671 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9978c0d97773160f791dc789888dd4edd45e92f5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'citytwist.experiencegr.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e8a90ae840000040300463044022025d1f9c9e75a1d74391ba9ab1c2923ffe2a1b32102b4f16cb7932cb518e9fe23022009c4d17d7d1d7a31cf5af0765ee00cf6a0b3ded3bc79d18b4b165965c29967c400770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e8a90aea50000040300483046022100ae124db751cb062bea47b7e603b7cd2316430b3affb5ccd9d0dbc13579dfaca0022100eabc29c853b0fd0d90370f3e2071849f6f32f49fabf040a5ec7c6d2b6bfef170 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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