csu-eschenbach.de
Issued by R3
About this certificate
This digital certificate with serial number 04:6c:64:cb:a1:aa:ec:f7:63:ff:f0:34:5b:e4:3f:60:c7:18 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=csu-eschenbach.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:6c:64:cb:a1:aa:ec:f7:63:ff:f0:34:5b:e4:3f:60:c7:18Serial Number (int): 385333619469353186152413696008774188320536
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 1f:08:3b:6f:55:71:e8:4a:fc:dd:b6:b9:76:84:aa:62:90:26:c2:47
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): cb:dd:fa:37:7c:c6:bf:23:34:82:04:4d:47:20:27:55:fc:55:36:30
Fingerprint (sha256): 6d:dd:5d:cd:6b:64:83:0c:9c:3f:ad:85:07:e2:16:97:36:11:77:d0:3b:eb:cd:ce:60:e7:90:49:8e:f3:67:8e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate csu-eschenbach.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for csu-eschenbach.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
csu-eschenbach.de
Other certificates including the domain name csu-eschenbach.de
(limited to 100 certificates)
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
csu-eschenbach.de
jo3.csu-eschenbach.de
csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
csu-eschenbach.de
jo3.csu-eschenbach.de
csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
www.csu-eschenbach.de
jo3.csu-eschenbach.de
jo3.csu-eschenbach.de
www.csu-eschenbach.de
Certificate
The complete raw certificate details for csu-eschenbach.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7zCCBNegAwIBAgISBGxky6Gq7Pdj//A0W+Q/YMcYMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMDQxNzUxMTJaFw0yNDAyMDIxNzUxMTFaMBwxGjAYBgNVBAMT EWNzdS1lc2NoZW5iYWNoLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC AgEA1anQZuoVPJ0g41JJhtSSMedYCWDlZkBmt1AeBf0Xa+y5Aa+rx0a9Rdw3qBl4 glE2xVZhmUGTVWLHrmQUuBFqkTx6hS0DvHrxkN4+NzR2REIa7Nt4QnUYnHmz0ynJ eyGwi/uO/xy/f2mpKBUz5Kib6ZthyTeRga+naqCM798mxD/zg1naD6qpO/wHosfU gfrenWPL3r/oDLMDo1DkjvvdWR6gb3INhkZUp/xf5BxQo4ThIi4N8WgeQgJjkbcN nHEuMNHqreZQ2SYrpjE6fpOxJ9TJRvn8BkCTOREXbB6p+T2mLhe69ZYEddxa8QGI pH0YjNGuZUH/b5n5d0/FZ5QaiNR5iI9HzZeIxva5ABkhVNlqgbSkTe315m9flzd7 XdMfb4D4X+uTNJOzc46CAjSDNwCqDlfsOF9JjDLiy8QiRULXk3aX1OZy0H3+p050 EOkggtkqjkEbahl0eUoMzrfSFDw2lxmql2gcnQcv4AWHpqi9xXZ8GRNsSE/9z2EX vsWQw7hYqkOTf5ES0BuPlvSS+vorWYTnyxVISwHl3WdlggfEcuf6LgYRqjppGTji kEo2rqyHkfK+844EtSpSol93SmGd7YF9ihaL97WME3d/q3kNUPpRBKXZJlMOi00Y 01bEovGMdyFJ+ySp4hiEvtusmGgSY4b1ZMHvwvJbVRUlnzUCAwEAAaOCAhMwggIP MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUHwg7b1Vx6Er83ba5doSqYpAmwkcwHwYD VR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEG CCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0 dHA6Ly9yMy5pLmxlbmNyLm9yZy8wHAYDVR0RBBUwE4IRY3N1LWVzY2hlbmJhY2gu ZGUwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAA dQBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYubrMO3AAAEAwBG MEQCIH4U7iigooZeNgYNAHAOCtmvjXNL7IQ0kCzK53TmVb1yAiB3/zPShGsbAq8Y r1QKh/OO/40c+4TFvtVYo4Jz6VxQVAB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9 AA0tcm/h+tQXAAABi5usw8MAAAQDAEgwRgIhAMrslqBnMlIAg6KUmWa6mqTiC/1q tTbrQdSTJQOG35TMAiEA601Uf+co5y/Gn1TnxPc2dZ9E/Qn69hrh96Vh+RTNdwsw DQYJKoZIhvcNAQELBQADggEBAKBjonB31IUtJlrK8Y7WjtpWMS8Pm8wX9CJxG2VJ wut2o7ytyfTDmjqK7DQ9Ugd9z18AIQ6DTciPBp+sxu0szhtKWge+6xEeU3UhpQNq uTnapE8/l3BhO2AysdENU5PzzXBQJCHMBKv4+uSNLQdWzTnqthM2vWUMBl6hTe81 Y5V9Iuw0/p7FS7KydU50NYViAkGk7I+YidpaYopIOkyi4E1RHY0NvjwU3EM0FIJO NM2xMKBBx5WYGf1OfsOP901SCPLLTT/fUFk/fwzk63T3H9hnPekmhxLH1721cDcs eD2f/IEZswM6CZZprkSKOGv9IiKZVAs0nJpstw8lVOHjlPo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1anQZuoVPJ0g41JJhtSS MedYCWDlZkBmt1AeBf0Xa+y5Aa+rx0a9Rdw3qBl4glE2xVZhmUGTVWLHrmQUuBFq kTx6hS0DvHrxkN4+NzR2REIa7Nt4QnUYnHmz0ynJeyGwi/uO/xy/f2mpKBUz5Kib 6ZthyTeRga+naqCM798mxD/zg1naD6qpO/wHosfUgfrenWPL3r/oDLMDo1Dkjvvd WR6gb3INhkZUp/xf5BxQo4ThIi4N8WgeQgJjkbcNnHEuMNHqreZQ2SYrpjE6fpOx J9TJRvn8BkCTOREXbB6p+T2mLhe69ZYEddxa8QGIpH0YjNGuZUH/b5n5d0/FZ5Qa iNR5iI9HzZeIxva5ABkhVNlqgbSkTe315m9flzd7XdMfb4D4X+uTNJOzc46CAjSD NwCqDlfsOF9JjDLiy8QiRULXk3aX1OZy0H3+p050EOkggtkqjkEbahl0eUoMzrfS FDw2lxmql2gcnQcv4AWHpqi9xXZ8GRNsSE/9z2EXvsWQw7hYqkOTf5ES0BuPlvSS +vorWYTnyxVISwHl3WdlggfEcuf6LgYRqjppGTjikEo2rqyHkfK+844EtSpSol93 SmGd7YF9ihaL97WME3d/q3kNUPpRBKXZJlMOi00Y01bEovGMdyFJ+ySp4hiEvtus mGgSY4b1ZMHvwvJbVRUlnzUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 385333619469353186152413696008774188320536 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-04 17:51:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-02 17:51:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'csu-eschenbach.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 871670362131901526955897250628336875199136015801374817454893198547471864913042971090881517201858526200630202980927679999884567944827590842960427685378279304446802402969889343534025178938741960111200152488847390361974906981000742102226100654417615277861202853733752798436168349094518509154770911515716453949774050310508011534739483455248984351763897148764363670661417025974298680612815206257563760050597575142022320225992772951545571264513968682867536386575003790649731367428080952141915770442245139085873058103540659729059767563812154052235465362472942602837383762196077394437609350553625329821744549535793902411260047275770145031713508855154218461785521625678440702221127233760745610755120080653404636279435995411753041822170475894718418584898620573532688806433733737923082902343469647848874890122669662316247668555628226927868861109111080191448010818107280700214171491624777820728214452339544241176663995699242059241740867642771826009647658043466132142144167377996127333804240311255465615152894991586233768508666439948291266730210020799625200005898326269947358694848014174433045453726525383786672624527165863285279459502132336959100833405600064175343879628972276262513735617886245726264901075016579908333930199491849234732204531509 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1f083b6f5571e84afcddb6b97684aa629026c247 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'csu-eschenbach.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018b9bacc3b7000004030046304402207e14ee28a0a2865e36060d00700e0ad9af8d734bec8434902ccae774e655bd72022077ff33d2846b1b02af18af540a87f38eff8d1cfb84c5bed558a38273e95c50540077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b9bacc3c30000040300483046022100caec96a06732520083a2949966ba9aa4e20bfd6ab536eb41d493250386df94cc022100eb4d547fe728e72fc69f54e7c4f736759f44fd09faf61ae1f7a561f914cd770b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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