discovergiving.org
Issued by R11
About this certificate
This digital certificate with serial number 04:2e:19:4f:49:46:d4:8c:bb:82:fa:a7:e0:3a:2b:1d:07:92 was issued on by Let's Encrypt.
With 20 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=discovergiving.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:2e:19:4f:49:46:d4:8c:bb:82:fa:a7:e0:3a:2b:1d:07:92Serial Number (int): 364135774982978256453782065497637461493650
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 98:38:63:e6:4c:18:8d:d6:81:13:5e:ff:ea:20:9d:20:a4:63:b2:32
AuthorityKeyId: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9
Fingerprint (sha1): a7:73:7a:4d:3c:59:bc:09:c4:ba:39:79:b4:bb:3a:9e:7c:e8:ed:12
Fingerprint (sha256): 6f:01:9f:27:f2:aa:25:3b:c4:a8:77:d2:6e:b7:21:21:75:71:c3:1a:0b:8b:0b:bc:fe:e6:94:a1:dc:eb:8e:6b
Issuing Certificate URL: http://r11.i.lencr.org/
Revocation information
OCSP Server: http://r11.o.lencr.orgCheck the revocation status for certificate discovergiving.org
20
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for discovergiving.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
albumads.com
alluloseiscleansugar.com
arbitragefund.com
austinhomeguide.com
chicagosleepclinic.com
discovergiving.org
dnurinal.com
domaintoprofits.com
freezedriedkakaduplum.com
homesteadgourmet.co
icannabis.org
ironlighthouse.com
juliomartinez.com
mapcompiler.com
mccdrew.com
potlawbyzipcode.com
pwcloans.com
qldcouncilelections2024.com.au
resolveconflicts.com
uploadrebate.com
alluloseiscleansugar.com
arbitragefund.com
austinhomeguide.com
chicagosleepclinic.com
discovergiving.org
dnurinal.com
domaintoprofits.com
freezedriedkakaduplum.com
homesteadgourmet.co
icannabis.org
ironlighthouse.com
juliomartinez.com
mapcompiler.com
mccdrew.com
potlawbyzipcode.com
pwcloans.com
qldcouncilelections2024.com.au
resolveconflicts.com
uploadrebate.com
Other certificates including the domain name discovergiving.org
(limited to 100 certificates)
hoist.cc
namepard.avail.world
discovergiving.org
discovergiving.org
usc.mba
discovergiving.org
allenblock.be
discovergiving.org
discovergiving.org
dejting.club
discovergiving.org
discovergiving.org
namepard.avail.world
namepard.avail.world
hoist.cc
discovergiving.org
zinnia.cloud
discovergiving.org
hoist.cc
thequest.bible
namepard.avail.world
discovergiving.org
discovergiving.org
usc.mba
discovergiving.org
allenblock.be
discovergiving.org
discovergiving.org
dejting.club
discovergiving.org
discovergiving.org
namepard.avail.world
namepard.avail.world
hoist.cc
discovergiving.org
zinnia.cloud
discovergiving.org
hoist.cc
thequest.bible
Certificate
The complete raw certificate details for discovergiving.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGczCCBVugAwIBAgISBC4ZT0lG1Iy7gvqn4DorHQeSMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTEwHhcNMjQwNjA2MjM0MTAyWhcNMjQwOTA0MjM0MTAxWjAdMRswGQYDVQQD ExJkaXNjb3ZlcmdpdmluZy5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDJDKpQspUtByUOvJaFdgNx+3TSdStQYGLvJqe2sedpVLgLMzGu4pWFxBNb cN9fvL2JpE9+VJ3UJgGl5ymRtcU3BXKlLA86I4HLW21hlnyK0I/YqXed9Mfe5bCm 7THFQrOI9zDoV2YrCNrftJl23Rgoeb/pTLC47RoTqiKlvmclUHM9yiWtwuiWYZt1 8eqN0K/OSmIC3GXSfoU/24xlZjNq4TwvelIeIQ/Ve6hlAI6FAQ2C0vfbGpManwPb iPUacY3qfnu6B7xxGAA38c3ekGaUu8iUrCOpl/aiZ9d+tiDu0mhCEfZP2XqRoelF UFt9rP+5dPwwYFo1o7StdMqKwMdLAgMBAAGjggOVMIIDkTAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFJg4Y+ZMGI3WgRNe/+ognSCkY7IyMB8GA1UdIwQYMBaAFMXPRqTq 9MPAemyVxC2wXpIvJuO5MFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0 cDovL3IxMS5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMS5pLmxl bmNyLm9yZy8wggGbBgNVHREEggGSMIIBjoIMYWxidW1hZHMuY29tghhhbGx1bG9z ZWlzY2xlYW5zdWdhci5jb22CEWFyYml0cmFnZWZ1bmQuY29tghNhdXN0aW5ob21l Z3VpZGUuY29tghZjaGljYWdvc2xlZXBjbGluaWMuY29tghJkaXNjb3Zlcmdpdmlu Zy5vcmeCDGRudXJpbmFsLmNvbYITZG9tYWludG9wcm9maXRzLmNvbYIZZnJlZXpl ZHJpZWRrYWthZHVwbHVtLmNvbYITaG9tZXN0ZWFkZ291cm1ldC5jb4INaWNhbm5h YmlzLm9yZ4ISaXJvbmxpZ2h0aG91c2UuY29tghFqdWxpb21hcnRpbmV6LmNvbYIP bWFwY29tcGlsZXIuY29tggttY2NkcmV3LmNvbYITcG90bGF3Ynl6aXBjb2RlLmNv bYIMcHdjbG9hbnMuY29tgh5xbGRjb3VuY2lsZWxlY3Rpb25zMjAyNC5jb20uYXWC FHJlc29sdmVjb25mbGljdHMuY29tghB1cGxvYWRyZWJhdGUuY29tMBMGA1UdIAQM MAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAdv+IPwq2+5VR wmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGP8CRQ6AAABAMARzBFAiBNzZd9qLUH tQvVkVhBibTGvoCO/btg+qdbUqkOvRan5wIhAO/EuuUfBMId35mZYRyqMit9Drbq DmNHi7zY6uC52/bjAHUAGZgQcQnw1lIuMIDSnj9ku4NuKMz5D1KO7t/OSj8WtMoA AAGP8CRRKAAABAMARjBEAiBkoIbSe7eWnMykVNurd9PykfTrApBobZJjgGLjQwxk AAIgFWYpRhplX4a8lsdeZSHEhMvgSBZk3Ywq/fk4p3JVzlwwDQYJKoZIhvcNAQEL BQADggEBAFgxSNT8E/1oCKTemnrlYzizSjhmu/3+9v90Mnz80DhYHFB82zG+gFMZ /NpmHcbdo0oGH5G/H3RyiliYDFxxSmfIYDz8Zaffz1Ou6QLp0p7/t85ZWYYzGN0S v8NCpdXd+ZxOToNJ+TASMZdifO2I8L/84SpAQnbAxGUE6KafYNpHJYzxdOXwpg6O CqsL9JvSBH3TrjCd5xd1vxhH20fHFkslxzioVX9K2J3iz1RAS7nK4sBodrYBvQD5 JD/RzQ9KPP3ffTieU4raTfuF7PnhhSqUfFuB5M+f5qFUhDlMXfM9ChWQOobHoHoC klMkxuDx2EILM2Lb69W0wWTNp/P/m/g= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQyqULKVLQclDryWhXYD cft00nUrUGBi7yantrHnaVS4CzMxruKVhcQTW3DfX7y9iaRPflSd1CYBpecpkbXF NwVypSwPOiOBy1ttYZZ8itCP2Kl3nfTH3uWwpu0xxUKziPcw6FdmKwja37SZdt0Y KHm/6UywuO0aE6oipb5nJVBzPcolrcLolmGbdfHqjdCvzkpiAtxl0n6FP9uMZWYz auE8L3pSHiEP1XuoZQCOhQENgtL32xqTGp8D24j1GnGN6n57uge8cRgAN/HN3pBm lLvIlKwjqZf2omfXfrYg7tJoQhH2T9l6kaHpRVBbfaz/uXT8MGBaNaO0rXTKisDH SwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 364135774982978256453782065497637461493650 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-06 23:41:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-04 23:41:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'discovergiving.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25380144787346546719811913101874953186193976640446367655484134681342718484509867063181107441810854559926315450236288632176630425676237567600396152321559005645263971145851672362750610481611066139674370125396291410596772737063716258111908825878995748445984135167007027635714825729523273563515426085667120705845609647780559814388637391607745964131236382641573350386784363631955735696584382401210858230828402698446539975903697642548876601858171986787289084829011642028722824070688642943814391073471383274407244371406730162004692053561787606406683870440601216933790085529401815452703214562146756763981176228972750484588363 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 983863e64c188dd681135effea209d20a463b232 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (402 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'albumads.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alluloseiscleansugar.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arbitragefund.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'austinhomeguide.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chicagosleepclinic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'discovergiving.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dnurinal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaintoprofits.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freezedriedkakaduplum.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homesteadgourmet.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'icannabis.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ironlighthouse.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'juliomartinez.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mapcompiler.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mccdrew.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'potlawbyzipcode.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pwcloans.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qldcouncilelections2024.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resolveconflicts.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uploadrebate.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ff02450e8000004030047304502204dcd977da8b507b50bd591584189b4c6be808efdbb60faa75b52a90ebd16a7e7022100efc4bae51f04c21ddf9999611caa322b7d0eb6ea0e63478bbcd8eae0b9dbf6e30075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018ff02451280000040300463044022064a086d27bb7969ccca454dbab77d3f291f4eb0290686d92638062e3430c64000220156629461a655f86bc96c75e6521c484cbe0481664dd8c2afdf938a77255ce5c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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