heel.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:63:e1:9a:c4:e2:89:83:67:c2:70:e6:f8:b7:d1:80:ba:da was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=heel.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:63:e1:9a:c4:e2:89:83:67:c2:70:e6:f8:b7:d1:80:ba:daSerial Number (int): 295324692026521873607173523658098562087642
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c1:1c:48:9d:27:90:34:83:21:08:e3:91:72:85:df:37:45:5a:94:3e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 54:41:39:7e:48:15:f6:e6:93:c3:f9:19:83:8e:84:05:9e:c5:b6:ec
Fingerprint (sha256): 73:55:da:26:31:78:40:5b:51:85:55:e6:16:24:e5:81:14:52:b7:e0:b4:2d:93:ba:56:a1:bc:99:40:f7:dd:27
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate heel.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for heel.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
heel.de
www.heel.de
www.heel.de
Other certificates including the domain name heel.de
(limited to 100 certificates)
lauf.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
Certificate
The complete raw certificate details for heel.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISA2PhmsTiiYNnwnDm+LfRgLraMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMzEwMTQ2NDdaFw0x OTA2MjkwMTQ2NDdaMBIxEDAOBgNVBAMTB2hlZWwuZGUwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQDEIwolQ64Ru6pdKoKBbKWDFjjM7rQzhgnQB61VKaqM hw4Qc31Ix7kPKfJVmh63vDHd9ojyUk5kmDIDHG8rmqLiE3wWIHpuAO8cvG4ZV6Iv 76ZuLUrTGH1Yl2dCp0//zbVjQWszVkAOO8mTgIbOun00TYTMASSDxusZ2hu8uvS7 R5eutHRErJ4SIOYlQDKD8Wtkf1a81sC9zY4AgK7KiHusj3KMXcoNHTemyFeOH9zj SEStwXW4NpXW4g/RGyiul0hskasOLKfNylYOtnBWeFRWKtuLSpOKW7Kr1NDTGisw BUTABNXM6tWEcH0Ml+BWzDqhLVQKgecuYj8z/sVgiHMf7oCRs24wIHoamZHhj1kz WlTROpQzYX5l1vBHgPHANiT41lfglWjMZmyLKZPYP4Q+p3nVy5sZAfQOoPo3stkG sPINs4xpIx7vs83ePU+1+DYmPCs8NzR84XqBV4jaEFMqo27d6aVVxCCDlcUPCS9g ImJ0xwNgv+UcYuUPJJ3/19Im/xOX94pguE2L8LZbuuXUx1Gosx2Rn9C+0f4Riwxp 8FxQ/4b7A8C+b0QODC4x+a1qCKV28aBm2GbMW11hk/buATUGxospaOREt7Q5AxEc c44E+5y8aAN//HP8fcn8gzNFwrrc8ctj3tZWoBkfnztzzDNNqEbIXZcX3Jt+AGnc XQIDAQABo4ICaDCCAmQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTBHEidJ5A0gyEI 45Fyhd83RVqUPjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggr BgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRz ZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRz ZW5jcnlwdC5vcmcvMB8GA1UdEQQYMBaCB2hlZWwuZGWCC3d3dy5oZWVsLmRlMEwG A1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEW Gmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB 8QDvAHYA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFp0aRqbwAA BAMARzBFAiBuFrxb4WZa3C4EI9SQ4FzSUg8ThDwpT4+H18ZdH1AebwIhAMCp/Bvw 1tTGCEphYbN3cY2j0/wYnBFvhCau2ohUSR2oAHUAY/Lbzeg7zCzPC3KEJ1drM6SN YXePvXWmOLHHaFRL2I0AAAFp0aRqcgAABAMARjBEAiAtM/7kv0DZOUQQaT78c7Cn HdofnwdjwShI9PTeH6wjmAIgIRm49FU7mA2B40gPNW1pWmTxov8n8QRsEGUy8Plm jTcwDQYJKoZIhvcNAQELBQADggEBAE2e4C/pIz+3FDqcTz3FzeGAhqrIhLl+1MNs fkceJ/YP6Ipfe8/Cxhv50VQld17DsLh9/1aJdyf7VQClHmA1/A87uDBkDiYivohr 8saA6Ju1N7R5wHneWuu7/cnfjjwxq1dHT4C/CgUCGyrLWKQ5ankNj13iZV4LuwS6 id56n9PNLGpo+Fbv25dCJ6ge8fmwgHfWr5hLEA9sJaCmce53kvJ0tEmFLRMkg+JD Tzv8ALf6Pgt7JWYO0kBrOQYO6cIvw2QnqVXLMPVMphm9aJG5NqfGu62SpuEUXxEv 8ByCvxoPJsjY07ZfdjPpOckN3YqQNCcEZ/myKVDBKqskNN0EE68= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxCMKJUOuEbuqXSqCgWyl gxY4zO60M4YJ0AetVSmqjIcOEHN9SMe5DynyVZoet7wx3faI8lJOZJgyAxxvK5qi 4hN8FiB6bgDvHLxuGVeiL++mbi1K0xh9WJdnQqdP/821Y0FrM1ZADjvJk4CGzrp9 NE2EzAEkg8brGdobvLr0u0eXrrR0RKyeEiDmJUAyg/FrZH9WvNbAvc2OAICuyoh7 rI9yjF3KDR03pshXjh/c40hErcF1uDaV1uIP0RsorpdIbJGrDiynzcpWDrZwVnhU Virbi0qTiluyq9TQ0xorMAVEwATVzOrVhHB9DJfgVsw6oS1UCoHnLmI/M/7FYIhz H+6AkbNuMCB6GpmR4Y9ZM1pU0TqUM2F+ZdbwR4DxwDYk+NZX4JVozGZsiymT2D+E Pqd51cubGQH0DqD6N7LZBrDyDbOMaSMe77PN3j1Ptfg2JjwrPDc0fOF6gVeI2hBT KqNu3emlVcQgg5XFDwkvYCJidMcDYL/lHGLlDySd/9fSJv8Tl/eKYLhNi/C2W7rl 1MdRqLMdkZ/QvtH+EYsMafBcUP+G+wPAvm9EDgwuMfmtagildvGgZthmzFtdYZP2 7gE1BsaLKWjkRLe0OQMRHHOOBPucvGgDf/xz/H3J/IMzRcK63PHLY97WVqAZH587 c8wzTahGyF2XF9ybfgBp3F0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 295324692026521873607173523658098562087642 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-31 01:46:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-29 01:46:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'heel.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 800168632735071469083357740189298040724569535034396445759590413136293431408795241349635557686649023931118344453119295393613803504619202331514987513251237331433239908886675915521578405935750001484439824590688761335786946996203589246544257971063417384817863485948166148028511663797261082298235881545367909272068811001756414368801802521474365083910430420160961963464037129722132747824760727530320771313030285618350905736985951546732973916603131451486302848409031779636669863914488144738481039845427801510834512422204850183925597933132483165590360490131861225833210132006392886949321448945059587643998423903653804973189940430448987248694946003150246713091671708581385543880247183728392945437930050146100037959032224064529626611774893575784755690762254334695872465547371015251545073251209379731645190708241967532851119928244209455576408140534534103736260461909508348853912908400262466268902729788627398491162880868240400878547278855575852827121836544210033025417273484669998579848908894308838484112208399249468208838904757406637948105871093412746503314865362403463877923525644758228235811819675359246906260911018001336029650546883751821020873138729680833863367002722992368601509415347473010613073512064332523717816512346247621429418384477 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c11c489d279034832108e3917285df37455a943e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heel.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heel.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000169d1a46a6f000004030047304502206e16bc5be1665adc2e0423d490e05cd2520f13843c294f8f87d7c65d1f501e6f022100c0a9fc1bf0d6d4c6084a6161b377718da3d3fc189c116f8426aeda8854491da800750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169d1a46a72000004030046304402202d33fee4bf40d9394410693efc73b0a71dda1f9f0763c12848f4f4de1fac239802202119b8f4553b980d81e3480f356d695a64f1a2ff27f1046c106532f0f9668d37 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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