*.tma149.ca
Issued by AlphaSSL CA - SHA256 - G2
About this certificate
This digital certificate with serial number 0a:14:46:d0:04:87:1b:9f:bb:54:c6:47 was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.tma149.ca,OU=Domain Control Validated
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:14:46:d0:04:87:1b:9f:bb:54:c6:47Serial Number (int): 3119363017508571348357924423
Serial Number lenght: 92 bits, 12 octets
SubjectKeyId: 94:a6:86:dd:5a:e2:0e:68:59:aa:d3:1f:ce:10:b0:0b:3f:d0:44:79
AuthorityKeyId: f5:cd:d5:3c:08:50:f9:6a:4f:3a:b7:97:da:56:83:e6:69:d2:68:f7
Fingerprint (sha1): e7:ed:8a:93:81:d3:26:d0:c9:81:46:3f:4e:96:40:a7:b9:d4:40:dc
Fingerprint (sha256): 73:7c:78:40:ee:46:c6:c6:54:da:9d:ca:4e:3a:6f:30:38:44:55:b6:a2:e5:6d:f5:05:46:25:c9:1f:7e:ff:42
Issuing Certificate URL: http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsalphasha2g2CRL Distribution Point: http://crl2.alphassl.com/gs/gsalphasha2g2.crl
Check the revocation status for certificate *.tma149.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.tma149.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.tma149.ca
tma149.ca
tma149.ca
Other certificates including the domain name tma149.ca
(limited to 100 certificates)
www.tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
torontomusicians.org
www.tma149.ca
*.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
tma149.ca
mymusic150.tma149.ca
tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
tma149.ca
tma149.ca
*.tma149.ca
sni.cloudflaressl.com
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
www.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
torontomusicians.org
www.tma149.ca
*.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
tma149.ca
mymusic150.tma149.ca
tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
tma149.ca
tma149.ca
*.tma149.ca
sni.cloudflaressl.com
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
www.tma149.ca
tma149.ca
Certificate
The complete raw certificate details for *.tma149.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF2jCCBMKgAwIBAgIMChRG0ASHG5+7VMZHMA0GCSqGSIb3DQEBCwUAMEwxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSIwIAYDVQQDExlB bHBoYVNTTCBDQSAtIFNIQTI1NiAtIEcyMB4XDTIwMDMxNzA1MDIxNloXDTIxMDMy MTIxMTQxOVowOTEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRQw EgYDVQQDDAsqLnRtYTE0OS5jYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjKNYknEtZ41KMidNJ80hCvz6Sxtn+H21mV/nQ3Pv5aGE0f6ukfd7m/XW2F XbBBj9cx/h52GfFYV1jpwn0bvXjy+OfLNSMEkl/kLQ2pP3/Wy9JVxudCPLK2KIvQ XIDHePcGc0c8ISMvIg8YisUpPI8ZbiBXP+cDeMr82q0ozZFRXJM20wfF/A/i6h5R YmHgZWvDvBKmlSLebCGAU9mQgT5r9LZBJS2hLC/Ie+JPeCxlFcBluIet8E92wXRk dUQBad1R/a0JM+YK2Lbcsw+mjy4DnI3ZEuipGiAd6N1LGi5B+I5/Xc32MXa0W8vU CA3ep2pih4O6mVWAxvecGZeUiXMCAwEAAaOCAs0wggLJMA4GA1UdDwEB/wQEAwIF oDCBiQYIKwYBBQUHAQEEfTB7MEIGCCsGAQUFBzAChjZodHRwOi8vc2VjdXJlMi5h bHBoYXNzbC5jb20vY2FjZXJ0L2dzYWxwaGFzaGEyZzJyMS5jcnQwNQYIKwYBBQUH MAGGKWh0dHA6Ly9vY3NwMi5nbG9iYWxzaWduLmNvbS9nc2FscGhhc2hhMmcyMFcG A1UdIARQME4wQgYKKwYBBAGgMgEKCjA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3 dy5nbG9iYWxzaWduLmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwCQYDVR0TBAIw ADA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vY3JsMi5hbHBoYXNzbC5jb20vZ3Mv Z3NhbHBoYXNoYTJnMi5jcmwwIQYDVR0RBBowGIILKi50bWExNDkuY2GCCXRtYTE0 OS5jYTAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgwFoAU 9c3VPAhQ+WpPOreX2laD5mnSaPcwHQYDVR0OBBYEFJSmht1a4g5oWarTH84QsAs/ 0ER5MIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAVYHUwhaQNgFK6gubVzxT8MDk OHhwJQgXL6OqHQcT0wwAAAFw5t7+1AAABAMARjBEAiAtoFf0Pr2wHu9m3oMoaiTy 5pzMg7qJdrQ3LSM8p+bUTgIgIH6BttZFGIEyDTsRXFN0ipj2FbYApR4WNRarcvQW kqsAdgD2XJQv0XcwIhRUGAgwlFaO400TGTO/3wwvIAvMTvFk4wAAAXDm3v6yAAAE AwBHMEUCIHj5T/tl0/TtZvLMiKeC3iV6Epxp7yPeRx9AdGw1/RnsAiEA1wHkO7Dg 2irkIdNnObfgkGpeRSBgSUkkkCfEqHWeFvowDQYJKoZIhvcNAQELBQADggEBALeI TenWQSI6sn/TOjW7szH+zoxAkvJ7RgUwCFjYBGs3Umr68U0GBIWn/LeL0BImKQCO VFAwgb2rrL9MyVhKGHCS0cidWxHbgBUS/UaPM3A8LzFWQPv+VbBtCjqoR5JyeSKO ji5n5jaIiY9NA9/IAk9r0kOT3pWgKLz4Fp2PZQbeNZBRqcS2JdJwFCVO0riU9UeS Q3zeURNQY977BXEm5pm5b+w50WXzhYNhMH9nIVf/NfRqUEt8OO/jYRAj1rH8+dyO EtVCffPy6h3/fIsRY0l+03dEfJPaj1Sj3XdG2mycgO2Os235zZJoCl20Y16ryyDN SAGOtllP11aEkXX3iro= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMo1iScS1njUoyJ00nzS EK/PpLG2f4fbWZX+dDc+/loYTR/q6R93ub9dbYVdsEGP1zH+HnYZ8VhXWOnCfRu9 ePL458s1IwSSX+QtDak/f9bL0lXG50I8srYoi9BcgMd49wZzRzwhIy8iDxiKxSk8 jxluIFc/5wN4yvzarSjNkVFckzbTB8X8D+LqHlFiYeBla8O8EqaVIt5sIYBT2ZCB Pmv0tkElLaEsL8h74k94LGUVwGW4h63wT3bBdGR1RAFp3VH9rQkz5grYttyzD6aP LgOcjdkS6KkaIB3o3UsaLkH4jn9dzfYxdrRby9QIDd6namKHg7qZVYDG95wZl5SJ cwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3119363017508571348357924423 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AlphaSSL CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-17 05:02:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-21 21:14:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.tma149.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23327561149171216587573014879475019032140221859043153227292490470743113646452666752503654022737889288262629405930832998522049412216538287759430961681598380868142741312304689199612877287575025272063082648017974645303659727354152889999929994497149231064495410041891042754602554952677131628082359281647374939175015349679479971982940269481690772631511638530814350919347910646732207276228239870431948379167389192577108469708169699626556690531733043566223423451231948696538172516439226857118531471962843891902261273156923334369888651540237673615035224141310241450509250592435840010564356880368894295654164764775899387431283 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (125 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsalphasha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10.10 (Domain Validation Certificates Policy - AlphaSSL) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl2.alphassl.com/gs/gsalphasha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tma149.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tma149.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f5cdd53c0850f96a4f3ab797da5683e669d268f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 94a686dd5ae20e6859aad31fce10b00b3fd04479 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000170e6defed4000004030046304402202da057f43ebdb01eef66de83286a24f2e69ccc83ba8976b4372d233ca7e6d44e0220207e81b6d6451881320d3b115c53748a98f615b600a51e163516ab72f41692ab007600f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e300000170e6defeb20000040300473045022078f94ffb65d3f4ed66f2cc88a782de257a129c69ef23de471f40746c35fd19ec022100d701e43bb0e0da2ae421d36739b7e0906a5e4520604949249027c4a8759e16fa . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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