sommelier.ai
Issued by cPanel, Inc. Certification Authority
About this certificate
This digital certificate with serial number 67:0c:da:7c:55:bd:23:be:23:70:f4:d7:b3:52:13:a3 was issued on by cPanel, Inc..
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sommelier.ai
cPanel, Inc.
Organization:
cPanel, Inc.
State / Province:
TX
Locality: Houston
Country: US
Locality: Houston
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 67:0c:da:7c:55:bd:23:be:23:70:f4:d7:b3:52:13:a3Serial Number (int): 136977222544269382278548355659062186915
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 1b:fc:3b:68:83:db:11:95:2c:67:53:86:b6:40:65:de:b2:4f:6f:74
AuthorityKeyId: 7e:03:5a:65:41:6b:a7:7e:0a:e1:b8:9d:08:ea:1d:8e:1d:6a:c7:65
Fingerprint (sha1): 2c:3e:d3:0e:dd:4e:f6:0e:d1:ef:f2:8a:6b:86:fc:0a:db:fb:57:c8
Fingerprint (sha256): 74:9f:3a:d0:38:07:df:2f:19:cf:c7:09:97:49:83:72:d1:19:71:bf:21:86:5d:fb:45:26:ed:5f:54:78:0f:11
Issuing Certificate URL: http://crt.comodoca.com/cPanelIncCertificationAuthority.crt
Revocation information
OCSP Server: http://ocsp.comodoca.comCRL Distribution Point: http://crl.comodoca.com/cPanelIncCertificationAuthority.crl
Check the revocation status for certificate sommelier.ai
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sommelier.ai
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sommelier.ai
cpanel.sommelier.ai
mail.sommelier.ai
sommelier.ai.trouble-free.net
webdisk.sommelier.ai
webmail.sommelier.ai
www.sommelier.ai
www.sommelier.ai.trouble-free.net
cpanel.sommelier.ai
mail.sommelier.ai
sommelier.ai.trouble-free.net
webdisk.sommelier.ai
webmail.sommelier.ai
www.sommelier.ai
www.sommelier.ai.trouble-free.net
Other certificates including the domain name sommelier.ai
(limited to 100 certificates)
Certificate
The complete raw certificate details for sommelier.ai in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGezCCBWOgAwIBAgIQZwzafFW9I74jcPTXs1ITozANBgkqhkiG9w0BAQsFADBy MQswCQYDVQQGEwJVUzELMAkGA1UECBMCVFgxEDAOBgNVBAcTB0hvdXN0b24xFTAT BgNVBAoTDGNQYW5lbCwgSW5jLjEtMCsGA1UEAxMkY1BhbmVsLCBJbmMuIENlcnRp ZmljYXRpb24gQXV0aG9yaXR5MB4XDTIwMDIwNDAwMDAwMFoXDTIwMDUwNDIzNTk1 OVowFzEVMBMGA1UEAxMMc29tbWVsaWVyLmFpMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAvw4Y5QyzCbxBtQPn+p8bgMA/FRfijqIW36lkQPVYkssqOk4u 6L8QL6vaIuxTo9ct85iLkYNUqnTJIE3K3iDI4RJpQT+VHyLWMQPEPnPtikwYrnrz dD5PC/7gFW33D2hQS1nWL4/X1XwqG1pC0wqOHZX2Elm4xJP6MK6MYzETjo9PX1vh sumJpNb7jCMxHW/jskCWCTRZZkjT752cOAiDcsMRRAl+bx7AlNqUrHCtrdKz9UBp phKGctYIB90dwWknDBzDEyFgQp14M5hCpJ9RkghKs3/g73tf6dpjCoIfWs3LVPul a7KNKw7tEL3LzXcLFx4I6G4u8IfbDeTkcV1RrQIDAQABo4IDZjCCA2IwHwYDVR0j BBgwFoAUfgNaZUFrp34K4bidCOodjh1qx2UwHQYDVR0OBBYEFBv8O2iD2xGVLGdT hrZAZd6yT290MA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgI0 MCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAEC ATBMBgNVHR8ERTBDMEGgP6A9hjtodHRwOi8vY3JsLmNvbW9kb2NhLmNvbS9jUGFu ZWxJbmNDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB9BggrBgEFBQcBAQRxMG8w RwYIKwYBBQUHMAKGO2h0dHA6Ly9jcnQuY29tb2RvY2EuY29tL2NQYW5lbEluY0Nl cnRpZmljYXRpb25BdXRob3JpdHkuY3J0MCQGCCsGAQUFBzABhhhodHRwOi8vb2Nz cC5jb21vZG9jYS5jb20wgcEGA1UdEQSBuTCBtoIMc29tbWVsaWVyLmFpghNjcGFu ZWwuc29tbWVsaWVyLmFpghFtYWlsLnNvbW1lbGllci5haYIdc29tbWVsaWVyLmFp LnRyb3VibGUtZnJlZS5uZXSCFHdlYmRpc2suc29tbWVsaWVyLmFpghR3ZWJtYWls LnNvbW1lbGllci5haYIQd3d3LnNvbW1lbGllci5haYIhd3d3LnNvbW1lbGllci5h aS50cm91YmxlLWZyZWUubmV0MIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcAB7dc G+V9aP/xsMYdIxXHuuZXfFeUt2ruvGE6GmnTohwAAAFwEae6fgAABAMASDBGAiEA 87P4qUKP7HddHWnOlvVf1xxB9yWaYBnuQ4FMDeTxth0CIQDRYwa2htMb22tpyRT3 SVtuxujxa+ndV5gVUZ/DnxOnsQB2AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKESEoQY dZaBcUVYAAABcBGnumwAAAQDAEcwRQIgV+mg8fIazqsgEmhz+2msXAvcRCNwCHwD rcrMlQuBf10CIQDEZD1+jDXCaClNSwKENnmKy6axH7GGwPVcU2dWk4TPfDANBgkq hkiG9w0BAQsFAAOCAQEAhuRP9fpIVmPn1LRRDfRv7mjAwMPOxp7byvKjyj6FGXae OaMfGRUvxIYeAvaLWcnTwoY8qclB7F/rSlzoOVFgzpfynZ6/6QcX/+DMohD+vjaW j3uHWa73bDrMiw+Z2PsM/WHs/TShxV6WgmZgd/JgnDDhG8CfzjMBmFfabtGlLiSb WvKXSmzDnG15CnYNyIVJwelSXzZGBUKHZcANt14S2yZEiS+jO0gOkCFMg8XFAP72 Vl22EwDnL7CrzMWbKGmf3MJRaZ9VAlbjwDjzkrsrGD3l7S2FV0PsqRApigZc7nTB eW6N2bHxvLC8DdaYRO9sfpmBG6tUmwVqypUp/uN7cw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvw4Y5QyzCbxBtQPn+p8b gMA/FRfijqIW36lkQPVYkssqOk4u6L8QL6vaIuxTo9ct85iLkYNUqnTJIE3K3iDI 4RJpQT+VHyLWMQPEPnPtikwYrnrzdD5PC/7gFW33D2hQS1nWL4/X1XwqG1pC0wqO HZX2Elm4xJP6MK6MYzETjo9PX1vhsumJpNb7jCMxHW/jskCWCTRZZkjT752cOAiD csMRRAl+bx7AlNqUrHCtrdKz9UBpphKGctYIB90dwWknDBzDEyFgQp14M5hCpJ9R kghKs3/g73tf6dpjCoIfWs3LVPula7KNKw7tEL3LzXcLFx4I6G4u8IfbDeTkcV1R rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 136977222544269382278548355659062186915 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TX' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Houston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cPanel, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cPanel, Inc. Certification Authority' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-04 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sommelier.ai' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24118467859126455192448030146138731190633235950264834677349944239597645783681579574409858762275253316492371277473494515236573304888209854324005832983785399515830266147148708943836797753215843437700885703631308521223218310908948025585162766836711679726281986835958673837297266174897645349290227150289785153092118450108999596234879763132646708207134970234558661172826929706081774003585124157916334904948185521619623066667836346194625308787177194607588285218354878150416397327293673365587352207667051096831489137460335331573324484124520142250366911970369866336417422425304060510368845566765540216013967393558454930854317 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7e035a65416ba77e0ae1b89d08ea1d8e1d6ac765 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1bfc3b6883db11952c675386b64065deb24f6f74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.52 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/cPanelIncCertificationAuthority.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/cPanelIncCertificationAuthority.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sommelier.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.sommelier.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.sommelier.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sommelier.ai.trouble-free.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.sommelier.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.sommelier.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sommelier.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sommelier.ai.trouble-free.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000017011a7ba7e0000040300483046022100f3b3f8a9428fec775d1d69ce96f55fd71c41f7259a6019ee43814c0de4f1b61d022100d16306b686d31bdb6b69c914f7495b6ec6e8f16be9dd579815519fc39f13a7b10076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000017011a7ba6c0000040300473045022057e9a0f1f21aceab20126873fb69ac5c0bdc442370087c03adcacc950b817f5d022100c4643d7e8c35c268294d4b028436798acba6b11fb186c0f55c5367569384cf7c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0086e44ff5fa485663e7d4b4510df46fee68c0c0c3cec69edbcaf2a3ca3e8519769e39a31f19152fc4861e02f68b59c9d3c2863ca9c941ec5feb4a5ce8395160ce97f29d9ebfe90717ffe0cca210febe36968f7b8759aef76c3acc8b0f99d8fb0cfd61ecfd34a1c55e9682666077f2609c30e11bc09fce33019857da6ed1a52e249b5af2974a6cc39c6d790a760dc88549c1e9525f364605428765c00db75e12db2644892fa33b480e90214c83c5c500fef6565db61300e72fb0abccc59b28699fdcc251699f550256e3c038f392bb2b183de5ed2d855743eca910298a065cee74c1796e8dd9b1f1bcb0bc0dd69844ef6c7e99811bab549b056aca9529fee37b73