resortstoscana.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:9f:98:e9:c8:15:8d:62:da:68:16:12:62:a0:66:56:75:a7 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=resortstoscana.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:9f:98:e9:c8:15:8d:62:da:68:16:12:62:a0:66:56:75:a7
Serial Number (int): 315645010654426770493711800226628364563879
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 2e:a0:b2:56:5b:b9:42:c3:a4:83:88:8c:d7:fa:c3:a7:3c:23:4c:de
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): f5:c8:37:72:4f:3e:e9:8e:18:44:ae:69:d9:14:17:8e:34:78:ab:2b
Fingerprint (sha256): 76:d8:e1:5a:cd:4c:ff:aa:a2:78:26:f9:ae:ac:92:e8:2b:1e:33:40:7f:56:15:1b:cb:e0:e9:e0:a3:dc:14:08

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate resortstoscana.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for resortstoscana.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

resortstoscana.com

Other certificates including the domain name resortstoscana.com

(limited to 100 certificates)
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
www.resortstoscana.com
www.resortstoscana.com
73282.com
villingenschwenningen.org
www.resortstoscana.com
resortstoscana.com
valutazionemoto.com

Certificate

The complete raw certificate details for resortstoscana.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGXDCCBUSgAwIBAgISA5+Y6cgVjWLaaBYSYqBmVnWnMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMzAwOTQ1NDVaFw0y
MDAyMjgwOTQ1NDVaMB0xGzAZBgNVBAMTEnJlc29ydHN0b3NjYW5hLmNvbTCCAiIw
DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMevTv0zt9M2vJ+s+CPalPJsT7sq
YT/QU7Lle/+MBWeEx/X/IHKnFadoIFEp1h2PzOBXATXwxgSQv8lm1+tp+4hoYM3O
mPpfjMYOkYXnGt0d7R6c3Ufsju/mTsgJoul1xAO5CeOi5gH08bthm9btXrXw/TRW
UrQZzrawhjGJ5P56OFEuuohPoyOUF5UKq8kD6ZvqHuppl0ZDVfsgs3ROXumctS9i
bcXCB6Kr970xsaa1Q7z6aVqoHx51Mh5IUl4tRf6kFm5f6/J37BAJ7aU2iiHRRhEY
BUkrSfJvGHwKS0dfGDzNiZofY7UTyZvjgurEcx8SMvXs+/1YtCJ4krXWh6FrWvPm
rjhv/ffWHgXH1xA2yvphv+GJmcCvp8X7KEzIyKc2CJKZZ6i6aEAUxCF13L9Qvx7/
AYjCCqsdsJVmnO/Ab+Wrnz8gm6cFSrhRjhUrieBA7cuzzpVOD3Je7GIaOLdNhtAO
8+LVrZyiBLeIEHpH3QbobMi8HPnYmQHfVKlgDVvVr1IGcxrtn+UZK/4EjJAYyA97
44XPbYRsGCPP5ukdroCL3d5qc8/JS8NlQoDF5OOvyCAVfY0waxcryXFAr+wq5orl
JSw0D3YQB0X58lt7ToecGXnL/HQFFEMUDsmiavts0U4aUyQ2awKj5NgHNVQXQv5N
ETZ6Y827i5qJYE4hAgMBAAGjggJnMIICYzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l
BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE
FC6gslZbuULDpIOIjNf6w6c8I0zeMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF
Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au
aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu
aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIIScmVzb3J0c3Rvc2Nh
bmEuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI
KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHW
eQIEAgSB9QSB8gDwAHYA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMA
AAFuu+qeJgAABAMARzBFAiAkiAvsmVb/FsDnGPl0dGdQ9hVSnKjR7GxQDfbzkZQY
2wIhAJZp9KBn4WfFN9xL+c++68kr5HoYSYftBV+stau7jWboAHYAsh4FzIuizYog
Todm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFuu+qeIgAABAMARzBFAiEA0Ju/UqbH
FGF7r2yOPLcfJeBugSAs+1Jx4isKCi7Z92UCIGeuDjLMHqnCEMCAzFOsQhSjbCyd
IyqBODPXSXA++P/pMA0GCSqGSIb3DQEBCwUAA4IBAQAknKyPU+LaVW7MhA1FJrN3
ZRFjf+qynPUjecb0M+JpACUruKzeAFLX8ghLjZ8spMcTUg9XSd6UcTkf6T3w2Y7E
YFY7LCjKxdJV/7yr8a3RO80A9hlGBqz0hzVMuqgjTc4vp6qDaWIoZQaSHWThNo7v
cdXb6o6A5ioBrUQxhlfw79ICSJTXKHbd9kPNz5v8qnhbyb6Sx75tXUUlxUqoi3//
OqdDiLw7dulAMxkX+vAJPR0FAiVmWkfdwloRGBG6ZcnbwMYmdA10GSu5cLqVGd7W
83SF9bgsnudnAwbj8FPEIlwTUfKbWPI21m2lBdUPC0xfIvqipWXESWzzk0XY8U5Q
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAx69O/TO30za8n6z4I9qU
8mxPuyphP9BTsuV7/4wFZ4TH9f8gcqcVp2ggUSnWHY/M4FcBNfDGBJC/yWbX62n7
iGhgzc6Y+l+Mxg6Rheca3R3tHpzdR+yO7+ZOyAmi6XXEA7kJ46LmAfTxu2Gb1u1e
tfD9NFZStBnOtrCGMYnk/no4US66iE+jI5QXlQqryQPpm+oe6mmXRkNV+yCzdE5e
6Zy1L2JtxcIHoqv3vTGxprVDvPppWqgfHnUyHkhSXi1F/qQWbl/r8nfsEAntpTaK
IdFGERgFSStJ8m8YfApLR18YPM2Jmh9jtRPJm+OC6sRzHxIy9ez7/Vi0IniStdaH
oWta8+auOG/999YeBcfXEDbK+mG/4YmZwK+nxfsoTMjIpzYIkplnqLpoQBTEIXXc
v1C/Hv8BiMIKqx2wlWac78Bv5aufPyCbpwVKuFGOFSuJ4EDty7POlU4Pcl7sYho4
t02G0A7z4tWtnKIEt4gQekfdBuhsyLwc+diZAd9UqWANW9WvUgZzGu2f5Rkr/gSM
kBjID3vjhc9thGwYI8/m6R2ugIvd3mpzz8lLw2VCgMXk46/IIBV9jTBrFyvJcUCv
7CrmiuUlLDQPdhAHRfnyW3tOh5wZecv8dAUUQxQOyaJq+2zRThpTJDZrAqPk2Ac1
VBdC/k0RNnpjzbuLmolgTiECAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 315645010654426770493711800226628364563879
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-30 09:45:45 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-28 09:45:45 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'resortstoscana.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 814642905826590873022897055925042653023655936029154160924683174069522630931601183663479819482270061626811971504749444737567013501119719836605185401581889049570082262886051962807593349664783107741487759370530053933732343954143056550564513166534669843683664255090154934366918809308627590463685946020221730216011151485813331500650797962190441253625962419591479113219121423768147399831114411675937375613674357745137410451044779507853200125725811986883231629688309212438530475207319622086937765577108633551014573752282422285158226445909527480882723782678695211421923916774321083692287961631439720768415808349477287228384503797929628525227314108550981740201474605587018929344826275166892715799979627547704146624064798501200893212610524789143529452049763154139323064940346041957488603641450982998301172090841072125479548779817201917062928801294374565643106521588791787913326354476433438202056243255317836789414165180935516131282934664022920530872896418369726948368092962768069115634481096057939434065567592150024912205309484444562139414997343713580273796387359181769379079522126426134360346071567348838048448309405386960101311405027855377041978172845607577224139651838133782012845209466151220153135214456341021967764793650095730349226085921
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2ea0b2565bb942c3a483888cd7fac3a73c234cde
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resortstoscana.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016ebbea9e260000040300473045022024880bec9956ff16c0e718f974746750f615529ca8d1ec6c500df6f3919418db0221009669f4a067e167c537dc4bf9cfbeebc92be47a184987ed055facb5abbb8d66e8007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ebbea9e220000040300473045022100d09bbf52a6c714617baf6c8e3cb71f25e06e81202cfb5271e22b0a0a2ed9f765022067ae0e32cc1ea9c210c080cc53ac4214a36c2c9d232a813833d749703ef8ffe9
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00249cac8f53e2da556ecc840d4526b3776511637feab29cf52379c6f433e26900252bb8acde0052d7f2084b8d9f2ca4c713520f5749de9471391fe93df0d98ec460563b2c28cac5d255ffbcabf1add13bcd00f6194606acf487354cbaa8234dce2fa7aa836962286506921d64e1368eef71d5dbea8e80e62a01ad44318657f0efd2024894d72876ddf643cdcf9bfcaa785bc9be92c7be6d5d4525c54aa88b7fff3aa74388bc3b76e940331917faf0093d1d050225665a47ddc25a111811ba65c9dbc0c626740d74192bb970ba9519ded6f37485f5b82c9ee7670306e3f053c4225c1351f29b58f236d66da505d50f0b4c5f22faa2a565c4496cf39345d8f14e50