secured.heel.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:8c:2d:f3:2e:bf:0c:28:a1:64:0f:97:9e:06:51:fa:ff:49 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=secured.heel.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:8c:2d:f3:2e:bf:0c:28:a1:64:0f:97:9e:06:51:fa:ff:49Serial Number (int): 309037467100286253749637318174064160472905
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a0:e5:d9:4b:3c:8c:9a:70:1c:b7:1a:75:1f:a9:19:cd:cb:f8:36:d8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3d:dd:2b:4a:7c:6b:a8:c8:58:7b:54:8d:f0:9d:04:fd:9d:40:1d:21
Fingerprint (sha256): 77:ca:89:98:2a:31:9d:67:db:46:ed:8d:ca:d6:05:dd:15:46:3a:f1:78:4d:e0:ba:d0:0b:5f:b1:9a:0c:ae:8a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate secured.heel.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for secured.heel.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
secured.heel.de
Other certificates including the domain name heel.de
(limited to 100 certificates)
lauf.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
Certificate
The complete raw certificate details for secured.heel.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVDCCBTygAwIBAgISA4wt8y6/DCihZA+XngZR+v9JMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMzEwNzE2NThaFw0x OTA1MDEwNzE2NThaMBoxGDAWBgNVBAMTD3NlY3VyZWQuaGVlbC5kZTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBANuLvHvWM6EZcLpsGkxPlWcP2t5iXxt+ 75p9/qYsMycNP+r49laCBAdAqu3/xtbjc+UQrYX3Z5KCD6vbaaYPJE7dPNG24tFM 1TV8taRP85Oo50R1liNQQzPjHXeg7y1Qzuq+nclkzhG6+Z6QE09OMMYCE9qPOTSK 9w2jpQPVP0rP3CHeyq17Yb/SWpqg9R1HXJ+29zthU8sGAZMl96eBMMVG0N1uUTjT r+YOimUxR5PLzxXBIzsL3yKFGpkNrgGtAlwIAzVB1/vWbdnObgzhA1ORMxZBRBKe TJD5BvJiVbTYLm0hz9mb2LFZ9058xvhpL8SVQMFU9YzRzkLZqpY5B8zaYg8te9y+ 5o1yVf2dlwkYUUO7mk+449ovnEuKMUH6oXAw09nvU8FzrF2Y2+9KxvuVVRwYrS9t 8rA3GfcYQoaJ4NYoC8vY2FXjXB01p3SCuuLppcbov9HqSGVdJdzq8lR1qvOl6NJ8 AWr+Kd9Ci5X48JFKgSsiHfXp9qgUS/EmWbenu49rEoikYaKs5fPf6y9AoE2zoh/d OQPUTepoRlMKbbgCuZ27Tt6+90ira284de5guN1viGVUcVm/fqlAJxhzG8DYhZhW PP/r9mOVFgO7hM/G0UJWvKY4zRY/i7RfWv53U+xp4SiRKGpY69zGKXui1YuluiJ9 J42EQiccpnNVAgMBAAGjggJiMIICXjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKDl 2Us8jJpwHLcadR+pGc3L+DbYMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPc2VjdXJlZC5oZWVsLmRl MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB 8wSB8ADuAHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFoovuE tgAABAMARjBEAiBLOT4mALYt98NkmBDwbRX6mYi0ioDTuvVE1TLgMPvPewIgNvOF RjmhTW9EDdrL66b7vC4DuC65UDfXqHUJ6oPnLKQAdQBj8tvN6DvMLM8LcoQnV2sz pI1hd4+9daY4scdoVEvYjQAAAWii+4Q+AAAEAwBGMEQCIDLS4ey2WFHn3WzSPVH6 zN29wvMzg4g4/bcCdqBXJ80+AiA3VqF9cviFyjpZibBDXBGkTSZyIn4UbtWpPh9A o3I7GjANBgkqhkiG9w0BAQsFAAOCAQEAOk6kIPe3lOfhLIQPToVSbliGzh7DofZb x83aqZDgNxsZaq9D8pYqgr/fZlr+Tcj71/ZafMNsgJbk+WpaRiOyEh7yn/VF7KDa 6+t0mpvBmlti3V1mYE40/V7ZElCFYABRhqg3LECAkxO8LSn/G85dHQT9nogEU6RQ qhbHswsqH5qN3MmaOc1oKqZlbrXE1K1aBgdjIzCCh1xwIGXqqucycVX22aXqoDka KVjshbuhn3VTndzmdNyq9UxVvmZ1fOehe8hTGK40joySYACXkwZnFi2G7eaIC1Ti CNa6Y/b9r5PEReZBVqZ+wm/l93wUk03/qbtv3S76/ze/8/28lS4pQA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA24u8e9YzoRlwumwaTE+V Zw/a3mJfG37vmn3+piwzJw0/6vj2VoIEB0Cq7f/G1uNz5RCthfdnkoIPq9tppg8k Tt080bbi0UzVNXy1pE/zk6jnRHWWI1BDM+Mdd6DvLVDO6r6dyWTOEbr5npATT04w xgIT2o85NIr3DaOlA9U/Ss/cId7KrXthv9JamqD1HUdcn7b3O2FTywYBkyX3p4Ew xUbQ3W5RONOv5g6KZTFHk8vPFcEjOwvfIoUamQ2uAa0CXAgDNUHX+9Zt2c5uDOED U5EzFkFEEp5MkPkG8mJVtNgubSHP2ZvYsVn3TnzG+GkvxJVAwVT1jNHOQtmqljkH zNpiDy173L7mjXJV/Z2XCRhRQ7uaT7jj2i+cS4oxQfqhcDDT2e9TwXOsXZjb70rG +5VVHBitL23ysDcZ9xhChong1igLy9jYVeNcHTWndIK64umlxui/0epIZV0l3Ory VHWq86Xo0nwBav4p30KLlfjwkUqBKyId9en2qBRL8SZZt6e7j2sSiKRhoqzl89/r L0CgTbOiH905A9RN6mhGUwptuAK5nbtO3r73SKtrbzh17mC43W+IZVRxWb9+qUAn GHMbwNiFmFY8/+v2Y5UWA7uEz8bRQla8pjjNFj+LtF9a/ndT7GnhKJEoaljr3MYp e6LVi6W6In0njYRCJxymc1UCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 309037467100286253749637318174064160472905 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-31 07:16:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-01 07:16:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'secured.heel.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 895668903329831391176521446487782752440930255843082704000192177617229709343836505418360239141856779045657919702124260618356483513661818655277533666787268500545909287290649701165261789522994196783220175695317741484474958813091416897437230719793609136760303245256704432731277186728228728488764331572214199127931481658501412864414403885558723156036419282936347086188587484182588669648094106472941747106941853734880141276808635181625995513238348643795320025119505927145697282217037231014351622474186451692635937950702262965965261226979045735667406812876939859758748970778829466669929251233878816738539679625013044824466306002644621741489535795911726198124159682686351878653951393118856554196442818212070773389372851476469787555516460266771546356889088333522196688482126215899493938422526632705088784804783513039960827869136678230529379220950281395289767133630812631888654620238799687250944976473480275641640336899082113379154928963537148611159181577067705843274066230645789976218923995150207519835215099732872249655199281827884819918404205972058356504396663144750885153669530057794654283471662261586530823876288511012431582839654940727883419431541297053731251039635695667399250399088718072793894771282451446568456843407804611274180293461 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a0e5d94b3c8c9a701cb71a751fa919cdcbf836d8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secured.heel.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000168a2fb84b6000004030046304402204b393e2600b62df7c3649810f06d15fa9988b48a80d3baf544d532e030fbcf7b022036f3854639a14d6f440ddacbeba6fbbc2e03b82eb95037d7a87509ea83e72ca400750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000168a2fb843e0000040300463044022032d2e1ecb65851e7dd6cd23d51faccddbdc2f333838838fdb70276a05727cd3e02203756a17d72f885ca3a5989b0435c11a44d2672227e146ed5a93e1f40a3723b1a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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