staging.okra.ng
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d4:8a:0a:8b:8d:6f:cd:1c:d3:5b:36:fb:6d:47:ab:7c:6c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=staging.okra.ng
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d4:8a:0a:8b:8d:6f:cd:1c:d3:5b:36:fb:6d:47:ab:7c:6cSerial Number (int): 333660207799367304556945874030437465816172
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 05:2b:59:5a:c7:40:29:3b:77:bd:ec:84:9b:05:e3:cf:af:dd:b9:f1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 5d:53:80:35:e9:46:82:0a:ec:f8:27:36:8b:b8:fc:d2:22:b7:cf:b3
Fingerprint (sha256): 80:5d:47:1c:b6:b0:6a:87:ce:be:2a:94:8d:62:14:ae:5e:06:a1:c7:48:5a:aa:27:25:f3:ea:63:b4:a4:f2:23
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate staging.okra.ng
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for staging.okra.ng
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
staging.okra.ng
Other certificates including the domain name okra.ng
(limited to 100 certificates)
okra.ng
capture.okra.ng
okr.to
dashboard.okra.ng
support.okra.ng
staging.okra.ng
dashboard.okra.ng
demo-dev.okra.ng
staging-dashboard.okra.ng
docs.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
okra.ng
dev-dashboard.okra.ng
dev.okra.ng
cdn.okra.ng
demo-dev.okra.ng
okra.ng
okr.to
dev-api.okra.ng
demo.okra.ng
widget.okra.ng
okra.ng
cdn.okra.ng
okra.ng
dev-dashboard.okra.ng
staging-api.okra.ng
okra.ng
okra.ng
get.okra.ng
staging-api.okra.ng
bourne-status.wifinity.net
okra.ng
get.okra.ng
bourne-status.wifinity.net
app-test.okra.ng
staging.okra.ng
support.okra.ng
okra.ng
dev-status.okra.ng
demo.okra.ng
dev-api.okra.ng
bourne-status.wifinity.net
staging.okra.ng
dev.okra.ng
dev-dashboard.okra.ng
staging.okra.ng
bourne-status.wifinity.net
widget.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
dev-api.okra.ng
support.okra.ng
dev-api.okra.ng
dashboard.okra.ng
bourne-status.wifinity.net
staging-dashboard.okra.ng
dev-cdn.okra.ng
staging-api.okra.ng
dev.okra.ng
dashboard.okra.ng
docs.okra.ng
widget.okra.ng
demo-dev.okra.ng
dev-dashboard.okra.ng
okra.ng
dev.okra.ng
support.opinionbuyers.com
staging-api.okra.ng
dash.okra.ng
demo-dev.okra.ng
dev.okra.ng
okra.ng
debug.okra.ng
staging-dashboard.okra.ng
dev-api.okra.ng
okra.ng
docs.okra.ng
bourne-status.wifinity.net
demo.okra.ng
okra.ng
bourne-status.wifinity.net
demo.okra.ng
dash.okra.ng
demo-dev.okra.ng
okra.ng
bourne-status.wifinity.net
capture.okra.ng
okr.to
dashboard.okra.ng
support.okra.ng
staging.okra.ng
dashboard.okra.ng
demo-dev.okra.ng
staging-dashboard.okra.ng
docs.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
okra.ng
dev-dashboard.okra.ng
dev.okra.ng
cdn.okra.ng
demo-dev.okra.ng
okra.ng
okr.to
dev-api.okra.ng
demo.okra.ng
widget.okra.ng
okra.ng
cdn.okra.ng
okra.ng
dev-dashboard.okra.ng
staging-api.okra.ng
okra.ng
okra.ng
get.okra.ng
staging-api.okra.ng
bourne-status.wifinity.net
okra.ng
get.okra.ng
bourne-status.wifinity.net
app-test.okra.ng
staging.okra.ng
support.okra.ng
okra.ng
dev-status.okra.ng
demo.okra.ng
dev-api.okra.ng
bourne-status.wifinity.net
staging.okra.ng
dev.okra.ng
dev-dashboard.okra.ng
staging.okra.ng
bourne-status.wifinity.net
widget.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
dev-api.okra.ng
support.okra.ng
dev-api.okra.ng
dashboard.okra.ng
bourne-status.wifinity.net
staging-dashboard.okra.ng
dev-cdn.okra.ng
staging-api.okra.ng
dev.okra.ng
dashboard.okra.ng
docs.okra.ng
widget.okra.ng
demo-dev.okra.ng
dev-dashboard.okra.ng
okra.ng
dev.okra.ng
support.opinionbuyers.com
staging-api.okra.ng
dash.okra.ng
demo-dev.okra.ng
dev.okra.ng
okra.ng
debug.okra.ng
staging-dashboard.okra.ng
dev-api.okra.ng
okra.ng
docs.okra.ng
bourne-status.wifinity.net
demo.okra.ng
okra.ng
bourne-status.wifinity.net
demo.okra.ng
dash.okra.ng
demo-dev.okra.ng
okra.ng
bourne-status.wifinity.net
Certificate
The complete raw certificate details for staging.okra.ng in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgISA9SKCouNb80c01s2+21Hq3xsMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMDcwNTE0NTRaFw0y MDA2MDUwNTE0NTRaMBoxGDAWBgNVBAMTD3N0YWdpbmcub2tyYS5uZzCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALaWGlR4yXYn9i4+O38ieDav9v4cMduI Z9L/eVj1xbBkhqQqK7gXiw6hKmPe+zMGsHIyTEOJg8IdTrOer4STfVbcGyVtgxjB R8fqWfWglbAfrEiDLD5MvmjqAdrphLKlkJZ+kDqHvXSUW/MstN3TgEsn0TimUN00 Jv9W7NKpFYE1l51Jf9CaDa7SMhkJnSx6zWGYiUngeJVG115MTpmA53OjGUJUKKoW oAWa6Fl6pfT3YmTmy4CBLaPCq1tvxE7BZyW4PDjtVzMWvQ/qNY/cAzqnOV7+nAVQ tTjyOq4sUdj8OgbsNZX1pNy/rySZtz0PTeKopGV6AcuM4jUoiXWFqosCAwEAAaOC AmQwggJgMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUBStZWsdAKTt3veyEmwXjz6/d ufEwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEE YzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQu b3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQu b3JnLzAaBgNVHREEEzARgg9zdGFnaW5nLm9rcmEubmcwTAYDVR0gBEUwQzAIBgZn gQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5s ZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBep3P531bA 57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAXCzod2mAAAEAwBHMEUCIQCVaxBS lAfbktJsp0YO4aGgkVS8+TccnW9RQg9hQ53G7gIgPZVgDjSyOP+yTR4fPcue2hy0 fJvk0t3q0xir03HhtGYAdgCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQ XgAAAXCzod2XAAAEAwBHMEUCIDVRfnyiAxPvY7ORIzTTeptvqm+XCddw8ORYmFd2 wfNNAiEAnueVqmZ/HAa9LypA8EtfmtIuMZdFmape3LGCX1eAHL0wDQYJKoZIhvcN AQELBQADggEBACf7BNSPlXBmD9HOuEjx3BdTl76M6u4I7ns1vEkBLSAPuvZKzGsd GBZ/aZ8te/5rARFzXipzxVLdbYrYKZKCsz075RPAqEJzmIQkVNScX43WRFjWTrBo oxJxl2a3Vao4owaYD9To4MVE+/JdjPu3l4ZXPtdT3Kqlzk/z5eCzuWREqrPGx4jL 9T86VHVAy193RmyXWmJhwXEU00FDHxLWNIE1pj8g3X7zqT0YNQn+YZChHSiSGZA8 12XrChyx6oPFv7yelIGTdHv6mY7f40jdzbkzuQ7v1+dE/xRlKik1mBr3VjxQOkdU mGO1pF4323OI82ugJf9f1kSoJi32404tF+4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpYaVHjJdif2Lj47fyJ4 Nq/2/hwx24hn0v95WPXFsGSGpCoruBeLDqEqY977MwawcjJMQ4mDwh1Os56vhJN9 VtwbJW2DGMFHx+pZ9aCVsB+sSIMsPky+aOoB2umEsqWQln6QOoe9dJRb8yy03dOA SyfROKZQ3TQm/1bs0qkVgTWXnUl/0JoNrtIyGQmdLHrNYZiJSeB4lUbXXkxOmYDn c6MZQlQoqhagBZroWXql9PdiZObLgIEto8KrW2/ETsFnJbg8OO1XMxa9D+o1j9wD Oqc5Xv6cBVC1OPI6rixR2Pw6Buw1lfWk3L+vJJm3PQ9N4qikZXoBy4ziNSiJdYWq iwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 333660207799367304556945874030437465816172 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-07 05:14:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-05 05:14:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging.okra.ng' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23049389978572954604002272941804243486652913689500798550442645560951826569871738249590551598257089181384608734394235700418721261961158026404936439807338357851528303759157497277298830824764365323533991306564321048168375080435763211190708505757397442279306205141358944446685605895665123172032381367473552107222914769921102495235789675484957210134252583239639415475162533378260551351035462202930641279691180503622711761699229983266523812836795815062075700080319055135705196704128596017843485018485552498562930289224146575134391291966441334499812673080207725152487998982328514826101445929103329702304732915640431668472459 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 052b595ac740293b77bdec849b05e3cfafddb9f1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.okra.ng' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000170b3a1dda60000040300473045022100956b10529407db92d26ca7460ee1a1a09154bcf9371c9d6f51420f61439dc6ee02203d95600e34b238ffb24d1e1f3dcb9eda1cb47c9be4d2ddead318abd371e1b466007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170b3a1dd970000040300473045022035517e7ca20313ef63b3912334d37a9b6faa6f9709d770f0e458985776c1f34d0221009ee795aa667f1c06bd2f2a40f04b5f9ad22e31974599aa5edcb1825f57801cbd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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