purchasepointe.spark-staging.dev
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:70:68:58:b8:46:f1:2a:fe:c6:04:d9:c2:15:2e:83:7c:9d was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=purchasepointe.spark-staging.dev
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:70:68:58:b8:46:f1:2a:fe:c6:04:d9:c2:15:2e:83:7c:9dSerial Number (int): 299587183261695006476674082271059180223645
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 86:cf:77:e5:e0:cd:dd:fb:6f:5e:bb:f9:dd:57:2a:f1:46:ae:45:2e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 94:f7:80:4c:04:db:75:c5:04:a7:90:09:45:a8:97:36:6f:8a:3e:0a
Fingerprint (sha256): 84:fc:9c:40:f7:77:0a:f2:86:1a:0f:af:71:9f:87:3f:cc:f8:84:86:93:8e:3a:4b:a4:67:b8:41:60:3f:fa:d2
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate purchasepointe.spark-staging.dev
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for purchasepointe.spark-staging.dev
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
purchasepointe.spark-staging.dev
Other certificates including the domain name spark-staging.dev
(limited to 100 certificates)
app.my-guitar-tabs.com
inventory.carehomeshopping.com
www.zonaextrema.com.br
bazen.spark-staging.dev
www.jaydonnell.com
reports.farmart.co
www.chowgrabber.com
extramoneytunnel.com
kerstnachtdiensthasselt.nl
bazen.spark-staging.dev
eganhub.spark-staging.dev
pixis.eganhub.spark-staging.dev
hub.spark-staging.dev
api.mcm.spark-staging.dev
www.okdsc.com
www.fhirnative.com
auth-dev.swiftchatting.com
purchasepointe-test.spark-staging.dev
rewards.digitaldesignsdentallab.com
laborworx.spark-staging.dev
app.staging.xapobank.com
link.thepaint.art
www.zonaextrema.com.br
espoonstarwash.fi
www.shooniyh.com
data.estabiom.pl
centraltile.spark-staging.dev
surajconfectionery.com
www.jobayerislam.com
purchasepointe.spark-staging.dev
lexion.earth
klicks.uvarma.com
purchasepointe.spark-staging.dev
purchasepointe.spark-staging.dev
api.eganhub.spark-staging.dev
app.my-guitar-tabs.com
field-course.forestdesigner.com
www.rajeshkhetan.com
extramoneytunnel.com
purchasepointe-pixis.spark-staging.dev
field-course.forestdesigner.com
precision-wall.spark-staging.dev
report.ftrustee.com.br
www.shooniyh.com
element78.spark-staging.dev
kiran-tokens.ashva.app
base.spark-staging.dev
agent.oipcsp.in
trendzy.fr
csmgate.spark-staging.dev
poweroutage.atco.com
goerli.marketplace.openblox.io
app.staging.xapobank.com
laborworx.spark-staging.dev
www.adaptivetalent.com.au
admin.trisekt.com
reports.farmart.co
www.courseconsole.org
www.h9l.dev
proservices.spark-staging.dev
fetzer3.spark-staging.dev
csmgate.spark-staging.dev
inventory.carehomeshopping.com
inventory.carehomeshopping.com
www.zonaextrema.com.br
bazen.spark-staging.dev
www.jaydonnell.com
reports.farmart.co
www.chowgrabber.com
extramoneytunnel.com
kerstnachtdiensthasselt.nl
bazen.spark-staging.dev
eganhub.spark-staging.dev
pixis.eganhub.spark-staging.dev
hub.spark-staging.dev
api.mcm.spark-staging.dev
www.okdsc.com
www.fhirnative.com
auth-dev.swiftchatting.com
purchasepointe-test.spark-staging.dev
rewards.digitaldesignsdentallab.com
laborworx.spark-staging.dev
app.staging.xapobank.com
link.thepaint.art
www.zonaextrema.com.br
espoonstarwash.fi
www.shooniyh.com
data.estabiom.pl
centraltile.spark-staging.dev
surajconfectionery.com
www.jobayerislam.com
purchasepointe.spark-staging.dev
lexion.earth
klicks.uvarma.com
purchasepointe.spark-staging.dev
purchasepointe.spark-staging.dev
api.eganhub.spark-staging.dev
app.my-guitar-tabs.com
field-course.forestdesigner.com
www.rajeshkhetan.com
extramoneytunnel.com
purchasepointe-pixis.spark-staging.dev
field-course.forestdesigner.com
precision-wall.spark-staging.dev
report.ftrustee.com.br
www.shooniyh.com
element78.spark-staging.dev
kiran-tokens.ashva.app
base.spark-staging.dev
agent.oipcsp.in
trendzy.fr
csmgate.spark-staging.dev
poweroutage.atco.com
goerli.marketplace.openblox.io
app.staging.xapobank.com
laborworx.spark-staging.dev
www.adaptivetalent.com.au
admin.trisekt.com
reports.farmart.co
www.courseconsole.org
www.h9l.dev
proservices.spark-staging.dev
fetzer3.spark-staging.dev
csmgate.spark-staging.dev
inventory.carehomeshopping.com
Certificate
The complete raw certificate details for purchasepointe.spark-staging.dev in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgISA3BoWLhG8Sr+xgTZwhUug3ydMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMjYyMzM3MDVaFw0y MDAyMjQyMzM3MDVaMCsxKTAnBgNVBAMTIHB1cmNoYXNlcG9pbnRlLnNwYXJrLXN0 YWdpbmcuZGV2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqB0PTycq EfegAyzy3U6B9EumABMsHJXDEAMmihwvG2t6mkufy/tJVkDntL9XgqQhOfI0e7pI KMszYRuhGnUCFQlxpb8GezorcnqL2ezwE9sg2+8E4ulzTPng2Pak8E8hYUTiO6fK s4vGTvVVzJ45SkmWgPt38tTOWs3/7N6VKjpxZFexOzHILxy+hZBy3Y1dexzB22W8 G79oXS6tI5RMIZPRlY35rEUtDl6NOb6C+nIzuKVR2MDxD+mxMd7AWFKjq38upeG/ /DaH6EXwg5NK2bDnEEtWQW/sN7tuBz6zqzqqYOCql2JN8PxerUCoaUtyAV1a9pCL pxmNpdSE+7lhhQIDAQABo4ICdjCCAnIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSG z3fl4M3d+29eu/ndVyrxRq5FLjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMCsGA1UdEQQkMCKCIHB1cmNoYXNlcG9pbnRl LnNwYXJrLXN0YWdpbmcuZGV2MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQB gt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3Jn MIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA8JWkWfIA0YJAEC0vk4iOrUv+HUfj meHQNKawqKqOsnMAAAFuqkpJ0QAABAMARzBFAiBYPqJJAe1pCTDEsD4e1ebxAENk I2BEDZfHbGfyK4egmQIhALxXSERVub4GWTUmQ23zdh5gGvVIBFdNZzTp4FpGyc+o AHcAB7dcG+V9aP/xsMYdIxXHuuZXfFeUt2ruvGE6GmnTohwAAAFuqkpJ9wAABAMA SDBGAiEA7UeDKyvr1Ej0LaJfzIXj3ZTX53SrZkUYeYxTZ30uUCUCIQDI5iFkTzYi KHIJsRlOcRBN86TQWEFOjcgE1jv/U6E1SDANBgkqhkiG9w0BAQsFAAOCAQEAW9Ic WZH0TmaxEZDfbQjnvmo/NBKzY+T+kBf7tXL9YKWSUXvI8XNu2VLrENkWQlhMQ6Li HjBBWVJ5ZsrbPUh7qTDTKKoedCUKQB/FvAiRDO7B/VJ6qxyJC0dXsOXOqOGs3Bv6 KSenfm8GOOgpmyGcWsAZbxuXzWDISMTrKQzHfyQr67QDv97ecXSAuw7RKdstf9pe oj2A1ofezd98mAdAkOPgt1uoitt+ANTmnZeRNkiAYIQ/pLiWoTWxj4YVxFKTMhOO EnmF7Q1Z36T6+flRqKEUfnZP5EkgYysi+ZTqJec7/JbubnHcds4nRkUnEVwdExDn 1L77Qxh/el/wygNing== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqB0PTycqEfegAyzy3U6B 9EumABMsHJXDEAMmihwvG2t6mkufy/tJVkDntL9XgqQhOfI0e7pIKMszYRuhGnUC FQlxpb8GezorcnqL2ezwE9sg2+8E4ulzTPng2Pak8E8hYUTiO6fKs4vGTvVVzJ45 SkmWgPt38tTOWs3/7N6VKjpxZFexOzHILxy+hZBy3Y1dexzB22W8G79oXS6tI5RM IZPRlY35rEUtDl6NOb6C+nIzuKVR2MDxD+mxMd7AWFKjq38upeG//DaH6EXwg5NK 2bDnEEtWQW/sN7tuBz6zqzqqYOCql2JN8PxerUCoaUtyAV1a9pCLpxmNpdSE+7lh hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 299587183261695006476674082271059180223645 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-26 23:37:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-24 23:37:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'purchasepointe.spark-staging.dev' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21222365156515171671521842286436667608199176383412413268581231826898852286513136010301143240401024597251357279468573081978256748298104510797960223556895995263853636649752500420492206306483695810932981953412864125312984345648837084782068058932507452008427102674305991687514264851218396825738291813408066859588255051983717292613276774368587881633201345144590007718897706494400455288483689783482460576626322366390931395715948117827576054505407543264481576589222314765814193440501718093507868114861156772852594412966697217173819138603769660864897906533712923273010511958254456649539374082698243145198527283769066049331589 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 86cf77e5e0cdddfb6f5ebbf9dd572af146ae452e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'purchasepointe.spark-staging.dev' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016eaa4a49d100000403004730450220583ea24901ed690930c4b03e1ed5e6f10043642360440d97c76c67f22b87a099022100bc57484455b9be06593526436df3761e601af54804574d6734e9e05a46c9cfa800770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016eaa4a49f70000040300483046022100ed47832b2bebd448f42da25fcc85e3dd94d7e774ab664518798c53677d2e5025022100c8e621644f3622287209b1194e71104df3a4d058414e8dc804d63bff53a13548 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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