transformer.choice.com.au
Issued by R3
About this certificate
This digital certificate with serial number 03:f2:00:c8:63:5f:99:3b:84:7f:7d:1d:4a:c2:60:d5:c9:4c was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=transformer.choice.com.au
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f2:00:c8:63:5f:99:3b:84:7f:7d:1d:4a:c2:60:d5:c9:4cSerial Number (int): 343686231065052204422734694386534544951628
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 01:fd:e9:b7:97:79:66:fe:fe:55:4a:a0:3e:ed:7f:4a:66:ef:9e:94
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 08:28:d3:1c:35:11:f4:a5:8d:14:08:00:33:41:c8:d0:d8:81:9b:1a
Fingerprint (sha256): 87:6a:ae:e5:46:91:54:4c:60:69:b0:b0:43:1a:7a:9f:23:2f:15:8d:c5:03:12:27:dc:fe:e1:37:05:cd:8e:a5
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate transformer.choice.com.au
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for transformer.choice.com.au
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
transformer.choice.com.au
www.transformer.choice.com.au
www.transformer.choice.com.au
Other certificates including the domain name choice.com.au
(limited to 100 certificates)
www.choice.com.au
campaigns.choice.com.au
akamai-san196.exacttarget.com
transformer.choice.com.au
campaigns.choice.com.au
api.choice.com.au
campaigns.choice.com.au
beta.choice.com.au
connect.choice.com.au
app.choice.com.au
consumerchoice.org.au
campaigns.choice.com.au
spam.choice.com.au
janus.choice.com.au
ruby.choice.com.au
transformer.choice.com.au
action.choice.com.au
asset.shopolive.com
m.choice.com.au
media-uat.choice.com.au
auth.choice.com.au
akamai-san196.exacttarget.com
campaigns.choice.ventures
api.choice.com.au
snib9d0gl.wpc.edgecastcdn.net
www.choice.com.au
transformer.choice.com.au
profile.choice.com.au
snib9d0gl.wpc.edgecastcdn.net
janus.choice.com.au
click.email.choice.com.au
akamai-san196.exacttarget.com
action.choice.com.au
campaigns.choice.com.au
spam.choice.com.au
auth.choice.com.au
asset.shopolive.com
*.devtest.choice.com.au
asset.shopolive.com
desktop.choice.com.au
spam.choice.com.au
app.choice.com.au
api.choice.com.au
profile.choice.com.au
img.choice.com.au
auth.choice.com.au
transformer.choice.com.au
transformer.choice.com.au
new.choice.com.au
transformer.choice.com.au
spam.choice.com.au
app.choice.com.au
transformer.choice.com.au
profile.choice.com.au
akamai-san196.exacttarget.com
app.choice.com.au
consumerchoice.org.au
www.choice.com.au
consumerchoice.org.au
transformer.choice.com.au
www.choice.com.au
consumerchoice.org.au
www.choice.com.au
consumerchoice.org.au
app.choice.com.au
campaigns.choice.com.au
snib9d2gl.wpc.edgecastcdn.net
www.choice.com.au
ruby.choice.com.au
ruby.choice.com.au
janus.choice.com.au
campaigns.choice.com.au
campaigns.choice.com.au
asset.shopolive.com
campaigns.choice.com.au
transformer.choice.com.au
action.choice.com.au
ruby.choice.com.au
action.choice.com.au
snib9d0gl.wpc.edgecastcdn.net
snib9d0gl.wpc.edgecastcdn.net
app.choice.com.au
vpn.choice.com.au
transformer.choice.com.au
app.choice.com.au
transformer.choice.com.au
app.choice.com.au
media-uat.choice.com.au
www.spotashonky.com.au
app.choice.com.au
connect.choice.com.au
campaigns.choice.com.au
action.choice.com.au
snib9d4gl.wpc.edgecastcdn.net
vpn.choice.com.au
action.choice.com.au
transformer.choice.com.au
app.choice.com.au
campaigns.choice.com.au
app.choice.com.au
campaigns.choice.com.au
akamai-san196.exacttarget.com
transformer.choice.com.au
campaigns.choice.com.au
api.choice.com.au
campaigns.choice.com.au
beta.choice.com.au
connect.choice.com.au
app.choice.com.au
consumerchoice.org.au
campaigns.choice.com.au
spam.choice.com.au
janus.choice.com.au
ruby.choice.com.au
transformer.choice.com.au
action.choice.com.au
asset.shopolive.com
m.choice.com.au
media-uat.choice.com.au
auth.choice.com.au
akamai-san196.exacttarget.com
campaigns.choice.ventures
api.choice.com.au
snib9d0gl.wpc.edgecastcdn.net
www.choice.com.au
transformer.choice.com.au
profile.choice.com.au
snib9d0gl.wpc.edgecastcdn.net
janus.choice.com.au
click.email.choice.com.au
akamai-san196.exacttarget.com
action.choice.com.au
campaigns.choice.com.au
spam.choice.com.au
auth.choice.com.au
asset.shopolive.com
*.devtest.choice.com.au
asset.shopolive.com
desktop.choice.com.au
spam.choice.com.au
app.choice.com.au
api.choice.com.au
profile.choice.com.au
img.choice.com.au
auth.choice.com.au
transformer.choice.com.au
transformer.choice.com.au
new.choice.com.au
transformer.choice.com.au
spam.choice.com.au
app.choice.com.au
transformer.choice.com.au
profile.choice.com.au
akamai-san196.exacttarget.com
app.choice.com.au
consumerchoice.org.au
www.choice.com.au
consumerchoice.org.au
transformer.choice.com.au
www.choice.com.au
consumerchoice.org.au
www.choice.com.au
consumerchoice.org.au
app.choice.com.au
campaigns.choice.com.au
snib9d2gl.wpc.edgecastcdn.net
www.choice.com.au
ruby.choice.com.au
ruby.choice.com.au
janus.choice.com.au
campaigns.choice.com.au
campaigns.choice.com.au
asset.shopolive.com
campaigns.choice.com.au
transformer.choice.com.au
action.choice.com.au
ruby.choice.com.au
action.choice.com.au
snib9d0gl.wpc.edgecastcdn.net
snib9d0gl.wpc.edgecastcdn.net
app.choice.com.au
vpn.choice.com.au
transformer.choice.com.au
app.choice.com.au
transformer.choice.com.au
app.choice.com.au
media-uat.choice.com.au
www.spotashonky.com.au
app.choice.com.au
connect.choice.com.au
campaigns.choice.com.au
action.choice.com.au
snib9d4gl.wpc.edgecastcdn.net
vpn.choice.com.au
action.choice.com.au
transformer.choice.com.au
app.choice.com.au
campaigns.choice.com.au
app.choice.com.au
Certificate
The complete raw certificate details for transformer.choice.com.au in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgISA/IAyGNfmTuEf30dSsJg1clMMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMDIxMzA0NDVaFw0yNDAxMzExMzA0NDRaMCQxIjAgBgNVBAMT GXRyYW5zZm9ybWVyLmNob2ljZS5jb20uYXUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6QO7hLnbgCUFZfJRNZn/UlVTACjtZueoHC1xiEnOvvTia+HUk XyFuzRfQyiwkIlGKxMeTPgSTCJafhsWh6+INGNqVtQCBy3s1NSsy4molsQyIMXXZ 3/5lSBgB5fuOCDoG1mbJgVp7w2nO6cWhRHcLrnRuD1sM89+X7/z22T81nWOz1zlC rF9an0KrRZQM76Qffsj3ZEAo6QUZeofNzoYdlrYdq819fE5qaC0pdXF8OFoNIxEt rFKF4fZHtDJ+pZAHVtTnpM5Boq+75eqQhmN3g0vTnC25vUGtAn2Ci+r7u9MI1nop CJ3ONmFEQ4n1ZDh9yt5ASbb71YhHfNkgS19PAgMBAAGjggI8MIICODAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFAH96beXeWb+/lVKoD7tf0pm756UMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMEMGA1UdEQQ8MDqCGXRyYW5zZm9ybWVyLmNob2ljZS5jb20u YXWCHXd3dy50cmFuc2Zvcm1lci5jaG9pY2UuY29tLmF1MBMGA1UdIAQMMAowCAYG Z4EMAQIBMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADyAHcA7s3QZNXbGs7FXLedtM0T ojKHRny87N7DUUhZRnEftZsAAAGLkFnMYAAABAMASDBGAiEArWuZYFjwYbF94XyZ 53U+IutnIKom2AIJBCd0N754IfYCIQDU3K7XK2PlsQ1TyulBJvO66anSwz5kn9gE eF8tVERPqAB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi5BZ zlQAAAQDAEgwRgIhAMr4vB+coBjhLMFHGbRQC62YmEJkF4Xpiw+uMCDcWcaIAiEA vR8JB0OZuL4qjfBKuLek9S4uymhg70d0xja5lbnRwHowDQYJKoZIhvcNAQELBQAD ggEBAKU31EO+bWBYIMqsad+iaCAWUTSIuoDdeWOa9gNfwUh4lTg/3WGgJusPnQCh aveSTmTHv0HBDCUf5k47deYgSOgRjCk9F5O9out7UebPc4i7+TBXN2elMQM0bcLJ MTRO2SBQR6VmSGCucDszpSnTXcNFOX/x/46sSqqC/vHdwnHPmTOD9muHgkHHIqB9 6UJzOSTLucMO/XLTj8nNB/befOk0wx8UMkY9rAb3BRcJLp8ZQMxM1GRe32zjOeqj O9pJowh88Jye0NLNyyHTmIGZNnKyjEfePWx9oBDGRNIVzPZPHqLETn5MeEWf0N5x M/lxWWiFUm+xFxgmF6jgPPPcEvU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAukDu4S524AlBWXyUTWZ/ 1JVUwAo7WbnqBwtcYhJzr704mvh1JF8hbs0X0MosJCJRisTHkz4EkwiWn4bFoevi DRjalbUAgct7NTUrMuJqJbEMiDF12d/+ZUgYAeX7jgg6BtZmyYFae8NpzunFoUR3 C650bg9bDPPfl+/89tk/NZ1js9c5QqxfWp9Cq0WUDO+kH37I92RAKOkFGXqHzc6G HZa2HavNfXxOamgtKXVxfDhaDSMRLaxSheH2R7QyfqWQB1bU56TOQaKvu+XqkIZj d4NL05wtub1BrQJ9govq+7vTCNZ6KQidzjZhREOJ9WQ4fcreQEm2+9WIR3zZIEtf TwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 343686231065052204422734694386534544951628 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-02 13:04:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-31 13:04:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'transformer.choice.com.au' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23512344440274469690774861733514890171207047788780180959073806003227758037499968565490787103653650328771432018971523610474272852476794011790427188988464395484412879597014904536349174582065809160117714419171594747917505067884024802501021175621901686572086114769532236151117060877300092719852587092349045002072920341887720877990522061367202436525083417172765312559557613379118218379250140737486317465106365132862986311101730707645002838573302086382718063970098937397507989401050113042667097822497915159723275791724642589467465903790763289978879077447134811364365342416577187380676552994854149405008664388567992346828623 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 01fde9b7977966fefe554aa03eed7f4a66ef9e94 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'transformer.choice.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.transformer.choice.com.au' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b9059cc600000040300483046022100ad6b996058f061b17de17c99e7753e22eb6720aa26d8020904277437be7821f6022100d4dcaed72b63e5b10d53cae94126f3bae9a9d2c33e649fd804785f2d54444fa80077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b9059ce540000040300483046022100caf8bc1f9ca018e12cc14719b4500bad989842641785e98b0fae3020dc59c688022100bd1f09074399b8be2a8df04ab8b7a4f52e2eca6860ef4774c636b995b9d1c07a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00a537d443be6d605820caac69dfa2682016513488ba80dd79639af6035fc1487895383fdd61a026eb0f9d00a16af7924e64c7bf41c10c251fe64e3b75e62048e8118c293d1793bda2eb7b51e6cf7388bbf930573767a53103346dc2c931344ed9205047a5664860ae703b33a529d35dc345397ff1ff8eac4aaa82fef1ddc271cf993383f66b878241c722a07de942733924cbb9c30efd72d38fc9cd07f6de7ce934c31f1432463dac06f70517092e9f1940cc4cd4645edf6ce339eaa33bda49a3087cf09c9ed0d2cdcb21d39881993672b28c47de3d6c7da010c644d215ccf64f1ea2c44e7e4c78459fd0de7133f971596885526fb117182617a8e03cf3dc12f5