terasa.ca
Issued by R3
About this certificate
This digital certificate with serial number 03:ae:e9:2e:9d:c1:b4:dc:34:c0:e3:4f:91:ac:c7:ca:8b:ef was issued on by Let's Encrypt.
With 21 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=terasa.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:ae:e9:2e:9d:c1:b4:dc:34:c0:e3:4f:91:ac:c7:ca:8b:efSerial Number (int): 320855941807882727236091022136578277018607
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d7:0f:ed:7e:04:f3:85:96:59:72:68:73:e3:40:2e:06:1a:72:8b:13
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 5b:e8:93:50:46:85:b7:93:11:c2:65:35:b4:20:be:8e:ae:fd:fd:bc
Fingerprint (sha256): 88:47:12:d9:0a:cb:3a:44:ce:77:c6:07:f3:2b:f1:51:64:88:f4:4e:11:8b:90:12:eb:41:9f:d6:63:77:2a:40
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate terasa.ca
21
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for terasa.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aventurascafe.com
aventurascafe.gg.rootree.ca
gg.rootree.ca
mail.gg.rootree.ca
rootree.ca
sjonumyoga.com
sjonumyoga.com.gg.rootree.ca
terasa.ca
terasa.ca.gg.rootree.ca
torqwise.ca.gg.rootree.ca
wundeba.ca.gg.rootree.ca
www.aventurascafe.com
www.aventurascafe.gg.rootree.ca
www.gg.rootree.ca
www.rootree.ca
www.sjonumyoga.com
www.sjonumyoga.com.gg.rootree.ca
www.terasa.ca
www.terasa.ca.gg.rootree.ca
www.torqwise.ca.gg.rootree.ca
www.wundeba.ca.gg.rootree.ca
aventurascafe.gg.rootree.ca
gg.rootree.ca
mail.gg.rootree.ca
rootree.ca
sjonumyoga.com
sjonumyoga.com.gg.rootree.ca
terasa.ca
terasa.ca.gg.rootree.ca
torqwise.ca.gg.rootree.ca
wundeba.ca.gg.rootree.ca
www.aventurascafe.com
www.aventurascafe.gg.rootree.ca
www.gg.rootree.ca
www.rootree.ca
www.sjonumyoga.com
www.sjonumyoga.com.gg.rootree.ca
www.terasa.ca
www.terasa.ca.gg.rootree.ca
www.torqwise.ca.gg.rootree.ca
www.wundeba.ca.gg.rootree.ca
Other certificates including the domain name terasa.ca
(limited to 100 certificates)
Certificate
The complete raw certificate details for terasa.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGuzCCBaOgAwIBAgISA67pLp3BtNw0wONPkazHyovvMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDcxMjIwNTRaFw0yNDA2MDUxMjIwNTNaMBQxEjAQBgNVBAMT CXRlcmFzYS5jYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKauiaE2 KVToS6cJkHQe4YDvgaRdKehwwz5StjEyM0ag4c3qnYecELZ/5hJRzsZBpDnaUuH7 jIhbONQ3B58SZ7rfkxEMWnzJKYZ4fVfqOHr7YopSrewKzdxjn2xbSVLzPrB/XXEn yHhsSriViITTOH47p8iAliDyrm5bcdnuYQ2nQbzGm9DgYDdDVPwZQSorzSuIxwf2 EjjAinfBffZqo1LiGwQIU1o3mgyxi7rbWLDXyWaXRMBqkQnTSmYWVgXqEzUCagEY AFwXeYnsn/JqP6OhKHaAOmQSrys1XVs2eJSA3KixyfsPNDlCrnYIc4gacDixB+gn eZzegiUwIrtmW68CAwEAAaOCA+cwggPjMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU 1w/tfgTzhZZZcmhz40AuBhpyixMwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wggHt BgNVHREEggHkMIIB4IIRYXZlbnR1cmFzY2FmZS5jb22CG2F2ZW50dXJhc2NhZmUu Z2cucm9vdHJlZS5jYYINZ2cucm9vdHJlZS5jYYISbWFpbC5nZy5yb290cmVlLmNh ggpyb290cmVlLmNhgg5zam9udW15b2dhLmNvbYIcc2pvbnVteW9nYS5jb20uZ2cu cm9vdHJlZS5jYYIJdGVyYXNhLmNhghd0ZXJhc2EuY2EuZ2cucm9vdHJlZS5jYYIZ dG9ycXdpc2UuY2EuZ2cucm9vdHJlZS5jYYIYd3VuZGViYS5jYS5nZy5yb290cmVl LmNhghV3d3cuYXZlbnR1cmFzY2FmZS5jb22CH3d3dy5hdmVudHVyYXNjYWZlLmdn LnJvb3RyZWUuY2GCEXd3dy5nZy5yb290cmVlLmNhgg53d3cucm9vdHJlZS5jYYIS d3d3LnNqb251bXlvZ2EuY29tgiB3d3cuc2pvbnVteW9nYS5jb20uZ2cucm9vdHJl ZS5jYYINd3d3LnRlcmFzYS5jYYIbd3d3LnRlcmFzYS5jYS5nZy5yb290cmVlLmNh gh13d3cudG9ycXdpc2UuY2EuZ2cucm9vdHJlZS5jYYIcd3d3Lnd1bmRlYmEuY2Eu Z2cucm9vdHJlZS5jYTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkC BAIEgfYEgfMA8QB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAAB jhkS7OQAAAQDAEgwRgIhAM9SBH4Rqk4hr1L/BeyFQcjPqZSFtSTX12OHblxNrGe8 AiEAnB4/jrNGSmqQutUslqfSceXHWy/a+jZMGXvyXmw4Pf8AdgB2/4g/Crb7lVHC Ycz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAY4ZEu09AAAEAwBHMEUCIQDN/oe3h3iN fNQmTkz3Q7hrWHStXfkk3fgykIg4rflCdAIgQ5sYBgC48eUEyUgKpM57gGQkJi// nH6V7BNfXWlWSjkwDQYJKoZIhvcNAQELBQADggEBAA7MVyo78Tjewsgf4SSRDHrI XdxoqUKNNR6kc3rqZB3Ee9+tOBAlg8EVO0EDwICgtnKZ7dpCTjPMsUxa6cHYTGC9 MEULnjUNrbsd6tNjrMG3weY9Ri3FX2+win2Qya7XUCsM4xd4yMQPaR0Ex0Ug0Vse vSBm4QyD8fUjTnOwYDiihaupi9sMmB6n1unlZU5FN1DDDphq1IqTbVmcB0iOX1dJ vVohLx/jL9SZVnvd5RJ+h8CAgwdW6kbYNg8At5kqYPYlh6FGXDyUzfPXz/wllsJ3 lXd3aewn9HdNC7DroSbqqiLex/Z8AzDTQrGq5BxYaVg6SCCAgrb7cBWXVO/7Qws= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApq6JoTYpVOhLpwmQdB7h gO+BpF0p6HDDPlK2MTIzRqDhzeqdh5wQtn/mElHOxkGkOdpS4fuMiFs41DcHnxJn ut+TEQxafMkphnh9V+o4evtiilKt7ArN3GOfbFtJUvM+sH9dcSfIeGxKuJWIhNM4 fjunyICWIPKubltx2e5hDadBvMab0OBgN0NU/BlBKivNK4jHB/YSOMCKd8F99mqj UuIbBAhTWjeaDLGLuttYsNfJZpdEwGqRCdNKZhZWBeoTNQJqARgAXBd5ieyf8mo/ o6EodoA6ZBKvKzVdWzZ4lIDcqLHJ+w80OUKudghziBpwOLEH6Cd5nN6CJTAiu2Zb rwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 320855941807882727236091022136578277018607 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-07 12:20:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-05 12:20:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'terasa.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21041626330673342402782368403424585837991725509008109163841103841642721263108804630061874159355315160676162623464695188063367933702796128013055461924689206690941833727464716323448481726716061335236678427573656937763198952907520920874075835700592825827284368422346746067515393187005035496825372108237090087222372979107199845547153091738351337378350197528240211314279568263142877335110111727155567858842953574687207027093931179668677269609218909985209201497715111226924298796041016576174000745675588095382725368267878566915254148582536199539695818967236914006811407239603044651969631235536124206189244856600397475109807 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d70fed7e04f3859659726873e3402e061a728b13 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (484 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aventurascafe.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aventurascafe.gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sjonumyoga.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sjonumyoga.com.gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'terasa.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'terasa.ca.gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'torqwise.ca.gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wundeba.ca.gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aventurascafe.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aventurascafe.gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sjonumyoga.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sjonumyoga.com.gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.terasa.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.terasa.ca.gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.torqwise.ca.gg.rootree.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wundeba.ca.gg.rootree.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e1912ece40000040300483046022100cf52047e11aa4e21af52ff05ec8541c8cfa99485b524d7d763876e5c4dac67bc0221009c1e3f8eb3464a6a90bad52c96a7d271e5c75b2fdafa364c197bf25e6c383dff00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e1912ed3d0000040300473045022100cdfe87b787788d7cd4264e4cf743b86b5874ad5df924ddf832908838adf942740220439b180600b8f1e504c9480aa4ce7b806424262fff9c7e95ec135f5d69564a39 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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