thingscon.nl
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e9:78:eb:c6:d5:86:bf:3e:de:fb:ac:07:7f:d9:9f:72:7c was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=thingscon.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e9:78:eb:c6:d5:86:bf:3e:de:fb:ac:07:7f:d9:9f:72:7cSerial Number (int): 340783380869949749847695832035759824532092
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 00:8f:0e:5c:8d:91:fc:9a:3f:be:c6:ba:b0:d4:55:40:be:da:36:15
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f8:3a:88:ed:3d:30:8a:ea:bc:9c:63:8b:c7:e4:54:db:bf:0e:3c:01
Fingerprint (sha256): 89:af:14:42:da:fc:37:3d:68:34:74:b1:3a:08:ac:e9:e5:e6:37:cc:79:fa:0f:15:76:48:99:f7:1b:96:02:7b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate thingscon.nl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for thingscon.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
thingscon.nl
www.thingscon.nl
www.thingscon.nl
Other certificates including the domain name thingscon.nl
(limited to 100 certificates)
thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
Certificate
The complete raw certificate details for thingscon.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISA+l468bVhr8+3vusB3/Zn3J8MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODExMjMyMjEzNTBaFw0x OTAyMjEyMjEzNTBaMBcxFTATBgNVBAMTDHRoaW5nc2Nvbi5ubDCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALw3OCePoYM1+9M6J70pJLpF7TH7r9IIWzns 8/HoL5h52tG2S3zJeNbcXrYHa966zc6F+JxBUfVST+VU2Pxp0ZBmsFdzmbykYkuO /nhHFkXbs6MBy37XGhP84PlXzZ1TD6yGtm/afs98ICHMWBPN9lHMxg3hoFqkU9tA s1XXcoGJ9STP7VWE96wpvY4hSDD1BRCK7MXJiwKbwWzstXIoeWEhdt1QZD50PcUR 9AHzlQwcu/c9jATsrcr1Ou2uouoauW4MsUJD4ab5xw3RgofoSpVP8OwH7cM/NFbo vqcJfOS/r3psCcw7tbu9tx+Iy68Oi06M5dhnIonmviKRRJekfcfsaIrU1TfZFwBI yM7Uv8NqRmyRQAfUPS+9srYGuxUU2mTeUSdnRWj+rkNEsuUDH8az4EOL4RiL75X/ MnLRSZYqLv/CKsHDChpFpvqdShRY+OkgOSLttKOfuhgFjoSQM2kbtScyfj7VF58Y 69iZY/xVR94KJ4JcRmj2fWekZ3OxwfTOdG5vJmpNPwr7V4FbdhLepE1emyBscb3h 8PfdXSMvUJYxaLyji2MNi6DYMdDffGfDTVMdmThQ+WLA4Deq5WAJmCDQdwn09AOt 5gbOWB1HasdrJ8ZEqre+7ngQpcw4XTtlsX1DMdy4Q/5DRsTcoR7NCWOhLB46VwAp aG+pAlURAgMBAAGjggJyMIICbjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFACPDlyN kfyaP77GurDUVUC+2jYVMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wKQYDVR0RBCIwIIIMdGhpbmdzY29uLm5sghB3d3cu dGhpbmdzY29uLm5sMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYK KwYBBAHWeQIEAgSB9ASB8QDvAHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV5 5hB7zFYAAAFnQtnQOQAABAMARjBEAiA5XW39XKpQHIZP7xcIGrPprpy6aLwyYpaz aAALGi3YOwIgTO1omwupNKBjLOpyp12bUIRs0yzd6WiKThC1b2cdZocAdgApPFGW VMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWdC2dBKAAAEAwBHMEUCIDus rAbjdFzTtKk5KOgSJ9VYW7LNRgr2LFhx0FjgMS/WAiEAuZGAHPFPeLxuHkM50vyd 4+hwgaSyBZEB5phl+nBSbWwwDQYJKoZIhvcNAQELBQADggEBAAZqotttL1WF+aKy eKymr1ZQYxyPS4W2qHD4wiqtPbWnfKWSaxE1U/ZkfSW28Ve6Oxu9e5azhmoUMNdg BDsqPGo/aEAkPARRWSYZ4xyUB51GNtf5WQA7xsTcWfinSdS6QqT/l7EO53fWzA7A 474+RxYwe5G3T9t5y6WrX3s8wGGRvkdTLeoXXHuD32UFrHZhAW4J1ymnfyax2Eq7 onAGnvixcGOT8TRRZ9C1BPvXwONUh+rpnxgCkf04DgtRsOuP5ukulCp4iMvdFpe+ 1hnZ7v1zTvHLoyT38fXGUko1tw9/3Cf6UXHAT/H5XkZPq+UIWA2kJfwAmnkRuMs5 FaVdB9I= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvDc4J4+hgzX70zonvSkk ukXtMfuv0ghbOezz8egvmHna0bZLfMl41txetgdr3rrNzoX4nEFR9VJP5VTY/GnR kGawV3OZvKRiS47+eEcWRduzowHLftcaE/zg+VfNnVMPrIa2b9p+z3wgIcxYE832 UczGDeGgWqRT20CzVddygYn1JM/tVYT3rCm9jiFIMPUFEIrsxcmLApvBbOy1cih5 YSF23VBkPnQ9xRH0AfOVDBy79z2MBOytyvU67a6i6hq5bgyxQkPhpvnHDdGCh+hK lU/w7Aftwz80Vui+pwl85L+vemwJzDu1u723H4jLrw6LTozl2Gciiea+IpFEl6R9 x+xoitTVN9kXAEjIztS/w2pGbJFAB9Q9L72ytga7FRTaZN5RJ2dFaP6uQ0Sy5QMf xrPgQ4vhGIvvlf8yctFJliou/8IqwcMKGkWm+p1KFFj46SA5Iu20o5+6GAWOhJAz aRu1JzJ+PtUXnxjr2Jlj/FVH3gonglxGaPZ9Z6Rnc7HB9M50bm8mak0/CvtXgVt2 Et6kTV6bIGxxveHw991dIy9QljFovKOLYw2LoNgx0N98Z8NNUx2ZOFD5YsDgN6rl YAmYINB3CfT0A63mBs5YHUdqx2snxkSqt77ueBClzDhdO2WxfUMx3LhD/kNGxNyh Hs0JY6EsHjpXAClob6kCVRECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 340783380869949749847695832035759824532092 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-23 22:13:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-21 22:13:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thingscon.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 767853066461900297626856042735743698777637425384551205758745834513703505089144043803552304463099939787817857105321747307767820464235664548541841605009504431082951987245242092965886966785912298660673669003893725806986062872487770027658965985249235900793947105933190321033836697581942818283257662582671149975345798181350622554245630550570116880548981404290600783049916344424154113765126698476152683454061864247880549954471574561225458788062527768864796254122797819519379968202507668590446799518289181841719115077734407405746000294709211353020822082460664948270010997217819852881989181328371574482112167525459304170200749849852522248632014446763232241281965232199783028707982234879680620738771852808032144085535256757817181840217808027800300480155699462557519887618440863532963497392729898331707207348076018145934219895555292903494189118203427366832866182132637772606757122629570528331442520676627951963422640893650148934242433190261028996988466905130240804103281803971760784019766578828990239735674781272143967973249473038308532483403867205615666484586395290720509005217773919837295132245257085419670460387595314980285321424124622048596378914446318128605542813013995175790948061802767943946933525470165223525121605211775674825723499793 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 008f0e5c8d91fc9a3fbec6bab0d45540beda3615 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thingscon.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thingscon.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016742d9d03900000403004630440220395d6dfd5caa501c864fef17081ab3e9ae9cba68bc326296b368000b1a2dd83b02204ced689b0ba934a0632cea72a75d9b50846cd32cdde9688a4e10b56f671d6687007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016742d9d04a000004030047304502203bacac06e3745cd3b4a93928e81227d5585bb2cd460af62c5871d058e0312fd6022100b991801cf14f78bc6e1e4339d2fc9de3e87081a4b2059101e69865fa70526d6c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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