goldbooks.co.il
Issued by R3
About this certificate
This digital certificate with serial number 03:ce:fa:d3:f4:b6:8b:f4:7c:3b:8b:28:1e:fb:17:22:37:40 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=goldbooks.co.il
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ce:fa:d3:f4:b6:8b:f4:7c:3b:8b:28:1e:fb:17:22:37:40Serial Number (int): 331768432917948226079723114232382459361088
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ae:cb:9c:fc:e0:41:b8:a9:bd:09:fa:6b:15:0c:e2:23:0f:37:5a:24
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): bb:48:80:3f:90:8f:f3:c8:42:b8:0d:37:0b:2b:3a:93:84:86:a1:a2
Fingerprint (sha256): 8a:40:db:4c:5d:7c:bb:a4:7c:f1:84:f7:38:e0:a7:31:47:24:04:02:0f:a4:bd:f0:79:98:13:1f:a9:fc:57:c1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate goldbooks.co.il
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for goldbooks.co.il
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
goldbooks.co.il
www.goldbooks.co.il
www.goldbooks.co.il
Other certificates including the domain name goldbooks.co.il
(limited to 100 certificates)
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
test.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
chanut.goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
chanut.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
chanut.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
test.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
chanut.goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
chanut.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
chanut.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
Certificate
The complete raw certificate details for goldbooks.co.il in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGODCCBSCgAwIBAgISA8760/S2i/R8O4soHvsXIjdAMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAzMDIyMTE2NTRaFw0yMzA1MzEyMTE2NTNaMBoxGDAWBgNVBAMT D2dvbGRib29rcy5jby5pbDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB ALQR7xrFDl7If+mfqYEGHO85am/x/+wQH82uowXhNTEcYVeLNO92SGPV1nNHhPQ6 yJUldPPufNlDPn2/TvATZ/NeNWR2igo8wrIVwxWYj94D19SA/5QZM0FjsQNJnDtl roVQWN7ne1r+47AeiQYCrbh+DIqA2IEJpftVtpvPhg0Zvez2ji55ThLDH7J1Gm8c Yd07APDjl79X0T+GQPRduvRoc/M7uNn9/1Zr28k6mqLS/813jkBZFUXnjySXfRW6 LdD/Fp+DyKPR4IzffH2J7W0zOl2NiSFoHmbA+wvIbxlaCpFppK1jF02aOzFUNF63 4Z911/L25mY8in7bEufSqqi3D231PUBi0MHjSvG/WcxBzNh2A+EY6ifvDW3inuW5 E9HZOTJ3ibsmK5n3RelkJAsEitgrRO81+tchCl/UbxiMnRyqqjYFakWRJcJYpC37 vKniWaTEofWbfbPjPuF6+nxBhJe0YVRTN6Nv3zFdXeJrv17zzt4E8ILvQ08iC4Hr a0X9ch+JsQqD+Y76M4vMcOmD0tj51+vPnDNxPCA09YPioURfxHmTE1XPqXeEbkmi E1zcCdEvNjZdoEsi69YhhbrKs8YDwgcxy0USs5N3sFsN4ooImDPrlkydJuhtZWJF CC4+geH0c0Qkj6sFUMe1iiMd0FCp8lG4vh40Nv8wRYX1AgMBAAGjggJeMIICWjAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFK7LnPzgQbipvQn6axUM4iMPN1okMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMC8GA1UdEQQoMCaCD2dvbGRib29rcy5jby5pbIIT d3d3LmdvbGRib29rcy5jby5pbDBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEE AYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9y ZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AHoyjFTYty22IOo44FIe6YQWcDIT hU070ivBOlejUutSAAABhqRmUjsAAAQDAEYwRAIgWGosgGpA5aP9EUwcawuYx+So lv9mRDdi1MoQ7c7WRWACIBi9bfuUmSY57U/1ng+H4j6Hb2L4G4Rdqf5d+NnMwGBk AHYArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWGNOvcgooAAAGGpGZSbAAABAMA RzBFAiBkkgnxdo7sQk68D3D/slIT1IvxJGInSdvL42qskbwHOwIhAIdhxUzHRkqy xHtvHmixR6F09lnneZOOMXbXqZtM1eP9MA0GCSqGSIb3DQEBCwUAA4IBAQCD21LR 6ePDC3Zzu+2SEjlURRQML7QQCiFuCEQwZ/XYFgDy8GDf5uLfWbyDpjNU+OAzYVCk n/3spXzDgy2piWnPNHuJA6YqI98wJvLlua+CIEq2X0/3IqtK9wO40ZVhJkCwY6P4 XAJlchgpCdlZ5lL75OMxZZRd2lE201uI0NM7gmuNAgHZq2uoYVv1IyuhbLU+77n2 VOoFUX+xZDJREp0QFw6k11qAQmyX0yYsJSFRnykEAsPC1rf6HONrQ7fq27+Z2Dqx oFYqf7BsHer5EV+ywsfOvLPIGN5QJxfpldrN/Mcjh3+N4gLwN2ymXpnLWEgVBWbJ qK6+7yBnsWKWQviA -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtBHvGsUOXsh/6Z+pgQYc 7zlqb/H/7BAfza6jBeE1MRxhV4s073ZIY9XWc0eE9DrIlSV08+582UM+fb9O8BNn 8141ZHaKCjzCshXDFZiP3gPX1ID/lBkzQWOxA0mcO2WuhVBY3ud7Wv7jsB6JBgKt uH4MioDYgQml+1W2m8+GDRm97PaOLnlOEsMfsnUabxxh3TsA8OOXv1fRP4ZA9F26 9Ghz8zu42f3/VmvbyTqaotL/zXeOQFkVReePJJd9Fbot0P8Wn4PIo9HgjN98fYnt bTM6XY2JIWgeZsD7C8hvGVoKkWmkrWMXTZo7MVQ0Xrfhn3XX8vbmZjyKftsS59Kq qLcPbfU9QGLQweNK8b9ZzEHM2HYD4RjqJ+8NbeKe5bkT0dk5MneJuyYrmfdF6WQk CwSK2CtE7zX61yEKX9RvGIydHKqqNgVqRZElwlikLfu8qeJZpMSh9Zt9s+M+4Xr6 fEGEl7RhVFM3o2/fMV1d4mu/XvPO3gTwgu9DTyILgetrRf1yH4mxCoP5jvozi8xw 6YPS2PnX68+cM3E8IDT1g+KhRF/EeZMTVc+pd4RuSaITXNwJ0S82Nl2gSyLr1iGF usqzxgPCBzHLRRKzk3ewWw3iigiYM+uWTJ0m6G1lYkUILj6B4fRzRCSPqwVQx7WK Ix3QUKnyUbi+HjQ2/zBFhfUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 331768432917948226079723114232382459361088 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-02 21:16:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-31 21:16:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'goldbooks.co.il' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 734621730469360768023861334931692969442181478486865108224996192517269097498750578226848377215646745690837388227294064943649626377239920699429663058121951383625839714055829204893630938945203339494788752211649343700987522355246439298071434170190752183765364192530473585537628470093449718401258277054507932727792897479234782816273020603190412901620567527216640330294386168224908994524085415025656729186102888621718009327561002056469602836494115416499032776857232896691467071262222029520341953398673844500221309279569719838984478244324910651452290351050774920023880823970709769449015261020052996267594804285073280167927977865067844482269338964090131993583281479492687959173310591610871462330595731096313555506243266932807067898742899057840013880840390979054073323992271059162796530708912063778852603732875678035854487221342782893329088044458775052631623103119782649898049533872959445719004788749568136173376021133542388960651087757202799444072288707986864844386264115521361268537690312921642398387487619750507701684528341336897512001012558488835710328931596435419458005030967769538715910806640977227850648751813050657776911124771961403885044261364007476248023586545242602171733916925897219109392367767496412860427535043490512512057968117 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aecb9cfce041b8a9bd09fa6b150ce2230f375a24 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'goldbooks.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.goldbooks.co.il' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000186a466523b00000403004630440220586a2c806a40e5a3fd114c1c6b0b98c7e4a896ff66443762d4ca10edced64560022018bd6dfb94992639ed4ff59e0f87e23e876f62f81b845da9fe5df8d9ccc06064007600adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a00000186a466526c00000403004730450220649209f1768eec424ebc0f70ffb25213d48bf124622749dbcbe36aac91bc073b0221008761c54cc7464ab2c47b6f1e68b147a174f659e779938e3176d7a99b4cd5e3fd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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