theworldwaves.com
Issued by R3
About this certificate
This digital certificate with serial number 03:47:c9:65:77:1e:33:20:32:46:39:80:60:0a:27:4b:62:33 was issued on by Let's Encrypt.
With 21 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=theworldwaves.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:47:c9:65:77:1e:33:20:32:46:39:80:60:0a:27:4b:62:33Serial Number (int): 285764607511802261322333008924562741223987
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b0:5f:3c:ab:80:bc:0b:33:51:c9:93:dc:96:c5:0d:f7:0a:5c:74:3c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 74:61:bc:21:c8:2c:92:83:ea:42:f8:19:2e:7f:bf:a3:6a:ea:ff:85
Fingerprint (sha256): 8a:c6:17:6f:3c:6f:79:4c:a9:d1:00:bf:e3:77:f5:1f:26:54:27:36:24:f2:ac:95:de:6f:09:e0:33:48:94:2e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate theworldwaves.com
21
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for theworldwaves.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.theworldwaves.com
*.theworldwaves.net
*.wavescool.com
*.wavescool.org
*.wavingback.com
*.wavingback.net
*.wavingback.org
theworldwaves.com
theworldwaves.net
wavescool.com
wavescool.org
wavingback.com
wavingback.net
wavingback.org
www.mg.wavescool.com
www.theworldwavescom.wavescool.com
www.theworldwavesnet.wavescool.com
www.wavescoolorg.wavescool.com
www.wavingback.wavescool.com
www.wavingbackcom.wavescool.com
www.wavingbacknet.wavescool.com
*.theworldwaves.net
*.wavescool.com
*.wavescool.org
*.wavingback.com
*.wavingback.net
*.wavingback.org
theworldwaves.com
theworldwaves.net
wavescool.com
wavescool.org
wavingback.com
wavingback.net
wavingback.org
www.mg.wavescool.com
www.theworldwavescom.wavescool.com
www.theworldwavesnet.wavescool.com
www.wavescoolorg.wavescool.com
www.wavingback.wavescool.com
www.wavingbackcom.wavescool.com
www.wavingbacknet.wavescool.com
Other certificates including the domain name theworldwaves.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for theworldwaves.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGtTCCBZ2gAwIBAgISA0fJZXceMyAyRjmAYAonS2IzMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MTgxMTE3NDBaFw0yMzEyMTcxMTE3MzlaMBwxGjAYBgNVBAMT EXRoZXdvcmxkd2F2ZXMuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8IAr63a6entexPVpeqVkE3Y6O+SBtMSHa62Ixy8A5DEGp6SNWDCZEYAwhlHm YgAEBwN5LTUIe/b+TlGUWmU+We6ngMaxvcTDCBjN+ehCs3Cc3CC4o1YfrawyXceM pjBhDS3MZtfusg2RkTDVkepM52mEoijZ9RU5nTZpWUxBDhQOgRHp7B2oFHD/cCId jXm1QPUIGe9Rq8jLrzzcHtTUn2/dTJ9FY6R7j38lNvZwjNnU9b5a2eJIIzUPuhNe tbNSV0Hty3si+2K514eSejSCYxSy9tp3xagu8kwoO197wKXmdj2sTJR4YJS1jag+ YsfvDNlRAKIgxq/suCmkEN8cqQIDAQABo4ID2TCCA9UwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBSwXzyrgLwLM1HJk9yWxQ33Clx0PDAfBgNVHSMEGDAWgBQULrMXt1hW y65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6 Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iu b3JnLzCCAeEGA1UdEQSCAdgwggHUghMqLnRoZXdvcmxkd2F2ZXMuY29tghMqLnRo ZXdvcmxkd2F2ZXMubmV0gg8qLndhdmVzY29vbC5jb22CDyoud2F2ZXNjb29sLm9y Z4IQKi53YXZpbmdiYWNrLmNvbYIQKi53YXZpbmdiYWNrLm5ldIIQKi53YXZpbmdi YWNrLm9yZ4IRdGhld29ybGR3YXZlcy5jb22CEXRoZXdvcmxkd2F2ZXMubmV0gg13 YXZlc2Nvb2wuY29tgg13YXZlc2Nvb2wub3Jngg53YXZpbmdiYWNrLmNvbYIOd2F2 aW5nYmFjay5uZXSCDndhdmluZ2JhY2sub3JnghR3d3cubWcud2F2ZXNjb29sLmNv bYIid3d3LnRoZXdvcmxkd2F2ZXNjb20ud2F2ZXNjb29sLmNvbYIid3d3LnRoZXdv cmxkd2F2ZXNuZXQud2F2ZXNjb29sLmNvbYIed3d3LndhdmVzY29vbG9yZy53YXZl c2Nvb2wuY29tghx3d3cud2F2aW5nYmFjay53YXZlc2Nvb2wuY29tgh93d3cud2F2 aW5nYmFja2NvbS53YXZlc2Nvb2wuY29tgh93d3cud2F2aW5nYmFja25ldC53YXZl c2Nvb2wuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB 9ASB8QDvAHYAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGKqDmT HgAABAMARzBFAiEAzToXbwQ+kBmFUwErFNPmc08AZE4wbXYOcdZPthw9SPYCID5K 6qVd1WDluNdMM+dnfRK8QCRymEC93LUCPfFBS08iAHUAtz77JN+cTbp18jnFulj0 bF38Qs96nzXEnh0JgSXttJkAAAGKqDmTFgAABAMARjBEAiAaw814OoirwIafLOgZ J0xpvFs09UlbiLPagVSrJCekCwIgZJMR9VK8jhzG9ovgFIyNh/DAz/AxavXHk3dO 9IxisOwwDQYJKoZIhvcNAQELBQADggEBAKAZCgTirsCEw/UogWZQMC21FFCVHcHV OFOvNRaDR03GHX7sTwfUg2rbMWQDriz6qeSc3plzkLAYF8QAm1M2kbsUF4qhSz+Z PVIUyw2lHHwP0rP40PxmQB1X72xW9s7mk0NDvJd+y8CzEdFGaklQLZvJtl5I+pVO trHXQAEAEuY8/gl44BPKhVnpu649DhmsKOoP608IzlKaqievRzTz8p8pumIamt2e PcdftrTxi37g8y7MnsJVDpQ6fU/rj6tKitHGMxWPkt3J+mqvIy1ikB1dGOCLb+PY 2anuUFQVPbO9DAWUBOw2n0sT6hZQMNsv1xsX63FJkvPp1c0euYtK5LY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8IAr63a6entexPVpeqVk E3Y6O+SBtMSHa62Ixy8A5DEGp6SNWDCZEYAwhlHmYgAEBwN5LTUIe/b+TlGUWmU+ We6ngMaxvcTDCBjN+ehCs3Cc3CC4o1YfrawyXceMpjBhDS3MZtfusg2RkTDVkepM 52mEoijZ9RU5nTZpWUxBDhQOgRHp7B2oFHD/cCIdjXm1QPUIGe9Rq8jLrzzcHtTU n2/dTJ9FY6R7j38lNvZwjNnU9b5a2eJIIzUPuhNetbNSV0Hty3si+2K514eSejSC YxSy9tp3xagu8kwoO197wKXmdj2sTJR4YJS1jag+YsfvDNlRAKIgxq/suCmkEN8c qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 285764607511802261322333008924562741223987 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-18 11:17:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-17 11:17:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'theworldwaves.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30360396944535957930899781332797360658196860801452578435708348104983911430239397841428316408129402677760240170840077559863109370683429477113790467077837124762458468343782710084392583965691183502579004206192295959822328391339371306780480295253985773806468349859985484798996516562357424548520540810464458282746603518435164699844523084154438718933568649182058406626491205389109934228727961592475282355301582048197555559588424737334993521488683032600860714097294688861094021637650882591882103753503924609883911644612515427260916653824731057705692600636859729964630535004234738996678433232153270343810290094408803098238121 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b05f3cab80bc0b3351c993dc96c50df70a5c743c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (472 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.theworldwaves.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.theworldwaves.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wavescool.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wavescool.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wavingback.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wavingback.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wavingback.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theworldwaves.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theworldwaves.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wavescool.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wavescool.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wavingback.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wavingback.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wavingback.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mg.wavescool.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.theworldwavescom.wavescool.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.theworldwavesnet.wavescool.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wavescoolorg.wavescool.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wavingback.wavescool.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wavingbackcom.wavescool.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wavingbacknet.wavescool.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018aa839931e0000040300473045022100cd3a176f043e90198553012b14d3e6734f00644e306d760e71d64fb61c3d48f602203e4aeaa55dd560e5b8d74c33e7677d12bc4024729840bddcb5023df1414b4f22007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018aa8399316000004030046304402201ac3cd783a88abc0869f2ce819274c69bc5b34f5495b88b3da8154ab2427a40b0220649311f552bc8e1cc6f68be0148c8d87f0c0cff0316af5c793774ef48c62b0ec . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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