jrchan.ca
Issued by Sectigo RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number 92:d5:19:87:b6:c8:57:6c:1c:ed:71:eb:b5:6b:46:2e was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=jrchan.ca
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 92:d5:19:87:b6:c8:57:6c:1c:ed:71:eb:b5:6b:46:2eSerial Number (int): 195173764428076136237903545751103555118
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 0e:01:ad:77:01:e0:e0:1f:74:a8:34:a2:0b:e0:9c:35:06:94:d4:c4
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1
Fingerprint (sha1): 98:5a:ac:94:5c:5c:ee:a1:82:19:a6:ae:28:ce:e5:9c:a9:36:96:9f
Fingerprint (sha256): 8b:0a:6e:0f:7c:6c:22:3e:87:29:1d:b0:3e:14:11:04:a3:e2:d9:b2:5a:56:52:72:13:75:44:bb:db:de:43:f8
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate jrchan.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for jrchan.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
jrchan.ca
www.jrchan.ca
www.jrchan.ca
Other certificates including the domain name jrchan.ca
(limited to 100 certificates)
www.labrze.online
soukdz.smartvision.dz
demo.prototypefactory.co
auth-dev.valleypos.com
app.neurau.com.br
jrchan.ca
fukuoka.linx.live
jrchan.ca
axisroot-hd.com
jrchan.ca
gaebigumzug.ch
www.accelerate.me
dev.liftclass.com
mahamulti.com
orgesarizeybek.com
www.hivepass.app
jrchan.ca
personalbillett.staging.entur.no
personalbillett.staging.entur.no
stacysinclair.ca
axisroot-hd.com
danielvonmirbach.com
soycandidato.moons.rocks
jrchan.ca
dev.mfmc.link
www.jrchan.ca
vazara.estore.business
functions.smooth.jp
jrchan.ca
www.hintclub.org
jrchan.ca
patrimobimoveis.com.br
www.iwayleaves.co.za
s.jonathanlawhh.com
wepartnerup.com
soukdz.smartvision.dz
demo.prototypefactory.co
auth-dev.valleypos.com
app.neurau.com.br
jrchan.ca
fukuoka.linx.live
jrchan.ca
axisroot-hd.com
jrchan.ca
gaebigumzug.ch
www.accelerate.me
dev.liftclass.com
mahamulti.com
orgesarizeybek.com
www.hivepass.app
jrchan.ca
personalbillett.staging.entur.no
personalbillett.staging.entur.no
stacysinclair.ca
axisroot-hd.com
danielvonmirbach.com
soycandidato.moons.rocks
jrchan.ca
dev.mfmc.link
www.jrchan.ca
vazara.estore.business
functions.smooth.jp
jrchan.ca
www.hintclub.org
jrchan.ca
patrimobimoveis.com.br
www.iwayleaves.co.za
s.jonathanlawhh.com
wepartnerup.com
Certificate
The complete raw certificate details for jrchan.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgIRAJLVGYe2yFdsHO1x67VrRi4wDQYJKoZIhvcNAQELBQAw gY8xCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE3MDUGA1UE AxMuU2VjdGlnbyBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBD QTAeFw0xOTA1MjcwMDAwMDBaFw0xOTA4MjUyMzU5NTlaMBQxEjAQBgNVBAMTCWpy Y2hhbi5jYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL0O/ZHNCs7p dhUwf91c5QF8yUlpSeawzAE/Pts111yhskxeGwqU0qUekcLHpKqGdAoS7Mqc/6TU GBaZ3U/nRKLrDwazmGI/FkRvHgu9AszZ1/ExC610JVLFpzGBo45Uo2JzFhQNdhen SNUdV9aBtHKiKURyrIuDpLlxxc4Iz7kI8oi3QJiRsbLXw+jG/kIg0NETT+Cy5VFS eMGWU12C4YdREOmenIJTAgBAIcKyQOQ2Q6DRze3V1tW9Hy6HN/Gb5Ul1AZaw8c8E flgzvOX+ii+jDdo0fLExzqiFp2SiRGVMYQFhOS9/aWqeWJmtwVvyJJut48f+t0/b OdCj8+fOeDUCAwEAAaOCAoAwggJ8MB8GA1UdIwQYMBaAFI2MXsRUrYrhd+mb+ZsF 4bgBjWHhMB0GA1UdDgQWBBQOAa13AeDgH3SoNKIL4Jw1BpTUxDAOBgNVHQ8BAf8E BAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwSQYDVR0gBEIwQDA0BgsrBgEEAbIxAQICBzAlMCMGCCsGAQUFBwIBFhdodHRw czovL3NlY3RpZ28uY29tL0NQUzAIBgZngQwBAgEwgYQGCCsGAQUFBwEBBHgwdjBP BggrBgEFBQcwAoZDaHR0cDovL2NydC5zZWN0aWdvLmNvbS9TZWN0aWdvUlNBRG9t YWluVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNydDAjBggrBgEFBQcwAYYXaHR0 cDovL29jc3Auc2VjdGlnby5jb20wIwYDVR0RBBwwGoIJanJjaGFuLmNhgg13d3cu anJjaGFuLmNhMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAu9nfvB+KcbWTlCOX qpJ7RzhXlQqrUugakJZkNo4e0YUAAAFq9uf1mgAABAMARzBFAiAyQlOkybtWOdYe noRncABjfYpAbUN2Pgd4mqAPTE0s0wIhAM0sEuQOS91O3OHaOHd5c5f+XUmgi64c /vjoWe9M+v5fAHYAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFq 9uf1wgAABAMARzBFAiBC0+eEqu3wQkO1WFnRX5iXzZNBI9NlmB+u4CT1lfByzwIh AObtoZQjqLX1bdFxiLgoaQu3g8z+X734Fv2/Xjy9n+ekMA0GCSqGSIb3DQEBCwUA A4IBAQA5fSMNUEcD77CivcdB7rIb1uSFIv0Ll2g74wSKSPBB1ssHwQt3dGFFn23K 1AIyJUggI8qRotN4s87OO6xuWX36s9wj8CXYcpKTuyeojhLhMvMW6M/JtR2sreJF n8R6dWcPHr1oXdHeZi7FIWm8fNsG4cK46ytyoASPwcdLmsQ2lnJ8iWEs32UtugYi a2ewdtC13yif+ANSa0/IvREVrLPjEDhevPKLY1/PFP6tjLOMTrzHQRc1OjRr1pG6 nr8ZkDxO8aCWZkuKkSHXbd//p3+zubyfCKNaEfI9z/NVcUm6radwMZRTDTYTFVCE OyvAruV09VejsIm5Xdjd/xaXMfj9 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQ79kc0Kzul2FTB/3Vzl AXzJSWlJ5rDMAT8+2zXXXKGyTF4bCpTSpR6RwsekqoZ0ChLsypz/pNQYFpndT+dE ousPBrOYYj8WRG8eC70CzNnX8TELrXQlUsWnMYGjjlSjYnMWFA12F6dI1R1X1oG0 cqIpRHKsi4OkuXHFzgjPuQjyiLdAmJGxstfD6Mb+QiDQ0RNP4LLlUVJ4wZZTXYLh h1EQ6Z6cglMCAEAhwrJA5DZDoNHN7dXW1b0fLoc38ZvlSXUBlrDxzwR+WDO85f6K L6MN2jR8sTHOqIWnZKJEZUxhAWE5L39pap5Yma3BW/Ikm63jx/63T9s50KPz5854 NQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 195173764428076136237903545751103555118 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jrchan.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23866431732598766229020816273743543649425389206809832199188586823497603451078775711087816701457000476014400860640194856764596831706100422087301534707662856882102905101338637991998770015175519708282568144100632573212108121152383744030762154020332202851834298445550213139679268737262801601950979007805613616378870591778198273395431229103832642403628830973892095876700999061411370432553797266252542057113815363720547030386772049019370640675949099042279105868252325059341483335617595790085902898732069021686347119221192351456805187903721428577584315330022737686553656024517914797510732793856807890096157944622813568464949 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0e01ad7701e0e01f74a834a20be09c350694d4c4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jrchan.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jrchan.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016af6e7f59a00000403004730450220324253a4c9bb5639d61e9e84677000637d8a406d43763e07789aa00f4c4d2cd3022100cd2c12e40e4bdd4edce1da3877797397fe5d49a08bae1cfef8e859ef4cfafe5f007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016af6e7f5c20000040300473045022042d3e784aaedf04243b55859d15f9897cd934123d365981faee024f595f072cf022100e6eda19423a8b5f56dd17188b828690bb783ccfe5fbdf816fdbf5e3cbd9fe7a4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00397d230d504703efb0a2bdc741eeb21bd6e48522fd0b97683be3048a48f041d6cb07c10b777461459f6dcad4023225482023ca91a2d378b3cece3bac6e597dfab3dc23f025d8729293bb27a88e12e132f316e8cfc9b51dacade2459fc47a75670f1ebd685dd1de662ec52169bc7cdb06e1c2b8eb2b72a0048fc1c74b9ac43696727c89612cdf652dba06226b67b076d0b5df289ff803526b4fc8bd1115acb3e310385ebcf28b635fcf14fead8cb38c4ebcc74117353a346bd691ba9ebf19903c4ef1a096664b8a9121d76ddfffa77fb3b9bc9f08a35a11f23dcff3557149baada7703194530d36131550843b2bc0aee574f557a3b089b95dd8ddff169731f8fd