golazo.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:59:cb:78:68:a1:37:80:95:33:85:9b:b5:50:b3:7f:f6:8f was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=golazo.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:59:cb:78:68:a1:37:80:95:33:85:9b:b5:50:b3:7f:f6:8fSerial Number (int): 291892446932155135356825319539533680735887
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c9:e7:eb:a3:c8:65:09:93:70:f2:b6:4a:2c:52:95:50:b4:a6:c6:25
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f6:99:2b:48:d0:09:26:44:fd:9e:86:ad:69:74:46:10:34:88:16:b7
Fingerprint (sha256): 8c:25:8b:ed:30:65:2c:69:01:11:cf:27:f0:e7:af:6b:d1:11:db:be:f5:78:27:c7:1d:2b:d2:b4:b9:63:ac:86
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate golazo.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for golazo.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
golazo.com
www.golazo.com
www.golazo.com
Other certificates including the domain name golazo.com
(limited to 100 certificates)
golazo.com
*.golazo.com
golazo.com
golazo.com
hockeycrew.golazo.com
golazo.com
golazo.com
crew.golazo.com
crew.golazo.com
hockeycrew.golazo.com
*.golazo.com
*.golazo.com
crew.golazo.com
servicedesk.golazo.com
hockeycrew.golazo.com
hockeycrew.golazo.com
www.golazo.com
golazo.com
press.golazo.com
crew.golazo.com
hockeycrew.golazo.com
*.golazo.com
*.golazo.com
hockeycrew.golazo.com
*.golazo.com
*.golazo.com
hockeycrew.golazo.com
golazo.com
crew.golazo.com
hockeycrew.golazo.com
hockeycrew.golazo.com
golazo.com
golazo.com
crew.golazo.com
crew.golazo.com
crew.golazo.com
golazo.com
*.golazo.com
crew.golazo.com
golazo.com
golazo.com
crew.golazo.com
golazo.com
golazo.com
hockeycrew.golazo.com
golazo.com
crew.golazo.com
*.golazo.com
golazo.com
hockeycrew.golazo.com
crew.golazo.com
crew.golazo.com
*.golazo.com
crew.golazo.com
*.mijnevent.be
*.golazo.com
golazo.com
crew.golazo.com
*.golazo.com
golazo.com
golazo.com
hockeycrew.golazo.com
golazo.com
golazo.com
crew.golazo.com
crew.golazo.com
hockeycrew.golazo.com
*.golazo.com
*.golazo.com
crew.golazo.com
servicedesk.golazo.com
hockeycrew.golazo.com
hockeycrew.golazo.com
www.golazo.com
golazo.com
press.golazo.com
crew.golazo.com
hockeycrew.golazo.com
*.golazo.com
*.golazo.com
hockeycrew.golazo.com
*.golazo.com
*.golazo.com
hockeycrew.golazo.com
golazo.com
crew.golazo.com
hockeycrew.golazo.com
hockeycrew.golazo.com
golazo.com
golazo.com
crew.golazo.com
crew.golazo.com
crew.golazo.com
golazo.com
*.golazo.com
crew.golazo.com
golazo.com
golazo.com
crew.golazo.com
golazo.com
golazo.com
hockeycrew.golazo.com
golazo.com
crew.golazo.com
*.golazo.com
golazo.com
hockeycrew.golazo.com
crew.golazo.com
crew.golazo.com
*.golazo.com
crew.golazo.com
*.mijnevent.be
*.golazo.com
golazo.com
crew.golazo.com
Certificate
The complete raw certificate details for golazo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXDCCBUSgAwIBAgISA1nLeGihN4CVM4WbtVCzf/aPMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MjcyMDI0MDhaFw0x OTExMjUyMDI0MDhaMBUxEzARBgNVBAMTCmdvbGF6by5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQCzaEa+uREjeFcDzjRjeZH0oLvHft1I3jnweCWm PqAs6A3b+WQVwN+/a4M+qQXomtNRUOmXSAoG3nthZ/zFzd2BYUuqzrs3UuGvUo2t VJcqT7/yroXuXvZ/UUvSTEq0tuad5njXZjf8KI3nTLZN6cALhBvYnRYuSuAWqWwx CDh/jRxMMH9VpD3rvNTAYwonSFldODVv3okC0S/FS65/Ktj5sCC3MsJ2PAoPyQMJ JgYjll0O+IXZeoWYNcG8AwRg41KCNXwnfkDY+7dFkZzNf5rqbxdcDzUFo+eN9TUU EvwbZhfWGZ13KaFu8Zq4RPbGZk1lP+Ou2GVAPLNu9FpFl5B8mIgQuHmkSk+3hsYO uahR3pmn2bNuAEpl0I296Fd0dNcArUgDji3lJtVVu3eklVcpkaXDUbOtoIuztPrZ mbqfP64FmCpKZOTI4IE850AMdKy8a/Ff50f6Uc7dHhqxWjbnvFlMY+1t2jUGBcT9 MNYP+iPYLqvguRddzPsfsR2hQdAEXwM7dT92SSlBguqu/qJk5JG9BcuUa/jzS0Nm 8KEcEEV0hJMKilTgQrOk6Itduv6CfnVDQOHizU0zAj4V2cNiJpxmLmIEE5yQAoLG BxPV+lN7nEHvPyRSFsraLXiL5qOhcstGJXr8ckUxwhElOgLM/3/qm1PdA+a91QzC 6v9h6QIDAQABo4ICbzCCAmswDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTJ5+ujyGUJ k3DytkosUpVQtKbGJTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMCUGA1UdEQQeMByCCmdvbGF6by5jb22CDnd3dy5nb2xh em8uY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHW eQIEAgSB9QSB8gDwAHcA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4A AAFs1PbwHQAABAMASDBGAiEAuBiqnk7v6sSQGsstQasVqaQ9Z5YNXR82PThaFPDs JW8CIQDO8v48rKfAnUbi/VvY4cY5K+Ht+WhPys9mA61RcmvpWAB1AGPy283oO8ws zwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABbNT28jEAAAQDAEYwRAIgTYGCNItM LWeKqBcIFxCguctzr3XoVu1quEZmbfqrBSYCIBVJq6G4j1kc8hjRdzEbioVqef6u jPfozL2uGOlYFluEMA0GCSqGSIb3DQEBCwUAA4IBAQCQ02HiIy7gFLMZy2je+uPv vspLjKBlG1yhAVLlNBs5qk6SUhtwq3hV/mqFJFJyHNLdRKgHuj7IK8WVRVeWdhhg W/uU5jxlbD/5otK+1e3KUuh5W5zoCPGKYm0KGIaTUUnHIJ5tTPRdb27ztVXdDSZU 2gIXSEYXATHaRqNYooQccqHEBjS+o9azVjN5rkz9ARyynOpBlHI3SmNjCdcQ2s6B Ii5J6KwzTqeuMkAw/9kRnCA+9Tbqgm0PhhKA/ziNc0I33h/xshJkjzF98i2kWUuI DKR4vCyzT9aBi8ZQ7iPh1x8PoDjEY5ajOrwrnUrhWYUww/LqsK1OvFX0s5uMU1YV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAs2hGvrkRI3hXA840Y3mR 9KC7x37dSN458Hglpj6gLOgN2/lkFcDfv2uDPqkF6JrTUVDpl0gKBt57YWf8xc3d gWFLqs67N1Lhr1KNrVSXKk+/8q6F7l72f1FL0kxKtLbmneZ412Y3/CiN50y2TenA C4Qb2J0WLkrgFqlsMQg4f40cTDB/VaQ967zUwGMKJ0hZXTg1b96JAtEvxUuufyrY +bAgtzLCdjwKD8kDCSYGI5ZdDviF2XqFmDXBvAMEYONSgjV8J35A2Pu3RZGczX+a 6m8XXA81BaPnjfU1FBL8G2YX1hmddymhbvGauET2xmZNZT/jrthlQDyzbvRaRZeQ fJiIELh5pEpPt4bGDrmoUd6Zp9mzbgBKZdCNvehXdHTXAK1IA44t5SbVVbt3pJVX KZGlw1GzraCLs7T62Zm6nz+uBZgqSmTkyOCBPOdADHSsvGvxX+dH+lHO3R4asVo2 57xZTGPtbdo1BgXE/TDWD/oj2C6r4LkXXcz7H7EdoUHQBF8DO3U/dkkpQYLqrv6i ZOSRvQXLlGv480tDZvChHBBFdISTCopU4EKzpOiLXbr+gn51Q0Dh4s1NMwI+FdnD YiacZi5iBBOckAKCxgcT1fpTe5xB7z8kUhbK2i14i+ajoXLLRiV6/HJFMcIRJToC zP9/6ptT3QPmvdUMwur/YekCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 291892446932155135356825319539533680735887 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-27 20:24:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-25 20:24:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'golazo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 731918047485494357479624245981568807319587386309413671762126761397143985996298632702202086747957446732244260040399903206309741416139834913714371339525641540834544620391937062011283654118280550475225716413869347452447574997775904787340750794253242298280327148177635976534193267584900145004623505520547176491862827842358137587992545253381951355487136579481895349831982873145167556800007763459678780345739792421671093385028490810142043501937730836187685290329007806392011447826613322399979023911676753871644965888556079488076618721670174095992341762604155391174534342755273539452881632776197263940974884289141151265913293459997049021611162226356082374006775865895913406271663618035088200473110093275370767999084659973207869819871632325031844283117581822710168635897888099277855483865720540067372559246204633811581951537736652154114560868328462030517496263850595314788536260376482594425366327695015571112921797576352010746976290765214864152052764421435083123671603127200140110794692034209004204770670356851416629960923861199711386122460543872059378143291903148157556858759665742561211561166707468708812289635599849237655816089933047383687279723353556731417376337531064715367218839390620416436452541748110108674378442902169435322573611497 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c9e7eba3c865099370f2b64a2c529550b4a6c625 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'golazo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.golazo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016cd4f6f01d0000040300483046022100b818aa9e4eefeac4901acb2d41ab15a9a43d67960d5d1f363d385a14f0ec256f022100cef2fe3caca7c09d46e2fd5bd8e1c6392be1edf9684fcacf6603ad51726be95800750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016cd4f6f231000004030046304402204d8182348b4c2d678aa817081710a0b9cb73af75e856ed6ab846666dfaab052602201549aba1b88f591cf218d177311b8a856a79feae8cf7e8ccbdae18e958165b84 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0090d361e2232ee014b319cb68defae3efbeca4b8ca0651b5ca10152e5341b39aa4e92521b70ab7855fe6a852452721cd2dd44a807ba3ec82bc5954557967618605bfb94e63c656c3ff9a2d2bed5edca52e8795b9ce808f18a626d0a1886935149c7209e6d4cf45d6f6ef3b555dd0d2654da02174846170131da46a358a2841c72a1c40634bea3d6b3563379ae4cfd011cb29cea419472374a636309d710dace81222e49e8ac334ea7ae324030ffd9119c203ef536ea826d0f861280ff388d734237de1ff1b212648f317df22da4594b880ca478bc2cb34fd6818bc650ee23e1d71f0fa038c46396a33abc2b9d4ae1598530c3f2eab0ad4ebc55f4b39b8c535615