tv-woelflinswil.ch
Issued by R3
About this certificate
This digital certificate with serial number 04:58:df:71:43:61:93:62:94:a1:50:6a:7b:be:fd:e2:50:36 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tv-woelflinswil.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:58:df:71:43:61:93:62:94:a1:50:6a:7b:be:fd:e2:50:36Serial Number (int): 378690997955340810728057715334960761688118
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 33:39:e3:08:43:0c:63:bc:d1:bc:e5:23:c8:70:5e:47:7d:f4:d8:6a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 78:e0:90:bc:bb:0d:fc:f5:20:04:6f:9f:bc:f1:72:82:de:95:93:1f
Fingerprint (sha256): 8d:ec:7d:cd:05:dd:ad:47:19:5b:74:2d:ef:3c:d1:a1:1a:13:fc:e9:03:d4:fd:d6:fd:81:c8:2b:f3:2a:b6:76
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate tv-woelflinswil.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tv-woelflinswil.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
Other certificates including the domain name tv-woelflinswil.ch
(limited to 100 certificates)
tv-woelflinswil.ch
dlk.development.fensi.in
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
games.tv-woelflinswil.ch
jacobberman.dev
unique.tv-woelflinswil.ch
games.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
www.tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
order.greenfish-energy.eu
tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
www.apidash.dev
games.tv-woelflinswil.ch
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
www.fantown.net
reservation.tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
www.apidash.dev
admin.tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
tv-woelflinswil.ch
reservation.tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
www.stepstonesupport.org
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
user6-logistics.logagg.ng
dlk.development.fensi.in
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
games.tv-woelflinswil.ch
jacobberman.dev
unique.tv-woelflinswil.ch
games.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
www.tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
order.greenfish-energy.eu
tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
www.apidash.dev
games.tv-woelflinswil.ch
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
www.fantown.net
reservation.tv-woelflinswil.ch
tv-woelflinswil.ch
tv-woelflinswil.ch
www.apidash.dev
admin.tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
unique.tv-woelflinswil.ch
tv-woelflinswil.ch
reservation.tv-woelflinswil.ch
tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
www.stepstonesupport.org
games.tv-woelflinswil.ch
games.tv-woelflinswil.ch
tv-woelflinswil.ch
unique.tv-woelflinswil.ch
user6-logistics.logagg.ng
Certificate
The complete raw certificate details for tv-woelflinswil.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISBFjfcUNhk2KUoVBqe7794lA2MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMDQwNzM2NDVaFw0yNDAxMDIwNzM2NDRaMB0xGzAZBgNVBAMT EnR2LXdvZWxmbGluc3dpbC5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALvjP3+kexbvd/BDBc5EPV76Jrm7MhSwRZcb8aEw5iifH0NT6Y53wIMiRw1L sdm6Wae3gOySe9tbaIhA6fc85WV/vatLpB7wjs/AUvZHxWovGrsgEYesnVD0x03n 7WCG0yoReA2VQ4U4ScYzn+9VmG38YLQod4Y0FxTeypflhbp3oNxCGQeN84tNLmMn r299QQv6grAau1KPJTrl7PVwu48KeS5FRnBeHLLYRLT4JMSRnfIMqzNIELwgg1vE g9bL2KiXwOAXG8T78L4Sgo6G17gfLI70ar+to1WzJOzMDtrIbZ7IdJiUQJ1/Il7/ 1BTvPqS0vNEiZLfM2DJXMlioGrkCAwEAAaOCAiowggImMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUMznjCEMMY7zRvOUjyHBeR3302GowHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wMwYDVR0RBCwwKoIUKi50di13b2VsZmxpbnN3aWwuY2iCEnR2LXdvZWxm bGluc3dpbC5jaDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIE gfUEgfIA8AB2ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABivnV El8AAAQDAEcwRQIgXB78nKkcTxKZ8gJjZP/diamt/FJ7kTalIsgQcAOtooUCIQCi GfQyXqbikQrfSbF6HOro9tD1O0sUinEJYun5/A8ywQB2AO7N0GTV2xrOxVy3nbTN E6Iyh0Z8vOzew1FIWUZxH7WbAAABivnVErEAAAQDAEcwRQIhAIbMPLcK/dSpfuU4 GBuep0xZ4GUF2OyBxQKKqxbTKxh1AiA5EazjossjR6hW67RpjM5RoXpCn7FQJY1E p8leQ+BchjANBgkqhkiG9w0BAQsFAAOCAQEAf2docwjVU7JzAdonTX2KJTKxyBUR vpZXBuNAheCWMRrPtg8ZBGMRX2QBIwjbnVyVrOxJJh5hJw2dC1l7FNjjuJotdD7/ 4VV6GXSDyQcptMScCTakHTcXQrKCKeUS264VOevuFsT0HlT+NRSsH1tYrxmRtO+z K1tyL9t6LjJsl+OIBUnLxsVdxnCutNYUHjuHKsPikddnPzCnXH5DEf33L9atcjA4 k+WrveUfMemW+MrvuoI6NhwkvcOPUeAEEeuSXH8J+thg0Kq9bzKgpslSCq+VlZqi MQAUHGPHubUVd6q00n/aBA4qD708h2L3kqDDxzlIc2RXylRxWkToi/zudA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+M/f6R7Fu938EMFzkQ9 XvomubsyFLBFlxvxoTDmKJ8fQ1PpjnfAgyJHDUux2bpZp7eA7JJ721toiEDp9zzl ZX+9q0ukHvCOz8BS9kfFai8auyARh6ydUPTHTeftYIbTKhF4DZVDhThJxjOf71WY bfxgtCh3hjQXFN7Kl+WFuneg3EIZB43zi00uYyevb31BC/qCsBq7Uo8lOuXs9XC7 jwp5LkVGcF4csthEtPgkxJGd8gyrM0gQvCCDW8SD1svYqJfA4BcbxPvwvhKCjobX uB8sjvRqv62jVbMk7MwO2shtnsh0mJRAnX8iXv/UFO8+pLS80SJkt8zYMlcyWKga uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 378690997955340810728057715334960761688118 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-04 07:36:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-02 07:36:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tv-woelflinswil.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23718623214417499412781590620928400385158517383518517384878219887779721429999606686412596933542713928722599751753085109692438150871348843975032971409832548821351268458167035859606855436502898426809891909165390212991749008206535490936153309167456947661195171618327001588272334701587024035348357166644496091115429306611214603711716093387593672575187941797164281840011596045692662812436385399067813199913992125310984691748371774674694889801150346453445520171656403047979357808699517046952858956756821833710441243892617734310992907650522112113092140451662559985093046287047125464718875767006085324434530503998203320867513 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3339e308430c63bcd1bce523c8705e477df4d86a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tv-woelflinswil.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tv-woelflinswil.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018af9d5125f000004030047304502205c1efc9ca91c4f1299f2026364ffdd89a9adfc527b9136a522c8107003ada285022100a219f4325ea6e2910adf49b17a1ceae8f6d0f53b4b148a710962e9f9fc0f32c1007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018af9d512b1000004030047304502210086cc3cb70afdd4a97ee538181b9ea74c59e06505d8ec81c5028aab16d32b187502203911ace3a2cb2347a856ebb4698cce51a17a429fb150258d44a7c95e43e05c86 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007f67687308d553b27301da274d7d8a2532b1c81511be965706e34085e096311acfb60f190463115f64012308db9d5c95acec49261e61270d9d0b597b14d8e3b89a2d743effe1557a197483c90729b4c49c0936a41d371742b28229e512dbae1539ebee16c4f41e54fe3514ac1f5b58af1991b4efb32b5b722fdb7a2e326c97e3880549cbc6c55dc670aeb4d6141e3b872ac3e291d7673f30a75c7e4311fdf72fd6ad72303893e5abbde51f31e996f8caefba823a361c24bdc38f51e00411eb925c7f09fad860d0aabd6f32a0a6c9520aaf95959aa23100141c63c7b9b51577aab4d27fda040e2a0fbd3c8762f792a0c3c73948736457ca54715a44e88bfcee74