dts-daemmtechnik-schoeps.de
Issued by R3
About this certificate
This digital certificate with serial number 04:f5:4b:fa:f5:9b:41:c8:95:4f:96:be:8f:6b:53:22:00:37 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=dts-daemmtechnik-schoeps.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f5:4b:fa:f5:9b:41:c8:95:4f:96:be:8f:6b:53:22:00:37Serial Number (int): 431919318778060489632670592540337695227959
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a8:02:75:dc:fe:1c:e7:85:c2:3a:37:83:41:cd:70:65:f9:27:0d:6c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 59:ff:40:c4:1e:dc:f9:d5:a8:3c:9a:06:0a:d7:87:2c:80:13:f1:c4
Fingerprint (sha256): 8e:48:cb:f5:4c:74:b3:9c:19:34:45:f0:38:f9:2a:22:ad:74:eb:df:7a:98:21:31:27:76:ed:4a:98:98:73:57
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate dts-daemmtechnik-schoeps.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dts-daemmtechnik-schoeps.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dts-daemmtechnik-schoeps.de
www.dts-daemmtechnik-schoeps.de
www.dts-daemmtechnik-schoeps.de
Other certificates including the domain name dts-daemmtechnik-schoeps.de
(limited to 100 certificates)
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
dts-daemmtechnik-schoeps.de
Certificate
The complete raw certificate details for dts-daemmtechnik-schoeps.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGJDCCBQygAwIBAgISBPVL+vWbQciVT5a+j2tTIgA3MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMDMwMjA3NDVaFw0yNDA0MDIwMjA3NDRaMCYxJDAiBgNVBAMT G2R0cy1kYWVtbXRlY2huaWstc2Nob2Vwcy5kZTCCAiIwDQYJKoZIhvcNAQEBBQAD ggIPADCCAgoCggIBAK8uEIjEpV7EiivDA/z3KtmVuN070BaCyXYGqtuC1WUDqqzT bu2wmQAS0HuoArrhBzRcu16dGgzUZy3NLhtyTCCQgQH6D36F4xPSreHp5LR0QSpA rXetMFKEsHxhTgW7FM7X3xSSo+Gyw2zxomM3rU/6W5dhT5uwNOvB6MZ9rB77Mekx I4SqYnp6bIeeKodWEX1fJQ2lxyQ7pqmGRKJQadx4NFxYaSP7+tTkWHEKCoOdGhdD 4PehW1uZ9dQD7wN4yvAFDZ6yTUxcw7jvVD1FsZsLDWNcPReegb6F4iTQqc4bA7Dq g1sv939zo6BGcmtV3kbGRy69QBxgx+Y6Qg9wNqiMsrmr1IYGKqkWAn6y6MSGtPRl X34y7HNdxL0Xcwn8Hg4/KS0Qof4eThhMwGqx3oW85h15tXwkid4XDcS9iQnX5J64 k1Ad64bvGAwBpiQfZCLhdsaLugfDnvRq9B3PHFGqUAyq/PQPJaC7Z4mo3N+LViUQ cgXr3tqNrExc4SO1DuWhbMXWhdayaKvV2cb+leKEyNhGR76kb45kLHZ6+hgcRn5J zy90CHJklSMlVONXJoOBtezq5j/LWu1IduoxaMVOxqyEYlBuYP0UJ9nbLCQ5AiGE FQ2VN9foqWe7BLYRw4GrJVMG0GEY98E0qkWTYq7kyF9Ts6VLW8NElYOdpH21AgMB AAGjggI+MIICOjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKgCddz+HOeFwjo3g0HN cGX5Jw1sMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUF BwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsG AQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMEcGA1UdEQRAMD6CG2R0cy1k YWVtbXRlY2huaWstc2Nob2Vwcy5kZYIfd3d3LmR0cy1kYWVtbXRlY2huaWstc2No b2Vwcy5kZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUE gfIA8AB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjM1KkgIA AAQDAEcwRQIhAOMwGaUjeWR7p6ofym+V9Rr7MiU0lm8ywK3pcoX2obBdAiADi4lk 4STSlIHU9I8bmmOgnWo5iP8ZSD7LfjjBA2gY0AB2AO7N0GTV2xrOxVy3nbTNE6Iy h0Z8vOzew1FIWUZxH7WbAAABjM1Kkg4AAAQDAEcwRQIgbY53diXVa+n+TahyVGQ+ lhygXFFFZ3WT4L1ClnrUqiwCIQC59K96UgLPaKPLSnHG1eFAF8TBUeHNbhM7JSYz eMNNyDANBgkqhkiG9w0BAQsFAAOCAQEAeFAaIT7MfUecE1egPhq57RP9kuoWLp1C +G8u3wAkoAlf7QaNeAMHecr7MHZAMczMmuzJB8CMHhqnUyv3twKQ/aoF7FlBVZDd K+nKjLu1dPBHLeWloFkENzwekn9WWOVJqpNm2j9WedewQmUP5Y/44xa9r0XAe35R Pr3FmIAUoVU7dEWY/kw3JiIOG63fnwQAJninSZ7SXBGPrSYx7F9fF3uxvO+pJfzu OCCiBaK5WF5Yn9jdywbK8RISpQ9X6JXAGkziFdCqZSJGoHrpGdKWUqlO7SPCMYT7 K8MXtIlWZ4SEBMS7hAXUKnpEmPLmZW7uQ2ZRUZfBFsv6I1HMVqiuPQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAry4QiMSlXsSKK8MD/Pcq 2ZW43TvQFoLJdgaq24LVZQOqrNNu7bCZABLQe6gCuuEHNFy7Xp0aDNRnLc0uG3JM IJCBAfoPfoXjE9Kt4enktHRBKkCtd60wUoSwfGFOBbsUztffFJKj4bLDbPGiYzet T/pbl2FPm7A068Hoxn2sHvsx6TEjhKpienpsh54qh1YRfV8lDaXHJDumqYZEolBp 3Hg0XFhpI/v61ORYcQoKg50aF0Pg96FbW5n11APvA3jK8AUNnrJNTFzDuO9UPUWx mwsNY1w9F56BvoXiJNCpzhsDsOqDWy/3f3OjoEZya1XeRsZHLr1AHGDH5jpCD3A2 qIyyuavUhgYqqRYCfrLoxIa09GVffjLsc13EvRdzCfweDj8pLRCh/h5OGEzAarHe hbzmHXm1fCSJ3hcNxL2JCdfknriTUB3rhu8YDAGmJB9kIuF2xou6B8Oe9Gr0Hc8c UapQDKr89A8loLtniajc34tWJRByBeve2o2sTFzhI7UO5aFsxdaF1rJoq9XZxv6V 4oTI2EZHvqRvjmQsdnr6GBxGfknPL3QIcmSVIyVU41cmg4G17OrmP8ta7Uh26jFo xU7GrIRiUG5g/RQn2dssJDkCIYQVDZU31+ipZ7sEthHDgaslUwbQYRj3wTSqRZNi ruTIX1OzpUtbw0SVg52kfbUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 431919318778060489632670592540337695227959 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-03 02:07:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 02:07:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dts-daemmtechnik-schoeps.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 714671802211174515983634862324593838559356885182777319768672812127402103750851254513439682538214137565252584211522229496173501949733528287455484807608777729958392073957254024569888260522520711257787955109958559003053777667537644965738300805464913811488041220890853156434720106211635932745408737057841742063944544624348616171355366672263353032377557462346658916924264023564114564706179866169480876603447771098260138039119111372468775947069366744933100414668687853793254995822023473418795987875949332134731694721163135008343182276860864489648201644498097249114305943863040128949609115613813506377936205447671317103621441467652525628123459954506031840022801210359156045479421211781156142411787167044809981946991921047192193915089436192395968823457409611055872494134914709012758267100820494243621060019637759180100196016054474614316703519849083489513883415983506037851211469199973315883515143181616823576267288369083283447709090511083269655719733625727111654951473949442002765117464758310162843182688736929141414350801237014052375753475877403820990409115040005996897767187637035004038865795069523790602120452858332894227260176341428977777807974336135766129110454761774941990420315595660903427289897456869657835627658182897778088065924533 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a80275dcfe1ce785c23a378341cd7065f9270d6c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dts-daemmtechnik-schoeps.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dts-daemmtechnik-schoeps.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ccd4a92020000040300473045022100e33019a52379647ba7aa1fca6f95f51afb322534966f32c0ade97285f6a1b05d0220038b8964e124d29481d4f48f1b9a63a09d6a3988ff19483ecb7e38c1036818d0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ccd4a920e000004030047304502206d8e777625d56be9fe4da87254643e961ca05c5145677593e0bd42967ad4aa2c022100b9f4af7a5202cf68a3cb4a71c6d5e14017c4c151e1cd6e133b25263378c34dc8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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