kairos-palaestina.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:7b:a0:c4:01:c9:a2:8f:af:e0:1f:dd:77:4f:df:f7:13:b2 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=kairos-palaestina.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:7b:a0:c4:01:c9:a2:8f:af:e0:1f:dd:77:4f:df:f7:13:b2Serial Number (int): 303405283132323610859297142699254665909170
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 77:ce:45:41:34:a5:5b:f8:3f:e9:fc:86:42:bd:95:47:38:a6:9f:75
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 9b:13:7b:c7:c8:8d:64:68:17:c8:97:80:1b:a4:24:ed:cf:1c:57:09
Fingerprint (sha256): 8f:3d:ab:fc:03:45:a7:07:be:42:d7:fb:32:d7:87:6f:42:cb:f4:55:31:8b:97:0b:79:f6:12:d0:85:9b:b4:a3
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate kairos-palaestina.ch
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kairos-palaestina.ch
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kairos-palaestina.ch
kairos-palestine.ch
www.kairos-palaestina.ch
www.kairos-palestine.ch
kairos-palestine.ch
www.kairos-palaestina.ch
www.kairos-palestine.ch
Other certificates including the domain name kairos-palaestina.ch
(limited to 100 certificates)
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
kairos-palaestina.ch
Certificate
The complete raw certificate details for kairos-palaestina.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG2zCCBcOgAwIBAgISA3ugxAHJoo+v4B/dd0/f9xOyMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA4MjEyMjI5MTNaFw0x ODExMTkyMjI5MTNaMB8xHTAbBgNVBAMTFGthaXJvcy1wYWxhZXN0aW5hLmNoMIIB ojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAp3BoCM9yrSExdaogssoPkpda 3gtue/8ArxHsh1Sz0fb2HeoKmQWOKx4qLbQDjTRGZtyoBQw2i3mlQqYwWDvNXZJz F1E0qmWN5/ya9HqOF04sbG/og7LI+EBF/6kDUaODOPuHFdNiI+yOTzyRSqBhbpn/ z9LD5YmrVStXi6i99hwPws18VVVrYG3dkxDMFbumsY1tyiYsEj0EpKIGebt7U0Ce KWAADlNT4J39Vnt2qTAFRm1KWg4r9ffhrAqZIL+V09v1l2LdZW63oodI+cZAiL8R J2nlmC1xEoOGEuhjt4wj38MzMgJdI+Df+FRjT8EYZx84Cy+VFy4tsR0nph8IinsB 4bBfA+enTpXW1pfKv24oTFOAjvD7yhNX/5idPG10A6FGiO4OziH7Q8O7mUj5Lt1k hciL4LBa2KM+1JPG8oBVwNA/xR+8dOHKEQlqV75+swYrvvdoelHyR/gUOWWTDzTT h4I68jmPPhY7acR04elcyGByToT5/1oBabkNH3XtAgMBAAGjggNkMIIDYDAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFHfORUE0pVv4P+n8hkK9lUc4pp91MB8GA1UdIwQY MBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEF BQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEF BQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wZwYDVR0R BGAwXoIUa2Fpcm9zLXBhbGFlc3RpbmEuY2iCE2thaXJvcy1wYWxlc3RpbmUuY2iC GHd3dy5rYWlyb3MtcGFsYWVzdGluYS5jaIIXd3d3LmthaXJvcy1wYWxlc3RpbmUu Y2gwgf4GA1UdIASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYG CCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUH AgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9u IGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGgg dGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNy eXB0Lm9yZy9yZXBvc2l0b3J5LzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB3AMEW SuCnctLUOS3ICsEHcNTwxJvemRpIQMH6B1Fk9jNgAAABZV7SIOkAAAQDAEgwRgIh AKcKGkyJdolrV7OkMHNSViZNcrOPXhVP3S1f8qwl1WPhAiEAymrYWXqJmU4O/lXl bnarO/0WSuDmUGUez+ilD7OBynEAdQApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTD DPTlRUf0eAAAAWVe0iL3AAAEAwBGMEQCIAC/NoGBfjrCgqmy5FMEaGcLR7Th1SSP uloNruCJmWppAiBBDeccX1eaSKn3XRreo+QekHMDzA0BPNfHJyEjgW8U+jANBgkq hkiG9w0BAQsFAAOCAQEABccdxHHVrzaA11PmBAnDT11MxkMoV3V6yhphyjtVU08u UihzhdkYwddo4Ip1d2Y4iPFJez8qdbDajxHfPOmHPOWr8MD8iIU8KL8NsPJ8A2Rp Gza6oOViMm40UgNo70P08HwUp37b55xPANCZlbNmtlVlIEW4UXGoVJpjrZGh18FE 4wJ4vZuKX5w9EfBUIyxoQSQkW8cNO24nOQpEdC8vUEN/U9C6gRLNYKilnxVPkdXf scPOHXhYEBvr6rCHExepVZabXwCnjrFv4Osu7kKgF19/MHQT/5IiX3f1UvEYdIn7 nURqUw9kfoVGcnz0k1t90fplk8fIDpN2p+chj/mmVg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAp3BoCM9yrSExdaogssoP kpda3gtue/8ArxHsh1Sz0fb2HeoKmQWOKx4qLbQDjTRGZtyoBQw2i3mlQqYwWDvN XZJzF1E0qmWN5/ya9HqOF04sbG/og7LI+EBF/6kDUaODOPuHFdNiI+yOTzyRSqBh bpn/z9LD5YmrVStXi6i99hwPws18VVVrYG3dkxDMFbumsY1tyiYsEj0EpKIGebt7 U0CeKWAADlNT4J39Vnt2qTAFRm1KWg4r9ffhrAqZIL+V09v1l2LdZW63oodI+cZA iL8RJ2nlmC1xEoOGEuhjt4wj38MzMgJdI+Df+FRjT8EYZx84Cy+VFy4tsR0nph8I insB4bBfA+enTpXW1pfKv24oTFOAjvD7yhNX/5idPG10A6FGiO4OziH7Q8O7mUj5 Lt1khciL4LBa2KM+1JPG8oBVwNA/xR+8dOHKEQlqV75+swYrvvdoelHyR/gUOWWT DzTTh4I68jmPPhY7acR04elcyGByToT5/1oBabkNH3XtAgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 303405283132323610859297142699254665909170 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-21 22:29:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-19 22:29:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kairos-palaestina.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 3799824711898634262419496119137748592815161963522057939701097438302283275287405975382805766204365255022080867419727596643799530978312045115764467987563164500808983949929538612197383135944448140855071048030286079266697037543979922207951456689896654542659337495004328854415180040933650061938498794308028019891203527033852215794124657632371767583134282586216793011516617945057595368137085962520459376789694269661212204671460475603661348152947996724506757555664581114501180813918384459603374121071865248971268390925492749349514100346597367545668818434270483916834196470571488601304734030044315052766470757178479778955718007557374624046803740216495936819758805247691006339520926111037975845500689896238923440105093586531569115936128501884362783684901981006189313103086406045054145938941795550079858900195183697485840307465614860787231578704490107019840328250446733537999919554034640051494746602251391320889610672455487094247093741 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 77ce454134a55bf83fe9fc8642bd954738a69f75 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kairos-palaestina.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kairos-palestine.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kairos-palaestina.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kairos-palestine.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700c1164ae0a772d2d4392dc80ac10770d4f0c49bde991a4840c1fa075164f63360000001655ed220e90000040300483046022100a70a1a4c8976896b57b3a430735256264d72b38f5e154fdd2d5ff2ac25d563e1022100ca6ad8597a89994e0efe55e56e76ab3bfd164ae0e650651ecfe8a50fb381ca71007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001655ed222f70000040300463044022000bf3681817e3ac282a9b2e4530468670b47b4e1d5248fba5a0daee089996a690220410de71c5f579a48a9f75d1adea3e41e907303cc0d013cd7c7272123816f14fa . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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