demo.invapay.com
Issued by Amazon
About this certificate
This digital certificate with serial number 05:c5:be:fe:2a:c8:0e:50:8f:c1:59:a8:df:76:41:68 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=demo.invapay.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:c5:be:fe:2a:c8:0e:50:8f:c1:59:a8:df:76:41:68Serial Number (int): 7672896255074136023510205809112269160
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 4d:99:d7:b7:e8:8a:0e:bc:69:91:c7:85:b7:f1:f4:8b:3d:10:95:40
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): fe:61:ba:6c:82:8f:af:50:df:16:d8:9a:46:8c:b1:89:16:0d:16:c2
Fingerprint (sha256): 98:41:7e:0e:68:fc:0a:7c:3a:8d:2f:f9:34:91:96:ef:f5:b1:07:41:1a:8c:b1:2b:c4:aa:df:e4:a9:71:0e:27
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate demo.invapay.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for demo.invapay.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
demo.invapay.com
Other certificates including the domain name invapay.com
(limited to 100 certificates)
demo.invapay.com
bamboo.dev.invapay.com
authorisations.invapay.com
authorisations.invapay.com
invapay.com
beta.portal.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
invapay.com
invapay.com
portal.invapay.com
bamboo.dev.invapay.com
www.invapay.com
bamboo.dev.invapay.com
api.invapay.com
invapay.com
www.invapay.com
demo-payables.invapay.com
dev.invapay.com
payables.invapay.com
www.invapay.com
invapay.com
invite.invapay.com
demo-manapp.invapay.com
www.invapay.com
payables.invapay.com
www.invapay.com
payables.invapay.com
www.invapay.com
www.invapay.com
ccsvendorregistration.invapay.com
authorisations.invapay.com
portal.invapay.com
demo.invapay.com
payables.invapay.com
cardreconcile.invapay.com
invapay.com
demo-payables.invapay.com
cardregistration.invapay.com
*.invapay.com
demo.invapay.com
manapp.invapay.com
portal.invapay.com
www.invapay.com
demo.invapay.com
api.invapay.com
beta.portal.invapay.com
demo-payables.invapay.com
artifactory.dev.invapay.com
bamboo.dev.invapay.com
manapp.invapay.com
api.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
awsacmtest.invapay.com
www.invapay.com
authorisations.invapay.com
demo.invapay.com
www.invapay.com
demo-manapp.invapay.com
payables.invapay.com
cardreconcile.invapay.com
cardregistration.invapay.com
demo.invapay.com
api.invapay.com
invapay.com
bamboo.dev.invapay.com
authorisations.invapay.com
authorisations.invapay.com
invapay.com
beta.portal.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
invapay.com
invapay.com
portal.invapay.com
bamboo.dev.invapay.com
www.invapay.com
bamboo.dev.invapay.com
api.invapay.com
invapay.com
www.invapay.com
demo-payables.invapay.com
dev.invapay.com
payables.invapay.com
www.invapay.com
invapay.com
invite.invapay.com
demo-manapp.invapay.com
www.invapay.com
payables.invapay.com
www.invapay.com
payables.invapay.com
www.invapay.com
www.invapay.com
ccsvendorregistration.invapay.com
authorisations.invapay.com
portal.invapay.com
demo.invapay.com
payables.invapay.com
cardreconcile.invapay.com
invapay.com
demo-payables.invapay.com
cardregistration.invapay.com
*.invapay.com
demo.invapay.com
manapp.invapay.com
portal.invapay.com
www.invapay.com
demo.invapay.com
api.invapay.com
beta.portal.invapay.com
demo-payables.invapay.com
artifactory.dev.invapay.com
bamboo.dev.invapay.com
manapp.invapay.com
api.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
awsacmtest.invapay.com
www.invapay.com
authorisations.invapay.com
demo.invapay.com
www.invapay.com
demo-manapp.invapay.com
payables.invapay.com
cardreconcile.invapay.com
cardregistration.invapay.com
demo.invapay.com
api.invapay.com
invapay.com
Certificate
The complete raw certificate details for demo.invapay.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIQBcW+/irIDlCPwVmo33ZBaDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTAzMDUwMDAwMDBaFw0yMDA0MDUx MjAwMDBaMBsxGTAXBgNVBAMTEGRlbW8uaW52YXBheS5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDj3NUdhIzREu603zLf0IunJ5ETOgscebrWQQnX SraDm99FYR1AnCK5MEUWsa5xVXdtN0XdLlxtMv5Gm2iAAa8IFNbmeo0BcGokfyld zz++4951NnHXDqIVPR3lzU2NmlDFE+LzsBQIrNP+6pZZDk/CZGDDTBL0i6C5vMJJ LmSG0BgQ6oChKjnXSxvdb2VoescjNLzzAwuLAEY2HK4/Fp8SapLVjWIdBG7pyvcz v91lZKyLylcMiwKGgrDTcwQZp7qCfiuE3c3rXjMsRyksx63GOk6odIr3p9bGLSlu wwcU5Cgirq3qLKfMRujiaPvFzE+uVvmopAxJtLDELgBAKxZfAgMBAAGjggJ8MIIC eDAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQUTZnX t+iKDrxpkceFt/H0iz0QlUAwGwYDVR0RBBQwEoIQZGVtby5pbnZhcGF5LmNvbTAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsG A1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29t L3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYI KwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6 b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9u dHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMIIBBAYKKwYBBAHWeQIE AgSB9QSB8gDwAHUApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFp TVffigAABAMARjBEAiA30uIlwstQOps3rkXfk0OLsHFEir0oXCjYyfsW247ToQIg L6Fnl1TIYH/lNBx6aEm3yah3OC/zr9Xx89t/4P4RxggAdwCHdb/nWXz4jEOZX73z bv9WjUdWNv9KtWDBtOr/XqCDDwAAAWlNV+DWAAAEAwBIMEYCIQCUH56r3zSIc40d qbY/8QzJiNkRp3sBcIbQn1HlcfL3pgIhALvcU7ycgbJN0bxQoX0fntlSvTZ7R9gF IK3/1gS7A88SMA0GCSqGSIb3DQEBCwUAA4IBAQCnCi4I1t8hVq1uw/3lSaDn7c0s wT7ZpqX7B2mbjaPpOylFPtEV6Z5eoatQwYirDuyWkEvwaAPXLfBWySGWl3dBv8jZ t+uHDNMm6CyoLr+qw/8/ef2PAgF+m6uJBQ58PSBCRmg2qyMpOxx7YIn1BWQ/xt13 ov7qYJYaS0qsYkykPmoqYRx2Sn+hy30WQG0cdNtrqHqBJBPRvOKO7yTFyXo/xrQb BykYsnnODxx0XPUm6m0KyUp0ZOk2Y1UuqpU6Y4+Caht5/OE9TW4nHJWiRXKdu3RM Tni2jDcKJp4X8++RJ7f4Mkw35eYXc6WGbZBXVECUmrfVsWEdaiVkziIFyll8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA49zVHYSM0RLutN8y39CL pyeREzoLHHm61kEJ10q2g5vfRWEdQJwiuTBFFrGucVV3bTdF3S5cbTL+RptogAGv CBTW5nqNAXBqJH8pXc8/vuPedTZx1w6iFT0d5c1NjZpQxRPi87AUCKzT/uqWWQ5P wmRgw0wS9IugubzCSS5khtAYEOqAoSo510sb3W9laHrHIzS88wMLiwBGNhyuPxaf EmqS1Y1iHQRu6cr3M7/dZWSsi8pXDIsChoKw03MEGae6gn4rhN3N614zLEcpLMet xjpOqHSK96fWxi0pbsMHFOQoIq6t6iynzEbo4mj7xcxPrlb5qKQMSbSwxC4AQCsW XwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7672896255074136023510205809112269160 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-05 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demo.invapay.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28764991782629824165053478277003831819384338869758476627105673044743757949788808366789960959472724854865810900066978024590315036392018364092251731201128861486696643262647279814108402640587700245305157337604793935421769829191001361864041503560773300110247717434559191472218504383281437687659017456746710147681291546172973583278030274019800255555482008275587192492293047741678347263078739104576478742614781583686666587232934513292293834318722021621891249895425674670291937895268431241933354699401666892263558536446320946339461305446698983958628013652027303229376173914485247544808137603203144679660280549876725527025247 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4d99d7b7e88a0ebc6991c785b7f1f48b3d109540 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.invapay.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc10000001694d57df8a0000040300463044022037d2e225c2cb503a9b37ae45df93438bb071448abd285c28d8c9fb16db8ed3a102202fa1679754c8607fe5341c7a6849b7c9a877382ff3afd5f1f3db7fe0fe11c6080077008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001694d57e0d60000040300483046022100941f9eabdf3488738d1da9b63ff10cc988d911a77b017086d09f51e571f2f7a6022100bbdc53bc9c81b24dd1bc50a17d1f9ed952bd367b47d80520adffd604bb03cf12 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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