galloo.com
Issued by R3
About this certificate
This digital certificate with serial number 04:2a:22:ef:f7:76:50:89:95:ca:b8:a8:6d:c8:8b:1a:81:40 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=galloo.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:2a:22:ef:f7:76:50:89:95:ca:b8:a8:6d:c8:8b:1a:81:40Serial Number (int): 362787442867655299425080215367914926801216
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 02:52:71:fc:d4:d3:e9:e9:e2:df:5c:85:40:ed:e1:a5:f5:66:7f:d5
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b9:42:90:7a:03:cb:a6:61:69:2a:9b:76:a4:3a:28:c0:0e:c7:7f:4f
Fingerprint (sha256): 9c:04:17:06:f5:32:ea:12:8b:73:48:ff:4e:6e:6d:0b:34:3b:07:b2:d7:a4:19:50:97:67:54:60:e4:47:75:62
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate galloo.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for galloo.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
galloo.com
galloo.dspdev.be
www.galloo.com
galloo.dspdev.be
www.galloo.com
Other certificates including the domain name galloo.com
(limited to 100 certificates)
*.galloo.com
*.galloo.com
galloo.com
owa.galloo.com
uat-stapels.galloo.com
*.galloo.com
galloo.com
telework.galloo.com
sovaga.be
owa.galloo.com
*.galloo.com
galloo.com
galloo.com
owa.galloo.com
galloo.com
exchange.galloo.com
galloo.com
galloo.com
galloo.com
galloo.com
galloo.com
stapels.galloo.com
*.galloo.com
*.galloo.com
*.galloo.com
galloo.com
owa.galloo.com
uat-stapels.galloo.com
*.galloo.com
galloo.com
telework.galloo.com
sovaga.be
owa.galloo.com
*.galloo.com
galloo.com
galloo.com
owa.galloo.com
galloo.com
exchange.galloo.com
galloo.com
galloo.com
galloo.com
galloo.com
galloo.com
stapels.galloo.com
*.galloo.com
*.galloo.com
Certificate
The complete raw certificate details for galloo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGPDCCBSSgAwIBAgISBCoi7/d2UImVyriobciLGoFAMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjEyMjQxMDAyMDhaFw0yMzAzMjQxMDAyMDdaMBUxEzARBgNVBAMT CmdhbGxvby5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCnsY6h EukykzwxSIsPY/Erf15ojLvhmIrPgIkDUUwcJ//08L9TG6cnxw+2xGYCmyBSKT9h ENKGq3tL4zdsvvba0WB5inoFgN3XWiIT093EgFDa9KDscer6xxJiIVUgJ9Uqc+88 AwvjWPtpvtm74x0D7o0u5vxs0721GhzRnD27aLWNtRNXoXIHTABpqb8Tc0qPC3st J7srWW8BFouZ0OJ85soapWG/PuQkKP/7Or6MEiWlBnWOzjcDGQrLxxX+WuhlB9S7 RSX7hZA7PIKGavIUkk9A6Wnq8DU94CmibRmTRe0vdXAGgYubqXNp2WQW+NOrKOvy SngxJeXt6i0LrmxkiKvJiP7u92znsoWudHuYB1AQw9LPsvwTF9IBIrJNnFJlDCJt WhhoAoNp7pXqjgtho/0N+JYaPVaD04CKe8zgv+5h/2afMg27zENWM2ySwRJBZaTa 6I2+54o5g7t8sElORgJmsDvL0aRFeURuNQf1VT0oJz/Q0FZ3NhYA0GchIs8aHKSK eJHkejWtocH3ajl3ptHKzDiTKd/Hn2QfCO9XJoPG7IqKGMVLL3/53pApmYRRGQpb xzcV0j7fRKW8OZTJbG0cpX/Wlo2/0OfvXDINJ6kt5Zyp0kuXGOkJonI6UcE7Z/xQ 0LVwq6r4OHTMN2oab07gi8XbVXXYy7DcAHC3bQIDAQABo4ICZzCCAmMwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBQCUnH81NPp6eLfXIVA7eGl9WZ/1TAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzA3BgNVHREEMDAuggpnYWxsb28uY29tghBnYWxsb28uZHNw ZGV2LmJlgg53d3cuZ2FsbG9vLmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3Bgsr BgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0 Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AOg+0No+9QY1MudXKLyJa8kD 08vREWvs62nhd31tBr1uAAABhUPMHpwAAAQDAEcwRQIgN9Qj/Y2CHe+w11Gh07ye 2lM7MhTKxq07R2D/N6O/jpYCIQC3beXayyIopKRPlC6iKa9vrm91zBVwrGCbiP6c 4nsBawB2ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABhUPMIIYA AAQDAEcwRQIgNtsrXpvXYbS9JknY9HUz2uxxWxY3aJBFuFCBFi81mJQCIQDj6LWt nRKNOnBSdMk7zTZvRIu7hIJ62c/RoLc2YJDdBTANBgkqhkiG9w0BAQsFAAOCAQEA Q0PtopB+HcHhyiESuL/LKMzaqNt0dZk9f+DNuzRYCDEvXykHztUxc+aLJRZHmqaJ Bigg+bXj06RIuHzSyXrB6F7C1zkLeGVHmtb/dMeeZVHzNcCx0CnmXLGyUYjowdK1 dXnK/rXR0rI5StWOElCgZZS+xANux9KK58zAGaVoPm3CO0RvAM2hZdQzbgF4jnzV tIeev/A7/1/SKcQieuEnBSRdzgsHsTwW+bLoNVNicZOj3KqJn0Pug58lSp/DRuIX Wxycxr2SZoMHD1xDxDdFFXqYAJO8uiJ6aIA8QKONBSbHHrtF5MpyYEUnH70eDPkm W1VQCpL2Ab3pycscmr435Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAp7GOoRLpMpM8MUiLD2Px K39eaIy74ZiKz4CJA1FMHCf/9PC/UxunJ8cPtsRmApsgUik/YRDShqt7S+M3bL72 2tFgeYp6BYDd11oiE9PdxIBQ2vSg7HHq+scSYiFVICfVKnPvPAML41j7ab7Zu+Md A+6NLub8bNO9tRoc0Zw9u2i1jbUTV6FyB0wAaam/E3NKjwt7LSe7K1lvARaLmdDi fObKGqVhvz7kJCj/+zq+jBIlpQZ1js43AxkKy8cV/lroZQfUu0Ul+4WQOzyChmry FJJPQOlp6vA1PeApom0Zk0XtL3VwBoGLm6lzadlkFvjTqyjr8kp4MSXl7eotC65s ZIiryYj+7vds57KFrnR7mAdQEMPSz7L8ExfSASKyTZxSZQwibVoYaAKDae6V6o4L YaP9DfiWGj1Wg9OAinvM4L/uYf9mnzINu8xDVjNsksESQWWk2uiNvueKOYO7fLBJ TkYCZrA7y9GkRXlEbjUH9VU9KCc/0NBWdzYWANBnISLPGhykiniR5Ho1raHB92o5 d6bRysw4kynfx59kHwjvVyaDxuyKihjFSy9/+d6QKZmEURkKW8c3FdI+30SlvDmU yWxtHKV/1paNv9Dn71wyDSepLeWcqdJLlxjpCaJyOlHBO2f8UNC1cKuq+Dh0zDdq Gm9O4IvF21V12Muw3ABwt20CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 362787442867655299425080215367914926801216 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-24 10:02:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-24 10:02:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'galloo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 684130129494228337649157842445677874297365117741752925864144024261726619715502274284014173698103142034875565345497444625537175016484059333866695018262954598422681149823279402604289546229685210046319989510327432929911239875247798709646264899447716765437030069780284606869071013651936373691117575587398743490636298909465982631428594835080183519658113039151720040989350041186442044371712620575485856747949676587340488017321263591486461053928415813148828081420549798979792172125637365640873714333273196626140330889948093103493797589564598264451716492399962993070608887972324419609554973501318606549015205204042100698549168818090826478426258308664721179614144628991176759521939214096145302099543255759283205503554167792512234062538198753177228970732253873985323991804596838989306834262649806591195139927366475874069825362587837268164154833480503772980493737415469573171699290093843006225305241442502571352629082494426014998743992289269609513739395168751316527695514219344752052358979293787477345026946227740661873868192409490169444342355461683005673782572177171965853917771406607206029387730327381960787496169635632034968846532881179516425064590653969055691137877632126119672841102669996848634437602765427569909435873074704217366970021741 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 025271fcd4d3e9e9e2df5c8540ede1a5f5667fd5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'galloo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'galloo.dspdev.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.galloo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018543cc1e9c0000040300473045022037d423fd8d821defb0d751a1d3bc9eda533b3214cac6ad3b4760ff37a3bf8e96022100b76de5dacb2228a4a44f942ea229af6fae6f75cc1570ac609b88fe9ce27b016b007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018543cc20860000040300473045022036db2b5e9bd761b4bd2649d8f47533daec715b1637689045b85081162f359894022100e3e8b5ad9d128d3a705274c93bcd366f448bbb84827ad9cfd1a0b7366090dd05 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 004343eda2907e1dc1e1ca2112b8bfcb28ccdaa8db7475993d7fe0cdbb345808312f5f2907ced53173e68b2516479aa689062820f9b5e3d3a448b87cd2c97ac1e85ec2d7390b7865479ad6ff74c79e6551f335c0b1d029e65cb1b25188e8c1d2b57579cafeb5d1d2b2394ad58e1250a06594bec4036ec7d28ae7ccc019a5683e6dc23b446f00cda165d4336e01788e7cd5b4879ebff03bff5fd229c4227ae12705245dce0b07b13c16f9b2e83553627193a3dcaa899f43ee839f254a9fc346e2175b1c9cc6bd926683070f5c43c43745157a980093bcba227a68803c40a38d0526c71ebb45e4ca726045271fbd1e0cf9265b55500a92f601bde9c9cb1c9abe37e5