www.rpz.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:88:fd:1b:70:52:4d:ae:c2:82:de:39:ac:23:ec:ea:27:dc was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.rpz.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:88:fd:1b:70:52:4d:ae:c2:82:de:39:ac:23:ec:ea:27:dcSerial Number (int): 307951696849627761679640085734015038531548
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b2:5e:7d:d9:2a:58:0d:a8:ce:3d:e2:62:3e:19:4d:ff:de:80:bb:76
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 43:cb:3f:07:5a:bf:cd:08:9a:a9:ec:45:3f:b1:58:b3:54:2b:86:14
Fingerprint (sha256): a2:73:e2:08:bf:fc:32:36:4f:1a:8e:ca:3c:58:30:e9:01:28:2e:be:36:7a:37:e7:18:1a:f6:98:c0:18:d4:fc
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.rpz.cz
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.rpz.cz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rpz.cz
rrgpraha.cz
www.renaultretailgroup.cz
www.rpz.cz
www.rrgpraha.cz
rrgpraha.cz
www.renaultretailgroup.cz
www.rpz.cz
www.rrgpraha.cz
Other certificates including the domain name rpz.cz
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.rpz.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGjTCCBXWgAwIBAgISA4j9G3BSTa7Cgt45rCPs6ifcMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MDgwNzAzNTFaFw0x OTEwMDYwNzAzNTFaMBUxEzARBgNVBAMTCnd3dy5ycHouY3owggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDi05F0B1kNGFSJ9BEi2eIHRuwJ4p3dPaFWdvzs aw8eb9VLib8yaNIRWvtg2bhqYsAeZwPn8aW1/zRS2JoHLpZFDp2yLbtwlKvLQMPA kPYmrnUKVE+abFrNxhUPuvLURnaVlzLtckrT53joLeWKqeUV5qUWm/HyvW0FLeLP s4vRkHfXo6makJg1G+4+5QkgsRemdQV4WAekCtu9dVuDWFMzprGh7+A9gECzvd93 hSG5Lyzi0zjcxYnScd07GJ2+g6fh9ch/1grM/Gr1ueWVAY8tlOv28Y7lSHYZQpTe aOsi21kLrnyC4Cy1daeJxbACQbY6x0T6TdgCBsy1JYW2xfNyeC9gb2n0uu43+yub ZgdjOKCRBVe05Z32t9EZ8LXOzC+OWI60AUqCgoJBZWxvCLyH9p8Rc82nnYTTlJGL mQKrTS/jp+4o+87ZZEIEJatJGgzYM5RCa8tjALhbyCphMkP8aAnzBRyn82U7YxKS 7hBeg/i5fUDD3KtdWi+q64oxQcBuMPgYm5J9xURM45hXgWAMfimysEoYZzYk3rJU WSZOEFLvMsMB34C3H4QgPWOXp9YkiRdq8mGPZxAa0Rbgk4CWWLJzo89NYi4tPzQP p7kJcEr8etmHcctvpLXy55RnZfBHrojiw1IMtbtVK9pEb9NdRvceXqVizdi0IiDI /AIZ0wIDAQABo4ICoDCCApwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSyXn3ZKlgN qM494mI+GU3/3oC7djAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMFYGA1UdEQRPME2CBnJwei5jeoILcnJncHJhaGEuY3qC GXd3dy5yZW5hdWx0cmV0YWlsZ3JvdXAuY3qCCnd3dy5ycHouY3qCD3d3dy5ycmdw cmFoYS5jejBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYG CCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB 1nkCBAIEgfUEgfIA8AB1AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d8dv+ AAABa9CcSYcAAAQDAEYwRAIgJ24lzgPFLNwhTIn//NDi1YO8PWfw+ai7xQDJbx5r TrcCIGm4ZtZBq7QTqhC1D9PAPIyW9f3aUaSYx8hCW424qhj+AHcAKTxRllTIOWW6 qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFr0JxJrQAABAMASDBGAiEApc5ASGAC vdVmLkG/0QRmXrgLhepNuGQ8U/NbINtIZRMCIQCnRsIpvY/FwLlGO0AtT4DhArJA oeRf987ODvFaTxTnwTANBgkqhkiG9w0BAQsFAAOCAQEAB3TfHxixbvJjyfeks5Ed +3U7QO8Btqoa3HQi0yBsjIFLjze8MIJmcFxW7NW/SeAY+EljTLcS9/rvJ8JEIpwu F6f00e64ZFJzGqPpfLAg/59vcg9EaePxWkt2OV5YtPnOkC8xafTDAGf8l/R3HA7i /zzgFp17Zq7rE58yWlJEkwpeMEYtpICSD7FapMAuHlI1cI73CdMV/Mmx17EctL6w LNINeWjQaThGMb7fmvDuv8XVhR1JbJK6j1hu23fTesQ8+QYoXKXxQnH7cOFgHYYa Dw1b6wmFsgEkXHZJoVsZcqyDkvbUfCcYdY9iP1XTsQJu1YDco6AiG2EtN43iCoMs wA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4tORdAdZDRhUifQRItni B0bsCeKd3T2hVnb87GsPHm/VS4m/MmjSEVr7YNm4amLAHmcD5/Gltf80UtiaBy6W RQ6dsi27cJSry0DDwJD2Jq51ClRPmmxazcYVD7ry1EZ2lZcy7XJK0+d46C3liqnl FealFpvx8r1tBS3iz7OL0ZB316OpmpCYNRvuPuUJILEXpnUFeFgHpArbvXVbg1hT M6axoe/gPYBAs73fd4UhuS8s4tM43MWJ0nHdOxidvoOn4fXIf9YKzPxq9bnllQGP LZTr9vGO5Uh2GUKU3mjrIttZC658guAstXWnicWwAkG2OsdE+k3YAgbMtSWFtsXz cngvYG9p9LruN/srm2YHYzigkQVXtOWd9rfRGfC1zswvjliOtAFKgoKCQWVsbwi8 h/afEXPNp52E05SRi5kCq00v46fuKPvO2WRCBCWrSRoM2DOUQmvLYwC4W8gqYTJD /GgJ8wUcp/NlO2MSku4QXoP4uX1Aw9yrXVovquuKMUHAbjD4GJuSfcVETOOYV4Fg DH4psrBKGGc2JN6yVFkmThBS7zLDAd+Atx+EID1jl6fWJIkXavJhj2cQGtEW4JOA lliyc6PPTWIuLT80D6e5CXBK/HrZh3HLb6S18ueUZ2XwR66I4sNSDLW7VSvaRG/T XUb3Hl6lYs3YtCIgyPwCGdMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 307951696849627761679640085734015038531548 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-08 07:03:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-06 07:03:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.rpz.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 925371133033043137101492023796207750973176590940042542777841606892852834412683093807011008934738438314495716885910121884193213746245756051807878344616977723756260162790163783693609731782629631597390058617288994776014920711480232622133139312772872941709058075378309083743465342468868244559921656296387772429261658023993636047683976027191036184632873184764566493118033600444649140851464998040336822714911048977184057057888556905657628900506154489625673566317866141075416876506718869697296787737411502402831199760673011562767821684646452399993923278929256901761617667541239909725034578237027623705905174633037039882213352017436066087809518562143797671467853328190433987542468179223442467904809886449386973260845316795687155562821770152818561912248764849070935074302486166278776200282173876297805038314466974012831508063633580336996622643202947656804415927351065388207167846623020774747903214658264878219701115151836475084557800033636531764766580144901900178825749785719567339139643133890565044494284785669722649999485933956696816116237544220036026800464480693224622360693002620574242754081687143497221218847258967553625483112996885553730493702305952244621829300148270417297821168387520410946339218811681728686164642835280070577695627731 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b25e7dd92a580da8ce3de2623e194dffde80bb76 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rpz.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rrgpraha.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.renaultretailgroup.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rpz.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rrgpraha.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016bd09c498700000403004630440220276e25ce03c52cdc214c89fffcd0e2d583bc3d67f0f9a8bbc500c96f1e6b4eb7022069b866d641abb413aa10b50fd3c03c8c96f5fdda51a498c7c8425b8db8aa18fe007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016bd09c49ad0000040300483046022100a5ce40486002bdd5662e41bfd104665eb80b85ea4db8643c53f35b20db486513022100a746c229bd8fc5c0b9463b402d4f80e102b240a1e45ff7cece0ef15a4f14e7c1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000774df1f18b16ef263c9f7a4b3911dfb753b40ef01b6aa1adc7422d3206c8c814b8f37bc308266705c56ecd5bf49e018f849634cb712f7faef27c244229c2e17a7f4d1eeb86452731aa3e97cb020ff9f6f720f4469e3f15a4b76395e58b4f9ce902f3169f4c30067fc97f4771c0ee2ff3ce0169d7b66aeeb139f325a5244930a5e30462da480920fb15aa4c02e1e5235708ef709d315fcc9b1d7b11cb4beb02cd20d7968d069384631bedf9af0eebfc5d5851d496c92ba8f586edb77d37ac43cf906285ca5f14271fb70e1601d861a0f0d5beb0985b201245c7649a15b1972ac8392f6d47c2718758f623f55d3b1026ed580dca3a0221b612d378de20a832cc0