sculpit.cloud
Issued by R3
About this certificate
This digital certificate with serial number 03:a8:ec:11:19:af:c2:9e:f0:3c:7e:f8:51:58:39:94:b1:71 was issued on by Let's Encrypt.
With 18 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sculpit.cloud
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:a8:ec:11:19:af:c2:9e:f0:3c:7e:f8:51:58:39:94:b1:71Serial Number (int): 318818082035035637807750385458312281108849
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: dd:cc:0b:e9:f1:8f:44:46:5b:7f:a8:67:4f:a8:d7:3f:20:94:e3:c2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 37:22:9e:9b:58:bc:a4:1c:16:bc:c7:85:c3:48:08:ac:12:e2:a3:2c
Fingerprint (sha256): a4:4f:ee:ba:fa:76:40:08:f1:86:52:a0:82:84:61:71:58:f8:95:4e:3d:4b:3b:4f:ce:4e:41:e6:ca:d2:f3:03
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sculpit.cloud
18
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sculpit.cloud
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
albumads.com
almadenrealestate.com
appliedoiltechnologies.com
becomeadigitalmentor.com
berlinlegal.com
cashinginanannuity.com
chandigarhdental.in
covid19treatment.org
fabestates.net
flowergrowers.com
inertialprofiler.com
kansascourt.com
magazinelimiter.com
queerstate.com
sculpit.cloud
seadoodealer.com
texasnetworksystems.com
webele.in
almadenrealestate.com
appliedoiltechnologies.com
becomeadigitalmentor.com
berlinlegal.com
cashinginanannuity.com
chandigarhdental.in
covid19treatment.org
fabestates.net
flowergrowers.com
inertialprofiler.com
kansascourt.com
magazinelimiter.com
queerstate.com
sculpit.cloud
seadoodealer.com
texasnetworksystems.com
webele.in
Other certificates including the domain name sculpit.cloud
(limited to 100 certificates)
5272653.ca
sculpit.cloud
sculpit.cloud
sculpit.cloud
5272653.ca
5272653.ca
5272653.ca
caribooranch.ca
sculpit.cloud
5272653.ca
5272653.ca
allanblock.on.ca
sculpit.cloud
sculpit.cloud
sculpit.cloud
sculpit.cloud
sculpit.cloud
musicoldies.ca
5272653.ca
5272653.ca
slt.co.za
imove.xyz.sculpit.cloud
sculpit.cloud
5272653.ca
musicoldies.ca
sculpit.cloud
sculpit.cloud
overcomersrecovery.ca
5272653.ca
musicoldies.ca
sculpit.cloud
sculpit.cloud
sculpit.cloud
sculpit.cloud
5272653.ca
5272653.ca
5272653.ca
caribooranch.ca
sculpit.cloud
5272653.ca
5272653.ca
allanblock.on.ca
sculpit.cloud
sculpit.cloud
sculpit.cloud
sculpit.cloud
sculpit.cloud
musicoldies.ca
5272653.ca
5272653.ca
slt.co.za
imove.xyz.sculpit.cloud
sculpit.cloud
5272653.ca
musicoldies.ca
sculpit.cloud
sculpit.cloud
overcomersrecovery.ca
5272653.ca
musicoldies.ca
sculpit.cloud
Certificate
The complete raw certificate details for sculpit.cloud in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGQjCCBSqgAwIBAgISA6jsERmvwp7wPH74UVg5lLFxMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTkxMDM1MDFaFw0yNDA4MTcxMDM1MDBaMBgxFjAUBgNVBAMT DXNjdWxwaXQuY2xvdWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh h2M46L+W37MFZVzhCMy834l/AdkHTwnhaoY9MjkXHr75F/slqZ7Kgwc1FDgeRfJa Hbs/8c0IK0TArS07NYMg3OxukHHh3B103t9sbm/gc8lRplH6YvNFjKBGyWJjyVgd 0ZFLzZQp7V29rNitihtXxxSnNZxrt91fS/yB5WE91KuAGFLsEV5yygcRCTAYzIxs dGxfwn1eewGOsEd+14f7A2urudLZ/iFdMwE8ho+TP9XoeSSxE+ck4O2XG23LtQ/5 AKhUaxXAyF6aR40BxDM5O97aggZ2HxbYl7OxWAKRN/7SM9GyENsfUmNbL8Tt3wqb DuMST6gz7O3cfFW+/yPbAgMBAAGjggNqMIIDZjAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFN3MC+nxj0RGW3+oZ0+o1z8glOPCMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MIIBcAYDVR0RBIIBZzCCAWOCDGFsYnVtYWRzLmNvbYIVYWxtYWRlbnJlYWxlc3Rh dGUuY29tghphcHBsaWVkb2lsdGVjaG5vbG9naWVzLmNvbYIYYmVjb21lYWRpZ2l0 YWxtZW50b3IuY29tgg9iZXJsaW5sZWdhbC5jb22CFmNhc2hpbmdpbmFuYW5udWl0 eS5jb22CE2NoYW5kaWdhcmhkZW50YWwuaW6CFGNvdmlkMTl0cmVhdG1lbnQub3Jn gg5mYWJlc3RhdGVzLm5ldIIRZmxvd2VyZ3Jvd2Vycy5jb22CFGluZXJ0aWFscHJv ZmlsZXIuY29tgg9rYW5zYXNjb3VydC5jb22CE21hZ2F6aW5lbGltaXRlci5jb22C DnF1ZWVyc3RhdGUuY29tgg1zY3VscGl0LmNsb3VkghBzZWFkb29kZWFsZXIuY29t ghd0ZXhhc25ldHdvcmtzeXN0ZW1zLmNvbYIJd2ViZWxlLmluMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGPkKI7LAAABAMARzBFAiAjmNdiFbUQfa9a i4Dw75ym+oUPZa5IyUV42YCXgAyuYQIhAI/uT3lpWpbcu9fzIho40m+cjcINnu2E 1TkdhU5pqOu+AHcAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGP kKI7NgAABAMASDBGAiEAsQIGO1njdBanJ8x4CWrEHAzpl+rONXXR6SbcYN9UZrAC IQDZJybALOCLwHXJzdNIUduYmBbWlHnxNfLOzczaoMgPZzANBgkqhkiG9w0BAQsF AAOCAQEAlx+x6hMZwPr94G+rfaTzMNLCCA+WNiB/UdhR0YreE+Civ61AYUbHhive CoNooRZhHUFdhUySkHppp/rR5FeVN3mFur2Rq1Zua3NRjRLJNYxE2APrB/q0LR5R mTNpWrLDkevvI2RloabzH6fAQ5PqDv1e2PGgVmNmFsjgOhsElJ22e+j6wwG7qdbj J6J6FZShODYfNj52xuc0kwt/kUR059pDIDH7keuYKsb6Vlox5Kns8phkS1k4QMHP qWgA+8uCy5olli9mdVPzN96brH2cFOIVOPcz+GMy7wtKq8sD/7t5gVrRi4hyoWi3 9Gq375UeBs+5gj/F1thpHTEoxA5bOw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4YdjOOi/lt+zBWVc4QjM vN+JfwHZB08J4WqGPTI5Fx6++Rf7JameyoMHNRQ4HkXyWh27P/HNCCtEwK0tOzWD INzsbpBx4dwddN7fbG5v4HPJUaZR+mLzRYygRsliY8lYHdGRS82UKe1dvazYrYob V8cUpzWca7fdX0v8geVhPdSrgBhS7BFecsoHEQkwGMyMbHRsX8J9XnsBjrBHfteH +wNrq7nS2f4hXTMBPIaPkz/V6HkksRPnJODtlxtty7UP+QCoVGsVwMhemkeNAcQz OTve2oIGdh8W2JezsVgCkTf+0jPRshDbH1JjWy/E7d8Kmw7jEk+oM+zt3HxVvv8j 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 318818082035035637807750385458312281108849 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-19 10:35:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-17 10:35:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sculpit.cloud' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28470380724827453327420029423253943938639635148874989758904296736563415523012623793380423733718926330580717039452021939305510195016414688198334611370507640023205418889602081946579128351966358672701339649094478453345265735842211160842712514584912788710985083198094388520076419178626472189908607328025742497029260704652617093332488796882537881938475856497514415664519895741844537406551483068843893406478877253883152451428699131363671995345616942285907404632207274467197944809528934445883414987773260395367362317496075344843456996520893151550439404715492209916464119565744219800549757539830162932282609067537479621354459 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ddcc0be9f18f44465b7fa8674fa8d73f2094e3c2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (359 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'albumads.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'almadenrealestate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'appliedoiltechnologies.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'becomeadigitalmentor.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'berlinlegal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cashinginanannuity.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chandigarhdental.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'covid19treatment.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fabestates.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flowergrowers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inertialprofiler.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kansascourt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'magazinelimiter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'queerstate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sculpit.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'seadoodealer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'texasnetworksystems.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webele.in' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f90a23b2c000004030047304502202398d76215b5107daf5a8b80f0ef9ca6fa850f65ae48c94578d98097800cae610221008fee4f79695a96dcbbd7f3221a38d26f9c8dc20d9eed84d5391d854e69a8ebbe0077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f90a23b360000040300483046022100b102063b59e37416a727cc78096ac41c0ce997eace3575d1e926dc60df5466b0022100d92726c02ce08bc075c9cdd34851db989816d69479f135f2cecdccdaa0c80f67 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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