heel.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:3c:6f:33:fe:6f:99:d4:ca:26:ba:24:c3:e6:f8:93:be:28 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=heel.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:3c:6f:33:fe:6f:99:d4:ca:26:ba:24:c3:e6:f8:93:be:28Serial Number (int): 369013900017543179152415924222882076671528
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ae:d4:8b:dd:c1:4b:c9:a8:c6:40:c9:63:37:1c:e9:57:7b:e6:4d:7a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 75:82:11:a2:bb:7c:ff:29:f9:f8:3d:60:8f:c5:b1:46:9d:22:72:8a
Fingerprint (sha256): a4:bd:35:09:68:27:73:c7:2f:0b:8f:e4:de:fa:d2:3e:a6:77:55:64:a2:87:6a:ed:a4:1d:2a:61:62:07:8b:a0
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate heel.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for heel.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
heel.de
www.heel.de
www.heel.de
Other certificates including the domain name heel.de
(limited to 100 certificates)
lauf.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
Certificate
The complete raw certificate details for heel.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISBDxvM/5vmdTKJrokw+b4k74oMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMDYwMTQ4MTJaFw0y MDAxMDQwMTQ4MTJaMBIxEDAOBgNVBAMTB2hlZWwuZGUwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQDB28UMueuXD9X7ZpjMll/g9AH6ZdTDUaD+s7mJqma/ A4eRMmU5erZGgAYdHbEiQL4H1/Gfp0xDQgD3IAw9N0lQ1uXP9Uk0K3bOUQ1iKGfd 9xSkkeIXZr6rw01ByHNE+rJQqYCGD12eca3P6A37Cf2jOMmXysXZ1M934PzpZyVQ RRK2GK+tN/KbG47By9GQwY5G6Zv1p/mt2XiJRLTCbrcL9wQFBel6QhqQuc9aEEsJ K/5oHf9F4k1d96kbZzzeGYOZbPN7culypXfGgb5bUUq3I3Zmb78IOzCLz6dVYlLg j9V4ms6xnE+YA8P/WHq/xWB9QSHhSvgkmbXOK0SKJcTmzEzsZ9wblr8PQmYzu7tW VuM17c4FNB+lA2tA48rbtMSJ13HSWcJTCXZz6wjO4OhyABkixbzweSHhUbBo35Eb MKbIztdJUC1wS/BaOk6KzSiAv+nyU/xPpXWf2ag2QVXXaA+w8hibQMjuiHdqjs4e jL3knURGCeIyRfKbWn0hWrM6tUe3X9JMTx3I7sKMO0qQ8nZov3lrgrTasdhaWNnH T8jhRUzgTww8nXQ+wCqyK7XpwcpV+yEx4lOi6vzNbnAfZMW0jx7JCxEPN7/dG0ns 1Y/wSoR99GCiSyn0M3OIRfG2aR/TQuciLqsbCbYtcDNE85MXC6IaDsI5Z0zO7KKN 3QIDAQABo4ICZzCCAmMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSu1IvdwUvJqMZA yWM3HOlXe+ZNejAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggr BgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRz ZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRz ZW5jcnlwdC5vcmcvMB8GA1UdEQQYMBaCB2hlZWwuZGWCC3d3dy5oZWVsLmRlMEwG A1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEW Gmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB8wSB 8ADuAHUA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFtnvekuwAA BAMARjBEAiAtY7Q8MXmk8DwkuI2IfYw1gXOzY4cZxOSnXtRJzpGu3wIgKhkdQPMy N+b2a2ZYE6uBM3cuwpIxioIiYwCQSR1NgsEAdQApPFGWVMg5ZbqqUPxYB9S3b79Y eily3KTDDPTlRUf0eAAAAW2e96SuAAAEAwBGMEQCIErOZiAInbyjp6ilu0hmvbvC vsdlXWqNv6V3lGvTF8nYAiAReg7vbTYW8mguh2i9C3/0eNnA26qQqMWI5uZ1lzA8 KDANBgkqhkiG9w0BAQsFAAOCAQEAXd8+yo8UdlwRSskcI4bQ4WHRQ5NM7wzg6Y6P EdQ75/VSL0YzmQbuJ3JOCx5F8s984/gzGV5IiCKk08jPumVjRTfU0pBFvsf1YxVs svLegyAPOc3aXg3YLkKv+jSjMLYmnLczUy/W1OPmDqnZ2Y+E2V6tteCOxJXywWxe e/WmhifSb2Nsn/Y96g8Y6wb0vDF02cOX4w5Rk+D3oa7j6TNyNow+eIGKp9fh5xUH FKXS3pKTCeh1w55d++TyK2tnXlrmw32wK25uFVC2HPpoD0K8/KfZyJaNZdCMfnPf 65r6MbrLWo2aMgsH35ovqpnC2crXPvNPKoj1c8rfauwlxRPGsA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwdvFDLnrlw/V+2aYzJZf 4PQB+mXUw1Gg/rO5iapmvwOHkTJlOXq2RoAGHR2xIkC+B9fxn6dMQ0IA9yAMPTdJ UNblz/VJNCt2zlENYihn3fcUpJHiF2a+q8NNQchzRPqyUKmAhg9dnnGtz+gN+wn9 ozjJl8rF2dTPd+D86WclUEUSthivrTfymxuOwcvRkMGORumb9af5rdl4iUS0wm63 C/cEBQXpekIakLnPWhBLCSv+aB3/ReJNXfepG2c83hmDmWzze3LpcqV3xoG+W1FK tyN2Zm+/CDswi8+nVWJS4I/VeJrOsZxPmAPD/1h6v8VgfUEh4Ur4JJm1zitEiiXE 5sxM7GfcG5a/D0JmM7u7VlbjNe3OBTQfpQNrQOPK27TEiddx0lnCUwl2c+sIzuDo cgAZIsW88Hkh4VGwaN+RGzCmyM7XSVAtcEvwWjpOis0ogL/p8lP8T6V1n9moNkFV 12gPsPIYm0DI7oh3ao7OHoy95J1ERgniMkXym1p9IVqzOrVHt1/STE8dyO7CjDtK kPJ2aL95a4K02rHYWljZx0/I4UVM4E8MPJ10PsAqsiu16cHKVfshMeJTour8zW5w H2TFtI8eyQsRDze/3RtJ7NWP8EqEffRgoksp9DNziEXxtmkf00LnIi6rGwm2LXAz RPOTFwuiGg7COWdMzuyijd0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 369013900017543179152415924222882076671528 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-06 01:48:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-04 01:48:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'heel.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 790873579568158748962027830569791255023607078537261213939455340102697746437214588124557699946051662258034655616818335301838722855506346523898916523679127675466627407725003612354677460885022026862106781842074644518744188352456663499889352410052096967226284340475924905679949961640493620497268300373057376123747030061243175516867482240189517446605486514799938975809013857765212851263884590684469371112484081365868344305743767599753183736934651285491817730856143461820114756160233597435317523907653439355263193384914402029885344577493986873221850182482915456585217347041985911259793692678420896654457548979199378856110242124096544463582020987990872746515054247649289729447739568869075501360595938583605476608901403422837806396020996787135710287214749408592956284503518987994128603534390672691571565899630807108313233048713542444222048180239192903975590315366097501971798128653865107079105826699320503666635178088379025419475362138084066668126505560709350089414948089985766993517127657097845702565352630602250630580458799797078348867575270942679295673241002265986772705344330188570863087296708898085899711735895777013858711266331295271506770662796424425027861076732677366369606751108751781510552468977837554785452288769737142859634740701 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aed48bddc14bc9a8c640c963371ce9577be64d7a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heel.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heel.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016d9ef7a4bb000004030046304402202d63b43c3179a4f03c24b88d887d8c358173b3638719c4e4a75ed449ce91aedf02202a191d40f33237e6f66b665813ab8133772ec292318a8222630090491d4d82c1007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d9ef7a4ae000004030046304402204ace6620089dbca3a7a8a5bb4866bdbbc2bec7655d6a8dbfa577946bd317c9d80220117a0eef6d3616f2682e8768bd0b7ff478d9c0dbaa90a8c588e6e67597303c28 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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