bandraum.rockt.es
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:27:0f:f1:01:39:d1:83:8c:79:42:f4:5f:7d:9c:25:9b:d5 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bandraum.rockt.es
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:27:0f:f1:01:39:d1:83:8c:79:42:f4:5f:7d:9c:25:9b:d5Serial Number (int): 274629059893540276913163297676284217629653
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: af:92:c3:96:b7:70:31:cf:45:f1:0f:bb:92:6e:1e:b5:46:e4:4a:09
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 91:7e:37:d3:6c:fa:2c:99:9c:4e:06:dd:74:55:aa:57:ac:f4:a9:b5
Fingerprint (sha256): a5:71:65:d4:a3:14:b7:cd:c0:d9:d9:b1:b3:7f:88:79:8f:d6:6b:1f:d5:c7:3b:29:19:c1:a0:ef:0e:28:d7:c8
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate bandraum.rockt.es
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bandraum.rockt.es
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bandraum.rockt.es
Other certificates including the domain name rockt.es
(limited to 100 certificates)
bandraum.rockt.es
webstore.einsatzdisplay.de
unobama.lima-city.de
config.rockt.es
www.webprogram.lima-city.de
www.schraberg-golden.de.cool
www.schnittlauchgang.rockt.es
www.iniquitius.lima-city.de
mail.rockt.es
mail.rockt.es
www.iniquitius.lima-city.de
bandraum.rockt.es
www.schnittlauchgang.rockt.es
bandraum.rockt.es
bandraum.rockt.es
*.metz-bagetz.de
bandraum.rockt.es
www.schnittlauchgang.rockt.es
www.schnittlauchgang.rockt.es
www.schnittlauchgang.rockt.es
www.xn--berclub-m2a.de
www.englert-ip.de
*.mylychees.de
bandraum.rockt.es
*.rdoffice.de
webshop.eishorn.de
webmelaa.lima-city.de
todr6546.lima-city.de
www.schnittlauchgang.rockt.es
webstore.einsatzdisplay.de
unobama.lima-city.de
config.rockt.es
www.webprogram.lima-city.de
www.schraberg-golden.de.cool
www.schnittlauchgang.rockt.es
www.iniquitius.lima-city.de
mail.rockt.es
mail.rockt.es
www.iniquitius.lima-city.de
bandraum.rockt.es
www.schnittlauchgang.rockt.es
bandraum.rockt.es
bandraum.rockt.es
*.metz-bagetz.de
bandraum.rockt.es
www.schnittlauchgang.rockt.es
www.schnittlauchgang.rockt.es
www.schnittlauchgang.rockt.es
www.xn--berclub-m2a.de
www.englert-ip.de
*.mylychees.de
bandraum.rockt.es
*.rdoffice.de
webshop.eishorn.de
webmelaa.lima-city.de
todr6546.lima-city.de
www.schnittlauchgang.rockt.es
Certificate
The complete raw certificate details for bandraum.rockt.es in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgISAycP8QE50YOMeUL0X32cJZvVMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTMwMTExMTlaFw0y MDAxMTEwMTExMTlaMBwxGjAYBgNVBAMTEWJhbmRyYXVtLnJvY2t0LmVzMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvt7J6PaPBCJShjOzTNPQBtQ2GGfe wu7JOIocM+6uEv91Mq7SQips8B6RokJJVZYMsltiqmzNEDEbUoN74H/wvbaYAt8A 7O4LQCXo+O/aE6yzwzzloEURLgevuR5g9uIR82hIuu3sUdCKBQlOM4SYD3xP2ZL9 T8wJa2khyPdI6ZBX3++d+UAzmLFG4zkZbehLfQPmZtkYtP78lvfqLJl6fcF5WME5 p1tjCmgF3lkDrkeTD5vjapiLzIuK2jdsfOW5Mp9fTYfNqffUD5T9S6jDbOUYgNAm P4R6C2OXA2xh9cpgJ6aADi7XslQKO9UTwq/rLGIbahyYhKBZC6w5oia0ryhwKdc1 wfjOZ7iOqe9mqfHTu7DHqF0IQJEiRNYKWPjNRHnUj7fcOTu8BMMdGwRRZoQ+97Vb hQNLq4mMMWQYktGkUXwz2Ip/XwR+EaZj7B97bt9Wr5ZMYbf+fj5pWuPf+LcmE++z IN+ICuq5hO2FLywaDucRl1+gqynBWxauNJixksftlCOrxatCqGiZgf8pBI9s6LUt uKR2/CYg4R3eivAKkMqJXpZpgmL6NYdblwrJ8puKUtdsOHaIOxjHHiFeOwPKJ2u0 Di5R12uz+nQq/qfnK1CkgAs4lDbnU56RYuRs2+Hkavlt8Ad/VGPIcWagOcKHZBNZ /3fsmIn11VjrJ5ECAwEAAaOCAmYwggJiMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU r5LDlrdwMc9F8Q+7km4etUbkSgkwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl 7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzAcBgNVHREEFTATghFiYW5kcmF1bS5yb2Nr dC5lczBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkC BAIEgfUEgfIA8AB2ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3vi5BeAAAB bcLiYnEAAAQDAEcwRQIhAOj6aFG6Cr9qL3bTXRk5snm1VDc/AJAOrVOYKtLEAAlT AiBsONPOCEKsRQ2+TkFnnWRmAwTdifujDMx4AN1aGMBUQAB2AG9Tdqwx8DEZ2JkA pFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABbcLiYqUAAAQDAEcwRQIhAN4OYjiPqae9 oE/fGZ1S7XJQ8BnwZPMu2KEPEbb3Z+9WAiAY1hu58BDxFZlDecLdbOndvTvHd46M G1yfzDkYm6JY8TANBgkqhkiG9w0BAQsFAAOCAQEAiQsq/Nc/F4ihboe0aTgQPsCO RcGoioqoWx7IIEd4zD/lzIeXArbuzSE+Nt2n+/IC+abqq7vTG3WS6OdDaXV05HFj GjCpYVVb2yJWFzlJ1V+UvajALGQoFowPWhhQEqGmzYPt0bugEZDM1yHWfPYs12Lc 8V0Ud7Y8i81pYsJI8wLS0qilWIqlxaeej6fS4Srhku+F5qAIRIHvp1bF3d6Ol/1c PgIeJQpc1nByb7puOfJnx1xtMMgYUPVjjYLkmJIqMBXqMa9AllEoy0fwi2I/5k2J g0V7PL+1BooYFX+TQonJQ3IDd6dHSK+UJickmgPjazr0a02AGaDGm1GmBj7zSg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvt7J6PaPBCJShjOzTNPQ BtQ2GGfewu7JOIocM+6uEv91Mq7SQips8B6RokJJVZYMsltiqmzNEDEbUoN74H/w vbaYAt8A7O4LQCXo+O/aE6yzwzzloEURLgevuR5g9uIR82hIuu3sUdCKBQlOM4SY D3xP2ZL9T8wJa2khyPdI6ZBX3++d+UAzmLFG4zkZbehLfQPmZtkYtP78lvfqLJl6 fcF5WME5p1tjCmgF3lkDrkeTD5vjapiLzIuK2jdsfOW5Mp9fTYfNqffUD5T9S6jD bOUYgNAmP4R6C2OXA2xh9cpgJ6aADi7XslQKO9UTwq/rLGIbahyYhKBZC6w5oia0 ryhwKdc1wfjOZ7iOqe9mqfHTu7DHqF0IQJEiRNYKWPjNRHnUj7fcOTu8BMMdGwRR ZoQ+97VbhQNLq4mMMWQYktGkUXwz2Ip/XwR+EaZj7B97bt9Wr5ZMYbf+fj5pWuPf +LcmE++zIN+ICuq5hO2FLywaDucRl1+gqynBWxauNJixksftlCOrxatCqGiZgf8p BI9s6LUtuKR2/CYg4R3eivAKkMqJXpZpgmL6NYdblwrJ8puKUtdsOHaIOxjHHiFe OwPKJ2u0Di5R12uz+nQq/qfnK1CkgAs4lDbnU56RYuRs2+Hkavlt8Ad/VGPIcWag OcKHZBNZ/3fsmIn11VjrJ5ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 274629059893540276913163297676284217629653 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-13 01:11:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 01:11:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bandraum.rockt.es' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 778682758248793769158752967947092327586359689728679678764790718783864614422469445295178726859804304769000622991051052627711267615139505577639432231456987420672022534281343276356137604331516843785457255478706712796739371476289118086952638925370724751819395925845082606749759456701792693829666150195166052388102360895529506777201200322846404617777853277399138700632277646645755849542268574523198489023458466415648227316493745643800259686967744155182573671586037560199822153783207978773228924626839602861060097562831317669654186463955103549948649183168016301624428986393837543030649190891024491590421366160020475536482520119444108504661778263479906741033411575376520296266421348757408006168577556153268374532682277139054640940516741398375970519819818665907517442408385687492332053361731740419564771088396483091188567835424547981995765487014669410973489743651245872370382662881907388817697511411474224355421165734638589735464648472350576397608439928817044943656526457603188880240317588433749052272013016464233878532936254669062494309320997898982027486824630216331996514477531561745286358735588397295647853717843221213167073362246647983271128606139326894725082166105183212443528484936292726309439045881841169501336615293974355015249897361 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) af92c396b77031cf45f10fbb926e1eb546e44a09 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bandraum.rockt.es' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dc2e262710000040300473045022100e8fa6851ba0abf6a2f76d35d1939b279b554373f00900ead53982ad2c400095302206c38d3ce0842ac450dbe4e41679d64660304dd89fba30ccc7800dd5a18c054400076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016dc2e262a50000040300473045022100de0e62388fa9a7bda04fdf199d52ed7250f019f064f32ed8a10f11b6f767ef56022018d61bb9f010f115994379c2dd6ce9ddbd3bc7778e8c1b5c9fcc39189ba258f1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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