*.returnly.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:88:0d:1b:a2:28:1c:fb:47:da:7c:b8:95:65:b1:00:9b:fc was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.returnly.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:88:0d:1b:a2:28:1c:fb:47:da:7c:b8:95:65:b1:00:9b:fcSerial Number (int): 307632683141417206969699665639680512138236
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c5:2a:c2:56:98:c3:aa:62:aa:b8:91:58:c9:da:ad:0d:cf:77:06:0c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): af:b0:1b:40:80:d8:16:96:40:9d:e5:20:65:0e:bb:2c:da:3e:46:e1
Fingerprint (sha256): a7:13:24:b9:38:55:8c:2f:ef:3b:09:bd:71:c1:54:cd:2e:bf:5d:47:87:52:d4:59:97:ac:fb:08:fa:14:03:f6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate *.returnly.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.returnly.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.returnly.com
Other certificates including the domain name returnly.com
(limited to 100 certificates)
domains.returnly.com
secure0121.hubspot.com
returnly.com
returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
sni.cloudflaressl.com
returnly.com
returnly.com
domains.returnly.com
domains.returnly.com
*.returnly.com
storefront-widget.returnly.com
storefront-widget.returnly.com
domains.returnly.com
returnly.com
secure0121.hubspot.com
blog.returnly.com
api-documentation.returnly.com
blog.returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
secure0121.hubspot.com
blog.returnly.com
secure0121.hubspot.com
blog.returnly.com
info.returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
returnly.com
*.returnly.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
domains.returnly.com
storefront-widget.returnly.com
domains.returnly.com
*.returnly.com
www.returnly.com
domains.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
changelog.returnly.com
*.returnly.com
*.returnly.com
blog.returnly.com
*.returnly.com
info.returnly.com
domains.returnly.com
cf-ingress.returnly.com
blog.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
domains.returnly.com
domains.returnly.com
domains.returnly.com
secure0121.hubspot.com
blog.returnly.com
returnly.com
*.returnly.com
info.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
sni.cloudflaressl.com
blog.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
info.returnly.com
blog.returnly.com
info.returnly.com
*.returnly.com
domains.returnly.com
info.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
changelog.returnly.com
returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
*.returnly.com
*.returnly.com
blog.returnly.com
secure0121.hubspot.com
returnly.com
returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
sni.cloudflaressl.com
returnly.com
returnly.com
domains.returnly.com
domains.returnly.com
*.returnly.com
storefront-widget.returnly.com
storefront-widget.returnly.com
domains.returnly.com
returnly.com
secure0121.hubspot.com
blog.returnly.com
api-documentation.returnly.com
blog.returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
secure0121.hubspot.com
blog.returnly.com
secure0121.hubspot.com
blog.returnly.com
info.returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
returnly.com
*.returnly.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
domains.returnly.com
storefront-widget.returnly.com
domains.returnly.com
*.returnly.com
www.returnly.com
domains.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
changelog.returnly.com
*.returnly.com
*.returnly.com
blog.returnly.com
*.returnly.com
info.returnly.com
domains.returnly.com
cf-ingress.returnly.com
blog.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
domains.returnly.com
domains.returnly.com
domains.returnly.com
secure0121.hubspot.com
blog.returnly.com
returnly.com
*.returnly.com
info.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
sni.cloudflaressl.com
blog.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
info.returnly.com
blog.returnly.com
info.returnly.com
*.returnly.com
domains.returnly.com
info.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
changelog.returnly.com
returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
*.returnly.com
*.returnly.com
blog.returnly.com
Certificate
The complete raw certificate details for *.returnly.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgISA4gNG6IoHPtH2ny4lWWxAJv8MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MTcxNzI0NDNaFw0x OTA5MTUxNzI0NDNaMBkxFzAVBgNVBAMMDioucmV0dXJubHkuY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4e85nM76l1Z096SP8vIanjyldkoqUMjU rQ6tJIfkGC9f2qodY1nSxk60IPv4OwRjS2yrP7svFQVztm8KZ9lBGUNyniqlGEsb 0D3c8Yi2JpDXTVBly5FGxoH9PaJFEp7+KTCi5S0vIOXiraQ6UomhCvE3m7vJHcKj QBWEiMjolXy1FbMBQabmjEHO4wpK1324zhOk5DCiibKgU+pEU8xIF7HmKWDLIK3y OspfmxkdchqsdpjjpQsh7pMZp9lmmZrBCAGD20rUFJH6afC5FpRS1YX7X4DCBx9a 81LGzrjaETYpZDJlb5gxuwLZOPLlBREN54cQ3dHzztgPjHeiw7O4/wIDAQABo4IC YjCCAl4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTFKsJWmMOqYqq4kVjJ2q0Nz3cG DDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRj MGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5v cmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5v cmcvMBkGA1UdEQQSMBCCDioucmV0dXJubHkuY29tMEwGA1UdIARFMEMwCAYGZ4EM AQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0 c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAdH7agzGtMxCR IZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFrZq8nKAAABAMARzBFAiEA4shyAM9d o+UzMNjZ7cG8X66c/lp/z/RP/gaEzWvPiE0CIFJktxYHwd99ZroMnSpQZKijjkoq h2L8wINdm4Ykfj1eAHUAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgA AAFrZq8nFwAABAMARjBEAiAtsXYndgMt5KHt2zAv3kzJLt5AkT4Qrj92+YX8mcCA UQIgPFsdmfAcM3zwdK7XeWf5DWwHWVXyv+DvYwWVttf2atcwDQYJKoZIhvcNAQEL BQADggEBAHltfPCqc4RgdVNF4c87JnqJQPRZ5GwzZhlZ1NxwhvBGVyXgw778Por0 VXlFI+2qmUyEWSrEbD9lmKhoBt3nx9fxLlP7vVoJ9gFkv3NaVmQWlGOMOHzTdp0O qxvPGTAYsIJCkWaUk0dZC5N+ZHsGF9EicaCxNPfvE2+YkX1JRSOk/yR/V23RQlZj facvvM7ui9fCh3+QOxztgw0fOMaUAKxsCw2/v6pAMXsf961UQWy4c9GX4YGSJjL7 HXnbg17TVs7JhB1k81rl9d5zlzjQQwk3Cd4487dhpiH91EPvWBpoRvcI/cQNO3k0 t9sQdkoKJP84P+/y7Z07t80ju+WbRQo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4e85nM76l1Z096SP8vIa njyldkoqUMjUrQ6tJIfkGC9f2qodY1nSxk60IPv4OwRjS2yrP7svFQVztm8KZ9lB GUNyniqlGEsb0D3c8Yi2JpDXTVBly5FGxoH9PaJFEp7+KTCi5S0vIOXiraQ6Uomh CvE3m7vJHcKjQBWEiMjolXy1FbMBQabmjEHO4wpK1324zhOk5DCiibKgU+pEU8xI F7HmKWDLIK3yOspfmxkdchqsdpjjpQsh7pMZp9lmmZrBCAGD20rUFJH6afC5FpRS 1YX7X4DCBx9a81LGzrjaETYpZDJlb5gxuwLZOPLlBREN54cQ3dHzztgPjHeiw7O4 /wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 307632683141417206969699665639680512138236 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-17 17:24:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-15 17:24:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.returnly.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28521584885667407931372989555145564081888536995213105892743119654390605862475650861444777047283585197004094404090897862847690369453471272471400526958801519869061140467938592577078314668453143251015582662022138119298794933329676598628688594508191926851431556806681655636932763649690899286566046237973713795159174267060453673966885936203176980382503966618907298215802398881684656091518064649239399679640101546920448707771650501671043113307123583928824481247932979649914857810594300016153870607744739580494195934970802785888990541633686430210126043966339612063237784932549852618427039080567406885691543701789141523216639 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c52ac25698c3aa62aab89158c9daad0dcf77060c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.returnly.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b66af27280000040300473045022100e2c87200cf5da3e53330d8d9edc1bc5fae9cfe5a7fcff44ffe0684cd6bcf884d02205264b71607c1df7d66ba0c9d2a5064a8a38e4a2a8762fcc0835d9b86247e3d5e007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b66af2717000004030046304402202db1762776032de4a1eddb302fde4cc92ede40913e10ae3f76f985fc99c0805102203c5b1d99f01c337cf074aed77967f90d6c075955f2bfe0ef630595b6d7f66ad7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00796d7cf0aa738460755345e1cf3b267a8940f459e46c33661959d4dc7086f0465725e0c3befc3e8af455794523edaa994c84592ac46c3f6598a86806dde7c7d7f12e53fbbd5a09f60164bf735a56641694638c387cd3769d0eab1bcf193018b082429166949347590b937e647b0617d12271a0b134f7ef136f98917d494523a4ff247f576dd14256637da72fbcceee8bd7c2877f903b1ced830d1f38c69400ac6c0b0dbfbfaa40317b1ff7ad54416cb873d197e181922632fb1d79db835ed356cec9841d64f35ae5f5de739738d043093709de38f3b761a621fdd443ef581a6846f708fdc40d3b7934b7db10764a0a24ff383feff2ed9d3bb7cd23bbe59b450a