roomag.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d1:69:1a:8b:4c:44:69:24:9f:3e:a7:5c:dd:e3:94:14:d5 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=roomag.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d1:69:1a:8b:4c:44:69:24:9f:3e:a7:5c:dd:e3:94:14:d5Serial Number (int): 332595579246330064225378162951872021009621
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f4:2d:fd:6e:35:c4:f7:36:d7:7e:10:73:fe:d1:d5:74:4d:54:0d:62
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 95:d6:36:1d:f4:ee:3a:8e:d4:5b:cf:90:d4:65:76:ab:0e:cf:3a:ab
Fingerprint (sha256): b1:44:23:3c:12:04:85:aa:80:fd:01:aa:c0:4f:44:24:c4:fe:f2:76:aa:c5:8d:38:c4:82:35:59:1f:76:b6:ee
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate roomag.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for roomag.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
roomag.org
www.roomag.org
www.roomag.org
Other certificates including the domain name roomag.org
(limited to 100 certificates)
roomag.org
roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
roomag.org
angad.roomag.org
roomag.org
roomag.org
roomag.org
roomag.org
nanak.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
nanak.roomag.org
nanak.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
roomag.org
angad.roomag.org
roomag.org
roomag.org
roomag.org
roomag.org
nanak.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
nanak.roomag.org
nanak.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
Certificate
The complete raw certificate details for roomag.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgISA9FpGotMRGkknz6nXN3jlBTVMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDcxNDU4MjBaFw0y MDAzMDYxNDU4MjBaMBUxEzARBgNVBAMTCnJvb21hZy5vcmcwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDJA5xjKbN0t5RolWxdSmIulho2ifVpSkJiz8Zf /aPe1fbnVFiqxu8193nHOvGF8K+TM2qajCjHMdKHRXucvh3eJnOwrAijcqXBlPJW rUdJuqzrwnkG7jknx4F9mZwsz+AYDTbVB1kGAkxlVrryRLv46KiKX4n+9EWYOtiU 9te2qcISrSQ6Le/UNFljZI3UGOSzouQ41gHbfKxzaXDffvVyHp6WVKu8fi7QAzum OX/Z0HR2FbnTYSPa18bnZoaAhQo+BH9okuikVN5wIaE8ZmjwHC8kO1AL574IvGog XXgry5ppR73JtYpWtatZOBfbUHQv2Oioe4vGNuBRGqdoifbxW18TBUMB7JJPCTkG Ax+zgkZItd0xhBMRryFzG2x1wlxTwoZ55WQolZHWBCHXpRpHtFIHkjCRha9T8oba MpLHnH5ye7lrSn71xP1QV6s1y7kql+60lzcfZiyc7M5/8Ez3qMPwR4GI4iO80BzD tzFETW7aGaq1DOGJGFRjtTgNAuzeOnCdmvhnZA3U7Qf+AvcJWyPCqhWfNXyOyt+3 ABH0DuChTLqVOZwH4ks7z0jI2WXY5Pd7pMLLE0eUTm+ndcg56gHW/FAyMh7fSjqT QSriulRIc2WPSCwUZPEwn0Hic87X1ELhJpS+oSHT6n0ocA9bfXj7m4bT1QIFcV7D v2Fe/wIDAQABo4ICbjCCAmowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT0Lf1uNcT3 Ntd+EHP+0dV0TVQNYjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMCUGA1UdEQQeMByCCnJvb21hZy5vcmeCDnd3dy5yb29t YWcub3JnMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHW eQIEAgSB9ASB8QDvAHUAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4A AAFu4RVOewAABAMARjBEAiAb/epDcGSUgGUYtLe3vmTSWdfPc5yCqJ0aKKNWgc1F MgIgEdeyCeew8NRI2qPhpv4VTEvhHsyn89aQNbWfFzdcbkEAdgDwlaRZ8gDRgkAQ LS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW7hFU7XAAAEAwBHMEUCIQCEA5tuK/va wfvV93cJHps6/BnXzEoVW2PmkL8vcaLBmgIgeNTBdmbZj2s7Fo3w3ndFd9BBiHbw b8O/azMoE90yCeMwDQYJKoZIhvcNAQELBQADggEBAGmg/f7IZks7Vwr2hZBC6brn ol13ZiLnMYl58uc7owyFig9n7LXTdhSh0vMhvpL7tIZZfK0xWAeeUgZXssrEIOhd J/J4lTar2BFhUJ4A4v+UNSZl24W6D9T87EesjIv7RyCRhNv5SiUFMmr+fzSZQWAg FMWCwYFHHjLQS39lUTukFX/ApC+UhEOrNeserZzwZ9QPtIu2ncdB7n1FqQDo+Z+i a0F7dcwCmwPNDJBjGTRwr/2VX+UR+EL3eYGJ09FSNVj3tGlH+GVdU8/nITuZ0Hsv 4HXv9c87djmMjhqRaSFNyUhUMe2YWOgHnQyXvrJfQWmbKu96VD/avqmxTaCwL+8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyQOcYymzdLeUaJVsXUpi LpYaNon1aUpCYs/GX/2j3tX251RYqsbvNfd5xzrxhfCvkzNqmowoxzHSh0V7nL4d 3iZzsKwIo3KlwZTyVq1HSbqs68J5Bu45J8eBfZmcLM/gGA021QdZBgJMZVa68kS7 +Oioil+J/vRFmDrYlPbXtqnCEq0kOi3v1DRZY2SN1Bjks6LkONYB23ysc2lw3371 ch6ellSrvH4u0AM7pjl/2dB0dhW502Ej2tfG52aGgIUKPgR/aJLopFTecCGhPGZo 8BwvJDtQC+e+CLxqIF14K8uaaUe9ybWKVrWrWTgX21B0L9joqHuLxjbgURqnaIn2 8VtfEwVDAeySTwk5BgMfs4JGSLXdMYQTEa8hcxtsdcJcU8KGeeVkKJWR1gQh16Ua R7RSB5IwkYWvU/KG2jKSx5x+cnu5a0p+9cT9UFerNcu5KpfutJc3H2YsnOzOf/BM 96jD8EeBiOIjvNAcw7cxRE1u2hmqtQzhiRhUY7U4DQLs3jpwnZr4Z2QN1O0H/gL3 CVsjwqoVnzV8jsrftwAR9A7goUy6lTmcB+JLO89IyNll2OT3e6TCyxNHlE5vp3XI OeoB1vxQMjIe30o6k0Eq4rpUSHNlj0gsFGTxMJ9B4nPO19RC4SaUvqEh0+p9KHAP W314+5uG09UCBXFew79hXv8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 332595579246330064225378162951872021009621 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-07 14:58:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-06 14:58:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'roomag.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 820066001180798118640816793260674072519948571307451040836910940310537673557148913999125251184798442978459931318297049764091327205657412374656845072529349524573795426667771027975882122266531367561062355827576384416932825064017595021968191563405784011759383631999281328920314980352845241393238111447793389207265384064140230454079683289218801198957681631765301427917310420004823238132920932459345756059990592173149616740256035202425461560128975088770106132968584998479599082381627270350508766245481858567837454941802025291471058080056376721585383104788874053532125728158822162312484735503327923474247573791546308385388544411508067987815431235937657294207802783641429654994957734173601677911994477357379437031606929562522676246885856229715552874288935776100861330719345988869323232209156621622361473998026629969237386211571617297764475775163135545761848904941054190960399442049009976418711854910865793886728254906326510787762908125822974476724006827675897712027893561345286882952690780689532564100377157011121309706501617289903668019820047270671114249558904802870146083235056008840786598636248827419954991285604518868528104241974919823246017886556575267539778506334994726967474079225091607926033468204277708122212278193007764991218114303 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f42dfd6e35c4f736d77e1073fed1d5744d540d62 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roomag.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.roomag.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ee1154e7b000004030046304402201bfdea43706494806518b4b7b7be64d259d7cf739c82a89d1a28a35681cd4532022011d7b209e7b0f0d448daa3e1a6fe154c4be11ecca7f3d69035b59f17375c6e41007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016ee1154ed7000004030047304502210084039b6e2bfbdac1fbd5f777091e9b3afc19d7cc4a155b63e690bf2f71a2c19a022078d4c17666d98f6b3b168df0de774577d0418876f06fc3bf6b332813dd3209e3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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