demo-dev.okra.ng
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:32:2c:f4:fa:9f:0d:a9:20:15:32:8c:23:bb:ed:90:c4:2d was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=demo-dev.okra.ng
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:32:2c:f4:fa:9f:0d:a9:20:15:32:8c:23:bb:ed:90:c4:2dSerial Number (int): 278410734176779588427173137256218553795629
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 4e:54:89:f9:48:c7:91:99:fd:57:43:c0:07:ca:d3:92:14:10:18:a0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6e:09:48:6b:e2:0d:33:f6:54:fc:72:a5:60:43:9a:20:d4:b1:ad:45
Fingerprint (sha256): b2:4f:6a:0c:72:84:38:d6:0a:47:9c:35:df:29:23:6b:06:b5:2a:03:f3:e1:30:61:c6:78:6d:2f:83:e0:eb:85
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate demo-dev.okra.ng
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for demo-dev.okra.ng
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
demo-dev.okra.ng
Other certificates including the domain name okra.ng
(limited to 100 certificates)
okra.ng
capture.okra.ng
okr.to
dashboard.okra.ng
support.okra.ng
staging.okra.ng
dashboard.okra.ng
demo-dev.okra.ng
staging-dashboard.okra.ng
docs.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
okra.ng
dev-dashboard.okra.ng
dev.okra.ng
cdn.okra.ng
demo-dev.okra.ng
okra.ng
okr.to
dev-api.okra.ng
demo.okra.ng
widget.okra.ng
okra.ng
cdn.okra.ng
okra.ng
dev-dashboard.okra.ng
staging-api.okra.ng
okra.ng
okra.ng
get.okra.ng
staging-api.okra.ng
bourne-status.wifinity.net
okra.ng
get.okra.ng
bourne-status.wifinity.net
app-test.okra.ng
staging.okra.ng
support.okra.ng
okra.ng
dev-status.okra.ng
demo.okra.ng
dev-api.okra.ng
bourne-status.wifinity.net
staging.okra.ng
dev.okra.ng
dev-dashboard.okra.ng
staging.okra.ng
bourne-status.wifinity.net
widget.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
dev-api.okra.ng
support.okra.ng
dev-api.okra.ng
dashboard.okra.ng
bourne-status.wifinity.net
staging-dashboard.okra.ng
dev-cdn.okra.ng
staging-api.okra.ng
dev.okra.ng
dashboard.okra.ng
docs.okra.ng
widget.okra.ng
demo-dev.okra.ng
dev-dashboard.okra.ng
okra.ng
dev.okra.ng
support.opinionbuyers.com
staging-api.okra.ng
dash.okra.ng
demo-dev.okra.ng
dev.okra.ng
okra.ng
debug.okra.ng
staging-dashboard.okra.ng
dev-api.okra.ng
okra.ng
docs.okra.ng
bourne-status.wifinity.net
demo.okra.ng
okra.ng
bourne-status.wifinity.net
demo.okra.ng
dash.okra.ng
demo-dev.okra.ng
okra.ng
bourne-status.wifinity.net
capture.okra.ng
okr.to
dashboard.okra.ng
support.okra.ng
staging.okra.ng
dashboard.okra.ng
demo-dev.okra.ng
staging-dashboard.okra.ng
docs.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
okra.ng
dev-dashboard.okra.ng
dev.okra.ng
cdn.okra.ng
demo-dev.okra.ng
okra.ng
okr.to
dev-api.okra.ng
demo.okra.ng
widget.okra.ng
okra.ng
cdn.okra.ng
okra.ng
dev-dashboard.okra.ng
staging-api.okra.ng
okra.ng
okra.ng
get.okra.ng
staging-api.okra.ng
bourne-status.wifinity.net
okra.ng
get.okra.ng
bourne-status.wifinity.net
app-test.okra.ng
staging.okra.ng
support.okra.ng
okra.ng
dev-status.okra.ng
demo.okra.ng
dev-api.okra.ng
bourne-status.wifinity.net
staging.okra.ng
dev.okra.ng
dev-dashboard.okra.ng
staging.okra.ng
bourne-status.wifinity.net
widget.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
dev-api.okra.ng
support.okra.ng
dev-api.okra.ng
dashboard.okra.ng
bourne-status.wifinity.net
staging-dashboard.okra.ng
dev-cdn.okra.ng
staging-api.okra.ng
dev.okra.ng
dashboard.okra.ng
docs.okra.ng
widget.okra.ng
demo-dev.okra.ng
dev-dashboard.okra.ng
okra.ng
dev.okra.ng
support.opinionbuyers.com
staging-api.okra.ng
dash.okra.ng
demo-dev.okra.ng
dev.okra.ng
okra.ng
debug.okra.ng
staging-dashboard.okra.ng
dev-api.okra.ng
okra.ng
docs.okra.ng
bourne-status.wifinity.net
demo.okra.ng
okra.ng
bourne-status.wifinity.net
demo.okra.ng
dash.okra.ng
demo-dev.okra.ng
okra.ng
bourne-status.wifinity.net
Certificate
The complete raw certificate details for demo-dev.okra.ng in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgISAzIs9PqfDakgFTKMI7vtkMQtMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MTUxMTM4MzJaFw0x OTEyMTQxMTM4MzJaMBsxGTAXBgNVBAMTEGRlbW8tZGV2Lm9rcmEubmcwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3QZj7sW0VntoyJbBDy1+q2X9Bcq9t 5/+K0Wq7B21W4IrR+gvej4QJ4ZjhOhCKC5ljglliwJSgsu8nXiTZYbc5PxMnWjiw cvO7ICITOCiP/zffmw+76DESb3kcsrnh4qe3lEH/Ob53VzHp/bHKXAj7YgYZAmq/ 1otJD3Qfg6SXcyJuyTCFhh7hpjoNVdGsWvR/G9z0o5eB030onhpPMNixAtiExAOo jouKLTA5yDntWqSCsqhHd77Kbtc2nUSfykqgQ5nOww14ZKWjebzx3H2v/igt/tTR ENh7thrcWe5M3IwPFaUacNbkh0rSO+yycb1C+eqFe+q0qXIKBqNXCaDvAgMBAAGj ggJkMIICYDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFE5UiflIx5GZ/VdDwAfK05IU EBigMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEB BGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wGwYDVR0RBBQwEoIQZGVtby1kZXYub2tyYS5uZzBMBgNVHSAERTBDMAgG BmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3Bz LmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2AOJpS64m 6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d8dv+AAABbTTukFoAAAQDAEcwRQIgUp+8 BiENE/GgZuZMi1bPXqzIrj7vzTH6iOp/OjkiucwCIQDANdPYhJBwkchSGepwlcbQ NsEwh9wUzXJKO3VN7HeGvwB1AGPy283oO8wszwtyhCdXazOkjWF3j711pjixx2hU S9iNAAABbTTujogAAAQDAEYwRAIgGMD3FEd5D3e3R2WIUr3kx+RgKEgRqHCKHv3M d74fJdECIAgdcBTcAcm1wwkwa/nv+7M0vLc1BAl703TlmXU3gAvKMA0GCSqGSIb3 DQEBCwUAA4IBAQAvs+WGn9OpMAG0x75h4m+UMwwYFi7ZGtHMlHXd4+LG+yUuMCB1 P8rrl+6WFJe4X07W/8TNkseiCXnKtx0081zeF9lWHpVpixTWZRga2V2S9ID5BE1O nnRvS/1nV0vA9+6lxQD0zvALsi2DlKta0tvmWNGrps8TCHVFVqz0jo+eKvTOAnJw ZE2XmDW133oaWp59d4HqcNsV+RfGacbZoS9ptPlQUoBgaAhp+RhEIh+w5WpjZluI 41s7ixvnmFIXRZo7lpFZxnCQA0Cn5no0J2KW1glI7dzLe30quN6tOXIzXfrKLHRT H9kYDDdn4BsX/Gt1y4GJKex5laAGb/RSXUsv -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0GY+7FtFZ7aMiWwQ8tf qtl/QXKvbef/itFquwdtVuCK0foL3o+ECeGY4ToQiguZY4JZYsCUoLLvJ14k2WG3 OT8TJ1o4sHLzuyAiEzgoj/8335sPu+gxEm95HLK54eKnt5RB/zm+d1cx6f2xylwI +2IGGQJqv9aLSQ90H4Okl3MibskwhYYe4aY6DVXRrFr0fxvc9KOXgdN9KJ4aTzDY sQLYhMQDqI6Lii0wOcg57VqkgrKoR3e+ym7XNp1En8pKoEOZzsMNeGSlo3m88dx9 r/4oLf7U0RDYe7Ya3FnuTNyMDxWlGnDW5IdK0jvssnG9QvnqhXvqtKlyCgajVwmg 7wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 278410734176779588427173137256218553795629 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-15 11:38:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-14 11:38:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demo-dev.okra.ng' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23133957186283067651108596235578557622428137638748359361024981954225509285480754707169982480420516154098190446156594189057281294846482612189687309306023538284960438143087439755890213144964430835063024905575507114116657261162069468404916295115814111598783056926263822938629821487288739356390991100926991432993069020015527615780250989247776709525186414372082930607563280153192087190615455177727921208672925037381506449144811119662975446238639644943328932731697265211033035991709812194297533829290266031024358663503742563638678100193585409671737176118102872347476893581904007619202948620134849199136289028117716554850543 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4e5489f948c79199fd5743c007cad392141018a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo-dev.okra.ng' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d34ee905a00000403004730450220529fbc06210d13f1a066e64c8b56cf5eacc8ae3eefcd31fa88ea7f3a3922b9cc022100c035d3d884907091c85219ea7095c6d036c13087dc14cd724a3b754dec7786bf00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d34ee8e880000040300463044022018c0f71447790f77b747658852bde4c7e460284811a8708a1efdcc77be1f25d10220081d7014dc01c9b5c309306bf9effbb334bcb73504097bd374e5997537800bca . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002fb3e5869fd3a93001b4c7be61e26f94330c18162ed91ad1cc9475dde3e2c6fb252e3020753fcaeb97ee961497b85f4ed6ffc4cd92c7a20979cab71d34f35cde17d9561e95698b14d665181ad95d92f480f9044d4e9e746f4bfd67574bc0f7eea5c500f4cef00bb22d8394ab5ad2dbe658d1aba6cf1308754556acf48e8f9e2af4ce027270644d979835b5df7a1a5a9e7d7781ea70db15f917c669c6d9a12f69b4f950528060680869f91844221fb0e56a63665b88e35b3b8b1be7985217459a3b969159c670900340a7e67a34276296d60948eddccb7b7d2ab8dead3972335dfaca2c74531fd9180c3767e01b17fc6b75cb818929ec7995a0066ff4525d4b2f