endowment.finally.sg
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:1a:a4:69:52:c5:8d:2e:8d:1a:35:fe:a2:40:2e:87:59:d8 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=endowment.finally.sg
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:1a:a4:69:52:c5:8d:2e:8d:1a:35:fe:a2:40:2e:87:59:d8Serial Number (int): 357515025528273488174657299216653221321176
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 15:85:b1:66:52:86:cb:d0:80:0a:fb:1f:24:5b:34:f4:fb:46:ee:0e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 81:db:c7:7d:0a:2b:62:22:c4:6d:6f:e6:e4:b2:d9:59:f5:4d:ed:0d
Fingerprint (sha256): b4:88:19:6b:15:7a:a3:f2:d9:93:ef:56:fb:df:fe:88:b7:d5:91:f7:19:73:8f:43:42:a7:b9:b3:4a:d6:7d:98
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate endowment.finally.sg
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for endowment.finally.sg
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
endowment.finally.sg
Other certificates including the domain name finally.sg
(limited to 100 certificates)
www.finally.sg
stg.finally.sg
finally.sg
stg.finally.sg
endowment.finally.sg
dev.finally.sg
endowment.finally.sg
dev.finally.sg
dev.finally.sg
yabber.finally.sg
dev.finally.sg
www.finally.sg
endowment.finally.sg
yabber.finally.sg
yabber.finally.sg
www.finally.sg
yabber.finally.sg
endowment.finally.sg
stg.finally.sg
prd.finally.sg
yabber.finally.sg
dev.finally.sg
finally.sg
yabber.finally.sg
yabber.finally.sg
uat.finally.sg
www.finally.sg
stg.finally.sg
uat.finally.sg
finally.sg
stg.finally.sg
stg.finally.sg
dev.finally.sg
prd.finally.sg
prd.finally.sg
finally.sg
yabber.finally.sg
dev.finally.sg
stg.finally.sg
endowment.finally.sg
dev.finally.sg
dev.finally.sg
stg.finally.sg
yabber.finally.sg
stg.finally.sg
stg.finally.sg
prd.finally.sg
endowment.finally.sg
endowment.finally.sg
dev.rafa.finally.sg
stg.finally.sg
finally.sg
dev.finally.sg
yabber.finally.sg
stg.finally.sg
finally.sg
stg.finally.sg
endowment.finally.sg
dev.finally.sg
endowment.finally.sg
dev.finally.sg
dev.finally.sg
yabber.finally.sg
dev.finally.sg
www.finally.sg
endowment.finally.sg
yabber.finally.sg
yabber.finally.sg
www.finally.sg
yabber.finally.sg
endowment.finally.sg
stg.finally.sg
prd.finally.sg
yabber.finally.sg
dev.finally.sg
finally.sg
yabber.finally.sg
yabber.finally.sg
uat.finally.sg
www.finally.sg
stg.finally.sg
uat.finally.sg
finally.sg
stg.finally.sg
stg.finally.sg
dev.finally.sg
prd.finally.sg
prd.finally.sg
finally.sg
yabber.finally.sg
dev.finally.sg
stg.finally.sg
endowment.finally.sg
dev.finally.sg
dev.finally.sg
stg.finally.sg
yabber.finally.sg
stg.finally.sg
stg.finally.sg
prd.finally.sg
endowment.finally.sg
endowment.finally.sg
dev.rafa.finally.sg
stg.finally.sg
finally.sg
dev.finally.sg
yabber.finally.sg
Certificate
The complete raw certificate details for endowment.finally.sg in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYjCCBUqgAwIBAgISBBqkaVLFjS6NGjX+okAuh1nYMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MjEwMjI4MDZaFw0x OTExMTkwMjI4MDZaMB8xHTAbBgNVBAMTFGVuZG93bWVudC5maW5hbGx5LnNnMIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmq4RXRwM/LAOkyAvLLXEvXsH ELC2eOWIl8/Aujzy4DNgk83LH1WthvFBUvdyvOjoGTRIEqLYPUvwTa28tDQ5rqvf tNrSI1NaZ3P/HC7cioPjuk3trV742shCt4i4/lPh/HaaBjMJzWoX/0wgveNVIs7H E7gav8SebH/eEBzNhoVBbbwsh/81rzERgCjXK/PgoRVofh1bleOnbrD3xZPDnOpp BNX3y+HbPw59dUw5IBlkCUSkaBxqtg7SywXCow02h/oRnBLTU5xff4aBy9m7T/aD DPCmhGefBjWzaq5wYAFcILTHDh1qAsvYuJcK6F00EBX5O6WHgCM94gvvrfZEa1zn RCT9JG6wyvdJREu7XfPd392fxdGTC5LLDy+zaxpJ1z4MSN+0CknWgbcjnktNPQDC UwNjUXtKcAFZHIKsIOYC/Lb8B6GwLSU2Ae57fCC7s0kBKRSG0OPCg3OWRQT1xlre +o9YS8IGwTyLRmu8reEkvydlqILFP8q+kGEyvKn+Tpb4VZatkj9bONoXX+0VU+8A PmByrk0R7RsKIkgYOCRtDwESAH6Zn7xtZ+mxpNY1EdRbJt+UvG+zvCMNau6MtYQo 1GQHDJXGzayCVi0PHn6ybf1bk9blCtVBOyfo+W49dmkg7fu0oI910Po1HBJPd3Gh IlKp1+hCGjpyevUMQJ0CAwEAAaOCAmswggJnMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUFYWxZlKGy9CACvsfJFs09PtG7g4wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3 pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2Nz cC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2Vy dC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzAfBgNVHREEGDAWghRlbmRvd21lbnQu ZmluYWxseS5zZzBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAo MCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQYGCisG AQQB1nkCBAIEgfcEgfQA8gB3AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgia N9kTAAABbLI3oiYAAAQDAEgwRgIhAIuiUXqfpYUAJDS8tHj6wM8USrP5HJyAjKOY WLBkpNSAAiEAodbvZr69jF4D7xnAMI2tE3ssjgZR6t9MHcF1FkJpuXUAdwBj8tvN 6DvMLM8LcoQnV2szpI1hd4+9daY4scdoVEvYjQAAAWyyN6HyAAAEAwBIMEYCIQCw HV/RQgje6oDRxC7xbFTN4Ehtg2xZeCbh/3I4dghcUgIhAJgN4Hlo99kS8UBIksrB WkwiquBm8cYX8UQOaLJQAyltMA0GCSqGSIb3DQEBCwUAA4IBAQAoklnXgs5AEutw gZj4eKDXslEHNyEDroLMdcDZNd9zjgqIb0QkD62T8VVUyf1zobLzW5JVFhZT86rn 4ZefhXa+C5pXDrbOv1W74gNtZ+wYWwKUWD2rMogmJmWDvlkehLLZOQ1cEphW6aQF qTvjwpWKMH1PBwCP8qx5z2ZMwHjRsd83lk+V22ess3RP13LuI9tErj1o/gB9AkFI Cy7AfFY1hYkiZxR6gHE9Y7mU3X410+a/d0dRtgSy2T7j3n5QGVCO+n6lkynzq7+R MlEZh3WUJIOhopqzXrfTvgtsbq7MYNHfLWk4yg4Xurf2YyTnfrt1UApeN8s8Whp7 rCqXVH7w -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmq4RXRwM/LAOkyAvLLXE vXsHELC2eOWIl8/Aujzy4DNgk83LH1WthvFBUvdyvOjoGTRIEqLYPUvwTa28tDQ5 rqvftNrSI1NaZ3P/HC7cioPjuk3trV742shCt4i4/lPh/HaaBjMJzWoX/0wgveNV Is7HE7gav8SebH/eEBzNhoVBbbwsh/81rzERgCjXK/PgoRVofh1bleOnbrD3xZPD nOppBNX3y+HbPw59dUw5IBlkCUSkaBxqtg7SywXCow02h/oRnBLTU5xff4aBy9m7 T/aDDPCmhGefBjWzaq5wYAFcILTHDh1qAsvYuJcK6F00EBX5O6WHgCM94gvvrfZE a1znRCT9JG6wyvdJREu7XfPd392fxdGTC5LLDy+zaxpJ1z4MSN+0CknWgbcjnktN PQDCUwNjUXtKcAFZHIKsIOYC/Lb8B6GwLSU2Ae57fCC7s0kBKRSG0OPCg3OWRQT1 xlre+o9YS8IGwTyLRmu8reEkvydlqILFP8q+kGEyvKn+Tpb4VZatkj9bONoXX+0V U+8APmByrk0R7RsKIkgYOCRtDwESAH6Zn7xtZ+mxpNY1EdRbJt+UvG+zvCMNau6M tYQo1GQHDJXGzayCVi0PHn6ybf1bk9blCtVBOyfo+W49dmkg7fu0oI910Po1HBJP d3GhIlKp1+hCGjpyevUMQJ0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 357515025528273488174657299216653221321176 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-21 02:28:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-19 02:28:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'endowment.finally.sg' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 631039150450920652585880859402452066157595854991059300025312331765804540731440736452759799138710082049109798081313892930101910326845437652763206991229811634198947981955275776490874206299117940064607107972262452903866453417269107303711315185142797755136599067097981610550135155730335108744390730536589500360830020676907988621450643102079044543147747101081554457114341036364190151877320070492257837720819081614683405188336560108156163367162317577082010697389612390229545966157267199745681242144257561255168675327962679775974530563290650986568595241801024342459624810081965143767241678205230494752222192574052857882674881902169563646737977822949971585918708997991820250518558394265037948626647166664699124787157936367327033951276741487132265961711648426749981145588309436043435320033198603954201556795115489563579206988057751109612277653940835043853685840945367325738225693835703756148319306761945658496907039647371727623701838222141654155124722238189693380361564493302021142401635234917987121133911619811736207078901661454936453587637356587670387923662344299166660846832864922090073574012733338037620722265079389286297797716306676710125607791372627991097465248151196329716339326523755435189579794423794110514659447672088642941268803741 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1585b1665286cbd0800afb1f245b34f4fb46ee0e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'endowment.finally.sg' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016cb237a22600000403004830460221008ba2517a9fa585002434bcb478fac0cf144ab3f91c9c808ca39858b064a4d480022100a1d6ef66bebd8c5e03ef19c0308dad137b2c8e0651eadf4c1dc175164269b97500770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016cb237a1f20000040300483046022100b01d5fd14208deea80d1c42ef16c54cde0486d836c597826e1ff723876085c52022100980de07968f7d912f1404892cac15a4c22aae066f1c617f1440e68b25003296d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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