horvath.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:ee:ac:e6:5e:7f:39:db:41:98:00:8b:d1:0f:6c:03:f1:26 was issued on by Let's Encrypt.
With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=horvath.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ee:ac:e6:5e:7f:39:db:41:98:00:8b:d1:0f:6c:03:f1:26Serial Number (int): 342553884482642947877289540743627756794150
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 56:c4:0f:fc:12:5d:8c:54:ef:d8:ac:ca:fa:fa:5e:53:15:97:7c:6f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 87:fb:6a:ea:56:76:4a:b8:76:d5:8b:d0:b0:12:5c:0c:72:1b:6c:34
Fingerprint (sha256): b6:49:fe:48:84:54:4f:59:2d:bf:92:4c:f1:84:bd:f9:5f:06:82:26:d3:a3:77:b9:b7:14:08:15:40:81:7b:ee
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate horvath.ca
15
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for horvath.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
groovystash.com
groovystash.helpfulhintsforliving.com
hellofuture-one.helpfulhintsforliving.com
hellofuture.one
horvath-ca.helpfulhintsforliving.com
horvath.ca
mail.groovystash.com
mail.hellofuture.one
mail.horvath.ca
www.groovystash.com
www.groovystash.helpfulhintsforliving.com
www.hellofuture-one.helpfulhintsforliving.com
www.hellofuture.one
www.horvath-ca.helpfulhintsforliving.com
www.horvath.ca
groovystash.helpfulhintsforliving.com
hellofuture-one.helpfulhintsforliving.com
hellofuture.one
horvath-ca.helpfulhintsforliving.com
horvath.ca
mail.groovystash.com
mail.hellofuture.one
mail.horvath.ca
www.groovystash.com
www.groovystash.helpfulhintsforliving.com
www.hellofuture-one.helpfulhintsforliving.com
www.hellofuture.one
www.horvath-ca.helpfulhintsforliving.com
www.horvath.ca
Other certificates including the domain name horvath.ca
(limited to 100 certificates)
Certificate
The complete raw certificate details for horvath.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG5zCCBc+gAwIBAgISA+6s5l5/OdtBmACL0Q9sA/EmMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMDkxMTE1MTNaFw0y MDA0MDgxMTE1MTNaMBUxEzARBgNVBAMTCmhvcnZhdGguY2EwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDSRlyz7U643jp/13v53yjZRNDPwuSxuS4/XGGR 2RH+LVv7jbHFKgGAlvi3Ld/qw8fIL5hWj2TPRGwm+CRVABpWBTy594xjPh8ITFHm 1KLZECIVmxfdDG6TfUzP08sMavFk+LGTWsC7Ymcn5PmnAcI22AewKkmFxUNgYHdR 72N6+vuF2h2COWyWhifd2A5CBjxYvPUuK0aLI3bVBjp4uOpDvwkhFEb5541bJeQ2 bogUHBajMK1mo7CFPaSH7N8cIJ4TQtxYJ5DbusyTl1oGlFAd2BuhVmhJYlblGa+A Zm+9yOguYdjHxWbRog6xu5tmgQmER5FV0nwQVmklII1b6+hHAgMBAAGjggP6MIID 9jAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFbED/wSXYxU79isyvr6XlMVl3xvMB8G A1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAu BggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAv BggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8w ggGuBgNVHREEggGlMIIBoYIPZ3Jvb3Z5c3Rhc2guY29tgiVncm9vdnlzdGFzaC5o ZWxwZnVsaGludHNmb3JsaXZpbmcuY29tgiloZWxsb2Z1dHVyZS1vbmUuaGVscGZ1 bGhpbnRzZm9ybGl2aW5nLmNvbYIPaGVsbG9mdXR1cmUub25lgiRob3J2YXRoLWNh LmhlbHBmdWxoaW50c2ZvcmxpdmluZy5jb22CCmhvcnZhdGguY2GCFG1haWwuZ3Jv b3Z5c3Rhc2guY29tghRtYWlsLmhlbGxvZnV0dXJlLm9uZYIPbWFpbC5ob3J2YXRo LmNhghN3d3cuZ3Jvb3Z5c3Rhc2guY29tgil3d3cuZ3Jvb3Z5c3Rhc2guaGVscGZ1 bGhpbnRzZm9ybGl2aW5nLmNvbYItd3d3LmhlbGxvZnV0dXJlLW9uZS5oZWxwZnVs aGludHNmb3JsaXZpbmcuY29tghN3d3cuaGVsbG9mdXR1cmUub25lgih3d3cuaG9y dmF0aC1jYS5oZWxwZnVsaGludHNmb3JsaXZpbmcuY29tgg53d3cuaG9ydmF0aC5j YTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUF BwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIE gfUEgfIA8AB2APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSmsKiqjrJzAAABb4o6 5ZIAAAQDAEcwRQIgXxE1SZUuVkmDdRH72PTew1OhCXUZswPYgC5uypEz2Q4CIQD8 Pn7XQeDMHMa5x1VlKZCqDBqAJieJbPOs06do1rJ10gB2AAe3XBvlfWj/8bDGHSMV x7rmV3xXlLdq7rxhOhpp06IcAAABb4o65boAAAQDAEcwRQIgdruNH+jmNtCWB6dS IzQFdg2gMPvRGRUkOAK781GwF/0CIQDoeRM/xfEQ//MQ/K+68odz+fT+9BSH7+UZ ihoArpT3pzANBgkqhkiG9w0BAQsFAAOCAQEAYPrJkQnyrS07Nv8lvWOA4cBmy+WP pyK5urJmQ6E4mmpRRBEOLa1w86Of0sntjNyWH7FWRi6spfjaNTyZvTwO6RqO+QXW isakalnBc3hUGJ4xUNk3B6CVFDSjMGIOlPdIC+OVJRa1gQnuOoHqnZIKWV91FHqC Ego4bbtzOXE0ZhW3swjAD3zrdXWzUErEi2FzV2HlIY6JkDiAAIc1pBjChe2/vi8m CffkNOWp6Wigs9EYI5dHZ5bzGWTobtYDJl42r9t+BXt3h5jn85UBrsmhsJqgxzsL FfuG3xW1qbNnG+aF4bbLPlY6pQoAHQyXIVkalJJn54QSU5G6OrBM5/3U/A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0kZcs+1OuN46f9d7+d8o 2UTQz8LksbkuP1xhkdkR/i1b+42xxSoBgJb4ty3f6sPHyC+YVo9kz0RsJvgkVQAa VgU8ufeMYz4fCExR5tSi2RAiFZsX3Qxuk31Mz9PLDGrxZPixk1rAu2JnJ+T5pwHC NtgHsCpJhcVDYGB3Ue9jevr7hdodgjlsloYn3dgOQgY8WLz1LitGiyN21QY6eLjq Q78JIRRG+eeNWyXkNm6IFBwWozCtZqOwhT2kh+zfHCCeE0LcWCeQ27rMk5daBpRQ HdgboVZoSWJW5RmvgGZvvcjoLmHYx8Vm0aIOsbubZoEJhEeRVdJ8EFZpJSCNW+vo RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 342553884482642947877289540743627756794150 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-09 11:15:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-08 11:15:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'horvath.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26544740897644505096633466135504710139720208262357942238022585128488798481163544864132269362904759591529344602131077046853360225224384051220321059587713490793277862344037537460227368432523470423700256282316662175328781391977282227023350998031755004389120633542597876816554705184069462162956879366977131260868400721704749175037321149414744459255536598642842790123464020606034629542205329416240825437256677163884756218590318018190529719401805618425734702996747389803119739277448181319911078330052189835548276470651243010816319197476913676533712660954759033657528323980191976189442970181924641940924711374490545892878407 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 56c40ffc125d8c54efd8accafafa5e5315977c6f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (421 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'groovystash.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'groovystash.helpfulhintsforliving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hellofuture-one.helpfulhintsforliving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hellofuture.one' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'horvath-ca.helpfulhintsforliving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'horvath.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.groovystash.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.hellofuture.one' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.horvath.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.groovystash.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.groovystash.helpfulhintsforliving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hellofuture-one.helpfulhintsforliving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hellofuture.one' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.horvath-ca.helpfulhintsforliving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.horvath.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f8a3ae592000004030047304502205f113549952e5649837511fbd8f4dec353a1097519b303d8802e6eca9133d90e022100fc3e7ed741e0cc1cc6b9c755652990aa0c1a802627896cf3acd3a768d6b275d200760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f8a3ae5ba0000040300473045022076bb8d1fe8e636d09607a752233405760da030fbd11915243802bbf351b017fd022100e879133fc5f110fff310fcafbaf28773f9f4fef41487efe5198a1a00ae94f7a7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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