jaborandi.sp.gov.br
Issued by R3
About this certificate
This digital certificate with serial number 03:f4:50:e9:df:be:fc:ff:7c:c7:69:33:5a:97:84:a4:e3:9b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=jaborandi.sp.gov.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f4:50:e9:df:be:fc:ff:7c:c7:69:33:5a:97:84:a4:e3:9bSerial Number (int): 344473307906929548489448490710893961995163
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 06:6a:08:3e:5f:b8:34:4d:b5:f1:64:56:fe:b3:c3:0e:15:ee:f9:63
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 7f:b3:b7:46:a4:4b:59:5a:32:a8:cc:6f:cf:a0:0e:27:ea:88:8e:8e
Fingerprint (sha256): b6:a4:48:57:c4:bb:40:9b:cf:36:cf:c3:63:21:d4:ac:b6:ab:86:da:9c:21:2b:e1:cf:f9:40:22:ac:fe:c8:34
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate jaborandi.sp.gov.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for jaborandi.sp.gov.br
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
jaborandi.sp.gov.br
www.jaborandi.sp.gov.br
www.jaborandi.sp.gov.br
Other certificates including the domain name jaborandi.sp.gov.br
(limited to 100 certificates)
microtechmeet.se
jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
jaborandi.sp.gov.br
ctech.jaborandi.sp.gov.br
apriori.ai
*.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
*.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
atmaspace.ru
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
malkaesther.com
www.vurgunav.com
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
flyland.ai
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
cv.jaborandi.sp.gov.br
malkaesther.com
win.monforte.it
jaborandi.sp.gov.br
jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
jaborandi.sp.gov.br
ctech.jaborandi.sp.gov.br
apriori.ai
*.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
*.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
atmaspace.ru
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
malkaesther.com
www.vurgunav.com
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
flyland.ai
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
jaborandi.sp.gov.br
cv.jaborandi.sp.gov.br
malkaesther.com
win.monforte.it
jaborandi.sp.gov.br
jaborandi.sp.gov.br
ipasp.jaborandi.sp.gov.br
Certificate
The complete raw certificate details for jaborandi.sp.gov.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDDCCBPSgAwIBAgISA/RQ6d++/P98x2kzWpeEpOObMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMzAxMTA5MTRaFw0yNDAxMjgxMTA5MTNaMB4xHDAaBgNVBAMT E2phYm9yYW5kaS5zcC5nb3YuYnIwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK AoICAQDA9xRLsfBRe7Y3eOBldsQXWItMDnrAqKe0mhdrQ+ocEwRCjb0dyf2LN+/T DHD5jAwpYB3Oy5HGiP7YY34HvZS5oKCuOn2OFsIWurIZFkft3BcInAlJ86dcB/p8 Zdi0ARhcxxuLD/T1CoN8WcvuS/ym4Sw3+Gc7hJB8+O30uNDfgseORd3xIFEucZD4 9HzaSFzOU4/jZu//vtbFThpuSiDXB8DH46sQImTMBSv58O1m6lA65/Pyebt4mFna cPetsP70byzorxwigoCdE6JKSxAQbLWm0+U7rHl6nJvgfy2EO2hndJfUJkXLO7lr y/w5QZl8He2ntoejn0G2je0ziZut7Yer9V/3XeajiYQHmmLOWkBmuITjkH8M4YJ3 uQrPfPmXMNK2qro4YWp5NdSsfRyDpe7l2i8kjBt7pLoS08fw9LAGhS7TV20qPbug ey7LUUoWyMn4HH4qviVTicxFQIP2OfcCUbHvlzqJOC1gtXCBfqrk++neaNqGqhqO JvWN6LE6esiH/pyBB+5MDKSbMS8ER7kLaedeWZ78Z5LZ+GVAybzQoG1Dmv9CYrnj SViGNPECYcN5HcJK2Av19hi7S4z9cjd9s/VerXk2pQxWmqtguJEi2wjKQNZjuRDj SxK7Q/kd1WROAzLuhSACMTFMXDQTsILywA4HnB9NjNmSLpwFUQIDAQABo4ICLjCC AiowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQGagg+X7g0TbXxZFb+s8MOFe75YzAf BgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcw IQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYW aHR0cDovL3IzLmkubGVuY3Iub3JnLzA3BgNVHREEMDAughNqYWJvcmFuZGkuc3Au Z292LmJyghd3d3cuamFib3JhbmRpLnNwLmdvdi5icjATBgNVHSAEDDAKMAgGBmeB DAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB1ADtTd3U+LbmAToswWwb+QDtn 2E/D9Me9AA0tcm/h+tQXAAABi4B88+gAAAQDAEYwRAIgeU89BMHnVkBGPKLw/01S Ga9eyd/Mk50V/hVVlTEWoLUCICgLGhlPEJW8eifzjdoXq88wdixCV7S4xKhZYz4Q ZiFWAHcAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGLgHz0VwAA BAMASDBGAiEA0flxqD/wAnXrwAgwptxA2Ry+W5N9MRZXUdK3joma694CIQDPR3xB 0qMKfZHy8L3SGFm0ytTEMGYw4/xnfRMhtDtJfjANBgkqhkiG9w0BAQsFAAOCAQEA WoTLML8mpqlnnFir8Bi4+5Z8nq4VtEmOzMAJLuN7bH4AtPYuKkVxR8pa8qpVLdz3 kxNZa7Pk/ToqGcE0vMh7+QoZnPI//+jXW4o8EduyjPhMyUo9b+tJlRpdDwkyHZcU j+I5E/dRprI5hbhyHGKQL3o0OHkWgAo1zBJ+0tz85sLMEVrlSCRKSL23+Kt4K0xM uEka+WhpxG7gxdrCG2YP6VzzqTpu3XlfD5B+dhNjCm/WjCxk9v1Typt9sNBRsBgr twmeidC3B9mzpHRS9fuKqq9plylnuEjrA+SaHR3+AQsF3Oa9wHAUahEtn58R50Nw 5uZEQVtb63hVXHnzq0ccoA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwPcUS7HwUXu2N3jgZXbE F1iLTA56wKintJoXa0PqHBMEQo29Hcn9izfv0wxw+YwMKWAdzsuRxoj+2GN+B72U uaCgrjp9jhbCFrqyGRZH7dwXCJwJSfOnXAf6fGXYtAEYXMcbiw/09QqDfFnL7kv8 puEsN/hnO4SQfPjt9LjQ34LHjkXd8SBRLnGQ+PR82khczlOP42bv/77WxU4abkog 1wfAx+OrECJkzAUr+fDtZupQOufz8nm7eJhZ2nD3rbD+9G8s6K8cIoKAnROiSksQ EGy1ptPlO6x5epyb4H8thDtoZ3SX1CZFyzu5a8v8OUGZfB3tp7aHo59Bto3tM4mb re2Hq/Vf913mo4mEB5pizlpAZriE45B/DOGCd7kKz3z5lzDStqq6OGFqeTXUrH0c g6Xu5dovJIwbe6S6EtPH8PSwBoUu01dtKj27oHsuy1FKFsjJ+Bx+Kr4lU4nMRUCD 9jn3AlGx75c6iTgtYLVwgX6q5Pvp3mjahqoajib1jeixOnrIh/6cgQfuTAykmzEv BEe5C2nnXlme/GeS2fhlQMm80KBtQ5r/QmK540lYhjTxAmHDeR3CStgL9fYYu0uM /XI3fbP1Xq15NqUMVpqrYLiRItsIykDWY7kQ40sSu0P5HdVkTgMy7oUgAjExTFw0 E7CC8sAOB5wfTYzZki6cBVECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 344473307906929548489448490710893961995163 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-30 11:09:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-28 11:09:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jaborandi.sp.gov.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 787229143556132005528893286759382026748065326916115330399635642880311860932903224176822788757657691287445951120008884421455396210099010666858295684440231264940400211747510246915574770035686675374706464769383390889977422725861394491817438175319304294980771912216333103732602122622176872114037230391838116783601646181402112269853012424328867822813202116401092261131046828233261359005805557022842527723632494744125288558681705034830018981007198714677669401814755510354272333907876248957742715390182288706026056581586971669292563679613575247989464218662652484924705974781821495440346555995427992712061068071740975827599572680138114926776610885845664345403886686716207315724402038030674177900206149007013088444669766446751752768527647915001033141882802757528249004547060588662057585381413968247667359380100085793591512492696371117854235027489312982090519679340610587103478309991063187658109713825548112016085833619763645203092114824157867433848127683148874749223519740048580465163452556956643108966948636479136359535592481484919465811812729815966083398837895582868663306645097680270662275911124895309228575988674047359421779893717166505553008242529713002646773516300058174154748501887259885733873775903130472679217547957980167663259485521 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 066a083e5fb8344db5f16456feb3c30e15eef963 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jaborandi.sp.gov.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jaborandi.sp.gov.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b807cf3e800000403004630440220794f3d04c1e75640463ca2f0ff4d5219af5ec9dfcc939d15fe1555953116a0b50220280b1a194f1095bc7a27f38dda17abcf30762c4257b4b8c4a859633e1066215600770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b807cf4570000040300483046022100d1f971a83ff00275ebc00830a6dc40d91cbe5b937d31165751d2b78e899aebde022100cf477c41d2a30a7d91f2f0bdd21859b4cad4c4306630e3fc677d1321b43b497e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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