www.theatergruppe-hausen.de
Issued by R3
About this certificate
This digital certificate with serial number 03:c6:1f:f2:6e:be:41:58:a2:a9:3a:63:7e:42:d1:7d:40:27 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.theatergruppe-hausen.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:c6:1f:f2:6e:be:41:58:a2:a9:3a:63:7e:42:d1:7d:40:27Serial Number (int): 328755231295474284484615554790515711754279
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e9:8a:55:47:ad:ee:a4:be:7d:1e:20:e9:61:4b:77:09:d3:43:30:4c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 06:60:25:5c:7f:8f:a7:f9:c0:18:c0:53:fc:14:ff:f0:a8:0c:f4:b7
Fingerprint (sha256): bc:b9:f1:17:30:1a:64:2f:5c:b1:97:1c:27:d6:5b:c5:a4:e0:80:7f:e9:63:1f:7e:2a:23:62:0b:ab:ae:aa:d6
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.theatergruppe-hausen.de
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.theatergruppe-hausen.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
theatergruppe-hausen.de
theatergruppe-hausen.server320.star-server.info
www.theatergruppe-hausen.de
www.theatergruppe-hausen.server320.star-server.info
theatergruppe-hausen.server320.star-server.info
www.theatergruppe-hausen.de
www.theatergruppe-hausen.server320.star-server.info
Other certificates including the domain name theatergruppe-hausen.de
(limited to 100 certificates)
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
www.theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
www.theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
www.theatergruppe-hausen.de
www.theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
www.theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
www.theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
theatergruppe-hausen.de
www.theatergruppe-hausen.de
www.theatergruppe-hausen.de
Certificate
The complete raw certificate details for www.theatergruppe-hausen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGhzCCBW+gAwIBAgISA8Yf8m6+QViiqTpjfkLRfUAnMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MzAwMDA5NDlaFw0yNDA3MjkwMDA5NDhaMCYxJDAiBgNVBAMT G3d3dy50aGVhdGVyZ3J1cHBlLWhhdXNlbi5kZTCCAiIwDQYJKoZIhvcNAQEBBQAD ggIPADCCAgoCggIBAMLU67AhOoEGr811oJJDrHAhsjdR3jD8MfCZuJ5kU7mCFnGB O6oHQ65UG+xarLR1YY3L6W+KCZAbVCm+45mkYtJPXP3GXRM6EsfiQ6wLx3vR0BO6 i3NKn0N/zZztkgdkOQGBfsV96h1bxcULsizEUGQTzRv0PHtQgyoDNZwVmUZZXCJ6 yndFu+u3efvw+/szWiH4sEnn3hQ6rf3JwWeh+XI+nTdwLNVdPEcYpUxTNQ8QqG70 umKrZqTjyuKj8Tpb10SZnwGtkWfnvwl+WAyF3M+dsKfFIO5JxqeUVrCdvOsbpwUq MnL64/BxjTLSlDhbYjbA7tYn+Kh4+Oq/1uCmDqCDPXBPYUBBlzBOBziFONh7HniK njnLlgVKdJFuUxXCFXcuQp7GJAHcGB6rshsg42qSuBHK+St5MUlaHA1m3YM92VK7 rKu1NITCH90tKZQ5+f1HaOGMSqN+hMaRfZwdq6BRLAFlnzumoL530jeK7u+0Xip9 2TK+a1Tyf9NVRelWWDVD/8UKe4UTzXkTyy1hi51Dt0+F30Q7eqNCT+Nf+2NSGc1p 8JUmrWbZYxaBh/cZk8XDeB8nNT8me5GF5XRUPjyJUeCAejCXglAheEH7VP6LokYr blUZvoCfPeCvbO8+Pc9F4h7BTwWDmdqCSWKAKOi51zGZt1H7pYhktRJL63zZAgMB AAGjggKhMIICnTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOmKVUet7qS+fR4g6WFL dwnTQzBMMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUF BwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsG AQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIGnBgNVHREEgZ8wgZyCF3Ro ZWF0ZXJncnVwcGUtaGF1c2VuLmRlgi90aGVhdGVyZ3J1cHBlLWhhdXNlbi5zZXJ2 ZXIzMjAuc3Rhci1zZXJ2ZXIuaW5mb4Ibd3d3LnRoZWF0ZXJncnVwcGUtaGF1c2Vu LmRlgjN3d3cudGhlYXRlcmdydXBwZS1oYXVzZW4uc2VydmVyMzIwLnN0YXItc2Vy dmVyLmluZm8wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEGBgorBgEEAdZ5AgQCBIH3 BIH0APIAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY8sjP+t AAAEAwBIMEYCIQDV8fof+swOf+Dr1uECQ5uK/f+7tWfIOfeqlRHgbXLlPgIhALfk DtFNjyeXML3XXa9uqe8dnw7uT4CfUdelz5mSSsa3AHcAGZgQcQnw1lIuMIDSnj9k u4NuKMz5D1KO7t/OSj8WtMoAAAGPLIz/wAAABAMASDBGAiEAsUEMuWEe3JDAK6vZ RjtgzFuC7DUsAseJ2W0ZIUqf6SYCIQDb6R1xXseV9rimS7MHEjIXRYyC0rGc4OdQ 5RLRv+RryzANBgkqhkiG9w0BAQsFAAOCAQEAi8SZhpQOcIrBQmcYeHcRu9FE72CJ H9l2UxEE11DAQEnKTQ9hQUiPGXx796VosInQCMIgRbB3CWeNjXXC+Y33eNpalXIV arMVO7F+jFBAFSMEaZygNyi1PA8VMuWo8IHcrj4c8Kei9CZ2XrwhpEmN2jXz3v9l YxJfsRoZEKxtRbXIkQCmbVij0eXFSbI/BX/eXG0FFwmcfTQxiJCjNZYbPyS7Y+/U 1Ltw1PCEFpzZ25KtAe2Bzsg8GCu5kDQfonpx9by1/U6q/xrEbMPWQfKS3iSB63Kq Mt3FQ0tQ+7JPAJyqY29IOtusJmamhgOb2WYrBHK8pq/n5gcPl+Gd0zAqKQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwtTrsCE6gQavzXWgkkOs cCGyN1HeMPwx8Jm4nmRTuYIWcYE7qgdDrlQb7FqstHVhjcvpb4oJkBtUKb7jmaRi 0k9c/cZdEzoSx+JDrAvHe9HQE7qLc0qfQ3/NnO2SB2Q5AYF+xX3qHVvFxQuyLMRQ ZBPNG/Q8e1CDKgM1nBWZRllcInrKd0W767d5+/D7+zNaIfiwSefeFDqt/cnBZ6H5 cj6dN3As1V08RxilTFM1DxCobvS6YqtmpOPK4qPxOlvXRJmfAa2RZ+e/CX5YDIXc z52wp8Ug7knGp5RWsJ286xunBSoycvrj8HGNMtKUOFtiNsDu1if4qHj46r/W4KYO oIM9cE9hQEGXME4HOIU42HseeIqeOcuWBUp0kW5TFcIVdy5CnsYkAdwYHquyGyDj apK4Ecr5K3kxSVocDWbdgz3ZUrusq7U0hMIf3S0plDn5/Udo4YxKo36ExpF9nB2r oFEsAWWfO6agvnfSN4ru77ReKn3ZMr5rVPJ/01VF6VZYNUP/xQp7hRPNeRPLLWGL nUO3T4XfRDt6o0JP41/7Y1IZzWnwlSatZtljFoGH9xmTxcN4Hyc1PyZ7kYXldFQ+ PIlR4IB6MJeCUCF4QftU/ouiRituVRm+gJ894K9s7z49z0XiHsFPBYOZ2oJJYoAo 6LnXMZm3UfuliGS1EkvrfNkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 328755231295474284484615554790515711754279 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-30 00:09:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-29 00:09:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.theatergruppe-hausen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 794844076119112643753200702946861570841602590585052927343171568387674241176768872417290307235294209310505449045792752444735687349760860647704043631270210059569937226409873667413421874097721994480582254083837243927375668976679744719662257029297970467293743352224243345664232933136812355009646974036205661579740769804589624477183099864844511771017437078554989478873663597223027372067643618412708030841734689273003908028119393543164935214787126958090720345748861400629525986863229836721103346254106476224849904182600053335532306051460462544352905558777468087841765976540491094066477975455100702220481553866674079683318762560336616653758389104208624937160113470899955866486744297103671521705242209655962847076199233502780311041245780493409383627322884647501515971908803924992926913286724983072099249897820342341985315721616965245581716303746646539017936171163668989678428358189261419009499791955788929124080453015201096031456477054862038486789268955988612054156558310410420860901228762855176550563573363458651289461060874483290962758518536251662437024469704132410088821005973082390896414475107430135286827328299782518005629992492641067319428182986629090558421039308099427470960722215784179022136242593358754814405174937757385869159529689 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e98a5547adeea4be7d1e20e9614b7709d343304c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (159 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theatergruppe-hausen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theatergruppe-hausen.server320.star-server.info' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.theatergruppe-hausen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.theatergruppe-hausen.server320.star-server.info' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f200770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f2c8cffad0000040300483046022100d5f1fa1ffacc0e7fe0ebd6e102439b8afdffbbb567c839f7aa9511e06d72e53e022100b7e40ed14d8f279730bdd75daf6ea9ef1d9f0eee4f809f51d7a5cf99924ac6b70077001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018f2c8cffc00000040300483046022100b1410cb9611edc90c02babd9463b60cc5b82ec352c02c789d96d19214a9fe926022100dbe91d715ec795f6b8a64bb307123217458c82d2b19ce0e750e512d1bfe46bcb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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