www.construcasa.itransparencia.com
Issued by R3
About this certificate
This digital certificate with serial number 04:8f:39:5f:67:f5:77:eb:d1:14:b1:1d:78:e1:ec:a9:bb:05 was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.construcasa.itransparencia.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:8f:39:5f:67:f5:77:eb:d1:14:b1:1d:78:e1:ec:a9:bb:05Serial Number (int): 397185783569232690668347852441541025577733
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 66:90:1d:69:34:c7:fa:bf:ed:af:0a:ae:bf:df:e6:2c:62:48:fe:af
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0a:cf:71:8b:75:60:1c:59:fb:80:c7:af:b9:ad:6b:30:c8:26:77:22
Fingerprint (sha256): bd:70:f5:21:1b:6c:0a:f0:12:22:e7:08:b4:d2:31:8c:90:d8:c7:06:d4:bc:ab:98:ad:36:72:fb:ea:13:be:65
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.construcasa.itransparencia.com
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.construcasa.itransparencia.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.itransparencia.com
itransparencia.com
santana.ap.itransparencia.com
www.construcasa.itransparencia.com
www.labiras.itransparencia.com
www.santana.ap.itransparencia.com
www.suportcenter.itransparencia.com
itransparencia.com
santana.ap.itransparencia.com
www.construcasa.itransparencia.com
www.labiras.itransparencia.com
www.santana.ap.itransparencia.com
www.suportcenter.itransparencia.com
Other certificates including the domain name itransparencia.com
(limited to 100 certificates)
www.riachofrio.pi.gov.br.itransparencia.com
floresdopiaui.pi.gov.br
*.passagemfranca.pi.gov.br
cpcontacts.parnarama.ma.leg.br
mail.valencadopiaui.pi.leg.br
www.protocolo.itransparencia.com
www.suportcenter.itransparencia.com
saojoaodavarjota.pi.leg.br
altolonga.pi.gov.br
riachofrio.pi.gov.br
www.center.itransparencia.com
altolonga.pi.gov.br
altolonga.pi.gov.br
*.pi.gov.br.itransparencia.com
www.saojosedopeixe.pi.gov.br.itransparencia.com
*.pi.gov.br.itransparencia.com
*.saojosedopeixe.pi.gov.br
*.pi.gov.br.itransparencia.com
*.franciscoayres.pi.gov.br
floresdopiaui.pi.gov.br
www.riograndedopiaui.pi.leg.br.itransparencia.com
saojosedopeixe.pi.gov.br
www.franciscoayres.pi.gov.br.itransparencia.com
dirceuarcoverde.pi.gov.br
www.construcasa.itransparencia.com
passagemfranca.pi.gov.br
www.admin.itransparencia.com
altolonga.pi.gov.br
*.passagemfranca.pi.gov.br
www.labiras.itransparencia.com
saojosedopeixe.pi.gov.br.itransparencia.com
santana.ap.itransparencia.com
mail.barradalcantara.pi.leg.br
*.altolonga.pi.gov.br
www.protocolo.itransparencia.com
floresdopiaui.pi.gov.br
*.passagemfranca.pi.gov.br
cpcontacts.parnarama.ma.leg.br
mail.valencadopiaui.pi.leg.br
www.protocolo.itransparencia.com
www.suportcenter.itransparencia.com
saojoaodavarjota.pi.leg.br
altolonga.pi.gov.br
riachofrio.pi.gov.br
www.center.itransparencia.com
altolonga.pi.gov.br
altolonga.pi.gov.br
*.pi.gov.br.itransparencia.com
www.saojosedopeixe.pi.gov.br.itransparencia.com
*.pi.gov.br.itransparencia.com
*.saojosedopeixe.pi.gov.br
*.pi.gov.br.itransparencia.com
*.franciscoayres.pi.gov.br
floresdopiaui.pi.gov.br
www.riograndedopiaui.pi.leg.br.itransparencia.com
saojosedopeixe.pi.gov.br
www.franciscoayres.pi.gov.br.itransparencia.com
dirceuarcoverde.pi.gov.br
www.construcasa.itransparencia.com
passagemfranca.pi.gov.br
www.admin.itransparencia.com
altolonga.pi.gov.br
*.passagemfranca.pi.gov.br
www.labiras.itransparencia.com
saojosedopeixe.pi.gov.br.itransparencia.com
santana.ap.itransparencia.com
mail.barradalcantara.pi.leg.br
*.altolonga.pi.gov.br
www.protocolo.itransparencia.com
Certificate
The complete raw certificate details for www.construcasa.itransparencia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFxDCCBKygAwIBAgISBI85X2f1d+vRFLEdeOHsqbsFMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDYwMzQ1MTNaFw0yNDA2MDQwMzQ1MTJaMC0xKzApBgNVBAMT Ind3dy5jb25zdHJ1Y2FzYS5pdHJhbnNwYXJlbmNpYS5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDRBOacnnT/YmzyNxaCwoIsdgtT4pFvt5dNwQPb yhnoMAGfESVpQuA/6Eg96EC5FWh2i2IZMI55EPSfTiwqEnOR5XVpgQEoPlU0ruhU gJiidxtDsJxhXbOe8v6qcedlGgSGDZ6UfCGbfu/dbt9g7biHSfHgNxRrF29Rmvei BJhr0gJYd+6hNSqYTX3Wd3DA6JQh3tPJLioWbCj98OrEj2enQy1HCS5edYVXr/vF //GVe/m7AOaldkrrph1mIaiguwAGJYKPB7x1WE7CqRsMt+6bx5sq72uhwkwxvmqf m9rbtKVg+8e8cLG0NKhv0G/2Cu1S66Fc7MJXF5+NzFZnKkHPAgMBAAGjggLXMIIC 0zAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFGaQHWk0x/q/7a8Krr/f5ixiSP6vMB8G A1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAh BggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZo dHRwOi8vcjMuaS5sZW5jci5vcmcvMIHgBgNVHREEgdgwgdWCFCouaXRyYW5zcGFy ZW5jaWEuY29tghJpdHJhbnNwYXJlbmNpYS5jb22CHXNhbnRhbmEuYXAuaXRyYW5z cGFyZW5jaWEuY29tgiJ3d3cuY29uc3RydWNhc2EuaXRyYW5zcGFyZW5jaWEuY29t gh53d3cubGFiaXJhcy5pdHJhbnNwYXJlbmNpYS5jb22CIXd3dy5zYW50YW5hLmFw Lml0cmFuc3BhcmVuY2lhLmNvbYIjd3d3LnN1cG9ydGNlbnRlci5pdHJhbnNwYXJl bmNpYS5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0 BIHxAO8AdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAY4SFHPm AAAEAwBGMEQCIE/IqDfo/C2JmZb2DSyGENomkd7j3QKJFh1sQTStX4X8AiAU9j1H KKqtmKky4hKv9nJU7k+D+zSi38HGYHJhM0MhkQB2AKLiv9Ye3i8vB6DWTm03p9xl Q7DGtS6i2reK+Jpt9RfYAAABjhIUc+4AAAQDAEcwRQIgZwu8nDBXgLPCPN0tHAIE B+b+bEoWE3yh0skiPYC25WECIQCXH7qJpEGekkJQa7TZAGSN/trZeFV9n3MIak2X 4bhTfDANBgkqhkiG9w0BAQsFAAOCAQEAJqw49lfX8nbYnztn3eBQXoVXs0fd9o3w dncrSWP9YX/TTWtvOUBvZ3SauB7ExBxtRCdQtNfj5Z6x7Ovcd78H9cyv1K11nF46 hWfbW0uXRfa1FTXmP7hdwcI+zh8GQjH2UYeRGCofD7Y6Ut9h8exSFdDUKHSuCJWt UFguSHSOfErXVZ7/qS1KfEOe2hpgJAFn00kZsmedotsUKqolCWpj1MeYTPNIkw5f qRpTx/MDsXK/arS3V8EHWO/QnbOSF7ihlgGbtBHJVUjSUrMuAKrJwai1hI2who9j 1fvWWb+GI9e4nNvXfiOBMMrb8U1++NjoC4tHJFQoK1idRsCUJxZfmw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QTmnJ50/2Js8jcWgsKC LHYLU+KRb7eXTcED28oZ6DABnxElaULgP+hIPehAuRVodotiGTCOeRD0n04sKhJz keV1aYEBKD5VNK7oVICYoncbQ7CcYV2znvL+qnHnZRoEhg2elHwhm37v3W7fYO24 h0nx4DcUaxdvUZr3ogSYa9ICWHfuoTUqmE191ndwwOiUId7TyS4qFmwo/fDqxI9n p0MtRwkuXnWFV6/7xf/xlXv5uwDmpXZK66YdZiGooLsABiWCjwe8dVhOwqkbDLfu m8ebKu9rocJMMb5qn5va27SlYPvHvHCxtDSob9Bv9grtUuuhXOzCVxefjcxWZypB zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 397185783569232690668347852441541025577733 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-06 03:45:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-04 03:45:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.construcasa.itransparencia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26386222425926902705085555773286917126035069623377884111858939754093287781470653574977538124334489844882552261869295247353881610536803779710961922711734720617684008527129356299613158835894218136791565135501684211101639057990072853689314835860282855772334502280071274296159213807348614097286019453406200491908551910638976034975112516285706133067613384558355617870401095866630660819573463490952979537770034351000340245238222396677576571631638838554776244760179962230644985670566660112427389435352941659566936901233412414000243327288807093115967087644004964197260592583327889736497506276446356497556962882015515451736527 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 66901d6934c7fabfedaf0aaebfdfe62c6248feaf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (216 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.itransparencia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itransparencia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'santana.ap.itransparencia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.construcasa.itransparencia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.labiras.itransparencia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.santana.ap.itransparencia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.suportcenter.itransparencia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e121473e6000004030046304402204fc8a837e8fc2d899996f60d2c8610da2691dee3dd0289161d6c4134ad5f85fc022014f63d4728aaad98a932e212aff67254ee4f83fb34a2dfc1c660726133432191007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e121473ee00000403004730450220670bbc9c305780b3c23cdd2d1c020407e6fe6c4a16137ca1d2c9223d80b6e561022100971fba89a4419e9242506bb4d900648dfedad978557d9f73086a4d97e1b8537c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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