lauf.heel.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:32:bc:20:71:32:61:86:f4:4a:5c:4e:79:02:78:c5:7b:0c was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=lauf.heel.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:32:bc:20:71:32:61:86:f4:4a:5c:4e:79:02:78:c5:7b:0cSerial Number (int): 278601039453938576945624063468493078887180
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 50:e2:45:46:84:c0:4b:8c:68:98:3e:bf:90:cd:6d:71:18:0c:49:df
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 18:67:e1:9b:87:4e:fe:70:9f:a3:c6:08:73:66:5e:13:b7:63:b7:08
Fingerprint (sha256): c3:b2:b7:29:3a:40:0e:1b:63:1d:a2:85:9a:1d:d1:ef:88:45:27:91:67:bd:7f:00:9f:91:2a:6f:24:96:d0:13
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate lauf.heel.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lauf.heel.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lauf.heel.de
www.lauf.heel.de
www.lauf.heel.de
Other certificates including the domain name heel.de
(limited to 100 certificates)
lauf.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
Certificate
The complete raw certificate details for lauf.heel.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYjCCBUqgAwIBAgISAzK8IHEyYYb0SlxOeQJ4xXsMMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA0MjUwNzU3NTFaFw0x OTA3MjQwNzU3NTFaMBcxFTATBgNVBAMTDGxhdWYuaGVlbC5kZTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAJbjXkwrma3EKRkJReDGTwqOTVq0Pba2Fiwk g4w1/Eg/IxYmVphtnUoMilzGDHorupJ5T2FE7jbdCW2qBrSKSsXw0DxpoxbUj09h YAdyZyNj3PsgQMO+kn+mvmxKeXYZ1CttRtAwJ2nMdHdqh6JdvxvAxNuMxSx7+DHr +F70FpRU6aC4orlHrG71q9UG3QhWNSpv7StpYNmTPMzCzfpEeOmmTOXFCjXHR6xf nM7Lw03X4De+Tj3JWXT1+XmvEu9FkOvR7/drrSvtD4ZMmacOkIsBa0vbiUQcyB3v 24H1KE792FjKwtGdR5vIwurBsG2Q39rQNkUsgqwE//M0H3S4eZ1/lPN/yJs7F2dH XE6vF5dJv98xPk+ncqGdN3a0US0iAE4AuKBxmqI/HZ0U7J2/G7nHtpsoMdpB92nb 8UtwPbPMVM/13jFnONKQRibvYxGHdN89MjjnE3/Oxz3/vbSculQqNnXD3GzIAYAx xe+eFXk1mlnZba2jB3e3xt4o6AQR4VEiacOp0wlGq/mdVI93oXDi0mC2dsbQyFJG CJ7dD6oXevi9BfbUa+YvNCHnDM8QJnGMJTnMjt7sMau3TWYQGBsarhQ5CK6xFZzy N8gA4wRZ8yhD3DGRoKBUpCDWLIgjwZPLrctsVgWdI9XGOIGGOCdLcr4TlYBZhpet TuhnL8epAgMBAAGjggJzMIICbzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFDiRUaE wEuMaJg+v5DNbXEYDEnfMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wKQYDVR0RBCIwIIIMbGF1Zi5oZWVsLmRlghB3d3cu bGF1Zi5oZWVsLmRlMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYK KwYBBAHWeQIEAgSB9QSB8gDwAHYA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMB nd3x2/4AAAFqU7cgYAAABAMARzBFAiAucb8wKRAVWbKbiEKzsaAoldVCswkRzUgC ib7C8Mg9FAIhAKqmDQ78T+Y9OFIcJ7bhR3u02h0vdz0Pxl8YabrbIJc/AHYAY/Lb zeg7zCzPC3KEJ1drM6SNYXePvXWmOLHHaFRL2I0AAAFqU7ciTQAABAMARzBFAiEA tYHamPnOEhtnxIdYm0pDlaRiDWoNGN0SBNYPE/I7TNcCIA6uanwjwwgZil/lc2kS YIt0nQ+tBDbzjNbQRiLCzUegMA0GCSqGSIb3DQEBCwUAA4IBAQBVge33Fxh6JLwV H1dpLlWoldc4/L6rm+cslNkG3TJWwrsBB3R63vEWy0t9mh+/d6jMsCuSfTsnFWxU heaV7/LyK2hwnH0MgLGhK/VwIDPHhjnqju0mw48CsycKsFyS+6gqcHDwJRM/jyu6 jqVgOM5r+NAJOiNA5r2onFl5TFMo4s4spz/uIawpxi8nZs0XQDcSrfG1jcdjTsax A28YZv3E7Xcq06i+64Og2Lsv3XxxB4edsP4kl4KjCDAEuet2hbbuNBrc4Zn678e8 o/KsMh6r+qe2Z0dUkicgR3p6hAJtBUfgUTkzxovcmI/rnGJBAt+mYfFtxskUdune WQjX4/9m -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAluNeTCuZrcQpGQlF4MZP Co5NWrQ9trYWLCSDjDX8SD8jFiZWmG2dSgyKXMYMeiu6knlPYUTuNt0JbaoGtIpK xfDQPGmjFtSPT2FgB3JnI2Pc+yBAw76Sf6a+bEp5dhnUK21G0DAnacx0d2qHol2/ G8DE24zFLHv4Mev4XvQWlFTpoLiiuUesbvWr1QbdCFY1Km/tK2lg2ZM8zMLN+kR4 6aZM5cUKNcdHrF+czsvDTdfgN75OPclZdPX5ea8S70WQ69Hv92utK+0PhkyZpw6Q iwFrS9uJRBzIHe/bgfUoTv3YWMrC0Z1Hm8jC6sGwbZDf2tA2RSyCrAT/8zQfdLh5 nX+U83/ImzsXZ0dcTq8Xl0m/3zE+T6dyoZ03drRRLSIATgC4oHGaoj8dnRTsnb8b uce2mygx2kH3advxS3A9s8xUz/XeMWc40pBGJu9jEYd03z0yOOcTf87HPf+9tJy6 VCo2dcPcbMgBgDHF754VeTWaWdltraMHd7fG3ijoBBHhUSJpw6nTCUar+Z1Uj3eh cOLSYLZ2xtDIUkYInt0Pqhd6+L0F9tRr5i80IecMzxAmcYwlOcyO3uwxq7dNZhAY GxquFDkIrrEVnPI3yADjBFnzKEPcMZGgoFSkINYsiCPBk8uty2xWBZ0j1cY4gYY4 J0tyvhOVgFmGl61O6Gcvx6kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 278601039453938576945624063468493078887180 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-25 07:57:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-24 07:57:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lauf.heel.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 615569977153727818142948079372061424147070742233803015693930189882546932758245442028154852493162595566353769854758309726936997421776478308707683606670361063180741353799345195102977272446173991246529821518163480805439643485364008816592174962712871157829487405069502198820748181968477505060287256544677483945113676590854248497320582361731333767510337338770165801340850211117208837471293057683883175272425050140502920737858775073493434818534642761898134036993196282129686716162875418335658744238637079633276227201234535467138257101569058685200217651665813570746461114318219953049110890108251918581026610732108592081484892079267209183277734404952587359265868893303071254389129534838968164694697199484732519733453645187639796689690448347891304721403780470552938672831978038147540085791472790717010278255903049151491227628133113569580841250150624692148342128914062820793299778226134245660554298680967156761053850815720017042600975787996510721262706539596404802911394775673207682299707651315684390028740401888194246136582682639812518419886058764308772821021048784246821678284726271884601663247373438314321260523778711503068949573975165854779921108443062180235759106016142549327613604873689497691409178418866426702778314895751848444013037481 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 50e2454684c04b8c68983ebf90cd6d71180c49df . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lauf.heel.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lauf.heel.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016a53b72060000004030047304502202e71bf3029101559b29b8842b3b1a02895d542b30911cd480289bec2f0c83d14022100aaa60d0efc4fe63d38521c27b6e1477bb4da1d2f773d0fc65f1869badb20973f00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016a53b7224d0000040300473045022100b581da98f9ce121b67c487589b4a4395a4620d6a0d18dd1204d60f13f23b4cd702200eae6a7c23c308198a5fe5736912608b749d0fad0436f38cd6d04622c2cd47a0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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