www.donau.store
Issued by R3
About this certificate
This digital certificate with serial number 03:9b:03:46:59:f0:62:5c:6c:0f:16:08:33:34:4b:d9:44:f4 was issued on by Let's Encrypt.
With 30 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.donau.store
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9b:03:46:59:f0:62:5c:6c:0f:16:08:33:34:4b:d9:44:f4Serial Number (int): 314084977636973308953101345218016637961460
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 65:81:f4:4f:ea:31:38:89:81:91:ae:43:fd:53:e2:b1:07:6c:e4:94
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 93:1c:8d:67:3b:31:35:2b:c9:43:70:a8:d7:78:ad:41:9e:bb:1c:9b
Fingerprint (sha256): c4:8e:2d:75:6b:7b:c4:ca:1c:c4:c2:b2:1b:eb:3d:ea:69:75:51:c1:3d:3d:41:32:60:6a:09:43:07:48:0f:80
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.donau.store
30
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.donau.store
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
apostolates.com
coke.digital
donau.store
endeavor.store
eshopping.store
invest.taxi
kira.world
mycloud.life
nex.tools
nextweb.site
pepper.live
printed.solutions
sirius.life
utopia.social
workin.media
www.apostolates.com
www.coke.digital
www.donau.store
www.endeavor.store
www.eshopping.store
www.invest.taxi
www.kira.world
www.mycloud.life
www.nex.tools
www.nextweb.site
www.pepper.live
www.printed.solutions
www.sirius.life
www.utopia.social
www.workin.media
coke.digital
donau.store
endeavor.store
eshopping.store
invest.taxi
kira.world
mycloud.life
nex.tools
nextweb.site
pepper.live
printed.solutions
sirius.life
utopia.social
workin.media
www.apostolates.com
www.coke.digital
www.donau.store
www.endeavor.store
www.eshopping.store
www.invest.taxi
www.kira.world
www.mycloud.life
www.nex.tools
www.nextweb.site
www.pepper.live
www.printed.solutions
www.sirius.life
www.utopia.social
www.workin.media
Other certificates including the domain name donau.store
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.donau.store in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGyzCCBbOgAwIBAgISA5sDRlnwYlxsDxYIMzRL2UT0MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMDYwNzMyMjFaFw0yNDAxMDQwNzMyMjBaMBoxGDAWBgNVBAMT D3d3dy5kb25hdS5zdG9yZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMfIrO9YRC6OHxpAQLxVE3me3rXf68XaedO0AZBYilHe+so2dEePR47hwXt6Kwba eiIFg4on543ibJx0h2AiEd7gJ9/O0K7pcqndZVfkQcf5ZcgUkgundeH1Vfyzhssz rdH0fEEV6GOlhN+j3yz6NKhhOoP75oM5cdkBw0++ow29VB2HEYdsdB+QruewKMe9 5D8Fa0Nm8IdxZMCZqkV7lnbZln8FtUp12lnvt5LPcBQndI6ZoQHj0hCEONqeH/MH u1Gf4X7+A6vSM8LieWGWBlu39isA4p/8FRIurvlQPhp8XV1w844UXBaJgoMqLDks m35r9KMw3MuMEb6n55rPF60CAwEAAaOCA/EwggPtMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUZYH0T+oxOImBka5D/VPisQds5JQwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wggH3BgNVHREEggHuMIIB6oIPYXBvc3RvbGF0ZXMuY29tggxjb2tlLmRpZ2l0 YWyCC2RvbmF1LnN0b3Jlgg5lbmRlYXZvci5zdG9yZYIPZXNob3BwaW5nLnN0b3Jl ggtpbnZlc3QudGF4aYIKa2lyYS53b3JsZIIMbXljbG91ZC5saWZlggluZXgudG9v bHOCDG5leHR3ZWIuc2l0ZYILcGVwcGVyLmxpdmWCEXByaW50ZWQuc29sdXRpb25z ggtzaXJpdXMubGlmZYINdXRvcGlhLnNvY2lhbIIMd29ya2luLm1lZGlhghN3d3cu YXBvc3RvbGF0ZXMuY29tghB3d3cuY29rZS5kaWdpdGFsgg93d3cuZG9uYXUuc3Rv cmWCEnd3dy5lbmRlYXZvci5zdG9yZYITd3d3LmVzaG9wcGluZy5zdG9yZYIPd3d3 LmludmVzdC50YXhpgg53d3cua2lyYS53b3JsZIIQd3d3Lm15Y2xvdWQubGlmZYIN d3d3Lm5leC50b29sc4IQd3d3Lm5leHR3ZWIuc2l0ZYIPd3d3LnBlcHBlci5saXZl ghV3d3cucHJpbnRlZC5zb2x1dGlvbnOCD3d3dy5zaXJpdXMubGlmZYIRd3d3LnV0 b3BpYS5zb2NpYWyCEHd3dy53b3JraW4ubWVkaWEwEwYDVR0gBAwwCjAIBgZngQwB AgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgDatr9rP7W2Ip+bwrtca+hwkXFs u1GEhTS9pD0wSNf7qwAAAYsEHcOIAAAEAwBHMEUCIHhoIe+OsExqXaBgDVL8LZ7w WNUvT30Kzm5W4uIO9namAiEA7ETSaM4IBrnT9UbY+kcK52QNtsq3WQvhRTpF6sJ7 eNMAdwA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYsEHcOBAAAE AwBIMEYCIQCH3v/bJZPAti2X6ZcOV9H6c+yiQVKm4KmXD28Jf6IgKAIhAIOL0yoQ p13yQgbWVtZrin0dBpCIJQbSPhLv3nRAl8h6MA0GCSqGSIb3DQEBCwUAA4IBAQBx KIWbd7Q0mga/ErDo6hRyOP1B8+3dEOrN31wQU7i2uQU6XutqSUVl/V8YjdzKUxDZ r3EJyTYi5NAFG8UsRhxTS2QxN7InwTUckBnmQ8H9shGFSK8UbevVXNeXuNeEfIjS lEagqnKIVy4oFhUM7MCKr+CKvnjImBtRhhln3KrLL1qxZGGVUkt5hn7yTmk5f0kO xhpQvsdUbAc4k5a/1IXtmfj5zg8ft1w3JMEtL+uGgt1hWrdnS7ZYrpzOXd21wLhc 2wpOsaXZKjed/TqsiKqHnkUM7dC1In6utOyVRw6Eo6qRqo80cO1oI4X6XUDPXZPN vhgzydZRAG+Gk86BIEE/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8is71hELo4fGkBAvFUT eZ7etd/rxdp507QBkFiKUd76yjZ0R49HjuHBe3orBtp6IgWDiifnjeJsnHSHYCIR 3uAn387Qrulyqd1lV+RBx/llyBSSC6d14fVV/LOGyzOt0fR8QRXoY6WE36PfLPo0 qGE6g/vmgzlx2QHDT76jDb1UHYcRh2x0H5Cu57Aox73kPwVrQ2bwh3FkwJmqRXuW dtmWfwW1SnXaWe+3ks9wFCd0jpmhAePSEIQ42p4f8we7UZ/hfv4Dq9IzwuJ5YZYG W7f2KwDin/wVEi6u+VA+GnxdXXDzjhRcFomCgyosOSybfmv0ozDcy4wRvqfnms8X rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 314084977636973308953101345218016637961460 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-06 07:32:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-04 07:32:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.donau.store' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25220379478834523253032114868955542736031670237625096608511157959526401509283495184902424096817219207088223415565446206081214778116296660706317512192995874826922795996081996910676487779452875242152249516096774817127581161754961735674596419638953083094243529756221303757926992424590070523566725883220585020763106111168772785655971064365178505424627747887424895108017449387224003734165665987723156210786914541686008195874987551385545917979120776139191975909709848562673973650947090243273358727428742145899683689132735940523169787869025187337770592194137601033983267323860054537995457867313894906644121887402869211994029 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6581f44fea3138898191ae43fd53e2b1076ce494 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (494 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apostolates.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coke.digital' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'donau.store' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'endeavor.store' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eshopping.store' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'invest.taxi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kira.world' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mycloud.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nex.tools' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nextweb.site' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pepper.live' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'printed.solutions' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sirius.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'utopia.social' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'workin.media' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.apostolates.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.coke.digital' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.donau.store' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.endeavor.store' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.eshopping.store' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.invest.taxi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kira.world' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mycloud.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nex.tools' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nextweb.site' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pepper.live' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.printed.solutions' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sirius.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.utopia.social' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.workin.media' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b041dc38800000403004730450220786821ef8eb04c6a5da0600d52fc2d9ef058d52f4f7d0ace6e56e2e20ef676a6022100ec44d268ce0806b9d3f546d8fa470ae7640db6cab7590be1453a45eac27b78d30077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b041dc381000004030048304602210087deffdb2593c0b62d97e9970e57d1fa73eca24152a6e0a9970f6f097fa22028022100838bd32a10a75df24206d656d66b8a7d1d0690882506d23e12efde744097c87a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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