roomag.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:0a:2f:d4:4c:a4:71:bf:a7:a0:72:b7:6f:3b:c5:e0:45:42 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=roomag.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0a:2f:d4:4c:a4:71:bf:a7:a0:72:b7:6f:3b:c5:e0:45:42Serial Number (int): 264803257501717777036391781840209068442946
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 57:0d:99:8d:ff:fa:c5:07:a9:e5:cb:e8:8b:c1:37:fc:c4:fe:44:cd
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0a:02:1d:1f:54:67:76:80:62:f3:34:2d:63:79:01:f8:95:24:5b:b3
Fingerprint (sha256): c8:9c:7b:1d:0f:7f:86:c0:ad:81:56:b7:41:e9:d2:b7:35:4f:de:7c:ec:ed:4f:d2:cd:89:e0:1c:a1:1d:bb:be
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate roomag.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for roomag.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
roomag.org
www.roomag.org
www.roomag.org
Other certificates including the domain name roomag.org
(limited to 100 certificates)
roomag.org
roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
roomag.org
angad.roomag.org
roomag.org
roomag.org
roomag.org
roomag.org
nanak.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
nanak.roomag.org
nanak.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
roomag.org
angad.roomag.org
roomag.org
roomag.org
roomag.org
roomag.org
nanak.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
ramdas.roomag.org
ramdas.roomag.org
nanak.roomag.org
nanak.roomag.org
ramdas.roomag.org
ramdas.roomag.org
ramdas.roomag.org
roomag.org
Certificate
The complete raw certificate details for roomag.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXDCCBUSgAwIBAgISAwov1Eykcb+noHK3bzvF4EVCMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAyMTAxNDMzMjFaFw0x OTA1MTExNDMzMjFaMBUxEzARBgNVBAMTCnJvb21hZy5vcmcwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDxiUkb/eafDu6F1CiVblFuwiUhQ0j4GLs+Qxjs N3g6HjSA682/VpIjzTXYT6nMjKfTXq7DGZgKsWXjJ/L8hBLiEZzxsi3z+P+hjnkx ME/PlWdn2eBBTCvospqp57Ub3BArQtay8xHWCEpK43AWNRKKuqWSB4YJ2TR11ulj ZRUhOkTake/hr/TcboCt8zDrNPNe8uIlt0J3lRwC1P9eRCOjA+KNFI1Y1PY2YqqD pbFIk78O6aqdCZxsi+Hfv8IouTP0fMjCeXpgulU+aF1HjSxttU1syKXJ1QnOtEFr C6JX8JoMEoK08+H676RrU1zpxqHdlHn4Iz6b+EOG3fRDHqJLM8KjGT7A/UnH9Kbc s4zYK6ZhljKX5Q0RrXVUACzVFBYMBAfSWlwtXgg6eZkZzGVraupdU9FeLnPatS1G U9dpjx4S7mZGNdK2o5B/jllSVY2Ad+LUrNXpvZsYEu5Bu38qxtDfXzR9w4arAGVF Swg70873VLfmCW0zXvfhO6APnbmKrOPMKzQijQlrwkVZC5sAXwrSzuAj9dmiBb1E Nt8mp6ystwWttXKAKRtJMHSO8sHNdvx1oPMBBzxnWE2WwTaaQcrSuTvHDubgICfR FvSX68mx+wtKe2dcRpD7z5DxDW9rwvop9I1RZhz1b12RHt+e3dfl5co4unNOKH2W K4d3LQIDAQABo4ICbzCCAmswDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRXDZmN//rF B6nly+iLwTf8xP5EzTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMCUGA1UdEQQeMByCCnJvb21hZy5vcmeCDnd3dy5yb29t YWcub3JnMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHW eQIEAgSB9QSB8gDwAHYAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYA AAFo2AqfwgAABAMARzBFAiAkqRA6Sy+RJI1UMxpYJwxhHdb09wUpu4JI7Eat3+R0 jgIhAMZXSlPZwG5kRPaLQrPZF/tb1maS096/t8FeGs4JpnMYAHYAKTxRllTIOWW6 qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFo2AqhlgAABAMARzBFAiBN0Uo34HYE /J6allkfak+kOzx6NZyeSbqMrdgtVMI57gIhAIyVjivpTv0KNsBOllULgxp+OhFW YeuVyd9/6uCkDDj9MA0GCSqGSIb3DQEBCwUAA4IBAQBjO9H7qO+HgeSoiWDlJyp3 +xlOg4rBjI2m82LHEvyckZhrHaGWE/Wn0YX3CwJ8VXp9V8sgZDxEz4ICjPK8bhU1 6/qotYIxk/6v4qild98a2SOzB3F/IwQFWyTEaIj2bBArW3LMN1YPdcjUe9+bi24c Ah/l/H5ohvqgFxj3D3mjLtgw1xQGDADXd9KweO0/+QR2bm++UpCMd4rJwqb0NjFO MCXTlPqVPfILe/OW54zYOtAu5ruglKJUGWL7FQH4iXTzdZ8Zdc3ms0i7lubAegsh 6aIMR7fLlTmr6lu2Mjbxt1+kL452uae5ojcyGuNPiQyd3nD1qwrMMCGyS98pcT7N -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA8YlJG/3mnw7uhdQolW5R bsIlIUNI+Bi7PkMY7Dd4Oh40gOvNv1aSI8012E+pzIyn016uwxmYCrFl4yfy/IQS 4hGc8bIt8/j/oY55MTBPz5VnZ9ngQUwr6LKaqee1G9wQK0LWsvMR1ghKSuNwFjUS irqlkgeGCdk0ddbpY2UVITpE2pHv4a/03G6ArfMw6zTzXvLiJbdCd5UcAtT/XkQj owPijRSNWNT2NmKqg6WxSJO/DumqnQmcbIvh37/CKLkz9HzIwnl6YLpVPmhdR40s bbVNbMilydUJzrRBawuiV/CaDBKCtPPh+u+ka1Nc6cah3ZR5+CM+m/hDht30Qx6i SzPCoxk+wP1Jx/Sm3LOM2CumYZYyl+UNEa11VAAs1RQWDAQH0lpcLV4IOnmZGcxl a2rqXVPRXi5z2rUtRlPXaY8eEu5mRjXStqOQf45ZUlWNgHfi1KzV6b2bGBLuQbt/ KsbQ3180fcOGqwBlRUsIO9PO91S35gltM1734TugD525iqzjzCs0Io0Ja8JFWQub AF8K0s7gI/XZogW9RDbfJqesrLcFrbVygCkbSTB0jvLBzXb8daDzAQc8Z1hNlsE2 mkHK0rk7xw7m4CAn0Rb0l+vJsfsLSntnXEaQ+8+Q8Q1va8L6KfSNUWYc9W9dkR7f nt3X5eXKOLpzTih9liuHdy0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 264803257501717777036391781840209068442946 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-10 14:33:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-11 14:33:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'roomag.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 985382018501538425806775836868941042245245848231308314570243758352700285145461781793396411424182501314053647206553766456853206408654448997069969652334786046313570943514295207845851028513371451018395423029301837954148303795738927486224700537932339783369103484684146469404698552280693385432597069380840337397596855302276297226150599655868977284399932833290226872738047503396959899429241897344601817889752994027326938308836026112311797822885158039876031959531935923948788413949030410611741765537248248334067248133459731816125923891943277021872563213337443000879475973599226772513248013559057064555616348354229098513187197040017390227015001438891621329304857744423654387718819471745105743645221673161307976138107326219459224741898550757351761456617726562602034248354850103812438119342073479908465932100007611551657332238911988815946771355793726604657256077361631983902667597873490942739068812359592877837689052160570729937581481643969705325799248822548449770332865929360656634021964342687573660995479958172701973363710762637187308747437475320177399774840605338608555814497229551162891254065211198500187399077541984858715346796527325646288213765177886275620636759800888919975654190486631737442316830458309567166010487772514326364079748909 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 570d998dfffac507a9e5cbe88bc137fcc4fe44cd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roomag.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.roomag.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000168d80a9fc20000040300473045022024a9103a4b2f91248d54331a58270c611dd6f4f70529bb8248ec46addfe4748e022100c6574a53d9c06e6444f68b42b3d917fb5bd66692d3debfb7c15e1ace09a67318007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000168d80aa196000004030047304502204dd14a37e07604fc9e9a96591f6a4fa43b3c7a359c9e49ba8cadd82d54c239ee0221008c958e2be94efd0a36c04e96550b831a7e3a115661eb95c9df7feae0a40c38fd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00633bd1fba8ef8781e4a88960e5272a77fb194e838ac18c8da6f362c712fc9c91986b1da19613f5a7d185f70b027c557a7d57cb20643c44cf82028cf2bc6e1535ebfaa8b5823193feafe2a8a577df1ad923b307717f2304055b24c46888f66c102b5b72cc37560f75c8d47bdf9b8b6e1c021fe5fc7e6886faa01718f70f79a32ed830d714060c00d777d2b078ed3ff904766e6fbe52908c778ac9c2a6f436314e3025d394fa953df20b7bf396e78cd83ad02ee6bba094a2541962fb1501f88974f3759f1975cde6b348bb96e6c07a0b21e9a20c47b7cb9539abea5bb63236f1b75fa42f8e76b9a7b9a237321ae34f890c9dde70f5ab0acc3021b24bdf29713ecd