tekton.engineering
Issued by R3
About this certificate
This digital certificate with serial number 04:81:ff:a6:86:51:a8:6d:42:82:4e:49:8d:88:da:a7:ef:9f was issued on by Let's Encrypt.
With 26 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tekton.engineering
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:81:ff:a6:86:51:a8:6d:42:82:4e:49:8d:88:da:a7:ef:9fSerial Number (int): 392685386844358212323871207146331432284063
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 5b:32:08:43:53:82:a5:70:df:d8:71:c4:ae:2b:9a:0f:45:72:02:c4
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 82:f1:69:1e:02:b0:98:37:13:0d:79:aa:21:d5:9b:aa:92:42:43:8b
Fingerprint (sha256): cb:95:1d:fd:db:f6:74:54:2d:b3:5b:d0:f0:a3:99:c7:ad:53:75:04:2c:3c:43:43:5f:7e:28:0a:30:39:f5:8b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate tekton.engineering
26
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tekton.engineering
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
baconcounty.com
barnescounty.com
bensenvillerealestate.com
breakingtheinternet.com
enhanceddiamond.com
fightouts.com
griggsville.com
jharkhandmatrimony.in
johnnysspace.com
locatesunlimitedservices.com
lynnview.com
migration.epik.support
nomurausa.com
oldiescafe.com
portlandhalfmarathon.com
prepaidcreditcardsonline.com
promomprobaby.net
realhealthysugar.com
sekase.com
sophosbrandingco.com
stcharlesmissouri.com
surreynosejob.com
sweepstakesdeaths.com
symiyatchclub.com
tekton.engineering
unionjackbarbers.com
barnescounty.com
bensenvillerealestate.com
breakingtheinternet.com
enhanceddiamond.com
fightouts.com
griggsville.com
jharkhandmatrimony.in
johnnysspace.com
locatesunlimitedservices.com
lynnview.com
migration.epik.support
nomurausa.com
oldiescafe.com
portlandhalfmarathon.com
prepaidcreditcardsonline.com
promomprobaby.net
realhealthysugar.com
sekase.com
sophosbrandingco.com
stcharlesmissouri.com
surreynosejob.com
sweepstakesdeaths.com
symiyatchclub.com
tekton.engineering
unionjackbarbers.com
Other certificates including the domain name tekton.engineering
(limited to 100 certificates)
Certificate
The complete raw certificate details for tekton.engineering in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG/DCCBeSgAwIBAgISBIH/poZRqG1Cgk5JjYjap++fMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTgwMzU1NDdaFw0yNDA1MTgwMzU1NDZaMB0xGzAZBgNVBAMT EnRla3Rvbi5lbmdpbmVlcmluZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjSms4G8t4gBr+ERigYZz11C5Dfb5AiewJj8cbLwl8UyhIgn53pcdM5uR+A IXN6OQslOqtvlV4U6kyBmzDPZsweBnDScRoAzOxFkh7O8MbDrBKIQhp/UpqRF5Or D9HWH4qtAnSQwGiremlqlwuXFS2piO/CmwfVoLscoz49cZFU/AwVEGngKpmj4+sp DLn9BAofRqn8x9exO+ZDxWTfbBauDuZI1QLiHLDzlpvhpySWJpaY1fdzkDKS00vq Qthf49YF8mklEa8gI+0VsLgzHtrCCeeTZC/WkqieQmH+xSpfcFLpxzI4MmnCof0P hDU6GO3x2HDEPpRT3jrhXwZIpEkCAwEAAaOCBB8wggQbMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUWzIIQ1OCpXDf2HHEriuaD0VyAsQwHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wggImBgNVHREEggIdMIICGYIPYmFjb25jb3VudHkuY29tghBiYXJuZXNj b3VudHkuY29tghliZW5zZW52aWxsZXJlYWxlc3RhdGUuY29tghdicmVha2luZ3Ro ZWludGVybmV0LmNvbYITZW5oYW5jZWRkaWFtb25kLmNvbYINZmlnaHRvdXRzLmNv bYIPZ3JpZ2dzdmlsbGUuY29tghVqaGFya2hhbmRtYXRyaW1vbnkuaW6CEGpvaG5u eXNzcGFjZS5jb22CHGxvY2F0ZXN1bmxpbWl0ZWRzZXJ2aWNlcy5jb22CDGx5bm52 aWV3LmNvbYIWbWlncmF0aW9uLmVwaWsuc3VwcG9ydIINbm9tdXJhdXNhLmNvbYIO b2xkaWVzY2FmZS5jb22CGHBvcnRsYW5kaGFsZm1hcmF0aG9uLmNvbYIccHJlcGFp ZGNyZWRpdGNhcmRzb25saW5lLmNvbYIRcHJvbW9tcHJvYmFieS5uZXSCFHJlYWxo ZWFsdGh5c3VnYXIuY29tggpzZWthc2UuY29tghRzb3Bob3NicmFuZGluZ2NvLmNv bYIVc3RjaGFybGVzbWlzc291cmkuY29tghFzdXJyZXlub3Nlam9iLmNvbYIVc3dl ZXBzdGFrZXNkZWF0aHMuY29tghFzeW1peWF0Y2hjbHViLmNvbYISdGVrdG9uLmVu Z2luZWVyaW5nghR1bmlvbmphY2tiYXJiZXJzLmNvbTATBgNVHSAEDDAKMAgGBmeB DAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2ADtTd3U+LbmAToswWwb+QDtn 2E/D9Me9AA0tcm/h+tQXAAABjbqSBTIAAAQDAEcwRQIgP83Bh96pFMNmda4hkGqH 8t5mL/6NpBM4eqnqMXYu7ewCIQC8Fq2WJVBoO3gkRd27zgjmZ1lqBjMHQy4xckE2 DKczDAB2AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjbqSBYQA AAQDAEcwRQIhANAmUf+NbDcP/a1QEW4E5PShAVz0GAOFGfjF+s6fs6DRAiAnDPQv RnOs333kdBAjAmAk365/MQafzFvZmOYTpyGm0jANBgkqhkiG9w0BAQsFAAOCAQEA qernQj5gVcX0+iPwiOc1ZLTHSYfj/0IvdMQZsujbQr8A0nIQ4dPmNj3tVEVsQZPF WZVrevXJOrMwrKFfJkER9tXu2MIGE3HowR8DrdE0sgVAOqo7uNNsgSUMAranFsZA RV3vTFEUrdhK5OZ1OSCeckx6U2LkuLngYTjliF38wwbv+SFnaUUSfsajF6JMxx5p 0+/CjIKYwR9IvI98shcpFWMuLRWfqsXM9RfazHPq/jXvKaeDomBBjGj8eRZkbamp LMkbzMEPtZb/tG/+INcwt6F3kGvOR0V95O0F0XcPKD7PgxboigHzMPUYk4n9OKfP OTRPUehTFebnrlbruBjOIg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNKazgby3iAGv4RGKBhn PXULkN9vkCJ7AmPxxsvCXxTKEiCfnelx0zm5H4Ahc3o5CyU6q2+VXhTqTIGbMM9m zB4GcNJxGgDM7EWSHs7wxsOsEohCGn9SmpEXk6sP0dYfiq0CdJDAaKt6aWqXC5cV LamI78KbB9WguxyjPj1xkVT8DBUQaeAqmaPj6ykMuf0ECh9GqfzH17E75kPFZN9s Fq4O5kjVAuIcsPOWm+GnJJYmlpjV93OQMpLTS+pC2F/j1gXyaSURryAj7RWwuDMe 2sIJ55NkL9aSqJ5CYf7FKl9wUunHMjgyacKh/Q+ENToY7fHYcMQ+lFPeOuFfBkik SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 392685386844358212323871207146331432284063 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-18 03:55:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-18 03:55:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tekton.engineering' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23331701165050425610070975178794165061269126620702661784650107458631194086585211954546552880417914228095929703626912355138425667204496199462397010033440497450271103830228620017745270505985174846938426094949849036984937898020473084456616782487315617893077986928796693646146208404789136194328238141471986733025950133353248811448715022461569862086886293323188265619701635772098475796280958492746087558751350301831216632358839718885238092255850111890681768650768548088765383967474883963440663075294951111555564456104566649561976272672084291333483057482407709982866364924522143592604944449979453998917331270104695960020041 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5b3208435382a570dfd871c4ae2b9a0f457202c4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (541 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baconcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'barnescounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bensenvillerealestate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'breakingtheinternet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enhanceddiamond.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fightouts.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'griggsville.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jharkhandmatrimony.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'johnnysspace.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'locatesunlimitedservices.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lynnview.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'migration.epik.support' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nomurausa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oldiescafe.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portlandhalfmarathon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prepaidcreditcardsonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'promomprobaby.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'realhealthysugar.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sekase.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sophosbrandingco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stcharlesmissouri.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'surreynosejob.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sweepstakesdeaths.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'symiyatchclub.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tekton.engineering' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'unionjackbarbers.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018dba920532000004030047304502203fcdc187dea914c36675ae21906a87f2de662ffe8da413387aa9ea31762eedec022100bc16ad962550683b782445ddbbce08e667596a063307432e317241360ca7330c007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018dba9205840000040300473045022100d02651ff8d6c370ffdad50116e04e4f4a1015cf418038519f8c5face9fb3a0d10220270cf42f4673acdf7de4741023026024dfae7f31069fcc5bd998e613a721a6d2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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