johannes.skartland.net
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:28:98:d7:de:a3:fe:d1:50:27:07:6d:b6:1c:3c:09:9e:b8 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=johannes.skartland.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:28:98:d7:de:a3:fe:d1:50:27:07:6d:b6:1c:3c:09:9e:b8Serial Number (int): 362263601918750402062648214218875228233400
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 00:11:a6:d9:5a:3c:d0:6c:9e:6f:56:2b:5a:27:9f:20:8e:03:c6:ee
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 28:7f:ce:10:ed:3e:f3:a7:83:79:98:7f:6d:c3:fd:1f:5a:e7:d9:8a
Fingerprint (sha256): cd:a2:12:39:7b:54:77:55:bd:83:36:19:1e:40:44:bf:cc:89:05:24:7c:01:81:c4:37:94:fc:c2:05:d8:2d:8c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate johannes.skartland.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for johannes.skartland.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
johannes.skartland.net
Other certificates including the domain name skartland.net
(limited to 100 certificates)
johannes.skartland.net
johannes.skartland.net
johannes.skartland.net
img.skartland.net
img.skartland.net
johannes.skartland.net
johannes.skartland.net
img.skartland.net
img.skartland.net
johannes.skartland.net
wdev.skartland.net
code.skartland.net
dev.skartland.net
wdev.skartland.net
img.skartland.net
dev.skartland.net
img.skartland.net
skartland.net
img.skartland.net
img.skartland.net
img.skartland.net
code.skartland.net
asgaard.skartland.net
johannes.skartland.net
web.skartland.net
johannes.skartland.net
johannes.skartland.net
johannes.skartland.net
skartland.net
wdev.skartland.net
wdev.skartland.net
johannes.skartland.net
img.skartland.net
johannes.skartland.net
img.skartland.net
johannes.skartland.net
img.skartland.net
asgaard.skartland.net
dev.skartland.net
johannes.skartland.net
img.skartland.net
asgaard.skartland.net
img.skartland.net
img.skartland.net
img.skartland.net
johannes.skartland.net
img.skartland.net
img.skartland.net
img.skartland.net
skartland.net
dev.skartland.net
johannes.skartland.net
johannes.skartland.net
johannes.skartland.net
img.skartland.net
johannes.skartland.net
asgaard.skartland.net
johannes.skartland.net
johannes.skartland.net
johannes.skartland.net
johannes.skartland.net
img.skartland.net
johannes.skartland.net
img.skartland.net
nc.skartland.net
johannes.skartland.net
johannes.skartland.net
img.skartland.net
img.skartland.net
johannes.skartland.net
johannes.skartland.net
img.skartland.net
img.skartland.net
johannes.skartland.net
wdev.skartland.net
code.skartland.net
dev.skartland.net
wdev.skartland.net
img.skartland.net
dev.skartland.net
img.skartland.net
skartland.net
img.skartland.net
img.skartland.net
img.skartland.net
code.skartland.net
asgaard.skartland.net
johannes.skartland.net
web.skartland.net
johannes.skartland.net
johannes.skartland.net
johannes.skartland.net
skartland.net
wdev.skartland.net
wdev.skartland.net
johannes.skartland.net
img.skartland.net
johannes.skartland.net
img.skartland.net
johannes.skartland.net
img.skartland.net
asgaard.skartland.net
dev.skartland.net
johannes.skartland.net
img.skartland.net
asgaard.skartland.net
img.skartland.net
img.skartland.net
img.skartland.net
johannes.skartland.net
img.skartland.net
img.skartland.net
img.skartland.net
skartland.net
dev.skartland.net
johannes.skartland.net
johannes.skartland.net
johannes.skartland.net
img.skartland.net
johannes.skartland.net
asgaard.skartland.net
johannes.skartland.net
johannes.skartland.net
johannes.skartland.net
johannes.skartland.net
img.skartland.net
johannes.skartland.net
img.skartland.net
nc.skartland.net
Certificate
The complete raw certificate details for johannes.skartland.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYzCCBUugAwIBAgISBCiY196j/tFQJwdtthw8CZ64MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMDgwMTAwMjRaFw0y MDAyMDYwMTAwMjRaMCExHzAdBgNVBAMTFmpvaGFubmVzLnNrYXJ0bGFuZC5uZXQw ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCa5qD8BVFL5gfYJ/y0GGbT IcWz/G1pNlp1+NE7HG1GNEKemLn9UlGBKZgc6KS7FqG4jnqs/GPWBtHND3QTWGc/ 4rDge4De8SnzvFnOZM6dJJWP9Bg0YIovAEBT+Yp7FvEPvJkm/OiJsjERN1lC7p+I vsg/gZqRJRcf+gI6IpB4QZh4cW3WRGgXrc4ORuhDYGCsn58si0ygqsqWIQD4AEH9 SLXubV+weQ4cyglYCXRGgQytkJGB2Na52IULIyAwWQq2H0HZKWBorm808kIPug3E f4/d1RdV31jzNmR+WWvPk/fe3wdwx1w65ZUHBTtHyeZwuXggubtQqDlW6eIlVpPJ cbpBhmNWo3dB2P2XFc3FjPV/HKOm+TFzYP3y0X7ANBDf7fs4LFjqPOs7TQ8SnCfS KYanLSEUaEg5Uh2YOQXrVdpmyrDjUrK1XD0bf00pbkUWCxyXSvY7gXWzrNNVv8B7 Fsx7Nx4ZJTLfl77NPlh05nadva0Zem4o8eTcD94Y//J2mWjMAgF2csfx/uXfo9tv ByIKMOGmWNhdaPMiJhTj+C88b2BgVDgCnxM653QlcW7Lz1L6rcWRKgcJLo6BriMV GcEamyCsSmxmr9dGHrECVO3vMCIJYypvujKvDWLvWhrJZ3efEymw0gsEA8pv3rj/ XxzqVej4fQ+i3P7dbD1JYwIDAQABo4ICajCCAmYwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQAEabZWjzQbJ5vVitaJ58gjgPG7jAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFmpvaGFubmVz LnNrYXJ0bGFuZC5uZXQwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggED BgorBgEEAdZ5AgQCBIH0BIHxAO8AdgDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0 prCoqo6ycwAAAW5Ivb3/AAAEAwBHMEUCIQCxlaiBArSYG5ssQr+m1w6d4oH5pm9v jGgKv5XiSsvJEAIgT7bkg5gpAhotwE5BW9Ib/he52e9o7/tYw8j4NNQw8lgAdQCy HgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAW5Ivb3uAAAEAwBGMEQC IEWIkTqcjEAtna3JBUQjuecbljmf1rVM0JJTbrO110L1AiBFyDL3pB5JVLZatQ4X dB6cnAtyMaPGKQeanz1znPu0kDANBgkqhkiG9w0BAQsFAAOCAQEAAr1KnkSF/Xlp btl+9eD1pXPMEQiNyvS0eU47IHv++y4f6Yxps8As77wA5Y3Sv3n4wsE1pi6m53K7 HUeKlwNfa8C025S4DQaQcHT/65LDMx6UndYlkAlbmWUwIVEkjk9l7wIoOgPbockw gWiAK3fsDKZd4FQdJlsmSPE8pEUqcKikO3p26zFXlaGlULOEmII1YQYm/xN0D4+x n/4w8Of4hVYKP6H9g96TDaDa1pl+/zJEAG4S+RkCh9BWjuUgbFUkKvkRXYx+CupB cGBw46kH/ioGdY1o30yHTIaH/6YhrXDp1zh/5hm2f3FG+4nJkeRat7M4+bEmAtOj YFomToRQ2A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmuag/AVRS+YH2Cf8tBhm 0yHFs/xtaTZadfjROxxtRjRCnpi5/VJRgSmYHOikuxahuI56rPxj1gbRzQ90E1hn P+Kw4HuA3vEp87xZzmTOnSSVj/QYNGCKLwBAU/mKexbxD7yZJvzoibIxETdZQu6f iL7IP4GakSUXH/oCOiKQeEGYeHFt1kRoF63ODkboQ2BgrJ+fLItMoKrKliEA+ABB /Ui17m1fsHkOHMoJWAl0RoEMrZCRgdjWudiFCyMgMFkKth9B2SlgaK5vNPJCD7oN xH+P3dUXVd9Y8zZkfllrz5P33t8HcMdcOuWVBwU7R8nmcLl4ILm7UKg5VuniJVaT yXG6QYZjVqN3Qdj9lxXNxYz1fxyjpvkxc2D98tF+wDQQ3+37OCxY6jzrO00PEpwn 0imGpy0hFGhIOVIdmDkF61XaZsqw41KytVw9G39NKW5FFgscl0r2O4F1s6zTVb/A exbMezceGSUy35e+zT5YdOZ2nb2tGXpuKPHk3A/eGP/ydplozAIBdnLH8f7l36Pb bwciCjDhpljYXWjzIiYU4/gvPG9gYFQ4Ap8TOud0JXFuy89S+q3FkSoHCS6Oga4j FRnBGpsgrEpsZq/XRh6xAlTt7zAiCWMqb7oyrw1i71oayWd3nxMpsNILBAPKb964 /18c6lXo+H0Potz+3Ww9SWMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 362263601918750402062648214218875228233400 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-08 01:00:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-06 01:00:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'johannes.skartland.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 631940513043803143881970235156862406902652296142394728171902591810753526443754996664188066367454720643715519773889187393673191360389848202813384516937517782737120387069664164346826572272006483693974498333310411351680961271943115351665024240165162195230024517248408422931105224513241149299955726080003915586249089722739136221592844917949079561631024571830369016213318733785211067446395823200031090174067152183304826580448644712300034875314159983057639094591481377018541169959041653455167810976446515387447227640620673279451596600721642770393977468164612750441045830986933946724753751819419834753759170132752595701302699702773863128940431953848815948046638621159381271850909013426949037057740827807460345319787550114690572336556970039682118371726812583575533917932686150671642378399598285655699800305817061714442596809670850347193830403727706478212524181662856503439006612975444873323408117835825102386229605839694925802465536795920529503808162223996048447238055961086528438794798420906048712850700736506185724107431916817098402028109612271052544756925407573048346375807189112384765841584678508021325726747712863755119422810922161470110815537883179196454785894756470983947413346759423223229331256768482986908120618564535566532003842403 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0011a6d95a3cd06c9e6f562b5a279f208e03c6ee . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'johannes.skartland.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016e48bdbdff0000040300473045022100b195a88102b4981b9b2c42bfa6d70e9de281f9a66f6f8c680abf95e24acbc91002204fb6e4839829021a2dc04e415bd21bfe17b9d9ef68effb58c3c8f834d430f258007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016e48bdbdee000004030046304402204588913a9c8c402d9dadc9054423b9e71b96399fd6b54cd092536eb3b5d742f5022045c832f7a41e4954b65ab50e17741e9c9c0b7231a3c629079a9f3d739cfbb490 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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