bfa2.clf-vps-001.clf.uk
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:06:0e:03:66:63:11:4e:b6:c7:95:35:bb:b7:cd:2a:03:1c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bfa2.clf-vps-001.clf.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:06:0e:03:66:63:11:4e:b6:c7:95:35:bb:b7:cd:2a:03:1cSerial Number (int): 350509464774052905859895183675705742983964
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d6:72:9a:6e:d7:da:0a:df:c5:fb:b2:7c:08:73:65:03:61:6e:68:d6
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): bb:1f:05:34:6f:5c:f8:70:6e:8e:58:d9:a6:0b:36:fe:ea:9a:eb:6c
Fingerprint (sha256): ce:90:7e:0d:27:29:9d:76:79:76:32:a5:2e:17:f8:5f:b6:6a:b4:f8:1f:fc:39:44:50:84:af:7c:7a:80:91:42
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate bfa2.clf-vps-001.clf.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bfa2.clf-vps-001.clf.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bfa2.clf-vps-001.clf.uk
Other certificates including the domain name clf.uk
(limited to 100 certificates)
clf.uk
jca1.clf-vps-001.clf.uk
hwa1.clf-vps-001.clf.uk
hwa1.clf-vps-001.clf.uk
clf.uk
tls.automattic.com
hpa1.clf-vps-001.clf.uk
clf.uk
clf.clf.academy
tls.automattic.com
staging.p161.clf-vps-001.clf.uk
clf.uk
*.clf.uk
staging.template1.clf-vps-001.clf.uk
clfhelpdesk.clf.uk
*.clf.uk
clf.uk
sa1.clf-vps-001.clf.uk
*.clf.uk
sni.cloudflaressl.com
bfa1.clf-vps-001.clf.uk
jca1.clf-vps-001.clf.uk
*.clf.uk
clf.uk
clf.uk
tls.automattic.com
wfa1.clf-vps-001.clf.uk
ba1.clf-vps-001.clf.uk
koa1.clf-vps-001.clf.uk
epa3.clf-vps-001.clf.uk
staging.p161.clf-vps-001.clf.uk
broadoakacademy.clf.uk
ba1.clf-vps-001.clf.uk
clf.uk
sts.clf.uk
tls.automattic.com
clf.clf.academy
clf.uk
clf.clf.academy
sni.cloudflaressl.com
staging.p161.clf-vps-001.clf.uk
tls.automattic.com
bpa1.clf-vps-001.clf.uk
ba1.clf-vps-001.clf.uk
dssb1.clf-vps-001.clf.uk
clfhelpdesk.clf.uk
jca1.clf-vps-001.clf.uk
bfa2.clf-vps-001.clf.uk
hwa1.clf-vps-001.clf.uk
tls.automattic.com
demoslider.clf-vps-001.clf.uk
broadoakacademy.clf.uk
bpa1.clf-vps-001.clf.uk
clfhelpdesk.clf.uk
clfhelpdesk.clf.uk
wfa1.clf-vps-001.clf.uk
bfa1.clf-vps-001.clf.uk
clf.uk
hpa1.clf-vps-001.clf.uk
hva1.clf-vps-001.clf.uk
clf.uk
sa1.clf-vps-001.clf.uk
tls.automattic.com
portal.clf.uk
clf.uk
clf.uk
jca1.clf-vps-001.clf.uk
hwa1.clf-vps-001.clf.uk
hwa1.clf-vps-001.clf.uk
clf.uk
tls.automattic.com
hpa1.clf-vps-001.clf.uk
clf.uk
clf.clf.academy
tls.automattic.com
staging.p161.clf-vps-001.clf.uk
clf.uk
*.clf.uk
staging.template1.clf-vps-001.clf.uk
clfhelpdesk.clf.uk
*.clf.uk
clf.uk
sa1.clf-vps-001.clf.uk
*.clf.uk
sni.cloudflaressl.com
bfa1.clf-vps-001.clf.uk
jca1.clf-vps-001.clf.uk
*.clf.uk
clf.uk
clf.uk
tls.automattic.com
wfa1.clf-vps-001.clf.uk
ba1.clf-vps-001.clf.uk
koa1.clf-vps-001.clf.uk
epa3.clf-vps-001.clf.uk
staging.p161.clf-vps-001.clf.uk
broadoakacademy.clf.uk
ba1.clf-vps-001.clf.uk
clf.uk
sts.clf.uk
tls.automattic.com
clf.clf.academy
clf.uk
clf.clf.academy
sni.cloudflaressl.com
staging.p161.clf-vps-001.clf.uk
tls.automattic.com
bpa1.clf-vps-001.clf.uk
ba1.clf-vps-001.clf.uk
dssb1.clf-vps-001.clf.uk
clfhelpdesk.clf.uk
jca1.clf-vps-001.clf.uk
bfa2.clf-vps-001.clf.uk
hwa1.clf-vps-001.clf.uk
tls.automattic.com
demoslider.clf-vps-001.clf.uk
broadoakacademy.clf.uk
bpa1.clf-vps-001.clf.uk
clfhelpdesk.clf.uk
clfhelpdesk.clf.uk
wfa1.clf-vps-001.clf.uk
bfa1.clf-vps-001.clf.uk
clf.uk
hpa1.clf-vps-001.clf.uk
hva1.clf-vps-001.clf.uk
clf.uk
sa1.clf-vps-001.clf.uk
tls.automattic.com
portal.clf.uk
clf.uk
clf.uk
Certificate
The complete raw certificate details for bfa2.clf-vps-001.clf.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgISBAYOA2ZjEU62x5U1u7fNKgMcMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjAyMzQ5MzRaFw0x OTEyMTkyMzQ5MzRaMCIxIDAeBgNVBAMTF2JmYTIuY2xmLXZwcy0wMDEuY2xmLnVr MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzV+uzJN5xUYUzyFU8Hy7 t/dh4OB9385vZKyObT6VSyAmH+MvsvNJikQjhCP5SO461HN1QoErlTEUtREBDgdA wGsvI7sp3SaIASHHw6jm18ecLyzLMhHe8wIUFbPyIytzjQz/eUUbM25bDxsbRdim L2BIGiIYEezWQFl3NRjTLq7f7yLtfljP5NgK2fV4gCpxFgFxidkmErJJkxpdwf/I 6N9tM4vcBFB3jeGavs0FSIFH/ETTp1oo95BVZDLP5f0VivVUmRqqavOOeAlxhwLg 00lgIjL2wI/MWIJpMP2zFXJrKzzCu/QiCa4G/5LZ/KmAyM7YRKxyHtAoIo7J+cm0 HwIDAQABo4ICbDCCAmgwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWcppu19oK38X7 snwIc2UDYW5o1jAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggr BgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRz ZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRz ZW5jcnlwdC5vcmcvMCIGA1UdEQQbMBmCF2JmYTIuY2xmLXZwcy0wMDEuY2xmLnVr MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB 9QSB8gDwAHYAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFtUUui 7wAABAMARzBFAiAtddjdN3L5QWb3txAQxeP4h27WszOw+oRTl0JajSzW2QIhAMWM LnkcdXMR+IhR7di3y1OYiFVewMlEYsA/gpeU3RXDAHYAKTxRllTIOWW6qlD8WAfU t2+/WHopctykwwz05UVH9HgAAAFtUUuiygAABAMARzBFAiEA+zSL2HRZ+PHwNaIZ 87WB7Djvk7b5bF6psPtJwyY2e8gCIDayYiM8P+mcp/xT0iusSaex8mS3ISCYIsCs gEi791NJMA0GCSqGSIb3DQEBCwUAA4IBAQAJn6PGrhKs8Uyl1ZXCNZ9J/pcI5E0l LLFzyoZrRnv2guUx9Rve2Pzy7EC93iZL34aux82SkhTMOUkkm9X3c+5bQZYiM8GP +soL3sx9+LN8f1Shyhhpz2KAPX8MB/JE1RhSIF2QlbfAn306lrsz83XIWmRMzEYW t83YA6EnxnE9rOWI9TUpXfqdPVzQICiXSawhAmdQL5Eycx5gK4hrEyuizQ/ns4Ij pL2aHvtbljXJ7eltldIpqlRY6OHQls/w9XCMm2TYouKcpStL6Y2+KaYV9zoL7+BZ ymjTqrsYTuAOX8AsVQQlHobVZza3AeGiwi+NCNXcZbOddLUWKFMeEHcT -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzV+uzJN5xUYUzyFU8Hy7 t/dh4OB9385vZKyObT6VSyAmH+MvsvNJikQjhCP5SO461HN1QoErlTEUtREBDgdA wGsvI7sp3SaIASHHw6jm18ecLyzLMhHe8wIUFbPyIytzjQz/eUUbM25bDxsbRdim L2BIGiIYEezWQFl3NRjTLq7f7yLtfljP5NgK2fV4gCpxFgFxidkmErJJkxpdwf/I 6N9tM4vcBFB3jeGavs0FSIFH/ETTp1oo95BVZDLP5f0VivVUmRqqavOOeAlxhwLg 00lgIjL2wI/MWIJpMP2zFXJrKzzCu/QiCa4G/5LZ/KmAyM7YRKxyHtAoIo7J+cm0 HwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 350509464774052905859895183675705742983964 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-20 23:49:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-19 23:49:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bfa2.clf-vps-001.clf.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25926035469733637105285730949194602329822512873376215233500932288632504161076210326256765312290101236114683472245381186348304298068042495539246249764405650389690230861155753021199631589199443306786436679386447901361221180565583590410568371828952756482720631559296685728000703378839875608548191990850059343653296154306659918702078700142436136936605350485158699727231087329465857991746928801104859891065738742785858084262531190600649746616587558628837581800978723897804900565690072755948162664297186840040828131139022412936340914208474019005933860937105589679154273900920125914255239940491973572555311091806668474397727 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d6729a6ed7da0adfc5fbb27c08736503616e68d6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bfa2.clf-vps-001.clf.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016d514ba2ef000004030047304502202d75d8dd3772f94166f7b71010c5e3f8876ed6b333b0fa845397425a8d2cd6d9022100c58c2e791c757311f88851edd8b7cb539888555ec0c94462c03f829794dd15c3007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d514ba2ca0000040300473045022100fb348bd87459f8f1f035a219f3b581ec38ef93b6f96c5ea9b0fb49c326367bc8022036b262233c3fe99ca7fc53d22bac49a7b1f264b721209822c0ac8048bbf75349 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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