freedomap.ca
Issued by R3
About this certificate
This digital certificate with serial number 04:16:10:8e:0f:21:c3:a4:b4:01:0a:56:ce:0e:13:08:88:40 was issued on by Let's Encrypt.
With 16 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=freedomap.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:16:10:8e:0f:21:c3:a4:b4:01:0a:56:ce:0e:13:08:88:40Serial Number (int): 355957361060299325490720068874412556322880
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: bd:cc:24:f1:00:8f:f9:0f:e5:64:de:9a:ea:bc:66:a9:aa:90:0b:5d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 40:43:6d:01:67:3f:bd:52:08:f4:e2:c3:c1:ca:57:22:f7:f9:63:c2
Fingerprint (sha256): d4:d8:4e:08:f9:c3:34:6a:4a:46:e5:e6:36:db:b8:bf:3d:38:d2:0c:1f:82:4d:6e:2e:b3:e0:63:eb:cf:0e:79
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate freedomap.ca
16
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for freedomap.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aberdeenhomesforsale.com
bhilai.biz.signcompanydallas.com
boothlaw.llc
edited.app
enterpac.com
erathcounty.com
freedomap.ca
globalwaronterrorism.com
hemphillcounty.com
marcovilla.com
martialartsmiddleburg.com
precepts.tv.finediningnj.com
rxsugarbars.com
simivalleylawyer.com.mauspad.com
workfromlondon.com.raunaqshawl.com
www.robertbecket.com
bhilai.biz.signcompanydallas.com
boothlaw.llc
edited.app
enterpac.com
erathcounty.com
freedomap.ca
globalwaronterrorism.com
hemphillcounty.com
marcovilla.com
martialartsmiddleburg.com
precepts.tv.finediningnj.com
rxsugarbars.com
simivalleylawyer.com.mauspad.com
workfromlondon.com.raunaqshawl.com
www.robertbecket.com
Other certificates including the domain name freedomap.ca
(limited to 100 certificates)
Certificate
The complete raw certificate details for freedomap.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRTCCBS2gAwIBAgISBBYQjg8hw6S0AQpWzg4TCIhAMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjcxMzA5MTBaFw0yNDAyMjUxMzA5MDlaMBcxFTATBgNVBAMT DGZyZWVkb21hcC5jYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM2v RFISh6HeAvWzZZLzzPsug2cQUlXj2tA6sqFHjM98LsR3N4xaNqicpCxiPkf7XmqJ K+JOVLUNKucSvgb7oBls02grTQwHUBZli0sWpfzBqVI1TbVXvLRyh9YmtbhZISI/ DUHYMTfrFb9R1Z9zCUeq2RKcfkc8Ea/0j4n8xSGRVHoYQ8m9Q1JJIWsRqs78jzNu IleFioHfDdbXS19c2O1NuTCBtB7ohRVcCspHVoBr8i/ee4YM2B1cWW/X9hCrXkru PbX2+XQzLcoM64Ja4+IvcGm6gRsR4QfUpq6plx67MeJvcU2Gp1ZyA6bEnzRz2PZ1 OwiM3VI9GcOb7q46kJkCAwEAAaOCA24wggNqMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUvcwk8QCP+Q/lZN6a6rxmqaqQC10wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w ggF0BgNVHREEggFrMIIBZ4IYYWJlcmRlZW5ob21lc2ZvcnNhbGUuY29tgiBiaGls YWkuYml6LnNpZ25jb21wYW55ZGFsbGFzLmNvbYIMYm9vdGhsYXcubGxjggplZGl0 ZWQuYXBwggxlbnRlcnBhYy5jb22CD2VyYXRoY291bnR5LmNvbYIMZnJlZWRvbWFw LmNhghhnbG9iYWx3YXJvbnRlcnJvcmlzbS5jb22CEmhlbXBoaWxsY291bnR5LmNv bYIObWFyY292aWxsYS5jb22CGW1hcnRpYWxhcnRzbWlkZGxlYnVyZy5jb22CHHBy ZWNlcHRzLnR2LmZpbmVkaW5pbmduai5jb22CD3J4c3VnYXJiYXJzLmNvbYIgc2lt aXZhbGxleWxhd3llci5jb20ubWF1c3BhZC5jb22CIndvcmtmcm9tbG9uZG9uLmNv bS5yYXVuYXFzaGF3bC5jb22CFHd3dy5yb2JlcnRiZWNrZXQuY29tMBMGA1UdIAQM MAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYASLDja9qmRzQP 5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGMERzUFwAABAMARzBFAiBLlPIRSBNU z3vA6jZdQb64NelzC5XiYDOLQiUTrb3ZYgIhAM676FlGB+akVgmBH/f87myCDkxb XIF5G84IoqoVKphjAHcAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQA AAGMERzUcAAABAMASDBGAiEA6nUuTN9Rb3R5BUZj9I1Z7upLCX6N/QVw8vTEzoNJ cA0CIQDmaakJAtcSu3IQGC6BJyl9ITn/hLUnO3FDZMfNu611LDANBgkqhkiG9w0B AQsFAAOCAQEAYU4Jb/u/QUewYxEBNxmcKAdoRIan2WxGCwjgY06ZLOAMjer0euQP 4GCXDZD+gQNPJQk2BHQ4m/YN2onyVWBj57h4Bk/SLLf+NIyvum1cvHSKg9Y/FGh4 ox+geNh729nuTcdCPQONZmEmvnqyMqVvu31NU+vWYIIoL8v8Sn7yn+LqN8+A6jQ8 E3xUs/8l9vivDVjutZfDhjpa6eCOrhqSEpihaDHIlyfPjhBZ2HELXMmZ5+oc7QzY A45FOhyx14wwpzaDsSBprdJqSDc/RUgYz6kHmTyHxr02ud6FQ5ND7fa/WagD1H12 TRTzYWEmj+BdgZYL22bYJ5536Vm7k8fMmA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAza9EUhKHod4C9bNlkvPM +y6DZxBSVePa0DqyoUeMz3wuxHc3jFo2qJykLGI+R/teaokr4k5UtQ0q5xK+Bvug GWzTaCtNDAdQFmWLSxal/MGpUjVNtVe8tHKH1ia1uFkhIj8NQdgxN+sVv1HVn3MJ R6rZEpx+RzwRr/SPifzFIZFUehhDyb1DUkkhaxGqzvyPM24iV4WKgd8N1tdLX1zY 7U25MIG0HuiFFVwKykdWgGvyL957hgzYHVxZb9f2EKteSu49tfb5dDMtygzrglrj 4i9wabqBGxHhB9SmrqmXHrsx4m9xTYanVnIDpsSfNHPY9nU7CIzdUj0Zw5vurjqQ mQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 355957361060299325490720068874412556322880 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-27 13:09:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-25 13:09:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'freedomap.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25965279836441326553920724758061582591134228958246280328034337604446717953723231864190500055453368613126576483968747572266171909422061283576638209930111560088797138712870290320860644434857698317838514987543086275703980481259280199804564763500619827209598062684316616582703744887733029193285137999140087173197358817012121765087485856204830190302866320784598306944643047082819782240179000774382967922985096824906435371287596959717074465469221385104448204155536135176956486224980574335150170341068244344772475675389295478324965076023785409445596120282546335984772990801434067128341642030575341833271762520490577187475609 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bdcc24f1008ff90fe564de9aeabc66a9aa900b5d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aberdeenhomesforsale.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bhilai.biz.signcompanydallas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'boothlaw.llc' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edited.app' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpac.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'erathcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freedomap.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'globalwaronterrorism.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hemphillcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marcovilla.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'martialartsmiddleburg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'precepts.tv.finediningnj.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rxsugarbars.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'simivalleylawyer.com.mauspad.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'workfromlondon.com.raunaqshawl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.robertbecket.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c111cd417000004030047304502204b94f211481354cf7bc0ea365d41beb835e9730b95e260338b422513adbdd962022100cebbe8594607e6a45609811ff7fcee6c820e4c5b5c81791bce08a2aa152a986300770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c111cd4700000040300483046022100ea752e4cdf516f7479054663f48d59eeea4b097e8dfd0570f2f4c4ce8349700d022100e669a90902d712bb7210182e8127297d2139ff84b5273b714364c7cdbbad752c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00614e096ffbbf4147b063110137199c2807684486a7d96c460b08e0634e992ce00c8deaf47ae40fe060970d90fe81034f2509360474389bf60dda89f2556063e7b878064fd22cb7fe348cafba6d5cbc748a83d63f146878a31fa078d87bdbd9ee4dc7423d038d666126be7ab232a56fbb7d4d53ebd66082282fcbfc4a7ef29fe2ea37cf80ea343c137c54b3ff25f6f8af0d58eeb597c3863a5ae9e08eae1a921298a16831c89727cf8e1059d8710b5cc999e7ea1ced0cd8038e453a1cb1d78c30a73683b12069add26a48373f454818cfa907993c87c6bd36b9de85439343edf6bf59a803d47d764d14f36161268fe05d81960bdb66d8279e77e959bb93c7cc98