grapevine.northdevonhospice.org.uk
Issued by Amazon
About this certificate
This digital certificate with serial number 0d:65:3c:d4:b2:da:27:06:73:2c:a0:13:8b:36:28:34 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=grapevine.northdevonhospice.org.uk
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:65:3c:d4:b2:da:27:06:73:2c:a0:13:8b:36:28:34Serial Number (int): 17805619724214657930643970549945346100
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d6:94:c5:85:4e:ac:f8:cf:7c:28:dd:be:0b:3f:b5:0b:1c:90:07:1b
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 0f:ee:b3:2c:e4:86:1c:75:9f:97:a3:3d:34:f9:f2:a8:68:ee:f7:d7
Fingerprint (sha256): d4:e6:4d:87:08:62:40:05:a3:c1:73:4c:6c:d1:a2:30:dc:9e:c1:a2:ae:3b:25:82:ba:fd:4a:cf:b4:47:18:1e
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate grapevine.northdevonhospice.org.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for grapevine.northdevonhospice.org.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
grapevine.northdevonhospice.org.uk
intranet.northdevonhospice.org.uk
intranet.northdevonhospice.org.uk
Other certificates including the domain name northdevonhospice.org.uk
(limited to 100 certificates)
webmail.northdevonhospice.org.uk
*.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
secure.northdevonhospice.org.uk
www.northdevonhospice.org.uk
www.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
www.northdevonhospice.org.uk
remote.northdevonhospice.org.uk
remote.northdevonhospice.org.uk
www.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
remote.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
www.northdevonhospice.org.uk
grapevine.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
*.northdevonhospice.org.uk
www.northdevonhospice.org.uk
webmail.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
*.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
*.northdevonhospice.org.uk
secure.northdevonhospice.org.uk
grapevine.northdevonhospice.org.uk
grapevine.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
grapevine.northdevonhospice.org.uk
secure.northdevonhospice.org.uk
grapevine.northdevonhospice.org.uk
secure.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
*.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
secure.northdevonhospice.org.uk
www.northdevonhospice.org.uk
www.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
www.northdevonhospice.org.uk
remote.northdevonhospice.org.uk
remote.northdevonhospice.org.uk
www.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
remote.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
www.northdevonhospice.org.uk
grapevine.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
*.northdevonhospice.org.uk
www.northdevonhospice.org.uk
webmail.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
*.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
*.northdevonhospice.org.uk
secure.northdevonhospice.org.uk
grapevine.northdevonhospice.org.uk
grapevine.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
grapevine.northdevonhospice.org.uk
secure.northdevonhospice.org.uk
grapevine.northdevonhospice.org.uk
secure.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
donate.northdevonhospice.org.uk
Certificate
The complete raw certificate details for grapevine.northdevonhospice.org.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgIQDWU81LLaJwZzLKATizYoNDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xODEyMTcwMDAwMDBaFw0yMDAxMTcx MjAwMDBaMC0xKzApBgNVBAMTImdyYXBldmluZS5ub3J0aGRldm9uaG9zcGljZS5v cmcudWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0ZQq9Z+MBiT5u DUUoVOotccyoBvsPxrPAxQEDKWNBWwD9YOKqurVDwUfSppco44UxXxBUjeJEMdYp A0ONJOnFtM57TLi5ZrugLK+61nQZRrngp8jCWEIM/IWwpF1NKxgap6n2C4ESRdkb XFTVidL3MWbMY8Cc4+zTwTzPsvSk1s8XB0iK3/RWvNmHC68nWwa6NharbpD+xRTt QtBYNvHmwPueZgCNECw6UJS6EmrHNOa2saR3loGmd7VglNb+B/cuqJcjJady0Pbz ERKKleDxpl2Sm7A3zfO+f0HMBCcejCxXCDwHlrz9tj5aadckncCJVBVzC6H+Ob2i gPScVjGXAgMBAAGjggKxMIICrTAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0 W/k90DAdBgNVHQ4EFgQU1pTFhU6s+M98KN2+Cz+1CxyQBxswUAYDVR0RBEkwR4Ii Z3JhcGV2aW5lLm5vcnRoZGV2b25ob3NwaWNlLm9yZy51a4IhaW50cmFuZXQubm9y dGhkZXZvbmhvc3BpY2Uub3JnLnVrMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2Ny bC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3JsMCAGA1UdIAQZMBcwCwYJ YIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGG IWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYq aHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1Ud EwEB/wQCMAAwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgCkuQmQtBhYFIe7E6LM Z3AKPDWYBPkb37jjd80OyA3cEAAAAWe8En+PAAAEAwBHMEUCIDFhXIvT2Yyf8Wj4 FIyAcxGej5LHbWgDmHTfaknIH0/SAiEAv7NRjy6faeDMNgv3ARV7ON/4VuFonuzN 2OkDNyD+g8cAdgCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCDDwAAAWe8 EoBpAAAEAwBHMEUCIQDBkav/zPK86mWmU4K/heg6gVYFkOtKxmxRJxeegPXtPQIg cX9bXyQhhZlHf4MLADMwsYxCPPvdkIvMKlo1WgWBesMwDQYJKoZIhvcNAQELBQAD ggEBAH8hncuHYs31onOnwtJUXuVc12tJNtWvqwtPNrB1hvoaEfvu7YtDXya6zkZc LSTSh6d+mklCUqbU1sUeqvFe5zQBcbKD7cSWH2Fk6PY9L7SeoKf3bIt1Bes8KtlU Ll2FzQjIB2vBHeggTRe+9NrrVPl/zNSYt+kXRlmaANH2GlORUc8jKtlNM0FKjp9p IyWUr+WFNGNjhuOYIxQ5HQHJybIYKFNUXrb9jDxBebCWFHCNZsYhYQCt+KsnRt5S IZsm9UxA1KGOyCkTAFKiFTgGXFdjOX9crKya0LNYvjH+KObA+mkkV+nOtxv5WpRw 8nYw5k2Kfez41c8TIwdancr0n70= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGUKvWfjAYk+bg1FKFTq LXHMqAb7D8azwMUBAyljQVsA/WDiqrq1Q8FH0qaXKOOFMV8QVI3iRDHWKQNDjSTp xbTOe0y4uWa7oCyvutZ0GUa54KfIwlhCDPyFsKRdTSsYGqep9guBEkXZG1xU1YnS 9zFmzGPAnOPs08E8z7L0pNbPFwdIit/0VrzZhwuvJ1sGujYWq26Q/sUU7ULQWDbx 5sD7nmYAjRAsOlCUuhJqxzTmtrGkd5aBpne1YJTW/gf3LqiXIyWnctD28xESipXg 8aZdkpuwN83zvn9BzAQnHowsVwg8B5a8/bY+WmnXJJ3AiVQVcwuh/jm9ooD0nFYx lwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17805619724214657930643970549945346100 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-17 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'grapevine.northdevonhospice.org.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22772720537746399783316484421230412458434994075266697861396693030191405960639201129518851269132378676993907806256557172517701562192335240419227476954917728393155385668165644050994752577775787865963227093661632640167291237774065746090473274173632596388891354157062341764326872974081515696797710720151662508823346938680160441822394305186866282022143323020674808612263746358661829784346780406010139101217448175948947082789271973751182322511117181810580562803754174171981102670558854601268625457424826681074012297458869688918453707020383804526193053312611839699889972721182274446609399090845629366955936328680754522763671 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d694c5854eacf8cf7c28ddbe0b3fb50b1c90071b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'grapevine.northdevonhospice.org.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intranet.northdevonhospice.org.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000167bc127f8f0000040300473045022031615c8bd3d98c9ff168f8148c8073119e8f92c76d68039874df6a49c81f4fd2022100bfb3518f2e9f69e0cc360bf701157b38dff856e1689eeccdd8e9033720fe83c70076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000167bc1280690000040300473045022100c191abffccf2bcea65a65382bf85e83a81560590eb4ac66c5127179e80f5ed3d0220717f5b5f24218599477f830b003330b18c423cfbdd908bcc2a5a355a05817ac3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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