www.einfacher-hoeren.de
Issued by thawte DV SSL SHA256 CA
About this certificate
This digital certificate with serial number 24:09:52:d1:ba:37:3b:d3:e8:5d:41:c8:0e:f2:e2:06 was issued on by thawte, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.einfacher-hoeren.de
thawte, Inc.
Organization:
thawte, Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 24:09:52:d1:ba:37:3b:d3:e8:5d:41:c8:0e:f2:e2:06Serial Number (int): 47900618293888235066893236928681009670
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 7d:29:31:2f:c1:1e:6e:ae:31:05:6a:b3:eb:1c:cd:a9:dd:ae:80:9a
Fingerprint (sha1): 08:11:90:59:bf:41:fb:3a:d9:1d:40:05:db:39:e6:0d:08:cb:21:7f
Fingerprint (sha256): d7:f2:28:ae:8f:4e:d8:ca:a3:d7:ee:b7:02:d6:69:7e:6c:d0:09:3a:02:de:29:54:5b:2b:4c:8e:22:4c:95:ea
Issuing Certificate URL: http://tm.symcb.com/tm.crt
Revocation information
OCSP Server: http://tm.symcd.comCRL Distribution Point: http://tm.symcb.com/tm.crl
Check the revocation status for certificate www.einfacher-hoeren.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.einfacher-hoeren.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
Other certificates including the domain name einfacher-hoeren.de
(limited to 100 certificates)
einfacher-hoeren.de
testarea.einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
testarea.einfacher-hoeren.de
api.einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
www.einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
www.einfacher-hoeren.de
einfacher-hoeren.de
api.einfacher-hoeren.de
cron.einfacher-hoeren.de
testarea.einfacher-hoeren.de
testarea.einfacher-hoeren.de
einfacher-hoeren.de
www.einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
api.einfacher-hoeren.de
www.einfacher-hoeren.de
testarea.einfacher-hoeren.de
einfacher-hoeren.de
www.einfacher-hoeren.de
einfacher-hoeren.de
www.einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
testarea.einfacher-hoeren.de
testarea.einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
testarea.einfacher-hoeren.de
api.einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
www.einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
www.einfacher-hoeren.de
einfacher-hoeren.de
api.einfacher-hoeren.de
cron.einfacher-hoeren.de
testarea.einfacher-hoeren.de
testarea.einfacher-hoeren.de
einfacher-hoeren.de
www.einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
api.einfacher-hoeren.de
www.einfacher-hoeren.de
testarea.einfacher-hoeren.de
einfacher-hoeren.de
www.einfacher-hoeren.de
einfacher-hoeren.de
www.einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
einfacher-hoeren.de
testarea.einfacher-hoeren.de
testarea.einfacher-hoeren.de
Certificate
The complete raw certificate details for www.einfacher-hoeren.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgIQJAlS0bo3O9PoXUHIDvLiBjANBgkqhkiG9w0BAQsFADBl MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMR0wGwYDVQQLExRE b21haW4gVmFsaWRhdGVkIFNTTDEgMB4GA1UEAxMXdGhhd3RlIERWIFNTTCBTSEEy NTYgQ0EwHhcNMTYwODI1MDAwMDAwWhcNMTcwODI1MjM1OTU5WjAiMSAwHgYDVQQD DBd3d3cuZWluZmFjaGVyLWhvZXJlbi5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMLapLw4kD1N8onaTfl17R9+JB33HXu1lBT4i4uUF4Gq+Z1lnnPk +oNNoDsugangkR6W1NK1RF4RJUEx0mKKRVPZjoe3vRQ8K4RzFphpqwcPg3QSqe0d 3XV11Yn1/Ce7/6w2bmCyEh5vI50efzmEoDSRLjuzMz60KSiXp4QtybQsIVqCSFHP FS/h5iz9Zr2eCaEQHEo2Gz8yBbT5bR11youdooEW/ukD7pUoZGqbWpHwK++M/vmc pIdkKEFRC24BHhVBT9sMtIi5e4nVgVijOO1rRNZpd26zgTZWHsek6AAEw7qtAPeK bEcUwky1k2xKc8zgvaHJ/M8KKgVDiSGU/QsCAwEAAaOCApYwggKSMDcGA1UdEQQw MC6CF3d3dy5laW5mYWNoZXItaG9lcmVuLmRlghNlaW5mYWNoZXItaG9lcmVuLmRl MAkGA1UdEwQCMAAwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL3RtLnN5bWNiLmNv bS90bS5jcmwwbgYDVR0gBGcwZTBjBgZngQwBAgEwWTAmBggrBgEFBQcCARYaaHR0 cHM6Ly93d3cudGhhd3RlLmNvbS9jcHMwLwYIKwYBBQUHAgIwIwwhaHR0cHM6Ly93 d3cudGhhd3RlLmNvbS9yZXBvc2l0b3J5MB8GA1UdIwQYMBaAFH0pMS/BHm6uMQVq s+sczandroCaMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwVwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8vdG0u c3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRwOi8vdG0uc3ltY2IuY29tL3RtLmNy dDCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB1AN3rHSt6DU+mIIuBrYFocH4ujp0B 1VyIjT0RxM227L7MAAABVsEtGm8AAAQDAEYwRAIgcum2B73AotvJmCpzYO/ZruAN oKWdYjXqhmhQYWMamHQCIFJsmvzS7F3MIFd7eeXph0tVx6YHvYpHug5IzBrWx89H AHcApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFWwS0bvgAABAMA SDBGAiEAtBYXhJ2UzVQVgg+Sb//Xo5WyXddeKq1vvu5hyNQ7WTkCIQDYRYGqFb3L qlct+1mvUQDECn1W8lmSz18iGI3tZvbNWTANBgkqhkiG9w0BAQsFAAOCAQEAelMB PSbfoKbFwH9H3ica2tzzNE4jASuVNiOk0uK0eIHbs5CEiXfBgFkpsCmbdrehRm/z +bYZ3Ac4iVE4MAjx47fhqgnJf5HdHYmnNXetVmWefMq/HxKqkJvpxppP9izF2Aeh ED8K+hHcZZZoAppdKLOTNtGnk8RAiOf77qoaS0zgbXC9mJNNDkYl7FGPg53JQ764 1VO+869NRUeZt9ebZvdU9ZyiPdH3hRYGyFddDhg42q8bIhgvmW2NTrlTs9bFBKF7 JaUJn2z1gySzfpkrNYZNrR9fKUe64XdV1UmxqJDDvrmzSbuNDH3tNG8Hy0l1OTgJ 3iBNKspkp17CHGUzBw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtqkvDiQPU3yidpN+XXt H34kHfcde7WUFPiLi5QXgar5nWWec+T6g02gOy6BqeCRHpbU0rVEXhElQTHSYopF U9mOh7e9FDwrhHMWmGmrBw+DdBKp7R3ddXXVifX8J7v/rDZuYLISHm8jnR5/OYSg NJEuO7MzPrQpKJenhC3JtCwhWoJIUc8VL+HmLP1mvZ4JoRAcSjYbPzIFtPltHXXK i52igRb+6QPulShkaptakfAr74z++Zykh2QoQVELbgEeFUFP2wy0iLl7idWBWKM4 7WtE1ml3brOBNlYex6ToAATDuq0A94psRxTCTLWTbEpzzOC9ocn8zwoqBUOJIZT9 CwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 47900618293888235066893236928681009670 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte DV SSL SHA256 CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.einfacher-hoeren.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24598048290197147652089885091074789121425355559341145481236245477663744593240352773959636722776191626439545766091658539696435999150724311288301037238046837527777993068669020989268027176906023863818499615754308414023498346061068629920484936504563451017039641049865941550566151030490702719202957560230192563765464019477477579196232678830716741184457967536869273768600998387851843960127383941956865241396561276429653097888904021385534353386871702670915047740020150989954152457284815954502710214100859969424053205473470412229947098272895684720784391307051859074293330850483520803128091595228314980189426825484258927508747 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.einfacher-hoeren.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'einfacher-hoeren.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tm.symcb.com/tm.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7d29312fc11e6eae31056ab3eb1ccda9ddae809a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tm.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tm.symcb.com/tm.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc00000156c12d1a6f0000040300463044022072e9b607bdc0a2dbc9982a7360efd9aee00da0a59d6235ea86685061631a98740220526c9afcd2ec5dcc20577b79e5e9874b55c7a607bd8a47ba0e48cc1ad6c7cf47007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000156c12d1bbe0000040300483046022100b41617849d94cd5415820f926fffd7a395b25dd75e2aad6fbeee61c8d43b5939022100d84581aa15bdcbaa572dfb59af5100c40a7d56f25992cf5f22188ded66f6cd59 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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