baristacafe.com.br
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:ac:fa:5f:21:9b:02:1b:b4:bb:1d:19:82:c0:a5:e8:43:bf was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=baristacafe.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ac:fa:5f:21:9b:02:1b:b4:bb:1d:19:82:c0:a5:e8:43:bfSerial Number (int): 320198225854430480007133266659652523279295
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 28:13:4c:48:8e:08:22:10:a6:0b:ad:c5:cd:df:a9:20:cb:57:df:41
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 12:09:99:1b:3b:33:60:71:a9:be:be:99:9f:89:15:44:b0:a8:dd:5f
Fingerprint (sha256): d8:34:c9:3c:a7:ee:9d:52:88:96:58:60:86:87:b0:b8:4a:b8:0a:67:3c:4e:ea:a7:fc:d1:a0:cb:c9:ed:3b:bb
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate baristacafe.com.br
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for baristacafe.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
autodiscover.baristacafe.com.br
baristacafe.com.br
cpanel.baristacafe.com.br
mail.baristacafe.com.br
webdisk.baristacafe.com.br
webmail.baristacafe.com.br
www.baristacafe.com.br
baristacafe.com.br
cpanel.baristacafe.com.br
mail.baristacafe.com.br
webdisk.baristacafe.com.br
webmail.baristacafe.com.br
www.baristacafe.com.br
Other certificates including the domain name baristacafe.com.br
(limited to 100 certificates)
Certificate
The complete raw certificate details for baristacafe.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGuDCCBaCgAwIBAgISA6z6XyGbAhu0ux0ZgsCl6EO/MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA5MjgxMjQxMzJaFw0x ODEyMjcxMjQxMzJaMB0xGzAZBgNVBAMTEmJhcmlzdGFjYWZlLmNvbS5icjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALswQfdu7MG9TeoygC9UTeJiKWzv zyrdbZuY2duLxmUvvaUu28yNTCnRNG1coh94Lku9b3RQn5rA9PRFIOdyHqi5Tyvm ZZv2f0vjt20vGKJFX/RB/Z3JLlWDkS939zupB+4b446pH1SvC9Sdkt280Q0vAF6h uS/vVXjMN+MH12Ph3hdX7Vr1E0b0tMFR1y6xnSpiYUOte7JL85RNf2kBNT2irEyz dVKWUnt8vkHYylnFqFuiNDJKLHGWqO/XG3MWflJPmpKuHxT99sjjwDvoroZkVGZe MBRksXerlQ02EMLkAd1CrXZSYt1IjFCqzwY4F2rb6XUWEqjVUI2CmZPhjH8CAwEA AaOCA8MwggO/MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUKBNMSI4IIhCmC63Fzd+p IMtX30EwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzCBxAYDVR0RBIG8MIG5gh9hdXRvZGlzY292ZXIuYmFyaXN0YWNhZmUu Y29tLmJyghJiYXJpc3RhY2FmZS5jb20uYnKCGWNwYW5lbC5iYXJpc3RhY2FmZS5j b20uYnKCF21haWwuYmFyaXN0YWNhZmUuY29tLmJyghp3ZWJkaXNrLmJhcmlzdGFj YWZlLmNvbS5icoIad2VibWFpbC5iYXJpc3RhY2FmZS5jb20uYnKCFnd3dy5iYXJp c3RhY2FmZS5jb20uYnIwgf4GA1UdIASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQB gt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9y ZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJl IHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25seSBpbiBhY2Nv cmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRw czovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5LzCCAQUGCisGAQQB1nkCBAIE gfYEgfMA8QB3ANt0r+7LKeyx/so+cW0s5bmquzb3hHGDx12dTze2H79kAAABZiBp vwAAAAQDAEgwRgIhALNrUfr9lYn8FD2VQPWn+CjIYFMYhidO91hagKLinERPAiEA 2TGft0MwA5sFUEgYDhaHL33wXQEaW5WSvK+jMIa0VgAAdgApPFGWVMg5ZbqqUPxY B9S3b79Yeily3KTDDPTlRUf0eAAAAWYgab8bAAAEAwBHMEUCIQDwYGGxVi2hXUn3 n9UgrwpsGvKpd95Tfut5+ldMMEEWbAIgD0LcH05UZh0sNlhWwmGA6GlUDDCMCuJi mf/Q07Xwz5EwDQYJKoZIhvcNAQELBQADggEBAC7/tZLk8uA1H4Y1bXs+KCSWYPcB 7CA0HpA10uqLZm4/r9j8OXDhzLhAZep7E96zawc3QR5S6lwcRk36pVqxPDTMlAFN GVH/KsZzIGm9hJsm6YzvG7inzcbUrMazH8v3Oq/3S3mnqXcV+9UBk8Wtg40gFhtj bUooqbeKh4R+L5OWPKNTtkFfwJCOY7rAD8Lu8vpVYtGMNP3bK91nWzg8yaF/eZWK ymwTFi1MVK5hUhX+UE19T32qv52LumfJfpwgiHan9s7EPUBnWJoGmtpqU4v4RTA3 4uRDPi6I7OJnZNoPEffgg3XWEZPuFnjSuz3EXL9joa8y2i9YxE33v2/PzsU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzBB927swb1N6jKAL1RN 4mIpbO/PKt1tm5jZ24vGZS+9pS7bzI1MKdE0bVyiH3guS71vdFCfmsD09EUg53Ie qLlPK+Zlm/Z/S+O3bS8YokVf9EH9nckuVYORL3f3O6kH7hvjjqkfVK8L1J2S3bzR DS8AXqG5L+9VeMw34wfXY+HeF1ftWvUTRvS0wVHXLrGdKmJhQ617skvzlE1/aQE1 PaKsTLN1UpZSe3y+QdjKWcWoW6I0MkoscZao79cbcxZ+Uk+akq4fFP32yOPAO+iu hmRUZl4wFGSxd6uVDTYQwuQB3UKtdlJi3UiMUKrPBjgXatvpdRYSqNVQjYKZk+GM fwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 320198225854430480007133266659652523279295 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-28 12:41:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-27 12:41:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'baristacafe.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23630359778456940833053358440654728590925697758630195094358841529531259950945087132213039152011386496933138307809027427178104312261027787899974773728206771048996633917214901941073540520149599797570206772812842271047550870989870880192721554905884860674228004533148632666581719297002433999140759209869200640210017601264298161434284930738344575838219466337174204109902140138196123616017508382765164474939497324098604091734389864242940961184997026151525884157738986186768683207205748240972092535100944825033411901313328328672529556398254778742469712883433841262879529119375644239678113754340756985502638592912801730235519 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 28134c488e082210a60badc5cddfa920cb57df41 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (188 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.baristacafe.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baristacafe.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.baristacafe.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.baristacafe.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.baristacafe.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.baristacafe.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.baristacafe.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf64000001662069bf000000040300483046022100b36b51fafd9589fc143d9540f5a7f828c860531886274ef7585a80a2e29c444f022100d9319fb74330039b055048180e16872f7df05d011a5b9592bcafa33086b45600007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001662069bf1b0000040300473045022100f06061b1562da15d49f79fd520af0a6c1af2a977de537eeb79fa574c3041166c02200f42dc1f4e54661d2c365856c26180e869540c308c0ae26299ffd0d3b5f0cf91 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002effb592e4f2e0351f86356d7b3e28249660f701ec20341e9035d2ea8b666e3fafd8fc3970e1ccb84065ea7b13deb36b0737411e52ea5c1c464dfaa55ab13c34cc94014d1951ff2ac6732069bd849b26e98cef1bb8a7cdc6d4acc6b31fcbf73aaff74b79a7a97715fbd50193c5ad838d20161b636d4a28a9b78a87847e2f93963ca353b6415fc0908e63bac00fc2eef2fa5562d18c34fddb2bdd675b383cc9a17f79958aca6c13162d4c54ae615215fe504d7d4f7daabf9d8bba67c97e9c208876a7f6cec43d4067589a069ada6a538bf8453037e2e4433e2e88ece26764da0f11f7e08375d61193ee1678d2bb3dc45cbf63a1af32da2f58c44df7bf6fcfcec5