thingscon.nl
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:1f:bd:97:86:4f:e7:8d:17:b9:44:3d:cb:90:2d:62:bf:33 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=thingscon.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:1f:bd:97:86:4f:e7:8d:17:b9:44:3d:cb:90:2d:62:bf:33Serial Number (int): 272137622022032393501979048899558563299123
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5b:00:a1:1a:c4:d9:d7:5b:63:23:38:5d:85:b9:46:ba:c3:20:bf:3f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): cf:38:5c:10:dd:1c:cb:c6:76:a7:80:f1:33:42:d7:8c:8f:ca:c1:9d
Fingerprint (sha256): db:ad:45:a1:80:d3:23:7e:c2:54:5a:f6:7a:75:02:f1:29:03:77:23:52:64:a3:e9:2f:3e:86:5f:04:3d:49:11
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate thingscon.nl
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for thingscon.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
2016.thingscon.nl
thingscon.nl
www.thingscon.nl
thingscon.nl
www.thingscon.nl
Other certificates including the domain name thingscon.nl
(limited to 100 certificates)
thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
thingscon.nl
2015.thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
old.thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
old.thingscon.nl
old.thingscon.nl
thingscon.nl
thingscon.nl
2015.thingscon.nl
2015.thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
thingscon.nl
old.thingscon.nl
thingscon.nl
2015.thingscon.nl
Certificate
The complete raw certificate details for thingscon.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGITCCBQmgAwIBAgISAx+9l4ZP540XuUQ9y5AtYr8zMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA1MTUyMTE4MDBaFw0x NzA4MTMyMTE4MDBaMBcxFTATBgNVBAMTDHRoaW5nc2Nvbi5ubDCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBANBgIAoJ4l7zIE7Q5fhqIf2M0Owk1UzCLoM7 ZIXIF3C8RydlzqVLrE4p7tCsMtfttkPFvoNDfJqBaConiMbFqnWSjqemwGr4O1wy MNkYQfbqqYf9LXFZjAPyHsWozHf7M30OoG/7FKsKWFI0qMYZOM3nYdhhUBh2zezf 0MdNH8XHIc1IxgFnWAfM7KmqqiG39ft0VW/nxG4nxykn4IS1+S3+Sg6aMKY/tTIG a40cA+BcINdzJ6jswADntOq/ScvosxcWnMZoo1ktloMKp3ibpsGWsxOn5EA0H+NB D593+p8lhVB51gPgoYJVN018HSlO0mFSpQbZ0ROSzGh0GulCEadt+xMhJz4F1uOv tfJiklXPSCjwwm5xgLMY7BL0/X/PsmXpwm3CTgEcNe9bQ3uzvyQsdHko2mfQD2r0 slG4upnAra5w9APeZlsBvpYLfsAZqVoMw8fHEvyXQbj83t+7Dywu/dlnGSi2CJYD g6t0hR/lLOFCsVIC1wk0UDEO+ON2Kj6JfnWCFpPvNDsh+UI9w1xUCstz8ohaeL2f Fy2NAAzG9S83CuEigRmsS3/Qe3YD5v9s6l1TkfeyjtLqQpQ6/NbOOP57o0ViuAWl ZuPGOjNBtmOE3TxFRJtkYRqSMf81vvzyL53H05fOBixhUUq0oTQe1f2WHnIYSyxl Zjy/UkbHAgMBAAGjggIyMIICLjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFsAoRrE 2ddbYyM4XYW5RrrDIL8/MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MHAGCCsGAQUFBwEBBGQwYjAvBggrBgEFBQcwAYYjaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMDwGA1UdEQQ1MDOCETIwMTYudGhpbmdzY29uLm5s ggx0aGluZ3Njb24ubmyCEHd3dy50aGluZ3Njb24ubmwwgf4GA1UdIASB9jCB8zAI BgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8v Y3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRp ZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGll cyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBv bGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5 LzANBgkqhkiG9w0BAQsFAAOCAQEACahmljxP/6McSftyKtv8sDB3Rm0y6saAEE0a 3HQU40XZ3A2Obt837PllkMHhOHlcWzIw+yM/eHHbkgmwS1RCoaLo0l2iZsD0BdtN tdHKw3Gw0PFw29bK4bWa0IMHWnqIaf7ihluWcqLE/q6/NCWncmHjwodFqQuZj8A/ JRGLqYiAs0axS3h/MgCac47HBHhQk2Bi479TcXePrVthIMT6YhrUjUEOL23jxXEV YiIVjLFPNOjn+LXDugLE6PF1/udlrFrXBx6l5abXudCiuI2767uLAsxZfdwIPH9D clBaxJ7SNNHjQG2/cZNQHrLgi6oYS94ln2e333s179w7/hD8SA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0GAgCgniXvMgTtDl+Goh /YzQ7CTVTMIugztkhcgXcLxHJ2XOpUusTinu0Kwy1+22Q8W+g0N8moFoKieIxsWq dZKOp6bAavg7XDIw2RhB9uqph/0tcVmMA/IexajMd/szfQ6gb/sUqwpYUjSoxhk4 zedh2GFQGHbN7N/Qx00fxcchzUjGAWdYB8zsqaqqIbf1+3RVb+fEbifHKSfghLX5 Lf5KDpowpj+1MgZrjRwD4Fwg13MnqOzAAOe06r9Jy+izFxacxmijWS2WgwqneJum wZazE6fkQDQf40EPn3f6nyWFUHnWA+ChglU3TXwdKU7SYVKlBtnRE5LMaHQa6UIR p237EyEnPgXW46+18mKSVc9IKPDCbnGAsxjsEvT9f8+yZenCbcJOARw171tDe7O/ JCx0eSjaZ9APavSyUbi6mcCtrnD0A95mWwG+lgt+wBmpWgzDx8cS/JdBuPze37sP LC792WcZKLYIlgODq3SFH+Us4UKxUgLXCTRQMQ7443YqPol+dYIWk+80OyH5Qj3D XFQKy3PyiFp4vZ8XLY0ADMb1LzcK4SKBGaxLf9B7dgPm/2zqXVOR97KO0upClDr8 1s44/nujRWK4BaVm48Y6M0G2Y4TdPEVEm2RhGpIx/zW+/PIvncfTl84GLGFRSrSh NB7V/ZYechhLLGVmPL9SRscCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 272137622022032393501979048899558563299123 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-15 21:18:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-13 21:18:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thingscon.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 850097827128445127385824328442159023168450164010542740539689470787964708100073023742053963638799007214363118293078940889865352429065862603242955233398813246493621555704016876749161214262250188853734933428202161417597828649161647106344928840456161934946716354742135742866313167064764813713001810716219653244895378295757247043243663247020627389209417123938563470004831927981671453502576983260066588166456761589691489135886762372350175232303850835488627758326899801815610367415442626147469008107992020641087730096108903347647704297769119928007944566438408187080780486901456543662750347721234699977578459101819899914194712145431520198638275707515379003853024055682505150505252214818632520304432005516163053451607143521741956688520569266501448876000762659348669369481797462033464238691208353109640874353339210839461256858283969801591164131358171426768631132100904595158732148086072901832362183631482344555053727594701795664269737040332177740909867891211449634448756443156790752861471009865985892681043564956014133215114817526144791191100045577963232553653840762258825428706674144522618560414845555136962804570609044021917736261887594786243649910938387612417166882863778222363636266467258538249940753702174444627136131968604819142017697479 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5b00a11ac4d9d75b6323385d85b946bac320bf3f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '2016.thingscon.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thingscon.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thingscon.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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