hsmp.org
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 55:53:e5:07:6d:f2:8c:7b:0d:1d:6e:26:39:b6:27:ed was issued on by Google Trust Services LLC.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=hsmp.org
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 55:53:e5:07:6d:f2:8c:7b:0d:1d:6e:26:39:b6:27:edSerial Number (int): 113419985541399703242444586569665226733
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 3e:b2:f6:4b:ad:bd:d1:56:93:35:70:40:75:9f:66:6e:5b:73:33:91
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 81:31:96:4f:f0:bc:52:e3:83:a2:30:fd:fb:4e:36:43:0d:39:59:a3
Fingerprint (sha256): dd:b9:fa:29:20:17:ea:b1:b3:70:aa:2f:31:a1:d7:f2:c1:a4:07:f1:40:5c:90:a9:97:f1:f6:25:d6:01:56:3c
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/CnXz3TzRNjACRL Distribution Point: http://crls.pki.goog/gts1p5/Zn3bDrcK0Gs.crl
Check the revocation status for certificate hsmp.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hsmp.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hsmp.org
Other certificates including the domain name hsmp.org
(limited to 100 certificates)
second.exteraschools.org
admin.adulteducation.pleasantonusd.net
admin.lorena.exteraschools.org
admin.adulteducation.pleasantonusd.net
admin.whitson.wsvsd.org
www.saintpaulcatholic.org
abchandler.henderson.kyschools.us
breed.exteraschools.org
abchandler.henderson.kyschools.us
admin.second.exteraschools.org
admin.adulteducation.pleasantonusd.net
shagirls.com
admin.exteraschools.org
northwesthigh.slp.k12.la.us
abchandler.henderson.kyschools.us
www.trinitystelementary.com
gageparkhs.org
admin.ecacademy.scrsd.org
abchandler.henderson.kyschools.us
exteraschools.org
hsmp.org
abchandler.henderson.kyschools.us
www.lusd.k12.ca.us
admin.assumptionschool-sl.org
admin.ecacademy.scrsd.org
admin.hsmp.org
abchandler.henderson.kyschools.us
www.exteraschools.org
admin.ecacademy.scrsd.org
admin.trinitystelementary.com
admin.ecacademy.scrsd.org
www.gracepointschool.org
admin.assumptionschool-sl.org
second.exteraschools.org
admin.ecacademy.scrsd.org
admin.breed.exteraschools.org
admin.res.rfisd.net
admin.ecacademy.scrsd.org
hsmp.org
www.rebsamen.mx
admin.ecacademy.scrsd.org
ms.pycsd.org
admin.ecacademy.scrsd.org
admin.assumptionschool-sl.org
lorena.exteraschools.org
hsmp.org
trinitystelementary.com
admin.ecacademy.scrsd.org
grandcoteauelem.slp.k12.la.us
admin.adulteducation.pleasantonusd.net
hsmp.org
admin.assumptionschool-sl.org
breed.exteraschools.org
abchandler.henderson.kyschools.us
eastman.exteraschools.org
hs.cumberlandacademy.com
admin.adulteducation.pleasantonusd.net
admin.lorena.exteraschools.org
admin.adulteducation.pleasantonusd.net
admin.whitson.wsvsd.org
www.saintpaulcatholic.org
abchandler.henderson.kyschools.us
breed.exteraschools.org
abchandler.henderson.kyschools.us
admin.second.exteraschools.org
admin.adulteducation.pleasantonusd.net
shagirls.com
admin.exteraschools.org
northwesthigh.slp.k12.la.us
abchandler.henderson.kyschools.us
www.trinitystelementary.com
gageparkhs.org
admin.ecacademy.scrsd.org
abchandler.henderson.kyschools.us
exteraschools.org
hsmp.org
abchandler.henderson.kyschools.us
www.lusd.k12.ca.us
admin.assumptionschool-sl.org
admin.ecacademy.scrsd.org
admin.hsmp.org
abchandler.henderson.kyschools.us
www.exteraschools.org
admin.ecacademy.scrsd.org
admin.trinitystelementary.com
admin.ecacademy.scrsd.org
www.gracepointschool.org
admin.assumptionschool-sl.org
second.exteraschools.org
admin.ecacademy.scrsd.org
admin.breed.exteraschools.org
admin.res.rfisd.net
admin.ecacademy.scrsd.org
hsmp.org
www.rebsamen.mx
admin.ecacademy.scrsd.org
ms.pycsd.org
admin.ecacademy.scrsd.org
admin.assumptionschool-sl.org
lorena.exteraschools.org
hsmp.org
trinitystelementary.com
admin.ecacademy.scrsd.org
grandcoteauelem.slp.k12.la.us
admin.adulteducation.pleasantonusd.net
hsmp.org
admin.assumptionschool-sl.org
breed.exteraschools.org
abchandler.henderson.kyschools.us
eastman.exteraschools.org
hs.cumberlandacademy.com
Certificate
The complete raw certificate details for hsmp.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIQVVPlB23yjHsNHW4mObYn7TANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDAyMDExOTQ1MzBaFw0yNDA1MDEx OTQ1MjlaMBMxETAPBgNVBAMTCGhzbXAub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAtphQhp3lqyuSGxmn6pnrRvM51unP8VeJOwrGj/18PTU+VzKJ jgnO143CNydNSgaPbfGDMcJXb4wcjfheejIENv9ntOPft3lNB5tdF73/h1ZaXhoS bNsBgyRvNVBgbAVC9+AJEbAp6T9UA2mKI9jGqXWUnibqeE1nB1Jv1v/45b2XZg7g glih3rJvi3Y5Dx/ExruW7WobfzvhihjEGq00o6qKLWIUSebduCCd7j66jTVU+QpQ mqslXep5yrOcDg8h9ePRjPFz/hjwORWST8T1RNCjH5/llj7F//BR2wCvgamNlcRJ xahN5yqqi0DQy+UWi1ZJIIyrtIqEFF1rrqNJXQIDAQABo4ICcDCCAmwwDgYDVR0P AQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFD6y9kutvdFWkzVwQHWfZm5bczORMB8GA1UdIwQYMBaAFNX8ng3fHsrd CJeXbivFX8Ur9ey4MHgGCCsGAQUFBwEBBGwwajA1BggrBgEFBQcwAYYpaHR0cDov L29jc3AucGtpLmdvb2cvcy9ndHMxcDUvQ25YejNUelJOakEwMQYIKwYBBQUHMAKG JWh0dHA6Ly9wa2kuZ29vZy9yZXBvL2NlcnRzL2d0czFwNS5kZXIwEwYDVR0RBAww CoIIaHNtcC5vcmcwIQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8 BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxcDUvWm4z YkRyY0swR3MuY3JsMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA7s3QZNXbGs7F XLedtM0TojKHRny87N7DUUhZRnEftZsAAAGNZmtk5wAABAMARzBFAiBe6hsy099h +6P7tdKmoTC7nb0pnMj95y0GxXGpovebqwIhAI9mG/ihQy4sZmXdZBrs94wE3vrm 0h58jCRtM1U/owOqAHcA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sA AAGNZmtl7QAABAMASDBGAiEAmhgnKPYuEPOr2Qq5A+VE4V7z2PF42BU9xvYfq1gG X5oCIQD5wk9kDmXyMAN5ilJA9bnbzFdCUQJLiTSHYzUiD62QZTANBgkqhkiG9w0B AQsFAAOCAQEACEDh5e1PGjdCRvEcKadMa77a46vExJesi/18fO0GEIIzEwDsP3MY gzEvfKxUy/Ix2xsSiobSM6gbyCFSGg6XpCwYhQK1IlY7hfE9+wPjHtBiXxDf4U/u YbvQYSyTxmonJoL09ksIIe9Uy0Dhq1pgaURxzY6PTKylCKwNKTyGnxOsvDSE9NEr J07wF914RdPt3TvgZ076dippkHLxTlA+Ttc4aEEWGqxjF6MKSluUOiFSo0b0U7Gu Tu3M46IyWyXPwdiRztmDzFNYC6keBzfsGhFoOLvbhXVKbr+5C2Uyr9ul+9lcegd4 j+hpUZtCjl/+1uUjBuhMACl15b14ZxbEow== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtphQhp3lqyuSGxmn6pnr RvM51unP8VeJOwrGj/18PTU+VzKJjgnO143CNydNSgaPbfGDMcJXb4wcjfheejIE Nv9ntOPft3lNB5tdF73/h1ZaXhoSbNsBgyRvNVBgbAVC9+AJEbAp6T9UA2mKI9jG qXWUnibqeE1nB1Jv1v/45b2XZg7gglih3rJvi3Y5Dx/ExruW7WobfzvhihjEGq00 o6qKLWIUSebduCCd7j66jTVU+QpQmqslXep5yrOcDg8h9ePRjPFz/hjwORWST8T1 RNCjH5/llj7F//BR2wCvgamNlcRJxahN5yqqi0DQy+UWi1ZJIIyrtIqEFF1rrqNJ XQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 113419985541399703242444586569665226733 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-01 19:45:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-01 19:45:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hsmp.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23050480609798738671459009510105028803217446750288910656302572776233001518878961992023872437119749694796596181283328259115805061844114516641369937136574307243341016550575484995919470907731160347873322221028700730386731108117852475042496862223271886229605725687305344461879711402889877304999111449421588920136385884431944246909611909129066864020575442469692266526357018201492477147565643633725527630616544880640328381437048218508843862202823958262298071817663974932642291707678547965821452077244873383398706645495068398233138020130384928932690434133677200931253024086041993297550057701353079230707427464792217475041629 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3eb2f64badbdd15693357040759f666e5b733391 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/CnXz3TzRNjA' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hsmp.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/Zn3bDrcK0Gs.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018d666b64e7000004030047304502205eea1b32d3df61fba3fbb5d2a6a130bb9dbd299cc8fde72d06c571a9a2f79bab0221008f661bf8a1432e2c6665dd641aecf78c04defae6d21e7c8c246d33553fa303aa007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018d666b65ed00000403004830460221009a182728f62e10f3abd90ab903e544e15ef3d8f178d8153dc6f61fab58065f9a022100f9c24f640e65f23003798a5240f5b9dbcc574251024b8934876335220fad9065 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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