oboshii.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:05:29:d6:42:d2:4e:98:b1:6b:1e:21:8d:38:57:39:13:19 was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=oboshii.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:05:29:d6:42:d2:4e:98:b1:6b:1e:21:8d:38:57:39:13:19Serial Number (int): 263093880484541612655421378630183292572441
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 48:61:98:7d:df:30:74:53:26:f6:5f:2e:0f:84:c4:c0:01:c7:d2:8d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d7:c6:d1:1e:f3:7f:18:bc:fa:3f:5c:38:4f:e8:41:37:1e:a9:d7:90
Fingerprint (sha256): de:bd:92:79:35:24:19:9c:73:d7:4a:09:2f:93:98:10:63:47:bd:a7:85:57:37:9a:d9:8b:2e:57:b1:01:62:74
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate oboshii.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for oboshii.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bosh.ca
buoy.ca
extranet.cryptogramophone.com
oboshii.com
oceansofvows.com
buoy.ca
extranet.cryptogramophone.com
oboshii.com
oceansofvows.com
Other certificates including the domain name oboshii.com
(limited to 100 certificates)
1999.cryptogramophone.com
oboshii.com
bogue.ca
bogue.ca
oboshii.com
bogue.ca
dev.bosh.ca
oboshii.com
bogue.ca
dev.bosh.ca
oboshii.com
oboshii.com
bogue.ca
bogue.ca
oboshii.com
oboshii.com
www.oboshii.com
bogue.ca
bogue.ca
d.bogue.ca
o.oboshii.com
bogue.ca
angel.d.bogue.ca
angel.d.bogue.ca
oboshii.com
oboshii.com
oboshii.com
bogue.ca
oboshii.com
extranet.cryptogramophone.com
oboshii.com
oboshii.com
d.bogue.ca
bogue.ca
oboshii.com
bogue.ca
bogue.ca
bogue.ca
bogue.ca
oboshii.com
d.bogue.ca
oboshii.com
oboshii.com
bogue.ca
bogue.ca
bogue.ca
oboshii.com
dev.bosh.ca
oboshii.com
1999.cryptogramophone.com
dev.bosh.ca
bogue.ca
oboshii.com
oboshii.com
d.bogue.ca
oboshii.com
bogue.ca
bogue.ca
oboshii.com
bogue.ca
dev.bosh.ca
oboshii.com
bogue.ca
dev.bosh.ca
oboshii.com
oboshii.com
bogue.ca
bogue.ca
oboshii.com
oboshii.com
www.oboshii.com
bogue.ca
bogue.ca
d.bogue.ca
o.oboshii.com
bogue.ca
angel.d.bogue.ca
angel.d.bogue.ca
oboshii.com
oboshii.com
oboshii.com
bogue.ca
oboshii.com
extranet.cryptogramophone.com
oboshii.com
oboshii.com
d.bogue.ca
bogue.ca
oboshii.com
bogue.ca
bogue.ca
bogue.ca
bogue.ca
oboshii.com
d.bogue.ca
oboshii.com
oboshii.com
bogue.ca
bogue.ca
bogue.ca
oboshii.com
dev.bosh.ca
oboshii.com
1999.cryptogramophone.com
dev.bosh.ca
bogue.ca
oboshii.com
oboshii.com
d.bogue.ca
Certificate
The complete raw certificate details for oboshii.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGkjCCBXqgAwIBAgISAwUp1kLSTpixax4hjThXORMZMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA0MjQxNjA4MjZaFw0x OTA3MjMxNjA4MjZaMBYxFDASBgNVBAMTC29ib3NoaWkuY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEA0m1xnQ2lrDmlJS2bySUCa8/2aasKB6e1xnn8 t+KCn/z7ABa7aNr4nSvj4ZC1//wxRXVg03OgyfzH3/557nI5GH6bhcnzEU4/PYOL JZDYs2tcfXAdWvOPnp69d0MkKoEMAmpokbT56BIAQnv2TELrFiDSRK+oU+DBTzYj SL5AWVfiSOsMJBwf1szhWhVc4nHGQWF+lBR5nMsgr7zT3xt+BBD60FY3G6A1M59X 2XgsqCLkbi4OyMUWVYiJFWs4KmeEK46B3BNCfavM0B3O/gvpN6HHpU9nYvkA2UFY SbJVVjg4Hvsj8uP+z8TIKJqWsoMesJBkzpzrlzrRdpwdqeYKGfbgULHaL0oRjzhp H3PMTyGQi/ZblKVVv04WAK2abswwZXJuPZfMQ09SO2VosyMs+pbjAeY15hGLBemB 9w73vgPh1pLH3rBjJq85PjJ5Kp37fbDLm2aB3oyT6U9Luj+cjfL7S/tpPB3EJIOp pQGlFeEWJ+miHdgi3l+K2BhvFO5P7LhHvFlikmQPo7ZTqBWegVcbuVLcL2vws38i IjMAta5Eyhf93GEN5C5NI9KbnzkAU4zgtroizll5eifsF0llQ68DJGtgONhSE5X8 4zgpv9w1d84sfLwY/HRAoP3M2e8mboqxemlCDG8RP3apJCtix19OIfnCVoVwQvYI QHB+jI8CAwEAAaOCAqQwggKgMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUSGGYfd8w dFMm9l8uD4TEwAHH0o0wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzBZBgNVHREEUjBQggdib3NoLmNhggdidW95LmNhgh1l eHRyYW5ldC5jcnlwdG9ncmFtb3Bob25lLmNvbYILb2Jvc2hpaS5jb22CEG9jZWFu c29mdm93cy5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEw KDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgor BgEEAdZ5AgQCBIH2BIHzAPEAdwDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd 3fHb/gAAAWpQUeoLAAAEAwBIMEYCIQCXjHzVlRn2s1DK40dCyHncdHoOp2tbShTz GRPm77PokAIhALb+3cq7LWKjZGlZ7l4P5VPdz3sv7M9v8Sv8Syez9NAzAHYAKTxR llTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFqUFHqDgAABAMARzBFAiBl Gp6xsdaeMt8PGUEGbW8+fpSLpSSewTkvL0gE901LWQIhAIyRXWeWbOntEywDr4yE GItlEwltD09tkGGVRHrbtxAKMA0GCSqGSIb3DQEBCwUAA4IBAQCEloxGZvkGisbt fLv3cI/alM+MmhhjvwhKzMls7dzUiC901dwcuJmkVvM7Dmai2JyQSoQDLnOOUEwB o7kbjiJoK16WRSte9WpxxhCokuPsrzSHxFGxNugjdfbKBuV/13Ncn9UB/W+lk+wz IAhaECzqSDOKeT41A1TqpCkUMlJ2fI5H6SeQk16JPm6JNAsvTih1gDw1d887QJnb tPLpxWWPQY8WpeicfiZL+2GWH7wfr71++fPFxxxq6Wsh3n4BMib4gu9ycPCbZ7Sf SpdJcFRP1NIRkkx/FfeB8BazQBkFEO3Oa/VO202npHhbs+LKrTRtFtMWpCSHaYg0 ac84i+vx -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0m1xnQ2lrDmlJS2bySUC a8/2aasKB6e1xnn8t+KCn/z7ABa7aNr4nSvj4ZC1//wxRXVg03OgyfzH3/557nI5 GH6bhcnzEU4/PYOLJZDYs2tcfXAdWvOPnp69d0MkKoEMAmpokbT56BIAQnv2TELr FiDSRK+oU+DBTzYjSL5AWVfiSOsMJBwf1szhWhVc4nHGQWF+lBR5nMsgr7zT3xt+ BBD60FY3G6A1M59X2XgsqCLkbi4OyMUWVYiJFWs4KmeEK46B3BNCfavM0B3O/gvp N6HHpU9nYvkA2UFYSbJVVjg4Hvsj8uP+z8TIKJqWsoMesJBkzpzrlzrRdpwdqeYK GfbgULHaL0oRjzhpH3PMTyGQi/ZblKVVv04WAK2abswwZXJuPZfMQ09SO2VosyMs +pbjAeY15hGLBemB9w73vgPh1pLH3rBjJq85PjJ5Kp37fbDLm2aB3oyT6U9Luj+c jfL7S/tpPB3EJIOppQGlFeEWJ+miHdgi3l+K2BhvFO5P7LhHvFlikmQPo7ZTqBWe gVcbuVLcL2vws38iIjMAta5Eyhf93GEN5C5NI9KbnzkAU4zgtroizll5eifsF0ll Q68DJGtgONhSE5X84zgpv9w1d84sfLwY/HRAoP3M2e8mboqxemlCDG8RP3apJCti x19OIfnCVoVwQvYIQHB+jI8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 263093880484541612655421378630183292572441 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-24 16:08:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-23 16:08:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'oboshii.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 858469362723442897837949095444443926402568998972331365701722405546075083912271009860613120725731283643680625206382073814278177574964899718548907355361714295776510896396791410585131602439986289746713422459087122778260040794622981722683739316997625262987512777038123876059173639097059801565044976041411233714860986907508189167878261694428391097385344705778470272443846421692788841077787688862010873576480637660439363051602094121460988936619007578809506013059169019287370560323971677789695785224344791443760114253836891284732001258610140923919668509159543093819104077219297398402422635652428575539128635268018725077862372727655225909364148373242429832251230012496802989759580099487904315205516501466877928831320347504463590230848314316069142272739953870346392028573600751315888348493187404185236818952568171338663279500861881668125439599935693728286872583183002530505521676326064126059542289825411603673401079399062937910065726989138015434366579004811232760896931806742025641722524330300268035998234174004393765895835782418536030344892949325666763275685356730976098348998139786774857934325718398977089021047117182499402001138161574919763224111919723469946178045092095223288866729399421894487157158471189403494418868122416220807486147727 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4861987ddf30745326f65f2e0f84c4c001c7d28d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bosh.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'buoy.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'extranet.cryptogramophone.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oboshii.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oceansofvows.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016a5051ea0b0000040300483046022100978c7cd59519f6b350cae34742c879dc747a0ea76b5b4a14f31913e6efb3e890022100b6feddcabb2d62a3646959ee5e0fe553ddcf7b2feccf6ff12bfc4b27b3f4d033007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016a5051ea0e00000403004730450220651a9eb1b1d69e32df0f1941066d6f3e7e948ba5249ec1392f2f4804f74d4b590221008c915d67966ce9ed132c03af8c84188b6513096d0f4f6d906195447adbb7100a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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