sontag.at
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:38:12:94:ff:e5:32:a7:82:c5:fa:e2:50:8c:c0:f0:a4:11 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sontag.at
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:38:12:94:ff:e5:32:a7:82:c5:fa:e2:50:8c:c0:f0:a4:11Serial Number (int): 367529656028646107086251030834824837374993
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b3:00:ec:30:f7:78:85:fc:e3:9c:36:6b:6a:d6:2d:b6:b0:97:41:5f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 12:32:dc:d5:6b:fb:92:46:a8:fb:8d:d5:d7:55:a0:39:9e:c9:d4:e1
Fingerprint (sha256): e1:95:07:1a:97:9b:66:64:82:bc:ee:d3:72:7f:9d:76:8a:6d:bb:e9:2a:71:d7:c1:d2:3b:af:9f:2c:01:b8:bf
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate sontag.at
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sontag.at
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sontag.at
www.sontag.at
www.sontag.at
Other certificates including the domain name sontag.at
(limited to 100 certificates)
stammbaum.sontag.at
sontag.at
sontag.at
stammbaum.sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
stammbaum.sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
stammbaum.sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
stammbaum.sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
stammbaum.sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
stammbaum.sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
sontag.at
Certificate
The complete raw certificate details for sontag.at in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHDTCCBfWgAwIBAgISBDgSlP/lMqeCxfriUIzA8KQRMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA4MDUwNzAyMTlaFw0x ODExMDMwNzAyMTlaMBQxEjAQBgNVBAMTCXNvbnRhZy5hdDCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAK1kJydRH0376eDp3GNE7uyBn083FbVR6OqI97H6 gRod4RTeUa9dWZZR142eH9kJ/ywK9EetcsXrPfN4yYtG1gQ/BJ/HMsE1UzX0um8w L/8b1mr3/QmV6BNP82eNF7jDKARJX7P7pNPdkAoemB9oVcAKQZ5FuUqXMwQO5iPU akH/L9uWcW1Kg3pbOFgk5D+epRCpzI3cPZGiRPS3q5ECzdE6THr3QK+VtAefwjF0 znC6Yz+rKXlARRJj7d7NVCKrB23vrDPe6xFVqKQqKsrnesZ1j7Ah8tZLBWHOhq6q yX8XJ5nzyLeMDY8hIObQIW5BmLrsF1lezz4Up62PI7nLy6gQvvy6F6zlHBc1ihDq 1dr/Qv6tJQcSi02PzCiCSOb/M7SSnqzDP4sgZ0yKvN2B5u+Amk06rlpw3GJUgzUi YzjlSrnwY1bS8I17H+e183TTQlb6gYeqRtu+/m92E0g5PUQmZTIhcZSZH7vFQcRM HpwDOmcxl0ZLLFV3fCByxV9iYj06OyDiBHop8BRLKlfEeYwaAAVBNvFWxqcpOdBJ iDCjoZTxJvfYbudPAEZoMafHusz5oToxeg0Gu8yE59JQmDEHWxLlwMYHycri3Jk1 WLnHHsw1UR/NvinJs6EzauH2sT3MrhlE0iDY27pAFbcq660N3TdQCSxma4VAoUGm F7mBAgMBAAGjggMhMIIDHTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLMA7DD3eIX8 45w2a2rWLbawl0FfMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wIwYDVR0RBBwwGoIJc29udGFnLmF0gg13d3cuc29udGFn LmF0MIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUF BwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBv biBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRo IHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5j cnlwdC5vcmcvcmVwb3NpdG9yeS8wggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwDb dK/uyynssf7KPnFtLOW5qrs294Rxg8ddnU83th+/ZAAAAWUJG8W+AAAEAwBIMEYC IQDW/SwZbzO5q0H70DGse0JM7rTauW9stfB3zg57Uhb1qAIhAKueSaXNsnz+7ho9 wL88c1reOXRdcClzQhBMvt4Ip7MlAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctyk wwz05UVH9HgAAAFlCRvH8QAABAMARzBFAiBlEWLCHULg3Ju0e4bElTAL4ajdl+W+ /xPUiQLOxtmL2QIhAMZmdOmBqQE3wIFISeTFLEkt4cuR18ZEdvDbRHqa5SpbMA0G CSqGSIb3DQEBCwUAA4IBAQA9a92ns9zAmPjsEtVv5IC8oR4ubMzBdIF23s8/GXQD +bO++fRL65A06+IR3jVFSXYcQCix5iTtfUC8VuVK9AqIo/i8sh1DwvxuO33U8eFU psV7tCBQvY8cDNOkH9VF4HFq7FvjNy7q+hPKrlHm4SvohNtaUIltnrLqzO4HqnxW 9R3ddldFZcr0xMU+6JQ2+tX+k0yylfbeKcZ4ubzEUfpNKVYDd22JOoQeKU1NcCLu SB0lzkiXVucM+aAtfM7HKFAY6IH8lf/gz6j0avSYY/hA9TDWWG3rN8IEF4fQ+1IK U8XDKarIvCxq3HjgFxNty4PO1vSoMOYnUn9ehpTIsQNH -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArWQnJ1EfTfvp4OncY0Tu 7IGfTzcVtVHo6oj3sfqBGh3hFN5Rr11ZllHXjZ4f2Qn/LAr0R61yxes983jJi0bW BD8En8cywTVTNfS6bzAv/xvWavf9CZXoE0/zZ40XuMMoBElfs/uk092QCh6YH2hV wApBnkW5SpczBA7mI9RqQf8v25ZxbUqDels4WCTkP56lEKnMjdw9kaJE9LerkQLN 0TpMevdAr5W0B5/CMXTOcLpjP6speUBFEmPt3s1UIqsHbe+sM97rEVWopCoqyud6 xnWPsCHy1ksFYc6GrqrJfxcnmfPIt4wNjyEg5tAhbkGYuuwXWV7PPhSnrY8jucvL qBC+/LoXrOUcFzWKEOrV2v9C/q0lBxKLTY/MKIJI5v8ztJKerMM/iyBnTIq83YHm 74CaTTquWnDcYlSDNSJjOOVKufBjVtLwjXsf57XzdNNCVvqBh6pG277+b3YTSDk9 RCZlMiFxlJkfu8VBxEwenAM6ZzGXRkssVXd8IHLFX2JiPTo7IOIEeinwFEsqV8R5 jBoABUE28VbGpyk50EmIMKOhlPEm99hu508ARmgxp8e6zPmhOjF6DQa7zITn0lCY MQdbEuXAxgfJyuLcmTVYuccezDVRH82+KcmzoTNq4faxPcyuGUTSINjbukAVtyrr rQ3dN1AJLGZrhUChQaYXuYECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 367529656028646107086251030834824837374993 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-05 07:02:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-03 07:02:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sontag.at' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 707374472058774400980050256987941604423929930641818113523422889239856853388118071620513181398686391597061965939543834319034400361516503598387143606096538363637126711569028126076180452900313286869522729912578919011409507323623418826582623520671868550606197833481630407328824213295797417165422230955525851578764987239163629846475292708530306424709208677796114700334776280021721440740533427637810054926300346962401259625644122378149877599562919111136354673109076744230342114444224389131861589147490439411009741289200510927059995893187214552285263344088829426446988941852865220786471837887388692223995067554135693861947260662948248171033718753328054017729414048550647776460403253670075589962647617518761033575567637236840538490056421372110739841493114603930561424278418711639591494716026366754827723672228099510023980462387479531079569540595928303458577285895300844072267154918839791418746596342362012376257440721164257017281867910698725634892208621744278114332188628018643832886764975743724086088201344126224422313088026592376677832496300498161962862482653726741577064021460886247350478712354995779026165019680805765523652417018497141990023736258502932271238701809943893987265971939915320696070724980468013312881075519746862660657330561 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b300ec30f77885fce39c366b6ad62db6b097415f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sontag.at' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sontag.at' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf6400000165091bc5be0000040300483046022100d6fd2c196f33b9ab41fbd031ac7b424ceeb4dab96f6cb5f077ce0e7b5216f5a8022100ab9e49a5cdb27cfeee1a3dc0bf3c735ade39745d70297342104cbede08a7b325007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000165091bc7f100000403004730450220651162c21d42e0dc9bb47b86c495300be1a8dd97e5beff13d48902cec6d98bd9022100c66674e981a90137c0814849e4c52c492de1cb91d7c64476f0db447a9ae52a5b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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