api-onelogin.tech.eif.org
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 03:b5:d6:0a:00:03:2b:b6:a2:2c:e9:b4:04:c0:aa:c4 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=api-onelogin.tech.eif.org
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:b5:d6:0a:00:03:2b:b6:a2:2c:e9:b4:04:c0:aa:c4Serial Number (int): 4931830946690191227800542453553998532
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 70:87:f0:91:14:a4:38:6a:ad:66:0f:2c:97:48:08:82:3e:1a:6f:28
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 69:67:27:6d:19:7b:15:21:dc:5a:8f:38:77:d3:80:c1:0d:d9:4e:c9
Fingerprint (sha256): e2:68:5f:cf:00:d9:a3:10:66:33:d7:0d:fa:68:c6:8a:6c:6c:08:81:db:fa:95:57:eb:d6:e6:ba:f6:15:b7:28
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate api-onelogin.tech.eif.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api-onelogin.tech.eif.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api-onelogin.tech.eif.org
Other certificates including the domain name eif.org
(limited to 100 certificates)
sip.eib.org
greenguide.eif.org
sip.eib.org
staging.sustainabilityguarantee.eif.org
engage.eif.org
sip2.eib.org
board.eif.org
sip2.eib.org
www.eif.org
sip.eib.org
sts.eib.org
www.eif.org
sts.eib.org
www.eif.org
*.eif.org
lsweb-ext2.eib.org
lsweb-ext.eib.org
data.thebench.eif.org
sip.eib.org
*.eif.org
thebench.eif.org
www.eif.org
newstaging.sustainabilityguarantee.eif.org
www.eif.org
*.data.thebench.eif.org
data.thebench.eif.org
filecloud.tech.eif.org
*.eif.org
ciphertrust-manager.tech.eif.org
sustainabilityguarantee.eif.org
data.thebench.eif.org
*.data.thebench.eif.org
sip2.eib.org
board.eif.org
thebench.eif.org
www.eif.org
sip.eib.org
data-escrow.test.tech.eif.org
lsweb-ext2.eib.org
data.thebench.eif.org
*.eif.org
new.sustainabilityguarantee.eif.org
sts.eib.org
data-escrow.production.tech.eif.org
staging.sustainabilityguarantee.eif.org
sts.eib.org
*.data.thebench.eif.org
*.eif.org
sip.eib.org
sts.test.eib.org
sts.eib.org
filecloud.test.tech.eif.org
sts.test.eib.org
filecloud.tech.eif.org
www.eif.org
www.eif.org
www.eif.org
*.eif.org
*.eif.org
sip2.eib.org
lsweb-ext2.eib.org
lsweb-ext2.eib.org
www.eif.org
api-onelogin.tech.eif.org
lsweb-ext2.eib.org
sip.eib.org
thebench.eif.org
sts-dev.eib.org
thebench.eif.org
sts.eib.org
lsweb-ext2.eib.org
sts.test.eib.org
sustainabilityguarantee.eif.org
greenguide.eif.org
sip.eib.org
staging.sustainabilityguarantee.eif.org
engage.eif.org
sip2.eib.org
board.eif.org
sip2.eib.org
www.eif.org
sip.eib.org
sts.eib.org
www.eif.org
sts.eib.org
www.eif.org
*.eif.org
lsweb-ext2.eib.org
lsweb-ext.eib.org
data.thebench.eif.org
sip.eib.org
*.eif.org
thebench.eif.org
www.eif.org
newstaging.sustainabilityguarantee.eif.org
www.eif.org
*.data.thebench.eif.org
data.thebench.eif.org
filecloud.tech.eif.org
*.eif.org
ciphertrust-manager.tech.eif.org
sustainabilityguarantee.eif.org
data.thebench.eif.org
*.data.thebench.eif.org
sip2.eib.org
board.eif.org
thebench.eif.org
www.eif.org
sip.eib.org
data-escrow.test.tech.eif.org
lsweb-ext2.eib.org
data.thebench.eif.org
*.eif.org
new.sustainabilityguarantee.eif.org
sts.eib.org
data-escrow.production.tech.eif.org
staging.sustainabilityguarantee.eif.org
sts.eib.org
*.data.thebench.eif.org
*.eif.org
sip.eib.org
sts.test.eib.org
sts.eib.org
filecloud.test.tech.eif.org
sts.test.eib.org
filecloud.tech.eif.org
www.eif.org
www.eif.org
www.eif.org
*.eif.org
*.eif.org
sip2.eib.org
lsweb-ext2.eib.org
lsweb-ext2.eib.org
www.eif.org
api-onelogin.tech.eif.org
lsweb-ext2.eib.org
sip.eib.org
thebench.eif.org
sts-dev.eib.org
thebench.eif.org
sts.eib.org
lsweb-ext2.eib.org
sts.test.eib.org
sustainabilityguarantee.eif.org
Certificate
The complete raw certificate details for api-onelogin.tech.eif.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3TCCBMWgAwIBAgIQA7XWCgADK7aiLOm0BMCqxDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDMyNTAwMDAwMFoXDTI1MDQyNDIzNTk1OVowJDEi MCAGA1UEAxMZYXBpLW9uZWxvZ2luLnRlY2guZWlmLm9yZzCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBANl4/yKQhsC6yFWSPbS6ZsB/zlA1q4POaFJLWD/5 Nxb7IEn9ExEi9AuUE9sToRJG+Hz+reDvJTnzrB1p0uyej3EvPR847MPT1NS59ZbB aJa8FkbaXlXmglzlGyCsee10NX+q734mcro19S5Rga/EgM5j1lrUsj30atMAQdnE QMwPVtSlvY3hIzv31CeIf5BgyomDF/czKdqiKJHRvpblgrH2tZeXt84IsM0dLa3e wzYZlbI0MxZlinPxLdM6jlNOY5GQ2kiG/px3BBicfPhMrRe5S8YsoAZ7ECJP1PTk UNGGTJVVEeef4nBEN4pbek5rfsEglcG4Qpx3E69/u8Ef4psCAwEAAaOCAvEwggLt MB8GA1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBRwh/CR FKQ4aq1mDyyXSAiCPhpvKDAkBgNVHREEHTAbghlhcGktb25lbG9naW4udGVjaC5l aWYub3JnMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0 cDovL2NybC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY3JsMHUGCCsGAQUF BwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDMuYW1hem9udHJ1 c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAzLmFtYXpvbnRydXN0 LmNvbS9yMm0wMy5jZXIwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFt BIIBaQFnAHYATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGOcxyZ 6gAABAMARzBFAiBUXzJ3D/tT6HwuEfbh9Vb9LeZyAEBC9VTWqpl+ZXc1jQIhAIty 2YDo5zA7oSHHdU2AL5270tnUUowvEoeBFPxb2z/NAHYAfVkeEuF4KnscYWd8Xv34 0IdcFKBOlZ65Ay/ZDowuebgAAAGOcxyaIQAABAMARzBFAiEAuzm08hePHnrl7G8o RbNAtmcgowS5Hcd97pHzsbYFWfECIDOEYZAlk4li+R9nRF2KJtbMXXF2axiQ8dP0 3KLqxWzLAHUA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGOcxya MgAABAMARjBEAiA/GMU1uYVJVK3G5w+nyOU7wOwHczM2Ip+02/rdWxJuJwIgR+7u eAxXCn6ClL2uKTY+JGQHrezpOWUF8uqgumbyytswDQYJKoZIhvcNAQELBQADggEB ADeje+nr+FDk/gxLYTRl3SEECOOSSeQ0y3knqUIco83L2CbkMjo83VS8AZDG2s9a V/oOE20j2dLnPQ024WeKHCGMEhLJhGP7EHnXGAByMP5rAIUxb2vpz3Dp08ezA5ZV 8X2O6s6BzgomArW02K8/OyZuS4jnRyu3KHiZB78/UKLduCSdiklwp0Q6/dOYrL1M X+DQ0YbvZfucIcvwbxDLyv3NKRf772QpyTMZrqgWsZ5bRY2HOWHIqGDQJeP4agpn qw8AJ44C3XGL9aWnbmKxoFzKgcB9WrOOb9ECmW/tnLqO2H5s0jTmLBleGVyOCGVn wUxqUEi7AL06UxxLiku0EGA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Xj/IpCGwLrIVZI9tLpm wH/OUDWrg85oUktYP/k3FvsgSf0TESL0C5QT2xOhEkb4fP6t4O8lOfOsHWnS7J6P cS89Hzjsw9PU1Ln1lsFolrwWRtpeVeaCXOUbIKx57XQ1f6rvfiZyujX1LlGBr8SA zmPWWtSyPfRq0wBB2cRAzA9W1KW9jeEjO/fUJ4h/kGDKiYMX9zMp2qIokdG+luWC sfa1l5e3zgiwzR0trd7DNhmVsjQzFmWKc/Et0zqOU05jkZDaSIb+nHcEGJx8+Eyt F7lLxiygBnsQIk/U9ORQ0YZMlVUR55/icEQ3ilt6Tmt+wSCVwbhCnHcTr3+7wR/i mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4931830946690191227800542453553998532 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api-onelogin.tech.eif.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27453377835299845011375226060813291560460568818603073995562764565823092990060176801346349575362358963955970078192559649150482215015085753829135591897347010558036491785744954869000291550862377273147054942180503628417036339557663185840667935787228400539182100090728617375699961170374318562938733903387943928725942431071472143919263341060632624444092530337656977568903087300540433528890460939517704974192540422168206485184580377347475484331119137748713049456507035010503093352784648701741683566733781721735230340625614410785241593113517031129321832770295530768231520594523882891733539021399164178135361349008844849668763 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7087f09114a4386aad660f2c974808823e1a6f28 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-onelogin.tech.eif.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 01670076004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018e731c99ea00000403004730450220545f32770ffb53e87c2e11f6e1f556fd2de672004042f554d6aa997e6577358d0221008b72d980e8e7303ba121c7754d802f9dbbd2d9d4528c2f12878114fc5bdb3fcd0076007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000018e731c9a210000040300473045022100bb39b4f2178f1e7ae5ec6f2845b340b66720a304b91dc77dee91f3b1b60559f102203384619025938962f91f67445d8a26d6cc5d71766b1890f1d3f4dca2eac56ccb007500e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e500000018e731c9a32000004030046304402203f18c535b9854954adc6e70fa7c8e53bc0ec07733336229fb4dbfadd5b126e27022047eeee780c570a7e8294bdae29363e246407adece9396505f2eaa0ba66f2cadb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0037a37be9ebf850e4fe0c4b613465dd210408e39249e434cb7927a9421ca3cdcbd826e4323a3cdd54bc0190c6dacf5a57fa0e136d23d9d2e73d0d36e1678a1c218c1212c98463fb1079d718007230fe6b0085316f6be9cf70e9d3c7b3039655f17d8eeace81ce0a2602b5b4d8af3f3b266e4b88e7472bb728789907bf3f50a2ddb8249d8a4970a7443afdd398acbd4c5fe0d0d186ef65fb9c21cbf06f10cbcafdcd2917fbef6429c93319aea816b19e5b458d873961c8a860d025e3f86a0a67ab0f00278e02dd718bf5a5a76e62b1a05cca81c07d5ab38e6fd102996fed9cba8ed87e6cd234e62c195e195c8e086567c14c6a5048bb00bd3a531c4b8a4bb41060