www.novatours.lv
Issued by RapidSSL RSA CA 2018
About this certificate
This digital certificate with serial number 09:2e:9b:4d:7e:79:d9:a5:6a:91:88:85:26:5b:db:51 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.novatours.lv
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:2e:9b:4d:7e:79:d9:a5:6a:91:88:85:26:5b:db:51Serial Number (int): 12205047530756343600897845510148971345
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a3:57:e7:f2:06:a3:be:78:84:dd:db:c5:49:f8:9a:03:b3:3b:45:8d
AuthorityKeyId: 53:ca:17:59:fc:6b:c0:03:21:2f:1a:ae:e4:aa:a8:1c:82:56:da:75
Fingerprint (sha1): 20:b4:a0:b3:b6:d6:82:00:fa:9b:31:7a:89:e3:09:b0:aa:c7:e1:b2
Fingerprint (sha256): e4:72:a9:9d:94:ac:9d:be:9e:0c:be:c8:fc:7c:24:ef:f7:4f:07:44:cb:28:55:13:eb:25:e9:d5:e0:a6:0e:e5
Issuing Certificate URL: http://cacerts.rapidssl.com/RapidSSLRSACA2018.crt
Revocation information
OCSP Server: http://status.rapidssl.comCRL Distribution Point: http://cdp.rapidssl.com/RapidSSLRSACA2018.crl
Check the revocation status for certificate www.novatours.lv
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.novatours.lv
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.novatours.lv
novatours.lv
novatours.lv
Other certificates including the domain name novatours.lv
(limited to 100 certificates)
beta.novatours.lv
beta.novatours.lv
m.novatours.lv
beta.novatours.lv
mollerauto.lv
www.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
novatours.lv
m.novatours.lv
mollerauto.lv
mollerauto.lv
www.novatours.lv
beta.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
novatours.lv
beta.novatours.lv
beta.novatours.lv
mollerauto.lv
mollerauto.lv
mollerauto.lv
beta.novatours.lv
beta.novatours.lv
www.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
mollerauto.lv
mollerauto.lv
beta.novatours.lv
m.novatours.lv
mollerauto.lv
beta.novatours.lv
m.novatours.lv
beta.novatours.lv
mollerauto.lv
www.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
novatours.lv
m.novatours.lv
mollerauto.lv
mollerauto.lv
www.novatours.lv
beta.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
novatours.lv
beta.novatours.lv
beta.novatours.lv
mollerauto.lv
mollerauto.lv
mollerauto.lv
beta.novatours.lv
beta.novatours.lv
www.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
mollerauto.lv
mollerauto.lv
beta.novatours.lv
m.novatours.lv
mollerauto.lv
Certificate
The complete raw certificate details for www.novatours.lv in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIQCS6bTX552aVqkYiFJlvbUTANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRSYXBpZFNTTCBSU0EgQ0EgMjAxODAe Fw0xOTEyMTEwMDAwMDBaFw0yMTAyMDgxMjAwMDBaMBsxGTAXBgNVBAMTEHd3dy5u b3ZhdG91cnMubHYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEd4r6 JbbhMQI3+5WmP3RqOkkgMGNC/vcJ0TPIzZhUuTVkRvlSvxDuvqU9Yq/sEoCLFSOI 1o2uVWC4a5maqtkVMrCbMdVPB0R6CeVMt5xoLKRb295UsQTK6LIgYMJ44g76Iqga KtSkcRIsj31q7hIvMuH40cLlROMCFGT9r6+C7XmGI758mpaSagzhiRo/opO9ubIi Q+8S40KQ/1ePuysSPmJ+gvpYRRMEkpyIoW1ZoiKOQs1PSG/gzARJ2bkKjxjBe/hh zv0/do4rrtocCcw9mIeccvLJKs7jMM7Jtpjf+mV8ekRPCu+PeLOyyR/Qt4fY6Qdu 1cLgQOrLWk8fUZzPAgMBAAGjggK1MIICsTAfBgNVHSMEGDAWgBRTyhdZ/GvAAyEv Gq7kqqgcglbadTAdBgNVHQ4EFgQUo1fn8gajvniE3dvFSfiaA7M7RY0wKQYDVR0R BCIwIIIQd3d3Lm5vdmF0b3Vycy5sdoIMbm92YXRvdXJzLmx2MA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPgYDVR0fBDcwNTAz oDGgL4YtaHR0cDovL2NkcC5yYXBpZHNzbC5jb20vUmFwaWRTU0xSU0FDQTIwMTgu Y3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAECMCowKAYIKwYBBQUHAgEWHGh0dHBz Oi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkw ZzAmBggrBgEFBQcwAYYaaHR0cDovL3N0YXR1cy5yYXBpZHNzbC5jb20wPQYIKwYB BQUHMAKGMWh0dHA6Ly9jYWNlcnRzLnJhcGlkc3NsLmNvbS9SYXBpZFNTTFJTQUNB MjAxOC5jcnQwCQYDVR0TBAIwADCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1ALvZ 37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABbvS75+wAAAQDAEYwRAIg KbSCn81ACg1IATraUnoSe0wmIpqmmTBXdgS+QxSNyOMCIBS9mTmUUTIC2bDQp4nk vzRVSlvsBGF1uqF9+cQ8AMkSAHYARJRlLrDuzq/EQAfYqP4owNrmgr7YyzG1P9Mz lrW2gagAAAFu9LvnoAAABAMARzBFAiEA0a0EOIUn8VDJwvG7ijHkGRBn5eLuc/Xw 7l9HrVkl/AYCIED4Yv3opuaZ2JMotZmRFMT9S0wPNcyljaj92MEB+iEHMA0GCSqG SIb3DQEBCwUAA4IBAQAqA2izisp1YoXeaMlfCMjDy6oidLJ9MSXwqguKCPzrxWhO GI/Q6lprC6aLEcvNRzPfDFzfaSF7Yo3E8ohVT+zJ9jV6KUGBQhXUvMaPvt8/xGFT hy8lT33AZN1GZMyYcHRv7E9HNr/eT5fsTj4MMuGcNthDEvgp6x1bhT4OphStewPe ma6A7IAe9ui+1VbiuzQg6qWxEmSwP/Oe4he7UIxkzz7fnDfJZAvqA+DCPMctD1R0 B37J/H3b/YwW8I7FXcQBqT63Q7gnsz3a4aOr0NX9EAuuvgdIHcZ7wfzBiUYulmoF 2D3c42BoICx4BNJOxUC+by9msPxylozx4ZOIpJSv -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHeK+iW24TECN/uVpj90 ajpJIDBjQv73CdEzyM2YVLk1ZEb5Ur8Q7r6lPWKv7BKAixUjiNaNrlVguGuZmqrZ FTKwmzHVTwdEegnlTLecaCykW9veVLEEyuiyIGDCeOIO+iKoGirUpHESLI99au4S LzLh+NHC5UTjAhRk/a+vgu15hiO+fJqWkmoM4YkaP6KTvbmyIkPvEuNCkP9Xj7sr Ej5ifoL6WEUTBJKciKFtWaIijkLNT0hv4MwESdm5Co8YwXv4Yc79P3aOK67aHAnM PZiHnHLyySrO4zDOybaY3/plfHpETwrvj3izsskf0LeH2OkHbtXC4EDqy1pPH1Gc zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12205047530756343600897845510148971345 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-08 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.novatours.lv' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24801656564253451463238384732692442274360299043159936905541853138338737650912166580409187799362281671932592016497277860537036878897716109534076153881497916088922606981816965238358742374390260489518779712918860873444492472064583529107288698244760602783798175150226711741174561596716302891294181199973584159333300769358736862033337517773898809247652452411633661649811640270765347876290275330417442827989044564990148082975087507601799032334323526078728611021898671230510239153333720060583932398093856170692628431330390662860529393670191812380396068548969191337567830065716318720020487338326946747430975885030242668092623 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 53ca1759fc6bc003212f1aaee4aaa81c8256da75 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a357e7f206a3be7884dddbc549f89a03b33b458d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.novatours.lv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novatours.lv' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.rapidssl.com/RapidSSLRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.rapidssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.rapidssl.com/RapidSSLRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016ef4bbe7ec0000040300463044022029b4829fcd400a0d48013ada527a127b4c26229aa69930577604be43148dc8e3022014bd993994513202d9b0d0a789e4bf34554a5bec046175baa17df9c43c00c9120076004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a80000016ef4bbe7a00000040300473045022100d1ad04388527f150c9c2f1bb8a31e4191067e5e2ee73f5f0ee5f47ad5925fc06022040f862fde8a6e699d89328b5999114c4fd4b4c0f35cca58da8fdd8c101fa2107 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002a0368b38aca756285de68c95f08c8c3cbaa2274b27d3125f0aa0b8a08fcebc5684e188fd0ea5a6b0ba68b11cbcd4733df0c5cdf69217b628dc4f288554fecc9f6357a2941814215d4bcc68fbedf3fc46153872f254f7dc064dd4664cc9870746fec4f4736bfde4f97ec4e3e0c32e19c36d84312f829eb1d5b853e0ea614ad7b03de99ae80ec801ef6e8bed556e2bb3420eaa5b11264b03ff39ee217bb508c64cf3edf9c37c9640bea03e0c23cc72d0f5474077ec9fc7ddbfd8c16f08ec55dc401a93eb743b827b33ddae1a3abd0d5fd100baebe07481dc67bc1fcc189462e966a05d83ddce36068202c7804d24ec540be6f2f66b0fc72968cf1e19388a494af