webdisk.griggspark.com
Issued by R3
About this certificate
This digital certificate with serial number 04:a0:91:fd:6d:1a:24:c1:95:ac:c6:90:8b:cb:9c:6f:67:ab was issued on by Let's Encrypt.
With 22 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=webdisk.griggspark.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:a0:91:fd:6d:1a:24:c1:95:ac:c6:90:8b:cb:9c:6f:67:abSerial Number (int): 403088376357739117366856062490090803259307
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: be:c2:ec:fc:a5:fb:30:e2:92:a7:8f:1c:0d:2a:f4:93:0f:cb:60:ca
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 7c:2d:ee:f3:97:72:2c:be:7d:4d:81:d2:95:54:fb:e1:77:d5:e4:9b
Fingerprint (sha256): e7:1a:1f:d0:bd:0d:27:a9:cb:6c:c7:4e:ec:9e:b7:da:c5:a2:cd:eb:bf:ae:1e:b2:63:05:96:18:7e:12:80:61
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate webdisk.griggspark.com
22
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for webdisk.griggspark.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
autodiscover.conexshack.com
autodiscover.griggspark.com
conexshack.apexgreenenergy.com
conexshack.com
cpanel.conexshack.com
cpanel.griggspark.com
cpcalendars.conexshack.com
cpcalendars.griggspark.com
cpcontacts.conexshack.com
cpcontacts.griggspark.com
griggspark.apexgreenenergy.com
griggspark.com
mail.conexshack.com
mail.griggspark.com
webdisk.conexshack.com
webdisk.griggspark.com
webmail.conexshack.com
webmail.griggspark.com
www.conexshack.apexgreenenergy.com
www.conexshack.com
www.griggspark.apexgreenenergy.com
www.griggspark.com
autodiscover.griggspark.com
conexshack.apexgreenenergy.com
conexshack.com
cpanel.conexshack.com
cpanel.griggspark.com
cpcalendars.conexshack.com
cpcalendars.griggspark.com
cpcontacts.conexshack.com
cpcontacts.griggspark.com
griggspark.apexgreenenergy.com
griggspark.com
mail.conexshack.com
mail.griggspark.com
webdisk.conexshack.com
webdisk.griggspark.com
webmail.conexshack.com
webmail.griggspark.com
www.conexshack.apexgreenenergy.com
www.conexshack.com
www.griggspark.apexgreenenergy.com
www.griggspark.com
Other certificates including the domain name griggspark.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for webdisk.griggspark.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHFjCCBf6gAwIBAgISBKCR/W0aJMGVrMaQi8ucb2erMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMjkyMDExNDhaFw0yNDAzMjgyMDExNDdaMCExHzAdBgNVBAMT FndlYmRpc2suZ3JpZ2dzcGFyay5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCt+jllt425T1ad+5DjJgeJqjcJAwx+XBNCCV4SP3mcVFe2s3DNDDls Az2/yo2AIKpPuc5f5IcKWVj+CrE9tFDoZkffZaOyQvt1ADwaHTeWLGKg84ZIemHB QyFaiIvqQ5HBZzPsQ0f1xT7O+E6769RP7kp/nLBN0EhJm1XIxb+rSsqB5GqKTDCR X0aT/JBsyKMNVUKxMai3zwtn+EP8oy0NMXFJNjMUsWgmauMwsrM3BTG466wfy2J5 POVmtfy/9UAPEk9IW6jiZA1J4G+UHjAxV1boNqTKlV+JFpHS+l9coJfHGxH/RaGe rF53DEMgZXQiqurXVDdaAqvBkcW9C0A5AgMBAAGjggQ1MIIEMTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFL7C7Pyl+zDikqePHA0q9JMPy2DKMB8GA1UdIwQYMBaAFBQu sxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYV aHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5s ZW5jci5vcmcvMIICPQYDVR0RBIICNDCCAjCCG2F1dG9kaXNjb3Zlci5jb25leHNo YWNrLmNvbYIbYXV0b2Rpc2NvdmVyLmdyaWdnc3BhcmsuY29tgh5jb25leHNoYWNr LmFwZXhncmVlbmVuZXJneS5jb22CDmNvbmV4c2hhY2suY29tghVjcGFuZWwuY29u ZXhzaGFjay5jb22CFWNwYW5lbC5ncmlnZ3NwYXJrLmNvbYIaY3BjYWxlbmRhcnMu Y29uZXhzaGFjay5jb22CGmNwY2FsZW5kYXJzLmdyaWdnc3BhcmsuY29tghljcGNv bnRhY3RzLmNvbmV4c2hhY2suY29tghljcGNvbnRhY3RzLmdyaWdnc3BhcmsuY29t gh5ncmlnZ3NwYXJrLmFwZXhncmVlbmVuZXJneS5jb22CDmdyaWdnc3BhcmsuY29t ghNtYWlsLmNvbmV4c2hhY2suY29tghNtYWlsLmdyaWdnc3BhcmsuY29tghZ3ZWJk aXNrLmNvbmV4c2hhY2suY29tghZ3ZWJkaXNrLmdyaWdnc3BhcmsuY29tghZ3ZWJt YWlsLmNvbmV4c2hhY2suY29tghZ3ZWJtYWlsLmdyaWdnc3BhcmsuY29tgiJ3d3cu Y29uZXhzaGFjay5hcGV4Z3JlZW5lbmVyZ3kuY29tghJ3d3cuY29uZXhzaGFjay5j b22CInd3dy5ncmlnZ3NwYXJrLmFwZXhncmVlbmVuZXJneS5jb22CEnd3dy5ncmln Z3NwYXJrLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIE gfQEgfEA7wB1AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjLdr QHIAAAQDAEYwRAIgYkpXViVDwWel0m+01YZBiMOx7ePMD7ym3rPs6G8fUcECIEjw iZQEv2udbqNsQ14fdtwV1zMFdaiXuJPCYGDLB5pJAHYASLDja9qmRzQP5WoC+p0w 6xxSActW3SyB2bu/qznYhHMAAAGMt2tCgwAABAMARzBFAiBW2ms38r3XPfMQka/E DqSl3lzwF0t04/slRmbuHN86wAIhAJXf54aXNS8kYvtfy9kFsFogZW6pzwVYaXrd qjSsu6f9MA0GCSqGSIb3DQEBCwUAA4IBAQBAsQ3ZHL2CbxLt+GzmRQGAm3R64lKp KgRIWftl7eq9JfI614uVOI4mIVGNIG2W/L93cy0NoFkhruacWMEOBe6vOdCRnNg/ Z8SVdMtjXy4TcnBY4w/DE2Gsjm3pH6vEGdy5oTHxkit3Sno+1dlTr1zbdB2QSdQQ yIItywnTtQZIEhkpuT6sxdBAIzN+BZhxrq93U3PhoplprWm8klh0EirXkOIQIpst ctjQQBWj4irNmJm7mwkz7kFssGoSlVm2jzB8tjR3Y/5J4hWFD2i3KJ948OD3Mt0I vpeEmGfY2pEFdyw9vkE8Rcf5R6ltuynU6wsxX3q+3BwEgXD9AZpWWsFk -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfo5ZbeNuU9WnfuQ4yYH iao3CQMMflwTQgleEj95nFRXtrNwzQw5bAM9v8qNgCCqT7nOX+SHCllY/gqxPbRQ 6GZH32WjskL7dQA8Gh03lixioPOGSHphwUMhWoiL6kORwWcz7ENH9cU+zvhOu+vU T+5Kf5ywTdBISZtVyMW/q0rKgeRqikwwkV9Gk/yQbMijDVVCsTGot88LZ/hD/KMt DTFxSTYzFLFoJmrjMLKzNwUxuOusH8tieTzlZrX8v/VADxJPSFuo4mQNSeBvlB4w MVdW6DakypVfiRaR0vpfXKCXxxsR/0WhnqxedwxDIGV0Iqrq11Q3WgKrwZHFvQtA OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 403088376357739117366856062490090803259307 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-29 20:11:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-28 20:11:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'webdisk.griggspark.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21962616915068938312810150285495599836470249664782861945035573674213656487169623507481346591915385496727017931170563057146253556088521253195430690553132570772928241922282688972958159970505437322748466792286935938266293983785492364713822420352468630751731385638663530837216492902780454275304872817368162911309383801479372031735976313431642627805757826382315370566089130128290683362564188229315851395442059165916520841393384648959618673828017035762082899567811161993988988303417972005274290099102054808627954186433973024753010364205926558176039731676069416180565310779603574877145230665082643671516414748212930047328313 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bec2ecfca5fb30e292a78f1c0d2af4930fcb60ca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (564 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.conexshack.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.griggspark.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'conexshack.apexgreenenergy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'conexshack.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.conexshack.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.griggspark.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcalendars.conexshack.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcalendars.griggspark.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcontacts.conexshack.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcontacts.griggspark.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'griggspark.apexgreenenergy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'griggspark.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.conexshack.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.griggspark.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.conexshack.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.griggspark.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.conexshack.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.griggspark.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.conexshack.apexgreenenergy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.conexshack.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.griggspark.apexgreenenergy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.griggspark.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018cb76b407200000403004630440220624a57562543c167a5d26fb4d5864188c3b1ede3cc0fbca6deb3ece86f1f51c1022048f0899404bf6b9d6ea36c435e1f76dc15d7330575a897b893c26060cb079a4900760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cb76b42830000040300473045022056da6b37f2bdd73df31091afc40ea4a5de5cf0174b74e3fb254666ee1cdf3ac002210095dfe78697352f2462fb5fcbd905b05a20656ea9cf0558697addaa34acbba7fd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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