hrm-systems.ch
Issued by R3
About this certificate
This digital certificate with serial number 04:84:88:44:fb:7d:ea:82:02:d4:3c:9a:86:d8:9e:c1:4d:da was issued on by Let's Encrypt.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hrm-systems.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:84:88:44:fb:7d:ea:82:02:d4:3c:9a:86:d8:9e:c1:4d:daSerial Number (int): 393547549345078900187521576943319282437594
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 02:b6:78:0f:c9:98:ae:8e:f7:33:68:b3:f1:70:fb:9f:d8:1f:ef:d0
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e8:e7:a9:28:4b:dd:80:9b:d5:68:84:fc:78:00:84:3f:d2:5e:4f:1e
Fingerprint (sha256): e9:fa:ba:1f:3c:80:94:fc:2c:9c:84:74:b0:95:c6:6a:f4:e6:c8:4d:57:27:44:24:1b:9c:cc:f7:fa:66:13:6b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate hrm-systems.ch
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hrm-systems.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.hrm-systems.ch
hrm-systems.ch
hrm-systems.swiss
hrms.swiss
huv.ch
uka.swiss
ukasolutions.ch
www.hrm-systems.swiss
www.hrms.swiss
www.huv.ch
www.uka.swiss
www.ukasolutions.ch
hrm-systems.ch
hrm-systems.swiss
hrms.swiss
huv.ch
uka.swiss
ukasolutions.ch
www.hrm-systems.swiss
www.hrms.swiss
www.huv.ch
www.uka.swiss
www.ukasolutions.ch
Other certificates including the domain name hrm-systems.ch
(limited to 100 certificates)
hrm-systems.ch
www.hrm-systems.ch
huv.ch
*.uka.swiss
hrm-systems.swiss
hrm-systems.swiss
ideas-uka.hrm-systems.ch
www.hrm-systems.ch
*.hrm-systems.ch
hrm-systems.ch
*.hrm-reports.ch
staging.hrm-systems.ch
www.hrm-systems.ch
www.hrm-systems.ch
www.helptest.hrm-systems.ch
*.hrm-systems.ch
*.hrm-systems.ch
*.hrm-systems.ch
hrm-reports.ch
*.hrm-reports.ch
helptest.hrm-systems.ch
www.hilfe.hrm-systems.ch
status.hrm-systems.ch
www.hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
*.hrm-systems.ch
hrm-systems.ch
hrm-systems.swiss
www.carema.ch
webmail.hrm-systems.ch
*.hrm-systems.ch
hilfe.hrm-systems.ch
www.hrm-systems.ch
www.hrm-systems.ch
hilfe.hrm-systems.ch
*.hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
*.hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
www.carema.ch
www.hrm-systems.ch
huv.ch
*.uka.swiss
hrm-systems.swiss
hrm-systems.swiss
ideas-uka.hrm-systems.ch
www.hrm-systems.ch
*.hrm-systems.ch
hrm-systems.ch
*.hrm-reports.ch
staging.hrm-systems.ch
www.hrm-systems.ch
www.hrm-systems.ch
www.helptest.hrm-systems.ch
*.hrm-systems.ch
*.hrm-systems.ch
*.hrm-systems.ch
hrm-reports.ch
*.hrm-reports.ch
helptest.hrm-systems.ch
www.hilfe.hrm-systems.ch
status.hrm-systems.ch
www.hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
*.hrm-systems.ch
hrm-systems.ch
hrm-systems.swiss
www.carema.ch
webmail.hrm-systems.ch
*.hrm-systems.ch
hilfe.hrm-systems.ch
www.hrm-systems.ch
www.hrm-systems.ch
hilfe.hrm-systems.ch
*.hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
*.hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
hrm-systems.ch
www.carema.ch
Certificate
The complete raw certificate details for hrm-systems.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF0jCCBLqgAwIBAgISBISIRPt96oIC1DyahtiewU3aMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAzMDcyMDA5MzVaFw0yMzA2MDUyMDA5MzRaMBkxFzAVBgNVBAMT DmhybS1zeXN0ZW1zLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA ryocu69Fguvjruf+uZnvb/PTjT4DqOJszYJ3pJVAPwIOWOCcJKY3cMQ5J4wCW68C AF4Ki8X4IB0pNlosVntsYdmWrlHzVKiI9KkGhD0x8XjcS3V1PtGucg8NDIcmsHZd lGHg60JWyyINbnE6o3aBmcZMWiRHZlbrNm/TVg1uyGIyjHLRwXnyVZJrzp4+rLov ZYZCvNSlusw2A7W7dszgDH/3Hv+cOt5+lx8AlZ1HxqkreYUrb1xmx2tq0BlAAKBC 7RWhfbQhOi15LilfHTVdB+ilBW9zib3sauKN1XAydlf775PtVBtxhjjf5EC53rYg UURjZkCKu0H1oGQBRjWVLQIDAQABo4IC+TCCAvUwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQCtngPyZiujvczaLPxcPuf2B/v0DAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzCBxwYDVR0RBIG/MIG8ghAqLmhybS1zeXN0ZW1zLmNogg5ocm0tc3lzdGVtcy5j aIIRaHJtLXN5c3RlbXMuc3dpc3OCCmhybXMuc3dpc3OCBmh1di5jaIIJdWthLnN3 aXNzgg91a2Fzb2x1dGlvbnMuY2iCFXd3dy5ocm0tc3lzdGVtcy5zd2lzc4IOd3d3 LmhybXMuc3dpc3OCCnd3dy5odXYuY2iCDXd3dy51a2Euc3dpc3OCE3d3dy51a2Fz b2x1dGlvbnMuY2gwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEw KDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgor BgEEAdZ5AgQCBIH2BIHzAPEAdgB6MoxU2LcttiDqOOBSHumEFnAyE4VNO9IrwTpX o1LrUgAAAYa96HwMAAAEAwBHMEUCIDpF5bgm6/Ab4PIbIuvlNZV2sItUUEIgnMyI ku2qUy+BAiEAnhDHSaLS+nlUbE9PxQNyhEsed46/FzNaa4NiaZYit64AdwC3Pvsk 35xNunXyOcW6WPRsXfxCz3qfNcSeHQmBJe20mQAAAYa96H3wAAAEAwBIMEYCIQD8 Ko7Iga0Pgb3I3OcMyfF3l58n2+2YN4FvxsrBgXR2pgIhANkSdaHIx0+3aInTubvz uzIn7lVAZacbAqmZZmOCyVvvMA0GCSqGSIb3DQEBCwUAA4IBAQA5wJjYykeq+HGZ 9YwiPZaHz1CXtnm5bWsCl5ISTyKN5FSkRoMfJnvyuiBx8FUpd6lwDxjz2t875V82 72A4F+l9d9skD6RUzQpdzmAbiDg6lq9P8QIIDZFXno2MfzQ8QGm0CmfYKVSN/dO0 /Snxz2AmL1TJmyXhAwrasXkTHZf2RmrXyEZS276sdSEEKETTnxUTu3q5UX4wvR8l q+ls0ZWx0JR/B1Iv4fCbXwozXGzYuFqmN/JEMge9aucHdfo1SK76FF0UKHxarP9j KxefTaJhfckWTAafXpPvySSiz1GVGpPkgM96aHHOvrpa1SyyziT46Fandz2OOo33 DtJ8v995 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryocu69Fguvjruf+uZnv b/PTjT4DqOJszYJ3pJVAPwIOWOCcJKY3cMQ5J4wCW68CAF4Ki8X4IB0pNlosVnts YdmWrlHzVKiI9KkGhD0x8XjcS3V1PtGucg8NDIcmsHZdlGHg60JWyyINbnE6o3aB mcZMWiRHZlbrNm/TVg1uyGIyjHLRwXnyVZJrzp4+rLovZYZCvNSlusw2A7W7dszg DH/3Hv+cOt5+lx8AlZ1HxqkreYUrb1xmx2tq0BlAAKBC7RWhfbQhOi15LilfHTVd B+ilBW9zib3sauKN1XAydlf775PtVBtxhjjf5EC53rYgUURjZkCKu0H1oGQBRjWV LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 393547549345078900187521576943319282437594 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-07 20:09:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-05 20:09:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hrm-systems.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22112469688003841283585476211073241451579373491232397200748396534257885249541262055952042237993454311959756020200857126924050331153799214670452058850035488416927461928199325936437249069406456459389016980325550826484395641127259824792277276960066691595022391264698527877267388237914015577222866984942281842914818729461839590216818347059906945599309768472307926317979714928625071660607773525756411522212762310887875030170709041473931400785232002847526955725448582418841419324425638060141801941907287163739606065119145118989412696345554723183364799622394919129623757636029937844245535611491405830419044988587823938770221 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 02b6780fc998ae8ef73368b3f170fb9fd81fefd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (191 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hrm-systems.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hrm-systems.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hrm-systems.swiss' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hrms.swiss' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'huv.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uka.swiss' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ukasolutions.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hrm-systems.swiss' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hrms.swiss' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.huv.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uka.swiss' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ukasolutions.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000186bde87c0c000004030047304502203a45e5b826ebf01be0f21b22ebe5359576b08b545042209ccc8892edaa532f810221009e10c749a2d2fa79546c4f4fc50372844b1e778ebf17335a6b8362699622b7ae007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000186bde87df00000040300483046022100fc2a8ec881ad0f81bdc8dce70cc9f177979f27dbed9837816fc6cac1817476a6022100d91275a1c8c74fb76889d3b9bbf3bb3227ee554065a71b02a999666382c95bef . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0039c098d8ca47aaf87199f58c223d9687cf5097b679b96d6b029792124f228de454a446831f267bf2ba2071f0552977a9700f18f3dadf3be55f36ef603817e97d77db240fa454cd0a5dce601b88383a96af4ff102080d91579e8d8c7f343c4069b40a67d829548dfdd3b4fd29f1cf60262f54c99b25e1030adab179131d97f6466ad7c84652dbbeac7521042844d39f1513bb7ab9517e30bd1f25abe96cd195b1d0947f07522fe1f09b5f0a335c6cd8b85aa637f2443207bd6ae70775fa3548aefa145d14287c5aacff632b179f4da2617dc9164c069f5e93efc924a2cf51951a93e480cf7a6871cebeba5ad52cb2ce24f8e856a7773d8e3a8df70ed27cbfdf79