003368.tc-connect.elior.com
Issued by R3
About this certificate
This digital certificate with serial number 03:36:2e:a3:44:b7:64:1c:35:3a:5b:87:34:52:50:24:7e:9c was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=003368.tc-connect.elior.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:36:2e:a3:44:b7:64:1c:35:3a:5b:87:34:52:50:24:7e:9cSerial Number (int): 279774097834939053664641929275182823014044
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a0:07:e3:2c:7a:b4:42:89:32:36:44:14:8e:1e:49:30:c2:b3:d2:f7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f1:57:9d:41:f4:3f:a4:ef:e5:bf:d6:53:e4:47:66:fb:c2:b0:61:a3
Fingerprint (sha256): f5:0d:ed:35:dd:5e:7b:b3:b1:e7:8e:c3:3e:07:95:ec:ca:83:c4:43:0c:1b:25:27:c1:db:71:73:55:91:f6:f2
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate 003368.tc-connect.elior.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 003368.tc-connect.elior.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
003368.tc-connect.elior.com
Other certificates including the domain name elior.com
(limited to 100 certificates)
*.dashboard-rec.elior.com
toptrack.elior.com
049633.tc-connect.elior.com
bonapp-api.elior.com
*.elior.com
mobilite.elior.com
*.elior.com
mkt.minasdepresentes.com.br
achats.elior.com
webmail.elior.com
webmail.elior.com
timechef-v2.elior.com
portailrestaurant-dev.elior.com
kanji.elior.com
005653.tc-connect.elior.com
webmail.elior.com
applis-elior.elior.com
roomservice.elior.com
060001.tc-connect.elior.com
imperva.com
049629.tc-connect.elior.com
webmail.elior.com
*.elior.com
dashboard-rec.elior.com
048839.tc-connect.elior.com
portailrestaurant-rec.elior.com
toptrack.elior.com
toptrack.elior.com
timechef-v1.elior.com
bonapp-facturation-api.elior.com
apptable.elior.com
servichezvous.elior.com
toptrack.elior.com
bonapp-facturation-api-rec.elior.com
monparcours.elior.com
servichezvous.elior.com
webmail.elior.com
*.elior.com
bonapp.elior.com
webmail.elior.com
monparcours.elior.com
kanji-auth.elior.com
recrut.elior.com
applis-elior.elior.com
timechef.elior.com
smartordering.elior.com
webmail.elior.com
*.elior.com
achats.elior.com
060892.tc-connect.elior.com
047463.tc-connect.elior.com
*.elior.com
chefsandgo.elior.com
roomservice-v1.elior.com
monparcours.elior.com
003368.tc-connect.elior.com
remotectrl.elior.com
*.elior.com
si-pro-tre.elior.com
toptrack.elior.com
049633.tc-connect.elior.com
bonapp-api.elior.com
*.elior.com
mobilite.elior.com
*.elior.com
mkt.minasdepresentes.com.br
achats.elior.com
webmail.elior.com
webmail.elior.com
timechef-v2.elior.com
portailrestaurant-dev.elior.com
kanji.elior.com
005653.tc-connect.elior.com
webmail.elior.com
applis-elior.elior.com
roomservice.elior.com
060001.tc-connect.elior.com
imperva.com
049629.tc-connect.elior.com
webmail.elior.com
*.elior.com
dashboard-rec.elior.com
048839.tc-connect.elior.com
portailrestaurant-rec.elior.com
toptrack.elior.com
toptrack.elior.com
timechef-v1.elior.com
bonapp-facturation-api.elior.com
apptable.elior.com
servichezvous.elior.com
toptrack.elior.com
bonapp-facturation-api-rec.elior.com
monparcours.elior.com
servichezvous.elior.com
webmail.elior.com
*.elior.com
bonapp.elior.com
webmail.elior.com
monparcours.elior.com
kanji-auth.elior.com
recrut.elior.com
applis-elior.elior.com
timechef.elior.com
smartordering.elior.com
webmail.elior.com
*.elior.com
achats.elior.com
060892.tc-connect.elior.com
047463.tc-connect.elior.com
*.elior.com
chefsandgo.elior.com
roomservice-v1.elior.com
monparcours.elior.com
003368.tc-connect.elior.com
remotectrl.elior.com
*.elior.com
si-pro-tre.elior.com
Certificate
The complete raw certificate details for 003368.tc-connect.elior.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGAzCCBOugAwIBAgISAzYuo0S3ZBw1OluHNFJQJH6cMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMTkyMjAxMDFaFw0yNDA2MTcyMjAxMDBaMCYxJDAiBgNVBAMT GzAwMzM2OC50Yy1jb25uZWN0LmVsaW9yLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQAD ggIPADCCAgoCggIBAOWcDak3LdXqVH3cYB3boRaZKUcd3bsNKRZqEucj/+evXS/r gTbsLZAGB801D+LdB7aqJ7vLBZggBGgGAUgeGUtHpuvgfD2chBk+g/2D8iv63iw6 /G0GiCEkPoNBSE+hQ6lSMEG6hC2zpzzHRYWrNNnbuepc/tQ8llADzgkFq5YxVFoh TRTvXMZL/q/UeZYNWigz/sd6E0402OW12ZEmqga5R7con3kKOrulHfB0qwyG8vFl TMwA1LcugS3P+eFORWGRkdyn+D6rEZmkfEEaocFaycWkkt56s2mKT20emQMyqfiN bxn+/Zgr7Yv5ZEAzVHjyHp5+rXNjWhwTcu0TYBoZxKMB8v/1BfOjTX8CHUGE+XHs EcOeSBZr+ID8VKH2G/ZB+NlwcNa61GyLVcoefw+0Tmf8wcvFNZf8OPkZsu8iCl48 sHB/QNkmm44VXJxAKw1D7NJEKienQZYBAhI/m+3ki3g+0nzvL67FVU8fh4QidMrK paJb2oXexIc2ALtHRUOl1dhYZzNrgrldveANEt1JWrg9i6dfNBAewrHpyELY5mDC jND31xZ3uYfTD/FZKdFBYGEpyohEZwhD2CCAJSatjBcq94sTDo8W1EF9dxtfRujB jXoBwWkiq82N5DX87a1p6ahW+kAbzYilWWTa43W1XH1JCW7qV74uNOjOLnDvAgMB AAGjggIdMIICGTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKAH4yx6tEKJMjZEFI4e STDCs9L3MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUF BwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsG AQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCYGA1UdEQQfMB2CGzAwMzM2 OC50Yy1jb25uZWN0LmVsaW9yLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQG CisGAQQB1nkCBAIEgfUEgfIA8AB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FI WUZxH7WbAAABjljyWG8AAAQDAEcwRQIhAMQr7S0gXhaMsDRy6lBAXtFoeXYBVjOn mNxjuCFjWbAUAiBJQYnKSo+9Mn93v18ElfrMf5Hrenki9JNATTEklkdjwAB2ADtT d3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjljyWlYAAAQDAEcwRQIh APZUMqMf4ymH8uEguanxSRKb2jWm0X6TjrQ0GVY1UUZ4AiAjRFwNQQRqy/w1B6HQ APHKitjvrXLSKCuccZjSAu33lDANBgkqhkiG9w0BAQsFAAOCAQEAdGXuxl+i90hk CY7WM1PTrekjEu/v/kXwppV5AT419CkUyS9RhJTvDNILGjhp+Aeec60qJSC26xEP 87APJLVCtsWykZw7rOsWmLtlmugISSK7cLl1zYGbX/w9JUFe8v68VvsXRMJAzGZi wUR7dipCFSVe5XDF/tEolo8+G4b75WRZyTPC8qxZhw14hi+DbpKKB1xMdRPI9pwt xq76JUPVd25JYGuYY+QlE53TPaZ4wpY4nj/74PJ1P7QeOH9CoWQqURgJ2VGczpyF 1GpHKs98O9n8ynsUoFL/mcPwCl/wz3MkR5YHbQTc9PQeYU8g9ZXHptPd6VKz0KMC q7zf9CkKGg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5ZwNqTct1epUfdxgHduh FpkpRx3duw0pFmoS5yP/569dL+uBNuwtkAYHzTUP4t0Htqonu8sFmCAEaAYBSB4Z S0em6+B8PZyEGT6D/YPyK/reLDr8bQaIISQ+g0FIT6FDqVIwQbqELbOnPMdFhas0 2du56lz+1DyWUAPOCQWrljFUWiFNFO9cxkv+r9R5lg1aKDP+x3oTTjTY5bXZkSaq BrlHtyifeQo6u6Ud8HSrDIby8WVMzADUty6BLc/54U5FYZGR3Kf4PqsRmaR8QRqh wVrJxaSS3nqzaYpPbR6ZAzKp+I1vGf79mCvti/lkQDNUePIenn6tc2NaHBNy7RNg GhnEowHy//UF86NNfwIdQYT5cewRw55IFmv4gPxUofYb9kH42XBw1rrUbItVyh5/ D7ROZ/zBy8U1l/w4+Rmy7yIKXjywcH9A2SabjhVcnEArDUPs0kQqJ6dBlgECEj+b 7eSLeD7SfO8vrsVVTx+HhCJ0ysqlolvahd7EhzYAu0dFQ6XV2FhnM2uCuV294A0S 3UlauD2Lp180EB7CsenIQtjmYMKM0PfXFne5h9MP8Vkp0UFgYSnKiERnCEPYIIAl Jq2MFyr3ixMOjxbUQX13G19G6MGNegHBaSKrzY3kNfztrWnpqFb6QBvNiKVZZNrj dbVcfUkJbupXvi406M4ucO8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 279774097834939053664641929275182823014044 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-19 22:01:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-17 22:01:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '003368.tc-connect.elior.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 936725375083548539559526223186125056911287997903586669401745295429092959688389157244769861959872075663790822055288601721106360840337788044639592133648806828652407725962424256379699811087725152400138090863464375623882078026309193664386794737676594908488877087980514196047629037979574303105701462420928784717065849731702246378426607412918194514357145851412603578409145641029600236189625667147657020493164090902798314364855720553414064960919521690584457762271456336378819265879678292492207127920773116806332989641161193147600752192263536456756704625886552834750541692661549086658663593859158685494379270290856565859930203779846338420462240681195668918349848018056560596948487732059412286709353440325475892136665959366309723308131489103336647723264172034932656177589216361433412021779197973356876094513941168546066219333991586704931933608434032111295410718436075651038682035618000507445172660841635429274831964800158480992540297226232693638516985686460655882219381454427818307606432133719739367051190355138853203794970330547928910526287441042345042898587780032553478612420291595519654399947436381245252431563587028970352692389641579035960404944910230881565776351310205206089270289080061651922206292686188045040755752055980034668016595183 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a007e32c7ab44289323644148e1e4930c2b3d2f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '003368.tc-connect.elior.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e58f2586f0000040300473045022100c42bed2d205e168cb03472ea50405ed1687976015633a798dc63b8216359b0140220494189ca4a8fbd327f77bf5f0495facc7f91eb7a7922f493404d3124964763c00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e58f25a560000040300473045022100f65432a31fe32987f2e120b9a9f149129bda35a6d17e938eb434195635514678022023445c0d41046acbfc3507a1d000f1ca8ad8efad72d2282b9c7198d202edf794 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007465eec65fa2f74864098ed63353d3ade92312efeffe45f0a69579013e35f42914c92f518494ef0cd20b1a3869f8079e73ad2a2520b6eb110ff3b00f24b542b6c5b2919c3baceb1698bb659ae8084922bb70b975cd819b5ffc3d25415ef2febc56fb1744c240cc6662c1447b762a4215255ee570c5fed128968f3e1b86fbe56459c933c2f2ac59870d78862f836e928a075c4c7513c8f69c2dc6aefa2543d5776e49606b9863e425139dd33da678c296389e3ffbe0f2753fb41e387f42a1642a511809d9519cce9c85d46a472acf7c3bd9fcca7b14a052ff99c3f00a5ff0cf73244796076d04dcf4f41e614f20f595c7a6d3dde952b3d0a302abbcdff4290a1a