b2b.tifatravels.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:3b:0a:99:b2:e9:21:06:4d:80:32:6c:b2:25:3b:1d:fa:87 was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=b2b.tifatravels.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:3b:0a:99:b2:e9:21:06:4d:80:32:6c:b2:25:3b:1d:fa:87Serial Number (int): 281427607773732606212253987676832780909191
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 36:54:ef:e1:bc:e8:37:6d:64:7a:0c:a5:8a:e8:0e:df:69:40:35:8a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 9c:5f:3a:cb:90:a6:8a:aa:34:5c:90:63:c8:0c:47:36:61:68:4a:54
Fingerprint (sha256): f5:9b:44:36:76:da:67:82:36:dd:49:8f:7e:6b:0f:2d:e5:50:ba:a3:8f:62:4c:7f:c1:55:14:e1:27:32:df:2c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate b2b.tifatravels.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for b2b.tifatravels.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
b2b.tifatravels.com
packages.tifatravels.com
sabre.tifatravels.com
www.b2b.tifatravels.com
www.packages.tifatravels.com
www.sabre.tifatravels.com
packages.tifatravels.com
sabre.tifatravels.com
www.b2b.tifatravels.com
www.packages.tifatravels.com
www.sabre.tifatravels.com
Other certificates including the domain name tifatravels.com
(limited to 100 certificates)
forms.kendallcliffs.com
tifatravels.com
forms.buteykofitness.com
sabre.tifatravels.com
forms.romer.co.ke
forms.romer.co.ke
forms.romer.co.ke
forms.belong.life
forms.romer.co.ke
forms.tifatravels.com
tifatravels.com
forms.romer.co.ke
forms.tifatravels.com
forms.buteykofitness.com
forms.romer.co.ke
forms.buteykofitness.com
tifatravels.com
tifatravels.com
forms.romer.co.ke
sabre.tifatravels.com
opteken.delareybrandewyn.co.za
tifatravels.com
forms.belong.life
b2b.tifatravels.com
sabre.tifatravels.com
b2b.tifatravels.com
tifatravels.com
sabre.tifatravels.com
forms.tifatravels.com
b2b.tifatravels.com
*.tifatravels.com
*.tifatravels.com
tifatravels.com
forms.kendallcliffs.com
forms.kendallcliffs.com
forms.tifatravels.com
tifatravels.com
opteken.delareybrandewyn.co.za
forms.belong.life
forms.kendallcliffs.com
tifatravels.com
forms.buteykofitness.com
*.tifatravels.com
b2b.tifatravels.com
b2b.tifatravels.com
forms.romer.co.ke
forms.romer.co.ke
tifatravels.com
forms.buteykofitness.com
sabre.tifatravels.com
forms.romer.co.ke
forms.romer.co.ke
forms.romer.co.ke
forms.belong.life
forms.romer.co.ke
forms.tifatravels.com
tifatravels.com
forms.romer.co.ke
forms.tifatravels.com
forms.buteykofitness.com
forms.romer.co.ke
forms.buteykofitness.com
tifatravels.com
tifatravels.com
forms.romer.co.ke
sabre.tifatravels.com
opteken.delareybrandewyn.co.za
tifatravels.com
forms.belong.life
b2b.tifatravels.com
sabre.tifatravels.com
b2b.tifatravels.com
tifatravels.com
sabre.tifatravels.com
forms.tifatravels.com
b2b.tifatravels.com
*.tifatravels.com
*.tifatravels.com
tifatravels.com
forms.kendallcliffs.com
forms.kendallcliffs.com
forms.tifatravels.com
tifatravels.com
opteken.delareybrandewyn.co.za
forms.belong.life
forms.kendallcliffs.com
tifatravels.com
forms.buteykofitness.com
*.tifatravels.com
b2b.tifatravels.com
b2b.tifatravels.com
forms.romer.co.ke
forms.romer.co.ke
Certificate
The complete raw certificate details for b2b.tifatravels.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4zCCBMugAwIBAgISAzsKmbLpIQZNgDJssiU7HfqHMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMDUwMDUyMjdaFw0x OTA0MDUwMDUyMjdaMB4xHDAaBgNVBAMTE2IyYi50aWZhdHJhdmVscy5jb20wggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUVXlLTMVn8XyhvRQBbV4sPpiz dxSiYods2NsfQI0gWWvzgNX4/k1xHNmvEPe88bwI8Qu/2sZb5Ob1LkPcRT67xs0x EbpT3hT7P1M8Lr8G//vrrFOKaUaEuIU2dqB9N6VNsKzsPX7sOz/WGAcFMZmwr1cw DMIAdmdMpuyJYRE2GbXz5sHtZAN8yduyVeCnznwMikdCoCLE1Ndz+X1cckyidCCK 5ErCyxZNTYgugADVnJXzXV/39i7QeVQH2IEgn8FBmLt8+n/w2ZCOxuYfkbvUHKco Kivo9NNh+FNnE2pEyRSV8OUx21MdV37sYJ7EWjQE2WLJCHa3NxvTutUbB4+9AgMB AAGjggLtMIIC6TAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFDZU7+G86DdtZHoMpYro Dt9pQDWKMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUF BwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNy eXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNy eXB0Lm9yZy8wgaMGA1UdEQSBmzCBmIITYjJiLnRpZmF0cmF2ZWxzLmNvbYIYcGFj a2FnZXMudGlmYXRyYXZlbHMuY29tghVzYWJyZS50aWZhdHJhdmVscy5jb22CF3d3 dy5iMmIudGlmYXRyYXZlbHMuY29tghx3d3cucGFja2FnZXMudGlmYXRyYXZlbHMu Y29tghl3d3cuc2FicmUudGlmYXRyYXZlbHMuY29tMEwGA1UdIARFMEMwCAYGZ4EM AQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0 c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAKTxRllTIOWW6 qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFoG7YgngAABAMARjBEAiAB9bs7uYWs TbMvwVdPNsxN4rwY/dWZ18++jAMn37teKwIgTUOS869faQ6VZhUvtVkgQgWvYq7p 1udGEOUEIzGt5YMAdgDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAA AWgbtiJGAAAEAwBHMEUCIQD0V1qzzbvzlc5HfsI/rcMurfrgP7Q7dZ/jBKf8Cqfa OwIgCM91zUVLgnylg68q0e1ioepZnuTzTsPKrh1ZYWVqfJEwDQYJKoZIhvcNAQEL BQADggEBAFkCGRJfe7Y5QRzipU/ZpfUcTEIg6SO/zAKywEyX3qi5mHwfkZqWT+/k i/gAY+8htq+cv4Nm+qoJTkOF2cVAYOAgQcJj4TlvC1CRudop85lndHwAyolSzmgl m3aOGmywzXbqzb2Y+OqRlHOw6cV0Fl4LudosRaZs2e8X4ApzKsgef+jZE5rx0S1h ywdNijgNxUBV4pIAm5K2JtvLSmlIIUTOI1BfgrnuRv/9BcT5QcfqjXFRPmuIM9wz 03uCr9QqS0eaYCA5eo9oAO0ZmuTtmKRiilRli6jgJYrdOYZE4dlbIYsAN/nxBdIn 09CK9D54397Te/dI2yJYWN56+UpRlzg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFV5S0zFZ/F8ob0UAW1e LD6Ys3cUomKHbNjbH0CNIFlr84DV+P5NcRzZrxD3vPG8CPELv9rGW+Tm9S5D3EU+ u8bNMRG6U94U+z9TPC6/Bv/766xTimlGhLiFNnagfTelTbCs7D1+7Ds/1hgHBTGZ sK9XMAzCAHZnTKbsiWERNhm18+bB7WQDfMnbslXgp858DIpHQqAixNTXc/l9XHJM onQgiuRKwssWTU2ILoAA1ZyV811f9/Yu0HlUB9iBIJ/BQZi7fPp/8NmQjsbmH5G7 1BynKCor6PTTYfhTZxNqRMkUlfDlMdtTHVd+7GCexFo0BNliyQh2tzcb07rVGweP vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 281427607773732606212253987676832780909191 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-05 00:52:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-05 00:52:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'b2b.tifatravels.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18725417839241822202462141933096184037775188973070694740889997642914435212576957410419977792824135866854084942104067961272183576202903292680210868063612440814373609801765607827138872237183076557524968991124430432282846156699899415281823551887456372934760212751631420313504127582661532147457157172680449301902651729753305710310022806295234950954458615475807963221462363379675472427103965221809996144586906857709343420264804305490652935000882273525181179891537985419789485659250959344388205368432483938566512755387909840212798781777779358927869644714175535406906466963996978083292100166045047991529881492082816612536253 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3654efe1bce8376d647a0ca58ae80edf6940358a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (155 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b2b.tifatravels.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'packages.tifatravels.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sabre.tifatravels.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.b2b.tifatravels.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.packages.tifatravels.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sabre.tifatravels.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001681bb6209e0000040300463044022001f5bb3bb985ac4db32fc1574f36cc4de2bc18fdd599d7cfbe8c0327dfbb5e2b02204d4392f3af5f690e9566152fb559204205af62aee9d6e74610e5042331ade583007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe000001681bb622460000040300473045022100f4575ab3cdbbf395ce477ec23fadc32eadfae03fb43b759fe304a7fc0aa7da3b022008cf75cd454b827ca583af2ad1ed62a1ea599ee4f34ec3caae1d5961656a7c91 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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