*.alfa-bank.by
- CJSC Alfa-Bank -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 01:24:49:ea:2c:e7:07:5c:22:8b:d9:f8:95:3f:78:ce was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
CJSC Alfa-Bank
Organization:
CJSC Alfa-Bank
Organization unit: IT
Organization unit: IT
Locality:
Minsk
Country: BY
Country: BY
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:24:49:ea:2c:e7:07:5c:22:8b:d9:f8:95:3f:78:ceSerial Number (int): 1517649851879901629952170079534676174
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: d1:b1:ad:bd:08:42:4c:02:f2:86:f6:e6:28:36:fe:b8:2b:eb:90:ec
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 6d:95:f0:04:3b:2f:c0:92:51:45:77:06:91:8a:27:bb:18:dd:d3:88
Fingerprint (sha256): f6:39:b1:ff:40:96:fd:44:48:d8:0b:19:d3:c8:3a:00:a1:86:7b:ce:63:b7:62:38:52:43:7a:5d:fd:c9:db:1e
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate *.alfa-bank.by
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.alfa-bank.by
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.alfa-bank.by
alfa-bank.by
alfa-bank.by
Other certificates including the domain name alfa-bank.by
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.alfa-bank.by in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGaDCCBVCgAwIBAgIQASRJ6iznB1wii9n4lT94zjANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MjAwMjEwMDAwMDAwWhcNMjIwNDEwMTIwMDAwWjBcMQswCQYDVQQGEwJCWTEOMAwG A1UEBxMFTWluc2sxFzAVBgNVBAoTDkNKU0MgQWxmYS1CYW5rMQswCQYDVQQLEwJJ VDEXMBUGA1UEAwwOKi5hbGZhLWJhbmsuYnkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKNsiMrcBg2wkdtZDW8kgAYwY0Ugx96I0yLijS34lzTvfVndar wmWD93BFoB5nra/G6nXRvfqgW2NaOL7PiwoeAoE2oI7t8TYhHAQhgQU4zzhsd5ER zbzPYJd/SYuOq3JbsjMtRBtOVMGAqUTXsakWNHDyMRR0Wepf2OZoAW9XK7qyT28n GnmfmFl/CH/SKM+qKbtLk5dfnDLUndhUR+tT0HfVK2OYBjipxzmrgA0Bwy0e/+TQ 1f3YlOO8lQFrgx1Ef28YcekJRbPXgNnubw45kQB0ITAfpKvArmLF5HZPhJDagvqZ CKTU8J1c65q0a3GniVRFXThq2w9lL3Png6O5AgMBAAGjggMkMIIDIDAfBgNVHSME GDAWgBSjyF5lVOUweMEF6gcKalnMuf7eWjAdBgNVHQ4EFgQU0bGtvQhCTALyhvbm KDb+uCvrkOwwJwYDVR0RBCAwHoIOKi5hbGZhLWJhbmsuYnmCDGFsZmEtYmFuay5i eTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MDoGA1UdHwQzMDEwL6AtoCuGKWh0dHA6Ly9jZHAudGhhd3RlLmNvbS9UaGF3dGVS U0FDQTIwMTguY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUH AgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMG8GCCsG AQUFBwEBBGMwYTAkBggrBgEFBQcwAYYYaHR0cDovL3N0YXR1cy50aGF3dGUuY29t MDkGCCsGAQUFBzAChi1odHRwOi8vY2FjZXJ0cy50aGF3dGUuY29tL1RoYXd0ZVJT QUNBMjAxOC5jcnQwCQYDVR0TBAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFo AHYARqVV63X6kSAwtaKJafTzfREsQXS+/Um4havy/HD+bUcAAAFwLpwvYwAABAMA RzBFAiBmJ27MjQ5oT1KaQ1jW2eLlUvOdpSz0QpSWrU9tvtiERgIhAPD1fQ1RpgJU atwJU24nSjIPpMQ+IqUdKNI4KtbRz1L6AHcAIkVFB1lVJFaWP6Ev8fdthuAjJmOt wEt/XcaDXG7iDwIAAAFwLpwvkwAABAMASDBGAiEA2xQO1DlBlD4052m4RXYiitNW uuwGg2NlXxp/1UO94vsCIQD1/vUkmsdXbf7sTI18asoeD4YrSGJ0IaKbWvMgR6yT BQB1AFGjsPX9AXmcVm24N3iPDKR6zBsny/eeiEKaDf7UiwXlAAABcC6cL50AAAQD AEYwRAIgNNkc2143P7jzrdpdq8phYiIvUamrvfj877VLt8NpfjkCIFWzimPEV1sJ ue7Ub99XUrKHCKa1aqMBXoE7l+79y9Z0MA0GCSqGSIb3DQEBCwUAA4IBAQC5EZ6a /Q8yIEZD7aAT0/Hrs6mMVy3LC72bSVOo9QyB2ymf2b86vDO0ifS5vOwyEcZFGCbG i2L+kqzlL1PbBz2fuKdrExc5odcL0DjfZinmBuBUR5vjMpWdRgEgIWQjcPnkUr39 5lDzq2ReLxQRAMV7qG+gqYa5Ir+8AUcBldZNfslfH4ctOv/N1ftKwZFuygTg07K1 LxILwAwaWE17HYC5hVRdzrIjRzKRQYsRIAWoT2QbmOMtM0brRMbO7kp6l+/6b3Uu 4rImns/0EO5Tnjb2Zk+1pkni/K8PrQvvG302G4P0Smlh1tFs+mkW5MSLoZ5F4a5d oZ2zLSBOEIpvmeCy -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjbIjK3AYNsJHbWQ1vJI AGMGNFIMfeiNMi4o0t+Jc0731Z3Wq8Jlg/dwRaAeZ62vxup10b36oFtjWji+z4sK HgKBNqCO7fE2IRwEIYEFOM84bHeREc28z2CXf0mLjqtyW7IzLUQbTlTBgKlE17Gp FjRw8jEUdFnqX9jmaAFvVyu6sk9vJxp5n5hZfwh/0ijPqim7S5OXX5wy1J3YVEfr U9B31StjmAY4qcc5q4ANAcMtHv/k0NX92JTjvJUBa4MdRH9vGHHpCUWz14DZ7m8O OZEAdCEwH6SrwK5ixeR2T4SQ2oL6mQik1PCdXOuatGtxp4lURV04atsPZS9z54Oj uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1517649851879901629952170079534676174 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-04-10 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BY' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minsk' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CJSC Alfa-Bank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.alfa-bank.by' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25527152302852470823923823646543133312593825855939321623779870520603204614557053951197066627683675220096299097034220294851526844244850644707211025264622842276803500361105379473461245524863015811047219872739712803061928330103391466748871408010574873233787958563764513790252551832870249581362109898971825944766488346009147738810038650717345352896335290542253232242992663649694530670932405374633745678061014444278179284300990693663017865081007741299497127105226867204633772556337911219578352077339672287412703848804782516062082879732389012085086350889713951123786461771613287158385686680551852044177937632471428358185913 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d1b1adbd08424c02f286f6e62836feb82beb90ec . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alfa-bank.by' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alfa-bank.by' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 016800760046a555eb75fa912030b5a28969f4f37d112c4174befd49b885abf2fc70fe6d47000001702e9c2f630000040300473045022066276ecc8d0e684f529a4358d6d9e2e552f39da52cf4429496ad4f6dbed88446022100f0f57d0d51a602546adc09536e274a320fa4c43e22a51d28d2382ad6d1cf52fa0077002245450759552456963fa12ff1f76d86e0232663adc04b7f5dc6835c6ee20f02000001702e9c2f930000040300483046022100db140ed43941943e34e769b84576228ad356baec068363655f1a7fd543bde2fb022100f5fef5249ac7576dfeec4c8d7c6aca1e0f862b48627421a29b5af32047ac930500750051a3b0f5fd01799c566db837788f0ca47acc1b27cbf79e88429a0dfed48b05e5000001702e9c2f9d0000040300463044022034d91cdb5e373fb8f3adda5dabca6162222f51a9abbdf8fcefb54bb7c3697e39022055b38a63c4575b09b9eed46fdf5752b28708a6b56aa3015e813b97eefdcbd674 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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