brikl.io
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:ba:61:30:83:f3:c0:ec:b7:09:d3:d8:56:7b:73:d7:b0:26 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=brikl.io
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ba:61:30:83:f3:c0:ec:b7:09:d3:d8:56:7b:73:d7:b0:26Serial Number (int): 324758565064723449517545753224413013585958
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f3:10:8f:40:ea:33:0f:d2:a1:b9:be:3f:7b:d4:3f:ea:21:fa:90:32
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c1:8a:12:94:6a:0c:36:4b:46:7d:fa:eb:0e:6e:e6:e3:02:c4:6f:b4
Fingerprint (sha256): f6:91:e0:ec:7e:b8:aa:08:42:60:1d:14:26:2a:39:55:8b:ed:50:e9:0e:52:6d:cd:aa:9e:b1:0f:3a:6a:9f:d2
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate brikl.io
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for brikl.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
brikl.io
www.brikl.io
www.brikl.io
Other certificates including the domain name brikl.io
(limited to 100 certificates)
api.brikl.io
staging.app.brikl.io
staging.www.brikl.io
lib.brikl.io
staging.lib.brikl.io
cdn.brikl.io
lib.brikl.io
staging.api.brikl.io
app.brikl.io
staging.cdn.api.brikl.io
staging.engine.brikl.io
staging.cdn.api.brikl.io
admin.brikl.io
www.brikl.io
staging.admin.brikl.io
brikl.com
staging.storage.brikl.io
brikl.io
staging.app.brikl.io
cdn.discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
staging.storage.brikl.io
staging.app.brikl.io
brikl.io
app.brikl.io
app.brikl.io
cdn.api.brikl.io
obs.brikl.io
hackday.brikl.io
discovery.brikl.io
staging.www.brikl.io
cdn.brikl.io
cdn.discovery.brikl.io
api.brikl.io
upload.brikl.io
staging.cdn.api.brikl.io
staging.app.brikl.io
hackday.brikl.io
staging.upload.brikl.io
storage.brikl.io
cdn.discovery.brikl.io
staging.upload.brikl.io
discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
www.brikl.io
cdn.brikl.io
brikl.com
discovery.brikl.io
discovery.brikl.io
staging.engine.brikl.io
cdn.brikl.io
admin.brikl.io
upload.brikl.io
apollo2.brikl.io
hackday.brikl.io
lib.brikl.io
discovery.brikl.io
brikl.io
storage.brikl.io
staging.cdn.brikl.io
staging.www.brikl.io
hackday.brikl.io
www.brikl.io
api.brikl.io
discovery.brikl.io
brikl.com
staging.lib.brikl.io
www.brikl.io
brikl.io
staging.cdn.brikl.io
app.brikl.io
lib.brikl.io
lib.brikl.io
obs.brikl.io
api.brikl.io
staging.engine.brikl.io
cdn.api.brikl.io
staging.engine.brikl.io
brikl.io
staging.admin.brikl.io
cdn.brikl.io
staging.engine.brikl.io
staging.app.brikl.io
staging.www.brikl.io
lib.brikl.io
staging.lib.brikl.io
cdn.brikl.io
lib.brikl.io
staging.api.brikl.io
app.brikl.io
staging.cdn.api.brikl.io
staging.engine.brikl.io
staging.cdn.api.brikl.io
admin.brikl.io
www.brikl.io
staging.admin.brikl.io
brikl.com
staging.storage.brikl.io
brikl.io
staging.app.brikl.io
cdn.discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
staging.storage.brikl.io
staging.app.brikl.io
brikl.io
app.brikl.io
app.brikl.io
cdn.api.brikl.io
obs.brikl.io
hackday.brikl.io
discovery.brikl.io
staging.www.brikl.io
cdn.brikl.io
cdn.discovery.brikl.io
api.brikl.io
upload.brikl.io
staging.cdn.api.brikl.io
staging.app.brikl.io
hackday.brikl.io
staging.upload.brikl.io
storage.brikl.io
cdn.discovery.brikl.io
staging.upload.brikl.io
discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
www.brikl.io
cdn.brikl.io
brikl.com
discovery.brikl.io
discovery.brikl.io
staging.engine.brikl.io
cdn.brikl.io
admin.brikl.io
upload.brikl.io
apollo2.brikl.io
hackday.brikl.io
lib.brikl.io
discovery.brikl.io
brikl.io
storage.brikl.io
staging.cdn.brikl.io
staging.www.brikl.io
hackday.brikl.io
www.brikl.io
api.brikl.io
discovery.brikl.io
brikl.com
staging.lib.brikl.io
www.brikl.io
brikl.io
staging.cdn.brikl.io
app.brikl.io
lib.brikl.io
lib.brikl.io
obs.brikl.io
api.brikl.io
staging.engine.brikl.io
cdn.api.brikl.io
staging.engine.brikl.io
brikl.io
staging.admin.brikl.io
cdn.brikl.io
staging.engine.brikl.io
Certificate
The complete raw certificate details for brikl.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgISA7phMIPzwOy3CdPYVntz17AmMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjgwOTAwMzNaFw0x OTA2MjYwOTAwMzNaMBMxETAPBgNVBAMTCGJyaWtsLmlvMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAz8goEnPELiouhV5A9FydyMdNFFdiWuacwb+NWU6a urcF+lXpUUm/yYVBi/KKiFzgTXRB43nCuTlLV1InlOErMPOPES8hhX7tl0HKgtHX y6MiSxoGZn762Tot0nRiEsSwzn/lwB78or09B/oI09Z9Yx3aijyesOL/GenCMW+O rqK4+Ef12lKXpVahd94GkhV5Ff/c0pqwcmFwFjjdkF6D6fWIQSVagQROE1Vb3FpS 4i4aIOiH53SDUAEPANCDNjQO/XnS300IZHNmEdN4n5CsxY6NP4CvEYrLsfcQXbKR 7ZCQkU0HdWywlBSyNUcIX8HHwth1RYxyr0xi3JR/ioH0KwIDAQABo4ICbDCCAmgw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTzEI9A6jMP0qG5vj971D/qIfqQMjAfBgNV HSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYI KwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYI KwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEG A1UdEQQaMBiCCGJyaWtsLmlvggx3d3cuYnJpa2wuaW8wTAYDVR0gBEUwQzAIBgZn gQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5s ZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwB0ftqDMa0z EJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWnDvnmwAAAEAwBIMEYCIQDFRnFf J94xzU13MuPmzn8D467Dv2J5WzTJix0eaIcuRwIhALxrw9IjoF1JDzUKAljwl1xS TiO8653rU60998Mph5ftAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH 9HgAAAFpw757pwAABAMARzBFAiEA2u9tTE5s3ss7WSkH2pR4Yh25WAlfMxAW36K6 iyXhmSYCIAhhC63Xb/Ik0XDjPxY88QaljRcz1AhAZvideSi2FEOhMA0GCSqGSIb3 DQEBCwUAA4IBAQBoFh8TDg8awmewPJoIIPy6X7oeP/mQQ+m7OBTHvEG3m4P2qUGU B/rRtruQFE3ZVLpX5Mc4dFqLzrnUlCBQsFfRS/09N4hzxvwGH/nvRffA/30hPdxA ka68iVHHsOzLRhhp7/ffKrxdi04jHlZGbYvGXvAwPJ/GHI8e8QOwZGT82a/cVmPD BHlKFzafulc+B2DK6CGfKCfueEClf9BndzemecRQbUz9ubT+UjmcJojr51hB4GIB dT2pkL+KHtFZvrK8OoNEG9B90fHsIYKIu6zNgf51K8s3zG3ojy1ujtmB6IiXvmhc +7HF76AqJuaTWWBK4+weyD9n0Lat1lu2pyRB -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8goEnPELiouhV5A9Fyd yMdNFFdiWuacwb+NWU6aurcF+lXpUUm/yYVBi/KKiFzgTXRB43nCuTlLV1InlOEr MPOPES8hhX7tl0HKgtHXy6MiSxoGZn762Tot0nRiEsSwzn/lwB78or09B/oI09Z9 Yx3aijyesOL/GenCMW+OrqK4+Ef12lKXpVahd94GkhV5Ff/c0pqwcmFwFjjdkF6D 6fWIQSVagQROE1Vb3FpS4i4aIOiH53SDUAEPANCDNjQO/XnS300IZHNmEdN4n5Cs xY6NP4CvEYrLsfcQXbKR7ZCQkU0HdWywlBSyNUcIX8HHwth1RYxyr0xi3JR/ioH0 KwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 324758565064723449517545753224413013585958 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-28 09:00:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-26 09:00:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'brikl.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26230029992317180168374295068821593937966120334057725057238491357818591219224149547083182320164639218616190121057170274011385253132833873178175713868785625026330115477804329671653170349768466469431849935500300978179813236309954290034411394027130980750118733679262790504766669212230874629363044671042805474396924421385789608146910629319051324770921968504667238960244682718303689167553884486242508789016447885700344038864065666509060435388452824960146149730511484886800914065886787806330805199381431447931363570525949640853051590894174307399336643680166852705517648996304091502460555310869669395517496052985498303591467 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f3108f40ea330fd2a1b9be3f7bd43fea21fa9032 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brikl.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.brikl.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169c3be79b00000040300483046022100c546715f27de31cd4d7732e3e6ce7f03e3aec3bf62795b34c98b1d1e68872e47022100bc6bc3d223a05d490f350a0258f0975c524e23bceb9deb53ad3df7c3298797ed007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000169c3be7ba70000040300473045022100daef6d4c4e6cdecb3b592907da9478621db958095f331016dfa2ba8b25e19926022008610badd76ff224d170e33f163cf106a58d1733d4084066f89d7928b61443a1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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