icopal.de
Issued by R3
About this certificate
This digital certificate with serial number 03:42:45:b8:2f:4a:da:a9:8b:12:90:aa:1d:81:f5:af:21:a9 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=icopal.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:42:45:b8:2f:4a:da:a9:8b:12:90:aa:1d:81:f5:af:21:a9Serial Number (int): 283888167085597616227008480590273167958441
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 51:c9:ba:da:7d:8d:83:3b:91:fc:fb:28:4e:2f:78:cb:fa:6d:a9:65
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ae:71:d4:97:ee:47:3d:bf:a9:cd:5b:0c:a7:2f:c4:b3:3a:e8:b8:9b
Fingerprint (sha256): fa:0e:d2:c8:6e:3d:01:d2:43:e7:62:71:9a:63:bd:ff:c9:a3:57:7b:61:7f:54:ff:11:f7:85:cc:a2:50:19:c1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate icopal.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for icopal.de
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
icopal.de
www.icopal.de
www.icopal.de
Other certificates including the domain name icopal.de
(limited to 100 certificates)
icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
www.icopal.de
intranet.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
www.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
intranet.icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
www.icopal.de
intranet.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
www.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
intranet.icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
Certificate
The complete raw certificate details for icopal.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgISA0JFuC9K2qmLEpCqHYH1ryGpMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA0MjcwODAyMzZaFw0yMzA3MjYwODAyMzVaMBQxEjAQBgNVBAMT CWljb3BhbC5kZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAJqCoEyT cK6Gf7FdSuXBMisIppcYNYtZI8lX2p9+36mWgBHy5f8LkbxU03aau3O7fV2lxsvj yqRYO2PvDVS4K8+myoJhrVPlq/234XsbzXtSeWX9WX4p6QjG3pydLLaCB2+4cLaB o4JKmqUS2breHiqui3Rr4l7ebYboskrih3GVZJ28n+yO3HPEvcpwx038Qqy7/fNi REriQjBxabEu+beh/Rksdqgd7vEqI7q+g6CD7Qkx93AQ4dfxQRFepzkO+dopxBOt zcxdKeMTo+2AIbtbVli2XOyfqhcGlmN+TX+UANzE5LdqoyK8l2o5WYVFa07ufz8F LlG7hrYiB+WVRZ+FpV6w/8ugDNbyAZm0/jnHY72NcIjl+w6osXXNNhedKZF/WWty MIp1/xC9GG7T/Oa5m/mKqivccpSx19FiR74i0qkEWvZfeG5VL8NK7bUmo1srgyaU 1DRrxfH7XSqLFtVT+ri8f1r9pv0ToSJtNJzgovdjPJinTvtrC2NkHpA/gwIDAQAB o4ICUzCCAk8wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRRybrafY2DO5H8+yhOL3jL +m2pZTAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcB AQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEF BQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAjBgNVHREEHDAagglpY29wYWwu ZGWCDXd3dy5pY29wYWwuZGUwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC 3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcw ggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgB6MoxU2LcttiDqOOBSHumEFnAyE4VN O9IrwTpXo1LrUgAAAYfB8z3tAAAEAwBHMEUCIQC49F1AtxS5oA0ohEYRBEBF9on3 Rr1VI7lFjq1I36YCpQIgf7/T/43dtJx5GIZGc447AtGyamEdVlOzCRBheti2PDkA dgCt9776fP8QyIudPZwePhhqtGcpXc+xDCTKhYY069yCigAAAYfB8z4GAAAEAwBH MEUCIQCIxuAvUbci+rdyiancHRLxfvOs7xzf9RdNGYhjgKDrBwIgDEmFX/z+ehHs u9ghPI8FM3UIfb2wxpCQ0X7ptcLR9vgwDQYJKoZIhvcNAQELBQADggEBAKkNwWzR XsEnMREMH+q+coSeU+9jFm3U+qRoVDpm5Y1BVpPfhJfnDRVGv3mgrCXr7v9I0i1q rGaXIss4smfK3bK9a8qJ6keh0VebbrIOIHA44fkXwsXvj5y7CZhfyUmlGGEZum8m SIPbABh06fzsmU+6LJxVWyCz/AuHtlGOJRtcTPv0OAOoSSCTzVMmnn6rHSAadguh SAg0yZ5Lt8PT0debpyz+/OiLxec507ipI6yYJ6vap/v8juheFlNnWVM+GCrZlY/+ Qz3NPz/bwLHvEOgmUJRnRcjF73YitNQaNIpIy1fdToV9G7I4KiJwmflTN8HRGuAd mt656ykvkBUrQGE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAmoKgTJNwroZ/sV1K5cEy Kwimlxg1i1kjyVfan37fqZaAEfLl/wuRvFTTdpq7c7t9XaXGy+PKpFg7Y+8NVLgr z6bKgmGtU+Wr/bfhexvNe1J5Zf1ZfinpCMbenJ0stoIHb7hwtoGjgkqapRLZut4e Kq6LdGviXt5thuiySuKHcZVknbyf7I7cc8S9ynDHTfxCrLv982JESuJCMHFpsS75 t6H9GSx2qB3u8Sojur6DoIPtCTH3cBDh1/FBEV6nOQ752inEE63NzF0p4xOj7YAh u1tWWLZc7J+qFwaWY35Nf5QA3MTkt2qjIryXajlZhUVrTu5/PwUuUbuGtiIH5ZVF n4WlXrD/y6AM1vIBmbT+OcdjvY1wiOX7Dqixdc02F50pkX9Za3IwinX/EL0YbtP8 5rmb+YqqK9xylLHX0WJHviLSqQRa9l94blUvw0rttSajWyuDJpTUNGvF8ftdKosW 1VP6uLx/Wv2m/ROhIm00nOCi92M8mKdO+2sLY2QekD+DAgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 283888167085597616227008480590273167958441 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-27 08:02:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-26 08:02:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'icopal.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 3506420796705321006954883351201516973664119868332411551147570489344900353698289132607060533414114610178234898749455141356514161618581167169115867269909088954441044014255753238396678016625847936293905459048571212935939517402971244377487424308682781043400977970073364687961832863700279837756336952823773345126311327797607794133702737571840707691860362283396616062971008762239849666286472281737776120400005231221913697373772665846191529470019413422768948918295563586677664340488249352037535176403449644023038159929055730154081248922916212427936459833542316561068505824731744380719024836908429549154321377991018480357164150921739017905568757665574632813150773174650517006889290044917007625395051721078362614287085818936870887660685453537582085693609233356381929384347147521271623347672958503966130421795022289996473143612610166479352996891006336007611321810879842681349680592563897477660814535594772706317019253587555799549362051 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 51c9bada7d8d833b91fcfb284e2f78cbfa6da965 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'icopal.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.icopal.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000187c1f33ded0000040300473045022100b8f45d40b714b9a00d28844611044045f689f746bd5523b9458ead48dfa602a502207fbfd3ff8dddb49c79188646738e3b02d1b26a611d5653b30910617ad8b63c39007600adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a00000187c1f33e06000004030047304502210088c6e02f51b722fab77289a9dc1d12f17ef3acef1cdff5174d19886380a0eb0702200c49855ffcfe7a11ecbbd8213c8f053375087dbdb0c69090d17ee9b5c2d1f6f8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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