www.autosalonkromexim.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d2:5e:0a:d5:65:62:30:ad:27:60:b7:af:53:b8:ec:64:5b was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.autosalonkromexim.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d2:5e:0a:d5:65:62:30:ad:27:60:b7:af:53:b8:ec:64:5bSerial Number (int): 332921158531435863076353734740592626000987
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d7:4e:35:1c:30:69:2d:2f:87:e2:98:2f:20:2a:89:d7:f9:63:fd:fb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 68:6e:19:96:97:2d:dc:43:e9:55:6f:12:6c:14:97:c4:e5:3b:08:99
Fingerprint (sha256): fa:4a:80:97:0d:09:00:5f:ae:b4:c3:9e:99:87:5c:5e:b0:09:c7:1d:4d:33:22:c3:dc:04:92:fd:29:24:31:e1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.autosalonkromexim.cz
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.autosalonkromexim.cz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
autosalonkromexim.cz
dacia-kromexim.cz
renault-kromexim.cz
www.autosalonkromexim.cz
www.dacia-kromexim.cz
www.renault-kromexim.cz
dacia-kromexim.cz
renault-kromexim.cz
www.autosalonkromexim.cz
www.dacia-kromexim.cz
www.renault-kromexim.cz
Other certificates including the domain name autosalonkromexim.cz
(limited to 100 certificates)
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
www.autosalonkromexim.cz
Certificate
The complete raw certificate details for www.autosalonkromexim.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG2jCCBcKgAwIBAgISA9JeCtVlYjCtJ2C3r1O47GRbMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MzAwODE0MDJaFw0x OTA4MjgwODE0MDJaMCMxITAfBgNVBAMTGHd3dy5hdXRvc2Fsb25rcm9tZXhpbS5j ejCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMC9yv6OlihlfxwVat4B qNFIpRSuFs7bw7vaR5lSM+k22Kan40bwmSlBo50N58uunQwItQXwexGQBTwYmSlB z/7ZhBShMBdipnKyPlTxC+A8jK+5L5KDLt27g1RwPkHzP+8DR2cJNLkEqRR3F+Ml djhm4Ufdm8sFTlmWhC3BgkcJC1mzyczdAP8jNTFz2wZu8aAabjYDDkVfTS59BdIc FtH9aPFrgOUxCsuQCIfqBo0NnipwrMy0d8XQz4gunYdRJiY5WUeL9sHy0v7eNjlg ucN+CW6GHwXCu7x5gP760f6asBMj4iyPSwQkSa3OuctvLdOCCMQrZx3g/+Ktx2J7 dFCMUajx9SIudmM3DAxewpBdjQE+BRt+lwss7ikSYcjbo0HD32HYMQ2X1ypcnRPQ VPHdiWPEfv9b1RUhYTYrTmfV9fQS6npWZBuVC7XoT3OalnhLXccXIvNvmS3wZz02 7eRMzcW87aPoPietzUN4C2bzHuJx7ttvLR3Oa073jG5Ljr8yT3FaeP3KhfvBMPfL gT1saHN+/BiqFwDAAwoHI2dZaJw+Qjam3yB1TLpbqsFOKlXt1vX+jVjNd3aIyKbm u58FlVnDAiUnY66H34U1e2WcGrvjSyVEZGYK/hew0b/VpggpLCOoSCSJLL3TbSR8 JF48we32gStJk6NJlJAYdxQ7AgMBAAGjggLfMIIC2zAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFNdONRwwaS0vh+KYLyAqidf5Y/37MB8GA1UdIwQYMBaAFKhKamMEfd26 5tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDov L29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDov L2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wgZMGA1UdEQSBizCBiIIUYXV0 b3NhbG9ua3JvbWV4aW0uY3qCEWRhY2lhLWtyb21leGltLmN6ghNyZW5hdWx0LWty b21leGltLmN6ghh3d3cuYXV0b3NhbG9ua3JvbWV4aW0uY3qCFXd3dy5kYWNpYS1r cm9tZXhpbS5jeoIXd3d3LnJlbmF1bHQta3JvbWV4aW0uY3owTAYDVR0gBEUwQzAI BgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nw cy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgB0ftqD Ma0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWsIBIaIAAAEAwBHMEUCIGSD 76Upa5qvNmLXVkrJyKT4324Y+WfPuutE3+bg44V5AiEA2Do5oR2FZcsJZMGHq8JU VcABQhJ5LhEZ2Vs3vqnrY/MAdwBj8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4scdo VEvYjQAAAWsIBIalAAAEAwBIMEYCIQDJE1HKZ6aG+GNX/tozHp/cCRBwt2ou0njK cfp8MgINbQIhAM6Mf/TnFEbCbpnlUTO74DXisXj65LDgR8ROQn+qO3luMA0GCSqG SIb3DQEBCwUAA4IBAQBZb6kT7aOqwAbEP1mgh7YzY5rmnH8Z7gIjb51jekE7jHlF FJLVJahvtAjz5BxxEdnV9uEM9EIRdEoKMuF5GaFOD1c6YZOffqq/QCUTy8ZA41uw 6IA5V/hGP4yjk4fGDSYfDP1dt/qVwM4WiqZ9nyibHrcO8uaD3wWQmLNv4fdGeNVM bXlbD6cWw7CTTV74rhuclSwVn9ivokDsQlpmPJ3lkTlWPV7SfvfEXIx/trppIYKq bFXbAal2jHgPhzfTSYYi3EtTtXEDA3CaUyxj9hr9POp8GNle2iaA9KX9Mo6bbaDn diPcCD73pqkxOtU+45TvgEVLWU4ihcJpd7xP6+gH -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwL3K/o6WKGV/HBVq3gGo 0UilFK4WztvDu9pHmVIz6TbYpqfjRvCZKUGjnQ3ny66dDAi1BfB7EZAFPBiZKUHP /tmEFKEwF2KmcrI+VPEL4DyMr7kvkoMu3buDVHA+QfM/7wNHZwk0uQSpFHcX4yV2 OGbhR92bywVOWZaELcGCRwkLWbPJzN0A/yM1MXPbBm7xoBpuNgMORV9NLn0F0hwW 0f1o8WuA5TEKy5AIh+oGjQ2eKnCszLR3xdDPiC6dh1EmJjlZR4v2wfLS/t42OWC5 w34JboYfBcK7vHmA/vrR/pqwEyPiLI9LBCRJrc65y28t04IIxCtnHeD/4q3HYnt0 UIxRqPH1Ii52YzcMDF7CkF2NAT4FG36XCyzuKRJhyNujQcPfYdgxDZfXKlydE9BU 8d2JY8R+/1vVFSFhNitOZ9X19BLqelZkG5ULtehPc5qWeEtdxxci82+ZLfBnPTbt 5EzNxbzto+g+J63NQ3gLZvMe4nHu228tHc5rTveMbkuOvzJPcVp4/cqF+8Ew98uB PWxoc378GKoXAMADCgcjZ1lonD5CNqbfIHVMuluqwU4qVe3W9f6NWM13dojIpua7 nwWVWcMCJSdjroffhTV7ZZwau+NLJURkZgr+F7DRv9WmCCksI6hIJIksvdNtJHwk XjzB7faBK0mTo0mUkBh3FDsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 332921158531435863076353734740592626000987 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-30 08:14:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-28 08:14:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.autosalonkromexim.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 786316222268005686720857520765413911853607451057123621653151065197561739231097405813303405056340510348261037022278585801267025046338051921166729004688907016619393792718756154464926443741690384659649349207587980675902258785708353210586971234171953674241350383934960592790375585800634341824436473320771882120827265978106242729644856833902711962960850463266995410673170504242510269839775966086321482786788499282947548040286808888927241755515888626477731189258674692233413166993886932891721617604883981925427611457292312067650343359523745791368579703618137240149868872329132092968314974251658681445715065585701934992025240560147297759998560972254576320310430296485695931927388671496238684709084470347132359930714235174734840219839690627091111397115585958313534162270359454791885834410696966945328586093097239945880643103277070977219511538173495838459479169290922193965554136571395686147382910635505725822809074662099200120207569451764565944290558152928824600330897871871047957665971843927116942774861500059600264116493832988326149440089570615209514903606937204978502681946531118685856431827474078204654121381473833162443264656322553725553174997327443700206642059740568363741655324377272726366678151933645052073495301655427267815896716347 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d74e351c30692d2f87e2982f202a89d7f963fdfb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (139 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autosalonkromexim.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dacia-kromexim.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'renault-kromexim.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.autosalonkromexim.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dacia-kromexim.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.renault-kromexim.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b08048688000004030047304502206483efa5296b9aaf3662d7564ac9c8a4f8df6e18f967cfbaeb44dfe6e0e38579022100d83a39a11d8565cb0964c187abc25455c0014212792e1119d95b37bea9eb63f300770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b080486a50000040300483046022100c91351ca67a686f86357feda331e9fdc091070b76a2ed278ca71fa7c32020d6d022100ce8c7ff4e71446c26e99e55133bbe035e2b178fae4b0e047c44e427faa3b796e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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