rogerhr.ch
Issued by R10
About this certificate
This digital certificate with serial number 04:f7:39:1e:62:c3:4c:87:0c:d1:5a:d9:4e:37:16:d2:e5:03 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=rogerhr.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:f7:39:1e:62:c3:4c:87:0c:d1:5a:d9:4e:37:16:d2:e5:03Serial Number (int): 432574812124327600285941130196209529709827
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 42:49:bf:a0:84:92:c6:b1:ba:f1:b0:06:dc:3c:61:ec:27:65:f8:b1
AuthorityKeyId: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8
Fingerprint (sha1): 0d:8f:1c:68:8b:81:86:58:10:03:2f:31:d3:8c:7b:74:9c:e4:07:f4
Fingerprint (sha256): fb:e3:d0:7a:48:cf:d6:1d:0c:ec:5a:3c:82:29:a1:22:0a:72:20:e0:f1:64:07:7a:fe:19:5a:7e:a5:de:8b:f5
Issuing Certificate URL: http://r10.i.lencr.org/
Revocation information
OCSP Server: http://r10.o.lencr.orgCheck the revocation status for certificate rogerhr.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rogerhr.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rogerhr.ch
www.rogerhr.ch
www.rogerhr.ch
Other certificates including the domain name rogerhr.ch
(limited to 100 certificates)
www.captureonestatus.com
status.qnbefinans.com
status.qnbefinans.com
cinema-lab.status.vistamanaged.services
status.eurabo.be
status.waterlogicglobal.com
studiomoviegrill.status.vistamanaged.services
status.qnbefinans.com
status.qnbefinans.com
app.rogerhr.ch
status.qnbefinans.com
cinema-lab.status.vistamanaged.services
status.qnbefinans.com
rogerhr.ch
rogerhr.ch
server.medienmotion.de
status.eurabo.be
statusiq.orphea-studio.oodrive.com
status.allgreenhosting.net
server.medienmotion.de
status.eurabo.be
rogerhr.ch
rogerhr.ch
bowtiecinemas.status.vistamanaged.services
statusiq.orphea-studio.oodrive.com
status.praxisifm.com
rogerhr.ch
status.pkrueck.com
status.rogerhr.ch
status.eurabo.be
status.pkrueck.com
statusiq.orphea-studio.oodrive.com
status.galwaycivildefence.com
status.rogerhr.ch
status.allgreenhosting.net
server.medienmotion.de
staging.app.rogerhr.ch
status.orbitmi.io
api.rogerhr.ch
status.allgreenhosting.net
status.orbitmi.io
status.waterlogicglobal.com
status.waterlogicglobal.com
status.galwaycivildefence.com
www.captureonestatus.com
status.rogerhr.ch
status.orbitmi.io
status.allgreenhosting.net
status.qnbefinans.com
statusiq.orphea-studio.oodrive.com
status.qnbefinans.com
rogerhr.ch
status.qnbefinans.com
status.qnbefinans.com
cinema-lab.status.vistamanaged.services
status.eurabo.be
status.waterlogicglobal.com
studiomoviegrill.status.vistamanaged.services
status.qnbefinans.com
status.qnbefinans.com
app.rogerhr.ch
status.qnbefinans.com
cinema-lab.status.vistamanaged.services
status.qnbefinans.com
rogerhr.ch
rogerhr.ch
server.medienmotion.de
status.eurabo.be
statusiq.orphea-studio.oodrive.com
status.allgreenhosting.net
server.medienmotion.de
status.eurabo.be
rogerhr.ch
rogerhr.ch
bowtiecinemas.status.vistamanaged.services
statusiq.orphea-studio.oodrive.com
status.praxisifm.com
rogerhr.ch
status.pkrueck.com
status.rogerhr.ch
status.eurabo.be
status.pkrueck.com
statusiq.orphea-studio.oodrive.com
status.galwaycivildefence.com
status.rogerhr.ch
status.allgreenhosting.net
server.medienmotion.de
staging.app.rogerhr.ch
status.orbitmi.io
api.rogerhr.ch
status.allgreenhosting.net
status.orbitmi.io
status.waterlogicglobal.com
status.waterlogicglobal.com
status.galwaycivildefence.com
www.captureonestatus.com
status.rogerhr.ch
status.orbitmi.io
status.allgreenhosting.net
status.qnbefinans.com
statusiq.orphea-studio.oodrive.com
status.qnbefinans.com
rogerhr.ch
Certificate
The complete raw certificate details for rogerhr.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8zCCBNugAwIBAgISBPc5HmLDTIcM0VrZTjcW0uUDMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwNjEzMTMwODUzWhcNMjQwOTExMTMwODUyWjAVMRMwEQYDVQQD Ewpyb2dlcmhyLmNoMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAq6Gj 3oyWHv4pyXuRrTEhM9JrFRNsJUAWFDil5mGP0wD4/cRoS/VCQqT5zzoyoWDx09Va UKJq5DOp4sIi9Rdipk+KksdlxHopOCI/4+CUMQjw/NKYc1XY5905C3X2jPckZhqQ vJPYEhbdiABIhJIeoU2e2Oz0iKlP6APqmgs6FnNUGZU/LAYdj3ukaqmMD32WHjwC w6rPlf+Y7knJrbCMYdvXm23MriofmQostmEGOEjAnPOy10uZZea+PQjmvDi/BVTv ESUKc20izsxL/JaJpg3YlVoKqmE4CYnwys9Qjd1rA0zQQVOXqf/TbsTpBdcer8AE O1orIQnalIlTqsWED3Sd6MzeR8vKgg1kFya+Su6KPxEpqR9HUFfrXi5vR07EqP18 3uDfPdALcUYbLNX9BQNtE4bfU/icOzCwaApWmPwusm6EOoBba6ynKrD8UPFUcj7v lZY4am0aPTRZBWeOplNV8EXH/E0qkwvlFEIpc2U8isN4VirVW67jV3zzKBEcsMVN TvSetIjc27u6ow1cbqnTMEyimnzz0vCH0atNHe/oIdjee/u8/tKsZftpv1gyd3v3 lqMiMMJ7zbhk9iBSKhEGiDkEzRhsKoQtXEzx69ELFTNhxtPcje4NI0e2JFa9KyGJ 8D/dmOoGwv1gkCL02/AM83Rzyg7O1ovdjjr3x1kCAwEAAaOCAh0wggIZMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUQkm/oISSxrG68bAG3Dxh7Cdl+LEwHwYDVR0jBBgw FoAUu7zDR6XkvKnGw6RyDBCNojXhyOgwVwYIKwYBBQUHAQEESzBJMCIGCCsGAQUF BzABhhZodHRwOi8vcjEwLm8ubGVuY3Iub3JnMCMGCCsGAQUFBzAChhdodHRwOi8v cjEwLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcggpyb2dlcmhyLmNogg53d3cucm9n ZXJoci5jaDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQE gfEA7wB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABkBHuFPAA AAQDAEcwRQIgBBBZDl+o3YaMBwIVLOw+U1uSZd+LvTITFYeMn8bUHzACIQCKYRxz ZOOcK9SAR9B4MlFa1tKDzFVXQlW+CMgpwwmrWQB1AO7N0GTV2xrOxVy3nbTNE6Iy h0Z8vOzew1FIWUZxH7WbAAABkBHuFPYAAAQDAEYwRAIgWaB6E2LqCGBVhnucPybY KeaJ5dsVf2WNNi/xmzPXhzQCIGmAW7latrKVuqejN2KhDiNJN9g3PeqSVS0cJFhn UaXFMA0GCSqGSIb3DQEBCwUAA4IBAQBfTBK5GnSjChXBTcKIRssOhwg9L/tZexBa hmwPB4xOsFjc+AXEXyhxemCqADVDNy21f/QdxOP3X7ewaBbORBZnvpt8WaB3s+GT xDpXxFuJXHIfyo9TyNWrn/E3n0sfvTD0MFQRxrxPvLu1syn52hwZAyAAh5KRxoiT HGrVKSZeB3oOiewJUZxAAK2fEUWfVFHoVIg3Gg3Ao1geNtMYpth2osDnRaJ1eNSJ 5sA6hvmNYlPquyEMnIu9+ZcfotGaXFI8PLWXRwi/HoqqFmD0qxciElIh2Y3CYYuL 2hcNA3IzYkIFSLA7WW7F6C8nO5+xvwa3HkzWRpxA6jKFVcsxXy6p -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAq6Gj3oyWHv4pyXuRrTEh M9JrFRNsJUAWFDil5mGP0wD4/cRoS/VCQqT5zzoyoWDx09VaUKJq5DOp4sIi9Rdi pk+KksdlxHopOCI/4+CUMQjw/NKYc1XY5905C3X2jPckZhqQvJPYEhbdiABIhJIe oU2e2Oz0iKlP6APqmgs6FnNUGZU/LAYdj3ukaqmMD32WHjwCw6rPlf+Y7knJrbCM YdvXm23MriofmQostmEGOEjAnPOy10uZZea+PQjmvDi/BVTvESUKc20izsxL/JaJ pg3YlVoKqmE4CYnwys9Qjd1rA0zQQVOXqf/TbsTpBdcer8AEO1orIQnalIlTqsWE D3Sd6MzeR8vKgg1kFya+Su6KPxEpqR9HUFfrXi5vR07EqP183uDfPdALcUYbLNX9 BQNtE4bfU/icOzCwaApWmPwusm6EOoBba6ynKrD8UPFUcj7vlZY4am0aPTRZBWeO plNV8EXH/E0qkwvlFEIpc2U8isN4VirVW67jV3zzKBEcsMVNTvSetIjc27u6ow1c bqnTMEyimnzz0vCH0atNHe/oIdjee/u8/tKsZftpv1gyd3v3lqMiMMJ7zbhk9iBS KhEGiDkEzRhsKoQtXEzx69ELFTNhxtPcje4NI0e2JFa9KyGJ8D/dmOoGwv1gkCL0 2/AM83Rzyg7O1ovdjjr3x1kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 432574812124327600285941130196209529709827 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-13 13:08:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-11 13:08:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rogerhr.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 700195050219736838722764240354538645857990435401167692229492664681851878387898070688275780460851976012670432765253210364683196317739824263969178488561472822916876504477464410050142071757857925823549857396021141214125861965136581233610759970203207625995835198887304857072434744799831197723307082417478294567210123349174251017237635601419714244668877810184848457848612905129022085470354285262616392997070775009118656148818886543460234222764574515511419764017027892423576138401057767370405868843007682075272801869083944413686551645404583038117458373814528233522718963629099664369107312640180129027882397906454939109620212106110612523356403375914718199929082691819751094636617859942707315945865667670508369963202217122612994818634544607080247714513785639582930276936379646026399800001500447060082989239377881623874753150279516345014018134290746372473190699578807580877116909388379870193178514944138514698450525960186493892595944598911688895749796272965491827053345449655215148232532735140987834651020807279572755282918979656988026251101945149407505709641580085260622816251746917603059148669477693720945854617069904369063049805290780823350610607040720958315051617005087135181604743565245579091688788241341221820404213895656426177132218201 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4249bfa08492c6b1baf1b006dc3c61ec2765f8b1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rogerhr.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rogerhr.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000019011ee14f0000004030047304502200410590e5fa8dd868c0702152cec3e535b9265df8bbd321315878c9fc6d41f300221008a611c7364e39c2bd48047d07832515ad6d283cc55574255be08c829c309ab59007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000019011ee14f60000040300463044022059a07a1362ea086055867b9c3f26d829e689e5db157f658d362ff19b33d78734022069805bb95ab6b295baa7a33762a10e234937d8373dea92552d1c24586751a5c5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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