nyca.vc
Issued by R10
About this certificate
This digital certificate with serial number 04:ea:54:19:1b:13:30:f5:68:93:bd:93:01:39:35:f7:58:b8 was issued on by Let's Encrypt.
With 23 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=nyca.vc
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:ea:54:19:1b:13:30:f5:68:93:bd:93:01:39:35:f7:58:b8Serial Number (int): 428187003094753529688454689073654283065528
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: df:71:51:54:b9:2c:dd:a2:74:ce:3a:9b:77:a1:b8:78:65:96:e4:2d
AuthorityKeyId: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8
Fingerprint (sha1): ea:e8:1b:43:ab:53:f5:f7:59:24:fa:97:16:37:93:3b:4b:2a:2b:5f
Fingerprint (sha256): fe:76:5f:6d:ea:85:df:9e:1a:7c:3c:e2:3c:ae:67:e2:e2:8d:47:23:65:16:9c:d0:b2:03:20:34:14:36:b0:90
Issuing Certificate URL: http://r10.i.lencr.org/
Revocation information
OCSP Server: http://r10.o.lencr.orgCheck the revocation status for certificate nyca.vc
23
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nyca.vc
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
annoncesrencontre.com
bestpoisonivycures.net
boesiger.com
browniesreimagined.com
foxcitieshdtv.com
frankspeech.work
jerauldcounty.com
masturbucks.com
nh.cosfacts.org
nyca.vc
passivesoftwarebusiness.com
pawleysislandepoxy.com
prowerscounty.com
redwoodart.org
resumebuilder.tv
ri.cosfacts.org
sacondo.net
sainthelenaparish.com
scottsdale.info
tenicorzero.com
wameetings.statenationals.us
werise.in
wpadka.com
bestpoisonivycures.net
boesiger.com
browniesreimagined.com
foxcitieshdtv.com
frankspeech.work
jerauldcounty.com
masturbucks.com
nh.cosfacts.org
nyca.vc
passivesoftwarebusiness.com
pawleysislandepoxy.com
prowerscounty.com
redwoodart.org
resumebuilder.tv
ri.cosfacts.org
sacondo.net
sainthelenaparish.com
scottsdale.info
tenicorzero.com
wameetings.statenationals.us
werise.in
wpadka.com
Other certificates including the domain name nyca.vc
(limited to 100 certificates)
Certificate
The complete raw certificate details for nyca.vc in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGhzCCBW+gAwIBAgISBOpUGRsTMPVok72TATk191i4MA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwNjA4MTUxNjQ3WhcNMjQwOTA2MTUxNjQ2WjASMRAwDgYDVQQD EwdueWNhLnZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1HQglHH QgIOM+1AkeG2326B4K76zfQuNY0+6oxpXkFvEktYrhFNilONt4qm+DKmEDvyKH66 sNqtd6zd19gEDeouvJHr1JEJuMHydq5nAwCMIoOiVZ0KB8+4KKSd9Y+EJOZ64ZRi re9yZ0HTd4eQMdMTAr17bgrFMv7xmUVNG1zMp3JHHxUr4PIjdOtbFs3hF6sw7UnP 9hHXBpLB7hnUZF10p/XJEnQFVhIUJ/NAtl6Pld05VfkS2u7BB+6koT8oxW9+McXx RDHZ+u/RU3EW/a+WFyltbysUOqCGtWTnf77xQjCz6Z7ItqJrRTh/kfFgbkkf9CUY gottVGPzp6yLjQIDAQABo4IDtDCCA7AwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTf cVFUuSzdonTOOpt3obh4ZZbkLTAfBgNVHSMEGDAWgBS7vMNHpeS8qcbDpHIMEI2i NeHI6DBXBggrBgEFBQcBAQRLMEkwIgYIKwYBBQUHMAGGFmh0dHA6Ly9yMTAuby5s ZW5jci5vcmcwIwYIKwYBBQUHMAKGF2h0dHA6Ly9yMTAuaS5sZW5jci5vcmcvMIIB uwYDVR0RBIIBsjCCAa6CFWFubm9uY2VzcmVuY29udHJlLmNvbYIWYmVzdHBvaXNv bml2eWN1cmVzLm5ldIIMYm9lc2lnZXIuY29tghZicm93bmllc3JlaW1hZ2luZWQu Y29tghFmb3hjaXRpZXNoZHR2LmNvbYIQZnJhbmtzcGVlY2gud29ya4IRamVyYXVs ZGNvdW50eS5jb22CD21hc3R1cmJ1Y2tzLmNvbYIPbmguY29zZmFjdHMub3Jnggdu eWNhLnZjghtwYXNzaXZlc29mdHdhcmVidXNpbmVzcy5jb22CFnBhd2xleXNpc2xh bmRlcG94eS5jb22CEXByb3dlcnNjb3VudHkuY29tgg5yZWR3b29kYXJ0Lm9yZ4IQ cmVzdW1lYnVpbGRlci50doIPcmkuY29zZmFjdHMub3JnggtzYWNvbmRvLm5ldIIV c2FpbnRoZWxlbmFwYXJpc2guY29tgg9zY290dHNkYWxlLmluZm+CD3Rlbmljb3J6 ZXJvLmNvbYIcd2FtZWV0aW5ncy5zdGF0ZW5hdGlvbmFscy51c4IJd2VyaXNlLmlu ggp3cGFka2EuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAgYKKwYBBAHWeQIE AgSB8wSB8ADuAHQASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGP +KNhPgAABAMARTBDAh9Wv55cX2/vGA+U8bcYnzcEaLXPc/2D88JmFyrNcmC1AiAT /uBh5stG2dHuZBSa2AxzGGwh6xWeRtYhGn7puCodNQB2ABmYEHEJ8NZSLjCA0p4/ ZLuDbijM+Q9Sju7fzko/FrTKAAABj/ijYWMAAAQDAEcwRQIhAME+fODYb+6lBFRN eiG7ChSudZYyUnmtoCnriFAyDIGdAiAdUfD6lh5hMUvry2nI+eYUcOEOuIvIIGQu 6wtwWpodoDANBgkqhkiG9w0BAQsFAAOCAQEAFvZq9r+ExbSRxL/0xYDgUAnMjCLV mPU3VTiXHSBXHvCH1sBMdL7Dm9lTkhknBU2jQXjGZb4067/g9HYpR+SgirqHg5v4 PMjtNq0PA37NDIJtmn3iivoswwvfg/FgX9bZYDLg7Q/wvJTf8uWWtCksxp8cbuHh 4bROsFcf/4akLjofGXRogRT4mgQbk5c9FL1Gh4Kx96v7uX3IR5M9SYfPnF8nnU8E cYnl9dvLVwW+LLBGgasGzTgdNfZKpukw0xDhsM6/+6UXvHI++ID0aKVhz2WOTaFM 9i1Wyqr0E5LtH3+0HY3pfxD8uRDwnaBxmAx5t6Nrl1AFDHBI/kcTR7xN9Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1HQglHHQgIOM+1AkeG2 326B4K76zfQuNY0+6oxpXkFvEktYrhFNilONt4qm+DKmEDvyKH66sNqtd6zd19gE DeouvJHr1JEJuMHydq5nAwCMIoOiVZ0KB8+4KKSd9Y+EJOZ64ZRire9yZ0HTd4eQ MdMTAr17bgrFMv7xmUVNG1zMp3JHHxUr4PIjdOtbFs3hF6sw7UnP9hHXBpLB7hnU ZF10p/XJEnQFVhIUJ/NAtl6Pld05VfkS2u7BB+6koT8oxW9+McXxRDHZ+u/RU3EW /a+WFyltbysUOqCGtWTnf77xQjCz6Z7ItqJrRTh/kfFgbkkf9CUYgottVGPzp6yL jQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 428187003094753529688454689073654283065528 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-08 15:16:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-06 15:16:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nyca.vc' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24151860476454870849063841058716757615828869176574698392469970181564689563670180395717358708481342073217943768151166942263135952802279327369831282257130197986007898118888499098794372558835359267664413555349923325288305879953504379269214397303784735966948586797063590937299749544636809127200838572724762444251583973553352196112910476973210822284987920544555013555796036909798127796087615508461314460581638723460152200103629178785113695161639164146289688922829123528177243680435650679487844479994143288556035901286776249449522245157012536309435215264416982192867058369381880485574267759143472722887923038718156084120461 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) df715154b92cdda274ce3a9b77a1b8786596e42d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (434 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'annoncesrencontre.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bestpoisonivycures.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'boesiger.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'browniesreimagined.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'foxcitieshdtv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'frankspeech.work' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jerauldcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'masturbucks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nh.cosfacts.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nyca.vc' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'passivesoftwarebusiness.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pawleysislandepoxy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prowerscounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redwoodart.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resumebuilder.tv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ri.cosfacts.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sacondo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sainthelenaparish.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scottsdale.info' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tenicorzero.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wameetings.statenationals.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'werise.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wpadka.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00740048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ff8a3613e0000040300453043021f56bf9e5c5f6fef180f94f1b7189f370468b5cf73fd83f3c266172acd7260b5022013fee061e6cb46d9d1ee64149ad80c73186c21eb159e46d6211a7ee9b82a1d350076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018ff8a361630000040300473045022100c13e7ce0d86feea504544d7a21bb0a14ae7596325279ada029eb8850320c819d02201d51f0fa961e61314bebcb69c8f9e61470e10eb88bc820642eeb0b705a9a1da0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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