carta.us.unblu.app
Issued by GTS CA 1D4
About this certificate
This digital certificate with serial number 9b:73:2c:a1:8a:d0:14:da:10:5d:60:a5:9a:8c:1f:ad was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=carta.us.unblu.app
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 9b:73:2c:a1:8a:d0:14:da:10:5d:60:a5:9a:8c:1f:adSerial Number (int): 206628358710110677343152640416711188397
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 2e:f7:c2:fa:79:ba:c5:1b:bc:1f:a1:d7:e4:1a:4a:d1:8b:32:40:61
AuthorityKeyId: 25:e2:18:0e:b2:57:91:94:2a:e5:d4:5d:86:90:83:de:53:b3:b8:92
Fingerprint (sha1): d7:7c:e4:ba:f1:ab:fc:02:25:d9:d6:df:7e:2e:5b:2c:2c:6c:fb:b9
Fingerprint (sha256): ff:44:ab:f9:43:31:33:7c:95:8b:47:f5:64:2f:89:ab:25:db:2f:7b:9b:bd:35:c3:2e:71:35:a5:6f:f7:c5:e3
Issuing Certificate URL: http://pki.goog/repo/certs/gts1d4.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1d4/C30ZzmBOcRMCRL Distribution Point: http://crls.pki.goog/gts1d4/k7562-bXs-A.crl
Check the revocation status for certificate carta.us.unblu.app
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for carta.us.unblu.app
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
carta.us.unblu.app
unblu.carta.com
unblu.carta.com
Other certificates including the domain name unblu.app
(limited to 100 certificates)
carta.us.unblu.app
collaboration.cbk.unblu.app
rco-eu.unblu.app
carta.us.unblu.app
santander.unblu.app
bper-banca.unblu.app
celero.unblu.app
uba-uat.mirabaud.unblu.app
carta.us.unblu.app
us.unblu.app
carta.us.unblu.app
postbranch.unblu.app
bms.balins.cb.unblu.app
bug-bounty-visitor.app.unblu.app
carta.us.unblu.app
euipo.eu.unblu.app
ringcentral-cnb.app.unblu.app
carta.us.unblu.app
ca.unblu.app
carta.us.unblu.app
carta.us.unblu.app
eu.unblu.app
carta.us.unblu.app
turn-admin.unblu.app
optimatax.us.unblu.app
bugbounty.eu.unblu.app
mirabaud.unblu.app
carta.us.unblu.app
us.sfu.unblu.app
carta.us.unblu.app
*.turn.unblu.app
carta.us.unblu.app
carta.us.unblu.app
euipo.eu.unblu.app
us.unblu.app
stridecu.ca.unblu.app
cbk.unblu.app
euipo.eu.unblu.app
optimatax.us.unblu.app
alternasavings.unblu.app
synergycu.celero.unblu.app
bms.stridecu.cb.unblu.app
nl.sfu.unblu.app
mcmcg.us.unblu.app
abnamro.unblu.app
carta.us.unblu.app
mcmcg.us.unblu.app
carta.us.unblu.app
secmsg.rco-eu.unblu.app
cffcu.us.unblu.app
carta.us.unblu.app
carta.us.unblu.app
collaboration.cbk.unblu.app
rco-eu.unblu.app
carta.us.unblu.app
santander.unblu.app
bper-banca.unblu.app
celero.unblu.app
uba-uat.mirabaud.unblu.app
carta.us.unblu.app
us.unblu.app
carta.us.unblu.app
postbranch.unblu.app
bms.balins.cb.unblu.app
bug-bounty-visitor.app.unblu.app
carta.us.unblu.app
euipo.eu.unblu.app
ringcentral-cnb.app.unblu.app
carta.us.unblu.app
ca.unblu.app
carta.us.unblu.app
carta.us.unblu.app
eu.unblu.app
carta.us.unblu.app
turn-admin.unblu.app
optimatax.us.unblu.app
bugbounty.eu.unblu.app
mirabaud.unblu.app
carta.us.unblu.app
us.sfu.unblu.app
carta.us.unblu.app
*.turn.unblu.app
carta.us.unblu.app
carta.us.unblu.app
euipo.eu.unblu.app
us.unblu.app
stridecu.ca.unblu.app
cbk.unblu.app
euipo.eu.unblu.app
optimatax.us.unblu.app
alternasavings.unblu.app
synergycu.celero.unblu.app
bms.stridecu.cb.unblu.app
nl.sfu.unblu.app
mcmcg.us.unblu.app
abnamro.unblu.app
carta.us.unblu.app
mcmcg.us.unblu.app
carta.us.unblu.app
secmsg.rco-eu.unblu.app
cffcu.us.unblu.app
carta.us.unblu.app
carta.us.unblu.app
Certificate
The complete raw certificate details for carta.us.unblu.app in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIRAJtzLKGK0BTaEF1gpZqMH60wDQYJKoZIhvcNAQELBQAw RjELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBM TEMxEzARBgNVBAMTCkdUUyBDQSAxRDQwHhcNMjMxMDEzMTkwMTExWhcNMjQwMTEx MTk1NTA1WjAdMRswGQYDVQQDExJjYXJ0YS51cy51bmJsdS5hcHAwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCipvqYki0YSiaVvj8aW8MwMEHNnPnzFrT+ sepbL3n4aDzModKDuuv70IXFDXxqppaiE7rjcYAleQajiJHpJEUtniXOJ6nbfFG3 iwe6jCEqEcevJ9LwFnL1Yhz+z9WqeVP9qvqFq06/r5vXOSFbBMDxt8zrfVcXNMz4 o3mRo2avc06Md44SZDoQSSjop1JiKRd+fuZOJ731EKnc/LPmtHa5glMcYfUTX9RA 8xVBsQrS9Jg8LoNLJQwQ5BykMwt99SXSgKUVrDQ7qrphuRTr87XMFwox/LD7p0TI KDZarTGZyScwCHEkHPVnpcXspenYXQbJz7Ix7WlptEwtHahs5EUzAgMBAAGjggKJ MIIChTAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQULvfC+nm6xRu8H6HX5BpK0YsyQGEwHwYDVR0jBBgw FoAUJeIYDrJXkZQq5dRdhpCD3lOzuJIweAYIKwYBBQUHAQEEbDBqMDUGCCsGAQUF BzABhilodHRwOi8vb2NzcC5wa2kuZ29vZy9zL2d0czFkNC9DMzBaem1CT2NSTTAx BggrBgEFBQcwAoYlaHR0cDovL3BraS5nb29nL3JlcG8vY2VydHMvZ3RzMWQ0LmRl cjAuBgNVHREEJzAlghJjYXJ0YS51cy51bmJsdS5hcHCCD3VuYmx1LmNhcnRhLmNv bTAhBgNVHSAEGjAYMAgGBmeBDAECATAMBgorBgEEAdZ5AgUDMDwGA1UdHwQ1MDMw MaAvoC2GK2h0dHA6Ly9jcmxzLnBraS5nb29nL2d0czFkNC9rNzU2Mi1iWHMtQS5j cmwwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQB2/4g/Crb7lVHCYcz1h7o0tKTN uyncaEIKn+ZnTFo6dAAAAYsqoPFUAAAEAwBGMEQCIHTaCln8lY9YuOPiOoJMizSl 5KVw2c5zjeofF9SH0znnAiBREXUR11DAaQoOOZf8rM6JqXc09ntjNds39P2w0gfF PgB2ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiyqg8WAAAAQD AEcwRQIgFx4U3R1FHigZv3Nqu9YKz0D4aBOhSOwZH7st4qX+xOgCIQCIC0BI2HVV FMhnWcXiDw8blLZA9GO0B1hIczY7xtJZlDANBgkqhkiG9w0BAQsFAAOCAQEAUXvb bKvVkn/KQBBKrLBasIyhIcshbu2qx5u913ouppxhfH2zET/Ee1A2/WI4voyzU+wW 1EQqh8ggH1oh62de+wyECdqbZbDUm1O4h0QGx07kicIN1buKuXTtBP0YX0sSUqVS lATxTZ5WALP3dR31JqnPcBAACYu4luiwx2KMOvlUGAVobi/++zcHwOQ4qz04woR4 KgIZqOC8YhK3sEMQKhRxUjVtKB0zglhgIVTJY/6CGpACuUSuInOrknw/P/f8+Y6b VPd1ef/1QZfPCMwU0sAvA43kkSwoGzeUhBI31f+7Md6NgmOxbtvuPkQZnVUzIzcf OmOz0ye434+Ho+YmRQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoqb6mJItGEomlb4/GlvD MDBBzZz58xa0/rHqWy95+Gg8zKHSg7rr+9CFxQ18aqaWohO643GAJXkGo4iR6SRF LZ4lziep23xRt4sHuowhKhHHryfS8BZy9WIc/s/VqnlT/ar6hatOv6+b1zkhWwTA 8bfM631XFzTM+KN5kaNmr3NOjHeOEmQ6EEko6KdSYikXfn7mTie99RCp3Pyz5rR2 uYJTHGH1E1/UQPMVQbEK0vSYPC6DSyUMEOQcpDMLffUl0oClFaw0O6q6YbkU6/O1 zBcKMfyw+6dEyCg2Wq0xmcknMAhxJBz1Z6XF7KXp2F0Gyc+yMe1pabRMLR2obORF MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 206628358710110677343152640416711188397 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1D4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-13 19:01:11 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-11 19:55:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'carta.us.unblu.app' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20532945764298304703963817253192922568242897455091444770127431765545542745588991680299960161120826869781203013040533073025498093769729168469629416559352767778977162020809606269656329921987048411635021418952972159368234065543546000695451986303216511557542575443206389980469187037280932258955615084698343619055538735174156513628301479037359009650954966387281290085673253172199799959226910331604983568164659136235146709043756592502475049913655844715540471899960257928524681684375481464856137139141705376500302310506633190980911216693446847591241752347202919533593992261463242201000930730903000361179427164935135563105587 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2ef7c2fa79bac51bbc1fa1d7e41a4ad18b324061 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 25e2180eb25791942ae5d45d869083de53b3b892 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1d4/C30ZzmBOcRM' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1d4.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'carta.us.unblu.app' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'unblu.carta.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1d4/k7562-bXs-A.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b2aa0f1540000040300463044022074da0a59fc958f58b8e3e23a824c8b34a5e4a570d9ce738dea1f17d487d339e7022051117511d750c0690a0e3997fcacce89a97734f67b6335db37f4fdb0d207c53e007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b2aa0f16000000403004730450220171e14dd1d451e2819bf736abbd60acf40f86813a148ec191fbb2de2a5fec4e8022100880b4048d8755514c86759c5e20f0f1b94b640f463b407584873363bc6d25994 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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