old_at_cert = 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





// 现在我们要替换这里面的几个内容


// 1)首先是 7f21 / 7f4e / 7f49 / 06，这个表示对本证书签名如何用什么算法进行hash
// 根据oids.js查表，我们选择
// "0.4.0.127.0.7.1.1.4.1.3": { "d": "bsiEcdsaWithSHA256", "c": "BSI TR-03111" },
newoid      = oid_encrypt( "0.4.0.127.0.7.1.1.4.1.3" )
txtoid      = oid_decrypt( $newoid )

tmpcert     = settlv( $old_at_cert, 7f21 7f4e 7f49 06, $newoid )