portalinternet.banestes.com.br
Issued by GlobalSign Domain Validation CA - SHA256 - G2
About this certificate
This digital certificate with serial number 11:21:51:99:14:3b:3e:c9:e8:04:de:59:f1:4d:ce:d9:cf:8d was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=portalinternet.banestes.com.br,OU=Domain Control Validated,C=BR
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 11:21:51:99:14:3b:3e:c9:e8:04:de:59:f1:4d:ce:d9:cf:8dSerial Number (int): 1492246641247735182122982530562332217167757
Serial Number lenght: 141 bits, 18 octets
SubjectKeyId: a1:e8:8f:f7:94:8a:ac:d1:f2:74:56:f6:96:6c:f1:f1:df:37:21:fa
AuthorityKeyId: ea:4e:7c:d4:80:2d:e5:15:81:86:26:8c:82:6d:c0:98:a4:cf:97:0f
Fingerprint (sha1): db:30:e3:05:a4:5b:e1:a2:b0:9f:2c:0f:99:bc:a2:d6:78:95:3b:77
Fingerprint (sha256): 00:3b:4e:87:c7:f2:14:35:ee:49:81:01:55:ee:70:a2:30:4d:39:2f:9f:5a:13:08:37:0f:0e:8d:c5:59:12:cf
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsdomainvalsha2g2CRL Distribution Point: http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl
Check the revocation status for certificate portalinternet.banestes.com.br
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for portalinternet.banestes.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
portalinternet.banestes.com.br
Other certificates including the domain name banestes.com.br
(limited to 100 certificates)
portalinternet.banestes.com.br
www.banestes.com.br
mail.banestes.com.br
*.banestes.com.br
www.banestes.com.br
gerenciador.banestes.com.br
av.banestes.com.br
portal.pix.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
av.u.banestes.com.br
seg.banestes.com.br
portalinternet.banestes.com.br
svcpiprapl01.banestes.com.br
banestescorp.banestes.com.br
www.banestes.com.br
seg.banestes.com.br
ws.u.banestes.com.br
wwws.banestes.com.br
wwws.u.banestes.com.br
wwws.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
banestescorp.banestes.com.br
misp.banestes.com.br
portalinternet.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
misp.h.banestes.com.br
ws.banestes.com.br
www.banestes.com.br
*.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
portalinternet.banestes.com.br
depositojudicial.banestes.com.br
wwws.banestes.com.br
chat.banestes.com.br
wwws.banestes.com.br
ws.h.banestes.com.br
seg.banestes.com.br
www.banestes.com.br
portalinternet.banestes.com.br
banestescorp.banestes.com.br
depositojudicial.h.banestes.com.br
wwws.banestes.com.br
*.banestes.com.br
portalinternet.banestes.com.br
sisjur.banestes.com.br
wwws.banestes.com.br
chat.banestes.com.br
*.banestes.com.br
seg.banestes.com.br
www.banestes.com.br
mail.banestes.com.br
*.banestes.com.br
www.banestes.com.br
gerenciador.banestes.com.br
av.banestes.com.br
portal.pix.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
av.u.banestes.com.br
seg.banestes.com.br
portalinternet.banestes.com.br
svcpiprapl01.banestes.com.br
banestescorp.banestes.com.br
www.banestes.com.br
seg.banestes.com.br
ws.u.banestes.com.br
wwws.banestes.com.br
wwws.u.banestes.com.br
wwws.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
banestescorp.banestes.com.br
misp.banestes.com.br
portalinternet.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
misp.h.banestes.com.br
ws.banestes.com.br
www.banestes.com.br
*.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
portalinternet.banestes.com.br
depositojudicial.banestes.com.br
wwws.banestes.com.br
chat.banestes.com.br
wwws.banestes.com.br
ws.h.banestes.com.br
seg.banestes.com.br
www.banestes.com.br
portalinternet.banestes.com.br
banestescorp.banestes.com.br
depositojudicial.h.banestes.com.br
wwws.banestes.com.br
*.banestes.com.br
portalinternet.banestes.com.br
sisjur.banestes.com.br
wwws.banestes.com.br
chat.banestes.com.br
*.banestes.com.br
seg.banestes.com.br
Certificate
The complete raw certificate details for portalinternet.banestes.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISESFRmRQ7PsnoBN5Z8U3O2c+NMA0GCSqGSIb3DQEBCwUA MGAxCzAJBgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTYwNAYD VQQDEy1HbG9iYWxTaWduIERvbWFpbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0g RzIwHhcNMTQxMTI0MTMyMzMxWhcNMTYxMTI0MTMyMzMxWjBZMQswCQYDVQQGEwJC UjEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMScwJQYDVQQDDB5w b3J0YWxpbnRlcm5ldC5iYW5lc3Rlcy5jb20uYnIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA7fhzT3cPqMOoVJGp7OTM+dgX+HLPZ9+H5u6hwMWtgy7I +tgCzbuDgYlLVCLEvysJI0aJy87ZVJAfN4QEuUwAh9TvpnyfMHXBHJun0fSl1YDs VshauPJbSHOTAra07hjExfCS92elBgmdRXFKzlzRbbTkyM1RFt/57JRflzBQxNUT DgHPrVUMqh9X0cEmDb94obneRyDm8+ybi5zLATeQrS/weEn75b3v9yB4Ej+AYQb0 N8CYFV+bxQRdZJw8HtoRcTWp7Gx7uLQ7NGBKv8TYBTjtEjASuA7K34YT8t+uSLm9 8W4warZEwAyuyIAD8DH5vH+ZHoaOUWEyctihK0TjAgMBAAGjggHQMIIBzDAOBgNV HQ8BAf8EBAMCBaAwSQYDVR0gBEIwQDA+BgZngQwBAgEwNDAyBggrBgEFBQcCARYm aHR0cHM6Ly93d3cuZ2xvYmFsc2lnbi5jb20vcmVwb3NpdG9yeS8wKQYDVR0RBCIw IIIecG9ydGFsaW50ZXJuZXQuYmFuZXN0ZXMuY29tLmJyMAkGA1UdEwQCMAAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEMGA1UdHwQ8MDowOKA2oDSGMmh0 dHA6Ly9jcmwuZ2xvYmFsc2lnbi5jb20vZ3MvZ3Nkb21haW52YWxzaGEyZzIuY3Js MIGUBggrBgEFBQcBAQSBhzCBhDBHBggrBgEFBQcwAoY7aHR0cDovL3NlY3VyZS5n bG9iYWxzaWduLmNvbS9jYWNlcnQvZ3Nkb21haW52YWxzaGEyZzJyMS5jcnQwOQYI KwYBBQUHMAGGLWh0dHA6Ly9vY3NwMi5nbG9iYWxzaWduLmNvbS9nc2RvbWFpbnZh bHNoYTJnMjAdBgNVHQ4EFgQUoeiP95SKrNHydFb2lmzx8d83IfowHwYDVR0jBBgw FoAU6k581IAt5RWBhiaMgm3AmKTPlw8wDQYJKoZIhvcNAQELBQADggEBABrPw9BF GQg5gr0bQbTuvvT73hN0uKoyDvPVbRleKpDNu3zlOcTKcIRmGq+Qz4dLZCoQVK3w DTCxWXyNuK/FdeoZMAF9xtrC6FeCV4N1IBv0iqAIDeCOY2xSLj2UgxMtU/bGQKKq 9ltdP5Vn0x9VavBI9R5uLak3yi/EcNGyAgggL7+n3Pt1ghrSz9ISfqPO7ZlsYzmq 3KbILSO3p5PW2SXoXkPbV324g+Fw4C9ufZ85mGWJc8lKcLoVPDb+bglmuM1nuphX eIKryweFRBlTLEseEJw81cImMIDAJ8scy8r6KqrUaqeQFFF+Lvrg3/BWdjfwrsdI 4Z4slC2E7rm/qNk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwO34c093D6jDqFSRqezk zPnYF/hyz2ffh+buocDFrYMuyPrYAs27g4GJS1QixL8rCSNGicvO2VSQHzeEBLlM AIfU76Z8nzB1wRybp9H0pdWA7FbIWrjyW0hzkwK2tO4YxMXwkvdnpQYJnUVxSs5c 0W205MjNURbf+eyUX5cwUMTVEw4Bz61VDKofV9HBJg2/eKG53kcg5vPsm4ucywE3 kK0v8HhJ++W97/cgeBI/gGEG9DfAmBVfm8UEXWScPB7aEXE1qexse7i0OzRgSr/E 2AU47RIwErgOyt+GE/Lfrki5vfFuMGq2RMAMrsiAA/Ax+bx/mR6GjlFhMnLYoStE 4wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1492246641247735182122982530562332217167757 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Domain Validation CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-11-24 13:23:31 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-24 13:23:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'portalinternet.banestes.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24355102185322473043408457719539194400712385736711271133384362806058641279672952866851799084772778417578804857763585996927269609185967901082977984772303499562115896780232585502859423290243018591654532419733658940773928391102521929043018168329256766453798706323821727352324885294668824550973956988011057263004565246800902847702684083162184732963109526881316393254801081717226430196787196254077322082585641556754828520210525768095825802268119153276568164572754042950887392243855701472058495364701973458721739567177139555649029010959534052453133723506869368565211321698196889421058280512795765383868771612808849027450083 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portalinternet.banestes.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsdomainvalsha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a1e88ff7948aacd1f27456f6966cf1f1df3721fa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ea4e7cd4802de5158186268c826dc098a4cf970f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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