fr.hewz.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:40:48:b3:47:67:b7:ad:ee:ef:e5:a7:cc:a6:5c:0e:fc:d9 was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=fr.hewz.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:40:48:b3:47:67:b7:ad:ee:ef:e5:a7:cc:a6:5c:0e:fc:d9Serial Number (int): 370323850495083668552696623480723477560537
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: bc:7b:cb:80:0d:b5:47:6e:36:d8:80:b0:1c:18:22:41:ac:7f:2b:98
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 46:a9:68:aa:77:dc:7e:a6:d7:3d:ea:db:df:16:7e:8c:e3:d1:0b:d7
Fingerprint (sha256): 02:31:95:7b:b2:fc:47:be:00:86:6c:c4:b6:9e:6c:19:c6:a2:85:66:7d:2c:09:77:20:6e:ef:39:5e:1f:26:e6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate fr.hewz.ca
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fr.hewz.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ar.hewz.ca
de.hewz.ca
es.hewz.ca
fr.hewz.ca
it.hewz.ca
zh-cn.hewz.ca
zh-tw.hewz.ca
de.hewz.ca
es.hewz.ca
fr.hewz.ca
it.hewz.ca
zh-cn.hewz.ca
zh-tw.hewz.ca
Other certificates including the domain name hewz.ca
(limited to 100 certificates)
support.theperipheralstore.in
fr.hewz.ca
*.staging.hewz.ca
hewz.ca
support.plcorp.com
www.hewz.ca
*.dev.hewz.ca
support.strataprof.com
hewz.ca
hewz.ca
support.pelicanqsrsolutions.com
hewz.ca
support.simpleintranet.org
www.hewz.ca
help.wisetronic.com
partners.hewz.ca
www.hewz.ca
servicenter.tecnologi.ca
hewz.ca
hewz.ca
www.hewz.ca
support.plcorp.com
www.hewz.ca
partners.hewz.ca
support.worldhook.com
support.simpleintranet.org
www.hewz.ca
support.acentric-surveys.com
hewz.ca
www.hewz.ca
support.pointii.com
support.highendiron.com
www.hewz.ca
support.simpleintranet.org
support.fastclock.net
hewz.ca
*.hewz.ca
hewz.ca
cdn.hewz.ca
hewz.ca
partners.hewz.ca
support.techchaps.com
support.simpleintranet.org
help.hewz.ca
support.littlefrenchkey.com
help.shindamgmtcorp.com
www.hewz.ca
support.simpleintranet.org
*.hewz.ca
www.hewz.ca
www.hewz.ca
support.fastclock.net
fr.hewz.ca
*.staging.hewz.ca
hewz.ca
support.plcorp.com
www.hewz.ca
*.dev.hewz.ca
support.strataprof.com
hewz.ca
hewz.ca
support.pelicanqsrsolutions.com
hewz.ca
support.simpleintranet.org
www.hewz.ca
help.wisetronic.com
partners.hewz.ca
www.hewz.ca
servicenter.tecnologi.ca
hewz.ca
hewz.ca
www.hewz.ca
support.plcorp.com
www.hewz.ca
partners.hewz.ca
support.worldhook.com
support.simpleintranet.org
www.hewz.ca
support.acentric-surveys.com
hewz.ca
www.hewz.ca
support.pointii.com
support.highendiron.com
www.hewz.ca
support.simpleintranet.org
support.fastclock.net
hewz.ca
*.hewz.ca
hewz.ca
cdn.hewz.ca
hewz.ca
partners.hewz.ca
support.techchaps.com
support.simpleintranet.org
help.hewz.ca
support.littlefrenchkey.com
help.shindamgmtcorp.com
www.hewz.ca
support.simpleintranet.org
*.hewz.ca
www.hewz.ca
www.hewz.ca
support.fastclock.net
Certificate
The complete raw certificate details for fr.hewz.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISBEBIs0dnt63u7+WnzKZcDvzZMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMDEyMzUyMzJaFw0x OTEyMzAyMzUyMzJaMBUxEzARBgNVBAMTCmZyLmhld3ouY2EwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCkPfa9D7fwklVna6VgJOeuLGV2/SJM0z/1YBXm BUYStIob3uadwGNQHHgYE8Ooq8zyRz/+XviRblqPUUuqmG+uw84CdL3hp85ugFpj HMErynIXUqXKewpzV9DcXDmZIJXtHay+DtrtgRzd3DWkJCVxI2vfOAkuMShC2/tz stpWbW871x1uUb0zA+e3C6eQZCxsruozMD8OGdlBV+ZHDoX1OWjTZf34SrCz1k/m e5RO+R3XDBCESnLJEEEQwZjTqMQ+HZ1a+5K+7ePVkMZCS4YtVoSqMJeTAzcpK1zr 00b5o2NDZj1tnYnuT3fjTO4WCLwWTtt2dux4ONjnEWnQ/qNJAgMBAAGjggKtMIIC qTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLx7y4ANtUduNtiAsBwYIkGsfyuYMB8G A1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAu BggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAv BggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8w YwYDVR0RBFwwWoIKYXIuaGV3ei5jYYIKZGUuaGV3ei5jYYIKZXMuaGV3ei5jYYIK ZnIuaGV3ei5jYYIKaXQuaGV3ei5jYYINemgtY24uaGV3ei5jYYINemgtdHcuaGV3 ei5jYTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkC BAIEgfUEgfIA8AB2AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAAB bYn0T24AAAQDAEcwRQIhAJe1lqn1N0SxOfBaDAlgJt/t/VqrfFV2NbLj//kclG3z AiAJOda8iWRKI4rTeMLOpCjunczJ3YQCn+kL2PhJLTnhdAB2AGPy283oO8wszwty hCdXazOkjWF3j711pjixx2hUS9iNAAABbYn0TzoAAAQDAEcwRQIhANobm++aaj1/ X1ShhWd+aMWld8bqjzoeZFbdfG8cYgsBAiASAZQllpXtIYm0VcMYmtFRHPeSGJy7 3Cf17oC1vttwyzANBgkqhkiG9w0BAQsFAAOCAQEAEpis2whTPoY1NYyqxvayJpDp aHt8DtyIER0bUxFdxH0BDtzbaIgS5GVTKdeSF2XrXN+OPJvahbT7DBVWxcggiwPB yhCVyeFBDTLqF/dTqOW6LypvKZsXofiRiulP4Uvw8LpzhRv+seenLt+HdKt0Pgud NJV5+sfOD7/mfKIB83Nys80124rMJzgATNeyfkX/mvKcefLE6wPElsz6vQqak3QM LJryEHX1psB0IFHLuqcIf8SP73Ag+mizxzj3g0n3Mv/bMxv2erZiY/eOS3pYYJA+ UWnkjTU8hmrsxcsVvC+0Qq4quOCYXr1PKKj7ZVDpe7VsEpVLvM+qXlFmjj0f/w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApD32vQ+38JJVZ2ulYCTn rixldv0iTNM/9WAV5gVGErSKG97mncBjUBx4GBPDqKvM8kc//l74kW5aj1FLqphv rsPOAnS94afOboBaYxzBK8pyF1KlynsKc1fQ3Fw5mSCV7R2svg7a7YEc3dw1pCQl cSNr3zgJLjEoQtv7c7LaVm1vO9cdblG9MwPntwunkGQsbK7qMzA/DhnZQVfmRw6F 9Tlo02X9+Eqws9ZP5nuUTvkd1wwQhEpyyRBBEMGY06jEPh2dWvuSvu3j1ZDGQkuG LVaEqjCXkwM3KStc69NG+aNjQ2Y9bZ2J7k9340zuFgi8Fk7bdnbseDjY5xFp0P6j SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 370323850495083668552696623480723477560537 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-01 23:52:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-30 23:52:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fr.hewz.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20733637514052493740406294584348365497355105602111061411887367377939212859141772930667748059464268414951334880036707538478668374033322134495714607908959073574824591620468716518746088664352960856552600065740442960451489057963677443687797405083395698393563003005212995555044001599434674945150343368008108501398911835866462230774428241599758569519765739686938119272410894406782922272825577711681338013354053785733646611088313818120016055764946367458227260090378358129480001622155227082030141446098213092948477856969563946762060159202035221931458522806351802818490185432475107451302984611582682718091918411401183312651081 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bc7bcb800db5476e36d880b01c182241ac7f2b98 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ar.hewz.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'de.hewz.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'es.hewz.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fr.hewz.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'it.hewz.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zh-cn.hewz.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zh-tw.hewz.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016d89f44f6e000004030047304502210097b596a9f53744b139f05a0c096026dfedfd5aab7c557635b2e3fff91c946df302200939d6bc89644a238ad378c2cea428ee9dccc9dd84029fe90bd8f8492d39e17400760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d89f44f3a0000040300473045022100da1b9bef9a6a3d7f5f54a185677e68c5a577c6ea8f3a1e6456dd7c6f1c620b010220120194259695ed2189b455c3189ad1511cf792189cbbdc27f5ee80b5bedb70cb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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