*.mmrisarcimenti.it
Issued by Actalis Domain Validation Server CA G3
About this certificate
This digital certificate with serial number 1e:b6:71:a5:e4:87:04:11:48:18:8a:06:be:5e:8a:a0 was issued on by Actalis S.p.A..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.mmrisarcimenti.it
Actalis S.p.A.
Organization:
Actalis S.p.A.
State / Province:
Bergamo
Locality: Ponte San Pietro
Country: IT
Locality: Ponte San Pietro
Country: IT
This certificate will expire on
Certificate Details
Serial Number (hex): 1e:b6:71:a5:e4:87:04:11:48:18:8a:06:be:5e:8a:a0Serial Number (int): 40824142957458648741050656385694337696
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: ac:91:9f:6b:1e:6b:82:a6:42:09:ee:1b:4e:25:01:62:c9:5c:80:23
AuthorityKeyId: 42:83:6d:80:7c:09:84:67:fd:80:57:ab:f1:26:f5:77:c8:22:82:71
Fingerprint (sha1): 10:26:c4:7e:bc:41:f9:0f:77:58:ee:65:b7:ce:95:97:8a:10:49:11
Fingerprint (sha256): 02:e6:05:fa:30:d8:9a:d4:53:51:04:74:9e:ff:39:12:13:d6:13:cf:2c:14:4f:73:c3:d1:15:48:c6:a3:03:58
Issuing Certificate URL: http://cacert.actalis.it/certs/actalis-autdvg3
Revocation information
OCSP Server: http://ocsp06.actalis.it/VA/AUTHDV-G3CRL Distribution Point: http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL
Check the revocation status for certificate *.mmrisarcimenti.it
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.mmrisarcimenti.it
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mmrisarcimenti.it
*.mmrisarcimenti.it
*.mmrisarcimenti.it
Other certificates including the domain name mmrisarcimenti.it
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.mmrisarcimenti.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHgTCCBWmgAwIBAgIQHrZxpeSHBBFIGIoGvl6KoDANBgkqhkiG9w0BAQsFADCB hDELMAkGA1UEBhMCSVQxEDAOBgNVBAgMB0JlcmdhbW8xGTAXBgNVBAcMEFBvbnRl IFNhbiBQaWV0cm8xFzAVBgNVBAoMDkFjdGFsaXMgUy5wLkEuMS8wLQYDVQQDDCZB Y3RhbGlzIERvbWFpbiBWYWxpZGF0aW9uIFNlcnZlciBDQSBHMzAeFw0yMzA4MTEw NDU2MTBaFw0yNDA5MTAwNDU2MDlaMB4xHDAaBgNVBAMMEyoubW1yaXNhcmNpbWVu dGkuaXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJkix/tlTvAgjB DhKlEBDJ6XdpZwFATegMef1uhv5p9l2RFfaxrGoCAfErXvVExz+HWn0lnpMDSmkU NOYchm/9hmo1oJ6JkkqKkRkfpCHmPKHfczB9Nt2icr2NNQl77IXl2XDBXjKmb0oC 2Etujp8ucXPwTmek4Awjfvh257Lw8QVxjtxPC/h4QcnDIzRPAepL2yJyJMTXcqNA +YPNLdhD7WcxlfsEoPZqjTGFIzrFQhcvMYNY8Avs54QyyLrJFHYOQOB5WAp5oohk tod9pK+EGdb5Z+KuRFy83X87ra35q6ZF93acGsGjHddr8JGdsHsYNJZLeEmW1fyB t8kdY4pBAgMBAAGjggNSMIIDTjAMBgNVHRMBAf8EAjAAMB8GA1UdIwQYMBaAFEKD bYB8CYRn/YBXq/Em9XfIIoJxMH0GCCsGAQUFBwEBBHEwbzA6BggrBgEFBQcwAoYu aHR0cDovL2NhY2VydC5hY3RhbGlzLml0L2NlcnRzL2FjdGFsaXMtYXV0ZHZnMzAx BggrBgEFBQcwAYYlaHR0cDovL29jc3AwNi5hY3RhbGlzLml0L1ZBL0FVVEhEVi1H MzAxBgNVHREEKjAoghFtbXJpc2FyY2ltZW50aS5pdIITKi5tbXJpc2FyY2ltZW50 aS5pdDBRBgNVHSAESjBIMDwGBiuBHwEXATAyMDAGCCsGAQUFBwIBFiRodHRwczov L3d3dy5hY3RhbGlzLml0L2FyZWEtZG93bmxvYWQwCAYGZ4EMAQIBMB0GA1UdJQQW MBQGCCsGAQUFBwMCBggrBgEFBQcDATBIBgNVHR8EQTA/MD2gO6A5hjdodHRwOi8v Y3JsMDYuYWN0YWxpcy5pdC9SZXBvc2l0b3J5L0FVVEhEVi1HMy9nZXRMYXN0Q1JM MB0GA1UdDgQWBBSskZ9rHmuCpkIJ7htOJQFiyVyAIzAOBgNVHQ8BAf8EBAMCBaAw ggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABieL84jQAAAQDAEcwRQIhAOFPsoJ8Iz6hiix9a4Bp3+Iq b5ubaAUlvaj1ebiGulzdAiBAaAA2GSfFGzq8PEtmLUMBPV09idM12NsZ7+uYfJQB 0gB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABieL84d4AAAQD AEgwRgIhAO+CcqmBcG6+JlCRwofkx3dyTZjKfsEREocmU6q18VCAAiEAnSws9BBx vV6zm6hv7UqW0uvtMLzbuQ9gJknjk5PwMB0AdQDuzdBk1dsazsVct520zROiModG fLzs3sNRSFlGcR+1mwAAAYni/OISAAAEAwBGMEQCIAqX3WGmtBdMa6nXG/gutDYd Q31qji4H8JKm4XDkWkoJAiAzcw7uM6hNHl4pNDsUjLYn+t0pZ1lkScF0WYYJ1Tgp njANBgkqhkiG9w0BAQsFAAOCAgEAf8Xhwg8neDLFRF8l4pU57tk63TT3gFHIhsXe KC2x3l1tz8TnVeQO8mHOk44sqQM+ofHZ26HbQAjkOH7A59lmX3BUI92c6kZ/Hx7S qqfkLK1GxSbQEOLdPHt4c0ve6POLlLAqFT0p0uc6mI2nFDjLxsMwR1jMIlvGGVUt asHjMhJVKNSYbhx8+xawaJeCxnJ3jn32NwzEPrR+nO6kczLZS2xRDu2lHVXku3tx vKOrDWZ1DlDaDZFcIj/4DYTRKGWFMIlzOTl7yRjooLE4pZ26dRCojkrYZFgbZc1W G1DgYogI1zab3vf14woQTa1RTH0ykPVjwZm3hAJe6vh2MdCfT6W87InZrM0o8n3Z EtvGbobe+7VOrNL1bZgEfoS+6oB6Gyplofb5VR3b1lNSVuPaQXT2QUIbBVPgtwaZ zNLOwfElAVtM1fug4MMZZ69jNdSRgmk+gVmWYl0Lokfsf66n37TO/nXLOXSfMK98 /UMuRqEYYUgSydXETOFv1J1vax7eRs1pVCCpMJWR+WkBIbAIX9rdQGt2b4IRzhXy psSfwc2SgsO464eoqe/2GFXkv8nCxUuc1b+/tWQwbHWFIm3BRBnXYq76yw+SzB48 yN2EZLqOvwJZ2212Rv5sZLwc4ImAd31aq+wraCPRvTL3QHV0+xSWP0jciGAz3wjm k/O+v/8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZIsf7ZU7wIIwQ4SpRAQ yel3aWcBQE3oDHn9bob+afZdkRX2saxqAgHxK171RMc/h1p9JZ6TA0ppFDTmHIZv /YZqNaCeiZJKipEZH6Qh5jyh33MwfTbdonK9jTUJe+yF5dlwwV4ypm9KAthLbo6f LnFz8E5npOAMI374duey8PEFcY7cTwv4eEHJwyM0TwHqS9siciTE13KjQPmDzS3Y Q+1nMZX7BKD2ao0xhSM6xUIXLzGDWPAL7OeEMsi6yRR2DkDgeVgKeaKIZLaHfaSv hBnW+WfirkRcvN1/O62t+aumRfd2nBrBox3Xa/CRnbB7GDSWS3hJltX8gbfJHWOK QQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 40824142957458648741050656385694337696 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bergamo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ponte San Pietro' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis S.p.A.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis Domain Validation Server CA G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-11 04:56:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-10 04:56:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.mmrisarcimenti.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25445980297156656351250876077958639079237010316467867660198856634436073766781603923338062196346867778185624615719174985225141640813682800686658301767283708580108769444319460929854543185201137911718679013611813569364473850171138111655802377901656528270682088922694342335979916994146702038398556283218569456030499910619681385060861879445982622684836766433216122798457799786952746736372527005249730554622253946172536701470425857860621599073307257557570917019629204590758693098914260530631543660471105877432960418376850202070031917407708247900265238011308963497601567519493354348285729151717341515903461839693839994161729 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 42836d807c098467fd8057abf126f577c8228271 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacert.actalis.it/certs/actalis-autdvg3' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp06.actalis.it/VA/AUTHDV-G3' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mmrisarcimenti.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mmrisarcimenti.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.159.1.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.actalis.it/area-download' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ac919f6b1e6b82a64209ee1b4e250162c95c8023 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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