rapidcityrestoration.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:4c:bf:31:c9:47:8b:41:3e:ad:74:8c:36:7a:c3:18:9c:03 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rapidcityrestoration.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:4c:bf:31:c9:47:8b:41:3e:ad:74:8c:36:7a:c3:18:9c:03Serial Number (int): 374564744665205924113018865225742721522691
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 63:f5:63:92:93:26:ca:8d:97:ca:0e:5f:ab:91:97:9e:a2:67:e6:e4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): de:2d:6f:a3:ee:1f:5d:69:40:99:f2:2d:23:38:fa:13:7a:c6:ee:e0
Fingerprint (sha256): 04:e0:7a:c7:6d:59:ac:0a:8e:e0:41:e8:0b:9b:fb:70:03:55:2e:93:0d:9b:df:2e:9a:46:10:03:2e:9a:c5:08
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate rapidcityrestoration.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rapidcityrestoration.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rapidcityrestoration.com
www.rapidcityrestoration.com
www.rapidcityrestoration.com
Other certificates including the domain name rapidcityrestoration.com
(limited to 100 certificates)
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
pcikc.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
dev.rapidcityrestoration.com
rapidcityrestoration.com
trevorwendt.com
trevorwendt.com
rapidcityrestoration.com
pcikc.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
trevorwendt.com
dev.rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
pcikc.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
dev.rapidcityrestoration.com
rapidcityrestoration.com
trevorwendt.com
trevorwendt.com
rapidcityrestoration.com
pcikc.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
trevorwendt.com
dev.rapidcityrestoration.com
rapidcityrestoration.com
Certificate
The complete raw certificate details for rapidcityrestoration.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGhjCCBW6gAwIBAgISBEy/MclHi0E+rXSMNnrDGJwDMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA0MTAyMzQ5MzBaFw0x OTA3MDkyMzQ5MzBaMCMxITAfBgNVBAMTGHJhcGlkY2l0eXJlc3RvcmF0aW9uLmNv bTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOEVdwySsjD5X7vzZuoV cvewM3S46F+xiF9LAbvcCf61aNAW/LqdUs+IYsqRrShHoLob7Hx6adZKSqQU9MhJ kFq3MtWPZv27XFPdKx+/3NwKfKgMZCWezbx2tWifc6kCGzwJbKAAlVgsyXaqMvxp bkZ94h1T2ZfSnHHvY6EJViMp+sj8fGjA+bIe+iRd7Epw5aT2dMm/ZQjq8XshTTmH C5Ncx/pZ+FP5mPaoDbRPAnzigC7ruD5ReKG9PmkuEBuiHl0yidJe6V7WaZsN363l ofRtcpRnVJKY2tDgCgReckfOQqnyx+RqNgcStyWOf4k6R5URWeKq6mGTla6KAnBu ZK1edJySB8RPVIu95DARfV88QSkZ3/vXJ7fcDce394eAYN81J3K42Yz+0kd58fzW eX35oW36/kZJELoQZAdN16y5BaEhiSXGo4g2/XmBcy2QkzgX5u8NPRIWfScpJNFg sSsFEYIv+lxfYCHWQmbwL6PkyHG6EiQSGVnoue5y78vzv8NSlioLZGFF2c0wC8+s jaHKwIkIUFZc6JngEdXWH0bOP+MX2QZrQ3ufDohz2URYr7RWVA4qwGPER2hG86EG zsIK3jZso5Pu4LrtvV0H2aK+aenQ5orCPXQf18anDpNRuIPYs6W1lGNoFiqRwVg8 PeLQKOTLMfIUf2E3VMrks40zAgMBAAGjggKLMIIChzAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFGP1Y5KTJsqNl8oOX6uRl56iZ+bkMB8GA1UdIwQYMBaAFKhKamMEfd26 5tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDov L29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDov L2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wQQYDVR0RBDowOIIYcmFwaWRj aXR5cmVzdG9yYXRpb24uY29tghx3d3cucmFwaWRjaXR5cmVzdG9yYXRpb24uY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB 9QSB8gDwAHcA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFqCd79 6QAABAMASDBGAiEAzkhj3dK8um5CYFnf3s+KSIhuL2UX16T+2sDr2aYETBACIQDa aNxjNePIRlqLT1QyYiQU9m5oXDTBoam38xDmxE/B/AB1ACk8UZZUyDlluqpQ/FgH 1Ldvv1h6KXLcpMMM9OVFR/R4AAABagne/dwAAAQDAEYwRAIgOLiE5gSta62MzlOc hlDwcGpv1klyAw7ixqFC7qJqqpcCIAlRfESycmn3NMl0klp/S9jupbGX4fnw6v9s KNA+ZzylMA0GCSqGSIb3DQEBCwUAA4IBAQCVfuemqJegL02FwuldBNnHbJdyMiQP O4r/bYgawNlOu2KBnH2TqL3CZRaWZgghhFageXSWnJYD8vL6auOys4Tnu9TXjdmt TK22bXgX3tGDcQH06n22001JqzwFUXa+3kvvGIMM+gJqsTr0KqbgfzypE7KW0TJt BaRYgjxb3161sgHp4V30NdttNFnvT+LZbcZIdSoO1YlfwFxGeaCA/Q9gJEv5dRir uDaVaByzCZEs7Jp6QIHSwF2YYce3Nq0HMNbYjrcoyn7BHYPGSNEwmuBkrV1I3y+7 JCEA36Fjso8oYc6qR8cR0doUj/7x2ibaelyLikZvqkmtyeTl3qzJM4PR -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4RV3DJKyMPlfu/Nm6hVy 97AzdLjoX7GIX0sBu9wJ/rVo0Bb8up1Sz4hiypGtKEeguhvsfHpp1kpKpBT0yEmQ Wrcy1Y9m/btcU90rH7/c3Ap8qAxkJZ7NvHa1aJ9zqQIbPAlsoACVWCzJdqoy/Glu Rn3iHVPZl9Kcce9joQlWIyn6yPx8aMD5sh76JF3sSnDlpPZ0yb9lCOrxeyFNOYcL k1zH+ln4U/mY9qgNtE8CfOKALuu4PlF4ob0+aS4QG6IeXTKJ0l7pXtZpmw3freWh 9G1ylGdUkpja0OAKBF5yR85CqfLH5Go2BxK3JY5/iTpHlRFZ4qrqYZOVrooCcG5k rV50nJIHxE9Ui73kMBF9XzxBKRnf+9cnt9wNx7f3h4Bg3zUncrjZjP7SR3nx/NZ5 ffmhbfr+RkkQuhBkB03XrLkFoSGJJcajiDb9eYFzLZCTOBfm7w09EhZ9Jykk0WCx KwURgi/6XF9gIdZCZvAvo+TIcboSJBIZWei57nLvy/O/w1KWKgtkYUXZzTALz6yN ocrAiQhQVlzomeAR1dYfRs4/4xfZBmtDe58OiHPZRFivtFZUDirAY8RHaEbzoQbO wgreNmyjk+7guu29XQfZor5p6dDmisI9dB/XxqcOk1G4g9izpbWUY2gWKpHBWDw9 4tAo5Msx8hR/YTdUyuSzjTMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 374564744665205924113018865225742721522691 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-10 23:49:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-09 23:49:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rapidcityrestoration.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 918261984465279590162287549849886005022572412674956778929982468547963362263758102425905006328732541626674675925344771774935896015615089133641233422278159941095190352104895886588176116854937542331364027079936768641492008518326699422543914872655481442132805518000800338242565619660633569271026832023982964814519097918239075939231259547643496716186646476908705971564333881214599296851104737263146303200439634486098992840428999016433311909295330400676094995667655022273240289424872149367328608612780198525546587434783793181314631735710004310443959933305420855149090645930984446245712446065810044226480768265012471413931660629405901730249672964118026793044617759204545995489610016051917038193264610968913674891237734768236221833255245953944967790077720571006665414375158820656085024481249448335647211974721486379200624796070462227901062829958264986063426667998734018112480779727312106410710997946414415524812754225551874363500472668388085623259819464671164479329180460258346940508563959069203807947404083076012820750561530195922739573458465052740388699107902124030881864073539508697320799804645945091688867047799278802008135842397812835434041226815425847484543333437243458840536251701087605141194738004087529001107761784699398401633258803 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 63f563929326ca8d97ca0e5fab91979ea267e6e4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rapidcityrestoration.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rapidcityrestoration.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016a09defde90000040300483046022100ce4863ddd2bcba6e426059dfdecf8a48886e2f6517d7a4fedac0ebd9a6044c10022100da68dc6335e3c8465a8b4f5432622414f66e685c34c1a1a9b7f310e6c44fc1fc007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016a09defddc0000040300463044022038b884e604ad6bad8cce539c8650f0706a6fd64972030ee2c6a142eea26aaa97022009517c44b27269f734c974925a7f4bd8eea5b197e1f9f0eaff6c28d03e673ca5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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