bight.io
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number b3:d6:77:1f:97:6f:4b:df:0d:fb:30:5e:62:da:50:ae was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=bight.io
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): b3:d6:77:1f:97:6f:4b:df:0d:fb:30:5e:62:da:50:aeSerial Number (int): 239045378882909052394379830127446610094
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 81:0e:ba:7e:c0:74:e9:87:e4:83:39:0e:f2:ae:94:40:cb:d9:fe:36
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): f1:3a:86:68:29:6e:6e:3e:dc:d5:94:cc:d4:37:64:87:38:1d:e8:20
Fingerprint (sha256): 05:d8:6c:bf:92:59:cd:a7:fd:87:5e:03:be:3d:03:95:56:3b:36:d4:b7:3d:72:07:2e:e4:22:04:54:42:5e:69
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/JkQ3CDg5ZYkCRL Distribution Point: http://crls.pki.goog/gts1p5/utJpWfRYius.crl
Check the revocation status for certificate bight.io
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bight.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bight.io
*.bight.io
*.bight.io
Other certificates including the domain name bight.io
(limited to 100 certificates)
tranquiil.world
www.app.coupocket.com
testnet.bight.io
bight.io
shopify.bight.io
othersupply.com
auth.adstock.io
justenkaufmann.com
www.yolomate.me
bight.io
www.bendayan.com.br
gido.app
mom-story.com
shopify.bight.io
www.app-indo.com
optimizelife.withdesign.ca
tonyloveshan.com
www.edalmava.co
www.eotm.ml
ohmyfuckinggod.wtf
www.bestcheer.app
www.smartbalancemx.com
shopify.bight.io
othersupply.com
docs.puzzlemazing.online
olympians.cc
www.thatfreshlist.com
checkout.bight.io
www.nikhils.work
www.innovatechmobile.com
create.appsaur.com
www.infoverseny.hu
home-qa.bight.io
home-qa.bight.io
bight.io
www.wbartoo.com
befriendmypet.com
costvet.com
*.bight.io
www.talk.uz
wallet.bight.io
www.dreamingbearstudio.com
social.nikx.co
www.mutanguha.com
www.veeheister.com
challenge.impactio.global
www.bight.io
cory.benbraham.com
freebusy.app
hiphophub.us
wallet-qa.bight.io
www.casakini.es
actcian.com
www.frontendshere.com
*.bight.io
samesex.app
totem.queue.e-ceos.com.br
checkout-qa.bight.io
fitbite.sg
www.bestcheer.app
costvet.com
api.contabili.dev
www.renpoint.com
*.bight.io
juniors.co.il
www.tonkain.com
anniegrace.app
www.app.coupocket.com
testnet.bight.io
bight.io
shopify.bight.io
othersupply.com
auth.adstock.io
justenkaufmann.com
www.yolomate.me
bight.io
www.bendayan.com.br
gido.app
mom-story.com
shopify.bight.io
www.app-indo.com
optimizelife.withdesign.ca
tonyloveshan.com
www.edalmava.co
www.eotm.ml
ohmyfuckinggod.wtf
www.bestcheer.app
www.smartbalancemx.com
shopify.bight.io
othersupply.com
docs.puzzlemazing.online
olympians.cc
www.thatfreshlist.com
checkout.bight.io
www.nikhils.work
www.innovatechmobile.com
create.appsaur.com
www.infoverseny.hu
home-qa.bight.io
home-qa.bight.io
bight.io
www.wbartoo.com
befriendmypet.com
costvet.com
*.bight.io
www.talk.uz
wallet.bight.io
www.dreamingbearstudio.com
social.nikx.co
www.mutanguha.com
www.veeheister.com
challenge.impactio.global
www.bight.io
cory.benbraham.com
freebusy.app
hiphophub.us
wallet-qa.bight.io
www.casakini.es
actcian.com
www.frontendshere.com
*.bight.io
samesex.app
totem.queue.e-ceos.com.br
checkout-qa.bight.io
fitbite.sg
www.bestcheer.app
costvet.com
api.contabili.dev
www.renpoint.com
*.bight.io
juniors.co.il
www.tonkain.com
anniegrace.app
Certificate
The complete raw certificate details for bight.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIRALPWdx+Xb0vfDfswXmLaUK4wDQYJKoZIhvcNAQELBQAw RjELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBM TEMxEzARBgNVBAMTCkdUUyBDQSAxUDUwHhcNMjQwMjA0MTE1MTI5WhcNMjQwNTA0 MTE1MTI4WjATMREwDwYDVQQDEwhiaWdodC5pbzCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNdfFdgQtm7tTcgwlXh4sAm7mizw6FWHJpp084LNDusTbpt pN//BRgWB9Dxjz7SRuOFS/1EkGybFqyuUSH+s+hw49K5I0UiuIv84RTfa5PDnUJP a4Hs3QE4c6SJHt4Sb9hLTjo9/c34H9InpuDRlr5bKJnDJ+dCyJ+eEyWTIODL8JzQ hEn79AuHaYjGwPXIZM2vFzdFB3Vkq7Bz+50oqMc0et+NLMpA9Y+oT53qAW7uCphb l6qOPOiChhUiRwUCa94XRIS006b27r3GSFWGPpmsaHqiv2iEPhF7bGCTUGnZwCHJ MNTyJICLLOhDOfmgbUjEe2hrvU0ZA4PzgDcXUdkCAwEAAaOCAnswggJ3MA4GA1Ud DwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBSBDrp+wHTph+SDOQ7yrpRAy9n+NjAfBgNVHSMEGDAWgBTV/J4N3x7K 3QiXl24rxV/FK/XsuDB4BggrBgEFBQcBAQRsMGowNQYIKwYBBQUHMAGGKWh0dHA6 Ly9vY3NwLnBraS5nb29nL3MvZ3RzMXA1L0prUTNDRGc1WllrMDEGCCsGAQUFBzAC hiVodHRwOi8vcGtpLmdvb2cvcmVwby9jZXJ0cy9ndHMxcDUuZGVyMB8GA1UdEQQY MBaCCGJpZ2h0LmlvggoqLmJpZ2h0LmlvMCEGA1UdIAQaMBgwCAYGZ4EMAQIBMAwG CisGAQQB1nkCBQMwPAYDVR0fBDUwMzAxoC+gLYYraHR0cDovL2NybHMucGtpLmdv b2cvZ3RzMXA1L3V0SnBXZlJZaXVzLmNybDCCAQQGCisGAQQB1nkCBAIEgfUEgfIA 8AB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjXQsf1gAAAQD AEcwRQIgaBX2sRfHbsgXHLLE3iZCjB6BjESr9kBi+DaWMM4vCxMCIQDk14w58cqi 7UMNtDCoxp0eJKUTeDBpgns6ReMbpVwR6AB2ANq2v2s/tbYin5vCu1xr6HCRcWy7 UYSFNL2kPTBI1/urAAABjXQsf4oAAAQDAEcwRQIgaFqyxNGnrjhUmLw60MfFTbds dEuWp6+2goyDKi6hg2wCIQDKuMcnxgWXozCvYr7nP9o+fUbs3MeJAySUnSiRwrce IjANBgkqhkiG9w0BAQsFAAOCAQEASMTagT7nRfZn0dlulwQxXltU30AT0VaL0krq CI1K9gQcR1ZHCN1aEQ0NDMybps0jxsfdRDEG5tVhsVV58o44lqu78wGlaGo45hIe qVhBOtCPSjHz8MPiNNafRYF8wYopjCYSVKYQTC3xxFLAyIP3mfuobz769p141IfZ K4y+mludQpEThGtmq3gngCaVdYZBgrADEPt2QwtAUKp0Qd5v52TMWAqLRQGNDHSh 0pLx3uQc2JQX2juRCELEYv/r1WSDz7g1qF75G+FHigLGOT1VrcVEqt9ynIW4pXsE Rooy99AJwYoOOqftvmP7L/yuRKX5gARr+C/g40rvOHB3tpapIQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw118V2BC2bu1NyDCVeHi wCbuaLPDoVYcmmnTzgs0O6xNum2k3/8FGBYH0PGPPtJG44VL/USQbJsWrK5RIf6z 6HDj0rkjRSK4i/zhFN9rk8OdQk9rgezdAThzpIke3hJv2EtOOj39zfgf0iem4NGW vlsomcMn50LIn54TJZMg4MvwnNCESfv0C4dpiMbA9chkza8XN0UHdWSrsHP7nSio xzR6340sykD1j6hPneoBbu4KmFuXqo486IKGFSJHBQJr3hdEhLTTpvbuvcZIVYY+ maxoeqK/aIQ+EXtsYJNQadnAIckw1PIkgIss6EM5+aBtSMR7aGu9TRkDg/OANxdR 2QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 239045378882909052394379830127446610094 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-04 11:51:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-04 11:51:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bight.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24662568989273293366871641721591366463018945492178914938273974531929193382886242935026093229937108826417527414488073009387724370469515304155400749880228262968536436730360860373544880108818098877215546531545566986613566264118009642977024853420802289077706197547495101116847602351322171434380422341868187804875972891179633714283464800085583944015275674604286871545927796174883640357113829736310756492175039290301819535468831219906178615432262559421143126449837302344585598453903659968291103903402913597709889597334534833089539022582838006032613489184836010094563816969516483033090769239560048105184302784050352371487193 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 810eba7ec074e987e483390ef2ae9440cbd9fe36 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/JkQ3CDg5ZYk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bight.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bight.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/utJpWfRYius.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018d742c7f58000004030047304502206815f6b117c76ec8171cb2c4de26428c1e818c44abf64062f8369630ce2f0b13022100e4d78c39f1caa2ed430db430a8c69d1e24a513783069827b3a45e31ba55c11e8007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018d742c7f8a00000403004730450220685ab2c4d1a7ae385498bc3ad0c7c54db76c744b96a7afb6828c832a2ea1836c022100cab8c727c60597a330af62bee73fda3e7d46ecdcc7890324949d2891c2b71e22 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0048c4da813ee745f667d1d96e9704315e5b54df4013d1568bd24aea088d4af6041c47564708dd5a110d0d0ccc9ba6cd23c6c7dd443106e6d561b15579f28e3896abbbf301a5686a38e6121ea958413ad08f4a31f3f0c3e234d69f45817cc18a298c261254a6104c2df1c452c0c883f799fba86f3efaf69d78d487d92b8cbe9a5b9d429113846b66ab782780269575864182b00310fb76430b4050aa7441de6fe764cc580a8b45018d0c74a1d292f1dee41cd89417da3b910842c462ffebd56483cfb835a85ef91be1478a02c6393d55adc544aadf729c85b8a57b04468a32f7d009c18a0e3aa7edbe63fb2ffcae44a5f980046bf82fe0e34aef387077b696a921