dmvtest.geico.com
- GEICO -
Issued by SecureTrust CA
About this certificate
This digital certificate with serial number 98:74:f4:6f:66:9c:65:44:d1:ff:1e:48:40:7f:97:82 was issued on by SecureTrust Corporation.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
GEICO
Organization:
GEICO
State / Province:
Maryland
Locality: Chevy Chase
Country: US
Locality: Chevy Chase
Country: US
SecureTrust Corporation
Organization:
SecureTrust Corporation
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 98:74:f4:6f:66:9c:65:44:d1:ff:1e:48:40:7f:97:82Serial Number (int): 202649919528923124435375419325748844418
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: b3:56:c8:f4:af:04:ac:f4:b4:6e:c1:d3:7f:0c:95:0f:10:64:79:d8
AuthorityKeyId: 42:32:b6:16:fa:04:fd:fe:5d:4b:7a:c3:fd:f7:4c:40:1d:5a:43:af
Fingerprint (sha1): 14:05:da:70:5c:fc:88:b0:d2:02:b2:5d:5e:59:53:63:63:67:3e:27
Fingerprint (sha256): 0a:07:4d:81:65:89:04:e0:ce:67:ab:8f:e8:90:1b:f2:e4:f6:37:86:01:c1:b8:73:26:1e:1e:a8:c3:00:c0:f5
Revocation information
CRL Distribution Point: http://crl.securetrust.com/STCA.crlCheck the revocation status for certificate dmvtest.geico.com
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dmvtest.geico.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
7 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name geico.com
(limited to 100 certificates)
copart.geico.com
sattest.geico.com
Arbitration.geico.com
Ivanticsa6.private.geico.com
umbapp-umbuicustomer-ed1.geico.com
tierb2b-test.geico.com
partnersgateway-tt.geico.com
imperva.com
imperva.com
hive.geico.com
comcbs-ut1.geico.com
docusigneo-ut1.geico.com
imperva.com
docusigneo-EU1.geico.com
claims.geico.com
partnersgateway001-tr.geico.com
mstage2.service-ft.geico.com
umbrella-user.geico.com
service-ft.geico.com
mts-ut1.geico.com
psfthr-dr.oci.geico.com
awpocseg365.private.geico.com
partnersgateway001.geico.com
imperva.com
isotest1.geico.com
imperva.com
billingreportsapi-eu1.geico.com
Plazamail2016.geico.net
gragwns.private.geico.com
homeowners.geico.com
partnersgateway009-tr.geico.com
Ivanticsa12.private.geico.com
partnersgateway005-in.geico.com
tier2-int2.geico.com
ecams.geico.com
sales.geico.com
sales-in2.geico.com
boat-user.geico.com
dmvtest.geico.com
partnersgateway-tr.geico.com
egressgateway14-lt.geico.com
partners.geico.com
umbrella-user.geico.com
awprodsegv2.private.geico.com
ingressgateway07-ut.geico.com
sig-ft.geico.com
crm-cs-eapi-gateway-tr1.geico.com
*.geico.com
partnersgateway007.geico.com
edgein-tr.geico.com
claimsdr.geico.com
anbcui-prod.geico.com
tier.geico.com
ecams.geico.com
claimiq.geico.com
mts.geico.com
docusigneo-FT1.geico.com
imperva.com
atlastest.geico.com
vdipd1external.private.geico.com
propertysales.geico.com
polcomexpressvue-eu1.geico.com
edgeex-in.geico.com
imperva.com
commercial-in1.geico.com
nocpaa.np.geico.com
auto-buy-tr1.geico.com
imperva.com
optout.geico.com
portfolioex-lt.geico.com
ingressgateway08.geico.com
capsales-test.geico.com
partnersgateway002-dv.geico.com
adestimatetest.geico.com
polcomexpressvue-eu1.geico.com
bilpyh-ut1.geico.com
blaster.geico.com
umbrella-c-load.geico.com
edsinbound-trng.geico.com
umbapp-umbuicustomer-ed1.geico.com
FRWS7845.geico.net
claimsportal-tr1.geico.com
FredMail2016.geico.net
partnersgateway005.geico.com
salesb2b2-int.geico.com
telpdchvg01.anc.geico.net
cvshealth.geico.com
propertysales-ut1-api.geico.com
imperva.com
rewards-ut1.geico.com
*.geico.com
ivrpl.private.geico.com
edsinbound-load.geico.com
billingwdayinterface.geico.com
CHWS7104.geico.net
auto-buy-GZ-ftrack1.geico.com
PartnersTest.geico.com
auto-kate-fn1.geico.com
propertysales-It-api.geico.com
imperva.com
sattest.geico.com
Arbitration.geico.com
Ivanticsa6.private.geico.com
umbapp-umbuicustomer-ed1.geico.com
tierb2b-test.geico.com
partnersgateway-tt.geico.com
imperva.com
imperva.com
hive.geico.com
comcbs-ut1.geico.com
docusigneo-ut1.geico.com
imperva.com
docusigneo-EU1.geico.com
claims.geico.com
partnersgateway001-tr.geico.com
mstage2.service-ft.geico.com
umbrella-user.geico.com
service-ft.geico.com
mts-ut1.geico.com
psfthr-dr.oci.geico.com
awpocseg365.private.geico.com
partnersgateway001.geico.com
imperva.com
isotest1.geico.com
imperva.com
billingreportsapi-eu1.geico.com
Plazamail2016.geico.net
gragwns.private.geico.com
homeowners.geico.com
partnersgateway009-tr.geico.com
Ivanticsa12.private.geico.com
partnersgateway005-in.geico.com
tier2-int2.geico.com
ecams.geico.com
sales.geico.com
sales-in2.geico.com
boat-user.geico.com
dmvtest.geico.com
partnersgateway-tr.geico.com
egressgateway14-lt.geico.com
partners.geico.com
umbrella-user.geico.com
awprodsegv2.private.geico.com
ingressgateway07-ut.geico.com
sig-ft.geico.com
crm-cs-eapi-gateway-tr1.geico.com
*.geico.com
partnersgateway007.geico.com
edgein-tr.geico.com
claimsdr.geico.com
anbcui-prod.geico.com
tier.geico.com
ecams.geico.com
claimiq.geico.com
mts.geico.com
docusigneo-FT1.geico.com
imperva.com
atlastest.geico.com
vdipd1external.private.geico.com
propertysales.geico.com
polcomexpressvue-eu1.geico.com
edgeex-in.geico.com
imperva.com
commercial-in1.geico.com
nocpaa.np.geico.com
auto-buy-tr1.geico.com
imperva.com
optout.geico.com
portfolioex-lt.geico.com
ingressgateway08.geico.com
capsales-test.geico.com
partnersgateway002-dv.geico.com
adestimatetest.geico.com
polcomexpressvue-eu1.geico.com
bilpyh-ut1.geico.com
blaster.geico.com
umbrella-c-load.geico.com
edsinbound-trng.geico.com
umbapp-umbuicustomer-ed1.geico.com
FRWS7845.geico.net
claimsportal-tr1.geico.com
FredMail2016.geico.net
partnersgateway005.geico.com
salesb2b2-int.geico.com
telpdchvg01.anc.geico.net
cvshealth.geico.com
propertysales-ut1-api.geico.com
imperva.com
rewards-ut1.geico.com
*.geico.com
ivrpl.private.geico.com
edsinbound-load.geico.com
billingwdayinterface.geico.com
CHWS7104.geico.net
auto-buy-GZ-ftrack1.geico.com
PartnersTest.geico.com
auto-kate-fn1.geico.com
propertysales-It-api.geico.com
imperva.com
Certificate
The complete raw certificate details for dmvtest.geico.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEIjCCAwqgAwIBAgIRAJh09G9mnGVE0f8eSEB/l4IwDQYJKoZIhvcNAQEFBQAw SDELMAkGA1UEBhMCVVMxIDAeBgNVBAoTF1NlY3VyZVRydXN0IENvcnBvcmF0aW9u MRcwFQYDVQQDEw5TZWN1cmVUcnVzdCBDQTAeFw0xMTA0MDUxODMyNDdaFw0xMjA1 MDkxOTQyNDJaMGIxGjAYBgNVBAMTEWRtdnRlc3QuZ2VpY28uY29tMRQwEgYDVQQH EwtDaGV2eSBDaGFzZTERMA8GA1UECBMITWFyeWxhbmQxCzAJBgNVBAYTAlVTMQ4w DAYDVQQKEwVHRUlDTzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJLy yJo0paqsgTiYwyYYYsOZlSIAq22/GEzxG4N7UseMWveg6DcchtDLUKj6ST+niz+i CwSaUhYpaIRkQV63CbhqB1L+YwRfTrPYHs7wecZHbIPyrNZrJiFibCgoe4q8XDxN D0n1OVGCJ4a1CruyP/YU+JZ6/OiEFMgCFGErEHbCmNPEIg+iTJtyKX+Y2BEx2efy T8hhF8VJmWtOobs+B7Q2hTLgUkV+2+MyX8FyOp6jZ73I6QjkzaoOJQdvfxE/OhnY Oo0vJsbOemMRJ0TGGZGj4IfmDAaIhdpoZgVVvfDXQfVcj9bbnsQjlUPSdxMNNWTH 0fKKJ8IOLaaHfxyLHZcCAwEAAaOB7DCB6TAJBgNVHRMEAjAAMB0GA1UdDgQWBBSz Vsj0rwSs9LRuwdN/DJUPEGR52DAfBgNVHSMEGDAWgBRCMrYW+gT9/l1LesP990xA HVpDrzALBgNVHQ8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwNAYDVR0fBC0w KzApoCegJYYjaHR0cDovL2NybC5zZWN1cmV0cnVzdC5jb20vU1RDQS5jcmwwRAYD VR0gBD0wOzA5BgxghkgBhv1kAQECAwEwKTAnBggrBgEFBQcCARYbaHR0cDovL3Nz bC50cnVzdHdhdmUuY29tL0NBMA0GCSqGSIb3DQEBBQUAA4IBAQBAevIiUj//Z2fJ +TCzPlAdN57gbYr9ANbOLVk4vY1uNo2Vw44XmuxlFKzVgRsvR/H5TwJvhuPkeNCJ VzNPWp0g3RGBLeWbbJzWH00aPirjAqmLj1zsXsNeD5wFnWr5xB47s61huSP/Yez6 QvSmfwx/CnOvlBoEzftJgOdwsg8qTr5MukZ3S++YCgYPSf9sKjlfJQUGQ9X1rGHT dmzxxwZNWDbscjx9AsBfeDxbysw64i+9nIWz4R6022ofxqcTVAloksg1TlhX/jiN 6XH20g8S4IAZQteyjxPjvBeoT3d/zdyP2Z+rHB586XNC19gAyr37Z+Eg+YHcEjmp 1L1NkURc -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkvLImjSlqqyBOJjDJhhi w5mVIgCrbb8YTPEbg3tSx4xa96DoNxyG0MtQqPpJP6eLP6ILBJpSFilohGRBXrcJ uGoHUv5jBF9Os9gezvB5xkdsg/Ks1msmIWJsKCh7irxcPE0PSfU5UYInhrUKu7I/ 9hT4lnr86IQUyAIUYSsQdsKY08QiD6JMm3Ipf5jYETHZ5/JPyGEXxUmZa06huz4H tDaFMuBSRX7b4zJfwXI6nqNnvcjpCOTNqg4lB29/ET86Gdg6jS8mxs56YxEnRMYZ kaPgh+YMBoiF2mhmBVW98NdB9VyP1tuexCOVQ9J3Ew01ZMfR8oonwg4tpod/HIsd lwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 202649919528923124435375419325748844418 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SecureTrust Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SecureTrust CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-04-05 18:32:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-05-09 19:42:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dmvtest.geico.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chevy Chase' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEICO' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18550513581744571333388145308108542619012947246949815029112105662860457567696532886624571343244484991164411688306167596848085538448365079760362023843556121843732648511982411500424364497363727682488678512509167000573156719433668979827737013327085733195388800016526899719495974921744419141191315032440840164889134810139098185331765641830542246875173472790513286812287865363091816672209548802250765708528816170474706657793593229201699199888071672032624433862551874244387384789307685801146387438761818252441112814226583268969646427612079562315680073008284518493617439946234656514538667440080244831562305619838217765985687 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b356c8f4af04acf4b46ec1d37f0c950f106479d8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4232b616fa04fdfe5d4b7ac3fdf74c401d5a43af . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (45 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.securetrust.com/STCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114404.1.1.2.3.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://ssl.trustwave.com/CA' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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