sockrocket.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:99:11:71:2b:2a:87:0c:05:c3:3f:9b:1b:74:ac:e3:9e:35 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sockrocket.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:99:11:71:2b:2a:87:0c:05:c3:3f:9b:1b:74:ac:e3:9e:35Serial Number (int): 400535530346930920295023479777745044741685
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b0:b0:9c:f0:36:c7:0e:83:6d:cb:ed:24:e9:60:b8:0c:0b:92:2a:8c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d8:ec:37:09:bd:28:53:4d:83:e9:67:15:be:62:e7:e1:ca:6f:d4:54
Fingerprint (sha256): 16:c1:e6:1e:62:e6:80:8b:16:6e:37:8f:69:a3:c1:99:34:3b:71:fe:d1:e8:47:f3:ac:02:a0:b3:1a:34:13:c8
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate sockrocket.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sockrocket.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sockrocket.com
www.sockrocket.com
www.sockrocket.com
Other certificates including the domain name sockrocket.com
(limited to 100 certificates)
sockrocket.com
sockrocket.com
wearestorytellers.com
www.erieeffects.com
sockrocket.com
sockrocket.com
instarem.org
venbrook.org
eastonpa.com
blackmba.com
www.sockrocket.com
*.sockrocket.com
towergate.org
elite2021.com
www.laundryrobots.com
aqutec.com
frflanagan.org
www.petrolzone.com
frflanagan.org
venbrook.org
desginrr.com
sockrocket.com
instantsearch.org
*.sockrocket.com
sockrocket.com
nowrx.org
pdmh.org
linkifer.com
instarem.org
nopga.org
ecowilderness.com
sockrocket.com
sengine.org
netwealth.org
sockrocket.com
wearestorytellers.com
www.erieeffects.com
sockrocket.com
sockrocket.com
instarem.org
venbrook.org
eastonpa.com
blackmba.com
www.sockrocket.com
*.sockrocket.com
towergate.org
elite2021.com
www.laundryrobots.com
aqutec.com
frflanagan.org
www.petrolzone.com
frflanagan.org
venbrook.org
desginrr.com
sockrocket.com
instantsearch.org
*.sockrocket.com
sockrocket.com
nowrx.org
pdmh.org
linkifer.com
instarem.org
nopga.org
ecowilderness.com
sockrocket.com
sengine.org
netwealth.org
Certificate
The complete raw certificate details for sockrocket.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGaDCCBVCgAwIBAgISBJkRcSsqhwwFwz+bG3Ss4541MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MTMwMzE5NDZaFw0x OTEyMTIwMzE5NDZaMBkxFzAVBgNVBAMTDnNvY2tyb2NrZXQuY29tMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzJpRE38NkX55KPr7MzfwKeOXMAMsgPyt w6sVh3zucgvzia3KjWc6dY/p/ZG1UkJHIwHxZmfP67PA0178ZNbRW7gHjA/L0Cza nW9GFhBGUlkRUHD/wdPTTTkWO25fa/UoPJGikF8U8SgMOyRuSQF7UXG1NGFdZWwR 4V7jN1hBX7booHf7bFEfhJv+jhuKdUsQ33MXcnDrX13dkBqLuouRdUmCSbJ64HY9 g0iMovoBbk942TKjRZS33+wXw7rM5dvKOrki2MM4RvoA6K49jxVlM7yCRIPVPxNM 8XZy5336Qv1OsZ6Gm3aEvMVEVUPtw3ivBGwrpYIJihiIaaa69XSmxp7Bch0cVo7K Yso+Zw+WAnbQ1ov5ih+VrSacVq7//dbTnDiL82wthyCj/X+5ZgLLdU9upxtX4ZLY 8E7ESFHiFvGbZJgBxzO8HlfYqo3w8NVxQUJ/xjcaRPh/gqBM8woy3Rh3zuHKurIK rmdHJS8ketPVNfXCpGJ6HNjWv1IAznsPOd1lBFFEm01kehK8V90yD1EeQVye2XJ0 +Fzt0rZAkn+Qs1DaerQw3ycrXTiAvUWLTk5uJlvqM8gB2PHXxDkc5pbmaTsrLHyL Cxcd0Ru8ODf7BUAlREdXbJbvD9OyTEghuWjZzZRUNW1Fi3nYeT+xMb1W+KGclsXS m3fY1uYZuAUCAwEAAaOCAncwggJzMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUsLCc 8DbHDoNty+0k6WC4DAuSKowwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAtBgNVHREEJjAkgg5zb2Nrcm9ja2V0LmNvbYIS d3d3LnNvY2tyb2NrZXQuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQB gt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3Jn MIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHUA4mlLribo6UAJ6IYbtjuD1D7n/nSI +6SPKJMBnd3x2/4AAAFtKNk02QAABAMARjBEAiBZ0be9UK1LitdHGLzVBxUsaOK3 rrJkEgNwSNMx0h2psAIgPlA4nQcreofUCpy/dU+BdbQXuG4IJli1J8mcXS1aqsAA dwApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAW0o2TS8AAAEAwBI MEYCIQDRMWK7zhQHrmqPE9J4G2b4OfESmqGB2QZ+DGYppJGf5wIhAO9Y7j5EiKZ5 2uKwjtaFgFC+klYjC1rHy1235zj/VPJ3MA0GCSqGSIb3DQEBCwUAA4IBAQAY70Xx fmRiIzcTmSOkHiapxTfugEW/59LAv6noB7v7TB6lZ/C+Qqd9jY6w7D5GybLPbxGq FQP5zoIMMW1+ZsYuNU/LLymkbg/JMdhkJOTy96gJUZv2qB4Q4RthblF7QlKy1zKv 2lHc2c8RIrAADcQG4vEuWC5562puOUm835O6fLWXyLb/1D+xFU5HhYS466SUe5jW f7AkUfxxy7zccNvvwfwnbjggzPe9tuZwQHq5neIEtt3A1ypQc5DQxEN0rb2qbXmm NUs9W1dhlzY7CNg6/jhFJ71hG8eKMuPcF3slUx0flzaqziMoThf1nOVvQJIT64Pg QxuaIA29GAZ/Vw+E -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzJpRE38NkX55KPr7Mzfw KeOXMAMsgPytw6sVh3zucgvzia3KjWc6dY/p/ZG1UkJHIwHxZmfP67PA0178ZNbR W7gHjA/L0CzanW9GFhBGUlkRUHD/wdPTTTkWO25fa/UoPJGikF8U8SgMOyRuSQF7 UXG1NGFdZWwR4V7jN1hBX7booHf7bFEfhJv+jhuKdUsQ33MXcnDrX13dkBqLuouR dUmCSbJ64HY9g0iMovoBbk942TKjRZS33+wXw7rM5dvKOrki2MM4RvoA6K49jxVl M7yCRIPVPxNM8XZy5336Qv1OsZ6Gm3aEvMVEVUPtw3ivBGwrpYIJihiIaaa69XSm xp7Bch0cVo7KYso+Zw+WAnbQ1ov5ih+VrSacVq7//dbTnDiL82wthyCj/X+5ZgLL dU9upxtX4ZLY8E7ESFHiFvGbZJgBxzO8HlfYqo3w8NVxQUJ/xjcaRPh/gqBM8woy 3Rh3zuHKurIKrmdHJS8ketPVNfXCpGJ6HNjWv1IAznsPOd1lBFFEm01kehK8V90y D1EeQVye2XJ0+Fzt0rZAkn+Qs1DaerQw3ycrXTiAvUWLTk5uJlvqM8gB2PHXxDkc 5pbmaTsrLHyLCxcd0Ru8ODf7BUAlREdXbJbvD9OyTEghuWjZzZRUNW1Fi3nYeT+x Mb1W+KGclsXSm3fY1uYZuAUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 400535530346930920295023479777745044741685 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-13 03:19:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-12 03:19:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sockrocket.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 834706597786297585230171734238267065014404589132024172457137813412181918915999767749860547028260348244881595525125686204562979791438070300029652487118885433851811347624764588643228190537155009618900199958161245186885557469706913874420656787479286128569186388745723407718795867435934608322881874003126502640519306006059002883757255557033465212546484549202600393602410094240839029690370061401359546855316939563154939813535745060992327257651828532820897825246854991641840875166567555176339253339792529638305389586487433825450843662208230270709527632941461868166956659560067822182530039482834889762971164814045583051485734667207136096766159487646581150180656594594873443806034118835568085880881066274530418285000724687834518110823488507610849281344155676224187176940125494376893453648157832984738120330597252208349563578282796021040254516680628367578472040523482937571523963731275466475618942150078638593799074267597700222809814893063724786115707695607753365842982852736141949984565550530464842403651365031738406604843120449691819122302640935674851477624135683084024778498330167917814715832116419817119252095445106411129489626811755092527807120104919065642133062891845060009742312028948883500465867635883439034693782330668387714071115781 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b0b09cf036c70e836dcbed24e960b80c0b922a8c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sockrocket.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sockrocket.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d28d934d90000040300463044022059d1b7bd50ad4b8ad74718bcd507152c68e2b7aeb26412037048d331d21da9b002203e50389d072b7a87d40a9cbf754f8175b417b86e082658b527c99c5d2d5aaac0007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d28d934bc0000040300483046022100d13162bbce1407ae6a8f13d2781b66f839f1129aa181d9067e0c6629a4919fe7022100ef58ee3e4488a679dae2b08ed6858050be9256230b5ac7cb5db7e738ff54f277 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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