imperva.com
Issued by GlobalSign Atlas R3 DV TLS CA 2023 Q3
About this certificate
This digital certificate with serial number 01:e6:4c:3b:f9:4b:af:d9:4b:41:08:a6:a1:44:57:e5 was issued on by GlobalSign nv-sa.
With 95 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=imperva.com
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 01:e6:4c:3b:f9:4b:af:d9:4b:41:08:a6:a1:44:57:e5Serial Number (int): 2525002487992659400500569647744309221
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 1b:f0:77:dd:72:3f:29:aa:13:e5:d6:27:bb:62:06:76:53:6a:f3:3a
AuthorityKeyId: ed:a0:e6:01:05:3e:34:82:1a:a4:4f:5f:c5:bd:11:41:aa:df:f3:61
Fingerprint (sha1): a0:39:fb:ac:01:c7:cc:eb:93:1c:06:d5:86:4a:c8:ff:36:9d:a0:94
Fingerprint (sha256): 1b:78:e8:ac:98:65:0b:63:fa:01:2a:9e:3d:bb:cf:f6:89:23:72:06:e9:e2:da:3f:97:04:c6:ed:e9:06:4b:47
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2023q3.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2023q3CRL Distribution Point: http://crl.globalsign.com/ca/gsatlasr3dvtlsca2023q3.crl
Check the revocation status for certificate imperva.com
95
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for imperva.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cropriskservices.com
*.polaris401k.com
*.hip1api.aig.com
*.glatfelterpublicentities.com
*.winflexapi.aig.com
*.serviceplanspurchase.com
manage.aig.co.il
access.aig.co.il
*.aigtheftandloss.ch
statistics.aig.co.il
*.glatfelterhealthcare.com
*.myatlas.asia
glatfelterpublicentities.com
intagent.aig.co.jp
vpx.aig.co.il
*.aigtheftandloss.nz
*.aigtheftandloss.se
*.apps.layahealthcare.ie
*.hip7api.aig.com
formsts.aig.co.il
*.aig.co.jp
*.api.valic.com
nmalltst.aig.co.il
*.dmp.corebridgefinancial.com
*.aigtheftandloss.nl
polaris401k.com
*.valic.com
serviceplanspurchase.com
*.uat.travelguard.com
*.aigtheftandloss.no
dev-hip11api.aig.co.jp
*.serviceplanpurchase.com
*.dmp.aig.com
*.customerpltfm.aig.com
travel.aig.co.il
myatlas.asia
aigtheftandloss.ie
*.websvcs.uat.travelguard.com
*.websvcs.dev.travelguard.com
sit-hip11api.aig.co.jp
serviceplanpurchase.com
retirestronger.com
*.wwiprate.com
*.dev.travelguard.com
uat-hip11api.aig.co.jp
*.vfis.com
*.aigtheftandloss.ie
www-400.aig.com.tw
my.aig.co.il
*.travelguard.com
*.websvcs.travelguard.ca
*.websvcs.dev.travelguard.ca
*.aig.com.au
travelguardagents.ca
mgaccess.aig.co.il
ptagcsstintagent.aig.co.jp
*.aig.com
*.aig.com.es
corebridgefinancial.com
vpn.aig.co.il
*.glatfelterministrycare.com
aigtheftandloss.nl
*.api.aig.com
aigtheftandloss.no
nmrdn.aig.co.il
imperva.com
*.websvcs.uat.travelguard.ca
glatfelterministrycare.com
*.hip7apima.aig.com
*.hip9apima.aig.com
forms.aig.co.il
*.aighomeprotection.com
*.corebridgefinancial.com
*.travelguardagents.ca
glatfelterhealthcare.com
*.producermanagementportal.aig.com
*.websvcs.travelguard.com
aigtheftandloss.nz
*.aigseguros.com.br
*.retirestronger.com
*.aig.com.sg
aigtheftandloss.se
aigtheftandloss.ch
*.americanhome-digital.jp
nmmediatst.aig.co.il
aighomeprotection.com
intagentcert.aig.co.jp
*.emea-sme.nprd.aig.com
www.cropriskservices.com
*.westernworld.com
*.hip9api.aig.com
model-my.valic.com
*.commercialnprd.api.aig.com
*.paymentvendor.ws.safg.com
intagentcertpt.aig.co.jp
*.polaris401k.com
*.hip1api.aig.com
*.glatfelterpublicentities.com
*.winflexapi.aig.com
*.serviceplanspurchase.com
manage.aig.co.il
access.aig.co.il
*.aigtheftandloss.ch
statistics.aig.co.il
*.glatfelterhealthcare.com
*.myatlas.asia
glatfelterpublicentities.com
intagent.aig.co.jp
vpx.aig.co.il
*.aigtheftandloss.nz
*.aigtheftandloss.se
*.apps.layahealthcare.ie
*.hip7api.aig.com
formsts.aig.co.il
*.aig.co.jp
*.api.valic.com
nmalltst.aig.co.il
*.dmp.corebridgefinancial.com
*.aigtheftandloss.nl
polaris401k.com
*.valic.com
serviceplanspurchase.com
*.uat.travelguard.com
*.aigtheftandloss.no
dev-hip11api.aig.co.jp
*.serviceplanpurchase.com
*.dmp.aig.com
*.customerpltfm.aig.com
travel.aig.co.il
myatlas.asia
aigtheftandloss.ie
*.websvcs.uat.travelguard.com
*.websvcs.dev.travelguard.com
sit-hip11api.aig.co.jp
serviceplanpurchase.com
retirestronger.com
*.wwiprate.com
*.dev.travelguard.com
uat-hip11api.aig.co.jp
*.vfis.com
*.aigtheftandloss.ie
www-400.aig.com.tw
my.aig.co.il
*.travelguard.com
*.websvcs.travelguard.ca
*.websvcs.dev.travelguard.ca
*.aig.com.au
travelguardagents.ca
mgaccess.aig.co.il
ptagcsstintagent.aig.co.jp
*.aig.com
*.aig.com.es
corebridgefinancial.com
vpn.aig.co.il
*.glatfelterministrycare.com
aigtheftandloss.nl
*.api.aig.com
aigtheftandloss.no
nmrdn.aig.co.il
imperva.com
*.websvcs.uat.travelguard.ca
glatfelterministrycare.com
*.hip7apima.aig.com
*.hip9apima.aig.com
forms.aig.co.il
*.aighomeprotection.com
*.corebridgefinancial.com
*.travelguardagents.ca
glatfelterhealthcare.com
*.producermanagementportal.aig.com
*.websvcs.travelguard.com
aigtheftandloss.nz
*.aigseguros.com.br
*.retirestronger.com
*.aig.com.sg
aigtheftandloss.se
aigtheftandloss.ch
*.americanhome-digital.jp
nmmediatst.aig.co.il
aighomeprotection.com
intagentcert.aig.co.jp
*.emea-sme.nprd.aig.com
www.cropriskservices.com
*.westernworld.com
*.hip9api.aig.com
model-my.valic.com
*.commercialnprd.api.aig.com
*.paymentvendor.ws.safg.com
intagentcertpt.aig.co.jp
Other certificates including the domain name imperva.com
(limited to 100 certificates)
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
Certificate
The complete raw certificate details for imperva.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIINAjCCC+qgAwIBAgIQAeZMO/lLr9lLQQimoURX5TANBgkqhkiG9w0BAQsFADBY MQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEuMCwGA1UE AxMlR2xvYmFsU2lnbiBBdGxhcyBSMyBEViBUTFMgQ0EgMjAyMyBRMzAeFw0yMzEw MTAwODI1MDBaFw0yNDA0MDcwODI1MDBaMBYxFDASBgNVBAMMC2ltcGVydmEuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCcfukE37UojTxPWK3Co lwmJ8+y6lhpYTQv7iI+6aBeic98RUn8UqEkxxw7hHuyP6aJ4XHVT18lHiL/HweRo MU5sAtkmH+kscziPmZjN1D2Wbf8qgE6AcFlS196HwsbWwEBw1dUGDzDY8JtpaTY+ k9zwVj82AQbFFZPOrzuYuRNn0L4P5LOwVZCRBdHpw4w2O0eay9Lj0lzCiTVZzftR eX7eSkRWT/yVmmgVOBBcG+Vto73J/CWVEal4WLTVN4RuwBHDK3LS1o99zay4LCqG iSF9hLGNRy4/tSZaDe4SeLSso/oMaKyGeS4ZeeNyju3HQxUeajY9Wd9pDV7tgthY zwIDAQABo4IKCDCCCgQwgggqBgNVHREEggghMIIIHYIUY3JvcHJpc2tzZXJ2aWNl cy5jb22CESoucG9sYXJpczQwMWsuY29tghEqLmhpcDFhcGkuYWlnLmNvbYIeKi5n bGF0ZmVsdGVycHVibGljZW50aXRpZXMuY29tghQqLndpbmZsZXhhcGkuYWlnLmNv bYIaKi5zZXJ2aWNlcGxhbnNwdXJjaGFzZS5jb22CEG1hbmFnZS5haWcuY28uaWyC EGFjY2Vzcy5haWcuY28uaWyCFCouYWlndGhlZnRhbmRsb3NzLmNoghRzdGF0aXN0 aWNzLmFpZy5jby5pbIIaKi5nbGF0ZmVsdGVyaGVhbHRoY2FyZS5jb22CDioubXlh dGxhcy5hc2lhghxnbGF0ZmVsdGVycHVibGljZW50aXRpZXMuY29tghJpbnRhZ2Vu dC5haWcuY28uanCCDXZweC5haWcuY28uaWyCFCouYWlndGhlZnRhbmRsb3NzLm56 ghQqLmFpZ3RoZWZ0YW5kbG9zcy5zZYIYKi5hcHBzLmxheWFoZWFsdGhjYXJlLmll ghEqLmhpcDdhcGkuYWlnLmNvbYIRZm9ybXN0cy5haWcuY28uaWyCCyouYWlnLmNv Lmpwgg8qLmFwaS52YWxpYy5jb22CEm5tYWxsdHN0LmFpZy5jby5pbIIdKi5kbXAu Y29yZWJyaWRnZWZpbmFuY2lhbC5jb22CFCouYWlndGhlZnRhbmRsb3NzLm5sgg9w b2xhcmlzNDAxay5jb22CCyoudmFsaWMuY29tghhzZXJ2aWNlcGxhbnNwdXJjaGFz ZS5jb22CFSoudWF0LnRyYXZlbGd1YXJkLmNvbYIUKi5haWd0aGVmdGFuZGxvc3Mu bm+CFmRldi1oaXAxMWFwaS5haWcuY28uanCCGSouc2VydmljZXBsYW5wdXJjaGFz ZS5jb22CDSouZG1wLmFpZy5jb22CFyouY3VzdG9tZXJwbHRmbS5haWcuY29tghB0 cmF2ZWwuYWlnLmNvLmlsggxteWF0bGFzLmFzaWGCEmFpZ3RoZWZ0YW5kbG9zcy5p ZYIdKi53ZWJzdmNzLnVhdC50cmF2ZWxndWFyZC5jb22CHSoud2Vic3Zjcy5kZXYu dHJhdmVsZ3VhcmQuY29tghZzaXQtaGlwMTFhcGkuYWlnLmNvLmpwghdzZXJ2aWNl cGxhbnB1cmNoYXNlLmNvbYIScmV0aXJlc3Ryb25nZXIuY29tgg4qLnd3aXByYXRl LmNvbYIVKi5kZXYudHJhdmVsZ3VhcmQuY29tghZ1YXQtaGlwMTFhcGkuYWlnLmNv LmpwggoqLnZmaXMuY29tghQqLmFpZ3RoZWZ0YW5kbG9zcy5pZYISd3d3LTQwMC5h aWcuY29tLnR3ggxteS5haWcuY28uaWyCESoudHJhdmVsZ3VhcmQuY29tghgqLndl YnN2Y3MudHJhdmVsZ3VhcmQuY2GCHCoud2Vic3Zjcy5kZXYudHJhdmVsZ3VhcmQu Y2GCDCouYWlnLmNvbS5hdYIUdHJhdmVsZ3VhcmRhZ2VudHMuY2GCEm1nYWNjZXNz LmFpZy5jby5pbIIacHRhZ2Nzc3RpbnRhZ2VudC5haWcuY28uanCCCSouYWlnLmNv bYIMKi5haWcuY29tLmVzghdjb3JlYnJpZGdlZmluYW5jaWFsLmNvbYINdnBuLmFp Zy5jby5pbIIcKi5nbGF0ZmVsdGVybWluaXN0cnljYXJlLmNvbYISYWlndGhlZnRh bmRsb3NzLm5sgg0qLmFwaS5haWcuY29tghJhaWd0aGVmdGFuZGxvc3Mubm+CD25t cmRuLmFpZy5jby5pbIILaW1wZXJ2YS5jb22CHCoud2Vic3Zjcy51YXQudHJhdmVs Z3VhcmQuY2GCGmdsYXRmZWx0ZXJtaW5pc3RyeWNhcmUuY29tghMqLmhpcDdhcGlt YS5haWcuY29tghMqLmhpcDlhcGltYS5haWcuY29tgg9mb3Jtcy5haWcuY28uaWyC FyouYWlnaG9tZXByb3RlY3Rpb24uY29tghkqLmNvcmVicmlkZ2VmaW5hbmNpYWwu Y29tghYqLnRyYXZlbGd1YXJkYWdlbnRzLmNhghhnbGF0ZmVsdGVyaGVhbHRoY2Fy ZS5jb22CIioucHJvZHVjZXJtYW5hZ2VtZW50cG9ydGFsLmFpZy5jb22CGSoud2Vi c3Zjcy50cmF2ZWxndWFyZC5jb22CEmFpZ3RoZWZ0YW5kbG9zcy5ueoITKi5haWdz ZWd1cm9zLmNvbS5icoIUKi5yZXRpcmVzdHJvbmdlci5jb22CDCouYWlnLmNvbS5z Z4ISYWlndGhlZnRhbmRsb3NzLnNlghJhaWd0aGVmdGFuZGxvc3MuY2iCGSouYW1l cmljYW5ob21lLWRpZ2l0YWwuanCCFG5tbWVkaWF0c3QuYWlnLmNvLmlsghVhaWdo b21lcHJvdGVjdGlvbi5jb22CFmludGFnZW50Y2VydC5haWcuY28uanCCFyouZW1l YS1zbWUubnByZC5haWcuY29tghh3d3cuY3JvcHJpc2tzZXJ2aWNlcy5jb22CEiou d2VzdGVybndvcmxkLmNvbYIRKi5oaXA5YXBpLmFpZy5jb22CEm1vZGVsLW15LnZh bGljLmNvbYIcKi5jb21tZXJjaWFsbnByZC5hcGkuYWlnLmNvbYIbKi5wYXltZW50 dmVuZG9yLndzLnNhZmcuY29tghhpbnRhZ2VudGNlcnRwdC5haWcuY28uanAwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNV HQ4EFgQUG/B33XI/KaoT5dYnu2IGdlNq8zowVwYDVR0gBFAwTjAIBgZngQwBAgEw QgYKKwYBBAGgMgoBAzA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxz aWduLmNvbS9yZXBvc2l0b3J5LzAMBgNVHRMBAf8EAjAAMIGeBggrBgEFBQcBAQSB kTCBjjBABggrBgEFBQcwAYY0aHR0cDovL29jc3AuZ2xvYmFsc2lnbi5jb20vY2Ev Z3NhdGxhc3IzZHZ0bHNjYTIwMjNxMzBKBggrBgEFBQcwAoY+aHR0cDovL3NlY3Vy ZS5nbG9iYWxzaWduLmNvbS9jYWNlcnQvZ3NhdGxhc3IzZHZ0bHNjYTIwMjNxMy5j cnQwHwYDVR0jBBgwFoAU7aDmAQU+NIIapE9fxb0RQarf82EwSAYDVR0fBEEwPzA9 oDugOYY3aHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9jYS9nc2F0bGFzcjNkdnRs c2NhMjAyM3EzLmNybDATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsF AAOCAQEAjxisaOyKeMcUJnA6NDve6GOd7fbo0ucpMgSnA/esaC2O8WGAVn+La4H8 gPjxz50uTUe7z7LVkcuZnsO+68Gt1yT/iZA9RBTKmHkvITNUHqxngy+oLNMEAuxW oCHGOxFBGHTIWje685nNIM38JGXisxzAvDqAHrm4oBx2gxSd6J7oPEg/qAYuy5on wtx4UFLRfVmGepp38WW54MVI1lSbt6K3teU3EDTZlS9Wt4wKvTy8RnArfsFniACk FCdeeARhS6wmL35JIGNUZzkneCn2iCCL9rbeWLfhLXSgpfrTwLCfOo+TpsTEfam1 cXRcCnyNfqODicMZzGmTtupin3NQDw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCcfukE37UojTxPWK3Co lwmJ8+y6lhpYTQv7iI+6aBeic98RUn8UqEkxxw7hHuyP6aJ4XHVT18lHiL/HweRo MU5sAtkmH+kscziPmZjN1D2Wbf8qgE6AcFlS196HwsbWwEBw1dUGDzDY8JtpaTY+ k9zwVj82AQbFFZPOrzuYuRNn0L4P5LOwVZCRBdHpw4w2O0eay9Lj0lzCiTVZzftR eX7eSkRWT/yVmmgVOBBcG+Vto73J/CWVEal4WLTVN4RuwBHDK3LS1o99zay4LCqG iSF9hLGNRy4/tSZaDe4SeLSso/oMaKyGeS4ZeeNyju3HQxUeajY9Wd9pDV7tgthY zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2525002487992659400500569647744309221 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Atlas R3 DV TLS CA 2023 Q3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-10 08:25:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-07 08:25:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'imperva.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20722374746212791652543761403199580699002921478148082785304838800426966640297383756875301478298088510120600700064543753216802101692645907873775217422897502311779449833317418318726265497373199175141983038560341984520811765390560116940966916910995064292481889034822606742388941863580570346054254294131254316507490262580285307703428663926409515243455233436896365094895901221631707955441254155506843747612219553897022132693662303509221123076164824504508567898077748349334577135587992938841655802481757348802847285692906597509653689467435519287341637246548235551775289475743827248392255764365230902039173427169740006643919 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2081 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cropriskservices.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.polaris401k.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hip1api.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.glatfelterpublicentities.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.winflexapi.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.serviceplanspurchase.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manage.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aigtheftandloss.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'statistics.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.glatfelterhealthcare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.myatlas.asia' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glatfelterpublicentities.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intagent.aig.co.jp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpx.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aigtheftandloss.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aigtheftandloss.se' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.apps.layahealthcare.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hip7api.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'formsts.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aig.co.jp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.valic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nmalltst.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dmp.corebridgefinancial.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aigtheftandloss.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'polaris401k.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.valic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'serviceplanspurchase.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.uat.travelguard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aigtheftandloss.no' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-hip11api.aig.co.jp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.serviceplanpurchase.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dmp.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.customerpltfm.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'travel.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myatlas.asia' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aigtheftandloss.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.websvcs.uat.travelguard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.websvcs.dev.travelguard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sit-hip11api.aig.co.jp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'serviceplanpurchase.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retirestronger.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wwiprate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.travelguard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-hip11api.aig.co.jp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.vfis.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aigtheftandloss.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-400.aig.com.tw' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.travelguard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.websvcs.travelguard.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.websvcs.dev.travelguard.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aig.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'travelguardagents.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mgaccess.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ptagcsstintagent.aig.co.jp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aig.com.es' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'corebridgefinancial.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.glatfelterministrycare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aigtheftandloss.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aigtheftandloss.no' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nmrdn.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imperva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.websvcs.uat.travelguard.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glatfelterministrycare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hip7apima.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hip9apima.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'forms.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aighomeprotection.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.corebridgefinancial.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.travelguardagents.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glatfelterhealthcare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.producermanagementportal.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.websvcs.travelguard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aigtheftandloss.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aigseguros.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.retirestronger.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aig.com.sg' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aigtheftandloss.se' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aigtheftandloss.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.americanhome-digital.jp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nmmediatst.aig.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aighomeprotection.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intagentcert.aig.co.jp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.emea-sme.nprd.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cropriskservices.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.westernworld.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hip9api.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'model-my.valic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.commercialnprd.api.aig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.paymentvendor.ws.safg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intagentcertpt.aig.co.jp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1bf077dd723f29aa13e5d627bb620676536af33a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.10.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (145 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2023q3' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2023q3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName eda0e601053e34821aa44f5fc5bd1141aadff361 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/ca/gsatlasr3dvtlsca2023q3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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