portal.rocqcapital.com
Issued by Trustico RSA DV CA
About this certificate
This digital certificate with serial number d5:71:b0:e0:96:33:dd:02:67:85:48:ec:82:68:b1:59 was issued on by The Trustico Group Ltd.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=portal.rocqcapital.com,OU=Domain Control Validated+OU=Trustico Single Site
The Trustico Group Ltd
Organization:
The Trustico Group Ltd
State / Province:
London
Locality: Croydon
Country: GB
Locality: Croydon
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): d5:71:b0:e0:96:33:dd:02:67:85:48:ec:82:68:b1:59Serial Number (int): 283715880144885612717088842869071458649
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: ee:93:b6:fe:36:19:1c:45:fa:6e:2c:0f:a0:37:34:26:59:0b:00:4c
AuthorityKeyId: 5d:8a:d1:23:08:2f:e1:9d:81:ce:d9:2c:70:28:ba:97:1f:ae:18:35
Fingerprint (sha1): bd:e8:74:46:e9:a1:d2:77:2a:44:d8:df:83:cd:3d:eb:ee:eb:56:3a
Fingerprint (sha256): 1e:3e:12:1f:63:14:e7:1f:7a:55:bb:4b:e6:39:1d:dd:71:37:e3:90:0f:c5:33:21:5a:93:ae:45:dd:7b:bb:3e
Issuing Certificate URL: http://crt.comodoca.com/TrusticoRSADVCA.crt
Revocation information
OCSP Server: http://ocsp.comodoca.comCRL Distribution Point: http://crl.comodoca.com/TrusticoRSADVCA.crl
Check the revocation status for certificate portal.rocqcapital.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for portal.rocqcapital.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
portal.rocqcapital.com
www.portal.rocqcapital.com
www.portal.rocqcapital.com
Other certificates including the domain name rocqcapital.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for portal.rocqcapital.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGnTCCBYWgAwIBAgIRANVxsOCWM90CZ4VI7IJosVkwDQYJKoZIhvcNAQELBQAw bjELMAkGA1UEBhMCR0IxDzANBgNVBAgTBkxvbmRvbjEQMA4GA1UEBxMHQ3JveWRv bjEfMB0GA1UEChMWVGhlIFRydXN0aWNvIEdyb3VwIEx0ZDEbMBkGA1UEAxMSVHJ1 c3RpY28gUlNBIERWIENBMB4XDTE5MDcwMjAwMDAwMFoXDTIxMDgzMDIzNTk1OVow YzEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMR0wGwYDVQQLExRU cnVzdGljbyBTaW5nbGUgU2l0ZTEfMB0GA1UEAxMWcG9ydGFsLnJvY3FjYXBpdGFs LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM3Wl4r2khQ6ElSY Zr0j9AncG2K8gr3lBYmGULWa/xlAzBemXQukXGE35W/4KBeCuo6Fhyow2iEfI5u+ 0L3K7+/YvfpqTAv0yj7MSzLCF8HIQwvRulOFRgW6t4x/pn+vaEePy/exEMtbDXiZ U8hN4eMVHaTMDVvCGw4M+uqCBjaBQy0+hZRMWTgJo/EkxrMDOU+tvBntsY6Ln8gu LeslIK5Xx9vdYY4Q4ENpjoaHx2gBZGiVujYzHuaBp4V89az1+NByyKz9nLUm8btH rz84U7HAUr73vR38KWVlC0VC/HOvGVhhau0IoY2DwiLz7o+WJOsW828RpIyF3Zcq 5+k4cz8CAwEAAaOCAz8wggM7MB8GA1UdIwQYMBaAFF2K0SMIL+Gdgc7ZLHAoupcf rhg1MB0GA1UdDgQWBBTuk7b+NhkcRfpuLA+gNzQmWQsATDAOBgNVHQ8BAf8EBAMC BaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw TwYDVR0gBEgwRjA6BgsrBgEEAbIxAQICOjArMCkGCCsGAQUFBwIBFh1odHRwczov L3NlY3VyZS5jb21vZG8uY29tL0NQUzAIBgZngQwBAgEwPAYDVR0fBDUwMzAxoC+g LYYraHR0cDovL2NybC5jb21vZG9jYS5jb20vVHJ1c3RpY29SU0FEVkNBLmNybDBt BggrBgEFBQcBAQRhMF8wNwYIKwYBBQUHMAKGK2h0dHA6Ly9jcnQuY29tb2RvY2Eu Y29tL1RydXN0aWNvUlNBRFZDQS5jcnQwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmNvbW9kb2NhLmNvbTA9BgNVHREENjA0ghZwb3J0YWwucm9jcWNhcGl0YWwuY29t ghp3d3cucG9ydGFsLnJvY3FjYXBpdGFsLmNvbTCCAX0GCisGAQQB1nkCBAIEggFt BIIBaQFnAHcAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFrsh6j gwAABAMASDBGAiEAiJs40cbXVGOrdEyV2xZUDVtvl2xzyi3CB3olyG3Jv8wCIQDF AXmF+iRPMHDZwlbrifKQqPrk5cVjwjS7NsUeeRMhRwB1AESUZS6w7s6vxEAH2Kj+ KMDa5oK+2MsxtT/TM5a1toGoAAABa7IepDYAAAQDAEYwRAIgK4NJJH8qsEJK6x84 8F/T8mMtiqzG4WlsQp6TS6i/cmgCIAzC8V1/eKWT7AmJxhsKX815nqJu/RQHugId ZSQVWylwAHUAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFrsh6j owAABAMARjBEAiA8ktHEuwxeyDHvgYU4FDHsP+pcz10JQQtvI0bK6AHlRQIgNE55 dE07JWVBPh9ULMqU4McCN0M77E/CdalkDhkUT8AwDQYJKoZIhvcNAQELBQADggEB ABHTJg+LoQyIG17felLvxIc7yx0syHuEu38lr7WElxUuAM5qahR3CqDhiTdQyCvh 6Wu6+dWHpAM1l7inCe/X4dn27BaaQ908//SyOLbJfebxMhBwsf5ypmhn2PU+QQDE d1tqc4NDq4xJs7gLb8cqgwYf4uEXYQfG3U9JYjEVn0KU4/6ti380GD7uKuDVCsfi +xI6waG69wuniSE9GB+tfyQN2lcKWdaicE1qVv5qaVedVzJuioRun6BJ7ttsOtqe GMEOkz9v+PfMQxgqE5Rg7aFcIebxUculaMWcmdEdrVIVFd2yEkcfoXW66QyH6D86 C2suIixtMM8Fcw0DjeDG6Wo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzdaXivaSFDoSVJhmvSP0 CdwbYryCveUFiYZQtZr/GUDMF6ZdC6RcYTflb/goF4K6joWHKjDaIR8jm77Qvcrv 79i9+mpMC/TKPsxLMsIXwchDC9G6U4VGBbq3jH+mf69oR4/L97EQy1sNeJlTyE3h 4xUdpMwNW8IbDgz66oIGNoFDLT6FlExZOAmj8STGswM5T628Ge2xjoufyC4t6yUg rlfH291hjhDgQ2mOhofHaAFkaJW6NjMe5oGnhXz1rPX40HLIrP2ctSbxu0evPzhT scBSvve9HfwpZWULRUL8c68ZWGFq7QihjYPCIvPuj5Yk6xbzbxGkjIXdlyrn6Thz PwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 283715880144885612717088842869071458649 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Croydon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Trustico Group Ltd' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustico RSA DV CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-30 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustico Single Site' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'portal.rocqcapital.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25984671759506278408451960321721993268810085836941167449522991945416252690588106957940186640437676350906963360217409419099984477272244055946359378357828964403505999131397934894065597691485617977331248275920958501981227951558077067958130381953451554902775787531185190073588694282846516004080165655635982914620144981637223588370668830531509059962785198063260721756322115540782271835855291713243549738142553224705328333855479125337942105758588779034211284806581312254803402420476607833442010876252033724016318705117673156836790408093203583170203151972320127090003397554584328175799742802862305976182774224894734657680191 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5d8ad123082fe19d81ced92c7028ba971fae1835 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ee93b6fe36191c45fa6e2c0fa0373426590b004c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.58 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/TrusticoRSADVCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (97 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/TrusticoRSADVCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.rocqcapital.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.portal.rocqcapital.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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