icopal.de
Issued by R3
About this certificate
This digital certificate with serial number 03:4f:b7:54:c6:b2:b3:d4:e7:16:65:5a:ad:e1:ef:98:a3:fc was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=icopal.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:4f:b7:54:c6:b2:b3:d4:e7:16:65:5a:ad:e1:ef:98:a3:fcSerial Number (int): 288462853688275004734621850103765272142844
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a8:cd:3f:a3:88:9b:ec:2c:77:97:11:5c:05:7d:d1:c3:a4:51:44:cf
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 93:7c:82:c4:8a:63:b0:bd:c1:24:1c:07:0b:c9:86:5f:a5:13:d6:3a
Fingerprint (sha256): 1e:f6:05:56:d1:d2:75:fd:bf:4f:62:0f:58:1e:21:09:cc:32:0d:b2:82:0f:18:aa:2f:39:ed:bf:25:85:5b:79
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate icopal.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for icopal.de
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
icopal.de
www.icopal.de
www.icopal.de
Other certificates including the domain name icopal.de
(limited to 100 certificates)
icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
www.icopal.de
intranet.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
www.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
intranet.icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
www.icopal.de
intranet.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
intranet.icopal.de
angebote.icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
angebote.icopal.de
www.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
intranet.icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
angebote.icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
icopal.de
icopal.de
intranet.icopal.de
intranet.icopal.de
intranet.icopal.de
intranet.icopal.de
icopal.de
icopal.de
angebote.icopal.de
intranet.icopal.de
icopal.de
icopal.de
icopal.de
angebote.icopal.de
angebote.icopal.de
Certificate
The complete raw certificate details for icopal.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgISA0+3VMays9TnFmVareHvmKP8MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjYwODAxNTVaFw0yNDA2MjQwODAxNTRaMBQxEjAQBgNVBAMT CWljb3BhbC5kZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAIFNwcYR yr3/9FB8J9Ed3/IuYH6t9tas5tBd7HKIhk+lt/HB1e/9Xw7ykCG7fWtL7b/aMnfI v/Mytk05udfj/AnJCZPUiZHP7upR3nczoy2DWOr9Jw1zRV0XgQAeadja6RFkl2dt dZ9HnxL35IzofuvVrEI5hWl8mNjBh2j2VoUMZteCuO7XrCqMV8M2DrTniQmoh9Qh xx1/QPaaC5FTO96aPZIf06E5MY4K+r2Sa0nYd0Q8rRN6p3Azff6jcmiyf0oIFLhc TFcskw8Xj3CXIDUTLdOacohmiAeUl+21FeAwi5cCk+ua2LUNOVEvj8OFCPXe9xmt nJOMdWQDctJRuD+JyPhuEZKQKhFFheEJpbG2IlitGp1/zeb5LtCgsnF2T9TQx021 CXIh6l+ND2oK8CT2n9nLmbgSaP8DdFGqZlLZXLZi6mM1sUzL//XQAu9lmp66HXD1 2zVFYlFAHxiij/tO8ap4iivQt6t5ollLoAJxNjkE2MOwiMVWxu0Wq6aGcwIDAQAB o4ICGjCCAhYwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSozT+jiJvsLHeXEVwFfdHD pFFEzzAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcB AQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEF BQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAjBgNVHREEHDAagglpY29wYWwu ZGWCDXd3dy5pY29wYWwuZGUwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEE AdZ5AgQCBIH1BIHyAPAAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frU FwAAAY55/qQyAAAEAwBHMEUCIHHKt0kcECQcvhrPmGQvXRKg7hSDSyHh6WIpJgfH iKzZAiEAv4wsJ2xAyJOgjRXgw4QgjFrrDJZuYLR1kFRecCDglx8AdgB2/4g/Crb7 lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAY55/qR3AAAEAwBHMEUCIC5w0tXx J9h2b7FZtE2khvpPK55Nno4aO7msBjpQFWfFAiEArrLeySbSuFURKr//eDn6LqIO kfAbHuR/YigHS0c4bX4wDQYJKoZIhvcNAQELBQADggEBAITZYQprzEwY9ygs48Dd EH8u9E7cfzJ/y/8p5mNC+X4u9dTdaJ0E8PDNQifPlb4TPYK8CAhAv8HjO59SdSnl J5Pt1gyp7BJrKvUwO6XtWQVZRZiOmZmc5WYB9txGjmvQvz4lmFU5waqYqA7/YQSf 8eZHblE3qxv65duQniiRgvu79k29IJHf0IxDfqtTAbvnsu0ZObre1y+84HAXhyQN Z7+/icdsXobKReoTTzWdDED6FU/XDqCtVOAYhO/WWrhTD1KLPOTeX0bt+Kjm4e0L 9u7G9gBiOeZ3LwqXoAKHq/TBfFEa3B+KLzlJ+zyoWvqzjW6yozcN97FirJgSNWdf 2gk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAgU3BxhHKvf/0UHwn0R3f 8i5gfq321qzm0F3scoiGT6W38cHV7/1fDvKQIbt9a0vtv9oyd8i/8zK2TTm51+P8 CckJk9SJkc/u6lHedzOjLYNY6v0nDXNFXReBAB5p2NrpEWSXZ211n0efEvfkjOh+ 69WsQjmFaXyY2MGHaPZWhQxm14K47tesKoxXwzYOtOeJCaiH1CHHHX9A9poLkVM7 3po9kh/ToTkxjgr6vZJrSdh3RDytE3qncDN9/qNyaLJ/SggUuFxMVyyTDxePcJcg NRMt05pyiGaIB5SX7bUV4DCLlwKT65rYtQ05US+Pw4UI9d73Ga2ck4x1ZANy0lG4 P4nI+G4RkpAqEUWF4QmlsbYiWK0anX/N5vku0KCycXZP1NDHTbUJciHqX40Pagrw JPaf2cuZuBJo/wN0UapmUtlctmLqYzWxTMv/9dAC72WanrodcPXbNUViUUAfGKKP +07xqniKK9C3q3miWUugAnE2OQTYw7CIxVbG7RarpoZzAgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 288462853688275004734621850103765272142844 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-26 08:01:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-24 08:01:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'icopal.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2934389732504078665441805756748704839350999130437737146373596417612410608747470728282677397442543513863851444669393967059189985145380401965810989237357633556678533367935927355449021716564366513069210129002297994565440662993657475289347782556794288964030370623871345336784937979298949573942690843692027118402072326343041918054508930757381811919658578835670069487031654000863765644512393113633662612416006972697814725776264565522949800069043653380286294685524376459435115272639524817187037811897558907655411644908176179651606793106415454675871991950524006028447740813188564209627639067786449735804522379203887196390162906891444776318661626311335642994121097621180314230507582884586822341197099980918892418224176621085303049937967554643926557149604097784339959545153838922964333386953303998884251502541477423308384785704131921362222285329859293059988110014119095603584556266728429760717301397180206130847931360758428679685965427 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a8cd3fa3889bec2c7797115c057dd1c3a45144cf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'icopal.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.icopal.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e79fea4320000040300473045022071cab7491c10241cbe1acf98642f5d12a0ee14834b21e1e962292607c788acd9022100bf8c2c276c40c893a08d15e0c384208c5aeb0c966e60b47590545e7020e0971f00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e79fea477000004030047304502202e70d2d5f127d8766fb159b44da486fa4f2b9e4d9e8e1a3bb9ac063a501567c5022100aeb2dec926d2b855112abfff7839fa2ea20e91f01b1ee47f6228074b47386d7e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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