www.estaescrito.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:56:06:78:c0:fa:0d:d7:34:37:b5:eb:e1:36:1a:28:46:18 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.estaescrito.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:56:06:78:c0:fa:0d:d7:34:37:b5:eb:e1:36:1a:28:46:18Serial Number (int): 290609743708113149472731198528113911285272
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: dd:31:03:49:54:86:89:43:c6:be:ba:ad:0b:d4:23:22:46:27:61:59
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 35:91:d4:13:9c:b1:f9:50:4d:31:ae:28:37:f8:ae:78:5d:84:0b:f8
Fingerprint (sha256): 28:69:6e:c3:39:91:ea:59:73:5d:e1:f7:84:e8:c4:97:37:9f:1a:62:e4:a5:97:ca:2a:bb:37:29:d7:27:74:a6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.estaescrito.ca
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.estaescrito.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
estaescrito.ca
estaescrito.itiswrittencanada.ca
www.estaescrito.ca
estaescrito.itiswrittencanada.ca
www.estaescrito.ca
Other certificates including the domain name estaescrito.ca
(limited to 100 certificates)
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.itiswrittencanada.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.itiswrittencanada.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
estaescrito.ca
www.estaescrito.ca
www.estaescrito.ca
Certificate
The complete raw certificate details for www.estaescrito.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGPzCCBSegAwIBAgISA1YGeMD6Ddc0N7Xr4TYaKEYYMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODEwMjcxNTI3NDlaFw0x OTAxMjUxNTI3NDlaMB0xGzAZBgNVBAMTEnd3dy5lc3RhZXNjcml0by5jYTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKn2NQIptDaCYJBQJHd19TrdwS5h ue6kD5lvWBV8lBW7TH99mfnZtTemJbIXWm2VbssY3w6Wc7RuNG4XEvlsUQ+mrjH5 0T5ib+wfBgxEXJatQ3aVfiKIFgbW2mz54Nitg871p6SpmqKyHlphwBB0G8w32jUv +GD8xa9te4kBwA7QNNx6F4vDO5IqIoJeUWoZubIa+EvEd8lq4W01wMA/tgHD5m+A ZC4vXzYYYO2IHq3cXmAtGIjWhXV9YJga9Et6s6Nj0mhaNEPr7Z8XVXhYQebPWA7e IfpJ6wNIjL4c42KXvIENfwmGTnZSlvPXbkAGOP10POVXtiQ/GEcF9r4K7N8CAwEA AaOCA0owggNGMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU3TEDSVSGiUPGvrqtC9Qj IkYnYVkwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzBPBgNVHREESDBGgg5lc3RhZXNjcml0by5jYYIgZXN0YWVzY3JpdG8u aXRpc3dyaXR0ZW5jYW5hZGEuY2GCEnd3dy5lc3RhZXNjcml0by5jYTCB/gYDVR0g BIH2MIHzMAgGBmeBDAECATCB5gYLKwYBBAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEW Gmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIGrBggrBgEFBQcCAjCBngyBm1Ro aXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkgYmUgcmVsaWVkIHVwb24gYnkgUmVseWlu ZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFjY29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlm aWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0dHBzOi8vbGV0c2VuY3J5cHQub3JnL3Jl cG9zaXRvcnkvMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUAdH7agzGtMxCRIZzO JU9CcMK//V5CIAjGNzV55hB7zFYAAAFmtlpmYgAABAMARjBEAiAw8ONc79CCtzP8 XFFq/hAhOa7FM2AuPAnfyt1ShyMC+wIgRoXwAKYyxHAg2AuGxmy+5EmOz8eIlUcJ hC41/xzaGU4AdQApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWa2 WmWpAAAEAwBGMEQCIEhELG99Mojh6f++P1p5IsYXbE0XwFcmJjC9MlRgF7LlAiAw Dc4OlT4LgSVh1EJB3dQm7JGJuGLUKaYeXwhwEXDwUjANBgkqhkiG9w0BAQsFAAOC AQEAfHHRzdH9hMCcUVBJsnNyQeRBebedN9sSLTtH9EbnpVlY+BbCoGt6YBSIO6F+ dNTbm3yuORt0rcgAdNaW5ofVTbJo2Okg/Ki+77a8z/1KxUItU16ahUzfFPxzOta0 MzWWzHVQ9V029jk2zvdNGpTR6gPtnu0SUNOlGuzq3G83fquLO5DdmadnJluZ+THW BG5TU1siTL3QlV9ldiAI8JtBbBOpIfHoOyqqFmCfFheqrw3ziUvpcPts3y8OjMzN JqQUpiTGy0cxIstikVG0eQaARRytOiv4Hag6OsI3hAlc2Hgp5OKoq72qHTeSD1z3 g8BsUQjDG8pVdhoo1gm96aBOTw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfY1Aim0NoJgkFAkd3X1 Ot3BLmG57qQPmW9YFXyUFbtMf32Z+dm1N6YlshdabZVuyxjfDpZztG40bhcS+WxR D6auMfnRPmJv7B8GDERclq1DdpV+IogWBtbabPng2K2DzvWnpKmaorIeWmHAEHQb zDfaNS/4YPzFr217iQHADtA03HoXi8M7kioigl5Rahm5shr4S8R3yWrhbTXAwD+2 AcPmb4BkLi9fNhhg7YgerdxeYC0YiNaFdX1gmBr0S3qzo2PSaFo0Q+vtnxdVeFhB 5s9YDt4h+knrA0iMvhzjYpe8gQ1/CYZOdlKW89duQAY4/XQ85Ve2JD8YRwX2vgrs 3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 290609743708113149472731198528113911285272 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-27 15:27:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-25 15:27:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.estaescrito.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21455682767631132032504063651365849054367472428728235832914168470628847479981142294323479634539772260962101764788934479734447019063985096882464913272212972006010850642939604799160555973137790139180697114207904162436701213572715780029032034042419817374235018927996310052235373277720423006006410647980066238272063695629391261258908411357063339362562087908543050482283836619986978959321037987830934111103448803623748637568334002972931790010763794050094784373542988986554593139890313673433568344836111282150486507121057602467474968059438434250746079289319179050194794744761912549619233418007131952032321446553800663559391 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dd31034954868943c6bebaad0bd4232246276159 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'estaescrito.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'estaescrito.itiswrittencanada.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.estaescrito.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000166b65a66620000040300463044022030f0e35cefd082b733fc5c516afe102139aec533602e3c09dfcadd52872302fb02204685f000a632c47020d80b86c66cbee4498ecfc788954709842e35ff1cda194e007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000166b65a65a90000040300463044022048442c6f7d3288e1e9ffbe3f5a7922c6176c4d17c057262630bd32546017b2e50220300dce0e953e0b812561d44241ddd426ec9189b862d429a61e5f08701170f052 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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