*.jkfenner.com
Issued by Sectigo RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number 2f:76:e3:64:85:40:a8:97:fe:13:49:81:3c:94:a9:09 was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.jkfenner.com
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 2f:76:e3:64:85:40:a8:97:fe:13:49:81:3c:94:a9:09Serial Number (int): 63091018902234109762295291148183578889
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 5b:2b:0a:94:3f:8e:2f:8e:6d:96:74:50:52:b3:04:70:fe:02:c4:5d
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1
Fingerprint (sha1): 1f:6b:11:d9:63:59:7f:cd:9d:01:44:9f:16:d1:50:9d:15:59:ab:2d
Fingerprint (sha256): 2e:c2:14:e6:e1:e9:b6:9f:10:2d:35:e4:22:51:44:2b:e4:d0:07:4a:bd:39:c4:0e:13:73:26:4d:11:74:03:d2
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate *.jkfenner.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.jkfenner.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.jkfenner.com
jkfenner.com
jkfenner.com
Other certificates including the domain name jkfenner.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.jkfenner.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHMjCCBhqgAwIBAgIQL3bjZIVAqJf+E0mBPJSpCTANBgkqhkiG9w0BAQsFADCB jzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTcwNQYDVQQD Ey5TZWN0aWdvIFJTQSBEb21haW4gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENB MB4XDTI0MDMyMDAwMDAwMFoXDTI1MDMyMDIzNTk1OVowGTEXMBUGA1UEAwwOKi5q a2Zlbm5lci5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDDAa4r XAIMPiW1W56xpeGUmTEVWG9jO05NZjWEXlSA+OqM+EaYKnsOoJJ3hTdjy6ukpz2A teCQTjz45nRQcCdYhVuRFasEuS89sitkxzS2L7BIeSHbBofQYT0gSMsm9rJ7h2nQ CMvJ0cVnfhcrtEphsDZrneph1fW6mnMniiur/PQ9ebijRr8BCPUkiscAr3EG7Rg7 xFZDrWCtWG+0kzJ/zgzXjDHWwUyHUYhXws29tx0x2wVc5e5dvv0gMRP4+CD71O0O ZmdR8NbqVsRueR2GclyR3yUCDL3OUiJUiJJg7aqjJtd6AIrkedS99mTwGhKJy+81 P0sNOzrHpKBnDel44zOX04L/jUUzailYOHlyKpPoxK9LUz+lQDsG6OdzdLynx1XT 3KygaSX09Vg90LcTXR9HCI/h1yRYEDOWUHnju8P8fNMOZaAb8wRA7ceMbx2YXmdz y+IDDwsjJtLZMTvU+A9AYZgk/k6Fwx20M7onLuKJrQZMCP7MlPhfYS8dir4oKug7 eQckwdl21aramHgnmEE2LPK6UZDJD5t4NhPQBTGhPTcMV2vd1ySbdYmojTRoiqwS 50YhyQ4OoKaTujy9YUAXK9XSXJ35xhfPTaiJwgFmsz5XxBe74HA/Jx6z+FsYjeXv 9V+1J99MIk0UrStz+90irbAR0HXTO6MuHJDYHwIDAQABo4IC/TCCAvkwHwYDVR0j BBgwFoAUjYxexFStiuF36Zv5mwXhuAGNYeEwHQYDVR0OBBYEFFsrCpQ/ji+ObZZ0 UFKzBHD+AsRdMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgIH MCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAEC ATCBhAYIKwYBBQUHAQEEeDB2ME8GCCsGAQUFBzAChkNodHRwOi8vY3J0LnNlY3Rp Z28uY29tL1NlY3RpZ29SU0FEb21haW5WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0Eu Y3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTAnBgNVHREE IDAegg4qLmprZmVubmVyLmNvbYIMamtmZW5uZXIuY29tMIIBfQYKKwYBBAHWeQIE AgSCAW0EggFpAWcAdwDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAA AY5cuom7AAAEAwBIMEYCIQCTRGmIOSMN/wnLgABzq4Dv3TFclAc5+Gb4vvTaNnvp kQIhAJ+loQkryNVdR/ma3kDmTp20DJZ1a67axMUXnsz7v4VGAHUAouMK5EXvva2b fjjtR2d3U9eCW4SU1yteGyzEuVCkR+cAAAGOXLqJRQAABAMARjBEAiA0R2bZXg/A OBGci93bASdSawJQYjNJIM7EygA08ZmhAwIgM21JKBAn3I21dokPINOXJ61CiDIM 1xOor0eS2EDKuPoAdQBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAA AY5cuok8AAAEAwBGMEQCIENjqzXSoO+gkILJ4hmU0GvyVtGFzLdqi20T652c5VP+ AiBU1BvEKVdljrissAdWoLvSFRCPMv9ZuFo1a+GhdnmRVDANBgkqhkiG9w0BAQsF AAOCAQEAZFqKAYrOPw7RNyPE/iXFzkpJggNxrNdgacVK+rg3H+1fEQMp3/1i0wJQ kpuRteuk4fM93+3vo2cFL9sdt+P4PlYyreFfFt4xuy8q16dPFSuA4W/GdtNN3Y19 f24WSSdME6zgnYjhbTeNlFuDHFrc5yYn+/yJ87bzKjGgr0MwslGn86FPyAjXd1Ks Sdgzo1fU6TF8cZTMAtFD+wFlcjNN5l+HtC3lR04TazYXb4kx1jkrTCT8l6uDzywR +qolZzDwbVnSeWQidf/a76+T8KozJGOtkqzy9tNqWYIS68zAKTeT6O9P7OUkz5ZY YmVPlBIu9WA37txf4m3KCQzOJOZ6DQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwwGuK1wCDD4ltVuesaXh lJkxFVhvYztOTWY1hF5UgPjqjPhGmCp7DqCSd4U3Y8urpKc9gLXgkE48+OZ0UHAn WIVbkRWrBLkvPbIrZMc0ti+wSHkh2waH0GE9IEjLJvaye4dp0AjLydHFZ34XK7RK YbA2a53qYdX1uppzJ4orq/z0PXm4o0a/AQj1JIrHAK9xBu0YO8RWQ61grVhvtJMy f84M14wx1sFMh1GIV8LNvbcdMdsFXOXuXb79IDET+Pgg+9TtDmZnUfDW6lbEbnkd hnJckd8lAgy9zlIiVIiSYO2qoybXegCK5HnUvfZk8BoSicvvNT9LDTs6x6SgZw3p eOMzl9OC/41FM2opWDh5ciqT6MSvS1M/pUA7Bujnc3S8p8dV09ysoGkl9PVYPdC3 E10fRwiP4dckWBAzllB547vD/HzTDmWgG/MEQO3HjG8dmF5nc8viAw8LIybS2TE7 1PgPQGGYJP5OhcMdtDO6Jy7iia0GTAj+zJT4X2EvHYq+KCroO3kHJMHZdtWq2ph4 J5hBNizyulGQyQ+beDYT0AUxoT03DFdr3dckm3WJqI00aIqsEudGIckODqCmk7o8 vWFAFyvV0lyd+cYXz02oicIBZrM+V8QXu+BwPyces/hbGI3l7/VftSffTCJNFK0r c/vdIq2wEdB10zujLhyQ2B8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 63091018902234109762295291148183578889 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.jkfenner.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 795557371491608790611175750367755719209273812143098000593221755548794248528590672187284671249681299698843593835987803250239945747306776936758375749873310944936092690919675776975621218459062096455607160517990808533062750462976259931811400837203556393357811929301982941471496344428219323559066338503401611589318047609636096708084568207704767674096569213928278946044407924392278878259715572641960669801236095663461144945363868441241372804455822632479769189521731655873749110555970968304848719432403301764562436078648248289007642690183920271866926097088769268423578423758607911343167948182733036851691724391432747279706795042562932771306212018481733832856824567496702760866875560370970522964413209637167053713468858461639959668057481025467154173757701503090325190095459165204964521219196859499011077805809981191008914832934554622499833365396939562439673593487288305920054944318019805853780110112448237437258551715067391484325401361121104218243556180896557339369793668851358239241045787157519030834215075933170525345085047598081403978063987929029634334354784931853644574134301612707502836959774253648088671643623678883874403719133515119955616223825630689875699947215906605118102969262486558506140526405211102931514025521987942788021409823 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5b2b0a943f8e2f8e6d96745052b30470fe02c45d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.jkfenner.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jkfenner.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00645a8a018ace3f0ed13723c4fe25c5ce4a49820371acd76069c54afab8371fed5f110329dffd62d30250929b91b5eba4e1f33ddfedefa367052fdb1db7e3f83e5632ade15f16de31bb2f2ad7a74f152b80e16fc676d34ddd8d7d7f6e1649274c13ace09d88e16d378d945b831c5adce72627fbfc89f3b6f32a31a0af4330b251a7f3a14fc808d77752ac49d833a357d4e9317c7194cc02d143fb016572334de65f87b42de5474e136b36176f8931d6392b4c24fc97ab83cf2c11faaa256730f06d59d279642275ffdaefaf93f0aa332463ad92acf2f6d36a598212ebccc0293793e8ef4fece524cf965862654f94122ef56037eedc5fe26dca090cce24e67a0d