mail.ckvt.cz
Issued by RapidSSL SHA256 CA - G4
About this certificate
This digital certificate with serial number 0f:1f was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=mail.ckvt.cz,OU=GT06391499+OU=See www.rapidssl.com/resources/cps (c)14+OU=Domain Control Validated - RapidSSL(R)
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:1fSerial Number (int): 3871
Serial Number lenght: 12 bits, 2 octets
SubjectKeyId:
AuthorityKeyId: f3:b5:56:0c:c4:09:b0:b4:cf:1f:aa:f9:dd:23:56:f0:77:e8:a1:f9
Fingerprint (sha1): f3:5e:66:86:a8:14:07:7e:99:a2:34:c6:77:1f:f5:c2:69:8d:36:c3
Fingerprint (sha256): 30:4e:6b:be:40:2e:c9:f3:22:39:aa:06:33:eb:70:93:9e:bc:18:28:59:af:2a:af:d0:80:72:7c:b7:d4:f1:9c
Issuing Certificate URL: http://gz.symcb.com/gz.crt
Revocation information
OCSP Server: http://gz.symcd.comCRL Distribution Point: http://gz.symcb.com/gz.crl
Check the revocation status for certificate mail.ckvt.cz
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mail.ckvt.cz
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mail.ckvt.cz
Other certificates including the domain name ckvt.cz
(limited to 100 certificates)
exclusive.ckvt.cz
synology.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
mail.ckvt.cz
exclusive.ckvt.cz
istour.ckvt.cz
mail.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
istour.ckvt.cz
istour.ckvt.cz
sni.cloudflaressl.com
istour.ckvt.cz
istour.ckvt.cz
mail.ckvt.cz
mail.ckvt.cz
www.ckvt.cz
synology.ckvt.cz
control.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
mail.ckvt.cz
istour.ckvt.cz
control.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
sni.cloudflaressl.com
www.ckvt.cz
control.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
file.synology.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
ckvt.cz
ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
mail.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
control.ckvt.cz
synology.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
mail.ckvt.cz
exclusive.ckvt.cz
istour.ckvt.cz
mail.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
istour.ckvt.cz
istour.ckvt.cz
sni.cloudflaressl.com
istour.ckvt.cz
istour.ckvt.cz
mail.ckvt.cz
mail.ckvt.cz
www.ckvt.cz
synology.ckvt.cz
control.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
mail.ckvt.cz
istour.ckvt.cz
control.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
sni.cloudflaressl.com
www.ckvt.cz
control.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
file.synology.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
ckvt.cz
ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
mail.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
control.ckvt.cz
Certificate
The complete raw certificate details for mail.ckvt.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgICDx8wDQYJKoZIhvcNAQELBQAwRzELMAkGA1UEBhMCVVMx FjAUBgNVBAoTDUdlb1RydXN0IEluYy4xIDAeBgNVBAMTF1JhcGlkU1NMIFNIQTI1 NiBDQSAtIEc0MB4XDTE1MDgyNTAxMDEyMFoXDTE2MTAwMzIwMDkyMVowgZAxEzAR BgNVBAsTCkdUMDYzOTE0OTkxMTAvBgNVBAsTKFNlZSB3d3cucmFwaWRzc2wuY29t L3Jlc291cmNlcy9jcHMgKGMpMTQxLzAtBgNVBAsTJkRvbWFpbiBDb250cm9sIFZh bGlkYXRlZCAtIFJhcGlkU1NMKFIpMRUwEwYDVQQDEwxtYWlsLmNrdnQuY3owggGi MA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQDknGq0/t7FJMjHO1JCXj2lVUL9 JMDkoqfvhB0iogut0JL+Eu+/OTvuIbXqHuN1/OT+qEitLd3jQambyNZwkqGswyRu qZNsM6oJimwibV2d9D2iqWtdbWqNJn7t6gmr2bp5f710EcooiENabZITUVBPS7qG dyFbSuIBUSF6XKDtZGZAgKo3T7/xPJtDLJSLS7QAEBkO+hR1rN91Y7bBJNIJIVBM q/KRmXFJSP6W/KAgWOyoMsxbrAcB/xU4jZ27ZtIgXbWIL0wn4U2OX3O/QU2Jgbff xo6yXdeczgWrcq+G78W/ESXHctAtkY3C8dYMllCAcjoFERYbHJ8ANBwGgyHMmOWl RTnmtHpwCnSzDdFQCVFKQDssrcPfL87QNu4zBa0VpSHTTK6NpqxbvjgY8xWUMbXo yZLCrpGZw1SSO6vKU/GX+Evt2ou7ZYWUdyRdqwpm/el+Six2QvDfzqqslFy3MfGI dUtwHGdEGuRqrlXhWprFclYLFHCMahgFRPWoZnUCAwEAAaOCAUQwggFAMB8GA1Ud IwQYMBaAFPO1VgzECbC0zx+q+d0jVvB36KH5MFcGCCsGAQUFBwEBBEswSTAfBggr BgEFBQcwAYYTaHR0cDovL2d6LnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDov L2d6LnN5bWNiLmNvbS9nei5jcnQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAXBgNVHREEEDAOggxtYWlsLmNrdnQuY3owKwYD VR0fBCQwIjAgoB6gHIYaaHR0cDovL2d6LnN5bWNiLmNvbS9nei5jcmwwDAYDVR0T AQH/BAIwADBBBgNVHSAEOjA4MDYGBmeBDAECATAsMCoGCCsGAQUFBwIBFh5odHRw czovL3d3dy5yYXBpZHNzbC5jb20vbGVnYWwwDQYJKoZIhvcNAQELBQADggEBALzM JE0daK6Qy5gztKMNasX2RjShz4jmffQ0Paa2UTmiB6T1mRqxe5MlKGus00gHS6pk Hei8dpcd7xYNgsfnrLXCxD6bEqbys8Lk0TZ+IXPbqvTtLmtRWNtsDzm2T/qi9aj1 UWZJD3LJ0Vt9FAvCnFe8PAGRkxH5Tw558fyufmFJ18vybTRidQdpfzVCWSbVieBd /CxxMC2ZE7CZjfCBZqb+noBo2+m/n6FqEKST3zeoDDRm/pv3B7huJfJ3WqdQaIJX bFCfI0fC59BWtiUNXMl9xk7VC2V2eJUGJocCy+hRRI105lMtljEfiitGo3jzrrV7 XRjIvgLdwjlEmEG1A2g= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEA5JxqtP7exSTIxztSQl49 pVVC/STA5KKn74QdIqILrdCS/hLvvzk77iG16h7jdfzk/qhIrS3d40Gpm8jWcJKh rMMkbqmTbDOqCYpsIm1dnfQ9oqlrXW1qjSZ+7eoJq9m6eX+9dBHKKIhDWm2SE1FQ T0u6hnchW0riAVEhelyg7WRmQICqN0+/8TybQyyUi0u0ABAZDvoUdazfdWO2wSTS CSFQTKvykZlxSUj+lvygIFjsqDLMW6wHAf8VOI2du2bSIF21iC9MJ+FNjl9zv0FN iYG338aOsl3XnM4Fq3Kvhu/FvxElx3LQLZGNwvHWDJZQgHI6BREWGxyfADQcBoMh zJjlpUU55rR6cAp0sw3RUAlRSkA7LK3D3y/O0DbuMwWtFaUh00yujaasW744GPMV lDG16MmSwq6RmcNUkjurylPxl/hL7dqLu2WFlHckXasKZv3pfkosdkLw386qrJRc tzHxiHVLcBxnRBrkaq5V4VqaxXJWCxRwjGoYBUT1qGZ1AgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3871 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-08-25 01:01:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-10-03 20:09:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT06391499' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)14' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mail.ckvt.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 5188046308255457205353732409811410827570795891435388102059664626944143640351044845719600004831188354097751783536038178645669603735090997040632755042498476325626924311505281075193845335981304745707700989944645821461377653491834070215225740336406914193035918787402462044105484206941580415591871717963772809130749170040812735336915709052041078421073169797560916452048948541635908564751714612079996616731026865581961325951870401358114720078838472161271932680328583842368706587046383398247452130609742405814251317462494672523726191607155513311618095027714517581730436336315113180885379225255497840641541152987667486838887399876189275615959155045798412934225158400576738452749649070472382900825971829330764429837913720823810961463318535736108846814558434059753377110009612240289693051012237281051824345236418272396053170109897932578488813490857619655307814622958373881573043765270678843863665809670613685069343934035308095222605429 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f3b5560cc409b0b4cf1faaf9dd2356f077e8a1f9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcb.com/gz.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.ckvt.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcb.com/gz.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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