*.atletico.com.br

Issued by Amazon RSA 2048 M01

About this certificate

This digital certificate with serial number 0b:b4:aa:c0:9d:91:10:27:20:1a:e6:b6:e0:ef:1c:0b was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=*.atletico.com.br

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 0b:b4:aa:c0:9d:91:10:27:20:1a:e6:b6:e0:ef:1c:0b
Serial Number (int): 15559584658374684163197712836359822347
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 70:9e:5d:2c:db:80:e9:bc:ce:6b:21:78:3f:f9:3c:61:6c:fa:67:ed
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85

Fingerprint (sha1): 17:b5:17:c3:91:01:53:d9:6e:77:2c:95:3e:9e:52:11:f9:12:13:0a
Fingerprint (sha256): 3a:53:8e:1e:db:1e:c8:83:08:40:af:63:1b:04:cb:c9:6e:8f:a6:53:a7:a6:08:68:ce:3b:d1:d3:ad:0b:d2:08

Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer

Revocation information

OCSP Server: http://ocsp.r2m01.amazontrust.com
CRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl

Check the revocation status for certificate *.atletico.com.br

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.atletico.com.br

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.atletico.com.br
atletico.com.br

Other certificates including the domain name atletico.com.br

(limited to 100 certificates)
saf.atletico.com.br
atletico.com.br
atletico.com.br
blueskyucs.nl
galodevantagens.atletico.com.br
www.lojadogalo.com.br
www.lojadogalo.com.br
link.atletico.com.br
www.intersa.ec
sc7.senior-coding.com
wpadmin.atletico.com.br
www.lojadogalo.com.br
appdogalo.atletico.com.br
www.atletico.com.br
www.lojadogalo.com.br
api-ingresso.atletico.com.br
www.atletico.com.br
dev-okr.coda.global
fundadores-territorioalvinegro.atletico.com.br
www.lojadogalo.com.br
www.lojadogalo.com.br
www.lojadogalo.com.br
atletico.com.br
pricepointdaddy.com
www.atletico.com.br
www.reebokescapepark.com
api-ingresso.atletico.com.br
www.workwithdignity.org
galodevantagens.atletico.com.br
www.sencillogic.com
www.lojadogalo.com.br
atletico.com.br
*.atletico.com.br
*.atletico.com.br
www.therealbitcoin.club
atletico.com.br
fit.camackenzie.com
lojadogalo.com.br
relatorios.atletico.com.br
englandnetball.tv
www.lojadogalo.com.br
*.viagens.atletico.com.br
ferkithome.com
www.atletico.com.br
codiig.com
wpadmin.atletico.com.br
*.atletico.com.br
portfolio.acrux.jp
atletico.com.br
wpadmin.atletico.com.br
www.lojadogalo.com.br
primehilltop.ae
www.lojadogalo.com.br
www.lojadogalo.com.br
ndca-bar.justinramel.com
*.atletico.com.br
*.atletico.com.br
galodevantagens.atletico.com.br
www.atletico.com.br
relatorios.atletico.com.br
order.la-cherie.in
atletico.com.br
www.lojadogalo.com.br
atletico.com.br
www.lojadogalo.com.br
canaletico.atletico.com.br
atletico.com.br
click.mkt.atletico.com.br
www.lojadogalo.com.br
atletico.com.br
atletico.com.br
www.pngenterprises.com
lojadogalo.com.br
www.lojadogalo.com.br
galonaveia.atletico.com.br
ingressoanual.atletico.com.br
www.lojadogalo.com.br
www.lojadogalo.com.br
suporte.atletico.com.br
atletico.com.br
interno-gnv.atletico.com.br
atletico.com.br
api-ingresso.atletico.com.br
api-site.atletico.com.br
www.atletico.com.br
atletico.com.br
galonaveia.atletico.com.br
api-ingresso.atletico.com.br
galodevantagens.atletico.com.br
www.lojadogalo.com.br
atletico.com.br
api-ingresso.atletico.com.br
atletico.com.br
atletico.com.br
www.atletico.com.br
atletico.com.br
tilt.strollhere.com
lojadogalo.atletico.com.br
criadores-territorioalvinegro.atletico.com.br
qas-relatorios.atletico.com.br

Certificate

The complete raw certificate details for *.atletico.com.br in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIF3zCCBMegAwIBAgIQC7SqwJ2RECcgGua24O8cCzANBgkqhkiG9w0BAQsFADA8
MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g
UlNBIDIwNDggTTAxMB4XDTIzMDcwNDAwMDAwMFoXDTI0MDgwMTIzNTk1OVowHDEa
MBgGA1UEAwwRKi5hdGxldGljby5jb20uYnIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCkbAsY+oH4BakYyv9V+IIUZLpyPH8diirk2uKH+QjkXU9mrs2c
bp1Bpk8R4cd3dfIQ0fno4gWpZbeMS3F2ybnOCgMJl0ifswBoQQglUonWvC1mfwER
WL0HHcy5hBWTTE/dy/BhNAw9N1y5Ip5vhEjgIWpqvB67t7jJOZldRNCMgLuwwlEH
XnG6Z/uQn1DaeSH+A8MMYxyiTVSxa4DCZfQHggbvEGkNoaD300ihG04K1vxcRofE
t6ZE0hwBruqLZT3zlqAUXm6v8R63Rb1La4Cy99AWecGDrlSbALwpWr3KcHos/bYA
VPPelJJnlw7+WLwCVw1ySIxEdeGZt3lmpqvzAgMBAAGjggL7MIIC9zAfBgNVHSME
GDAWgBSBuA5jiokSGOX6OztQlZ/m5ZAThTAdBgNVHQ4EFgQUcJ5dLNuA6bzOayF4
P/k8YWz6Z+0wLQYDVR0RBCYwJIIRKi5hdGxldGljby5jb20uYnKCD2F0bGV0aWNv
LmNvbS5icjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG
AQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDEuYW1hem9u
dHJ1c3QuY29tL3IybTAxLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEF
BQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAxLmFtYXpvbnRy
dXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMS5hbWF6b250cnVz
dC5jb20vcjJtMDEuY2VyMAwGA1UdEwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIB
bgSCAWoBaAB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABiSIV
/osAAAQDAEcwRQIgEzEMZgqcOZS3LovyjIDUNg2ehzAKmmg9MXNLZ6dXYp0CIQCV
tB3R3iYvhwJvxzjVS9Sq/7Qwa8BvK4xPImPleTkx3QB2AEiw42vapkc0D+VqAvqd
MOscUgHLVt0sgdm7v6s52IRzAAABiSIV/usAAAQDAEcwRQIgXu+vRh6l9JYXbAYk
Cg4q+WjnC/qQZKrDw1ktCSLxm9wCIQDPMIqvD4PtO/Xc9vzG+AJb+/z27yQLbxL9
QUDu4SeoEwB2ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiSIV
/rUAAAQDAEcwRQIhAI75VJXQNHnWqeNBwzKsSaBiROPXxYNdP5At2KNZCJGvAiAe
a/Zvm0mL1oet4xmI2CsRn6rcgLQbuKiFO7+wU+eGfzANBgkqhkiG9w0BAQsFAAOC
AQEAO5HgHKwDd36cuuQYOWFlU10HhVE69/28a9hPDNIJ3+V2Oq0vbpsfPGW9Pp/T
f6S+DHT7kl5+w9SV6X8bf67bufGavFmDxtIzo4J42n0qN9VjiFTtAUejP8P9SmAf
SvS2xUQGiZHwaME7wPKrinWo3KMmVXZpU2OtTbalDAFlzFlQOj8VhP2Q2ORIxqiK
WYkQ/atBIm6CH5AgG14xIWhJiYw4aVEU7CPcdckedlD/Qx+X3XQ+La9d62n/TtkI
DMENA1idWxF1HFdK8TwYB2LatBhmGaPrCu2zH+mojPByP0/JGtnzQzak2DEyc248
GxiNSyiARHNgBvwsSOZ3h8lK3A==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGwLGPqB+AWpGMr/VfiC
FGS6cjx/HYoq5Nrih/kI5F1PZq7NnG6dQaZPEeHHd3XyENH56OIFqWW3jEtxdsm5
zgoDCZdIn7MAaEEIJVKJ1rwtZn8BEVi9Bx3MuYQVk0xP3cvwYTQMPTdcuSKeb4RI
4CFqarweu7e4yTmZXUTQjIC7sMJRB15xumf7kJ9Q2nkh/gPDDGMcok1UsWuAwmX0
B4IG7xBpDaGg99NIoRtOCtb8XEaHxLemRNIcAa7qi2U985agFF5ur/Eet0W9S2uA
svfQFnnBg65UmwC8KVq9ynB6LP22AFTz3pSSZ5cO/li8AlcNckiMRHXhmbd5Zqar
8wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 15559584658374684163197712836359822347
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-04 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-01 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.atletico.com.br'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20756360175969810324258704171874880474994811598615754421666842482052281791208883488477813517664667754621447956887422725468839170508551876616286822075528840447506111390941636441256258310649730952102855944702447903119280177598719000062219870875715543992301597705249324998458112573881691300895828251841084241478917192074128430193093957303735844710349489102549294263416248734697560876792787950250030840402188943823512230749981515751946520794267185150649695377624060248740912192285080567481616424874620227313089897686930760094391324941166091334972128371513418955009381275849947898482160731015624090305113484862802652212211
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							709e5d2cdb80e9bcce6b21783ff93c616cfa67ed
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.atletico.com.br'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'atletico.com.br'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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