vitaliteitsknip.nl
Issued by R3
About this certificate
This digital certificate with serial number 04:82:73:75:c6:42:c9:eb:ec:22:ff:a8:c9:37:be:c2:34:7c was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=vitaliteitsknip.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:82:73:75:c6:42:c9:eb:ec:22:ff:a8:c9:37:be:c2:34:7cSerial Number (int): 392839324166219352685588764326922081678460
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b2:db:e1:71:af:66:3d:5d:2a:24:b7:3a:96:fe:8f:f2:30:89:9e:a5
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 82:a7:a4:89:00:0a:74:5e:a8:e1:45:b3:1c:32:fd:35:97:5f:6c:b7
Fingerprint (sha256): 43:ac:e1:33:eb:28:14:77:c3:b7:e7:ed:f4:00:cc:8f:9d:56:27:26:0f:bb:99:c7:ab:2b:51:e2:35:74:ef:1a
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate vitaliteitsknip.nl
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vitaliteitsknip.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
heerlen.vitaliteitsknip.nl
mail.vitaliteitsknip.nl
vitaliteitsknip.nl
www.heerlen.vitaliteitsknip.nl
www.vitaliteitsknip.nl
mail.vitaliteitsknip.nl
vitaliteitsknip.nl
www.heerlen.vitaliteitsknip.nl
www.vitaliteitsknip.nl
Other certificates including the domain name vitaliteitsknip.nl
(limited to 100 certificates)
nanitetracker.com
gloryofgodcenter.org
goto.upstreamapp.com
ref.veil.mobi
vitaliteitsknip.nl
tema2.zeplinx.com
goto.upstreamapp.com
homolog.ricshowdepremios.com.br
vitaliteitsknip.nl
htwwwcg.kythias.com
www.filingstack.com
employees.ummnh.com
dashboard.heerlen.vitaliteitsknip.nl
thepickatune.com
www.tree-of-light.co.za
messages.xpel.app
www.joaoliveira.com
inscripciones.app
careerdiscovery2021.com
www.dextek.com.mx
www.gracelandchiangmai99.com
www.tree-of-light.co.za
www.genilson.dev
rossman.besafe.school
gloryofgodcenter.org
goto.upstreamapp.com
ref.veil.mobi
vitaliteitsknip.nl
tema2.zeplinx.com
goto.upstreamapp.com
homolog.ricshowdepremios.com.br
vitaliteitsknip.nl
htwwwcg.kythias.com
www.filingstack.com
employees.ummnh.com
dashboard.heerlen.vitaliteitsknip.nl
thepickatune.com
www.tree-of-light.co.za
messages.xpel.app
www.joaoliveira.com
inscripciones.app
careerdiscovery2021.com
www.dextek.com.mx
www.gracelandchiangmai99.com
www.tree-of-light.co.za
www.genilson.dev
rossman.besafe.school
Certificate
The complete raw certificate details for vitaliteitsknip.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYDCCBUigAwIBAgISBIJzdcZCyevsIv+oyTe+wjR8MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTIyMDI0MjlaFw0yNDA3MTEyMDI0MjhaMB0xGzAZBgNVBAMT EnZpdGFsaXRlaXRza25pcC5ubDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoC ggIBAJxBmoXhGFicD9g/VJRltDI5MCPxL+1cW7S5lUWeCLwdnB+jGKakxbB12Wie Fe5jHCmrG7vD5cHPWBkO19GHm5G9FzuptTyPG0TksFOb561HLmJnhwOwwdfDFkTQ guVXKRirz6VoyVrjSepNAJbKXMg5tRrhiiqix379x912/P5dX7ZDHjI7EdSTjyAC bxOYredAsVQKQkVEAh26g/5+zpp34eLNmKSK29QqFHka2zJoUqJoAGM0TpByJM0d lwnIDdVwI2awP7uCV6H5dDBmPfycZf5rFpdnsixW3nujq0Pq/D0iKCMxQkC1nh4T +wVVOxHujmnH2vNOLvLScObRORW7IacjyDZmKQKpJDzKfsHAVw6YrrknJkUSJQUn 3FzfWtuewXr5FRM44+24yDTUi2YWipSxZ6WfHCzHQgv//rEefzoJHJC7qXvJRGYM Io21nFK1VkCKzMIOE3XrzWCYFWWxhfkwN/aDZVib+iGmGN5lPNageuNlYCBnlkI5 kU2uE45XSaZMcgmGs+p/iCZEiiWRt3Oiqm2Ix/wAY34KPtGXJw0QaStHrMe8oNNN sAPxS13J7FfgTcJGxvgqPxXhMw4i2K/gIjm/ws1jJeXbS+5kMNWrqaUVVdRVNlIv pytAgaQUPnu2rQeMcIYUiaEMO3+99/WuOwdUwaOMYRwHeZzrAgMBAAGjggKDMIIC fzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLLb4XGvZj1dKiS3Opb+j/IwiZ6lMB8G A1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAh BggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZo dHRwOi8vcjMuaS5sZW5jci5vcmcvMIGMBgNVHREEgYQwgYGCGmhlZXJsZW4udml0 YWxpdGVpdHNrbmlwLm5sghdtYWlsLnZpdGFsaXRlaXRza25pcC5ubIISdml0YWxp dGVpdHNrbmlwLm5sgh53d3cuaGVlcmxlbi52aXRhbGl0ZWl0c2tuaXAubmyCFnd3 dy52aXRhbGl0ZWl0c2tuaXAubmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgor BgEEAdZ5AgQCBIH0BIHxAO8AdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlG cR+1mwAAAY7UMpnUAAAEAwBHMEUCIQCoSVlIC7HZbktk4i3d4fcapYiETMNtJhcY uNMgXGhgTAIgTiIPrzGOvAdVva8+TbV9NOgQHdhnhsyJq/9fI9Vd+84AdQDf4Vbr qgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75SXAAAAY7UMpqWAAAEAwBGMEQCIHml 6j/JSrhluf5px5/Q3TdbWQT0UhwNHN7Quuzw/i+KAiAvw4jDg5nQPR4QsfPDVesg FuepWEXEqtC+kSPrnOHcBDANBgkqhkiG9w0BAQsFAAOCAQEAt/vU5S4YHuQIfGKT xWZzVnaEqV2gCsDhrKvvZs4RDTwlJR/nrJyeTFKnYl6BJ2mNNt+AAKToqYQlYL0i OlpfKJGWBSXJsaeZJxFqxxoGQsZjnNzVIp7f2EgP3uo2UZZ5iH8yo/SXut94opMB 95v3oUEw0r8FZvpwkHJqMJ8wjHGJnzDXjm8cLzpEmEdonlhygWrt7gaOKvwFWJSJ gFIpv2aPBoKvIvuHaw2Zl4Wa9FsGBtAtKZCdM+vUPOTX1ZcC+JEQLl1qyyxyf2i9 nDF15pliDO+/SmW71YOFK+klZOyVo1DTW9FG++dwGIkq9hH0gGTeJuuDhmr1GVUE qrcTig== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnEGaheEYWJwP2D9UlGW0 MjkwI/Ev7VxbtLmVRZ4IvB2cH6MYpqTFsHXZaJ4V7mMcKasbu8Plwc9YGQ7X0Yeb kb0XO6m1PI8bROSwU5vnrUcuYmeHA7DB18MWRNCC5VcpGKvPpWjJWuNJ6k0Alspc yDm1GuGKKqLHfv3H3Xb8/l1ftkMeMjsR1JOPIAJvE5it50CxVApCRUQCHbqD/n7O mnfh4s2YpIrb1CoUeRrbMmhSomgAYzROkHIkzR2XCcgN1XAjZrA/u4JXofl0MGY9 /Jxl/msWl2eyLFbee6OrQ+r8PSIoIzFCQLWeHhP7BVU7Ee6Oacfa804u8tJw5tE5 FbshpyPINmYpAqkkPMp+wcBXDpiuuScmRRIlBSfcXN9a257BevkVEzjj7bjINNSL ZhaKlLFnpZ8cLMdCC//+sR5/OgkckLupe8lEZgwijbWcUrVWQIrMwg4TdevNYJgV ZbGF+TA39oNlWJv6IaYY3mU81qB642VgIGeWQjmRTa4TjldJpkxyCYaz6n+IJkSK JZG3c6KqbYjH/ABjfgo+0ZcnDRBpK0esx7yg002wA/FLXcnsV+BNwkbG+Co/FeEz DiLYr+AiOb/CzWMl5dtL7mQw1auppRVV1FU2Ui+nK0CBpBQ+e7atB4xwhhSJoQw7 f7339a47B1TBo4xhHAd5nOsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 392839324166219352685588764326922081678460 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-12 20:24:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-11 20:24:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vitaliteitsknip.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 637469940858594318269964663032075146624638458442527318935875948175147832574470549184561551835164480673675633713353636358502133990370450294266357124462052989554905534800970937675658740413502305100286726848785802392869210048445229743666875840071032829661667214478396041212356449880043992180633176921651239528738359510562816109402771573535602674450061127917112017173746015975613392909708292241720989589615911259438114987613550640406455567375896679617242500980514964043166384420470318595687000776364029926513676430744940229062938274192547123678497583117840772054722122792308120677698714372476030721704685668527098767940097628386370011567822839764634738234282561434617109026301124907205356602784000395751684797155762979937408348448601503318959287236904195928337063023338857654137538858339789738723315687398378196502550743341122409224154007461289320922878172705811015976223258362965639466331896475103717182226881655802337688763723935237760667249497031309851923490146880901130110760953385174287551143496347787371096764543909345516102738135170017838123729021264300934956008420742616137817360470217980151973336004823595883307785061989476694703571533918464193229533944779132952876622295003242197550727819739314163952689341292669009359313411307 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b2dbe171af663d5d2a24b73a96fe8ff230899ea5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (132 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heerlen.vitaliteitsknip.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.vitaliteitsknip.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vitaliteitsknip.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heerlen.vitaliteitsknip.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vitaliteitsknip.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ed43299d40000040300473045022100a84959480bb1d96e4b64e22ddde1f71aa588844cc36d261718b8d3205c68604c02204e220faf318ebc0755bdaf3e4db57d34e8101dd86786cc89abff5f23d55dfbce007500dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ed4329a960000040300463044022079a5ea3fc94ab865b9fe69c79fd0dd375b5904f4521c0d1cded0baecf0fe2f8a02202fc388c38399d03d1e10b1f3c355eb2016e7a95845c4aad0be9123eb9ce1dc04 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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