git.tomasu.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d3:52:b9:81:71:36:4f:0d:e5:b0:81:3d:bf:bc:c6:ae:5a was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=git.tomasu.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d3:52:b9:81:71:36:4f:0d:e5:b0:81:3d:bf:bc:c6:ae:5aSerial Number (int): 333246397111572376771808375208048056512090
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5f:b9:0d:3e:07:44:0e:fe:3c:cc:3e:4c:26:ee:ab:ad:09:3d:fc:47
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6e:cf:88:5d:a6:9d:1f:16:aa:bb:9c:4b:c6:a4:9d:0a:f3:e7:4c:10
Fingerprint (sha256): 64:a3:51:1e:bd:cb:93:67:26:42:20:d5:33:13:40:69:24:1f:36:80:e5:cd:1b:09:22:a2:17:b6:46:44:37:9e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate git.tomasu.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for git.tomasu.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
git.tomasu.org
Other certificates including the domain name tomasu.org
(limited to 100 certificates)
wiki.allegro.cc
firewall.tomasu.org
cloud.tomasu.org
firewall.tomasu.org
cloud.tomasu.org
rtpproxy.tomasu.org
git.tomasu.org
cloud.tomasu.org
git.tomasu.org
cloud.tomasu.org
wiki.allegro.cc
git.tomasu.org
git.tomasu.org
parked.tomasu.net
cloud.tomasu.org
maven.tomasu.org
cloud.tomasu.org
parked.tomasu.net
git.tomasu.org
firewall.tomasu.org
firewall.tomasu.org
firewall.tomasu.org
cloud.tomasu.org
tomasu.org
parked.tomasu.net
wiki.allegro.cc
wiki.allegro.cc
git.tomasu.org
parked.tomasu.net
cloud.tomasu.org
cloud.tomasu.org
git.tomasu.org
git.tomasu.org
wiki.allegro.cc
tomasu.org
gitregistry.tomasu.org
realm-db.tomasu.org
git.tomasu.org
git.tomasu.org
git.tomasu.org
git.tomasu.org
maven.tomasu.org
wiki.allegro.cc
wiki.allegro.cc
firewall.tomasu.org
git.tomasu.org
cloud.tomasu.org
git.tomasu.org
git.tomasu.org
wiki.allegro.cc
wiki.allegro.cc
firewall.tomasu.org
tomasu.org
firewall.tomasu.org
cloud.tomasu.org
git.tomasu.org
cloud.tomasu.org
cloud.tomasu.org
git.tomasu.org
parked.tomasu.net
firewall.tomasu.org
firewall.tomasu.org
parked.tomasu.net
wiki.allegro.cc
cloud.tomasu.org
firewall.tomasu.org
firewall.tomasu.org
cloud.tomasu.org
wiki.allegro.cc
firewall.tomasu.org
firewall.tomasu.org
wiki.allegro.cc
firewall.tomasu.org
git.tomasu.org
parked.tomasu.net
firewall.tomasu.org
wiki.allegro.cc
parked.tomasu.net
wiki.allegro.cc
cloud.tomasu.org
firewall.tomasu.org
git.tomasu.org
firewall.tomasu.org
firewall.tomasu.org
parked.tomasu.net
wiki.allegro.cc
git.tomasu.org
git.tomasu.org
cloud.tomasu.org
firewall.tomasu.org
cloud.tomasu.org
firewall.tomasu.org
cloud.tomasu.org
rtpproxy.tomasu.org
git.tomasu.org
cloud.tomasu.org
git.tomasu.org
cloud.tomasu.org
wiki.allegro.cc
git.tomasu.org
git.tomasu.org
parked.tomasu.net
cloud.tomasu.org
maven.tomasu.org
cloud.tomasu.org
parked.tomasu.net
git.tomasu.org
firewall.tomasu.org
firewall.tomasu.org
firewall.tomasu.org
cloud.tomasu.org
tomasu.org
parked.tomasu.net
wiki.allegro.cc
wiki.allegro.cc
git.tomasu.org
parked.tomasu.net
cloud.tomasu.org
cloud.tomasu.org
git.tomasu.org
git.tomasu.org
wiki.allegro.cc
tomasu.org
gitregistry.tomasu.org
realm-db.tomasu.org
git.tomasu.org
git.tomasu.org
git.tomasu.org
git.tomasu.org
maven.tomasu.org
wiki.allegro.cc
wiki.allegro.cc
firewall.tomasu.org
git.tomasu.org
cloud.tomasu.org
git.tomasu.org
git.tomasu.org
wiki.allegro.cc
wiki.allegro.cc
firewall.tomasu.org
tomasu.org
firewall.tomasu.org
cloud.tomasu.org
git.tomasu.org
cloud.tomasu.org
cloud.tomasu.org
git.tomasu.org
parked.tomasu.net
firewall.tomasu.org
firewall.tomasu.org
parked.tomasu.net
wiki.allegro.cc
cloud.tomasu.org
firewall.tomasu.org
firewall.tomasu.org
cloud.tomasu.org
wiki.allegro.cc
firewall.tomasu.org
firewall.tomasu.org
wiki.allegro.cc
firewall.tomasu.org
git.tomasu.org
parked.tomasu.net
firewall.tomasu.org
wiki.allegro.cc
parked.tomasu.net
wiki.allegro.cc
cloud.tomasu.org
firewall.tomasu.org
git.tomasu.org
firewall.tomasu.org
firewall.tomasu.org
parked.tomasu.net
wiki.allegro.cc
git.tomasu.org
git.tomasu.org
cloud.tomasu.org
Certificate
The complete raw certificate details for git.tomasu.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISA9NSuYFxNk8N5bCBPb+8xq5aMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzExMjkwNjQ3MThaFw0x ODAyMjcwNjQ3MThaMBkxFzAVBgNVBAMTDmdpdC50b21hc3Uub3JnMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+ioSSKMjNdiGsUjIFx6cb+oLeDvgyOsJ 3ZELZf9m2wLj9MLZEacccb16OwFWdn8NivS3NKDb8X5PkaN5VXOa1K1cRtZaeY1g EDHdO+swBGuge8anTycSGsBQ2e96IjhfyenRqi3cGmwlkV0cbv3vr56WHZWk4Gzx XU+LkZ9QD30m07mO8SWIi7x1U0j5QzngDElPCBlorRh+WpfPA9McDSPBJzCOO3WR gj+cIbposSd87f4h6f2d6Q+8QjaFUPeSq9laGQl0BMWB3FGeYYJIRqpfu3PtacJd BDZIiGylSn7xnFCi6JFvvNjkykn2bSSyWLclGTBvWJK+tUQEeZsezwIDAQABo4IC DjCCAgowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRfuQ0+B0QO/jzMPkwm7qutCT38 RzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRj MGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5v cmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5v cmcvMBkGA1UdEQQSMBCCDmdpdC50b21hc3Uub3JnMIH+BgNVHSAEgfYwgfMwCAYG Z4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nw cy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZp Y2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMg YW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xp Y3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8w DQYJKoZIhvcNAQELBQADggEBAGOr7maXOc5b1NFxwZlAa+WM8iQJ+ImNl/lYLD5W wsQPXv+QU9hI/yO4JuWDt2a6HkjLbwbq6OlYPp2FTVlq4hor6Huwx8cx6/QQYc4P veBCnmhkPXxYBp/f9ShSSjJLeGikEeqNF4rsAkS7BBXoGT6jNBEmeSl1Qojsb8KA QGEXuulyVQGmHVLFG7lTqPeeSXGa4Pi1A2P4IpXZpGAkNh4EKrh7wOi8H7mn6ZTs QHWT8vuB/7UwV/kD2UeTK2LsUisDY4ZyfpanivuDp7U39hIrTVdaGuh1sibgzP8c 9eSs4j0/ah2kfjIBLFN03KQ1c1vjo/3zcq20FKqtTUCpPQ0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+ioSSKMjNdiGsUjIFx6c b+oLeDvgyOsJ3ZELZf9m2wLj9MLZEacccb16OwFWdn8NivS3NKDb8X5PkaN5VXOa 1K1cRtZaeY1gEDHdO+swBGuge8anTycSGsBQ2e96IjhfyenRqi3cGmwlkV0cbv3v r56WHZWk4GzxXU+LkZ9QD30m07mO8SWIi7x1U0j5QzngDElPCBlorRh+WpfPA9Mc DSPBJzCOO3WRgj+cIbposSd87f4h6f2d6Q+8QjaFUPeSq9laGQl0BMWB3FGeYYJI Rqpfu3PtacJdBDZIiGylSn7xnFCi6JFvvNjkykn2bSSyWLclGTBvWJK+tUQEeZse zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 333246397111572376771808375208048056512090 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-29 06:47:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-27 06:47:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'git.tomasu.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31580322432360150822700250019433449691066481811269252008715116629752687031612283072434898724354673624404599168018849753120474829041344236439167586854602867222408448914818111805325939638284669950159101771314130337310496695578075615471556505338726936995614247254148979213948619403593457941094835711550733867084841678611892656873000144518200924981278282566302946718877210158794578974287281642418898959812559382080938594896967083422168545404636028899678409611590110333828095483360317261866628438536960304317356127391523412281547565218784647275941695081159198516797394241563058948378148301067009771700887837057506267045583 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5fb90d3e07440efe3ccc3e4c26eeabad093dfc47 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'git.tomasu.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0063abee669739ce5bd4d171c199406be58cf22409f8898d97f9582c3e56c2c40f5eff9053d848ff23b826e583b766ba1e48cb6f06eae8e9583e9d854d596ae21a2be87bb0c7c731ebf41061ce0fbde0429e68643d7c58069fdff528524a324b7868a411ea8d178aec0244bb0415e8193ea33411267929754288ec6fc280406117bae9725501a61d52c51bb953a8f79e49719ae0f8b50363f82295d9a46024361e042ab87bc0e8bc1fb9a7e994ec407593f2fb81ffb53057f903d947932b62ec522b036386727e96a78afb83a7b537f6122b4d575a1ae875b226e0ccff1cf5e4ace23d3f6a1da47e32012c5374dca435735be3a3fdf372adb414aaad4d40a93d0d