auth.demo.foresight.ai
Issued by Amazon
About this certificate
This digital certificate with serial number 08:08:83:cb:0b:c2:0d:16:53:6b:3d:e7:a0:85:54:17 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=auth.demo.foresight.ai
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:08:83:cb:0b:c2:0d:16:53:6b:3d:e7:a0:85:54:17Serial Number (int): 10678035423761602888388415967776298007
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 13:55:a3:58:3c:d2:0e:55:c4:a7:01:2b:c0:ec:ea:bd:07:e1:16:1f
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): be:37:17:2e:a5:fe:ae:c7:93:ac:54:47:c7:8a:6c:64:ac:1b:2b:0b
Fingerprint (sha256): 6a:14:65:a5:58:ab:63:86:14:06:5c:88:e4:0e:dd:55:e0:bf:e0:63:50:3b:f3:1d:2f:82:ed:54:5f:db:0a:cf
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate auth.demo.foresight.ai
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for auth.demo.foresight.ai
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
auth.demo.foresight.ai
Other certificates including the domain name foresight.ai
(limited to 100 certificates)
foresight.ai
foresight.ai
pilots.foresight.ai
pilots.foresight.ai
demo.foresight.ai
auth.demo.foresight.ai
www.foresight.ai
data.foresight.ai
foresight.ai
www.foresight.ai
*.annotation.foresight.ai
www.foresight.ai
www.foresight.ai
www.foresight.ai
foresight.ai
foresight.ai
www.foresight.ai
foresight.ai
foresight.ai
www.foresight.ai
www.foresight.ai
foresight.ai
foresight.ai
data.foresight.ai
*.scenarios.foresight.ai
www.foresight.ai
demo.foresight.ai
foresight.ai
foresight.ai
*.annotation.foresight.ai
foresight.ai
auth.data.foresight.ai
scenarios.foresight.ai
authen.data.foresight.ai
*.annotation.foresight.ai
foresight.ai
foresight.ai
auth.demo.foresight.ai
www.foresight.ai
demo.annotation.foresight.ai
demo.foresight.ai
*.demo.scenarios.foresight.ai
auth.data.foresight.ai
www.foresight.ai
demo.annotation.foresight.ai
scenarios.foresight.ai
www.foresight.ai
pilots.foresight.ai
www.foresight.ai
foresight.ai
data.foresight.ai
demo.annotation.foresight.ai
foresight.ai
demo.foresight.ai
foresight.ai
scenarios.foresight.ai
pilots.foresight.ai
demo.foresight.ai
*.annotation.foresight.ai
www.foresight.ai
authen.data.foresight.ai
scenarios.foresight.ai
*.annotation.foresight.ai
www.foresight.ai
foresight.ai
demo.annotation.foresight.ai
www.foresight.ai
www.foresight.ai
www.foresight.ai
www.foresight.ai
foresight.ai
foresight.ai
*.demo.scenarios.foresight.ai
foresight.ai
foresight.ai
data.foresight.ai
foresight.ai
foresight.ai
www.foresight.ai
www.foresight.ai
foresight.ai
demo.foresight.ai
foresight.ai
foresight.ai
www.foresight.ai
www.foresight.ai
foresight.ai
pilots.foresight.ai
pilots.foresight.ai
demo.foresight.ai
auth.demo.foresight.ai
www.foresight.ai
data.foresight.ai
foresight.ai
www.foresight.ai
*.annotation.foresight.ai
www.foresight.ai
www.foresight.ai
www.foresight.ai
foresight.ai
foresight.ai
www.foresight.ai
foresight.ai
foresight.ai
www.foresight.ai
www.foresight.ai
foresight.ai
foresight.ai
data.foresight.ai
*.scenarios.foresight.ai
www.foresight.ai
demo.foresight.ai
foresight.ai
foresight.ai
*.annotation.foresight.ai
foresight.ai
auth.data.foresight.ai
scenarios.foresight.ai
authen.data.foresight.ai
*.annotation.foresight.ai
foresight.ai
foresight.ai
auth.demo.foresight.ai
www.foresight.ai
demo.annotation.foresight.ai
demo.foresight.ai
*.demo.scenarios.foresight.ai
auth.data.foresight.ai
www.foresight.ai
demo.annotation.foresight.ai
scenarios.foresight.ai
www.foresight.ai
pilots.foresight.ai
www.foresight.ai
foresight.ai
data.foresight.ai
demo.annotation.foresight.ai
foresight.ai
demo.foresight.ai
foresight.ai
scenarios.foresight.ai
pilots.foresight.ai
demo.foresight.ai
*.annotation.foresight.ai
www.foresight.ai
authen.data.foresight.ai
scenarios.foresight.ai
*.annotation.foresight.ai
www.foresight.ai
foresight.ai
demo.annotation.foresight.ai
www.foresight.ai
www.foresight.ai
www.foresight.ai
www.foresight.ai
foresight.ai
foresight.ai
*.demo.scenarios.foresight.ai
foresight.ai
foresight.ai
data.foresight.ai
foresight.ai
foresight.ai
www.foresight.ai
www.foresight.ai
foresight.ai
demo.foresight.ai
foresight.ai
foresight.ai
www.foresight.ai
www.foresight.ai
Certificate
The complete raw certificate details for auth.demo.foresight.ai in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEgjCCA2qgAwIBAgIQCAiDywvCDRZTaz3noIVUFzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA4MTEwMDAwMDBaFw0yMDA5MTEx MjAwMDBaMCExHzAdBgNVBAMTFmF1dGguZGVtby5mb3Jlc2lnaHQuYWkwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkB0VjpriTQ+d+daRUSnElyCCvjOio qgfNcBqgEfQOhRjZ0lo5gDM6kiqnhcErvM3iMnZj6ImgTymlqdmOglifr5M7bVaW +716alLU/GfECXc68B0tMZAztiUPVMh3hyAkkWJCMzHVGM25jJaS6bsk40zo/CXm OjbvPL7LyVlNhTmWIdaz4qRk1V8ASfBNMA8jNOb0ZMMAbaiuaTyZMwDxZB8HM07H LP/mlTIlXmuadhY1gdGE0xN5vjhCC/8Q7GZHwLnO2VbW2R5VKPc3eQWZNdBSHEQR Xtcqg8kgbgh17VJBq36v4nXOFTqaAa9Yh9Az4YXflcelKB0MeL/j7lbXAgMBAAGj ggGPMIIBizAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4E FgQUE1WjWDzSDlXEpwErwOzqvQfhFh8wIQYDVR0RBBowGIIWYXV0aC5kZW1vLmZv cmVzaWdodC5haTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1h em9udHJ1c3QuY29tL3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAI BgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2Nz cC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQu c2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMBMG CisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBlrgVRwho8MEKH g3YnHUiE3fHs03XcgZgJJC3Hi5cx5zBYnhRApL9lmWaol3GDK83182A8kYUj8WZw 4yzwAr6uI91zfGbz8lAMs8n4kY6IDBt5773cA+XXTNaqACz84BGmS6CtjCDjrKjj c7hVKNpyEt2w9Y0OIXYZWoYhc+f0t8jC0ONozAWg7GIeZ5QuewXf1GLuAbJO+Ajb /vljvhhIhyPpDyUFAUVctloooGSZJQI3Ez/MFQc/7AS7l0Bt1jS2qXiHY131GsfR ja3vCByViwyey0pnE0TpEaOMKJXOjD+DJJn/ZFNSS9FhIH4moGV8Sxou9KJRiQX7 xj9o9JkW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApAdFY6a4k0PnfnWkVEpx Jcggr4zoqKoHzXAaoBH0DoUY2dJaOYAzOpIqp4XBK7zN4jJ2Y+iJoE8ppanZjoJY n6+TO21Wlvu9empS1PxnxAl3OvAdLTGQM7YlD1TId4cgJJFiQjMx1RjNuYyWkum7 JONM6Pwl5jo27zy+y8lZTYU5liHWs+KkZNVfAEnwTTAPIzTm9GTDAG2ormk8mTMA 8WQfBzNOxyz/5pUyJV5rmnYWNYHRhNMTeb44Qgv/EOxmR8C5ztlW1tkeVSj3N3kF mTXQUhxEEV7XKoPJIG4Ide1SQat+r+J1zhU6mgGvWIfQM+GF35XHpSgdDHi/4+5W 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10678035423761602888388415967776298007 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-11 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'auth.demo.foresight.ai' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20706667503712889541866069057914855013629188672063272337917383143897166342001658651041493961048360258163004638961057204147808283585125962200143120995471044312161850057704942498607602716787571065352892107577106268042973342756277260600066999630122676168397483471295833147802072716773391787739764107811164742368702450326953641416997606013789584428763394328313015566657679511914456136241113219968996234380076615172843940062895518814535641075867406302086013605062374069726721461998256969653839445446504456424501641522700426452127127316547582137802776389757479539004480670182070901643306741919545665448116224632027589007063 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1355a3583cd20e55c4a7012bc0eceabd07e1161f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'auth.demo.foresight.ai' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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