vivalib.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d4:d0:89:d7:35:e3:6f:56:dc:84:1c:fc:99:97:bb:c3:89 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=vivalib.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d4:d0:89:d7:35:e3:6f:56:dc:84:1c:fc:99:97:bb:c3:89Serial Number (int): 333753914715300121063608110409678585578377
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: aa:bc:23:a1:1a:ef:40:21:78:f2:23:52:08:30:3a:57:c4:1d:0c:ec
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 5e:b6:bc:33:24:49:18:3f:0a:dc:d5:02:4e:9a:c7:5c:d7:db:41:75
Fingerprint (sha256): 70:09:8e:42:e3:3d:7c:91:fb:56:00:11:4e:3f:3b:ec:9f:fb:26:0d:c6:64:8f:55:5a:4b:48:18:b5:7f:6b:50
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate vivalib.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vivalib.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vivalib.org
www.vivalib.org
www.vivalib.org
Other certificates including the domain name vivalib.org
(limited to 100 certificates)
sampledata.vivalib.org
usagedata.vivalib.org
usagedata.vivalib.org
vivalib.org
files.vivalib.org
vivalib.org
files.vivalib.org
vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
usagedata.vivalib.org
usagedata.vivalib.org
usagedata.vivalib.org
usagedata.vivalib.org
sampledata.vivalib.org
usagedata.vivalib.org
protectedtitles.vivalib.org
usagedata.vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
sampledata.vivalib.org
vivalib.org
sampledata.vivalib.org
sampledata.vivalib.org
files.vivalib.org
files.vivalib.org
protectedtitles.vivalib.org
sampledata.vivalib.org
usagedata.vivalib.org
files.vivalib.org
usagedata.vivalib.org
vivalib.org
vivalib.org
vivalib.org
usagedata.vivalib.org
sampledata.vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
usagedata.vivalib.org
sampledata.vivalib.org
sampledata.vivalib.org
vivalib.org
vivalib.org
sampledata.vivalib.org
sampledata.vivalib.org
usagedata.vivalib.org
vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
vivalib.org
sampledata.vivalib.org
vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
sampledata.vivalib.org
usagedata.vivalib.org
protectedtitles.vivalib.org
usagedata.vivalib.org
sampledata.vivalib.org
vivalib.org
vivalib.org
protectedtitles.vivalib.org
sampledata.vivalib.org
files.vivalib.org
usagedata.vivalib.org
usagedata.vivalib.org
vivalib.org
files.vivalib.org
vivalib.org
files.vivalib.org
vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
usagedata.vivalib.org
usagedata.vivalib.org
usagedata.vivalib.org
usagedata.vivalib.org
sampledata.vivalib.org
usagedata.vivalib.org
protectedtitles.vivalib.org
usagedata.vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
sampledata.vivalib.org
vivalib.org
sampledata.vivalib.org
sampledata.vivalib.org
files.vivalib.org
files.vivalib.org
protectedtitles.vivalib.org
sampledata.vivalib.org
usagedata.vivalib.org
files.vivalib.org
usagedata.vivalib.org
vivalib.org
vivalib.org
vivalib.org
usagedata.vivalib.org
sampledata.vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
usagedata.vivalib.org
sampledata.vivalib.org
sampledata.vivalib.org
vivalib.org
vivalib.org
sampledata.vivalib.org
sampledata.vivalib.org
usagedata.vivalib.org
vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
vivalib.org
sampledata.vivalib.org
vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
protectedtitles.vivalib.org
sampledata.vivalib.org
usagedata.vivalib.org
protectedtitles.vivalib.org
usagedata.vivalib.org
sampledata.vivalib.org
vivalib.org
vivalib.org
protectedtitles.vivalib.org
sampledata.vivalib.org
files.vivalib.org
Certificate
The complete raw certificate details for vivalib.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgISA9TQidc1429W3IQc/JmXu8OJMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjUxMjEzMDdaFw0x OTA2MjMxMjEzMDdaMBYxFDASBgNVBAMTC3ZpdmFsaWIub3JnMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxT1puIECE77f9eIwOLM5LBf2BpIeRFonmo8A iycpzW6tBrtmsD6bxtWnwiF00Zo4pcejhTWtoDQEL0xr2XnomkoFE3VZXldGxR+l ibLt7buA0JMCRo9Dlfn/kp5o3CpKXvrt9XtNjPe0Rw1WE6blos4Dgdc8L+QfVmp1 QWiWS4NZPXaTbSwYEF840pkzb5JKpnexS1hdo7ok58bMjqMhwBIgm0VUFLxMwU4r WrMLq9sdW6B/OM9jBzdvjGfGVldHpbqUi8N8B2xZqPQk8r2dVEXEF99iA6ZAoncK JhUqXJAmggIMsrt4ceqopA1izAXPwjxg/rTJnlHMWIh5u19XXwIDAQABo4ICcjCC Am4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSqvCOhGu9AIXjyI1IIMDpXxB0M7DAf BgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEw LgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcw LwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcv MCcGA1UdEQQgMB6CC3ZpdmFsaWIub3Jngg93d3cudml2YWxpYi5vcmcwTAYDVR0g BEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0 cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEA dgB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWm0+7PQAAAEAwBH MEUCIQCy0zGM2B1fYCLpV/2jwwfx3uhIIdGPUMMD2VRjfI7iwwIgLUjIgK4bvqbn 3M0Lbm2h7kKGIbtRNRjPzgUQ3Eg0Mb4AdwApPFGWVMg5ZbqqUPxYB9S3b79Yeily 3KTDDPTlRUf0eAAAAWm0+7HVAAAEAwBIMEYCIQDGZRnrmnsv3HHYwVoKZbLQf2M3 2JS+mVBC9NRLcL+a3QIhAM/NIX6D767NiICdzIo1pqeEjURnxrI8Fn62j6wZRpXl MA0GCSqGSIb3DQEBCwUAA4IBAQAobOxf7QS9CokXHuRlsbVvvRfGelY8GSXd+Znv yypian1+JD7dJrOtr1i94d6qCYexMv1QVVyLxanP1I7SH6szlfJ9KLbQd6AhsVTU evuUvYNCyrBFt8Z8U7y8yddhF/acZvEVMv2NmXyM1jAgHKmlo0AVKcCH8VcQZDB0 NxAUV6Lf9n+ZaeAN5smUAxYzwT6fABb4XyD8XoJALRl95cAcfTwzYto50V4u8NqI 4iU4LaRPyYgcNOEdmpjpS9OfxKrcHoVzW6Xvj3PjH68rqiXb8CWASQwC7st6l1Yb sJQidPZcTBou8ucfuauCcEsO9RjePq178UM/a2BBB4VsiIoB -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxT1puIECE77f9eIwOLM5 LBf2BpIeRFonmo8AiycpzW6tBrtmsD6bxtWnwiF00Zo4pcejhTWtoDQEL0xr2Xno mkoFE3VZXldGxR+libLt7buA0JMCRo9Dlfn/kp5o3CpKXvrt9XtNjPe0Rw1WE6bl os4Dgdc8L+QfVmp1QWiWS4NZPXaTbSwYEF840pkzb5JKpnexS1hdo7ok58bMjqMh wBIgm0VUFLxMwU4rWrMLq9sdW6B/OM9jBzdvjGfGVldHpbqUi8N8B2xZqPQk8r2d VEXEF99iA6ZAoncKJhUqXJAmggIMsrt4ceqopA1izAXPwjxg/rTJnlHMWIh5u19X XwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 333753914715300121063608110409678585578377 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-25 12:13:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-23 12:13:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vivalib.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24899229943283247136584980656681169170277671014053309520423304843707072709980394793878422072382351964238265332292395273312995355981432265532027131622219029823180437093671140677348390061571693682838929169102696811058831944348833117212631039123351936513888245132993145983963183017467762399930035562200359506471561146705915256448007502864790519544583632017882066735690123657046010472426619181915834509269377330897725779261032980401597529802324928142115922047711734871497222516155653576728177816357780399843428238090625336268852037740889371331457778035735067226298382592935672060331068545831074948924865459200305011840863 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aabc23a11aef402178f2235208303a57c41d0cec . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vivalib.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vivalib.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169b4fbb3d00000040300473045022100b2d3318cd81d5f6022e957fda3c307f1dee84821d18f50c303d954637c8ee2c302202d48c880ae1bbea6e7dccd0b6e6da1ee428621bb513518cfce0510dc483431be007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000169b4fbb1d50000040300483046022100c66519eb9a7b2fdc71d8c15a0a65b2d07f6337d894be995042f4d44b70bf9add022100cfcd217e83efaecd88809dcc8a35a6a7848d4467c6b23c167eb68fac194695e5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00286cec5fed04bd0a89171ee465b1b56fbd17c67a563c1925ddf999efcb2a626a7d7e243edd26b3adaf58bde1deaa0987b132fd50555c8bc5a9cfd48ed21fab3395f27d28b6d077a021b154d47afb94bd8342cab045b7c67c53bcbcc9d76117f69c66f11532fd8d997c8cd630201ca9a5a3401529c087f1571064307437101457a2dff67f9969e00de6c994031633c13e9f0016f85f20fc5e82402d197de5c01c7d3c3362da39d15e2ef0da88e225382da44fc9881c34e11d9a98e94bd39fc4aadc1e85735ba5ef8f73e31faf2baa25dbf02580490c02eecb7a97561bb0942274f65c4c1a2ef2e71fb9ab82704b0ef518de3ead7bf1433f6b604107856c888a01