ebid.keiyaku.city.hiroshima.lg.jp

- Hiroshima City -

Issued by SECOM Passport for Web SR 3.0 CA

About this certificate

This digital certificate with serial number 73:b5:1d:c9:af:a1:2e:e6 was issued on by SECOM Trust Systems CO.,LTD..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate (BRs: 7.1.2.3)

Hiroshima City

Organization: Hiroshima City
Organization unit: Hiroshima City Zaiseikyoku Keiyakubu12
State / Province: Hiroshima
Locality: Hiroshima City
Country: JP

SECOM Trust Systems CO.,LTD.

Organization: SECOM Trust Systems CO.,LTD.
Country: JP

This certificate has expire since

Certificate Details

Serial Number (hex): 73:b5:1d:c9:af:a1:2e:e6
Serial Number (int): 8337603037218549478
Serial Number lenght: 63 bits, 8 octets

SubjectKeyId: 56:92:a7:7f:96:6f:c1:3f:cf:70:dd:6f:63:32:66:80:be:16:22:2f
AuthorityKeyId: cb:ef:3d:ef:83:74:a1:a8:42:f0:3b:40:36:fa:6d:82:94:a9:27:36

Fingerprint (sha1): 50:62:76:68:cc:88:52:71:20:56:c4:52:08:e0:9b:2e:54:7a:00:11
Fingerprint (sha256): 7a:73:b5:cc:9f:bc:6a:05:66:c7:e3:f3:2c:57:a0:1f:2a:a0:86:c5:dc:b0:d1:0d:08:d0:75:44:26:7f:eb:85


Revocation information

OCSP Server: http://sr30.ocsp.secomtrust.net
CRL Distribution Point: http://repo1.secomtrust.net/spcpp/pfw/pfwsr3ca/fullcrl2.crl

Check the revocation status for certificate ebid.keiyaku.city.hiroshima.lg.jp

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ebid.keiyaku.city.hiroshima.lg.jp

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ebid.keiyaku.city.hiroshima.lg.jp

Other certificates including the domain name hiroshima.lg.jp

(limited to 100 certificates)
ebid.keiyaku.city.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
www.sabo-map.pref.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
*.pref.hiroshima.lg.jp
www.city.hiroshima.lg.jp
sts.city.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
gyosei.bousai.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
www.iju-cms.pref.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
*.saiyou.pref.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
lw-dcn12athsv00.pref.hiroshima.lg.jp
*.sabo-map.pref.hiroshima.lg.jp
www.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
nourin.pref.hiroshima.lg.jp
*.dogis.pref.hiroshima.lg.jp
lw-dcn12vpnsv00.pref.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
chotatsu2.pref.hiroshima.lg.jp
eas.city.hiroshima.lg.jp
gyosei.bousai.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
hirodsv007.keiyaku.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
prefalb.dogis.pref.hiroshima.lg.jp
yo-ke.pref.hiroshima.lg.jp
saiyou.pref.hiroshima.lg.jp
gyosei.bousai.city.hiroshima.lg.jp
www.sabo-map.pref.hiroshima.lg.jp
chotatsu2.pref.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
*.city.hiroshima.lg.jp
map.bousai.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
www.sabo.pref.hiroshima.lg.jp
vm.pref.hiroshima.lg.jp
www.manabi.pref.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
gc-dcn14exesv02.pref.hiroshima.lg.jp
dennyu.pref.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
saiyou.pref.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
chotatsu.pref.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
*.pref.hiroshima.lg.jp
*.pref.hiroshima.lg.jp
chotatsu.pref.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
extgw.pref.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
www.sabo.pref.hiroshima.lg.jp
hozen.pref.hiroshima.lg.jp
www.city.hiroshima.lg.jp
yo-ke.pref.hiroshima.lg.jp
www.city.hiroshima.lg.jp
www.iju.pref.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
chotatsu2.pref.hiroshima.lg.jp
lw-dcn12athsv00.pref.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
chotatsu.pref.hiroshima.lg.jp
chotatsu.pref.hiroshima.lg.jp
hiroshima-brand.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
gc-dcn14exesv01.pref.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
saiyou.pref.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
*.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
lw-dcn12vpnsv00.pref.hiroshima.lg.jp
shokuin.bousai.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
extgw.pref.hiroshima.lg.jp

Certificate

The complete raw certificate details for ebid.keiyaku.city.hiroshima.lg.jp in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldetGJEjCIYTTyvnvIvc
CCoK8116dda6yve5/Q+vw+IdJgXZAlplD0aSyDtpnkHZb03mZCtuUQca9yDoeyf0
5fbWKekWHRtCtrGsbdHvHmbAGFMo2BRNTNSm/luPqd352KOxSNMQ57eE1SZDgZ5T
Rtkb+29zphof+joo9b3NsxcaaPfiBvzT21UnoAdzqokMd3DN9FUnGf1ZsBqZCOf5
APsvVUIXTw6cdocr+BcGdehd0vxVMOYu9G+1urgsxnvQfH8uz2Nnl5nZjuRTl2GI
ZmzMu8mVP79YF6JSVv643xk2m2RpjYacisBLkI575REQw0YQQiGC2vVkIZ5+mHMF
pwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 8337603037218549478
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'JP'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SECOM Trust Systems CO.,LTD.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SECOM Passport for Web SR 3.0 CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-28 07:24:10 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-28 14:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'JP'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hiroshima'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hiroshima City'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hiroshima City'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hiroshima City Zaiseikyoku Keiyakubu12'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ebid.keiyaku.city.hiroshima.lg.jp'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18915861316384705866122118926263804137432308341177305917111153530081090158807399245417643189998506755148384581941803558018600083698709595952271504806154780777298301818386952983003614431896892465756819934318109072410571090320748550290846310320187543181397822051054653615474904345683495643085798942124595468015083656190719818731573580562002255854141949239230862101680854673674457167726274217689563130213631220931744156030176832844200589542295672030171395881808960438868744511588268806960695750095530745099656840166751877109897559078546749039094194771972852872746118684137319205236621986433229372756244807329168221210023
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName cbef3def8374a1a842f03b4036fa6d8294a92736
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sr30.ocsp.secomtrust.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (37 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ebid.keiyaku.city.hiroshima.lg.jp'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.392.200091.100.751.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repo1.secomtrust.net/spcpp/pfw/pfwsr3ca/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://repo1.secomtrust.net/spcpp/pfw/pfwsr3ca/fullcrl2.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							5692a77f966fc13fcf70dd6f63326680be16222f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0079de5afde876d06564c79b6069133fd65935429d18324d8b96312d27773da224ed1925adead01c479db93ae69cb6aa2bca463ae517ee02ac357f67f1629f5dd026e3c6bbd37c571b515285a1673c5b6d55fafb62d398f57116b6cd4a37c2f6f67c03f13e54ae7f2acb5341097368fa3e37a4b06472b89373ca6de4daeb3a08acca515edf7874447399788007f7ca1bf11f857dbd6f5dcab04f72e0c70c1e402cdbd1f2bd48e93b25db849e8fa97e1bdbb17635b056fc8e3ba89a7603a579e3e32d8064205e985a75e531798c43c2e73c709cbe51e15fb3d624fadc3b196a34b918ac337349b82e4cc9c8277877e84b4ff643bcf119a60027e052532528848ae3