heel.de
Issued by R3
About this certificate
This digital certificate with serial number 03:82:c2:08:3e:51:0e:bc:e0:b9:78:84:bb:48:de:6d:89:7a was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=heel.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:82:c2:08:3e:51:0e:bc:e0:b9:78:84:bb:48:de:6d:89:7aSerial Number (int): 305831478528491319867556752386786421737850
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 19:2d:24:57:28:a8:f5:dd:7a:29:88:c8:04:d4:e0:28:c8:ee:a6:1f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 65:15:e6:3c:ec:85:25:d7:af:35:07:2b:e2:2e:27:c9:b1:04:65:86
Fingerprint (sha256): 7d:4a:d9:3c:7d:39:ca:58:d2:6e:25:14:47:49:c9:c2:3b:2a:a6:23:c6:59:19:d1:ec:a1:49:e1:29:c4:77:06
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate heel.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for heel.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
heel.de
www.heel.de
www.heel.de
Other certificates including the domain name heel.de
(limited to 100 certificates)
lauf.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
Certificate
The complete raw certificate details for heel.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGIjCCBQqgAwIBAgISA4LCCD5RDrzguXiEu0jebYl6MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjA5MTEwMTQ2MDNaFw0yMjEyMTAwMTQ2MDJaMBIxEDAOBgNVBAMT B2hlZWwuZGUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDV/wuFPG0M be9FqK9+7uCbS9mzVzZsX+SyOX0d30lRjYpUViLHEy5MVDAdtLB3YlhuAkuJchqs 7+YCfxjqB0PsdTNI4R5o3z99Kc+wLJSlJw63sNvASByniiuLLPFaA2EIrRqgcBFt whtCPbWelhRAkrwf46VCKKlU4bQTifTFt3qPOr8vzlqzTIcGWEpmfSN7FPPFgb19 8amATWlvh9Bh1o7fLAFmONGHFZpUu+Q2nOBksC/1sflvcg/xB99kE1AxoJOEUpZh Hxj7ZjmvYX9PjEo7NUYBpmpppKpa0xpmu+8gfpeoE7l5CmPPc055G0ADVN4OlPUh f3MAHNjNd6udtPIg5yv5PfiKWScQSlrSvQOv5HjAQ7AZvei/yf1+/q69sPcrIXBV oVAp4bjRVwaVR1H6y64lAMC6v73lYQNE+GZsQeGd7NJoXyJPYHvb4y3b4KJt4WBF Db38c/EAcA0HTnBgq20XNiOK/72WfQIvoJtaT3OdOpVmR1/Au3JHDHygsMX1Rmlr J15gSvoGFZd9iC7AKzUXmb5mkLSHabpGrJU27z2z4YnguaULUv13CKqeeF6aZe+w z31xhfgH6TgHXsRzVdzSmRPSfH4fwwOHHYkwUzULB5ZvdmCfpKS2qPjUDxJoU3EK gVEaDEBSPp0c0L74LYQ5gKjuFRAbdpQZwwIDAQABo4ICUDCCAkwwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8E AjAAMB0GA1UdDgQWBBQZLSRXKKj13XopiMgE1OAoyO6mHzAfBgNVHSMEGDAWgBQU LrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGG FWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmku bGVuY3Iub3JnLzAfBgNVHREEGDAWggdoZWVsLmRlggt3d3cuaGVlbC5kZTBMBgNV HSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpo dHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYEgfMA 8QB2AN+lXqtogk8fbK3uuF9OPlrqzaISpGpejjsSwCBEXCpzAAABgypwjwcAAAQD AEcwRQIgcFL9haugLSUPKwBcV8zowSGYLcwWXLJ1jvien1T8fuQCIQDhgVrvffFg MQsleviYq+o1ZH4EV1yUgrRfrC3Y2bnQwgB3AEalVet1+pEgMLWiiWn0830RLEF0 vv1JuIWr8vxw/m1HAAABgypwjzEAAAQDAEgwRgIhANPBo1eJw2VSIEOhvGBXOmX5 GwQx3Ekd1hfr8ql7VjbPAiEAzuXgfe2+JdWB7RlXxevvx3fkiSUE1D9lJGicL/xc BCgwDQYJKoZIhvcNAQELBQADggEBAHqyrEiLvrkGa31FGoyiXiUxl04PQ9bwG4/v 9tE+Gm/6uvS5qQ2pmZLyv7qIQAOXEVkcqx5Hd4zgSF3GJSHIFdrWoTHhMMfGicdA TJh1nRRXE8DcWRosb+diPenLatGPndQAKWOAYP6mOKBFzW6u2AJSVgT7eO4HrvPo Bihn+xoPhBqzXEhI/uBljkdGlsBbo7jK+dFg1kSLb10l+vZ4+zcR69ai0i1U05Wr 1XZJ4oL/Snl7OT3J+bQK5pcYq+NmjlNWDKaO2A/ff/l6f1oe8/vZNrAc739Msvvp DkByKhciYVuZtQUlDGDKzfQnL8piBLcy7t4riybQ9eY1/qOB+GU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1f8LhTxtDG3vRaivfu7g m0vZs1c2bF/ksjl9Hd9JUY2KVFYixxMuTFQwHbSwd2JYbgJLiXIarO/mAn8Y6gdD 7HUzSOEeaN8/fSnPsCyUpScOt7DbwEgcp4oriyzxWgNhCK0aoHARbcIbQj21npYU QJK8H+OlQiipVOG0E4n0xbd6jzq/L85as0yHBlhKZn0jexTzxYG9ffGpgE1pb4fQ YdaO3ywBZjjRhxWaVLvkNpzgZLAv9bH5b3IP8QffZBNQMaCThFKWYR8Y+2Y5r2F/ T4xKOzVGAaZqaaSqWtMaZrvvIH6XqBO5eQpjz3NOeRtAA1TeDpT1IX9zABzYzXer nbTyIOcr+T34ilknEEpa0r0Dr+R4wEOwGb3ov8n9fv6uvbD3KyFwVaFQKeG40VcG lUdR+suuJQDAur+95WEDRPhmbEHhnezSaF8iT2B72+Mt2+CibeFgRQ29/HPxAHAN B05wYKttFzYjiv+9ln0CL6CbWk9znTqVZkdfwLtyRwx8oLDF9UZpaydeYEr6BhWX fYguwCs1F5m+ZpC0h2m6RqyVNu89s+GJ4LmlC1L9dwiqnnhemmXvsM99cYX4B+k4 B17Ec1Xc0pkT0nx+H8MDhx2JMFM1CweWb3Zgn6Sktqj41A8SaFNxCoFRGgxAUj6d HNC++C2EOYCo7hUQG3aUGcMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 305831478528491319867556752386786421737850 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-11 01:46:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-10 01:46:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'heel.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 873028611599816997948873533208673107942730107687754472653991016214170627615777580424032857135643877437525345324631960331895521662654179228357206648403484915185069211631945731518331736567721389398349257679060042655978592386998386546869164503154588047028038972931223788364476584584613618597562635210701342984719446700240569892476487001247723943493716062059502043036757830755818921368413291901327227354417309344527929737106317144989234804800884556674420680010405988937780253184230834513593067267330656246465711162043615824301870537498746401262034906177658121278573768444920320788215528458470699537442993115526318288843569567658909914484841927109825076702765532536394461842056765086191891516715368418389502778392733540212882458343741283937712718212321387182881742752092214967784766673774959129859209480048450541749744765813446843465911208322943703510936760086882569140290243354157869849193421309222432643202621851967953483900329783424054473480714909299727509924157990407760508734648285038346574425424938957505611179681794669985764552355729452725637889146192689329545887486454376357322973687009562251093472569444631364354097587393417255065464378618317918373828079225578631592313923717592765770300234784406331977712136577074860227588004291 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 192d245728a8f5dd7a2988c804d4e028c8eea61f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heel.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heel.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600dfa55eab68824f1f6cadeeb85f4e3e5aeacda212a46a5e8e3b12c020445c2a73000001832a708f07000004030047304502207052fd85aba02d250f2b005c57cce8c121982dcc165cb2758ef89e9f54fc7ee4022100e1815aef7df160310b257af898abea35647e04575c9482b45fac2dd8d9b9d0c200770046a555eb75fa912030b5a28969f4f37d112c4174befd49b885abf2fc70fe6d47000001832a708f310000040300483046022100d3c1a35789c365522043a1bc60573a65f91b0431dc491dd617ebf2a97b5636cf022100cee5e07dedbe25d581ed1957c5ebefc777e4892504d43f6524689c2ffc5c0428 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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