www.daygroup.ca
Issued by R3
About this certificate
This digital certificate with serial number 03:f1:93:2c:56:6e:68:86:3b:9e:75:8c:33:29:15:f9:82:44 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.daygroup.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f1:93:2c:56:6e:68:86:3b:9e:75:8c:33:29:15:f9:82:44Serial Number (int): 343540534952703740309514153974769963860548
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8e:fa:54:c3:58:f2:6f:fa:3d:62:91:85:0c:0b:21:be:c2:92:e9:ce
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 72:fb:16:e3:5c:a4:7c:26:58:f5:cd:54:39:e8:b2:40:eb:89:48:7a
Fingerprint (sha256): 84:1e:f9:be:70:42:ff:bd:81:f2:b3:17:bd:81:03:65:0e:f1:0e:24:7b:7a:ff:f8:f0:88:e7:58:c4:ff:19:a2
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.daygroup.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.daygroup.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
daygroup.ca
www.daygroup.ca
www.daygroup.ca
Other certificates including the domain name daygroup.ca
(limited to 100 certificates)
www.daygroup.ca
ancla.me
hodlbrew.com
www.daygroup.ca
gnggroup.co.uk
puntounolab-performance.lernit.app
mail.daygroup.ca
heav.fr
cecomand.com
www.daygroup.ca
helpdesk.daygroup.ca
helpdesk.daygroup.ca
graphql-server.com
www.xpressbolivia.com
qillia.com
fodoser.com
hauniv.snapmentor.no
www.daygroup.ca
office.daygroup.ca
www.daygroup.ca
dev.pkc.advanced-infrastructure.co.uk
daygroup.ca
bilginototasima.com
www.daygroup.ca
gymnacode.blueur.com
www.bouquet-viewer.com
www.daygroup.ca
www.aureagustavo.com
www.sciber.dev
www.daygroup.ca
rds.daygroup.ca
www.datalead.ai
allenjoseph.dev
daygroup.ca
desk.bilo.ba
daygroup.ca
www.plsrefer.me
whatsium.com
traversy.bjarnimax.com
www.daygroup.ca
www.bouquet-viewer.com
tour-feedback-dev.powerproleasing.com
www.daygroup.ca
iqa.admin.flopay.co
www.lifetrip.io
webmail.daygroup.ca
songtreasures.app
video-makeup.com
www.noschat.tk
www.daygroup.ca
daygroup.ca
www.daygroup.ca
www.daygroup.ca
daygroup.ca
www.ixii.app
www.daygroup.ca
www.songtue.com
www.daygroup.ca
get.coachbetter.com
dashboard.rewego.com.br
www.daygroup.ca
memorizeyourlines.com
ragdasairafi369.com
daygroup.ca
www.daygroup.ca
s1auth.vible.co
play.tango.digitalbluefoam.com
staging.tables.chat
whatsium.com
allenjoseph.dev
www.loadbroker411.com
learndom.dev
songtreasures.app
smooth.wedding
strathfieldgc.whyq.com.au
ancla.me
hodlbrew.com
www.daygroup.ca
gnggroup.co.uk
puntounolab-performance.lernit.app
mail.daygroup.ca
heav.fr
cecomand.com
www.daygroup.ca
helpdesk.daygroup.ca
helpdesk.daygroup.ca
graphql-server.com
www.xpressbolivia.com
qillia.com
fodoser.com
hauniv.snapmentor.no
www.daygroup.ca
office.daygroup.ca
www.daygroup.ca
dev.pkc.advanced-infrastructure.co.uk
daygroup.ca
bilginototasima.com
www.daygroup.ca
gymnacode.blueur.com
www.bouquet-viewer.com
www.daygroup.ca
www.aureagustavo.com
www.sciber.dev
www.daygroup.ca
rds.daygroup.ca
www.datalead.ai
allenjoseph.dev
daygroup.ca
desk.bilo.ba
daygroup.ca
www.plsrefer.me
whatsium.com
traversy.bjarnimax.com
www.daygroup.ca
www.bouquet-viewer.com
tour-feedback-dev.powerproleasing.com
www.daygroup.ca
iqa.admin.flopay.co
www.lifetrip.io
webmail.daygroup.ca
songtreasures.app
video-makeup.com
www.noschat.tk
www.daygroup.ca
daygroup.ca
www.daygroup.ca
www.daygroup.ca
daygroup.ca
www.ixii.app
www.daygroup.ca
www.songtue.com
www.daygroup.ca
get.coachbetter.com
dashboard.rewego.com.br
www.daygroup.ca
memorizeyourlines.com
ragdasairafi369.com
daygroup.ca
www.daygroup.ca
s1auth.vible.co
play.tango.digitalbluefoam.com
staging.tables.chat
whatsium.com
allenjoseph.dev
www.loadbroker411.com
learndom.dev
songtreasures.app
smooth.wedding
strathfieldgc.whyq.com.au
Certificate
The complete raw certificate details for www.daygroup.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISA/GTLFZuaIY7nnWMMykV+YJEMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTAyMjcxMjUwNTNaFw0yMTA1MjgxMjUwNTNaMBoxGDAWBgNVBAMT D3d3dy5kYXlncm91cC5jYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANIOM1CgrpSnv7XqZTf5hbVP+8RVM27+IwQyu4GJOcq8+h7hpuHz53kXMmlsQXqp A75HkD3kH8GHOtFcwKuP42kcwmtI2XXumaZ2lf75IHKUzcVC0++yhcbtEcIctmF8 U9yADbI0NAEMF5vddD6toyuqg27C2fjiMJW81zC6aWfPW/jgSBeoMogWqm1H84mj uF0X/jxtmlWGg7cym/H7KhUtv+eIdliYox2toqqRi3QZlur5sNnEQxTux9P7w3y0 hq0yj1kh1hkXdw/qz1KSjAdod3La/dZJHXUSFDeUT8qncqlSQH3vidkaj+5hmmUQ lpcFRkRhYVyRxrL3R5BmTQsCAwEAAaOCAlYwggJSMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUjvpUw1jyb/o9YpGFDAshvsKS6c4wHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wJwYDVR0RBCAwHoILZGF5Z3JvdXAuY2GCD3d3dy5kYXlncm91cC5jYTBMBgNV HSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpo dHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA 7wB1AESUZS6w7s6vxEAH2Kj+KMDa5oK+2MsxtT/TM5a1toGoAAABd+PBn8cAAAQD AEYwRAIgBUMmIVbCkSpL8r0PTSQV/NpwuobxlOV/hGFRhHuZZvQCIE9A9RhEH1vh tcUsJ6oXFJ1ntRpiqb+f7bCveKJMZMVEAHYA9lyUL9F3MCIUVBgIMJRWjuNNExkz v98MLyALzE7xZOMAAAF348GhsAAABAMARzBFAiEA7xzRyjvV+JmceM/xqFMLUdPi qTXyT/DFZjKxzu7ZXO8CIBxVDsIVJu4cYDwEfQ4LxTQVAslJ8IqK4p4d8WFsMzr0 MA0GCSqGSIb3DQEBCwUAA4IBAQAalkWGqv4R/vNaj+ftqehzj3t5R/j7uApdXa45 ZfFHQXEz+WiDYda92hrQ9OprqB09JSQwI65tYSa7t6GdWMauqQxoe5G3X6iglJrO IFN5yfw9lWaI9E/g5BB+HV/5JVgHWM3frbjjGCjuzDTH0dZfL5g+ePBL3VwbOqsl NZl894/zO2Ckr3A3upH5RLJTqQk6Nz8ngWkrSJZYH43Wv+Y3f5Oo/lK4cUIaybGV YqtZW38L7V1gknqStIJtozvHdsZKhJNbUs/lHaVcxlgwX9fp8Yu2RmAQ2LRbE7tX 4hLtEjemcHOYZMV3KZgaLiMP/3N5e/Wq9MXqdOftE2lmaAgR -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0g4zUKCulKe/teplN/mF tU/7xFUzbv4jBDK7gYk5yrz6HuGm4fPneRcyaWxBeqkDvkeQPeQfwYc60VzAq4/j aRzCa0jZde6ZpnaV/vkgcpTNxULT77KFxu0Rwhy2YXxT3IANsjQ0AQwXm910Pq2j K6qDbsLZ+OIwlbzXMLppZ89b+OBIF6gyiBaqbUfziaO4XRf+PG2aVYaDtzKb8fsq FS2/54h2WJijHa2iqpGLdBmW6vmw2cRDFO7H0/vDfLSGrTKPWSHWGRd3D+rPUpKM B2h3ctr91kkddRIUN5RPyqdyqVJAfe+J2RqP7mGaZRCWlwVGRGFhXJHGsvdHkGZN CwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 343540534952703740309514153974769963860548 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-27 12:50:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-28 12:50:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.daygroup.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26517046545276096759720626105127750124657392388064199079169150765178371627337455676997153894102391322326141663991900284951132893872954896889788952470292838335084081665173174756938648892063007352396897939471587761389519525693531468039404000095227735840286140607605555244582806834509467228317195822997312499892442200204388500217880386300139107941098825734195772851990595945730799123823299086284049441042041862510039061354335317563261435374459911799892258273307245875869039332471789738534984656797542902723297883726828320977068626578697242421943526128122035641478089148834547561587069436156995594985273211340068523232523 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8efa54c358f26ffa3d6291850c0b21bec292e9ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daygroup.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.daygroup.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a800000177e3c19fc7000004030046304402200543262156c2912a4bf2bd0f4d2415fcda70ba86f194e57f846151847b9966f402204f40f518441f5be1b5c52c27aa17149d67b51a62a9bf9fedb0af78a24c64c544007600f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e300000177e3c1a1b00000040300473045022100ef1cd1ca3bd5f8999c78cff1a8530b51d3e2a935f24ff0c56632b1ceeed95cef02201c550ec21526ee1c603c047d0e0bc5341502c949f08a8ae29e1df1616c333af4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001a964586aafe11fef35a8fe7eda9e8738f7b7947f8fbb80a5d5dae3965f147417133f9688361d6bdda1ad0f4ea6ba81d3d25243023ae6d6126bbb7a19d58c6aea90c687b91b75fa8a0949ace205379c9fc3d956688f44fe0e4107e1d5ff925580758cddfadb8e31828eecc34c7d1d65f2f983e78f04bdd5c1b3aab2535997cf78ff33b60a4af7037ba91f944b253a9093a373f2781692b4896581f8dd6bfe6377f93a8fe52b871421ac9b19562ab595b7f0bed5d60927a92b4826da33bc776c64a84935b52cfe51da55cc658305fd7e9f18bb6466010d8b45b13bb57e212ed1237a670739864c57729981a2e230fff73797bf5aaf4c5ea74e7ed136966680811