www.craniocheck.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:d3:ed:02:a8:5d:b9:54:71:85:b6:41:a3:76:b9:7d:e4:25 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.craniocheck.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d3:ed:02:a8:5d:b9:54:71:85:b6:41:a3:76:b9:7d:e4:25Serial Number (int): 420563763981824133848788073082207386592293
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e8:ee:d0:77:30:61:4e:8b:9e:96:5f:e5:84:2c:6a:55:b0:6c:d4:fd
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 36:bc:b6:d2:c7:ce:bb:07:43:09:e9:10:9f:d6:5a:b4:08:47:dd:9b
Fingerprint (sha256): 94:ba:e7:a9:74:65:c0:3f:e3:64:9f:58:4b:1d:03:76:0c:4a:3f:c3:7b:b8:f5:57:cb:04:0e:2a:77:b5:65:46
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.craniocheck.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.craniocheck.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
craniocheck.ch
www.craniocheck.ch
www.craniocheck.ch
Other certificates including the domain name craniocheck.ch
(limited to 100 certificates)
www.gosys.ch
www.craniocheck.ch
*.kasmodo.de
www.bitperfect.at
www.socialdaygame.de
wir-zu-hause.lima-city.de
www.isenringen.ch
www.miserymg.lima-city.de
www.pecora.lima-city.de
www.craniocheck.ch
www.craniocheck.ch
test.guitarblog.de
worldoftec.lima-city.de
www.ute-jakoby.de
gabelsbergerstrasse.lima-city.de
eikermann.lima-city.de
airflow-prod.hutch79.ch
www.bordercollie-doug.lima-city.de
pxfrijqotcxwfrt.kabeltest.com
realliferp.lima-city.de
www.craniocheck.ch
silvsilver.lima-city.de
www.craniocheck.ch
www.craniocheck.ch
www.craniocheck.ch
kasmodo.com
ivhbk-hameln.de
craniocheck.de
webstore.variostop.com
ms1.rotglut.net
www.bordercollie-doug.lima-city.de
craniocheck.ch
www.sokratesinstitut.at
beatles4ever.lima-city.de
www.automobile-butler.de
www.craniocheck.ch
*.kasmodo.de
www.bitperfect.at
www.socialdaygame.de
wir-zu-hause.lima-city.de
www.isenringen.ch
www.miserymg.lima-city.de
www.pecora.lima-city.de
www.craniocheck.ch
www.craniocheck.ch
test.guitarblog.de
worldoftec.lima-city.de
www.ute-jakoby.de
gabelsbergerstrasse.lima-city.de
eikermann.lima-city.de
airflow-prod.hutch79.ch
www.bordercollie-doug.lima-city.de
pxfrijqotcxwfrt.kabeltest.com
realliferp.lima-city.de
www.craniocheck.ch
silvsilver.lima-city.de
www.craniocheck.ch
www.craniocheck.ch
www.craniocheck.ch
kasmodo.com
ivhbk-hameln.de
craniocheck.de
webstore.variostop.com
ms1.rotglut.net
www.bordercollie-doug.lima-city.de
craniocheck.ch
www.sokratesinstitut.at
beatles4ever.lima-city.de
www.automobile-butler.de
Certificate
The complete raw certificate details for www.craniocheck.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGHzCCBQegAwIBAgISBNPtAqhduVRxhbZBo3a5feQlMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA1MDExMzQ5MzBaFw0x ODA3MzAxMzQ5MzBaMB0xGzAZBgNVBAMTEnd3dy5jcmFuaW9jaGVjay5jaDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANlqD8FjeI8uvo3+H3akfS6KMyHx N5ZflBFz/nLeWHi47ZW/U90EzszfqjiBN7YFLiO+La78Cd6xCjRddWvMmM+RzXeI xy2FQh+iYEkWZ+Q8ZVgQ5p6vmz/N2wUhO8LqhHFlW38Bi4UfA4TNoRH0bJd6ZJpr z3Jyz0R+Ngphuinr8ZmCYqvbwb3BezF4V2gTO/hiBqU7qAlfWgwzuSGqvEynP//J lsohv1hLGCr/pLOIREuVUJ4YBCRICR2332Rqm5cGM7cIUKM/4vA6fd2cxxi12+UG uV+rISKME7TzPqEecH7/8VF7aWE/tknA615G24FBPoZhrYf1roq07kcU7gcCAwEA AaOCAyowggMmMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU6O7QdzBhTouell/lhCxq VbBs1P0wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzAtBgNVHREEJjAkgg5jcmFuaW9jaGVjay5jaIISd3d3LmNyYW5pb2No ZWNrLmNoMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB 1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsG AQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQg dXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3 aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRz ZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAA dQBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAWMcLg5eAAAEAwBG MEQCIHDMX8Cw99YtZSMjrfwugDM9OvdhOYaugaKADmxoJDz9AiBruEU8rShg3MBQ gzJM4Obzet1jIgNyMOJ7C707/FVZdAB3ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLc pMMM9OVFR/R4AAABYxwuDmEAAAQDAEgwRgIhAMT4hbmiMoGDj4qjfhEP5dLKKaLh YgVBBsEiz5r2ilcYAiEAosIQvnufnSjo/uMcFbbvf3NgAH+Lv+F2neLLMRWW4+Qw DQYJKoZIhvcNAQELBQADggEBAI/H2UuJO5Cpq9tDOhc5g+BcMEa0UhYnLMcN3Z1D oX9YOQniPiC+X5pr78+P31r4B05DAFUXI2wDRJCNI3nvz9G21Klzrms93BX9d3Sy 0JUJMRa7yuM9MRHta6L7GibCTki3Nki3WG4CRB2jvGvqVRu4s8BWk8X9mL+4bDca 1D4GS61X47NnFp7hLb+Poee9v2Uy6OaURHayxDMkdoiYUZDZyBqDf5rYOzOI0hYS TyIdFpGDigEoheWejqpjwnHKiR+LA+X5D3ctiJ+dp6H1/If9aQRpod16Al8W8wOi e4oiB0LmcvKIlq879HH9aETyWJR1+mT/LzO5gC27f0O4i40= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2WoPwWN4jy6+jf4fdqR9 LoozIfE3ll+UEXP+ct5YeLjtlb9T3QTOzN+qOIE3tgUuI74trvwJ3rEKNF11a8yY z5HNd4jHLYVCH6JgSRZn5DxlWBDmnq+bP83bBSE7wuqEcWVbfwGLhR8DhM2hEfRs l3pkmmvPcnLPRH42CmG6KevxmYJiq9vBvcF7MXhXaBM7+GIGpTuoCV9aDDO5Iaq8 TKc//8mWyiG/WEsYKv+ks4hES5VQnhgEJEgJHbffZGqblwYztwhQoz/i8Dp93ZzH GLXb5Qa5X6shIowTtPM+oR5wfv/xUXtpYT+2ScDrXkbbgUE+hmGth/WuirTuRxTu BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 420563763981824133848788073082207386592293 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-01 13:49:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-30 13:49:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.craniocheck.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27446013074570539806277353373800694203002478849072470757611896113615400255187053848325186424886730671680107064007241962310245408706579785776817111564042740000725127315091356893105941197926527361391694601049925525636042263523925626363414405743305772955497004953963969616857636068690349331735841019817934499456129390185929748862669750662086275173751654112463707557963730297781394733988142399456831947145931612970205881405400015188457847185606296418961662042735816076346563670343052133280347885669037643070761597323653547889374757042979094271351257561192220841633408399672290710664961379512306505390582408534680690552327 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e8eed07730614e8b9e965fe5842c6a55b06cd4fd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'craniocheck.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.craniocheck.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c000001631c2e0e5e0000040300463044022070cc5fc0b0f7d62d652323adfc2e80333d3af7613986ae81a2800e6c68243cfd02206bb8453cad2860dcc05083324ce0e6f37add6322037230e27b0bbd3bfc555974007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001631c2e0e610000040300483046022100c4f885b9a23281838f8aa37e110fe5d2ca29a2e162054106c122cf9af68a5718022100a2c210be7b9f9d28e8fee31c15b6ef7f7360007f8bbfe1769de2cb311596e3e4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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