secured.heel.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:eb:06:a6:82:3f:b3:a5:9b:24:7e:0f:92:2e:09:dc:c8:d1 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=secured.heel.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:eb:06:a6:82:3f:b3:a5:9b:24:7e:0f:92:2e:09:dc:c8:d1Serial Number (int): 341312053952714725865662526992615760251089
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 02:21:81:c8:63:ea:fa:44:44:a5:28:88:f7:48:fa:09:aa:eb:55:31
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 24:c4:b6:b9:a7:8f:01:36:c3:87:fa:f2:91:a3:75:15:64:ec:13:a0
Fingerprint (sha256): 9b:4c:32:66:69:d9:7d:05:8c:90:ec:07:2d:7c:8a:62:b7:56:0b:46:75:4c:61:b9:cd:fa:ac:2a:b3:c4:9c:e8
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate secured.heel.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for secured.heel.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
secured.heel.de
Other certificates including the domain name heel.de
(limited to 100 certificates)
lauf.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
lauf.heel.de
lauf.heel.de
lauf.heel.de
heel.de
karriere.heel.de
karriere.heel.de
heel.com
heel.de
heel.de
www.heel.de
heel.de
karriere.heel.de
heel.de
heel.de
heel.de
karriere.heel.de
heel.de
lauf.heel.de
secured.heel.de
heel.com
heel.de
heel.de
secured.heel.de
heel.de
secured.heel.de
www.heel.de
karriere.heel.de
*.heel.de
secured.heel.de
secured.heel.de
karriere.heel.de
heel.de
secured.heel.de
heel.de
lsac.heel.com
lauf.heel.de
karriere.heel.de
heel.com
lauf.heel.de
*.heel.de
karriere.heel.de
heel.de
heel.de
lauf.heel.de
heel.de
secured.heel.de
heel.de
karriere.heel.de
lauf.heel.de
karriere.heel.de
*.heel.de
Certificate
The complete raw certificate details for secured.heel.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISA+sGpoI/s6WbJH4Pki4J3MjRMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA0MDEwNzU4MTZaFw0x OTA2MzAwNzU4MTZaMBoxGDAWBgNVBAMTD3NlY3VyZWQuaGVlbC5kZTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAK45sNvvd8XmZk9vSGlQcSdsjyLTlgKT To1FpCi90E2TKtJQ24ba68cOyKFuBd1NneVkaHg43kMAGCPoZSfTB20PwjS+WMIl e/lyusbhRHWBwGW9PyovHK2RI7WIi3dpa4BDHGCi6oujM0gZqHkzQxegb2uY2A/P kFob/dPKlcJv8c7hFRx3hbQOZGWD0LGYs6zzNKamZckn3fUCNeDzuAxHU0rIWuS7 lG4zp4xmsBDWwvXZ71JS1Yjgf02jFo0dmAjPLLBQ4HzaX/s9REnlt4nrD2F/du5g b8TPLnDyKw7dbTbZdRjTIZLx+3hFt2Sax5Cn7riX+Ol1W/HmbxKqSZ45lLu8n+vW UMjCeKakiud4LSjavnZEH91rQ0oKnEb5ABBfZhi2mCoaGqAuQajryRFMaQfz5SDa nNO6Yd9KSInTMBsSmmsdEInHhsuR2D+33tZ6kA/MM/0jZLw4C9bFS/DOj+qYoxxM X9v24bFEDqUkzR1DwmCL3B6aSO536BbgIStDFoaYqggLzMWtyQEie5o8aNZ77+7V D9cYpcEt4PcLZyjrnmkqVPLOW5yvQkHVey1a3udtq2Q3UJrT1aogUcPeKddSc6VP //NJDV0qLS2E6eZws+//y2SHscpwV01p2UOt00SNC267zU0wyB4bc65v4OL6+mU5 d04wGPVQEWQXAgMBAAGjggJlMIICYTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAIh gchj6vpERKUoiPdI+gmq61UxMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPc2VjdXJlZC5oZWVsLmRl MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFp2B7i ZQAABAMARzBFAiEA/KxgVkH6bzx9rMgz6ZJILZmPF7h9WQgnL/PPoM17t1QCIAi2 JyPM+jdpMDP8MtmQcCo9F3OjJ1x81nVJyexfkdqIAHcA4mlLribo6UAJ6IYbtjuD 1D7n/nSI+6SPKJMBnd3x2/4AAAFp2B7j2wAABAMASDBGAiEAydomEtNW/S9nr3UN rD/UiZ4eUniV2T63l2LMZZkrthYCIQC8ygkwtd+n95INiw29owNi5yIjJxRkRQt1 wA5hx282vDANBgkqhkiG9w0BAQsFAAOCAQEAAn80xCyATrlmwrKpIBVV66WwEZGj LjLyzgRDVPVcpi9DB37GDKuYHBs3xjf4mRTDM+OP291Dph8yucXj9SuRDlkWsiph K2xp92EtmEnDF4/0A8dVR1SiGo3G6Ybhw/tTsgVKy06+IP06IEhUtnrO0P875Skz XdY4uXyBnjiJ97QKoiGeC9ZgldpU4GRFHItotz1tYrQ+0w1fsQrdau1VWfozX2DE kcg210sU9xGMh7nz8qmtJazGkzTX4EYRzdI9XytO+nRO3bu0nNh9wLerfkugyH3U OCF9KjjkZLV9/2lkvfT0THHq022r4a2uxTW8sKQFednlLA8S/PqYR1c/0w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArjmw2+93xeZmT29IaVBx J2yPItOWApNOjUWkKL3QTZMq0lDbhtrrxw7IoW4F3U2d5WRoeDjeQwAYI+hlJ9MH bQ/CNL5YwiV7+XK6xuFEdYHAZb0/Ki8crZEjtYiLd2lrgEMcYKLqi6MzSBmoeTND F6Bva5jYD8+QWhv908qVwm/xzuEVHHeFtA5kZYPQsZizrPM0pqZlySfd9QI14PO4 DEdTSsha5LuUbjOnjGawENbC9dnvUlLViOB/TaMWjR2YCM8ssFDgfNpf+z1ESeW3 iesPYX927mBvxM8ucPIrDt1tNtl1GNMhkvH7eEW3ZJrHkKfuuJf46XVb8eZvEqpJ njmUu7yf69ZQyMJ4pqSK53gtKNq+dkQf3WtDSgqcRvkAEF9mGLaYKhoaoC5BqOvJ EUxpB/PlINqc07ph30pIidMwGxKaax0QiceGy5HYP7fe1nqQD8wz/SNkvDgL1sVL 8M6P6pijHExf2/bhsUQOpSTNHUPCYIvcHppI7nfoFuAhK0MWhpiqCAvMxa3JASJ7 mjxo1nvv7tUP1xilwS3g9wtnKOueaSpU8s5bnK9CQdV7LVre522rZDdQmtPVqiBR w94p11JzpU//80kNXSotLYTp5nCz7//LZIexynBXTWnZQ63TRI0LbrvNTTDIHhtz rm/g4vr6ZTl3TjAY9VARZBcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 341312053952714725865662526992615760251089 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-01 07:58:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-30 07:58:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'secured.heel.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 710777435641158674138017642134648561922063702519636789282067629588513341845583890522299978884619113889124046778297114089529231675789254310980109686744647437461225926830281147365478337448907437169412841866062549884095801243567163414591487302530850105844273210664949080469097237337500593329655932813727833329420631490808458604494059869391049437359162925852063128323752026959846542306457203729005483318466135872929093285350813043159843041069568880130884034653913244852125447924725824185004328501402245295794251231592588776949450064375844268992518326447769205153795723201762898473141161301788504632719557490761210559422063789299206343046580701443214865175290056296776594839462878545751130841425404741468245274964077747641069059615013961207499707294366982334795559476127230056453720290728642005885581091154475851183954161715367376850817820309826870402041976220328007156590492994742308114964592286657780020175621722949294081744355030653589690427569599166084572371420741744840669076126598427442472047595898883785667732924811206615216700800272564732509697429089562870893048669703942302415259066458384019235091860379237150978710933097975312946166301897577173281909372758779146138595633140077639594575612777193126621925773807861382029658645527 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 022181c863eafa4444a52888f748fa09aaeb5531 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secured.heel.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000169d81ee2650000040300473045022100fcac605641fa6f3c7dacc833e992482d998f17b87d5908272ff3cfa0cd7bb754022008b62723ccfa37693033fc32d990702a3d1773a3275c7cd67549c9ec5f91da88007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000169d81ee3db0000040300483046022100c9da2612d356fd2f67af750dac3fd4899e1e527895d93eb79762cc65992bb616022100bcca0930b5dfa7f7920d8b0dbda30362e72223271464450b75c00e61c76f36bc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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