bb.si
Issued by R3
About this certificate
This digital certificate with serial number 03:d4:54:18:60:01:bc:23:81:87:ce:3e:13:db:4c:a6:30:ed was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=bb.si
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d4:54:18:60:01:bc:23:81:87:ce:3e:13:db:4c:a6:30:edSerial Number (int): 333588501296539008182309292307367334392045
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: cb:a9:d7:9b:a7:7d:f2:b9:b6:24:f2:4a:9f:ab:93:d2:1f:54:3d:db
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 57:a9:82:b4:95:e7:88:03:8d:61:1f:d3:6d:26:b6:74:5b:ae:95:df
Fingerprint (sha256): 9b:7a:10:a2:ce:06:10:0a:d0:79:d0:b4:8c:c2:d9:44:ee:21:19:5c:87:34:33:6e:91:fd:5f:4d:70:48:8f:93
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate bb.si
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bb.si
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bb.si
Other certificates including the domain name bb.si
(limited to 100 certificates)
bb.si
bb.si
bb.si
www.bb.si
evidenca.bb.si
evidenca.bb.si
www.bb.si
bb.si
www.bb.si
www.bb.si
www.bb.si
bb.si
www.bb.si
www.bb.si
bb.si
bb.si
www.bb.si
nova.bb.si
dashboard.bb.si
www.bb.si
bb.si
tracking.bb.si
bb.si
www.bb.si
www.bb.si
www.bb.si
bb.si
bb.si
bb.si
bb.si
www.bb.si
bb.si
bb.si
dashboard.bb.si
www.bb.si
bb.si
bb.si
www.bb.si
e-ucilnice.bb.si
www.bb.si
bb.si
www.bb.si
bb.si
posta.bb.si
www.bb.si
e-ucilnice.bb.si
bb.si
bb.si
bb.si
bb.si
bb.si
www.bb.si
bb.si
bb.si
dashboard.bb.si
bb.si
www.bb.si
bb.si
bb.si
bb.si
dashboard.bb.si
evidenca.bb.si
bb.si
www.bb.si
bb.si
bb.si
www.bb.si
dashboard.bb.si
www.bb.si
bb.si
bb.si
bb.si
bb.si
bb.si
www.bb.si
www.bb.si
bb.si
www.bb.si
evidenca.bb.si
bb.si
dashboard.bb.si
www.bb.si
bb.si
evidenca.bb.si
bb.si
www.bb.si
dashboard.bb.si
www.bb.si
www.bb.si
evidenca.bb.si
www.bb.si
bb.si
bb.si
www.bb.si
evidenca.bb.si
evidenca.bb.si
www.bb.si
bb.si
www.bb.si
www.bb.si
www.bb.si
bb.si
www.bb.si
www.bb.si
bb.si
bb.si
www.bb.si
nova.bb.si
dashboard.bb.si
www.bb.si
bb.si
tracking.bb.si
bb.si
www.bb.si
www.bb.si
www.bb.si
bb.si
bb.si
bb.si
bb.si
www.bb.si
bb.si
bb.si
dashboard.bb.si
www.bb.si
bb.si
bb.si
www.bb.si
e-ucilnice.bb.si
www.bb.si
bb.si
www.bb.si
bb.si
posta.bb.si
www.bb.si
e-ucilnice.bb.si
bb.si
bb.si
bb.si
bb.si
bb.si
www.bb.si
bb.si
bb.si
dashboard.bb.si
bb.si
www.bb.si
bb.si
bb.si
bb.si
dashboard.bb.si
evidenca.bb.si
bb.si
www.bb.si
bb.si
bb.si
www.bb.si
dashboard.bb.si
www.bb.si
bb.si
bb.si
bb.si
bb.si
bb.si
www.bb.si
www.bb.si
bb.si
www.bb.si
evidenca.bb.si
bb.si
dashboard.bb.si
www.bb.si
bb.si
evidenca.bb.si
bb.si
www.bb.si
dashboard.bb.si
www.bb.si
www.bb.si
evidenca.bb.si
www.bb.si
Certificate
The complete raw certificate details for bb.si in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgISA9RUGGABvCOBh84+E9tMpjDtMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMTkxMzIwNTVaFw0yNDAxMTcxMzIwNTRaMBAxDjAMBgNVBAMT BWJiLnNpMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA8CEfq5xx/Abm Na+M+/ztmJZY1yo5mWEYpMYiMAojCYCLSAK8sNq6Wi4+AbSdHsHKbe7tl+USXSp8 JoWzoVHxCxfG3GvhA34fLK41jIh6872PWE1l1GHP0Mf/rrG2GuluVj41D6SoSslg 32M4T5k0EK7IRLEEwwDuln+LOuCQOu77T8F4FZFH6MnZL7VGkfHhr3/aHmgAf584 BceCPNTvMrSM4vETvLo93GXRuMByM5/UsYPOaqyct6dFJSBoecZp35latn5btlsL BkMAgwbCxjhUy3tMRkytiZCfRHpn4Ds88PEvJoKPZ0RmNjHhcATMKr2lWc8wk8WN I3HLhTj3b7p+LfX7qTuJRPZn9bDWAeM4PYfsHWGp2NC2BePFjmsIQsRNoTQL9FuF Vjbfks0EotgN2DEr40maOvh7wDFlQT9s+E3sFKK28JH5yRBp2eioxtOz6fyZNm+B bqcweDR8ULcgq03uPb9cdBPZyG0Dt7HJv0ZhCR73gVon5UNfd28Wrn9BwNAVlm+l 3Mgv0+99NL3gyqs7KIzH2pESszroCSVFubQ03COIH/NqA5uFD+gNmiUcxOgvG+KB pDhRGOACMD6GUTWcJiXFOVfCkh6pMNAhSo+g1EvCpX4rv11JkzgX/+GNsBrXqIER sowlXDSleRA/exUgs1X0DD7c8A7uDK8CAwEAAaOCAgYwggICMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIw ADAdBgNVHQ4EFgQUy6nXm6d98rm2JPJKn6uT0h9UPdswHwYDVR0jBBgwFoAUFC6z F7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVo dHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxl bmNyLm9yZy8wEAYDVR0RBAkwB4IFYmIuc2kwEwYDVR0gBAwwCjAIBgZngQwBAgEw ggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/TH vQANLXJv4frUFwAAAYtIT5EIAAAEAwBGMEQCIEm+f6HyTcbjgSB2mQdRJbm60fc5 Aj59mAIQrUMlLmvRAiB1phuKOoSA86nYCHwl3HHHl34k12d/Latfdcf+Tw5tbwB2 AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABi0hPkUoAAAQDAEcw RQIhANQxUBf4Ejx1Uj0j0ennjHAKdVgK22XapW8Qmk6W0g3rAiB+sS9uWyBUgV/V kqCnEXdPuOSzsA/8GK2UDbm7BXWxNzANBgkqhkiG9w0BAQsFAAOCAQEAtirYGtJH kKYFCGFhsA0ihWZjQ/3HlvhUdXsNDbFIjYraKBQljmQDFqIXjZHYyWl4zFaW/07B zH1oh1uWrGHn7nC5PiJV8i7h6R7GkVjt8kS9EuOKtlqdiBKjuhuCf2U9vNZji2Bs lhXS20Ffcsb9BLEoFSNhuRpcYgPyxgnZzl7/5QGJpDk1uXF00+Gk8imytmUgU/+f ITXow8H5ow/n8cTiOquXNxKkezx98+4/u8cVvIbr8D8Z6NSQpkMhOokHLo7wZyCY gU61STXAD+2fsImc9+v3RJYRLN6LoPG/XI6eE503FhSamusOmYaBOkayeqXM3B05 EeYEZX616isOrg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA8CEfq5xx/AbmNa+M+/zt mJZY1yo5mWEYpMYiMAojCYCLSAK8sNq6Wi4+AbSdHsHKbe7tl+USXSp8JoWzoVHx CxfG3GvhA34fLK41jIh6872PWE1l1GHP0Mf/rrG2GuluVj41D6SoSslg32M4T5k0 EK7IRLEEwwDuln+LOuCQOu77T8F4FZFH6MnZL7VGkfHhr3/aHmgAf584BceCPNTv MrSM4vETvLo93GXRuMByM5/UsYPOaqyct6dFJSBoecZp35latn5btlsLBkMAgwbC xjhUy3tMRkytiZCfRHpn4Ds88PEvJoKPZ0RmNjHhcATMKr2lWc8wk8WNI3HLhTj3 b7p+LfX7qTuJRPZn9bDWAeM4PYfsHWGp2NC2BePFjmsIQsRNoTQL9FuFVjbfks0E otgN2DEr40maOvh7wDFlQT9s+E3sFKK28JH5yRBp2eioxtOz6fyZNm+BbqcweDR8 ULcgq03uPb9cdBPZyG0Dt7HJv0ZhCR73gVon5UNfd28Wrn9BwNAVlm+l3Mgv0+99 NL3gyqs7KIzH2pESszroCSVFubQ03COIH/NqA5uFD+gNmiUcxOgvG+KBpDhRGOAC MD6GUTWcJiXFOVfCkh6pMNAhSo+g1EvCpX4rv11JkzgX/+GNsBrXqIERsowlXDSl eRA/exUgs1X0DD7c8A7uDK8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 333588501296539008182309292307367334392045 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-19 13:20:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-17 13:20:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bb.si' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 979642439436193316046159944672864389200278238795609501538317155087273406133712887386299253322077816881451365506496143519431918907611438221894660109667757012880763912221758269244297094042371772542830905316714375253345686875060015901549244284364077048789707831129852501348748095779887275974848618668491571085204023383204360286979402358019064018396637008045321857766530889284933905567451788256155986585951133617787789245807945992542018352784759013238249479460834851260326064795101661347546296164581678022165661077585016993968562990704256357037731401320540986029660007872052563935886519554796458419431376089478494086728578970179297486449997868814661009849910049580188350137359826689639260437891146534160272757717498787885997793652181260041385017355449111758635611028196852099892564080357527792164750344043542524420570483073258922193163511341252200371365237211016507697017487798763432699906837213688201406683633217345758171921036892733148993892247385680213161883308567110027341736650664259839502665208284781229069250785674282934100384649522945110543366322712538496411445173338824752724722205726713008235577861576490011241820916098310373453116928569851957783973801458256385251231127724303721421369400597206717271994868927186383610961595567 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cba9d79ba77df2b9b624f24a9fab93d21f543ddb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (9 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bb.si' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b484f91080000040300463044022049be7fa1f24dc6e381207699075125b9bad1f739023e7d980210ad43252e6bd1022075a61b8a3a8480f3a9d8087c25dc71c7977e24d7677f2dab5f75c7fe4f0e6d6f00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b484f914a0000040300473045022100d4315017f8123c75523d23d1e9e78c700a75580adb65daa56f109a4e96d20deb02207eb12f6e5b2054815fd592a0a711774fb8e4b3b00ffc18ad940db9bb0575b137 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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