tma149.ca
Issued by PositiveSSL CA
About this certificate
This digital certificate with serial number 0f:ce:b4:0b:2e:0d:df:ec:74:ec:b0:30:d8:ab:93:e9 was issued on by Comodo CA Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
Certificate Subject
CN=tma149.ca,OU=Domain Control Validated+OU=PositiveSSL
Comodo CA Limited
Organization:
Comodo CA Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:ce:b4:0b:2e:0d:df:ec:74:ec:b0:30:d8:ab:93:e9Serial Number (int): 21011684809123441479637859575930786793
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 5c:80:11:59:8b:be:ce:8a:c7:f2:09:49:7a:66:d8:99:09:44:43:22
AuthorityKeyId: b8:ca:11:e9:06:31:79:db:c3:94:c6:e8:19:2a:bc:bb:35:16:31:a4
Fingerprint (sha1): f7:d0:a7:b1:36:a9:4c:5d:6d:df:14:16:1a:ee:ab:7b:5c:ed:8e:c6
Fingerprint (sha256): a0:03:00:eb:9a:6e:4d:4d:0e:c2:e1:30:e4:27:b3:1b:db:c0:1c:fa:1a:08:5c:c4:97:1b:98:89:2f:ce:2b:9a
Issuing Certificate URL: http://crt.comodoca.com/PositiveSSLCA.crt
Revocation information
OCSP Server: http://ocsp.comodoca.comCRL Distribution Point: http://crl.comodoca.com/PositiveSSLCA.crl
CRL Distribution Point: http://crl.comodo.net/PositiveSSLCA.crl
Check the revocation status for certificate tma149.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tma149.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tma149.ca
www.tma149.ca
www.tma149.ca
Other certificates including the domain name tma149.ca
(limited to 100 certificates)
www.tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
torontomusicians.org
www.tma149.ca
*.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
tma149.ca
mymusic150.tma149.ca
tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
tma149.ca
tma149.ca
*.tma149.ca
sni.cloudflaressl.com
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
www.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
torontomusicians.org
www.tma149.ca
*.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
tma149.ca
mymusic150.tma149.ca
tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
tma149.ca
tma149.ca
*.tma149.ca
sni.cloudflaressl.com
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
www.tma149.ca
tma149.ca
Certificate
The complete raw certificate details for tma149.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIQD860Cy4N3+x07LAw2KuT6TANBgkqhkiG9w0BAQUFADBx MQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYD VQQHEwdTYWxmb3JkMRowGAYDVQQKExFDb21vZG8gQ0EgTGltaXRlZDEXMBUGA1UE AxMOUG9zaXRpdmVTU0wgQ0EwHhcNMTEwNTI1MDAwMDAwWhcNMTIwNTI0MjM1OTU5 WjBNMSEwHwYDVQQLExhEb21haW4gQ29udHJvbCBWYWxpZGF0ZWQxFDASBgNVBAsT C1Bvc2l0aXZlU1NMMRIwEAYDVQQDEwl0bWExNDkuY2EwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQDTW98DwInbn147/ui1jgpfl98JQVUvRpE8auSeeeyo 11MAx5D1l1o8zBuDtgFiur/St8y08+dzwGtIqOm6s0TtOuwdSTbR8d86YDmflqHz RYyK2Ej75yjjL8aQcS7j9xgm890lTRP307sHcwIXiYa+mLuPh2iLXqMRCMIrL6bB dc97i1jf/sHStRPyetNg6Kh5UCaP6BuO4Pt/wrys9zdCTSGm2ckSlx0QjNXdGT40 wSdOPQukgOHLzd+7x/jAhMlNutVyjLieTpVOHeJO58pQT/T5ONpqMvfk5K17cFEd r/XTl9jXWogle06wntfSquZDCEdUh6CTInmlIL/Q/Xr7AgMBAAGjggHGMIIBwjAf BgNVHSMEGDAWgBS4yhHpBjF528OUxugZKry7NRYxpDAdBgNVHQ4EFgQUXIARWYu+ zorH8glJembYmQlEQyIwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEYGA1UdIAQ/MD0wOwYLKwYBBAGy MQECAgcwLDAqBggrBgEFBQcCARYeaHR0cDovL3d3dy5wb3NpdGl2ZXNzbC5jb20v Q1BTMGkGA1UdHwRiMGAwL6AtoCuGKWh0dHA6Ly9jcmwuY29tb2RvY2EuY29tL1Bv c2l0aXZlU1NMQ0EuY3JsMC2gK6AphidodHRwOi8vY3JsLmNvbW9kby5uZXQvUG9z aXRpdmVTU0xDQS5jcmwwawYIKwYBBQUHAQEEXzBdMDUGCCsGAQUFBzAChilodHRw Oi8vY3J0LmNvbW9kb2NhLmNvbS9Qb3NpdGl2ZVNTTENBLmNydDAkBggrBgEFBQcw AYYYaHR0cDovL29jc3AuY29tb2RvY2EuY29tMCMGA1UdEQQcMBqCCXRtYTE0OS5j YYINd3d3LnRtYTE0OS5jYTANBgkqhkiG9w0BAQUFAAOCAQEAII8uVN06+WV2Sqrc N2WT7TO5xSTJJm49C6CuWQDmjCwzOTUA6CuS0Lg8UK0lH/mlvJrjYqklpV6IArEX 2+3WxO9f0EsrkUtO+y5+SHuPD+35IuGE7coxpoO7+46w9JhZMUxNHzuds1k8v2CI gYWJKcuGzxHv+JQuUwHhQwdAY4F06M39oN8ShU64dufS7joTzbV8aEOZt30UJnpv BvI4g10N/IhSePS31gxGD/Hj3txLcjuh9JwXq5EzxFD7Xv7IaZotoU8QS1u0Hs5+ t6YLB0x8qyuI2Kd7mLgKETaDc/rV29ACamHO7z8Kd9dUGfMOdMgZBzuaL5VH3Jps x0e4IA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA01vfA8CJ259eO/7otY4K X5ffCUFVL0aRPGrknnnsqNdTAMeQ9ZdaPMwbg7YBYrq/0rfMtPPnc8BrSKjpurNE 7TrsHUk20fHfOmA5n5ah80WMithI++co4y/GkHEu4/cYJvPdJU0T99O7B3MCF4mG vpi7j4doi16jEQjCKy+mwXXPe4tY3/7B0rUT8nrTYOioeVAmj+gbjuD7f8K8rPc3 Qk0hptnJEpcdEIzV3Rk+NMEnTj0LpIDhy83fu8f4wITJTbrVcoy4nk6VTh3iTufK UE/0+TjaajL35OSte3BRHa/105fY11qIJXtOsJ7X0qrmQwhHVIegkyJ5pSC/0P16 +wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 21011684809123441479637859575930786793 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Comodo CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PositiveSSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-05-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-05-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PositiveSSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tma149.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26681585700876820678844137157211875719807971458618206879363015291330153872060263689310151030100975977879731296823315384033798031454409642809452526027108078966270948712840137484646412916312355077301492388315894655663631198220712769228568518728430665779714645451625108472823231523029212163860859550188237443393167491361050825459598918009306306352397176540774627664525072817340604994502166370505454333449077333126052646412353333546597282035708414456994687418646519167527615069019815937103665857161179568277198210506022146218923074894213182824099730704377519112726123786131368999621410956695649649898736825982712400411387 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b8ca11e9063179dbc394c6e8192abcbb351631a4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5c8011598bbece8ac7f209497a66d89909444322 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (63 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.positivessl.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/PositiveSSLCA.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodo.net/PositiveSSLCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/PositiveSSLCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tma149.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tma149.ca' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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