optionpit.com
Issued by R3
About this certificate
This digital certificate with serial number 03:7e:d0:cd:0f:71:0e:ae:32:0d:ec:fe:c2:fe:47:9a:73:ef was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=optionpit.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:7e:d0:cd:0f:71:0e:ae:32:0d:ec:fe:c2:fe:47:9a:73:efSerial Number (int): 304489980184491718275976987065679263462383
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 55:2c:48:38:7d:f1:6f:30:d6:94:79:30:71:f1:7e:7b:32:af:a7:a9
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c2:c0:a3:22:3b:9c:77:77:a3:8d:3d:31:09:2a:ab:9e:68:8c:68:6c
Fingerprint (sha256): a1:da:5d:bd:60:5e:f2:2e:e0:52:9d:3f:b0:b9:25:33:a5:24:6d:4d:07:e3:08:b4:3b:8f:1f:15:55:c5:25:78
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate optionpit.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for optionpit.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
optionpit.com
www.optionpit.com
www.optionpit.com
Other certificates including the domain name optionpit.com
(limited to 100 certificates)
vip.optionpit.com
optionpit.com
events.optionpit.com
7e5b27a3b3.nxcli.net
optionpit.com
7e5b27a3b3.nxcli.net
options.optionpit.com
7e5b27a3b3.nxcli.net
options.optionpit.com
optionpit.com
optionpit.com
7e5b27a3b3.nxcli.net
7e5b27a3b3.nxcli.net
www.optionpit.com
meeting.admiresty.us
optionpit.com
www.optionpit.com
www.optionpit.com
7e5b27a3b3.nxcli.net
optionpit.com
7e5b27a3b3.nxcli.net
7e5b27a3b3.nxcli.net
optionpit.com
options.optionpit.com
optionpit.com
7e5b27a3b3.nxcli.net
7e5b27a3b3.nxcli.net
optionpit.com
www.optionpit.com
optionpit.com
optionpit.com
optionpit.com
optionpit.com
meeting.admiresty.us
www.optionpit.com
optionpit.com
events.optionpit.com
7e5b27a3b3.nxcli.net
optionpit.com
7e5b27a3b3.nxcli.net
options.optionpit.com
7e5b27a3b3.nxcli.net
options.optionpit.com
optionpit.com
optionpit.com
7e5b27a3b3.nxcli.net
7e5b27a3b3.nxcli.net
www.optionpit.com
meeting.admiresty.us
optionpit.com
www.optionpit.com
www.optionpit.com
7e5b27a3b3.nxcli.net
optionpit.com
7e5b27a3b3.nxcli.net
7e5b27a3b3.nxcli.net
optionpit.com
options.optionpit.com
optionpit.com
7e5b27a3b3.nxcli.net
7e5b27a3b3.nxcli.net
optionpit.com
www.optionpit.com
optionpit.com
optionpit.com
optionpit.com
optionpit.com
meeting.admiresty.us
www.optionpit.com
Certificate
The complete raw certificate details for optionpit.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGNDCCBRygAwIBAgISA37QzQ9xDq4yDez+wv5HmnPvMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMDEyMDgwNzExMThaFw0yMTAzMDgwNzExMThaMBgxFjAUBgNVBAMT DW9wdGlvbnBpdC5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDY wPHWQR6+jk0RASw4MedTK9JigZBmwrpLjMu7V6UyY63pPUh2EpV4y8C2bklWhytj VYJOtmQ6NKbzpBTXmulT82UKCRPvKZJT9S/oruVkacZ5t1Q+yyt7LFQcig7dkiXb kvg6NAElMCTEXX1QvJnQBDDLxKjONUyB6ewBT0nXJoxEEAHSWWBnsfg+oN6HmVXV JbfQrK/TB4TC5BEQ2IVP9UZSNGOA9QixYCsTBZSXX3IewQv2rvKpfCj1NWjm2FJR L3xzXTonY2kkG79VEMT5ADnyUww7O0FT8sfCrRcfwERvehMkEVj3qhHWOoLLFMr3 lCPR8XDp5kEjRxC/wn+YNgGYJo9YKRUBdNS8oVCHwB/WM/lc+gX1KDAFjuUkHIGm 3gZJGR0yeGyiUlB4BpEt6WExRH185wjAIxscHkOQqrWS8261kLMuNtSGjaVTgqjD 3AaoNYyk0rTkKjJpU+LWKN4GSiTd7pkgMYQh9jnYqNvhE9p+ZxkR4Fbq6FfVlWQd plzg1r2uMkDspEyCXHUaaoCjfXokftlBVCNz300+x3gFNj9P9hrPNidTD80xehuD E9UClUCdLGjX+zY3nShmrH1tcHYJ7eEdcNo++lpXC55t43MZHo/xihqCJ++ZYDPD eOaiBr7/fQF2DGAAEsbSXpSDovkWXrNv4FLW7RKbJQIDAQABo4ICXDCCAlgwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBRVLEg4ffFvMNaUeTBx8X57Mq+nqTAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzArBgNVHREEJDAigg1vcHRpb25waXQuY29tghF3d3cu b3B0aW9ucGl0LmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEB ATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUG CisGAQQB1nkCBAIEgfYEgfMA8QB3AESUZS6w7s6vxEAH2Kj+KMDa5oK+2MsxtT/T M5a1toGoAAABdkFnneAAAAQDAEgwRgIhAKHukH2A3DoPhEcLH41CB1npaBo8azT3 QfYo5yVerJT3AiEAxSIUqIPbzuN+vdmlLIWLdTC+CSPGw1wo/sarJX7+oHQAdgB9 PvL4j/+IVWgkwsDKnlKJeSvFDngJfy5ql2iZfiLw1wAAAXZBZ56AAAAEAwBHMEUC IQD0Jyl18m4Iu1khfZf9ltDU0FjhfHryPaWUR1sZkJMB0QIgMmhOCERtYSqITiHQ YLX92BWPPlCRKzN7mdvTzFxlAQQwDQYJKoZIhvcNAQELBQADggEBALEQJM8mBKuh PonBOW9bTHSw1voU6eGOOc9Iejc5Vx+tC/0wxB7dGVdXZVmql1kKsxJi48CJW10t Fo2qHB89OEt/nc8gRwB2/TDo31SwplRTZtZbTj6VIvz2O+pGO2t3uIPyDI6xr2WD Pf9QnJ2kSBmTQVsRpyMB45AOeCuJRo/1Q9yN7eBjTMqe+5kT7FAOVmndWvUCCLk6 Jlxwx37qV2OCLh341wHRqXM7IlX+9f8xHkfwHE0twXife62Cy2puDjLFAenOi8vX PiehzfPe74y2k6hoHJqtsUkdQfDEEgHxMrRzsuX+AEHGjylub64OdBq5Khp88vpn ftnh4kVoAys= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2MDx1kEevo5NEQEsODHn UyvSYoGQZsK6S4zLu1elMmOt6T1IdhKVeMvAtm5JVocrY1WCTrZkOjSm86QU15rp U/NlCgkT7ymSU/Uv6K7lZGnGebdUPssreyxUHIoO3ZIl25L4OjQBJTAkxF19ULyZ 0AQwy8SozjVMgensAU9J1yaMRBAB0llgZ7H4PqDeh5lV1SW30Kyv0weEwuQRENiF T/VGUjRjgPUIsWArEwWUl19yHsEL9q7yqXwo9TVo5thSUS98c106J2NpJBu/VRDE +QA58lMMOztBU/LHwq0XH8BEb3oTJBFY96oR1jqCyxTK95Qj0fFw6eZBI0cQv8J/ mDYBmCaPWCkVAXTUvKFQh8Af1jP5XPoF9SgwBY7lJByBpt4GSRkdMnhsolJQeAaR LelhMUR9fOcIwCMbHB5DkKq1kvNutZCzLjbUho2lU4Kow9wGqDWMpNK05CoyaVPi 1ijeBkok3e6ZIDGEIfY52Kjb4RPafmcZEeBW6uhX1ZVkHaZc4Na9rjJA7KRMglx1 GmqAo316JH7ZQVQjc99NPsd4BTY/T/YazzYnUw/NMXobgxPVApVAnSxo1/s2N50o Zqx9bXB2Ce3hHXDaPvpaVwuebeNzGR6P8YoagifvmWAzw3jmoga+/30BdgxgABLG 0l6Ug6L5Fl6zb+BS1u0SmyUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 304489980184491718275976987065679263462383 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-08 07:11:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-08 07:11:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'optionpit.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 884277906195901734399085722443578401183446795295912384107685911706676831706180133629991149411628089541299629834097232373771393195217444183227213913479899885076110378398687732387873718095403915308180050899508682025304891921870763932013226107012707845633458170364359267186991774523906036915387064937437977791004027002551435771001416333719452762386114272934348126643649767936217812490782089048315436080875199467211235602507048781490803802222586869924971992065886070130259303108634879940903029296928213449650631851061395715371842800342359240300610565639687688406149752539841902037784425504329557105698794708412255623363184646172272052747438428453816462925985688758792776875210323080008844188614585325219115282230577906391974990063615687763879012184747151965547555951759052987877949039244396842577056194885684347323529191387832670536610951786262735105625686003367060217684032206896959108545387292526568307685566479402416461086619998150236067323689312601862646791882809854144196573428539541659220199646149838164475579456208930502006479712852452650148972295207890895886766322201416996037246996911779853621025969869145586780030547397695615032185466720739536176319978499787641498032818690747937695884620514640113790471417813559884855561591589 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 552c48387df16f30d694793071f17e7b32afa7a9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'optionpit.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.optionpit.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a80000017641679de00000040300483046022100a1ee907d80dc3a0f84470b1f8d420759e9681a3c6b34f741f628e7255eac94f7022100c52214a883dbcee37ebdd9a52c858b7530be0923c6c35c28fec6ab257efea0740076007d3ef2f88fff88556824c2c0ca9e5289792bc50e78097f2e6a9768997e22f0d70000017641679e800000040300473045022100f4272975f26e08bb59217d97fd96d0d4d058e17c7af23da594475b19909301d1022032684e08446d612a884e21d060b5fdd8158f3e50912b337b99dbd3cc5c650104 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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