journey.production.journeyagency.travel
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 0c:44:8f:0d:6a:3a:2c:f7:cf:7f:16:b4:72:4b:c8:5f was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=journey.production.journeyagency.travel
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:44:8f:0d:6a:3a:2c:f7:cf:7f:16:b4:72:4b:c8:5fSerial Number (int): 16306713583214534721915724146525587551
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 1f:77:06:46:82:41:a5:13:05:f0:f4:90:fc:3e:01:b4:d1:d7:5c:7d
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): a8:5b:85:84:17:6f:c7:3c:b3:2d:bd:18:d7:61:93:f8:0b:cd:b1:fd
Fingerprint (sha256): a5:66:e4:a4:9a:1c:45:79:cd:85:bc:b6:58:ad:41:0a:5e:b0:00:5a:ef:54:9d:48:0d:e9:ff:80:fa:c9:77:9e
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate journey.production.journeyagency.travel
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for journey.production.journeyagency.travel
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
journey.production.journeyagency.travel
*.journey.travel
journey.travel
*.journey.production.journeyagency.travel
*.journey.travel
journey.travel
*.journey.production.journeyagency.travel
Other certificates including the domain name journeyagency.travel
(limited to 100 certificates)
formsjourney.production.journeyagency.travel
fistralbeachhotel.production.journeyagency.travel
formsgifted.production.journeyagency.travel
michelsandtaylor.production.journeyagency.travel
journey.production.journeyagency.travel
kevmas.production.journeyagency.travel
fistralbeachhotel.production.journeyagency.travel
formsjourney.production.journeyagency.travel
journey.production.journeyagency.travel
journey.production.journeyagency.travel
formsgifted.production.journeyagency.travel
cliniquelaprairie.production.journeyagency.travel
michelsandtaylor.production.journeyagency.travel
journeyagency.travel
itsmyspine.production.journeyagency.travel
luxuryfamilyhotels.production.journeyagency.travel
journey-statamic.production.journeyagency.travel
itsmyspine.production.journeyagency.travel
journey.production.journeyagency.travel
*.development.journeyagency.travel
luxuryfamilyhotels.production.journeyagency.travel
hillparkhotel.production.journeyagency.travel
poblanding.production.journeyagency.travel
classicinteriors.production.journeyagency.travel
ombersleycourt.production.journeyagency.travel
journey.production.journeyagency.travel
cliniquelaprairie.production.journeyagency.travel
carpetgiant.production.journeyagency.travel
carpetgiant.production.journeyagency.travel
poblanding.production.journeyagency.travel
journey-statamic.production.journeyagency.travel
ombersleycourt.production.journeyagency.travel
kevmas.production.journeyagency.travel
hillparkhotel.production.journeyagency.travel
fistralbeachhotel.production.journeyagency.travel
formsgifted.production.journeyagency.travel
michelsandtaylor.production.journeyagency.travel
journey.production.journeyagency.travel
kevmas.production.journeyagency.travel
fistralbeachhotel.production.journeyagency.travel
formsjourney.production.journeyagency.travel
journey.production.journeyagency.travel
journey.production.journeyagency.travel
formsgifted.production.journeyagency.travel
cliniquelaprairie.production.journeyagency.travel
michelsandtaylor.production.journeyagency.travel
journeyagency.travel
itsmyspine.production.journeyagency.travel
luxuryfamilyhotels.production.journeyagency.travel
journey-statamic.production.journeyagency.travel
itsmyspine.production.journeyagency.travel
journey.production.journeyagency.travel
*.development.journeyagency.travel
luxuryfamilyhotels.production.journeyagency.travel
hillparkhotel.production.journeyagency.travel
poblanding.production.journeyagency.travel
classicinteriors.production.journeyagency.travel
ombersleycourt.production.journeyagency.travel
journey.production.journeyagency.travel
cliniquelaprairie.production.journeyagency.travel
carpetgiant.production.journeyagency.travel
carpetgiant.production.journeyagency.travel
poblanding.production.journeyagency.travel
journey-statamic.production.journeyagency.travel
ombersleycourt.production.journeyagency.travel
kevmas.production.journeyagency.travel
hillparkhotel.production.journeyagency.travel
Certificate
The complete raw certificate details for journey.production.journeyagency.travel in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSDCCBTCgAwIBAgIQDESPDWo6LPfPfxa0ckvIXzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDUwNzAwMDAwMFoXDTI0MDYwNTIzNTk1OVowMjEw MC4GA1UEAxMnam91cm5leS5wcm9kdWN0aW9uLmpvdXJuZXlhZ2VuY3kudHJhdmVs MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEi5J6Flun57CrpT0VdC qAD0PYn7X2Fl54OKjcchL9KI6yM0c+46rDcCZD6XuGH8dE2KOiLfjggfYWbK3h7z CNKibpN2FqmXqYFO9vL9MzmhSindEEiWpvyM7awqBdgu1gr7iMJvWpAlLwPjHUyY ZE7OZXk5IB4FXrnhAy4oCb1gvtCRegHI0IwlF8uVq/1+iqdaUk4WGEn9P4V+GqpO VTWerXxGf8MI6cf6rLxIs8nrflI57/dt82HYYKxsgjeHD9+K1Dr9mzaxUOQehTLw TXiExnXm5b/T00vjvBYSl2YTVTZV+ZoHaFwO4peY9PV2s1jUS5kExqG148w8C/H8 gQIDAQABo4IDTjCCA0owHwYDVR0jBBgwFoAUgbgOY4qJEhjl+js7UJWf5uWQE4Uw HQYDVR0OBBYEFB93BkaCQaUTBfD0kPw+AbTR11x9MH8GA1UdEQR4MHaCJ2pvdXJu ZXkucHJvZHVjdGlvbi5qb3VybmV5YWdlbmN5LnRyYXZlbIIQKi5qb3VybmV5LnRy YXZlbIIOam91cm5leS50cmF2ZWyCKSouam91cm5leS5wcm9kdWN0aW9uLmpvdXJu ZXlhZ2VuY3kudHJhdmVsMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0w MS5hbWF6b250cnVzdC5jb20vcjJtMDEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIB MHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDEu YW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAxLmFt YXpvbnRydXN0LmNvbS9yMm0wMS5jZXIwDAYDVR0TAQH/BAIwADCCAX8GCisGAQQB 1nkCBAIEggFvBIIBawFpAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEf tZsAAAGH9MKfdAAABAMASDBGAiEAiwSsYxdnod7/07xsNzL9lm8dmP2VTyYNAei6 Wm1QcXoCIQCXS+jQgdskcRmQ4sN9B1lsNlcyMfH0o4gn92zNGpDCbgB2AHPZnokb TJZ4oCB9R53mssYc0FFecRkqjGuAEHrBd3K1AAABh/TCn6kAAAQDAEcwRQIgVxYo T8k6JXU7NQEktAAb4lGoSxz525/BybD53Vhb/+QCIQDDvU30ZonHa1QVaSA1D5/B /eXkEI7EhHa+gxN8++sltQB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s5 2IRzAAABh/TCn3UAAAQDAEcwRQIgVbHpEXhboHEJv6LSXcy1ZGtQbRXjkwgjML1t HTEMxowCIQC12X8/dlgmsV03m860EBy7VNGktTVEMnqPbZDvoJKwoTANBgkqhkiG 9w0BAQsFAAOCAQEAAJ32qaa2Ftu/9UmAxkuXN68g0SdZOYcw8BkdT9rFp5Rz8EhD KpBk35QOGXWSJBLzr5495e7S6E0nfHBQE/HMd2hlUsGotcrtF/YT+r4Vqn5HK6Ma JsdGp/s6I8NVcaB7ZdeaACDjbgm0eQirdCHZebghzZviqRzt7+zqBM1ADPncIfwo 8qu64CznKewmgk2VDJgJxPsM7xGchxVXNfDetCIt1DQfbKqogNtk7oJl8Kd59uYT oRM+GVh3/n+0KuCJcwd3SwHRaeMGLRbA/pfiOKAFFaUc7WwjXkqO64S+gYCrjB3V EmRv1HM5PoE2NcG/e8HPA7cZWv7yN8RvYLXgxQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEi5J6Flun57CrpT0VdC qAD0PYn7X2Fl54OKjcchL9KI6yM0c+46rDcCZD6XuGH8dE2KOiLfjggfYWbK3h7z CNKibpN2FqmXqYFO9vL9MzmhSindEEiWpvyM7awqBdgu1gr7iMJvWpAlLwPjHUyY ZE7OZXk5IB4FXrnhAy4oCb1gvtCRegHI0IwlF8uVq/1+iqdaUk4WGEn9P4V+GqpO VTWerXxGf8MI6cf6rLxIs8nrflI57/dt82HYYKxsgjeHD9+K1Dr9mzaxUOQehTLw TXiExnXm5b/T00vjvBYSl2YTVTZV+ZoHaFwO4peY9PV2s1jUS5kExqG148w8C/H8 gQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16306713583214534721915724146525587551 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'journey.production.journeyagency.travel' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20738943190978727588502985989537275941739411847379379283861642339909954513835318179624511095012193512722270742600620831380519116479427306004055787773961048017037513965364817059725827519630084765671916800396361786466225555687534773893366847564070175474163286484362571375490730696946586034953219451855870315894996637175538725469198475987420267902291956221364538029068320725341119079097320549916896920918397079008672889521796420961736393203899849168251934042529722747241440413658097281684752565174533596093846513918757983407179690342453684051399432592065966427685113314413306497432380898922468547276375398098148665719937 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1f7706468241a51305f0f490fc3e01b4d1d75c7d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'journey.production.journeyagency.travel' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.journey.travel' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'journey.travel' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.journey.production.journeyagency.travel' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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