OV SSL/TLS Certificate for apps.halifax.ca Issued to Halifax Regional Municipality

Certificate is witin its validity period

Issued by Entrust, Inc. (Entrust Certification Authority - L1K)

About the apps.halifax.ca OV SSL/TLS Certificate

This certificate with serial number 3e:22:a5:31:ac:56:1c:f5:c3:9a:97:fe:f2:18:6e:39 for apps.halifax.ca was issued on by Entrust, Inc..

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This OV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this OV SSL/TLS Certificate review for apps.halifax.ca provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Entrust, Inc.

Organization: Entrust, Inc.
Organizational unit: See www.entrust.net/legal-terms
Organizational unit: (c) 2012 Entrust, Inc. - for authorized use only
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 3e:22:a5:31:ac:56:1c:f5:c3:9a:97:fe:f2:18:6e:39
Serial Number (int): 82592024364955060053545341436332371513
Serial Number Length: 126 bits, 16 octets

Subject Key Identifier: aa:a5:ae:8b:44:65:7b:7c:c6:76:c8:0f:12:2f:09:d1:8e:46:10:60
Authority Key Identifier: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf

Fingerprint (SHA-1): a1:bb:78:93:0e:f7:ca:3e:d3:1b:2f:e6:7a:c9:f7:05:52:72:83:84
Fingerprint (SHA-256): 1c:1c:aa:87:12:10:5d:b8:ef:dd:df:74:1c:22:e4:6b:43:76:f3:60:87:fd:73:0d:ef:32:35:69:3c:e4:fe:9e

Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer

Revocation Information

OCSP Server: http://ocsp.entrust.net
CRL Distribution Point: http://crl.entrust.net/level1k.crl

Check the revocation status for certificate apps.halifax.ca
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for apps.halifax.ca

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for apps.halifax.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGpDCCBYygAwIBAgIQPiKlMaxWHPXDmpf+8hhuOTANBgkqhkiG9w0BAQsFADCB
ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT
H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy
MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG
A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y
NDA2MjQxMjQ4NDBaFw0yNTA3MjExMjQ4MzlaMHcxCzAJBgNVBAYTAkNBMRQwEgYD
VQQIEwtOb3ZhIFNjb3RpYTEQMA4GA1UEBxMHSGFsaWZheDEmMCQGA1UEChMdSGFs
aWZheCBSZWdpb25hbCBNdW5pY2lwYWxpdHkxGDAWBgNVBAMTD2FwcHMuaGFsaWZh
eC5jYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANQKKhschO7kfU7v
Hg+QN4tuT73wdsofer/Teg56hF/M1eXubQwHhSN6A2dEQnt1vi+hlamvV/CemiCF
nbzoyPErBGYD5ugZW1srcXxqjCetspD4IJKdR8HAWki7GkYIWW1/XsFqiAL/2QZF
jv79nDQ5ArGGw/MQyYHaFQbm0zyHUWD7uSPiWK75Dh1BTJAvIOYJaNoLb9JggVUG
sP2J3u+fCmzCbouYFqDucqZqAwIX/IBr1EJn/7Gcq/g0XQr0A0krpJAxC7UaI9Dd
R+WApvFdTOmsYr7px8Q+G2/hy8KxouqQ/0NLrAgpiTu5sQs6U+JDEAAsNVtd/ydF
ZDbCczMCAwEAAaOCAuYwggLiMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKqlrotE
ZXt8xnbIDxIvCdGORhBgMB8GA1UdIwQYMBaAFIKicHTdvFM/z3vU981/p2DGCky/
MGgGCCsGAQUFBwEBBFwwWjAjBggrBgEFBQcwAYYXaHR0cDovL29jc3AuZW50cnVz
dC5uZXQwMwYIKwYBBQUHMAKGJ2h0dHA6Ly9haWEuZW50cnVzdC5uZXQvbDFrLWNo
YWluMjU2LmNlcjAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLmVudHJ1c3Qu
bmV0L2xldmVsMWsuY3JsMC4GA1UdEQQnMCWCD2FwcHMuaGFsaWZheC5jYYISYXBw
c2Rldi5oYWxpZmF4LmNhMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF
BQcDAQYIKwYBBQUHAwIwEwYDVR0gBAwwCjAIBgZngQwBAgIwggF9BgorBgEEAdZ5
AgQCBIIBbQSCAWkBZwB2ABoE/0nQVB1Ar/agw7/x2MRnL07s7iNAaJhrF0Au3Il9
AAABkEpKlfMAAAQDAEcwRQIhAKdEaB5K25lBGdf4+4Ak9f/ryCw8WYlHb09+0I9z
iNumAiALqSXy9I5UU4/erH8TH393zJnPD2EYP92l7+LgCSnzLwB2AObSMWNAd4zB
EEEG13G5zsHSQPaWhIb7uocyHf0eN45QAAABkEpKliYAAAQDAEcwRQIgYwCUV8JZ
2cPgxoBV3iJ2OlpUWeKd2KSkk/XGFsOV7p4CIQC8mVxo6BGy9nb0tbvCtaXIvK8m
5dxWSalJhPl/74L2ogB1ABLxTjS9U3JMhAYZw48/ehP457Vih4icbTAFhOvlhiY6
AAABkEpKlhwAAAQDAEYwRAIgfN16c9KIPzThSaLL8+KAW+/YnmIZpRVupQxbORVw
hMwCIE+BZG6rFr+AvZUvmaa37NC0Gw1foU9XPU5GWkXem+A1MA0GCSqGSIb3DQEB
CwUAA4IBAQDRFWvtCRWnlRvSXZ80Q1JndUeGpgJ553et8DY+6M/p6xO8g5nqvzjg
38Bx4dGq4jVT/1E2b0yq3t+kWPvnW4Xd3Lq0OqlYt7nJglfWXWgWYvs6EIf5OeYX
cI9wo8bR326PzFHOJQHByxZjr0TgtcM2XeFlAxq5v/OolDnENXbOuP/blTYfF9pD
4qemO70WQoT+fs07KDh45zIh/q3vVhPxjbl7ecaLcnvDLj0vWS5i1s8j1jA+GgkB
mfMQygAfeQlVNWF9IubixBnYQzH5wbojh3A/61irGy+3y8xjLT8rZReNRAvS3eHo
pqYPprAuiM/3eiE+SXE69fZiI8KI8fPs
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1AoqGxyE7uR9Tu8eD5A3
i25PvfB2yh96v9N6DnqEX8zV5e5tDAeFI3oDZ0RCe3W+L6GVqa9X8J6aIIWdvOjI
8SsEZgPm6BlbWytxfGqMJ62ykPggkp1HwcBaSLsaRghZbX9ewWqIAv/ZBkWO/v2c
NDkCsYbD8xDJgdoVBubTPIdRYPu5I+JYrvkOHUFMkC8g5glo2gtv0mCBVQaw/Yne
758KbMJui5gWoO5ypmoDAhf8gGvUQmf/sZyr+DRdCvQDSSukkDELtRoj0N1H5YCm
8V1M6axivunHxD4bb+HLwrGi6pD/Q0usCCmJO7mxCzpT4kMQACw1W13/J0VkNsJz
MwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 82592024364955060053545341436332371513
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-24 12:48:40 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-21 12:48:39 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nova Scotia'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Halifax'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Halifax Regional Municipality'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'apps.halifax.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26767532942822936451446917547188004530279764889708232881089120429436387401555351682235152271386302717054016319588455547847372466526614098411084840926985955858529710752878646900351604674889635787243813466663371884901740327213384728377294020373244936925441295460512822688675003647157214649152965390310859962245312185075483106316805475540005072676702411656647841407336658667526034466863929466953968072744619482989557027596457855637865600593256365875770933041309476666462472045967220218699331132247207441737460367246277359487068297819828856195854866128400617397530692893156094263125440114366954675018559997149622703387443
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							aaa5ae8b44657b7cc676c80f122f09d18e461060
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.halifax.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'appsdev.halifax.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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