rapidcityrestoration.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:73:ff:60:a1:51:4d:a3:a5:0a:9e:22:b6:f7:62:2c:0a:d4 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rapidcityrestoration.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:73:ff:60:a1:51:4d:a3:a5:0a:9e:22:b6:f7:62:2c:0a:d4Serial Number (int): 387921070794281938307452009933644264901332
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 62:1a:37:2b:7c:82:64:a1:bd:8d:54:9c:37:3c:de:e2:d9:0a:dd:52
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 4f:fc:69:b1:7e:34:ec:84:e3:5d:ef:ae:90:6c:31:78:5f:05:55:4d
Fingerprint (sha256): ba:ee:cb:5f:cd:a9:52:f8:24:c1:d5:47:9b:8f:93:7b:aa:48:2b:29:e9:48:bb:9b:ce:a6:fe:8c:75:cc:e1:ba
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate rapidcityrestoration.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rapidcityrestoration.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rapidcityrestoration.com
www.rapidcityrestoration.com
www.rapidcityrestoration.com
Other certificates including the domain name rapidcityrestoration.com
(limited to 100 certificates)
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
pcikc.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
dev.rapidcityrestoration.com
rapidcityrestoration.com
trevorwendt.com
trevorwendt.com
rapidcityrestoration.com
pcikc.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
trevorwendt.com
dev.rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
pcikc.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
dev.rapidcityrestoration.com
rapidcityrestoration.com
trevorwendt.com
trevorwendt.com
rapidcityrestoration.com
pcikc.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
rapidcityrestoration.com
trevorwendt.com
dev.rapidcityrestoration.com
rapidcityrestoration.com
Certificate
The complete raw certificate details for rapidcityrestoration.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGhDCCBWygAwIBAgISBHP/YKFRTaOlCp4itvdiLArUMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MTUwMDEwMDBaFw0x OTA5MTMwMDEwMDBaMCMxITAfBgNVBAMTGHJhcGlkY2l0eXJlc3RvcmF0aW9uLmNv bTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMAspy1/x88f36YkbqDQ ICB0gsvDj5J1MUERM6axI9ZhmWOMvz5VHZY6I5PkbtmK9l9y5VqW741owulrcyxc gHJmpRBmrzp7PVEnU8SElxMNkpqmdhiYqIJ4X4gGqBWcVY+l7CwUMewvfBrrJo4j kJY1HIsW/5jF0r3oEYD1batKQJ6guUj3UKkkYYVcb80xH24vA/ALCj1MbUrBFlTL 86Z4cVVYrnZc5k3s74grLkqou6RHmWEwxtEnNkFz+QtV/kkFu3737UR8qwt6+dj9 qIjpov7RC6K57tNg3g0JX4ccecuzHZjY6a+rcRYLUBEvaY5m3kOGrNhjuvZV9kOp /rBU7hybb5Ps13RLP4jqGfzCTtuSVVWQ2IryDtJ9yDF3pWdpulHYNlVae7iZQUqD 0fupoS/Qojo3oT53mc/JrD7V/FXbjK26ZeIrJ/3qlP7c8YMSzWfEyhdQ3/nYnQL5 b2u+DIOKqyY+Mz45409NCrwNYLGlRVLZKoV34vNSfZDYKtS7JRdjLJNI3AiwiPCo wALyh67vFQ0Iiw0U9mEkFzT8Tw1YGTY2a42/D/l5ljd3dEW3JkFqV3JJ7wXXywJ3 nyFpTO01in80heL8IGtg7I4mr7PHyfzbM5ydWNZZmI0q9UcvWYawjd/sTGRD1SM4 wwBIzOOoGBWAzzfsyzgeOENNAgMBAAGjggKJMIIChTAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFGIaNyt8gmShvY1UnDc83uLZCt1SMB8GA1UdIwQYMBaAFKhKamMEfd26 5tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDov L29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDov L2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wQQYDVR0RBDowOIIYcmFwaWRj aXR5cmVzdG9yYXRpb24uY29tghx3d3cucmFwaWRjaXR5cmVzdG9yYXRpb24uY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB 8wSB8ADuAHUA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFrWK8f vAAABAMARjBEAiB/s2qa6x3uX/QSW8UbJA/fHycU1d4YqgKfu/c3dPAEGgIgES4Z 8RLdolaUhxwu5KSrgz7DOIC0/R7ZToeXaALrYz0AdQBj8tvN6DvMLM8LcoQnV2sz pI1hd4+9daY4scdoVEvYjQAAAWtYrx+wAAAEAwBGMEQCIBnxe/tyReHPEhBbU5Fn Ch/HMZFd2QpWX40N/aFZVT+eAiAp6S8azIjL+MChL+b45t+PrpKwMPVhCpU316E8 oLXc4TANBgkqhkiG9w0BAQsFAAOCAQEAUo1ZBioItOpJiKpCtfAG17fjiPY7jzTq nxSYrkJgEPwfnb6Kq+fiYDOnQXT2BXi8SVBy6pBU+R+TDvhBotZt0fnXlqXzEeD4 7R+x1/MAD3W3mie+QWPlEp32vFcnvYTYR+5FW5MNyGyTn4/1wvmaT/aqEWjcMoD/ B0J3QiAk/ecRhGMCI5HAqoLqBNaBrlqx0WV0xsIhlM0IMlNzHKBNM6FXaS7+FRbp UAZe6hQl7/5A4VIDMpV26Ice2lxh3h8t7hQ9W3vAkShCxC6EBPxD+bfNNEVvd9nK qcvmDb39+JqjxEyMAaahCoyBNChbUeLxTLsPNq2sNAPnSGcYjguCww== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwCynLX/Hzx/fpiRuoNAg IHSCy8OPknUxQREzprEj1mGZY4y/PlUdljojk+Ru2Yr2X3LlWpbvjWjC6WtzLFyA cmalEGavOns9USdTxISXEw2SmqZ2GJiognhfiAaoFZxVj6XsLBQx7C98GusmjiOQ ljUcixb/mMXSvegRgPVtq0pAnqC5SPdQqSRhhVxvzTEfbi8D8AsKPUxtSsEWVMvz pnhxVViudlzmTezviCsuSqi7pEeZYTDG0Sc2QXP5C1X+SQW7fvftRHyrC3r52P2o iOmi/tELornu02DeDQlfhxx5y7MdmNjpr6txFgtQES9pjmbeQ4as2GO69lX2Q6n+ sFTuHJtvk+zXdEs/iOoZ/MJO25JVVZDYivIO0n3IMXelZ2m6Udg2VVp7uJlBSoPR +6mhL9CiOjehPneZz8msPtX8VduMrbpl4isn/eqU/tzxgxLNZ8TKF1Df+didAvlv a74Mg4qrJj4zPjnjT00KvA1gsaVFUtkqhXfi81J9kNgq1LslF2Msk0jcCLCI8KjA AvKHru8VDQiLDRT2YSQXNPxPDVgZNjZrjb8P+XmWN3d0RbcmQWpXcknvBdfLAnef IWlM7TWKfzSF4vwga2Dsjiavs8fJ/NsznJ1Y1lmYjSr1Ry9ZhrCN3+xMZEPVIzjD AEjM46gYFYDPN+zLOB44Q00CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 387921070794281938307452009933644264901332 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-15 00:10:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-13 00:10:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rapidcityrestoration.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 784003256769411240021720236633283928524475227369111428781774759704153202068360552016360660540930811879134953395362080792746077937451481571666614658516261933010270271459710903380765302860846964607829472511106813904930883686087303820939190601403263950642701615579579763739257527071247177038079486797588943381822420442442209698092598834392390544571701330651540693749743334277936256592597893540948154294896820557909590058497328833382642566678768562029787325141541937314722495005966451718806380680855523743915664947146754935289640938961344454136794383808531915621304665945448427557980606097938342959046314949684437572393744263722192071876886889273847908541351519903477387946614902605091407359585422584188687469999576678514759284599512134514360905172654197268339347481971907085708423191345515771985612581780707711467874283670304285699809914307422905824756890555845260051371484051285080585542120448624133088911568201640574269244006791823326590202610471551299650985147963381226720082428396987776137866277571173556788316615535275722104815452793298341785768176951155243871051869050620115256460746527802926258399489255043836182013489159214565222086960479522132478765192957518840111226583056777899339110165895300855336145528073244299207730807629 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 621a372b7c8264a1bd8d549c373cdee2d90add52 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rapidcityrestoration.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rapidcityrestoration.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b58af1fbc000004030046304402207fb36a9aeb1dee5ff4125bc51b240fdf1f2714d5de18aa029fbbf73774f0041a0220112e19f112dda25694871c2ee4a4ab833ec33880b4fd1ed94e87976802eb633d00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b58af1fb00000040300463044022019f17bfb7245e1cf12105b5391670a1fc731915dd90a565f8d0dfda159553f9e022029e92f1acc88cbf8c0a12fe6f8e6df8fae92b030f5610a9537d7a13ca0b5dce1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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