aldoi.gov
- State of Alabama -
Issued by GlobalSign Organization Validation CA - SHA256 - G2
About this certificate
This digital certificate with serial number 67:fb:bf:b9:18:8e:be:b6:61:9a:c0:d8 was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
State of Alabama
Organization:
State of Alabama
State / Province:
AL
Locality: Montgomery
Country: US
Locality: Montgomery
Country: US
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 67:fb:bf:b9:18:8e:be:b6:61:9a:c0:d8Serial Number (int): 32181301778737257134140604632
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: 88:df:da:d9:56:42:4d:99:ae:36:58:2d:57:51:b0:10:26:4e:fb:85
AuthorityKeyId: 96:de:61:f1:bd:1c:16:29:53:1c:c0:cc:7d:3b:83:00:40:e6:1a:7c
Fingerprint (sha1): 52:45:a7:ae:dd:7d:1f:3d:ab:a9:90:1d:2f:19:82:46:20:41:28:ad
Fingerprint (sha256): d6:6a:ac:e2:31:09:f1:30:56:a2:1f:93:b0:6c:44:e0:eb:88:de:3b:16:f3:c0:66:c4:d6:3c:77:35:12:f2:79
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsorganizationvalsha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsorganizationvalsha2g2CRL Distribution Point: http://crl.globalsign.com/gs/gsorganizationvalsha2g2.crl
Check the revocation status for certificate aldoi.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aldoi.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aldoi.gov
Other certificates including the domain name aldoi.gov
(limited to 100 certificates)
Certificate
The complete raw certificate details for aldoi.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHITCCBgmgAwIBAgIMZ/u/uRiOvrZhmsDYMA0GCSqGSIb3DQEBCwUAMGYxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTwwOgYDVQQDEzNH bG9iYWxTaWduIE9yZ2FuaXphdGlvbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0g RzIwHhcNMTcxMjE1MjAyMTAyWhcNMTkwMTE2MTc1NTAyWjBeMQswCQYDVQQGEwJV UzELMAkGA1UECBMCQUwxEzARBgNVBAcTCk1vbnRnb21lcnkxGTAXBgNVBAoTEFN0 YXRlIG9mIEFsYWJhbWExEjAQBgNVBAMTCWFsZG9pLmdvdjCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAK5fK6CmBbLD9jlSqUjJ/8H9RbE08Qxousv/CBxb j2bjhhBXulWww0JRLcUkHLmniKgEd09zBRxa9hmpQghW722MIWiFPiDoo9ffx7o0 cmzk5IbnIQmUKAIzwYKxTotDfe2bn6icn8dxCDN9eYCYTNCl/T9DY/PcTE0/Bbco Qm8C5x4qKbjUQMln2Ul2YVHEzgAmOZyw1DQ/LL2TdPfQ87l5BhZKoZBQFD3MaK4y mrFBBUUzEsgS9K95aUzVagfszPKhYZj1trIiIKh846j3A8t1KpbPxk0YUVinqSF1 mT1D+QSDI4tZ2kDmiDwn/vRnc4lZPSUDINfstwGEAQQ/K2MCAwEAAaOCA9UwggPR MA4GA1UdDwEB/wQEAwIFoDCBoAYIKwYBBQUHAQEEgZMwgZAwTQYIKwYBBQUHMAKG QWh0dHA6Ly9zZWN1cmUuZ2xvYmFsc2lnbi5jb20vY2FjZXJ0L2dzb3JnYW5pemF0 aW9udmFsc2hhMmcycjEuY3J0MD8GCCsGAQUFBzABhjNodHRwOi8vb2NzcDIuZ2xv YmFsc2lnbi5jb20vZ3Nvcmdhbml6YXRpb252YWxzaGEyZzIwVgYDVR0gBE8wTTBB BgkrBgEEAaAyARQwNDAyBggrBgEFBQcCARYmaHR0cHM6Ly93d3cuZ2xvYmFsc2ln bi5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQICMAkGA1UdEwQCMAAwSQYDVR0fBEIw QDA+oDygOoY4aHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9ncy9nc29yZ2FuaXph dGlvbnZhbHNoYTJnMi5jcmwwFAYDVR0RBA0wC4IJYWxkb2kuZ292MB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQUiN/a2VZCTZmuNlgtV1Gw ECZO+4UwHwYDVR0jBBgwFoAUlt5h8b0cFilTHMDMfTuDAEDmGnwwggH3BgorBgEE AdZ5AgQCBIIB5wSCAeMB4QB3AN3rHSt6DU+mIIuBrYFocH4ujp0B1VyIjT0RxM22 7L7MAAABYFvWXD8AAAQDAEgwRgIhAOGfp9CsPvtZ0bfXw6fmRxWalluhUpuIEU0s eK0mVMMUAiEAg4lFSzbPxcid4JU9BxGtPK9/GoYnj0fxXZvsy8wDDoEAdwBWFAaa L9fC7NP14b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAWBb1lx9AAAEAwBIMEYCIQDP zO0VRRW0687jVYJM60m39GPIETjPUBPLZDzq+/UYCAIhAIuOuYmOdAxs5onDK/Q5 LfLEmTyLKA1ffDAs41iT0yHbAHUApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fN DsgN3BAAAAFgW9ZfAgAABAMARjBEAiADHGcSNjD29IfLADWAMv1D9heJDFFoenuP KAOoQtQsXwIgd76fZalgYDKJgMoLRhYXc1PZi6/MFrvRIATE1Ro9QMoAdgDuS723 dc5guuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9ywAAAWBb1mH6AAAEAwBHMEUCIFts uB3/InetaLaN4/PHJYATdstsijes4Tmg1GSnn/91AiEA3qoeuSkyOnk7TxWHAu+G nE1lXpM58xD12MS4ZNwJXIcwDQYJKoZIhvcNAQELBQADggEBAKi6qwolXdWnHDH4 q1dIwA/8tkbTY60dZHGWjIEd1lG2EvvpdkvLMoFyOg0fDXe+HjwigRniWj8H7WIe SKZ7TtF1fMVaYNsCDLomZNoPHVclSRqWfKur4dGQaqfpZnttCJuDvf4v2tY7LLZN h8hrpR0TiZpPW4zLuI/jCWBJdrvytu4D9S4I/gFNfOOHRozav4eI2Fw3I/6rpC5r Q/QcMXzAyDNAtp5zwK17CZrGKQeRPHCCPdglMj/IvfzmvBL4U/y06ggKXEvSEC6r wE46V1QAUegzXQMEEM9ujuuSxy6LARj/3dRhfYzP2tJ++e2+Jb4oCVm2vVERvd29 uMLJ9Qo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArl8roKYFssP2OVKpSMn/ wf1FsTTxDGi6y/8IHFuPZuOGEFe6VbDDQlEtxSQcuaeIqAR3T3MFHFr2GalCCFbv bYwhaIU+IOij19/HujRybOTkhuchCZQoAjPBgrFOi0N97ZufqJyfx3EIM315gJhM 0KX9P0Nj89xMTT8FtyhCbwLnHiopuNRAyWfZSXZhUcTOACY5nLDUND8svZN099Dz uXkGFkqhkFAUPcxorjKasUEFRTMSyBL0r3lpTNVqB+zM8qFhmPW2siIgqHzjqPcD y3Uqls/GTRhRWKepIXWZPUP5BIMji1naQOaIPCf+9GdziVk9JQMg1+y3AYQBBD8r YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 32181301778737257134140604632 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Organization Validation CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-15 20:21:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-16 17:55:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montgomery' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'State of Alabama' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aldoi.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22012395347337425601007222682665838422084983880478154620313865593897908904751578343870792542084451537840969867809134498581851141615658665627680553470681555248178697050979783993535673214114555604338964775181698233960003269858727484497949329181470984841281246550359421558942761072640841370092251250722973326234137920925279678268005355212152822221995451770954969471664625571091591683856511250203324603221971290522835008254229549800312086352584123425892066573608406805302247292973882865925580351609070258743797630881169034508645218812625740506323340495205019526178105489836511315691399271910618126498111684663131345202019 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (147 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsorganizationvalsha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsorganizationvalsha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/gsorganizationvalsha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aldoi.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 88dfdad956424d99ae36582d5751b010264efb85 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 96de61f1bd1c1629531cc0cc7d3b830040e61a7c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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