hello.gohartland.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:d5:cd:7a:cf:f3:d6:6f:1c:04:35:e6:94:ba:a0:99:e5:f8 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hello.gohartland.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d5:cd:7a:cf:f3:d6:6f:1c:04:35:e6:94:ba:a0:99:e5:f8Serial Number (int): 421202417298331123869144039873767441819128
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 56:f5:6b:4b:e8:51:c5:fe:69:8b:9c:6f:1e:32:ce:5e:46:2d:19:f7
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c1:12:98:93:bf:24:ea:cb:d9:a9:46:3b:38:54:6d:7a:12:63:60:12
Fingerprint (sha256): dd:c3:9f:c1:67:1b:e8:48:c7:35:34:3d:0d:11:cf:01:87:88:9b:e4:66:47:aa:94:bf:20:b0:6e:25:2a:39:ad
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hello.gohartland.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hello.gohartland.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hello.gohartland.com
Other certificates including the domain name gohartland.com
(limited to 100 certificates)
hello.gohartland.com
silva.wedohelpdesk.com
support.onlineboost.co.za
support2.denpasoft.com
support.onlineboost.co.za
support.onlineboost.co.za
hello.gohartland.com
help.gohartland.com
forms.dataconnectors.com
gohartland.com
help.gohartland.com
silva.wedohelpdesk.com
support.onlineboost.co.za
landing.gohartland.com
gohartland.com
intranet.gohartland.com
vocesvitalessupport.applaudostudios.com
vocesvitalessupport.applaudostudios.com
support2.denpasoft.com
gohartland.com
silva.wedohelpdesk.com
intranet.gohartland.com
intranet.gohartland.com
forms.lumicaus.com
suporte.astasolucoes.com.br
help.gohartland.com
hello.gohartland.com
support2.denpasoft.com
intranet.gohartland.com
help.gohartland.com
silva.wedohelpdesk.com
support.onlineboost.co.za
support2.denpasoft.com
support.onlineboost.co.za
support.onlineboost.co.za
hello.gohartland.com
help.gohartland.com
forms.dataconnectors.com
gohartland.com
help.gohartland.com
silva.wedohelpdesk.com
support.onlineboost.co.za
landing.gohartland.com
gohartland.com
intranet.gohartland.com
vocesvitalessupport.applaudostudios.com
vocesvitalessupport.applaudostudios.com
support2.denpasoft.com
gohartland.com
silva.wedohelpdesk.com
intranet.gohartland.com
intranet.gohartland.com
forms.lumicaus.com
suporte.astasolucoes.com.br
help.gohartland.com
hello.gohartland.com
support2.denpasoft.com
intranet.gohartland.com
help.gohartland.com
Certificate
The complete raw certificate details for hello.gohartland.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXjCCBUagAwIBAgISBNXNes/z1m8cBDXmlLqgmeX4MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MDIxODM3NDhaFw0x OTA5MzAxODM3NDhaMB8xHTAbBgNVBAMTFGhlbGxvLmdvaGFydGxhbmQuY29tMIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7FBM2IBR9eILc3jwtctsDyCu /WMF2HNbwKDWA8tv1xt235w76EiA0dUQ3aA9xbmIIpmeJD1Vt61cI2TVCMa+/NDl 5xqdtmgdWKJPmQJdiSA1IUjUUVWzKi2ODN6kdJFaSoinS+S/gnBCzgyJWGPcAbin k41DbhubIMbqKfIkFg/pG/YQBYUORXO5lzESz5hjTWvb5qBRJgN5s4p0kmF2YL7S x6d3aSkPjbYzYiCbbMPY5aeEHmZjWQvpnOwwCysAUPMlqFNifsYpux4dmOblsiPl +QSZor5WVf1+xh3GEIUt3j0M/1XFu3UUS25xSDs4TK3lwklN41TMvO6tSKMpIUhr J3318sN1763Fpb6N5T2kFTgDDB9aFNHg2yKGEYxZj96JE6UDwrlxDOTAu9NfNW6m QN7K4nXvBraUD8vSBPqTEaXauaJHO/zEadADjstX+hUC+DzeEpe9Tysdfg9Eh27c Yecn1DRoK7ZyGggqgn2bHgnTYBXs2psvwJfAMJUFGI+L0Bnt7RSLJ3fGzBWmpHi3 mD8LJkJTu7lN4GisxqLA0Ohej6s4Ft/t940rwtGYzWj+EPShEASs4DPjljrmX7+Z pQNEfK8SBpYFqCKUvD53pWTnvpfcFDjkqrzEfHDEMJyLgy3e41OKJQmT0k6Qy81B XQpZIFdOWaJcAPrXyt0CAwEAAaOCAmcwggJjMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUVvVrS+hRxf5pi5xvHjLOXkYtGfcwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3 pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2Nz cC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2Vy dC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzAfBgNVHREEGDAWghRoZWxsby5nb2hh cnRsYW5kLmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAo MCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQIGCisG AQQB1nkCBAIEgfMEgfAA7gB1AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgia N9kTAAABa7QxdBsAAAQDAEYwRAIgROHPWFEQBq09CRnFDxXTuBJlASCGTk3NbN3/ sjguvyACIHHD/ryAwHQviatd0m9xpUsD9WW7rPnqTraCgIWK7VjfAHUAY/Lbzeg7 zCzPC3KEJ1drM6SNYXePvXWmOLHHaFRL2I0AAAFrtDF16gAABAMARjBEAiB3Vjur 6jW98rLuGz2fzdWxmqvlli/iDIfXeNbXtmK2RgIgeYI6/Y4n5LBrMJYVBZcks07U 2UIZiZeP5/C9b1XD6KcwDQYJKoZIhvcNAQELBQADggEBADBAGC8kEv/+nWmSAHzr 2xhpGi2KXU49zvqv4Leq8EgCT0U5l1bC8x0CHjpm/9jJ4pFk9l42LzPKLd3dBDpE +gPLEPdyjPme88YBGAn9XOA+RuszIRlolV3bh6VlLUGt8Vc72hWgJENyyNAz/2lx jeSqcHwIeP9sONoBcBAfomfXc3/iMFDpbdcVN9GykiMT7pttKzE+gKAWHQ0ejPOX QDmiRSoDLyllWi4tdfci/Bl77RFBgC3wFrh1nVsiLy2QltkfKcDYBLbwbTL6EM25 YeuCeAw8aKzZbqo4yQUWGurPbtiVUa3o//Vxg4KcKAbjFRJ3lMKAUUVKrYXvDov5 WYo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7FBM2IBR9eILc3jwtcts DyCu/WMF2HNbwKDWA8tv1xt235w76EiA0dUQ3aA9xbmIIpmeJD1Vt61cI2TVCMa+ /NDl5xqdtmgdWKJPmQJdiSA1IUjUUVWzKi2ODN6kdJFaSoinS+S/gnBCzgyJWGPc Abink41DbhubIMbqKfIkFg/pG/YQBYUORXO5lzESz5hjTWvb5qBRJgN5s4p0kmF2 YL7Sx6d3aSkPjbYzYiCbbMPY5aeEHmZjWQvpnOwwCysAUPMlqFNifsYpux4dmObl siPl+QSZor5WVf1+xh3GEIUt3j0M/1XFu3UUS25xSDs4TK3lwklN41TMvO6tSKMp IUhrJ3318sN1763Fpb6N5T2kFTgDDB9aFNHg2yKGEYxZj96JE6UDwrlxDOTAu9Nf NW6mQN7K4nXvBraUD8vSBPqTEaXauaJHO/zEadADjstX+hUC+DzeEpe9Tysdfg9E h27cYecn1DRoK7ZyGggqgn2bHgnTYBXs2psvwJfAMJUFGI+L0Bnt7RSLJ3fGzBWm pHi3mD8LJkJTu7lN4GisxqLA0Ohej6s4Ft/t940rwtGYzWj+EPShEASs4DPjljrm X7+ZpQNEfK8SBpYFqCKUvD53pWTnvpfcFDjkqrzEfHDEMJyLgy3e41OKJQmT0k6Q y81BXQpZIFdOWaJcAPrXyt0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 421202417298331123869144039873767441819128 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-02 18:37:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-30 18:37:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hello.gohartland.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 964075672502241680409398664057653378071527214911239173767391892239440630815807390677136373649884352754680175384587608927484556980446502924928877309675609561552126945803904899274086161968482153313678077166930203408233423910292181662483907928241763774356160299415911743084464969549363456816734610096109285071499302070632369795305991144409965375430808594306623843311787301081327135335150738380391183062277709476004233130665542783899310925014293379715769743776852589425713267545164474554317251267439817089349844878364356040082601706468117823378985811655526942424872801072904721950574632437753845831115659676501834913454653341579084506648680604863996671936215065926618063672403233999619550067719682809149510923536552644463077998959943076749230467776558878586182472280127693131680314678641730063637337730306179460400334615422887598720929550207064385873570898075036967686972151836435481086835131670286177366131143465123959933830851650295763134136142089282328222831845721227691748947592227058232832228286367283486724170719034049564582433965631193199481608662662570380016749534608325734509936893653123539474751685266046361868994879174392678781795502281275516486422507334401064580474064946911827828397691287520301957754682043761169841171974877 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 56f56b4be851c5fe698b9c6f1e32ce5e462d19f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hello.gohartland.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016bb431741b0000040300463044022044e1cf58511006ad3d0919c50f15d3b812650120864e4dcd6cddffb2382ebf20022071c3febc80c0742f89ab5dd26f71a54b03f565bbacf9ea4eb68280858aed58df00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016bb43175ea0000040300463044022077563babea35bdf2b2ee1b3d9fcdd5b19aabe5962fe20c87d778d6d7b662b646022079823afd8e27e4b06b309615059724b34ed4d9421989978fe7f0bd6f55c3e8a7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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