test.equestrians.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:31:97:5e:b5:47:98:18:b4:91:b4:7a:90:ab:4e:50:8c:9f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=test.equestrians.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:31:97:5e:b5:47:98:18:b4:91:b4:7a:90:ab:4e:50:8c:9fSerial Number (int): 278211898954463358608073990582815807278239
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9d:fc:6b:91:5a:11:a1:be:26:66:62:5a:c1:25:17:c6:71:59:3b:17
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 49:a3:c7:bd:c4:1d:76:65:2e:6d:9d:f3:4e:5c:0b:ba:56:21:94:8e
Fingerprint (sha256): ec:e5:d3:28:95:d1:bc:61:9f:e4:cb:14:1c:40:0e:f4:3d:b9:79:bb:87:cd:36:37:42:b0:4d:2d:67:63:a5:ee
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate test.equestrians.cz
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for test.equestrians.cz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
test.equestrians.cz
Other certificates including the domain name equestrians.cz
(limited to 100 certificates)
www.equestrians.cz
test.equestrians.cz
www.equestrians.cz
equestrians.cz
equestrians.cz
www.equestrians.cz
www.equestrians.cz
equestrians.cz
equestrians.cz
equestrians.cz
equestrians.cz
test.equestrians.cz
equestrians.cz
equestrians.cz
outlet.equestrians.cz
eas.factorypro.cz
equestrians.cz
eas.factorypro.cz
eas.factorypro.cz
test.equestrians.cz
www.equestrians.cz
eas.factorypro.cz
outlet.equestrians.cz
www.equestrians.cz
outlet.equestrians.cz
equestrians.cz
test.equestrians.cz
test.equestrians.cz
www.equestrians.cz
test.equestrians.cz
www.equestrians.cz
test.equestrians.cz
outlet.equestrians.cz
eas.factorypro.cz
www.equestrians.cz
test.equestrians.cz
test.equestrians.cz
www.equestrians.cz
equestrians.cz
equestrians.cz
www.equestrians.cz
www.equestrians.cz
equestrians.cz
equestrians.cz
equestrians.cz
equestrians.cz
test.equestrians.cz
equestrians.cz
equestrians.cz
outlet.equestrians.cz
eas.factorypro.cz
equestrians.cz
eas.factorypro.cz
eas.factorypro.cz
test.equestrians.cz
www.equestrians.cz
eas.factorypro.cz
outlet.equestrians.cz
www.equestrians.cz
outlet.equestrians.cz
equestrians.cz
test.equestrians.cz
test.equestrians.cz
www.equestrians.cz
test.equestrians.cz
www.equestrians.cz
test.equestrians.cz
outlet.equestrians.cz
eas.factorypro.cz
www.equestrians.cz
test.equestrians.cz
Certificate
The complete raw certificate details for test.equestrians.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXzCCBUegAwIBAgISAzGXXrVHmBi0kbR6kKtOUIyfMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjkwMzQ3MjVaFw0x OTEyMjgwMzQ3MjVaMB4xHDAaBgNVBAMTE3Rlc3QuZXF1ZXN0cmlhbnMuY3owggIi MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDldyU6zkzB94jJH8/3TDfdHSOp KMB3ThQTetEL3ImV8NoDUKs/s/+/UV5MsNJMF4GRm59cY6ql1OL3/3eEpNPDCAM5 jHUbOICBzWuxNiWY9dKEDLklqO/O/xptTInwIKXE2o9i4mgCW1pcGCzL2OLJCo0t Vd6xqjh6DUn9givEWq4m/VMEOFF9YwnzX2duuFpECClBtBljIl1O3G50zC2+ER9q 8fST9jfQV2gSTaea4KC2if1K/6KAEUqZ/ixJB11ymWhov2ce2wGueiT9RPtmK3Kf E6b4JwLMBswfCgN23x3tPebmzcQnzCZgdBXaWLvqKbcErovj9z5tgL0zERUkfHIi 4tJgHZ+ibnVfcRN5mquVqTCivUK1JeIpa3xgDABTEPOpJ0FKjpxUJxM0Xs38WeGR kyiMqsvzbdZWtb4jBgvOpsQpbfP0DOuaIdbaXBvepODPxvgGqLKT2+80nS4/GM4A HxQEZHL1z5TigZfZeGm0XTBxtKKOspboUumAeyQnb1bd8ikqQw9DK76ujzWPJZA4 JiU1+NPXES6XURfh7kgdNxVuzy51kv8mbyjMcvwgd8dDWJRr/PublgnV5o0m60vQ 2vdHkC4N0mWEmhtiNULvN1hy+Dhd7P3xFvxvbt7TG73x4iuGmPQL1saUxXT+7D9V YpIvzpE5z8nLr8uxUwIDAQABo4ICaTCCAmUwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBSd/GuRWhGhviZmYlrBJRfGcVk7FzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObem RWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3Nw LmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0 LmludC14My5sZXRzZW5jcnlwdC5vcmcvMB4GA1UdEQQXMBWCE3Rlc3QuZXF1ZXN0 cmlhbnMuY3owTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEE AdZ5AgQCBIH2BIHzAPEAdgDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb /gAAAW17WEX5AAAEAwBHMEUCIQC6uovxk+d2DsMv6LZ4FKPoUHJaJGe6YUz/Y4k4 c38PFgIgLUlIB5C4QVP2OiL4QUyesUKpFWJsnQQ2lbskl5gppHQAdwApPFGWVMg5 ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAW17WEP9AAAEAwBIMEYCIQCs9FU4 fadtlmFXlVcPGWnu0c1r3KmO4xmlyCF3JCZT2QIhAO3HtyOtNIu91uFyC/jg+8sE MPmVN0YHy9GZlWcYWjV1MA0GCSqGSIb3DQEBCwUAA4IBAQA+9UJ5NjrCWRV2bXWT B2x4h7VrC9otwnF54+RgQwocmOanZyVwTJOnla26thpTJEmLG8bHurmNU5ba/bQn 3cAo5tzgRvEndN/ZDg9/NVJCaYradTLrmTsdmg8xpf1tM+RjU8N78wPGSF3g5urg cHK00jmqxv6C4p+ljwBAtUbLDgCrv6Lh50M6ZzWvCOxzqn8p0PDexJKxfcKXcQyM d1ql9ZbfcrjcbkYlvvsmSVr6qEAEbWhUdyEefzkXsy6TX4mZ+r3zwx8p/uXDN1iC CYVy5ae5O7znzMU8+FHMF5AhEiyjomB5UctgyWjCBtp0U28WK6l1EaCMipR5hY1W Rvia -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5XclOs5MwfeIyR/P90w3 3R0jqSjAd04UE3rRC9yJlfDaA1CrP7P/v1FeTLDSTBeBkZufXGOqpdTi9/93hKTT wwgDOYx1GziAgc1rsTYlmPXShAy5Jajvzv8abUyJ8CClxNqPYuJoAltaXBgsy9ji yQqNLVXesao4eg1J/YIrxFquJv1TBDhRfWMJ819nbrhaRAgpQbQZYyJdTtxudMwt vhEfavH0k/Y30FdoEk2nmuCgton9Sv+igBFKmf4sSQddcploaL9nHtsBrnok/UT7 ZitynxOm+CcCzAbMHwoDdt8d7T3m5s3EJ8wmYHQV2li76im3BK6L4/c+bYC9MxEV JHxyIuLSYB2fom51X3ETeZqrlakwor1CtSXiKWt8YAwAUxDzqSdBSo6cVCcTNF7N /FnhkZMojKrL823WVrW+IwYLzqbEKW3z9AzrmiHW2lwb3qTgz8b4Bqiyk9vvNJ0u PxjOAB8UBGRy9c+U4oGX2XhptF0wcbSijrKW6FLpgHskJ29W3fIpKkMPQyu+ro81 jyWQOCYlNfjT1xEul1EX4e5IHTcVbs8udZL/Jm8ozHL8IHfHQ1iUa/z7m5YJ1eaN JutL0Nr3R5AuDdJlhJobYjVC7zdYcvg4Xez98Rb8b27e0xu98eIrhpj0C9bGlMV0 /uw/VWKSL86ROc/Jy6/LsVMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 278211898954463358608073990582815807278239 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-29 03:47:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-28 03:47:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'test.equestrians.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 936137206189269205797197305378126816282611991981237982771805847123819957544822384052814039987532051667656792513605792631557436348810401927297776011009107579631889889757038797208366089129938086882086686739134261084168368193023632943860987935982292002254961918571286936697793069526833596521421936922703320916887049711321199656870196121406409866141875573678680737273806396389336776881359572700231285418996608904595847248909642249215092513482081098303729427481130971415098618513758461032808543682980358038300643683169969598345369620011024624505315858159261146190364622873342568829526444124184752496485566047481826426515994925499026217293143599653087064057686683744664129374992235635737533496148746171177504980045311347167169206877642193731170599975519227815772678888588151293496690140765529193407670468705588842911628712199271472381872934414699527763248272966062884252370699046369369319598453789631099318300873883860293623017222409910601281114891325758662512276404367910257246543958736577387935074111989744221738818077787581728472035498271717131427215814073709070699587564661557496692498328703120975334655428716732830979086200628016408698350716602804864483817132566248777770313200051672819055058098073619344785067480716517569644871790931 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9dfc6b915a11a1be2666625ac12517c671593b17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.equestrians.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d7b5845f90000040300473045022100baba8bf193e7760ec32fe8b67814a3e850725a2467ba614cff638938737f0f1602202d49480790b84153f63a22f8414c9eb142a915626c9d043695bb24979829a474007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d7b5843fd0000040300483046022100acf455387da76d96615795570f1969eed1cd6bdca98ee319a5c82177242653d9022100edc7b723ad348bbdd6e1720bf8e0fbcb0430f995374607cbd1999567185a3575 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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