www.columbiadoctors.org

- Columbia University -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number a1:82:a0:d6:2c:63:f7:3a:7f:c5:c9:90:69:f1:b6:73 was issued on by Internet2.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Columbia University

Organization: Columbia University
Organization unit: Information Technology
Address: 116th Street and Broadway
Postal code: 10027
State / Province: NY
Locality: New York
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): a1:82:a0:d6:2c:63:f7:3a:7f:c5:c9:90:69:f1:b6:73
Serial Number (int): 214683968067082537040978420831572047475
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: e8:e4:9f:bb:5a:0e:57:66:81:37:1d:48:55:05:e1:2c:49:55:cf:f4
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): 70:f1:02:e3:b6:bb:8b:8e:71:50:c5:46:10:cd:c7:9a:2f:4d:3c:c9
Fingerprint (sha256): f1:74:a5:1c:7a:57:00:df:a9:c7:ec:a6:c0:23:e5:81:ac:8e:81:d7:41:5b:ef:96:40:18:42:b2:ae:8d:e7:00

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate www.columbiadoctors.org

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.columbiadoctors.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.columbiadoctors.org
columbiadoctors.org
dev.columbiadoctors.org
stage.columbiadoctors.org

Other certificates including the domain name columbiadoctors.org

(limited to 100 certificates)
forms.columbiadoctors.org
columbiadoctors.org
5711507908198400-fe1.pantheonsite.io
www.columbiadoctors.org
5680163505307648-fe4.pantheonsite.io
5680163505307648-fe4.pantheonsite.io
5680163505307648-fe4.pantheonsite.io
5680163505307648-fe4.pantheonsite.io
5711507908198400-fe1.pantheonsite.io
5711507908198400-fe1.pantheonsite.io
5711507908198400-fe1.pantheonsite.io
www.columbiadoctors.org
5709198289534976-fe4.pantheonsite.io
5709198289534976-fe4.pantheonsite.io
columbiadoctors.org
5709198289534976-fe4.pantheonsite.io
5709198289534976-fe4.pantheonsite.io
columbiadoctors.org
5711507908198400-fe1.pantheonsite.io
columbiapsychiatry.org
5709198289534976-fe4.pantheonsite.io
columbiadoctors.org
5711507908198400-fe1.pantheonsite.io
5711507908198400-fe1.pantheonsite.io
5711507908198400-fe1.pantheonsite.io
stage.forms.columbiadoctors.org
5709198289534976-fe4.pantheonsite.io
forms.columbiadoctors.org
5709198289534976-fe4.pantheonsite.io
columbiapsychiatry.org
5680163505307648-fe4.pantheonsite.io
columbiadoctors.org
columbiadoctors.org
www.columbiadoctors.org
5711507908198400-fe1.pantheonsite.io
columbiadoctors.org
5680163505307648-fe4.pantheonsite.io
columbiadoctors.org
www.columbiadoctors.org
columbiadoctors.org
5711507908198400-fe1.pantheonsite.io
5680163505307648-fe4.pantheonsite.io
5680163505307648-fe4.pantheonsite.io

Certificate

The complete raw certificate details for www.columbiadoctors.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 214683968067082537040978420831572047475
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-25 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-24 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '10027'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NY'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '116th Street and Broadway'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Columbia University'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Technology'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.columbiadoctors.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 800639832757785575701272181606220399013097269477122843468453981105517339281164939637613187321922805593670836513513529365448540788397540713141736734304435640090804001023399976702188059358991302384573354486201652649843206395071956970263822013494280598084218537028304514536472493409006487974424612592463200808834379755971558983661749755823352868031390303203522471931559045204563433161871524083993979899294358532947047888891493357203646884317085436509798561175395364367136050625121491218788722174219051829000331834932364419830677379278985141373799309558757299072615470523026565066814661672505002658430996912392277696589911445478618080292551355663980804083197439727671002318680438618448222328982813473358727766486512622636159565434754186005590887568572591476948300076890397938107464071053469676740440508006108465769773792008988697994279012022639343462020380430591743821139832469923450385445021266506332218891848796644959639025527588443163210888530509015702849144535199995827711820747664460197101230916818746043131730670558086613225545866657507505318705027619129384131554772688327930609290119186109570937296108534616532743079202443157957917718003764571099084450278235401779255893646789095640356425566419640196027470805694279252374449269821
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e8e49fbb5a0e576681371d485505e12c4955cff4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.columbiadoctors.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'columbiadoctors.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.columbiadoctors.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.columbiadoctors.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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