www.ciris.ny.gov
- New York State Office of Information Technology Services -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0c:a8:8f:d7:05:dd:e2:64:c9:2a:1e:cb:e6:cd:38:9c was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
New York State Office of Information Technology Services
Organization:
New York State Office of Information Technology Services
State / Province:
New York
Locality: Albany
Country: US
Locality: Albany
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0c:a8:8f:d7:05:dd:e2:64:c9:2a:1e:cb:e6:cd:38:9cSerial Number (int): 16825959242096771041378541689308526748
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 8f:22:1b:5c:2e:00:63:0f:1c:84:9d:0b:45:9e:9b:f7:b2:ff:aa:6e
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): cd:6c:c1:c2:55:94:a3:81:d9:4f:64:99:6d:8b:bd:16:36:ba:8b:24
Fingerprint (sha256): 00:17:41:8e:af:7e:24:18:e7:fc:58:05:11:b8:b2:31:12:7d:bf:d4:d3:6b:2c:24:ab:ff:76:7a:7f:be:d3:60
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate www.ciris.ny.gov
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ciris.ny.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ciris.ny.gov
ciris.ny.gov
ciris.ny.gov
Other certificates including the domain name ny.gov
(limited to 100 certificates)
www.tax.ny.gov
*.justicecenter.ny.gov
5638059940904960-fe3.pantheonsite.io
mail.cityofjohnstown.ny.gov
r4a10.osc.ny.gov
*.health.ny.gov
www.ciris.ny.gov
carpepm.almonds.com
5697124062724096-fe2.pantheonsite.io
5767917874446336-fe1.pantheonsite.io
*.hcr.ny.gov
5645914630782976-fe1.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
el.nyserda.ny.gov
cjc.ny.gov
www.rev.ny.gov
5767917874446336-fe1.pantheonsite.io
5638059940904960-fe3.pantheonsite.io
*.health.ny.gov
tracs2.otda.ny.gov
ocra.omh.ny.gov
it.uahs.arizona.edu
learn.apps.loopstart.net
sni.cloudflaressl.com
int.sfs.ny.gov
recovery.dhses.ny.gov
www.tax.ny.gov
www.tax.ny.gov
5638059940904960-fe3.pantheonsite.io
Appcenter1.esd.ny.gov
5202656289095680-fe4.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
*.hcr.ny.gov
www.perb.ny.gov
*.hcr.ny.gov
*.oagtest.ag.ny.gov
qasc.oft.ny.gov
bonds.hcr.ny.gov
*.opwdd.ny.gov
*.health.ny.gov
doccs-ndid.digital-dev.dmv.ny.gov
calendar.sdzsafaripark.org
devwebcloud.health.ny.gov
www.oscar.ny.gov
www.rev.ny.gov
dev.ag.ny.gov
youthworks.ny.gov
steuben911.ny.gov
APPS.OCFS.NY.GOV
recovery.dhses.ny.gov
mhprovider.qa.omh.ny.gov
vhc.wcb.ny.gov
*.dos.ny.gov
banking-business-review.com
climate.ny.gov
cdn-test.battlefields.org
5752571553644544-fe2.pantheonsite.io
WestchesterCDPS.ny.gov
*.omh.ny.gov
GardenCity.ny.gov
citeak.multidevcom.uaf.edu
qa.my.ny.gov
booking.virtualhometour.sg
portwashingtonpd.ny.gov
r5a20.osc.ny.gov
fulton.ny.gov
ertfin.sfs.ny.gov
*.criminaljustice.ny.gov
cortlandcounty.ny.gov
uihp2.labor.ny.gov
5697124062724096-fe2.pantheonsite.io
hcstgbi.osc.ny.gov
applications.labor.ny.gov
www2.dps.ny.gov
DOCCS-Submetering.BMS.ny.gov
chns120.courseresource.yale.edu
my.justicecenter.ny.gov
*.dec.ny.gov
bonds.hcr.ny.gov
*.troopers.ny.gov
5202656289095680-fe4.pantheonsite.io
vpcr-qa.justicecenter.ny.gov
data.ny.gov
ccf.ny.gov
*.ocfs.ny.gov
vhc.wcb.ny.gov
dmna.ny.gov
qa-ldap.ny.gov
pay-92qanyspows.osc.ny.gov
online.ogs.ny.gov
nystateofhealth.ny.gov
5202656289095680-fe4.pantheonsite.io
www7f.tax.ny.gov
labor.ny.gov
allegany.ny.gov
vpn3.dfs.ny.gov
RAVPN.FRG.NY.GOV
qasc.oft.ny.gov
sni.cloudflaressl.com
ihstgi.osc.ny.gov
*.justicecenter.ny.gov
5638059940904960-fe3.pantheonsite.io
mail.cityofjohnstown.ny.gov
r4a10.osc.ny.gov
*.health.ny.gov
www.ciris.ny.gov
carpepm.almonds.com
5697124062724096-fe2.pantheonsite.io
5767917874446336-fe1.pantheonsite.io
*.hcr.ny.gov
5645914630782976-fe1.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
el.nyserda.ny.gov
cjc.ny.gov
www.rev.ny.gov
5767917874446336-fe1.pantheonsite.io
5638059940904960-fe3.pantheonsite.io
*.health.ny.gov
tracs2.otda.ny.gov
ocra.omh.ny.gov
it.uahs.arizona.edu
learn.apps.loopstart.net
sni.cloudflaressl.com
int.sfs.ny.gov
recovery.dhses.ny.gov
www.tax.ny.gov
www.tax.ny.gov
5638059940904960-fe3.pantheonsite.io
Appcenter1.esd.ny.gov
5202656289095680-fe4.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
*.hcr.ny.gov
www.perb.ny.gov
*.hcr.ny.gov
*.oagtest.ag.ny.gov
qasc.oft.ny.gov
bonds.hcr.ny.gov
*.opwdd.ny.gov
*.health.ny.gov
doccs-ndid.digital-dev.dmv.ny.gov
calendar.sdzsafaripark.org
devwebcloud.health.ny.gov
www.oscar.ny.gov
www.rev.ny.gov
dev.ag.ny.gov
youthworks.ny.gov
steuben911.ny.gov
APPS.OCFS.NY.GOV
recovery.dhses.ny.gov
mhprovider.qa.omh.ny.gov
vhc.wcb.ny.gov
*.dos.ny.gov
banking-business-review.com
climate.ny.gov
cdn-test.battlefields.org
5752571553644544-fe2.pantheonsite.io
WestchesterCDPS.ny.gov
*.omh.ny.gov
GardenCity.ny.gov
citeak.multidevcom.uaf.edu
qa.my.ny.gov
booking.virtualhometour.sg
portwashingtonpd.ny.gov
r5a20.osc.ny.gov
fulton.ny.gov
ertfin.sfs.ny.gov
*.criminaljustice.ny.gov
cortlandcounty.ny.gov
uihp2.labor.ny.gov
5697124062724096-fe2.pantheonsite.io
hcstgbi.osc.ny.gov
applications.labor.ny.gov
www2.dps.ny.gov
DOCCS-Submetering.BMS.ny.gov
chns120.courseresource.yale.edu
my.justicecenter.ny.gov
*.dec.ny.gov
bonds.hcr.ny.gov
*.troopers.ny.gov
5202656289095680-fe4.pantheonsite.io
vpcr-qa.justicecenter.ny.gov
data.ny.gov
ccf.ny.gov
*.ocfs.ny.gov
vhc.wcb.ny.gov
dmna.ny.gov
qa-ldap.ny.gov
pay-92qanyspows.osc.ny.gov
online.ogs.ny.gov
nystateofhealth.ny.gov
5202656289095680-fe4.pantheonsite.io
www7f.tax.ny.gov
labor.ny.gov
allegany.ny.gov
vpn3.dfs.ny.gov
RAVPN.FRG.NY.GOV
qasc.oft.ny.gov
sni.cloudflaressl.com
ihstgi.osc.ny.gov
Certificate
The complete raw certificate details for www.ciris.ny.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHCzCCBfOgAwIBAgIQDKiP1wXd4mTJKh7L5s04nDANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjMw ODI0MDAwMDAwWhcNMjQwOTIzMjM1OTU5WjCBjzELMAkGA1UEBhMCVVMxETAPBgNV BAgTCE5ldyBZb3JrMQ8wDQYDVQQHEwZBbGJhbnkxQTA/BgNVBAoTOE5ldyBZb3Jr IFN0YXRlIE9mZmljZSBvZiBJbmZvcm1hdGlvbiBUZWNobm9sb2d5IFNlcnZpY2Vz MRkwFwYDVQQDExB3d3cuY2lyaXMubnkuZ292MIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAwNWHkxuD6QTW6PqmUAwLR3Icf0Fa/8/WyWqAcXklkRqyE98C GmRmphNCd9iCCQ2vNCEJP48P/8eDcVeBZ2bCUm3h1gaXJfkzJWdOk+bneLJgxfNE 4lcVlHBQ2JKxy+6IJOEw9IKm8LOdq4a9ajtrAgdpwCsS3ivyixY93FJ7GXkzDdsu /EG9qHdWuBI1EQd3SO8NvCkJTaxaF1wMg2nZyBxhzP5/jStOAdMFnpwFKM1IODwM VDfpqgt0P0MaSLN8iRfqb7jos+sBT9EZC+ts9sHoj2ORNECUkMHIiTBvgIYSrbGH pJee+qIxPQT7JMob5inF68VSWIPdlG7g09AAfQIDAQABo4IDljCCA5IwHwYDVR0j BBgwFoAUdIWAwGbH3zfez70pN6oDHb7tzRcwHQYDVR0OBBYEFI8iG1wuAGMPHISd C0Wem/ey/6puMCkGA1UdEQQiMCCCEHd3dy5jaXJpcy5ueS5nb3aCDGNpcmlzLm55 LmdvdjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMIGfBgNVHR8EgZcwgZQwSKBGoESGQmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNv bS9EaWdpQ2VydEdsb2JhbEcyVExTUlNBU0hBMjU2MjAyMENBMS0xLmNybDBIoEag RIZCaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsRzJUTFNS U0FTSEEyNTYyMDIwQ0ExLTEuY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQICMCkwJwYI KwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCBhwYIKwYBBQUH AQEEezB5MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wUQYI KwYBBQUHMAKGRWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEds b2JhbEcyVExTUlNBU0hBMjU2MjAyMENBMS0xLmNydDAJBgNVHRMEAjAAMIIBfQYK KwYBBAHWeQIEAgSCAW0EggFpAWcAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIK n+ZnTFo6dAAAAYonvhwPAAAEAwBHMEUCIDFCVt9DM1F7w55KlWRrlZqCOQMYm79V yA1XialH4hKpAiEAzLYcQXYl3TTcs5sjk1YGNLK8LMoCzSj5JtAQzkR8bmwAdQBI sONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYonvhwBAAAEAwBGMEQC IDU7MVlmGID6arZgRN3VY67tye28Id3iR7CFY6jWonrzAiBYlItRXnhNuMzlLDH2 e5Yr2sCFjlxrAB8/HVVWGYqzPgB2ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2k PTBI1/urAAABiie+HAYAAAQDAEcwRQIgVI3Llp1t1pESkObBLTDuCUL+9F4UvOC1 bEgf47hgT9wCIQDeJ5u5tBcjzr/HIYwkCZ4hgncHC0Sn4gaJsayR8bHSDjANBgkq hkiG9w0BAQsFAAOCAQEAIggeP3NwBGNg4Ljx6k177C/MC8nD9d7mnGzD8Bf7l3cS wemuMYYshcS7u+52aBHMcFFFv+Is3pfmn9WJWYOVuTJke9T4gANrJxthDmzWyalf wt6udQobJUWrouUkYMzlg8Mcc//oaUYx5GBBgk0hmdhFjcCs+0IAwXVqbMh46vHt 3S3Sdv9el4zU6Fy5y9zqvf6QcV5RghGBF/YnyhW7HOrpTN/LdA+xII07i73d+wI1 37D5+sqKYbqUxvAksbunXekPdQC984nqs0e475pe+A+QtTLRbBFwHIrp5Jdk2+fY 4xCVM6oUSVqPi0CPdtx1x+ntxgzkTKrh4G0+1z9PLw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNWHkxuD6QTW6PqmUAwL R3Icf0Fa/8/WyWqAcXklkRqyE98CGmRmphNCd9iCCQ2vNCEJP48P/8eDcVeBZ2bC Um3h1gaXJfkzJWdOk+bneLJgxfNE4lcVlHBQ2JKxy+6IJOEw9IKm8LOdq4a9ajtr AgdpwCsS3ivyixY93FJ7GXkzDdsu/EG9qHdWuBI1EQd3SO8NvCkJTaxaF1wMg2nZ yBxhzP5/jStOAdMFnpwFKM1IODwMVDfpqgt0P0MaSLN8iRfqb7jos+sBT9EZC+ts 9sHoj2ORNECUkMHIiTBvgIYSrbGHpJee+qIxPQT7JMob5inF68VSWIPdlG7g09AA fQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16825959242096771041378541689308526748 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-23 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Albany' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York State Office of Information Technology Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ciris.ny.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24343049917951066528033140434529819459431674910491656543276391554955657507926689661185287307068499150688692954559913008021455107470548336594883896297473797470471382870118994567927312493055939813608791912046098100953666862235953034522828729447254956108975269659196216132419229604283142294438019495482545839871214927644581565209860186942845335866468221336645457864236535617483855119669099732681567673903259433135239821902670409683162753646507644733913674600507904897582327052334377973929838552179185902412522381829620638433485373440536428528856186115836263792042269128420465606225714405933336119344217411337887885033597 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8f221b5c2e00630f1c849d0b459e9bf7b2ffaa6e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ciris.ny.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ciris.ny.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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