www.usa.gov
- General Services Administration -
Issued by GeoTrust SSL CA - G3
About this certificate
This digital certificate with serial number 19:31:e9:48:4f:8b:19:b7:c6:df:f0:ca:bb:fa:66:aa was issued on by GeoTrust Inc..
With 22 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
General Services Administration
Organization:
General Services Administration
State / Province:
District Of Columbia
Locality: Washington
Country: US
Locality: Washington
Country: US
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 19:31:e9:48:4f:8b:19:b7:c6:df:f0:ca:bb:fa:66:aaSerial Number (int): 33489853971173933156693625679218632362
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: d2:6f:f7:96:f4:85:3f:72:3c:30:7d:23:da:85:78:9b:a3:7c:5a:7c
Fingerprint (sha1): 79:10:b6:f7:8a:5e:08:c3:cc:50:5b:4a:3b:f9:9b:b3:86:90:74:b0
Fingerprint (sha256): 01:27:06:23:2f:01:b6:b5:62:bd:0a:af:b4:db:85:70:45:f1:ab:6a:2f:5f:7e:95:c9:d9:f8:3f:e8:07:a7:63
Issuing Certificate URL: http://gn.symcb.com/gn.crt
Revocation information
OCSP Server: http://gn.symcd.comCRL Distribution Point: http://gn.symcb.com/gn.crl
Check the revocation status for certificate www.usa.gov
22
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.usa.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.citizenscience.gov
toy.dodea.edu
dec.dodea.edu
www.performance.gov
www.manufacturing.gov
www.ussm.gov
advisethepresident.archives.gov
www.advisethepresident.archives.gov
staging.vocab.data.gov
labs-staging.data.gov
federation-staging.data.gov
vocab.data.gov
federation.data.gov
www.christophercolumbusfoundation.gov
blog.usa.gov
usa.gov
api.usa.gov
rtv.usa.gov
www.feedback.usa.gov
presidentialtransition.usa.gov
feedback.usa.gov
www.usa.gov
toy.dodea.edu
dec.dodea.edu
www.performance.gov
www.manufacturing.gov
www.ussm.gov
advisethepresident.archives.gov
www.advisethepresident.archives.gov
staging.vocab.data.gov
labs-staging.data.gov
federation-staging.data.gov
vocab.data.gov
federation.data.gov
www.christophercolumbusfoundation.gov
blog.usa.gov
usa.gov
api.usa.gov
rtv.usa.gov
www.feedback.usa.gov
presidentialtransition.usa.gov
feedback.usa.gov
www.usa.gov
Other certificates including the domain name usa.gov
(limited to 100 certificates)
answers.usa.gov
1.usa.gov
kids.usa.gov
www.gobierno.usa.gov
analytics.usa.gov
cms.usa.gov
www.usa.gov
demo2.search.usa.gov
guineapig.staging.search.usa.gov
www.usa.gov
1.usa.gov
i14y.seagull.staging.search.usa.gov
answers.usa.gov
sa66gl.wpc.edgecastcdn.net
answers.usa.gov
kibana.search.usa.gov
i14y.bird.staging.search.usa.gov
answers.usa.gov
search.usa.gov
go.usa.gov
api.usa.gov
i14y.seagull.staging.search.usa.gov
seagull.staging.search.usa.gov
sandpiper.staging.search.usa.gov
promotions.usa.gov
answers.usa.gov
1.usa.gov
1.usa.gov
hogfish.staging.search.usa.gov
usa.gov
vote.usa.gov
labs.usa.gov
answers.usa.gov
www.usa.gov
www.usa.gov
i14y.vanilla.staging.search.usa.gov
i14y.ox.staging.search.usa.gov
dachshund.staging.search.usa.gov
components.standards.usa.gov
bear.staging.search.usa.gov
redir.gsa.ctacdev.com
answers.usa.gov
i14y.bear.staging.search.usa.gov
1.usa.gov
secure0051.hubspot.com
www.usa.gov
*.sites.usa.gov
answers.usa.gov
beta.usa.gov
pusheen.staging.search.usa.gov
warthog.staging.search.usa.gov
components.standards.usa.gov
*.usa.gov
answers.usa.gov
answers.usa.gov
epa-notice.usa.gov
open.usa.gov
answers.usa.gov
sa66gl.wpc.edgecastcdn.net
i14y.usa.gov
open.usa.gov
i14y.dachshund.staging.search.usa.gov
sa10gl.wpc.edgecastcdn.net
lemonade.staging.search.usa.gov
labs.usa.gov
answers.usa.gov
i14y.luke.staging.search.usa.gov
www.my.usa.gov
panda.staging.search.usa.gov
answers.usa.gov
business.usa.gov
cms.usa.gov
goldfinch.staging.search.usa.gov
answers.usa.gov
gobierno.usa.gov
www.usa.gov
open.usa.gov
i14y.chinchilla.staging.search.usa.gov
answers.usa.gov
search.usa.gov
toothpick.staging.search.usa.gov
answers.usa.gov
sa55gl.wpc.edgecastcdn.net
lemonade.staging.search.usa.gov
i14y.hogfish.staging.search.usa.gov
open-staging.usa.gov
redir.gsa.ctacdev.com
i14y.auk.staging.search.usa.gov
i14y.hedgehog.staging.search.usa.gov
vote.usa.gov
www.usa.gov
search.usa.gov
porcupine.staging.search.usa.gov
answers.usa.gov
epa-notice.usa.gov
lets-encrypt.infr.search.usa.gov
toothpick.staging.search.usa.gov
snowflake.staging.search.usa.gov
i14y.dachshund.staging.search.usa.gov
sa159gl.wpc.edgecastcdn.net
1.usa.gov
kids.usa.gov
www.gobierno.usa.gov
analytics.usa.gov
cms.usa.gov
www.usa.gov
demo2.search.usa.gov
guineapig.staging.search.usa.gov
www.usa.gov
1.usa.gov
i14y.seagull.staging.search.usa.gov
answers.usa.gov
sa66gl.wpc.edgecastcdn.net
answers.usa.gov
kibana.search.usa.gov
i14y.bird.staging.search.usa.gov
answers.usa.gov
search.usa.gov
go.usa.gov
api.usa.gov
i14y.seagull.staging.search.usa.gov
seagull.staging.search.usa.gov
sandpiper.staging.search.usa.gov
promotions.usa.gov
answers.usa.gov
1.usa.gov
1.usa.gov
hogfish.staging.search.usa.gov
usa.gov
vote.usa.gov
labs.usa.gov
answers.usa.gov
www.usa.gov
www.usa.gov
i14y.vanilla.staging.search.usa.gov
i14y.ox.staging.search.usa.gov
dachshund.staging.search.usa.gov
components.standards.usa.gov
bear.staging.search.usa.gov
redir.gsa.ctacdev.com
answers.usa.gov
i14y.bear.staging.search.usa.gov
1.usa.gov
secure0051.hubspot.com
www.usa.gov
*.sites.usa.gov
answers.usa.gov
beta.usa.gov
pusheen.staging.search.usa.gov
warthog.staging.search.usa.gov
components.standards.usa.gov
*.usa.gov
answers.usa.gov
answers.usa.gov
epa-notice.usa.gov
open.usa.gov
answers.usa.gov
sa66gl.wpc.edgecastcdn.net
i14y.usa.gov
open.usa.gov
i14y.dachshund.staging.search.usa.gov
sa10gl.wpc.edgecastcdn.net
lemonade.staging.search.usa.gov
labs.usa.gov
answers.usa.gov
i14y.luke.staging.search.usa.gov
www.my.usa.gov
panda.staging.search.usa.gov
answers.usa.gov
business.usa.gov
cms.usa.gov
goldfinch.staging.search.usa.gov
answers.usa.gov
gobierno.usa.gov
www.usa.gov
open.usa.gov
i14y.chinchilla.staging.search.usa.gov
answers.usa.gov
search.usa.gov
toothpick.staging.search.usa.gov
answers.usa.gov
sa55gl.wpc.edgecastcdn.net
lemonade.staging.search.usa.gov
i14y.hogfish.staging.search.usa.gov
open-staging.usa.gov
redir.gsa.ctacdev.com
i14y.auk.staging.search.usa.gov
i14y.hedgehog.staging.search.usa.gov
vote.usa.gov
www.usa.gov
search.usa.gov
porcupine.staging.search.usa.gov
answers.usa.gov
epa-notice.usa.gov
lets-encrypt.infr.search.usa.gov
toothpick.staging.search.usa.gov
snowflake.staging.search.usa.gov
i14y.dachshund.staging.search.usa.gov
sa159gl.wpc.edgecastcdn.net
Certificate
The complete raw certificate details for www.usa.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG0TCCBbmgAwIBAgIQGTHpSE+LGbfG3/DKu/pmqjANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UEAxMU R2VvVHJ1c3QgU1NMIENBIC0gRzMwHhcNMTYwNjAzMDAwMDAwWhcNMTcwNjAzMjM1 OTU5WjCBgTELMAkGA1UEBhMCVVMxHTAbBgNVBAgMFERpc3RyaWN0IE9mIENvbHVt YmlhMRMwEQYDVQQHDApXYXNoaW5ndG9uMSgwJgYDVQQKDB9HZW5lcmFsIFNlcnZp Y2VzIEFkbWluaXN0cmF0aW9uMRQwEgYDVQQDDAt3d3cudXNhLmdvdjCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBANhndHU2GMV9dmM9Qrgo8B9OT01I1rHj esmWyzRJq+RrzE1htTNEvJSNTvGhz3e4nf7YcX5IJUDexwPSMZo9aiJVDabVFTw3 8Wd1syHwygauXclPD+kdQqmcBotuYtCNl7ITdVB06x7yI+a/5Xmkg6z1FhuZAXUw WYmujNupPvosVzKWrIndnvGRVY41jrTLGC0nkTiTgiOiDx2NsOL+NLgARDWdMGVz BMxKz4yaLlnPvbs7RqNzsriefyOH8e8i23y6+ZnlokC9rA7Pcu7BK1OGE6uvIps/ U6nmAlOAxbdqlGH2M5cyOYLQ0rkjCYWCN7pRUAaifZ7/qdPQzPOvovECAwEAAaOC A38wggN7MIIB4QYDVR0RBIIB2DCCAdSCFnd3dy5jaXRpemVuc2NpZW5jZS5nb3aC DXRveS5kb2RlYS5lZHWCDWRlYy5kb2RlYS5lZHWCE3d3dy5wZXJmb3JtYW5jZS5n b3aCFXd3dy5tYW51ZmFjdHVyaW5nLmdvdoIMd3d3LnVzc20uZ292gh9hZHZpc2V0 aGVwcmVzaWRlbnQuYXJjaGl2ZXMuZ292giN3d3cuYWR2aXNldGhlcHJlc2lkZW50 LmFyY2hpdmVzLmdvdoIWc3RhZ2luZy52b2NhYi5kYXRhLmdvdoIVbGFicy1zdGFn aW5nLmRhdGEuZ292ghtmZWRlcmF0aW9uLXN0YWdpbmcuZGF0YS5nb3aCDnZvY2Fi LmRhdGEuZ292ghNmZWRlcmF0aW9uLmRhdGEuZ292giV3d3cuY2hyaXN0b3BoZXJj b2x1bWJ1c2ZvdW5kYXRpb24uZ292ggxibG9nLnVzYS5nb3aCB3VzYS5nb3aCC2Fw aS51c2EuZ292ggtydHYudXNhLmdvdoIUd3d3LmZlZWRiYWNrLnVzYS5nb3aCHnBy ZXNpZGVudGlhbHRyYW5zaXRpb24udXNhLmdvdoIQZmVlZGJhY2sudXNhLmdvdoIL d3d3LnVzYS5nb3YwCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwKwYDVR0fBCQw IjAgoB6gHIYaaHR0cDovL2duLnN5bWNiLmNvbS9nbi5jcmwwgZ0GA1UdIASBlTCB kjCBjwYGZ4EMAQICMIGEMD8GCCsGAQUFBwIBFjNodHRwczovL3d3dy5nZW90cnVz dC5jb20vcmVzb3VyY2VzL3JlcG9zaXRvcnkvbGVnYWwwQQYIKwYBBQUHAgIwNQwz aHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0b3J5L2xl Z2FsMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAfBgNVHSMEGDAWgBTS b/eW9IU/cjwwfSPahXibo3xafDBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGG E2h0dHA6Ly9nbi5zeW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9nbi5zeW1j Yi5jb20vZ24uY3J0MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQDHf0DU6owmgZzMoxhcK+18JJzk1ctbScs2+MHEaq0P26Jgf6fC5xmCSHFF IcNfrwhI0y29SXawXMcBWwswe3YdUUsMwslkIELSWoJNGkLO48ta6mScbRdI5pMb 4vYrwCRGpasIHI1q8XrX0lTRuvFrTKzZ5rBbL3cpytNVOZutBrIWCmBilmWCx4Y8 ZE0TmRsNCTXhqhTkxqpKAiz2oCfaDtGll8nefNcwzKpmS6thVV+L9OyTD87qIzaB UMUj7aZmSMSJrUsxZWj6cEYY3RVp/XHXb2iPgoU1kxQr49iF/VepdKrJiNNXODp1 ihzJtwM3GmMJLSVB5l7lfdsIcpb3 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Gd0dTYYxX12Yz1CuCjw H05PTUjWseN6yZbLNEmr5GvMTWG1M0S8lI1O8aHPd7id/thxfkglQN7HA9Ixmj1q IlUNptUVPDfxZ3WzIfDKBq5dyU8P6R1CqZwGi25i0I2XshN1UHTrHvIj5r/leaSD rPUWG5kBdTBZia6M26k++ixXMpasid2e8ZFVjjWOtMsYLSeROJOCI6IPHY2w4v40 uABENZ0wZXMEzErPjJouWc+9uztGo3OyuJ5/I4fx7yLbfLr5meWiQL2sDs9y7sEr U4YTq68imz9TqeYCU4DFt2qUYfYzlzI5gtDSuSMJhYI3ulFQBqJ9nv+p09DM86+i 8QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 33489853971173933156693625679218632362 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-06-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-06-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'District Of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'General Services Administration' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.usa.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27318489391891302807545125802421329184020833053057504183483060151482164611262012790691051456019150466270674232154437400112504278218331794502256014914657231179359605028850323347234634693064599747518641431907438262631764075475490934503793504772589188705327462343814512666414178524934241202676407850763875097722988347670745504276801237011174291808866841155542076080478767823807285783287128075458831012653351241116159381214013335373397690216033311836464491834521529582764256273948797760432650171784770091178446047763937154832198354040627490217051600194430627702379452001381435842627782585714030235621422907711528784339697 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (472 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.citizenscience.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'toy.dodea.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dec.dodea.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.performance.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.manufacturing.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ussm.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advisethepresident.archives.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.advisethepresident.archives.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.vocab.data.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'labs-staging.data.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'federation-staging.data.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vocab.data.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'federation.data.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.christophercolumbusfoundation.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.usa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.usa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rtv.usa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.feedback.usa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'presidentialtransition.usa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'feedback.usa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.usa.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d26ff796f4853f723c307d23da85789ba37c5a7c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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