dras.dinfos.dma.mil
Issued by DOD ID SW CA-38
About this certificate
This digital certificate with serial number 02:89:3c was issued on by U.S. Government.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DNSNames must have a valid TLD. (BRs: 3.2.2.4)
- 1 DNS name(s) are bare public suffixes: dras The domain SHOULD NOT have a bare public suffix (awslabs certlint)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- RSA: Public exponent SHOULD be in the range between 2^16 + 1 and 2^256 - 1 (BRs: 6.1.6)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
Certificate Subject
CN=dras.dinfos.dma.mil,OU=USGOVT+OU=DoD+OU=PKI+OU=DINFOS,C=US
U.S. Government
Organization:
U.S. Government
Organization unit: DoD
Organization unit: PKI
Organization unit: DoD
Organization unit: PKI
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:89:3cSerial Number (int): 166204
Serial Number lenght: 18 bits, 3 octets
SubjectKeyId: a1:49:6b:c2:6e:c3:bf:8c:5d:85:cf:ac:43:93:69:f0:56:19:a6:e5
AuthorityKeyId: 8e:c5:b9:cc:fc:ce:8e:53:b4:2a:ce:e8:11:2a:cf:9b:29:6c:67:ca
Fingerprint (sha1): ee:88:25:a4:52:6e:b7:6e:b6:df:d3:07:d5:20:62:cb:c7:7f:04:f4
Fingerprint (sha256): 01:31:b3:a0:1f:6b:24:14:ed:a2:a6:f1:52:44:e5:4d:ed:de:64:e2:c6:4d:84:bb:5c:41:5b:df:d6:89:5f:99
Issuing Certificate URL: http://crl.disa.mil/sign/DODIDSWCA_38.cer
Revocation information
OCSP Server: http://ocsp.disa.milCRL Distribution Point: http://crl.disa.mil/crl/DODIDSWCA_38.crl
Check the revocation status for certificate dras.dinfos.dma.mil
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dras.dinfos.dma.mil
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dras.dinfos.dma.mil
dras
dras
Other certificates including the domain name dma.mil
(limited to 100 certificates)
www.dma.mil
www.dma.mil
dras.dinfos.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.pentagon.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.pentagon.mil
dcp.dinfos.dma.mil
www.dma.mil
www.dodlive.mil
smc-ctgwy
dma-rdg.dma.pa.mil
www.dodlive.mil
www.pentagon.mil
connect38.dma.mil
tracking.dmaana.dma.mil
www.dodlive.mil
www.dodlive.mil
afstaging.dma.mil
remoteconnect.dma.mil
www.dodlive.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.pentagon.mil
www.dodlive.mil
hnforms.dmasa.dma.mil
www.dma.mil
www.dodlive.mil
www.pentagon.mil
www.dma.mil
jhns.release.dma.mil
www.dma.mil
www.dma.mil
www.dodlive.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dodlive.mil
www.dodlive.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dodlive.mil
www.dma.mil
www.dma.mil
dels.dinfos.dma.mil
www.dodlive.mil
www.dma.mil
aftraining.dma.mil
dras.dinfos.dma.mil
www.dma.mil
www.dma.mil
DMALyncHQ.dma.mil
www.dodlive.mil
navcms.dma.mil
www.dodlive.mil
www.pentagon.mil
www.dodlive.mil
www.pentagon.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
DMALyncHQ.dma.mil
www.dodlive.mil
www.dma.mil
www.dma.mil
navcms.staging.dma.mil
www.dma.mil
www.dma.mil
external.dma.mil
www.pentagon.mil
www.pentagon.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dodlive.mil
www.dodlive.mil
www.dma.mil
navcms.dma.mil
dras.dinfos.dma.mil
arkansas.nationalguard.mil
portal.dinfos.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.pentagon.mil
www.dma.mil
dras.dinfos.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.pentagon.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.pentagon.mil
dcp.dinfos.dma.mil
www.dma.mil
www.dodlive.mil
smc-ctgwy
dma-rdg.dma.pa.mil
www.dodlive.mil
www.pentagon.mil
connect38.dma.mil
tracking.dmaana.dma.mil
www.dodlive.mil
www.dodlive.mil
afstaging.dma.mil
remoteconnect.dma.mil
www.dodlive.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.pentagon.mil
www.dodlive.mil
hnforms.dmasa.dma.mil
www.dma.mil
www.dodlive.mil
www.pentagon.mil
www.dma.mil
jhns.release.dma.mil
www.dma.mil
www.dma.mil
www.dodlive.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dodlive.mil
www.dodlive.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dodlive.mil
www.dma.mil
www.dma.mil
dels.dinfos.dma.mil
www.dodlive.mil
www.dma.mil
aftraining.dma.mil
dras.dinfos.dma.mil
www.dma.mil
www.dma.mil
DMALyncHQ.dma.mil
www.dodlive.mil
navcms.dma.mil
www.dodlive.mil
www.pentagon.mil
www.dodlive.mil
www.pentagon.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
DMALyncHQ.dma.mil
www.dodlive.mil
www.dma.mil
www.dma.mil
navcms.staging.dma.mil
www.dma.mil
www.dma.mil
external.dma.mil
www.pentagon.mil
www.pentagon.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dodlive.mil
www.dodlive.mil
www.dma.mil
navcms.dma.mil
dras.dinfos.dma.mil
arkansas.nationalguard.mil
portal.dinfos.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.dma.mil
www.pentagon.mil
Certificate
The complete raw certificate details for dras.dinfos.dma.mil in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEojCCA4qgAwIBAgIDAok8MA0GCSqGSIb3DQEBCwUAMF0xCzAJBgNVBAYTAlVT MRgwFgYDVQQKEw9VLlMuIEdvdmVybm1lbnQxDDAKBgNVBAsTA0RvRDEMMAoGA1UE CxMDUEtJMRgwFgYDVQQDEw9ET0QgSUQgU1cgQ0EtMzgwHhcNMTcwOTEzMTM0NTEz WhcNMjAwOTEzMTM0NTEzWjBpMQswCQYDVQQGEwJVUzEPMA0GA1UECxMGVVNHT1ZU MQwwCgYDVQQLEwNEb0QxDDAKBgNVBAsTA1BLSTEPMA0GA1UECxMGRElORk9TMRww GgYDVQQDExNkcmFzLmRpbmZvcy5kbWEubWlsMIIBIDANBgkqhkiG9w0BAQEFAAOC AQ0AMIIBCAKCAQEApGad82PLCEehTx2lFb2ME37QuSywl/YUMS4H51dOWhn4vzyY 4dLDh/ow8tIFRuwlu92JUzEHlSoGo0dAyhAdsaNVa8xjxVfRbxMXWq0JT42b7J3e anuik39vKQ1ZypcLxhj0/o/p7Dk5XJDHavH6aKIfWHgsGTBcs+vzwSKVqaUmqNWC S8ea71vY67ShUAMyN62wtCQTp9qel92lY3jhq2yyJaqCGG323pg8mBLfZXnE3jQ4 L93JwPhOkznlq8NbZK/d1h4/0hvhoOPJC8Z9Yomtk4fIaDVIgmgXuQ6sBErGIcBJ YPeQRRXY+uK5ns4AvEBbfuJDJshnk7qcJBUyuwIBA6OCAV8wggFbMB8GA1UdIwQY MBaAFI7Fucz8zo5TtCrO6BEqz5spbGfKMB0GA1UdDgQWBBShSWvCbsO/jF2Fz6xD k2nwVhmm5TBnBggrBgEFBQcBAQRbMFkwNQYIKwYBBQUHMAKGKWh0dHA6Ly9jcmwu ZGlzYS5taWwvc2lnbi9ET0RJRFNXQ0FfMzguY2VyMCAGCCsGAQUFBzABhhRodHRw Oi8vb2NzcC5kaXNhLm1pbDAOBgNVHQ8BAf8EBAMCBaAwOQYDVR0fBDIwMDAuoCyg KoYoaHR0cDovL2NybC5kaXNhLm1pbC9jcmwvRE9ESURTV0NBXzM4LmNybDAkBgNV HREEHTAbghNkcmFzLmRpbmZvcy5kbWEubWlsggRkcmFzMBYGA1UdIAQPMA0wCwYJ YIZIAWUCAQsnMCcGA1UdJQQgMB4GCCsGAQUFBwMBBggrBgEFBQcDAgYIKwYBBQUI AgIwDQYJKoZIhvcNAQELBQADggEBAGT1WUxxl+wJZNuXzNGl4nkQTw0Fd90TH9Rm naupim3uhULR2vtdTICY2RYofmpWWfJa81htC26bbh4YaNNDLo3vfey/Zak2uIr2 ri6OdkJ/wx4rNThIPpOSRyWi+AJ3Q+RrVrTz16CNTUUgXE+jcz5/OrTbWvPRrEIb Akca7rGpkry+L0aVT3pSN0//vMElsBE002l80chga6xpl+v0B+wZDJhLbHf3Nlrd 9rRRy3B3IGSxjh34H5H0qs0sfSM6gpeqcY6NzLye5CNcaKsSVbbsVsXNlsFwMUU7 B8tXxqoLzdqeIzd+RzO1MijD6u3iqeW9VVrWEEK6WXv7L9UhLxM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIDANBgkqhkiG9w0BAQEFAAOCAQ0AMIIBCAKCAQEApGad82PLCEehTx2lFb2M E37QuSywl/YUMS4H51dOWhn4vzyY4dLDh/ow8tIFRuwlu92JUzEHlSoGo0dAyhAd saNVa8xjxVfRbxMXWq0JT42b7J3eanuik39vKQ1ZypcLxhj0/o/p7Dk5XJDHavH6 aKIfWHgsGTBcs+vzwSKVqaUmqNWCS8ea71vY67ShUAMyN62wtCQTp9qel92lY3jh q2yyJaqCGG323pg8mBLfZXnE3jQ4L93JwPhOkznlq8NbZK/d1h4/0hvhoOPJC8Z9 Yomtk4fIaDVIgmgXuQ6sBErGIcBJYPeQRRXY+uK5ns4AvEBbfuJDJshnk7qcJBUy uwIBAw== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 166204 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOD ID SW CA-38' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-09-13 13:45:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-13 13:45:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'USGOVT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DINFOS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dras.dinfos.dma.mil' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2144 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20753684340683999388092685632423444502830215909083411371969770928943775397388266721801916280792956565968280085169669912836187778202562126250811997256173790518212221682006972069596693230263235040317404647866139675690800746052907097710307151293841345849027082763995140063341384729044041691266810538110810865289052301465164056031451918174997817919921747983017768726888756583928791499929785775905449724537083121635195899787403563980402697338240638153792757790709005044360694995240368062134141319663451423145027896890076768426110310819088893376430724791805875792834632147761895401736716316683114773401768717008012437697211 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 3 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8ec5b9ccfcce8e53b42acee8112acf9b296c67ca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a1496bc26ec3bf8c5d85cfac439369f05619a6e5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (91 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/sign/DODIDSWCA_38.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.disa.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/crl/DODIDSWCA_38.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dras.dinfos.dma.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dras' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.39 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.8.2.2 (iKEIntermediate) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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