*.dos.ny.gov
- New York State Office of Information Technology Services -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0f:ab:3c:13:c4:67:33:fc:a5:df:46:0a:38:26:81:b9 was issued on by DigiCert Inc.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
New York State Office of Information Technology Services
Organization:
New York State Office of Information Technology Services
State / Province:
New York
Locality: Albany
Country: US
Locality: Albany
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:ab:3c:13:c4:67:33:fc:a5:df:46:0a:38:26:81:b9Serial Number (int): 20827521210278327274910094036449001913
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f8:f8:c5:a2:f2:02:6a:63:94:6e:7d:dc:55:fa:9d:1c:1d:cf:97:10
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): fd:b5:24:00:05:06:35:ac:6c:ef:a0:23:1a:8f:d7:52:41:c9:fb:51
Fingerprint (sha256): 01:44:ed:5b:8b:8b:98:40:65:8b:f0:d0:e8:7b:a9:04:35:c1:d0:75:d8:aa:4b:63:42:04:3e:f0:08:58:aa:22
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate *.dos.ny.gov
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.dos.ny.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.dos.ny.gov
www.abo.ny.gov
abo.ny.gov
www.nysdeferredaction.ny.gov
nysdeferredaction.ny.gov
www.ebiennial.dos.ny.gov
email.ebiennial.dos.ny.gov
dos.ny.gov
www.abo.ny.gov
abo.ny.gov
www.nysdeferredaction.ny.gov
nysdeferredaction.ny.gov
www.ebiennial.dos.ny.gov
email.ebiennial.dos.ny.gov
dos.ny.gov
Other certificates including the domain name ny.gov
(limited to 100 certificates)
www.tax.ny.gov
*.justicecenter.ny.gov
5638059940904960-fe3.pantheonsite.io
mail.cityofjohnstown.ny.gov
r4a10.osc.ny.gov
*.health.ny.gov
www.ciris.ny.gov
carpepm.almonds.com
5697124062724096-fe2.pantheonsite.io
5767917874446336-fe1.pantheonsite.io
*.hcr.ny.gov
5645914630782976-fe1.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
el.nyserda.ny.gov
cjc.ny.gov
www.rev.ny.gov
5767917874446336-fe1.pantheonsite.io
5638059940904960-fe3.pantheonsite.io
*.health.ny.gov
tracs2.otda.ny.gov
ocra.omh.ny.gov
it.uahs.arizona.edu
learn.apps.loopstart.net
sni.cloudflaressl.com
int.sfs.ny.gov
recovery.dhses.ny.gov
www.tax.ny.gov
www.tax.ny.gov
5638059940904960-fe3.pantheonsite.io
Appcenter1.esd.ny.gov
5202656289095680-fe4.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
*.hcr.ny.gov
www.perb.ny.gov
*.hcr.ny.gov
*.oagtest.ag.ny.gov
qasc.oft.ny.gov
bonds.hcr.ny.gov
*.opwdd.ny.gov
*.health.ny.gov
doccs-ndid.digital-dev.dmv.ny.gov
calendar.sdzsafaripark.org
devwebcloud.health.ny.gov
www.oscar.ny.gov
www.rev.ny.gov
dev.ag.ny.gov
youthworks.ny.gov
steuben911.ny.gov
APPS.OCFS.NY.GOV
recovery.dhses.ny.gov
mhprovider.qa.omh.ny.gov
vhc.wcb.ny.gov
*.dos.ny.gov
banking-business-review.com
climate.ny.gov
cdn-test.battlefields.org
5752571553644544-fe2.pantheonsite.io
WestchesterCDPS.ny.gov
*.omh.ny.gov
GardenCity.ny.gov
citeak.multidevcom.uaf.edu
qa.my.ny.gov
booking.virtualhometour.sg
portwashingtonpd.ny.gov
r5a20.osc.ny.gov
fulton.ny.gov
ertfin.sfs.ny.gov
*.criminaljustice.ny.gov
cortlandcounty.ny.gov
uihp2.labor.ny.gov
5697124062724096-fe2.pantheonsite.io
hcstgbi.osc.ny.gov
applications.labor.ny.gov
www2.dps.ny.gov
DOCCS-Submetering.BMS.ny.gov
chns120.courseresource.yale.edu
my.justicecenter.ny.gov
*.dec.ny.gov
bonds.hcr.ny.gov
*.troopers.ny.gov
5202656289095680-fe4.pantheonsite.io
vpcr-qa.justicecenter.ny.gov
data.ny.gov
ccf.ny.gov
*.ocfs.ny.gov
vhc.wcb.ny.gov
dmna.ny.gov
qa-ldap.ny.gov
pay-92qanyspows.osc.ny.gov
online.ogs.ny.gov
nystateofhealth.ny.gov
5202656289095680-fe4.pantheonsite.io
www7f.tax.ny.gov
labor.ny.gov
allegany.ny.gov
vpn3.dfs.ny.gov
RAVPN.FRG.NY.GOV
qasc.oft.ny.gov
sni.cloudflaressl.com
ihstgi.osc.ny.gov
*.justicecenter.ny.gov
5638059940904960-fe3.pantheonsite.io
mail.cityofjohnstown.ny.gov
r4a10.osc.ny.gov
*.health.ny.gov
www.ciris.ny.gov
carpepm.almonds.com
5697124062724096-fe2.pantheonsite.io
5767917874446336-fe1.pantheonsite.io
*.hcr.ny.gov
5645914630782976-fe1.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
el.nyserda.ny.gov
cjc.ny.gov
www.rev.ny.gov
5767917874446336-fe1.pantheonsite.io
5638059940904960-fe3.pantheonsite.io
*.health.ny.gov
tracs2.otda.ny.gov
ocra.omh.ny.gov
it.uahs.arizona.edu
learn.apps.loopstart.net
sni.cloudflaressl.com
int.sfs.ny.gov
recovery.dhses.ny.gov
www.tax.ny.gov
www.tax.ny.gov
5638059940904960-fe3.pantheonsite.io
Appcenter1.esd.ny.gov
5202656289095680-fe4.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
*.hcr.ny.gov
www.perb.ny.gov
*.hcr.ny.gov
*.oagtest.ag.ny.gov
qasc.oft.ny.gov
bonds.hcr.ny.gov
*.opwdd.ny.gov
*.health.ny.gov
doccs-ndid.digital-dev.dmv.ny.gov
calendar.sdzsafaripark.org
devwebcloud.health.ny.gov
www.oscar.ny.gov
www.rev.ny.gov
dev.ag.ny.gov
youthworks.ny.gov
steuben911.ny.gov
APPS.OCFS.NY.GOV
recovery.dhses.ny.gov
mhprovider.qa.omh.ny.gov
vhc.wcb.ny.gov
*.dos.ny.gov
banking-business-review.com
climate.ny.gov
cdn-test.battlefields.org
5752571553644544-fe2.pantheonsite.io
WestchesterCDPS.ny.gov
*.omh.ny.gov
GardenCity.ny.gov
citeak.multidevcom.uaf.edu
qa.my.ny.gov
booking.virtualhometour.sg
portwashingtonpd.ny.gov
r5a20.osc.ny.gov
fulton.ny.gov
ertfin.sfs.ny.gov
*.criminaljustice.ny.gov
cortlandcounty.ny.gov
uihp2.labor.ny.gov
5697124062724096-fe2.pantheonsite.io
hcstgbi.osc.ny.gov
applications.labor.ny.gov
www2.dps.ny.gov
DOCCS-Submetering.BMS.ny.gov
chns120.courseresource.yale.edu
my.justicecenter.ny.gov
*.dec.ny.gov
bonds.hcr.ny.gov
*.troopers.ny.gov
5202656289095680-fe4.pantheonsite.io
vpcr-qa.justicecenter.ny.gov
data.ny.gov
ccf.ny.gov
*.ocfs.ny.gov
vhc.wcb.ny.gov
dmna.ny.gov
qa-ldap.ny.gov
pay-92qanyspows.osc.ny.gov
online.ogs.ny.gov
nystateofhealth.ny.gov
5202656289095680-fe4.pantheonsite.io
www7f.tax.ny.gov
labor.ny.gov
allegany.ny.gov
vpn3.dfs.ny.gov
RAVPN.FRG.NY.GOV
qasc.oft.ny.gov
sni.cloudflaressl.com
ihstgi.osc.ny.gov
Certificate
The complete raw certificate details for *.dos.ny.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHbzCCBlegAwIBAgIQD6s8E8RnM/yl30YKOCaBuTANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMjAxMTgwMDAwMDBa Fw0yMzAyMDIyMzU5NTlaMIGLMQswCQYDVQQGEwJVUzERMA8GA1UECBMITmV3IFlv cmsxDzANBgNVBAcTBkFsYmFueTFBMD8GA1UEChM4TmV3IFlvcmsgU3RhdGUgT2Zm aWNlIG9mIEluZm9ybWF0aW9uIFRlY2hub2xvZ3kgU2VydmljZXMxFTATBgNVBAMM DCouZG9zLm55LmdvdjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJxT t9v81lQII6dwjfr+ycRSa6Oz9rQIqp8EkGA9nosi3JBLEfBUtuLoNtn/7jueo3w9 nLx4vsSTGvw0YL04UeU72PpWyWyV/eF060+1dk3812oLmMg02UJLKQzkSScR8gbK C0ybD/cV0ExW1ZkZyVMj3zh0B/jijszYFEdnem+bUdMTeqiV069Vnx5lFejk7cKH NJMRmLSLRYdj3V1T0lp1ddvO7LVM5pLBHgeBb2wvtWXEUXO7bulupS0eIzV8B+js SJXcHstFHy7crtQOwS5sZ5shk0jkeT0GpAZNDU66zm+4Q3wD3PLqPJ4yep0x4Vex T6GtUz0Vg5ysIJkVrbECAwEAAaOCBAgwggQEMB8GA1UdIwQYMBaAFLdrouqoqoSM eeq02g+YssWVdrn0MB0GA1UdDgQWBBT4+MWi8gJqY5RufdxV+p0cHc+XEDCBrwYD VR0RBIGnMIGkggwqLmRvcy5ueS5nb3aCDnd3dy5hYm8ubnkuZ292ggphYm8ubnku Z292ghx3d3cubnlzZGVmZXJyZWRhY3Rpb24ubnkuZ292ghhueXNkZWZlcnJlZGFj dGlvbi5ueS5nb3aCGHd3dy5lYmllbm5pYWwuZG9zLm55LmdvdoIaZW1haWwuZWJp ZW5uaWFsLmRvcy5ueS5nb3aCCmRvcy5ueS5nb3YwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBjwYDVR0fBIGHMIGEMECgPqA8 hjpodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vRGlnaUNlcnRUTFNSU0FTSEEyNTYy MDIwQ0ExLTQuY3JsMECgPqA8hjpodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGln aUNlcnRUTFNSU0FTSEEyNTYyMDIwQ0ExLTQuY3JsMD4GA1UdIAQ3MDUwMwYGZ4EM AQICMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzB/ BggrBgEFBQcBAQRzMHEwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0 LmNvbTBJBggrBgEFBQcwAoY9aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS0xLmNydDAMBgNVHRMBAf8EAjAAMIIB fgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr 7Otp4Xd9bQa9bgAAAX5uGDY2AAAEAwBHMEUCIQCJ1ur4FVrIOPCUzUylbVcHvu6E 8gD3XMX+L4BOhdIv/gIgYWCrrIpphMIgYkNYkT1WHeHLQH+mL4UC7T8oNWlIlmgA dgA1zxkbv7FsV78PrUxtQsu7ticgJlHqP+Eq76gDwzvWTAAAAX5uGDZpAAAEAwBH MEUCIAcAsCFMpgFqD+tcuWlLQg6+yKvgOBDwRWmv/zwd6zcHAiEAjwmPuCD/Ramy Ixx4qr+EmwEEkX1b3ZyYbcCNYHEZ1NAAdgCzc3cH4YRQ+GOG1gWp3BEJSnktsWcM C4fc8AMOeTalmgAAAX5uGDajAAAEAwBHMEUCIHsyITrrIEluVeJ/TPhe3WhPYOlY CWjwedD2ou9yDM7ZAiEA/5mw6ElB6PVV4nZAJf8UsKlAL47xyf3UMLFukqFMM+Uw DQYJKoZIhvcNAQELBQADggEBAD2C3TUQNVDAMr6lWAEjPOJIN+fxozqfumJaSRHg qg2udRdM8D0Sa6PB4N8mtgyIgF0Ltq1f53vMkTwkMELHBGXNQNMGn0w4k/jJATeR KU8xQIbxe2RkxW8PHYwAP2wzcHNKklyAhr2ihM8mbfVQCWG6dLv8ISw1PL1mOosK 6bOyB9Xy4hrJQ0fPhBXPwcpkWE/cge61jAKMYuKN64wB+fFUUT7TIMvJ0O+Gjq6v bEj4ti8jVvUhkxWsHzWW7oBRfmTdtMdBaoI1LNdJjk91hK3W5ehB8nN3JUJ1y+VP ULwWGpc7fHdJLiCoFJlT03hnH6g7TLn4uj5ozEPY6qupKjI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnFO32/zWVAgjp3CN+v7J xFJro7P2tAiqnwSQYD2eiyLckEsR8FS24ug22f/uO56jfD2cvHi+xJMa/DRgvThR 5TvY+lbJbJX94XTrT7V2TfzXaguYyDTZQkspDORJJxHyBsoLTJsP9xXQTFbVmRnJ UyPfOHQH+OKOzNgUR2d6b5tR0xN6qJXTr1WfHmUV6OTtwoc0kxGYtItFh2PdXVPS WnV1287stUzmksEeB4FvbC+1ZcRRc7tu6W6lLR4jNXwH6OxIldwey0UfLtyu1A7B LmxnmyGTSOR5PQakBk0NTrrOb7hDfAPc8uo8njJ6nTHhV7FPoa1TPRWDnKwgmRWt sQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20827521210278327274910094036449001913 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Albany' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York State Office of Information Technology Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.dos.ny.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19734458558007126382807455714512822474402277797566640594341808239581259435511975175790981188324508418941223845463074696763398605435437690795866412691297430095994141157568221493796143751569804251304648594039912204841955442616420100659235809416215352951864842313860057603107381385733309761667233881841400676113963029441418293092524073618543311939598935703944281096612455342047764938582871609696035259502693229025565720171383045601538383398780235851795564049502881146750864842827687573557339291039423955112425161227435234467930136136404734219840798268895536586986560330108533294718452175490691358868687232897391999167921 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f8f8c5a2f2026a63946e7ddc55fa9d1c1dcf9710 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (167 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dos.ny.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.abo.ny.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'abo.ny.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nysdeferredaction.ny.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nysdeferredaction.ny.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ebiennial.dos.ny.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'email.ebiennial.dos.ny.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dos.ny.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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