selfserve.cfo.dc.gov
- Government of the District of Columbia -
Issued by DC Government SHA2 EV Intermediate CA
About this certificate
This digital certificate with serial number 05:8d:6d:10:00:e0:05:e2:15:ca:09:ca:c1:cc:e1:23 was issued on by Government of the District of Columbia.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Government of the District of Columbia
Company registration number:
Government Entity
Organization: Government of the District of Columbia
Organization unit: Office of the Chief Financial Officer
Organization: Government of the District of Columbia
Organization unit: Office of the Chief Financial Officer
State / Province:
District of Columbia
Locality: Washington
Country: US
Locality: Washington
Country: US
Government of the District of Columbia
Organization:
Government of the District of Columbia
Organization unit: Office of the Chief Technology Officer
Organization unit: Office of the Chief Technology Officer
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:8d:6d:10:00:e0:05:e2:15:ca:09:ca:c1:cc:e1:23Serial Number (int): 7380465886546215486407777159165567267
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: a1:b8:28:fc:25:7f:25:14:f1:f3:2e:66:23:f7:9e:80:be:7c:5b:6a
AuthorityKeyId: 50:ae:28:b3:cf:fc:ed:4b:0b:46:d1:80:7e:13:09:f6:df:4b:e6:90
Fingerprint (sha1): 6d:fe:14:1d:77:34:16:85:60:b8:44:35:a7:1b:20:9d:f8:bd:19:25
Fingerprint (sha256): 02:67:1b:4f:19:c8:3a:bb:5a:27:ea:d8:06:1d:2a:45:81:39:4b:69:0f:ce:61:99:99:9b:be:06:de:c8:88:94
Issuing Certificate URL: http://cacerts.digicert.com/DCGovernmentSHA2EVIntermediateCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DCGovernmentSHA2EVIntermediateCA.crl
CRL Distribution Point: http://crl4.digicert.com/DCGovernmentSHA2EVIntermediateCA.crl
Check the revocation status for certificate selfserve.cfo.dc.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for selfserve.cfo.dc.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
selfserve.cfo.dc.gov
Other certificates including the domain name dc.gov
(limited to 100 certificates)
010-DCPS-8540-01.in.dc.gov
propertyquest.dc.gov
aclprodcfmx.in.dc.gov
smarterocfo.dc.gov
seats.osse.dc.gov
thelab.dc.gov
idmswebqa.dc.gov
youthspeakout.cfsa.dc.gov
ccsea.osse.dc.gov
mpduccawarpt147.mpdc.dc.gov
enode.dc.gov
sso.dc.gov
dcraonline-rms.dcra.dc.gov
justisportal.dc.gov
tipline.oag.dc.gov
leaf.dpw.dc.gov
smtp5.dc.gov
erap.dhs.dc.gov
leaddc.dcps.dc.gov
dashboard.in.dc.gov
mail.dc.gov
selfserve.cfo.dc.gov
fpp.dc.gov
casesearch.oea.dc.gov
bwc.thelab.dc.gov
textalert.ema.dc.gov
pshcm.dc.gov
sboe.dc.gov
dc.gov
mdm.dc.gov
aspentraining.dcps.dc.gov
visitation.doc.dc.gov
os19.in.dc.gov
TA.DCSTARS.K12.DC.GOV
admin.sportswagering-stg.lottery.dc.gov
github.in.dc.gov
streetlights.dc.gov
services.dcnet.dc.gov
openbudget.dc.gov
secure.cfsa.dc.gov
ldap-k12.dc.gov
servusmdm.in.dc.gov
tunnel.mdm.dc.gov
acaprod2.dcra.dc.gov
ecourtlts.oah.dc.gov
theforum.dc.gov
aclqc.in.dc.gov
efiling.ocf.dc.gov
cson.oag.dc.gov
webapi.dcnet.dc.gov
OSPI.DCRA.DC.GOV
secure.cfsa.dc.gov
cpms.dcra.dc.gov
doh.immunization.doh.dc.gov
eplan.dcra.dc.gov
apply-myschooldctest.in.dc.gov
dc.gov
trainingtrack.hsema.dc.gov
docs.cfsa.dc.gov
mail.tdl.dc.gov
maps2.legacy.dcgis.dc.gov
intime.doc.dc.gov
locus.dmh.dc.gov
EXP-E.UC.DC.GOV
eServices.dcra.dc.gov
events.dcgis.dc.gov
ACCESSCSED.oag.dc.gov
upstream.dc.gov
grid.sccrc.dc.gov
events.dcgis.dc.gov
statehood.dc.gov
ess.dc.gov
OCTOProcessEng.dc.gov
dashboard.in.dc.gov
HEALTHCHECK.DOH.DC.GOV
microstrategy.dc.gov
handbook.dcoz.dc.gov
dc.gov
amprdweb.dc.gov
disb.dc.gov
ESNA01.in.dc.gov
*.dlcp.dc.gov
opendata.dc.gov
qap.osse.dc.gov
studyabroad.dcps.dc.gov
itremote.dc.gov
app.cab.dc.gov
rivacarss.in.dc.gov
mealapps.dcps.dc.gov
vpndc.dc.gov
api.qa.311.dc.gov
signon.dev.dc.gov
dda.dc.gov
data.osse.dc.gov
forms.joinmpd.dc.gov
orchard.osse.dc.gov
app.dcoz.dc.gov
dcpaidfamilyleave.dc.gov
sauth.dc.gov
*.dcas.dc.gov
propertyquest.dc.gov
aclprodcfmx.in.dc.gov
smarterocfo.dc.gov
seats.osse.dc.gov
thelab.dc.gov
idmswebqa.dc.gov
youthspeakout.cfsa.dc.gov
ccsea.osse.dc.gov
mpduccawarpt147.mpdc.dc.gov
enode.dc.gov
sso.dc.gov
dcraonline-rms.dcra.dc.gov
justisportal.dc.gov
tipline.oag.dc.gov
leaf.dpw.dc.gov
smtp5.dc.gov
erap.dhs.dc.gov
leaddc.dcps.dc.gov
dashboard.in.dc.gov
mail.dc.gov
selfserve.cfo.dc.gov
fpp.dc.gov
casesearch.oea.dc.gov
bwc.thelab.dc.gov
textalert.ema.dc.gov
pshcm.dc.gov
sboe.dc.gov
dc.gov
mdm.dc.gov
aspentraining.dcps.dc.gov
visitation.doc.dc.gov
os19.in.dc.gov
TA.DCSTARS.K12.DC.GOV
admin.sportswagering-stg.lottery.dc.gov
github.in.dc.gov
streetlights.dc.gov
services.dcnet.dc.gov
openbudget.dc.gov
secure.cfsa.dc.gov
ldap-k12.dc.gov
servusmdm.in.dc.gov
tunnel.mdm.dc.gov
acaprod2.dcra.dc.gov
ecourtlts.oah.dc.gov
theforum.dc.gov
aclqc.in.dc.gov
efiling.ocf.dc.gov
cson.oag.dc.gov
webapi.dcnet.dc.gov
OSPI.DCRA.DC.GOV
secure.cfsa.dc.gov
cpms.dcra.dc.gov
doh.immunization.doh.dc.gov
eplan.dcra.dc.gov
apply-myschooldctest.in.dc.gov
dc.gov
trainingtrack.hsema.dc.gov
docs.cfsa.dc.gov
mail.tdl.dc.gov
maps2.legacy.dcgis.dc.gov
intime.doc.dc.gov
locus.dmh.dc.gov
EXP-E.UC.DC.GOV
eServices.dcra.dc.gov
events.dcgis.dc.gov
ACCESSCSED.oag.dc.gov
upstream.dc.gov
grid.sccrc.dc.gov
events.dcgis.dc.gov
statehood.dc.gov
ess.dc.gov
OCTOProcessEng.dc.gov
dashboard.in.dc.gov
HEALTHCHECK.DOH.DC.GOV
microstrategy.dc.gov
handbook.dcoz.dc.gov
dc.gov
amprdweb.dc.gov
disb.dc.gov
ESNA01.in.dc.gov
*.dlcp.dc.gov
opendata.dc.gov
qap.osse.dc.gov
studyabroad.dcps.dc.gov
itremote.dc.gov
app.cab.dc.gov
rivacarss.in.dc.gov
mealapps.dcps.dc.gov
vpndc.dc.gov
api.qa.311.dc.gov
signon.dev.dc.gov
dda.dc.gov
data.osse.dc.gov
forms.joinmpd.dc.gov
orchard.osse.dc.gov
app.dcoz.dc.gov
dcpaidfamilyleave.dc.gov
sauth.dc.gov
*.dcas.dc.gov
Certificate
The complete raw certificate details for selfserve.cfo.dc.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHyzCCBrOgAwIBAgIQBY1tEADgBeIVygnKwczhIzANBgkqhkiG9w0BAQsFADCB nzELMAkGA1UEBhMCVVMxLzAtBgNVBAoTJkdvdmVybm1lbnQgb2YgdGhlIERpc3Ry aWN0IG9mIENvbHVtYmlhMS8wLQYDVQQLEyZPZmZpY2Ugb2YgdGhlIENoaWVmIFRl Y2hub2xvZ3kgT2ZmaWNlcjEuMCwGA1UEAxMlREMgR292ZXJubWVudCBTSEEyIEVW IEludGVybWVkaWF0ZSBDQTAeFw0xOTAzMjcwMDAwMDBaFw0yMTAzMzExMjAwMDBa MIIBDjEaMBgGA1UEDwwRR292ZXJubWVudCBFbnRpdHkxEzARBgsrBgEEAYI3PAIB AxMCVVMxGjAYBgNVBAUTEUdvdmVybm1lbnQgRW50aXR5MQswCQYDVQQGEwJVUzEd MBsGA1UECBMURGlzdHJpY3Qgb2YgQ29sdW1iaWExEzARBgNVBAcTCldhc2hpbmd0 b24xLzAtBgNVBAoTJkdvdmVybm1lbnQgb2YgdGhlIERpc3RyaWN0IG9mIENvbHVt YmlhMS4wLAYDVQQLEyVPZmZpY2Ugb2YgdGhlIENoaWVmIEZpbmFuY2lhbCBPZmZp Y2VyMR0wGwYDVQQDExRzZWxmc2VydmUuY2ZvLmRjLmdvdjCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAJ1GfgtI0ngKbXfJ54ed93E4z1Woq07QsPch6ij9 d4SSFLz3+upeYLoszQfycmFX3PmmVjvDx0U8tt/y39r5HghYdEZiqjNHeiW+nbPC NMEPrpKUkatrZuiocGiu5HJVPCGEm88NjAT1ltFCY2f1cZUpUP2idI36K1eibAhi NHTf/50ocGQ5GrYou+ehdO6inePQQdqIRkeDhyebw3f4owZ/A/rEGQQN6UG0ZaMw j1DWVd5YKGdiDnYUr5nYdgaBcyQbDgrjIxH/doexpTkcMK8B8zPzRPTjKT/dA7ax llW1sCHcwHs1G57Mrvro7IpX9bQ6EFUC1mAh6bqCBxBxENkCAwEAAaOCA48wggOL MB8GA1UdIwQYMBaAFFCuKLPP/O1LC0bRgH4TCfbfS+aQMB0GA1UdDgQWBBShuCj8 JX8lFPHzLmYj956AvnxbajAfBgNVHREEGDAWghRzZWxmc2VydmUuY2ZvLmRjLmdv djAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MIGVBgNVHR8EgY0wgYowQ6BBoD+GPWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9E Q0dvdmVybm1lbnRTSEEyRVZJbnRlcm1lZGlhdGVDQS5jcmwwQ6BBoD+GPWh0dHA6 Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EQ0dvdmVybm1lbnRTSEEyRVZJbnRlcm1lZGlh dGVDQS5jcmwwSwYDVR0gBEQwQjA3BglghkgBhv1sAgEwKjAoBggrBgEFBQcCARYc aHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAHBgVngQwBATCBggYIKwYBBQUH AQEEdjB0MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wTAYI KwYBBQUHMAKGQGh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EQ0dvdmVybm1l bnRTSEEyRVZJbnRlcm1lZGlhdGVDQS5jcnQwDAYDVR0TAQH/BAIwADCCAX8GCisG AQQB1nkCBAIEggFvBIIBawFpAHcApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fN DsgN3BAAAAFpv6CH/QAABAMASDBGAiEAp3zOh1my2bbErMtWC7nDH0sqM3cZlq6c x8FBLRpvfXkCIQDhhNJCQogLmB9AljezvL5r4Niysy/Pp/xIY8codqQ5ZQB2AFYU Bpov18Ls0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDdAAABab+giOgAAAQDAEcwRQIh AJtliJmFTEXfiZXaMV5kEUaMML/tqaJLDYMoMpo+rJIGAiBCIdD9ts57/xsnG1q9 9SHngxWmgDRIAVBIMfhNFV2cTwB2ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCW ZDaOHtGFAAABab+giHMAAAQDAEcwRQIgTQCGX9YTUKtOqf9TyI4lBJaKNgH9CW0p rIbGwkMEVPECIQDa6BWPwhf2LZWYPVGKcm9kmD61Cn4wmXnHrkgKSvIZqDANBgkq hkiG9w0BAQsFAAOCAQEAk0p1T87Pxyi4qugIlC8zQdk4Zvq9NAvplxQyvZGspv6o F+0g/CJIlYiS9ez4Z16t3EbbdPapYIrdnpIYi1sZ0tK/eitu4yB8dZTChxR9RHeQ y/7bUJAQqI57HOVnQGb8JNc8C0NWlzzFMkfjP6DC0Lj+Qg08ZZEpjFdUKs6rwupE IWI54PyYMCxGz+N7ZKhWIFw/8tUPMoyut0CoRHjZ1HEoysnaptRT0i8HcNuVnDKJ SiIewBRTeZOGjwXGy8OO6C8l/2+TqB4dVoN7wittKFOrMzYVWKxt6CdsD4Lpx6C4 aQbCbkfasevyPSjeNPRZvCbt7RhQbTzFhvWII1mDow== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUZ+C0jSeAptd8nnh533 cTjPVairTtCw9yHqKP13hJIUvPf66l5guizNB/JyYVfc+aZWO8PHRTy23/Lf2vke CFh0RmKqM0d6Jb6ds8I0wQ+ukpSRq2tm6KhwaK7kclU8IYSbzw2MBPWW0UJjZ/Vx lSlQ/aJ0jforV6JsCGI0dN//nShwZDkatii756F07qKd49BB2ohGR4OHJ5vDd/ij Bn8D+sQZBA3pQbRlozCPUNZV3lgoZ2IOdhSvmdh2BoFzJBsOCuMjEf92h7GlORww rwHzM/NE9OMpP90DtrGWVbWwIdzAezUbnsyu+ujsilf1tDoQVQLWYCHpuoIHEHEQ 2QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7380465886546215486407777159165567267 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government of the District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Office of the Chief Technology Officer' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DC Government SHA2 EV Intermediate CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-31 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government of the District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Office of the Chief Financial Officer' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'selfserve.cfo.dc.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19854174957796094663712926726554804909820907628233857660126198111812809843996311334843892468764742187936927332517147352113689033990522706736032171014554205555505298844435663612991070727268659056303107305600576026447984831778086019342178510017528343958766307753380607216971089318498982109358639372079480628821872781663562142680427221153901844709133675987694126414093844882002295218259346837529360597532184265072558467515273604337845428874498405867324777126828996598985475710699190868523166440198935146490562711238058067249990715486388091865599183883772431778792394030051383265150010700294167368739038185790914809630937 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 50ae28b3cffced4b0b46d1807e1309f6df4be690 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a1b828fc257f2514f1f32e6623f79e80be7c5b6a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'selfserve.cfo.dc.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (141 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DCGovernmentSHA2EVIntermediateCA.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DCGovernmentSHA2EVIntermediateCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DCGovernmentSHA2EVIntermediateCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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