pki.navfac.navy.mil
- U.S. Government -
Issued by DOD ID SW CA-38
About this certificate
This digital certificate with serial number e3:2d was issued on by U.S. Government.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: subject:localityName MUST appear if subject:organizationName, subject:givenName, or subject:surname fields are present but the subject:stateOrProvinceName field is absent. (BRs: 7.1.4.2.2)
- Subscriber Certificate: subject:stateOrProvinceName MUST appear if the subject:organizationName, subject:givenName, or subject:surname fields are present and subject:localityName is absent. (BRs: 7.1.4.2.2)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
U.S. Government
Organization:
U.S. Government
Organization unit: DoD
Organization unit: PKI
Organization unit: USN
Organization unit: DoD
Organization unit: PKI
Organization unit: USN
Country:
US
U.S. Government
Organization:
U.S. Government
Organization unit: DoD
Organization unit: PKI
Organization unit: DoD
Organization unit: PKI
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): e3:2dSerial Number (int): 58157
Serial Number lenght: 16 bits, 2 octets
SubjectKeyId: 93:aa:2a:49:35:60:2e:77:de:31:ea:de:48:22:c9:12:78:e8:10:3b
AuthorityKeyId: 8e:c5:b9:cc:fc:ce:8e:53:b4:2a:ce:e8:11:2a:cf:9b:29:6c:67:ca
Fingerprint (sha1): fa:c5:65:78:ae:cd:14:4f:c8:74:b5:5c:6f:de:a3:e6:93:09:c7:16
Fingerprint (sha256): 02:74:22:19:f9:e2:e5:1f:77:2a:71:0a:e4:b9:66:dc:5e:5e:bd:21:c4:0d:0f:27:f7:e9:f1:94:a8:db:cb:bd
Issuing Certificate URL: http://crl.disa.mil/sign/DODIDSWCA_38.cer
Revocation information
OCSP Server: http://ocsp.disa.milCRL Distribution Point: http://crl.disa.mil/crl/DODIDSWCA_38.crl
Check the revocation status for certificate pki.navfac.navy.mil
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pki.navfac.navy.mil
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pki.navfac.navy.mil
Other certificates including the domain name navy.mil
(limited to 100 certificates)
pmohq.nmci.navy.mil
mysites.scms.navy.mil
ux.dontracker.navy.mil
ep6.erp.navy.mil
nhhc.collections.dc3n.navy.mil
www.housing.navy.mil
simdis.nrl.navy.mil
j2.anchordesk.navy.mil
rdais.platform.milcloud.mil
soatest.navsup.navy.mil
gfmosd.ffc.navy.mil
sftp.ncsc.navy.mil
preprod.beta.np2.navy.mil
rom.usno.navy.mil
stats.nel.navy.mil
opnavqa.ahfq.nmci.navy.mil
cwaybo.sscno.nmci.navy.mil
citrix-sson-session.ablcda.navy.mil
C27PD2CNLAP14W.ahds.nmci.navy.mil
applications.ahf.nmci.navy.mil
C27PD2CNLAP15W.ahds.nmci.navy.mil
vhexpressweb.navair.navy.mil
wtstaging.navair.navy.mil
*.navy.mil
vhweb.navair-rdte.navy.mil
www.lisseis.navsea.navy.mil
test.ide.portal.navy.mil
ile-lms-adelws.nko.navy.mil
netcentric.spawar.navy.mil
www.navyband.navy.mil
columbo.nrlssc.navy.mil
csg.navairlab.navair.navy.mil
www.navy.mil
ssd1.nrl.navy.mil
www.navy.mil
widjit.navair-rdte.navy.mil
mydev.navsup.navy.mil
www.marines.mil
aux-qa.cetars.ncdc.navy.mil
grl-ctx.netc.navy.mil
www10.nemoc.navy.mil
ciif.nrl.navy.mil
app4-p.nde.navy.mil
homepages.navair.navy.mil
web.tsb.cranrdte.navy.mil
smmisqual.submepp.navy.mil
survey.jag.navy.mil
nll2.ahf.nmci.navy.mil
bumed-smartdev.med.navy.mil
www.cotf.navy.mil
waspweb1.navair-rdte.navy.mil
www.navy.mil
inavywildcard.portal.navy.mil
apps01.onr.navy.mil
gosnet.navair.navy.mil
www.nescdw.navsea.navy.mil
airworthinessbetared.navair.navy.mil
pdmurdg.aw3s.navy.mil
test.ide.tce.navy.mil
ogconline.navy.mil
pki.navfac.navy.mil
stg-web1.mfom.nmci.navy.mil
locker.private.navyreserve.navy.mil
staynavytools.bol.navy.mil
mrrstestwebsrv.sscno.nmci.navy.mil
nrdwtest.navyreserve.navy.mil
www.defense.gov
gss.navair.navy.mil
windchill.chs.spawar.navy.mil
projects.cmf.nrl.navy.mil
bathcitrixgw.peosnap.navy.mil
vpn.nvspdren.navy.mil
dencas.med.navy.mil
IATS.NMCI.NAVY.MIL
www.navy.mil
airwatch.navair.navy.mil
ossp.eu.navy.mil
cyberspacece.cnrc.navy.mil
www.navsea.navy.mil
doors.chs.spawar.navy.mil
C27NMDCNLAT1W.AHDS.NMCI.NAVY.MIL
www.navsup.navy.mil
www.ssp.navy.mil
tycho.usno.navy.mil
www.navy.mil
nodcam-qa.ncdc.navy.mil
qawebserv9.navair.navy.mil
www.bol.navy.mil
www.aas.prod.nel.training.navy.mil
mrdbws-dev.nmci.navy.mil
inavy.accessrequest.portal.navy.mil
nmpbsoam1.n10.npc.navy.mil
erms.navsup.navy.mil
geonet.chs.spawar.navy.mil
Paxcoi.navair1.navy.mil
nefp.bol.navy.mil
ipdm.navy.mil
spider.dc3n.navy.mil
wepp.bol.navy.mil
iraps.nmci.navy.mil
mysites.scms.navy.mil
ux.dontracker.navy.mil
ep6.erp.navy.mil
nhhc.collections.dc3n.navy.mil
www.housing.navy.mil
simdis.nrl.navy.mil
j2.anchordesk.navy.mil
rdais.platform.milcloud.mil
soatest.navsup.navy.mil
gfmosd.ffc.navy.mil
sftp.ncsc.navy.mil
preprod.beta.np2.navy.mil
rom.usno.navy.mil
stats.nel.navy.mil
opnavqa.ahfq.nmci.navy.mil
cwaybo.sscno.nmci.navy.mil
citrix-sson-session.ablcda.navy.mil
C27PD2CNLAP14W.ahds.nmci.navy.mil
applications.ahf.nmci.navy.mil
C27PD2CNLAP15W.ahds.nmci.navy.mil
vhexpressweb.navair.navy.mil
wtstaging.navair.navy.mil
*.navy.mil
vhweb.navair-rdte.navy.mil
www.lisseis.navsea.navy.mil
test.ide.portal.navy.mil
ile-lms-adelws.nko.navy.mil
netcentric.spawar.navy.mil
www.navyband.navy.mil
columbo.nrlssc.navy.mil
csg.navairlab.navair.navy.mil
www.navy.mil
ssd1.nrl.navy.mil
www.navy.mil
widjit.navair-rdte.navy.mil
mydev.navsup.navy.mil
www.marines.mil
aux-qa.cetars.ncdc.navy.mil
grl-ctx.netc.navy.mil
www10.nemoc.navy.mil
ciif.nrl.navy.mil
app4-p.nde.navy.mil
homepages.navair.navy.mil
web.tsb.cranrdte.navy.mil
smmisqual.submepp.navy.mil
survey.jag.navy.mil
nll2.ahf.nmci.navy.mil
bumed-smartdev.med.navy.mil
www.cotf.navy.mil
waspweb1.navair-rdte.navy.mil
www.navy.mil
inavywildcard.portal.navy.mil
apps01.onr.navy.mil
gosnet.navair.navy.mil
www.nescdw.navsea.navy.mil
airworthinessbetared.navair.navy.mil
pdmurdg.aw3s.navy.mil
test.ide.tce.navy.mil
ogconline.navy.mil
pki.navfac.navy.mil
stg-web1.mfom.nmci.navy.mil
locker.private.navyreserve.navy.mil
staynavytools.bol.navy.mil
mrrstestwebsrv.sscno.nmci.navy.mil
nrdwtest.navyreserve.navy.mil
www.defense.gov
gss.navair.navy.mil
windchill.chs.spawar.navy.mil
projects.cmf.nrl.navy.mil
bathcitrixgw.peosnap.navy.mil
vpn.nvspdren.navy.mil
dencas.med.navy.mil
IATS.NMCI.NAVY.MIL
www.navy.mil
airwatch.navair.navy.mil
ossp.eu.navy.mil
cyberspacece.cnrc.navy.mil
www.navsea.navy.mil
doors.chs.spawar.navy.mil
C27NMDCNLAT1W.AHDS.NMCI.NAVY.MIL
www.navsup.navy.mil
www.ssp.navy.mil
tycho.usno.navy.mil
www.navy.mil
nodcam-qa.ncdc.navy.mil
qawebserv9.navair.navy.mil
www.bol.navy.mil
www.aas.prod.nel.training.navy.mil
mrdbws-dev.nmci.navy.mil
inavy.accessrequest.portal.navy.mil
nmpbsoam1.n10.npc.navy.mil
erms.navsup.navy.mil
geonet.chs.spawar.navy.mil
Paxcoi.navair1.navy.mil
nefp.bol.navy.mil
ipdm.navy.mil
spider.dc3n.navy.mil
wepp.bol.navy.mil
iraps.nmci.navy.mil
Certificate
The complete raw certificate details for pki.navfac.navy.mil in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEpDCCA4ygAwIBAgIDAOMtMA0GCSqGSIb3DQEBCwUAMF0xCzAJBgNVBAYTAlVT MRgwFgYDVQQKEw9VLlMuIEdvdmVybm1lbnQxDDAKBgNVBAsTA0RvRDEMMAoGA1UE CxMDUEtJMRgwFgYDVQQDEw9ET0QgSUQgU1cgQ0EtMzgwHhcNMTYxMTE0MjMxNTMw WhcNMTkxMTE1MjMxNTMwWjBvMQswCQYDVQQGEwJVUzEYMBYGA1UEChMPVS5TLiBH b3Zlcm5tZW50MQwwCgYDVQQLEwNEb0QxDDAKBgNVBAsTA1BLSTEMMAoGA1UECxMD VVNOMRwwGgYDVQQDExNwa2kubmF2ZmFjLm5hdnkubWlsMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAuhS2JNtJtAh6KPvN63kjRU0al/WYYv9C+WV5qVOq 6U2haqgcufwHmuYlMVi06+luM+HafWtLKawtb27L/w8XRV6S0l+MfdThvo3joNBR cyArZqLG+BJGScsDYOhvnQZJC09qAUf3saJ9FxGvkW/b1kKL6YgtN1BM/iRfKHRh iLjwU5Eb3sVKzybx3cvyS9FeYMUeqRdoGlOIpjUyqjFt6IPy+6bjMFp0KsQBcR16 0lOBiKvDrTAkNAcFseTvBqYrdcTTTitE6UOJlh05kaS1RpQAm30QbbDDCqcIgK85 S9Ueo938ikpMrPfvC6cyTxdE6noivWJuJXDWalBLa2buEQIDAQABo4IBWTCCAVUw HwYDVR0jBBgwFoAUjsW5zPzOjlO0Ks7oESrPmylsZ8owHQYDVR0OBBYEFJOqKkk1 YC533jHq3kgiyRJ46BA7MGcGCCsGAQUFBwEBBFswWTA1BggrBgEFBQcwAoYpaHR0 cDovL2NybC5kaXNhLm1pbC9zaWduL0RPRElEU1dDQV8zOC5jZXIwIAYIKwYBBQUH MAGGFGh0dHA6Ly9vY3NwLmRpc2EubWlsMA4GA1UdDwEB/wQEAwIFoDA5BgNVHR8E MjAwMC6gLKAqhihodHRwOi8vY3JsLmRpc2EubWlsL2NybC9ET0RJRFNXQ0FfMzgu Y3JsMB4GA1UdEQQXMBWCE3BraS5uYXZmYWMubmF2eS5taWwwFgYDVR0gBA8wDTAL BglghkgBZQIBCycwJwYDVR0lBCAwHgYIKwYBBQUHAwEGCCsGAQUFBwMCBggrBgEF BQgCAjANBgkqhkiG9w0BAQsFAAOCAQEAEyD/ozpGhjqus/ryRFQrbx9OHCQR7Pcx ABe1KFdDghpW08fOP6KYxFYER6MfwWGCK7XXpLUILwhQlv7s2CUE4dIXqBXT68jv qEFP1PvOkpwYs2WKZI6GPu2RL+0RFIO30E0ueQppoBgPgyyR7IWUq2PpbWideLOW D3FYfAiiJjKSLVLK36aM42oWYJWko2Oae4jMSK8YpWTdNY+ptR+G4J+8vIGgPPGh /qk/AebjZULT1SYkz178M5ZOTbD5sNSkYUOtm9XccJ8EBDpEQVJHNWtcs+eVFX+S KBUqy4/hh41vOu1gwanQ0kJl76XiGw572ZevbQGvtLHWT0HN/fOtvQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhS2JNtJtAh6KPvN63kj RU0al/WYYv9C+WV5qVOq6U2haqgcufwHmuYlMVi06+luM+HafWtLKawtb27L/w8X RV6S0l+MfdThvo3joNBRcyArZqLG+BJGScsDYOhvnQZJC09qAUf3saJ9FxGvkW/b 1kKL6YgtN1BM/iRfKHRhiLjwU5Eb3sVKzybx3cvyS9FeYMUeqRdoGlOIpjUyqjFt 6IPy+6bjMFp0KsQBcR160lOBiKvDrTAkNAcFseTvBqYrdcTTTitE6UOJlh05kaS1 RpQAm30QbbDDCqcIgK85S9Ueo938ikpMrPfvC6cyTxdE6noivWJuJXDWalBLa2bu EQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 58157 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOD ID SW CA-38' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-14 23:15:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-15 23:15:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'USN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pki.navfac.navy.mil' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23490537944933144185941518678956156183177554473331542555439329374656672446863678744218485850848474366661851502658311937907894407929243186161293877881609827886077750286710738515706691970720307004590850261658539720568936915150304280980363159421246750190557062858641966791023369524372190556967890062058536106310565432834331853533501483817239024711660785934448105090804110396912831397520051093276494788598566620312475835700696668562425565671790436301257597999448773775155822461629571014384762491519736793738453690956304934711552162704666088470791666378894638624183864728848500009660234645125428035070444264881242103016977 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8ec5b9ccfcce8e53b42acee8112acf9b296c67ca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 93aa2a4935602e77de31eade4822c91278e8103b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (91 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/sign/DODIDSWCA_38.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.disa.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/crl/DODIDSWCA_38.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pki.navfac.navy.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.39 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.8.2.2 (iKEIntermediate) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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