gis.penndot.gov
- Commonwealth of Pennsylvania -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 56:36:1f:2c:b8:c0:64:f2:c4:28:1c:fb:68:cc:b0:4a was issued on by Entrust, Inc..
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Commonwealth of Pennsylvania
Organization:
Commonwealth of Pennsylvania
State / Province:
Pennsylvania
Locality: Harrisburg
Country: US
Locality: Harrisburg
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 56:36:1f:2c:b8:c0:64:f2:c4:28:1c:fb:68:cc:b0:4aSerial Number (int): 114594623965778341870470484012370276426
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 32:4f:a9:5a:42:58:b5:87:53:2c:dd:26:ab:f7:bf:52:cb:5a:3e:68
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 95:04:97:27:b5:0e:0c:74:d3:f7:56:7b:bf:a4:95:e8:44:27:6c:f8
Fingerprint (sha256): 02:9a:7f:3f:fb:82:be:0c:59:89:93:3a:a2:83:8b:c3:79:b4:8d:df:ed:95:93:fb:f7:da:af:31:5f:38:65:b0
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate gis.penndot.gov
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gis.penndot.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gis.penndot.gov
gis.penndot.pa.gov
onemap.penndot.gov
onemap.penndot.pa.gov
www.onemap.penndot.gov
connects.penndot.pa.gov
www.projects.penndot.gov
gis.penndot.pa.gov
onemap.penndot.gov
onemap.penndot.pa.gov
www.onemap.penndot.gov
connects.penndot.pa.gov
www.projects.penndot.gov
Other certificates including the domain name penndot.gov
(limited to 100 certificates)
www.crashinfo.penndot.gov
CISREPORTS.PENNDOT.GOV
ESECagSANCertProd.dot.pa.gov
ESECagSANCertSyst.dot.pa.gov
gis.penndot.gov
www.ecssyst.penndot.gov
www.ecmssyst.penndot.gov
SMProxySANCertProd.dot.pa.gov
ESECSanCertProd128.dot.pa.gov
www.dot16.pa.gov
www.dottrn34.state.pa.us
qars.penndot.gov
ESECagSANCertSyst.dot.pa.gov
pathsyst.penndot.pa.gov
qars.penndot.gov
www.idealinksyst.pa.gov
www.mpmstest.penndot.gov
path.penndot.gov
dev.aem.penndot.gov
path.penndot.gov
gis.penndot.gov
ESECagSANCertSyst.dot.pa.gov
www.sbe.penndot.pa.gov
aprassyst.penndot.gov
www.dot16.pa.gov
www.dot16.pa.gov
cisreports.penndot.gov
apras.penndot.gov
analytics.penndot.gov
ESECagSANCertProd.dot.pa.gov
ESECagSANCertProd.dot.pa.gov
www.dottrn34.state.pa.us
SMProxySANCertESECProd.dot.pa.gov
SMProxySANCertUAT.dot.pa.gov
www.ecms.penndot.gov
analytics.penndot.gov
SMProxySANCertUAT.dot.pa.gov
www.ecssyst.penndot.gov
idservicesadv.penndot.gov
a93c8e3041.nxcli.io
analytics-uat.penndot.gov
cisweb.penndot.gov
ESECagSANCertProd.dot.pa.gov
004uatcisweb.penndot.gov
www.eGov.penndot.pa.gov
ESECagSANCertSyst.dot.pa.gov
www.idealinksyst.pa.gov
sp.pwp.pa.gov
www.ecms.penndot.gov
idservicesadvsyst.penndot.gov
analytics.penndot.gov
ESECagSANCertProd.dot.pa.gov
www.dot16.pa.gov
www.bmswebservicessyst.penndot.gov
www.bmssyst.penndot.pa.gov
ppccsyst.penndot.gov
workzonecameras.penndot.gov
analytics-dev.penndot.pa.gov
www.dotdev34.state.pa.us
www.penndot.gov
sp.pwp.pa.gov
ESECagSANCertSyst.dot.pa.gov
ESECagSANCertProd.dot.pa.gov
path.penndot.pa.gov
ESECagSANCertProd.dot.pa.gov
gistest.penndot.gov
004uatbiwebmc.penndot.gov
www.ecmssyst.penndot.gov
www.eGovsyst.penndot.pa.gov
ppccsyst.penndot.gov
www.eGovsyst.penndot.pa.gov
004uatciswebmc.penndot.gov
mobilenprd.penndot.gov
gis.penndot.gov
www.dot4E.penndot.gov
ESECagSANCertSyst.dot.pa.gov
pathsyst.penndot.gov
ESECagSANCertProd.dot.pa.gov
sqldldbcluster.penndot.gov
ESECagSANCertProd.dot.pa.gov
www.sbe.penndot.pa.gov
ESECagSANCertProd.dot.pa.gov
gistest.penndot.gov
www.idealinksyst.pa.gov
004UATCISWEBMC.penndot.gov
www.mpms.penndot.gov
004UATDLDB.penndot.gov
004UATBIWEB.penndot.gov
ESECagSANCertSyst.dot.pa.gov
004BIWEBMC.PENNDOT.GOV
www.systcrashinfo.penndot.gov
ESECagSANCertProd.dot.pa.gov
qars.penndot.gov
ESECagSANCertProd.dot.pa.gov
workzonecameras.penndot.gov
ESECagSANCertSyst.dot.pa.gov
www.idealinksyst.pa.gov
www.dot2E.penndot.gov
ppcc.penndot.gov
www.dot16.pa.gov
CISREPORTS.PENNDOT.GOV
ESECagSANCertProd.dot.pa.gov
ESECagSANCertSyst.dot.pa.gov
gis.penndot.gov
www.ecssyst.penndot.gov
www.ecmssyst.penndot.gov
SMProxySANCertProd.dot.pa.gov
ESECSanCertProd128.dot.pa.gov
www.dot16.pa.gov
www.dottrn34.state.pa.us
qars.penndot.gov
ESECagSANCertSyst.dot.pa.gov
pathsyst.penndot.pa.gov
qars.penndot.gov
www.idealinksyst.pa.gov
www.mpmstest.penndot.gov
path.penndot.gov
dev.aem.penndot.gov
path.penndot.gov
gis.penndot.gov
ESECagSANCertSyst.dot.pa.gov
www.sbe.penndot.pa.gov
aprassyst.penndot.gov
www.dot16.pa.gov
www.dot16.pa.gov
cisreports.penndot.gov
apras.penndot.gov
analytics.penndot.gov
ESECagSANCertProd.dot.pa.gov
ESECagSANCertProd.dot.pa.gov
www.dottrn34.state.pa.us
SMProxySANCertESECProd.dot.pa.gov
SMProxySANCertUAT.dot.pa.gov
www.ecms.penndot.gov
analytics.penndot.gov
SMProxySANCertUAT.dot.pa.gov
www.ecssyst.penndot.gov
idservicesadv.penndot.gov
a93c8e3041.nxcli.io
analytics-uat.penndot.gov
cisweb.penndot.gov
ESECagSANCertProd.dot.pa.gov
004uatcisweb.penndot.gov
www.eGov.penndot.pa.gov
ESECagSANCertSyst.dot.pa.gov
www.idealinksyst.pa.gov
sp.pwp.pa.gov
www.ecms.penndot.gov
idservicesadvsyst.penndot.gov
analytics.penndot.gov
ESECagSANCertProd.dot.pa.gov
www.dot16.pa.gov
www.bmswebservicessyst.penndot.gov
www.bmssyst.penndot.pa.gov
ppccsyst.penndot.gov
workzonecameras.penndot.gov
analytics-dev.penndot.pa.gov
www.dotdev34.state.pa.us
www.penndot.gov
sp.pwp.pa.gov
ESECagSANCertSyst.dot.pa.gov
ESECagSANCertProd.dot.pa.gov
path.penndot.pa.gov
ESECagSANCertProd.dot.pa.gov
gistest.penndot.gov
004uatbiwebmc.penndot.gov
www.ecmssyst.penndot.gov
www.eGovsyst.penndot.pa.gov
ppccsyst.penndot.gov
www.eGovsyst.penndot.pa.gov
004uatciswebmc.penndot.gov
mobilenprd.penndot.gov
gis.penndot.gov
www.dot4E.penndot.gov
ESECagSANCertSyst.dot.pa.gov
pathsyst.penndot.gov
ESECagSANCertProd.dot.pa.gov
sqldldbcluster.penndot.gov
ESECagSANCertProd.dot.pa.gov
www.sbe.penndot.pa.gov
ESECagSANCertProd.dot.pa.gov
gistest.penndot.gov
www.idealinksyst.pa.gov
004UATCISWEBMC.penndot.gov
www.mpms.penndot.gov
004UATDLDB.penndot.gov
004UATBIWEB.penndot.gov
ESECagSANCertSyst.dot.pa.gov
004BIWEBMC.PENNDOT.GOV
www.systcrashinfo.penndot.gov
ESECagSANCertProd.dot.pa.gov
qars.penndot.gov
ESECagSANCertProd.dot.pa.gov
workzonecameras.penndot.gov
ESECagSANCertSyst.dot.pa.gov
www.idealinksyst.pa.gov
www.dot2E.penndot.gov
ppcc.penndot.gov
www.dot16.pa.gov
Certificate
The complete raw certificate details for gis.penndot.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHITCCBgmgAwIBAgIQVjYfLLjAZPLEKBz7aMywSjANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y MzExMTYxNDE2MzNaFw0yNDEyMTYxNDE2MzJaMHoxCzAJBgNVBAYTAlVTMRUwEwYD VQQIEwxQZW5uc3lsdmFuaWExEzARBgNVBAcTCkhhcnJpc2J1cmcxJTAjBgNVBAoT HENvbW1vbndlYWx0aCBvZiBQZW5uc3lsdmFuaWExGDAWBgNVBAMTD2dpcy5wZW5u ZG90LmdvdjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKgqj2CEqKpp zO1tw5FZUa4OG0dvZ5VdDU/mRp2XESy1VSHgSDJ3sliLeIS1actHT+VLgu5YbdH0 ws9SNokLk3olMocygMMchWUzMbxF5r5YqMTCq2AK6amQwpaNQ4ZMHG/pUq6uBX0X DY4zBKagt7dIwtN9Ud2TaYs+iaSz2Zeqapw2LNV2mcKt8BR8fQIR4Qda0SInNq66 j7IWyB3xssC8fzKVfXLlWUR13XzKqJs8QqRlnbHLS0HW6+iPjF9w5p0JlruZ2doi h7zIwP9h/zu1l/mjuW5QIngN19RAKm0mDpmlPpaBLM9W4+uQjsTq+6fHyzse8sk1 yNt8BgpRBBECAwEAAaOCA2AwggNcMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFDJP qVpCWLWHUyzdJqv3v1LLWj5oMB8GA1UdIwQYMBaAFIKicHTdvFM/z3vU981/p2DG Cky/MGgGCCsGAQUFBwEBBFwwWjAjBggrBgEFBQcwAYYXaHR0cDovL29jc3AuZW50 cnVzdC5uZXQwMwYIKwYBBQUHMAKGJ2h0dHA6Ly9haWEuZW50cnVzdC5uZXQvbDFr LWNoYWluMjU2LmNlcjAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLmVudHJ1 c3QubmV0L2xldmVsMWsuY3JsMIGmBgNVHREEgZ4wgZuCD2dpcy5wZW5uZG90Lmdv doISZ2lzLnBlbm5kb3QucGEuZ292ghJvbmVtYXAucGVubmRvdC5nb3aCFW9uZW1h cC5wZW5uZG90LnBhLmdvdoIWd3d3Lm9uZW1hcC5wZW5uZG90LmdvdoIXY29ubmVj dHMucGVubmRvdC5wYS5nb3aCGHd3dy5wcm9qZWN0cy5wZW5uZG90LmdvdjAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBMGA1Ud IAQMMAowCAYGZ4EMAQICMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgA/F0tP 1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAYvYfaAnAAAEAwBHMEUCIAoJ iYlJoAblt1Ogqw7H1ULBaQpZsIAwXfCjknodLwgbAiEAwFsFyz6EZHtN61v8AbMs sMbkPNimI8r/cZdSfjSkJCQAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlG cR+1mwAAAYvYfaBQAAAEAwBHMEUCIQCm4GdkJ3oVBlbNLg23CUgbzDe59jf214ON n0dCUK7hdQIgNV2D4Uk3hp6PsBmrnop0rWqI9Vrr91MnPZOt3MOw4FQAdgDatr9r P7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYvYfaBIAAAEAwBHMEUCIQCL 1MTjI2ijCbLd3R38VCt6g28pIneD+vFTPZ9750aTBAIgVOPUTb1KV9UxnPpFfX2/ 0vNpZpJIW9T5iL2TArcdJmgwDQYJKoZIhvcNAQELBQADggEBADX9HJE//NZm2Ltj KYqP6it9EV73X1MB71e/0+qLCWwJC1L+/amKsHsb2pPTQ9quU4TjY/CgvphgDw3E 7OQ3ndNB/jzplxhh/95ub1a5VxwzwR24Jaigyt0ak6xg2BLb5UVurInnh/heXHqU Q/8quNy0jkBbl9BUS7TMEGtVjB7mec85cfAwx2zaBrKMd3tB9DYg28ILKgHuPGb7 QWeXtw48oWkT3xnpSgenkpWeok7TlBRkTr4hjwruqEWEwJt73lZM+R3dpPJ4mCJD MVP2Y9Kii/gIWQCfWjga3BbazRnAFxKliOfelKNnwDVuYKCDR2zxIyI7HMXLy53g iTjAE5s= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCqPYISoqmnM7W3DkVlR rg4bR29nlV0NT+ZGnZcRLLVVIeBIMneyWIt4hLVpy0dP5UuC7lht0fTCz1I2iQuT eiUyhzKAwxyFZTMxvEXmvlioxMKrYArpqZDClo1Dhkwcb+lSrq4FfRcNjjMEpqC3 t0jC031R3ZNpiz6JpLPZl6pqnDYs1XaZwq3wFHx9AhHhB1rRIic2rrqPshbIHfGy wLx/MpV9cuVZRHXdfMqomzxCpGWdsctLQdbr6I+MX3DmnQmWu5nZ2iKHvMjA/2H/ O7WX+aO5blAieA3X1EAqbSYOmaU+loEsz1bj65COxOr7p8fLOx7yyTXI23wGClEE EQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 114594623965778341870470484012370276426 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-16 14:16:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-16 14:16:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Harrisburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Commonwealth of Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gis.penndot.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21229022385291239062873916703683878358192757256297865424998313914756217537438217760806451045261673887478902848832913756906143406541248942784903561921486837973720099793654190708556477839547717698243248994192785404988782536211399265235238739815925306364620950470234822383288741085999299699342542705565201236603373211690370550776031500093813994017337662148075864246829164884517386974533294983033693778657279716030125865036521465094362344986534964362330704282720650008834503100706232490179232807454397126909561820684746867168782539195339472693832835292709491665212111952738838251743690300644868499129950990342549478114321 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 324fa95a4258b587532cdd26abf7bf52cb5a3e68 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (158 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gis.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gis.penndot.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onemap.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onemap.penndot.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.onemap.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'connects.penndot.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.projects.penndot.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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