mnchoices-train.dhs.state.mn.us

- State of Minnesota -

Issued by COMODO RSA Extended Validation Secure Server CA

About this certificate

This digital certificate with serial number 88:c2:23:7b:d6:3d:5f:a2:0d:75:db:e0:c5:e0:f4:d6 was issued on by COMODO CA Limited.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

State of Minnesota

Company registration number: 1858-05-11
Organization: State of Minnesota
Organization unit: Dept of Human Services
Organization unit: Hosted by State of Minnesota
Organization unit: COMODO EV Multi-Domain SSL
Address: 658 Cedar St
Postal code: 55155
State / Province: MN
Locality: Saint Paul
Country: US

COMODO CA Limited

Organization: COMODO CA Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): 88:c2:23:7b:d6:3d:5f:a2:0d:75:db:e0:c5:e0:f4:d6
Serial Number (int): 181783032713008420528753711342906569942
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: e3:ef:00:3c:7c:d2:4d:e3:f7:91:8f:d5:71:97:a9:d5:80:0b:48:22
AuthorityKeyId: 39:da:ff:ca:28:14:8a:a8:74:13:08:b9:e4:0e:a9:d2:fa:7e:9d:69

Fingerprint (sha1): 84:eb:93:8a:56:fb:e4:22:72:e8:ae:ec:ba:cc:f2:ce:6f:d8:36:e9
Fingerprint (sha256): 02:a2:85:b1:af:ee:de:86:54:16:62:3f:15:ed:0f:b3:ce:d2:d4:6b:48:57:e5:1a:4d:5c:df:15:5f:5a:8f:ba

Issuing Certificate URL: http://crt.comodoca.com/COMODORSAExtendedValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.comodoca.com
CRL Distribution Point: http://crl.comodoca.com/COMODORSAExtendedValidationSecureServerCA.crl

Check the revocation status for certificate mnchoices-train.dhs.state.mn.us

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for mnchoices-train.dhs.state.mn.us

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

mnchoices-train.dhs.state.mn.us
mnchoices-train.dhs.mn.gov

Other certificates including the domain name state.mn.us

(limited to 100 certificates)
fyidocs.web.health.state.mn.us
maps1.dnr.state.mn.us
edocs.dhs.state.mn.us
www.brewermiddleschool.wsisd.com
mndatarest.web.health.state.mn.us
drainage.pca.state.mn.us
ww2.commissions.leg.state.mn.us
support.mdor.state.mn.us
autodiscover.state.mn.us
mnhumanservices-test.dhs.state.mn.us
www.westkm.pubdef.state.mn.us
svn.nonprod.health.state.mn.us
guestvdi.dps.state.mn.us
arclookup.dhs.int.state.mn.us
education.mn.gov
printprint.x.state.mn.us
mnwellindex.web.health.state.mn.us
nslp.web.health.state.mn.us
podprecheck.health.state.mn.us
ccbhcreporting.dhs.state.mn.us
evve.health.state.mn.us
archerdev.int.state.mn.us
merc.health.state.mn.us
www.dlan.dps.state.mn.us
trng.mec2.dhs.state.mn.us
mhis.dhs.mn.gov
lic-dev.dnr.state.mn.us
mnchoices-train.dhs.state.mn.us
tmon.dhs.int.state.mn.us
mnch-supplan-train.dhs.state.mn.us
webportal3.dot.state.mn.us
elm.systems.state.mn.us
www2.mainserver.state.mn.us
cannabis.web.health.state.mn.us
support.elm.swift.state.mn.us
dutchelm.dps.state.mn.us
www.cty.dhs.state.mn.us
mnlars-iam-prod-app-v201.dps.int.state.mn.us
mars.doc.state.mn.us
www.msrs.state.mn.us
aurora.msrs.state.mn.us
ftp.sos.state.mn.us
www.cfbreport.state.mn.us
coms.stage.doc.state.mn.us
swa.web.health.state.mn.us
rpo.dev.dhs.int.state.mn.us
passwordreset.mnit.state.mn.us
leadrenovator.web.health.state.mn.us
files.dnr.state.mn.us
www.ecmportal.pubdef.state.mn.us
revvpnsdp.mdor.state.mn.us
wm.courts.state.mn.us
www.gideon2test.pubdef.state.mn.us
www.dashboardtest.pubdef.state.mn.us
www.yorkprepsc.org
webportal2.dot.state.mn.us
pfas400.dhs.int.state.mn.us
www.ble.mn.gov
arsdev.itg.state.mn.us
www.lawyerregulation.mn.gov
mnsurebda2node09.hix.int.state.mn.us
www.mcla.state.mn.us
mnchoices-train.dhs.state.mn.us
g45ppwcsldww001.admin.state.mn.us
neien.pca.state.mn.us
ddi.itg.state.mn.us
g46pilvcmseo104.voice.state.mn.us
asthmahealthyhomes.web.health.state.mn.us
commissionsandappointments.sos.state.mn.us
samtest.dhs.state.mn.us
dps.mn.gov
dev.sema4.systems.state.mn.us
www.selfloan.state.mn.us
analytics.education.state.mn.us
caseworks.x.state.mn.us
*.devapi.hlb.state.mn.us
g46pilvcmsco104.voice.state.mn.us
image.enx.web.health.state.mn.us
www.ag.state.mn.us
www.fafsaweb.state.mn.us
services.swift.state.mn.us
admin.bakerschools.org
*.sos.state.mn.us
forums.doc.state.mn.us
registrationportal.dot.state.mn.us
fimpwreset.ead.state.mn.us
bcacrimestats.x.state.mn.us
iibvhn.mneiam.int.state.mn.us
remote.oah.state.mn.us
www.ohe.state.mn.us
survey.dnr.state.mn.us
edocs.dhs.state.mn.us
west.commerce.state.mn.us
mdaonbaseapp.mda.state.mn.us
mdatwa2.state.mn.us
licensinglookup.dhs.state.mn.us
ocm.web.health.state.mn.us
support.mdor.state.mn.us
mcla.es.state.mn.us
hchhomes.web.health.state.mn.us

Certificate

The complete raw certificate details for mnchoices-train.dhs.state.mn.us in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGgzCCBWugAwIBAgIRAIjCI3vWPV+iDXXb4MXg9NYwDQYJKoZIhvcNAQELBQAw
gZIxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO
BgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMTgwNgYD
VQQDEy9DT01PRE8gUlNBIEV4dGVuZGVkIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZl
ciBDQTAeFw0xODA4MDMwMDAwMDBaFw0yMDA4MDIyMzU5NTlaMIIBUDETMBEGA1UE
BRMKMTg1OC0wNS0xMTETMBEGCysGAQQBgjc8AgEDEwJVUzEaMBgGA1UEDxMRR292
ZXJubWVudCBFbnRpdHkxCzAJBgNVBAYTAlVTMQ4wDAYDVQQREwU1NTE1NTELMAkG
A1UECBMCTU4xEzARBgNVBAcTClNhaW50IFBhdWwxFTATBgNVBAkTDDY1OCBDZWRh
ciBTdDEbMBkGA1UEChMSU3RhdGUgb2YgTWlubmVzb3RhMR8wHQYDVQQLExZEZXB0
IG9mIEh1bWFuIFNlcnZpY2VzMSUwIwYDVQQLExxIb3N0ZWQgYnkgU3RhdGUgb2Yg
TWlubmVzb3RhMSMwIQYDVQQLExpDT01PRE8gRVYgTXVsdGktRG9tYWluIFNTTDEo
MCYGA1UEAxMfbW5jaG9pY2VzLXRyYWluLmRocy5zdGF0ZS5tbi51czCCASIwDQYJ
KoZIhvcNAQEBBQADggEPADCCAQoCggEBAMD7j1DdgdfDTi+AdoyQ9G15vCMfzF6C
WIDUxT/U3Z0OQ8sdZKnzU5u00Ez4QEnhztpBEj4ftaK2zF9wKLs0nVCQn7rYzN0I
8WOnE1qV+lgqxLu+Nsh/8IV6rr3iHuHgk8vfo7QgiowsGfadWqHbkvkZIjGy+uSx
96jy+L7kTawa3oc9ZpJ2Zxl/d/XIcfM7gxbBeKyjrUnGtyquKr04CW2awMFsnzes
oeoeGVZrIx57OkfvjBf6X4mj0YEkWY0lIuZsyEY1YNrNrzK7PaFQfaqYjCpqmBpt
mBXvwgq8B9Yntg0c7odSor7sZd4aS47nHXNu0YRGQYk0VCYRNR/Q9gkCAwEAAaOC
AhEwggINMB8GA1UdIwQYMBaAFDna/8ooFIqodBMIueQOqdL6fp1pMB0GA1UdDgQW
BBTj7wA8fNJN4/eRj9Vxl6nVgAtIIjAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/
BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwTwYDVR0gBEgwRjA7
BgwrBgEEAbIxAQIBBQEwKzApBggrBgEFBQcCARYdaHR0cHM6Ly9zZWN1cmUuY29t
b2RvLmNvbS9DUFMwBwYFZ4EMAQEwVgYDVR0fBE8wTTBLoEmgR4ZFaHR0cDovL2Ny
bC5jb21vZG9jYS5jb20vQ09NT0RPUlNBRXh0ZW5kZWRWYWxpZGF0aW9uU2VjdXJl
U2VydmVyQ0EuY3JsMIGHBggrBgEFBQcBAQR7MHkwUQYIKwYBBQUHMAKGRWh0dHA6
Ly9jcnQuY29tb2RvY2EuY29tL0NPTU9ET1JTQUV4dGVuZGVkVmFsaWRhdGlvblNl
Y3VyZVNlcnZlckNBLmNydDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuY29tb2Rv
Y2EuY29tMBMGCisGAQQB1nkCBAMBAf8EAgUAMEYGA1UdEQQ/MD2CH21uY2hvaWNl
cy10cmFpbi5kaHMuc3RhdGUubW4udXOCGm1uY2hvaWNlcy10cmFpbi5kaHMubW4u
Z292MA0GCSqGSIb3DQEBCwUAA4IBAQCLEBHfG1GIDeerAkgOxDlkUNaKMWxPT96B
IcP9fPlaqIPSquepmnsVXZ8VBG60Jtmzja3/PfFQqH1SpkReJvWGn1COPCW06V89
teIicRpa4QCiJ0dDVM6C2wZl3Em1LcYFSbdmzYZ2VkKAy5DZ/+dzxDo+pOE0YrtY
5bd7bcZ70a3+0kM6X5ZaOrlT5Pho81G15gUkeK+K9bdZXVlSFvlIqrvj+6jsqmQL
1LB1IUfSAEgBpNS/HNOyiLc6Ic/lqxvUSSnOicis6vEQ7SPOT3wa+ebYn8Gww1C5
Y3AHi3pme3pbAOTdqWM0IjdovRr6qUdMV+2m/YzeTtyRAqxNB22F
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPuPUN2B18NOL4B2jJD0
bXm8Ix/MXoJYgNTFP9TdnQ5Dyx1kqfNTm7TQTPhASeHO2kESPh+1orbMX3AouzSd
UJCfutjM3QjxY6cTWpX6WCrEu742yH/whXquveIe4eCTy9+jtCCKjCwZ9p1aoduS
+RkiMbL65LH3qPL4vuRNrBrehz1mknZnGX939chx8zuDFsF4rKOtSca3Kq4qvTgJ
bZrAwWyfN6yh6h4ZVmsjHns6R++MF/pfiaPRgSRZjSUi5mzIRjVg2s2vMrs9oVB9
qpiMKmqYGm2YFe/CCrwH1ie2DRzuh1Kivuxl3hpLjucdc27RhEZBiTRUJhE1H9D2
CQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 181783032713008420528753711342906569942
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO RSA Extended Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-03 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-02 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1858-05-11'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '55155'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MN'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Saint Paul'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '658 Cedar St'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'State of Minnesota'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Dept of Human Services'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosted by State of Minnesota'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO EV Multi-Domain SSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mnchoices-train.dhs.state.mn.us'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24361803327861556706803172500677997310998946686429475714825020846200337030021458293731816473897423949116326422364739469632739317842134794190065050537334710898368066638238364093619013569909612873350404543409533204597611920595459936683892015528917109080118058380001456884966414596975986549588455472661979594320273925236506115402003584761656607069049005584618207858118828270908564829214955452415903285334917939162181127776669991146496638977500943544900211416047622603696142367855714006924603929905041409038592706392595135296445497514969322992058957801222132328152521371470520273444480186888947612975843667236212882601481
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 39daffca28148aa8741308b9e40ea9d2fa7e9d69
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e3ef003c7cd24de3f7918fd57197a9d5800b4822
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.5.1 (Comodo EV policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODORSAExtendedValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODORSAExtendedValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (63 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mnchoices-train.dhs.state.mn.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mnchoices-train.dhs.mn.gov'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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