data.transportation.gov
Issued by AlphaSSL CA - SHA256 - G2
About this certificate
This digital certificate with serial number 27:66:48:68:7c:c8:2d:68:8d:37:df:55 was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=data.transportation.gov,OU=Domain Control Validated,C=US
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 27:66:48:68:7c:c8:2d:68:8d:37:df:55Serial Number (int): 12193567754472786719449538389
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 8e:5d:21:6f:a9:3e:4f:db:6c:36:3d:48:b2:78:26:ec:85:e6:90:ce
AuthorityKeyId: f5:cd:d5:3c:08:50:f9:6a:4f:3a:b7:97:da:56:83:e6:69:d2:68:f7
Fingerprint (sha1): 71:cb:0d:82:1f:cc:d0:30:7b:54:91:21:0a:16:16:eb:29:10:3d:40
Fingerprint (sha256): 02:a7:28:86:1b:0b:43:aa:19:8c:e0:96:3f:30:08:b3:54:ef:2b:ff:9f:d6:b3:9d:2c:48:dd:36:40:91:57:37
Issuing Certificate URL: http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsalphasha2g2CRL Distribution Point: http://crl2.alphassl.com/gs/gsalphasha2g2.crl
Check the revocation status for certificate data.transportation.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for data.transportation.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
data.transportation.gov
Other certificates including the domain name transportation.gov
(limited to 100 certificates)
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
www.dot.gov
transportation.gov
www.dot.gov
datahub.transportation.gov
www.dot.gov
datahub.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
transportation.gov
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
transportation.gov
www.dot.gov
datahub.transportation.gov
datahub.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
datahub.transportation.gov
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
datahub.transportation.gov
transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
data.transportation.gov
datahub.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
transportation.gov
data.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
www.dot.gov
transportation.gov
www.dot.gov
datahub.transportation.gov
www.dot.gov
datahub.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
transportation.gov
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
transportation.gov
www.dot.gov
datahub.transportation.gov
datahub.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
datahub.transportation.gov
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
datahub.transportation.gov
transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
data.transportation.gov
datahub.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
transportation.gov
data.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
www.dot.gov
data.transportation.gov
www.dot.gov
www.dot.gov
www.dot.gov
Certificate
The complete raw certificate details for data.transportation.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGbjCCBVagAwIBAgIMJ2ZIaHzILWiNN99VMA0GCSqGSIb3DQEBCwUAMEwxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSIwIAYDVQQDExlB bHBoYVNTTCBDQSAtIFNIQTI1NiAtIEcyMB4XDTE5MDgxOTIzMDc1MVoXDTIwMTEx NzIzMDI0OFowUjELMAkGA1UEBhMCVVMxITAfBgNVBAsTGERvbWFpbiBDb250cm9s IFZhbGlkYXRlZDEgMB4GA1UEAxMXZGF0YS50cmFuc3BvcnRhdGlvbi5nb3YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0JSkn03Eh/euU5gKs0tKzIEaf /ZuHasvmzviBtUV+TQ5iIkDPdwOYLp1hB6dZGQYEkrjbpfpnwDsc58XK27UKgzGk BOH3zPmg3+w3rgPJF7YWVCVKpTiitSw+Vht0Tx/jBcCJPRijN4pyxFccVnCTzMev 1Xz1jX+WRd4sFu6fWjFesSuDMBYm+NB+tVnkC086EXVi7Wp3ECW5atlBuRjb/pqC po2bcy2oXSj6U0O1ILEg0LzNjolgh2GNQNre2Ll/adevOvjfW+2AXyiT49jRGtFl jqei7oyT8OSl1BQNMyYl4yApjOIvowVwPKx0oUhP2+bnvEMeW77w1eboYi1DAgMB AAGjggNIMIIDRDAOBgNVHQ8BAf8EBAMCBaAwgYkGCCsGAQUFBwEBBH0wezBCBggr BgEFBQcwAoY2aHR0cDovL3NlY3VyZTIuYWxwaGFzc2wuY29tL2NhY2VydC9nc2Fs cGhhc2hhMmcycjEuY3J0MDUGCCsGAQUFBzABhilodHRwOi8vb2NzcDIuZ2xvYmFs c2lnbi5jb20vZ3NhbHBoYXNoYTJnMjBXBgNVHSAEUDBOMEIGCisGAQQBoDIBCgow NDAyBggrBgEFBQcCARYmaHR0cHM6Ly93d3cuZ2xvYmFsc2lnbi5jb20vcmVwb3Np dG9yeS8wCAYGZ4EMAQIBMAkGA1UdEwQCMAAwPgYDVR0fBDcwNTAzoDGgL4YtaHR0 cDovL2NybDIuYWxwaGFzc2wuY29tL2dzL2dzYWxwaGFzaGEyZzIuY3JsMCIGA1Ud EQQbMBmCF2RhdGEudHJhbnNwb3J0YXRpb24uZ292MB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAfBgNVHSMEGDAWgBT1zdU8CFD5ak86t5faVoPmadJo9zAd BgNVHQ4EFgQUjl0hb6k+T9tsNj1Isngm7IXmkM4wggF9BgorBgEEAdZ5AgQCBIIB bQSCAWkBZwB1AMZSoOxIzrP8qxcJksQ6h0EzCegAZaJiUkAbozYqF8VlAAABbKwj C0UAAAQDAEYwRAIganjws8y5PVC1xzNs8NO+n9cQNKWv/nq1YLnicSudaHICIH6J bXWmLvXp3SbOAxuIjvWpEH/cpIW/EWum/50SmWP6AHYAb1N2rDHwMRnYmQCkURX/ dxUcEdkCwQApBo2yCJo32RMAAAFsrCMIrgAABAMARzBFAiB1Rt1TPgIYzLXRLBHU wcrbWpQKjip4IpJbdz/NOj/NiwIhAJuid03Fwy67t7H/VMJoNsVC3xoh3sBxdaDY MMpVA86tAHYAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFsrCMI ZAAABAMARzBFAiByTKeUCP0nkK1KK9gAhTGL1WetFZThJf8oHUbPI4UiFwIhALup fOT2a+rkVYyYcoS2er+R93zTHfDOqtTIm6EbXlEtMA0GCSqGSIb3DQEBCwUAA4IB AQBdgsw+ExODT45mwjVhniEOo2lcc3gEn/KXCLtiolpQ26nRtK3TnT8aKQZxXlw9 SXd/ZR5wLG6KhUTqAlhAqZv6XtiUKTQMfL+LSyHQ01Z3JDbydKO5n5Z6NATTDN2N kvQXp+PBbaPbiT/SdopZavHm6yUpn+eXyyC46XUjhNkMZ+rgfb138WRGeiDjmyNu zoPDuejDPdYE7Ba+gqNrOptnD34xLiGs3am0uw/e6x3LKT4vGx4v4H1V3U8Xwsq+ H0Xjoaa8hHN7+af9yJcK4xAcu5deXJ/wsxSl9n8JktNFODYEVa6OcaZjyyF8LgQ3 5Egz4E+Mm1CSmYsNbI0A4Nn2 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCUpJ9NxIf3rlOYCrNLS syBGn/2bh2rL5s74gbVFfk0OYiJAz3cDmC6dYQenWRkGBJK426X6Z8A7HOfFytu1 CoMxpATh98z5oN/sN64DyRe2FlQlSqU4orUsPlYbdE8f4wXAiT0YozeKcsRXHFZw k8zHr9V89Y1/lkXeLBbun1oxXrErgzAWJvjQfrVZ5AtPOhF1Yu1qdxAluWrZQbkY 2/6agqaNm3MtqF0o+lNDtSCxINC8zY6JYIdhjUDa3ti5f2nXrzr431vtgF8ok+PY 0RrRZY6nou6Mk/DkpdQUDTMmJeMgKYziL6MFcDysdKFIT9vm57xDHlu+8NXm6GIt QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12193567754472786719449538389 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AlphaSSL CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-19 23:07:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-17 23:02:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'data.transportation.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22741219549561443681431271990055130889789069013185413857372996966046249167374994421253323105323549236748146680977218540749679461926549686742358499364514704377992210426229464659582386080182404914170040766663183487168630394384695236489373356896590065016534184591853941652737003142537740799860878946617121386227016483575681935084901007154171175589506061597676840099451126669720098349701429969052396270561116319665780614044604325141386078086955894904787314511812730326389824869431566807229444674308376448727484026396328695694182712017425662767422483526300610685333466892894080592354452930822459748995970248568631579520323 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (125 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsalphasha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10.10 (Domain Validation Certificates Policy - AlphaSSL) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl2.alphassl.com/gs/gsalphasha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.transportation.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f5cdd53c0850f96a4f3ab797da5683e669d268f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8e5d216fa93e4fdb6c363d48b27826ec85e690ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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