NDACAN.ACF.HHS.GOV
- Administration for Children and Families -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 64:44:42:62:9f:53:b2:59:43:e7:26:c7:89:b3:31:ad was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Administration for Children and Families
Organization:
Administration for Children and Families
State / Province:
District of Columbia
Locality: Washington
Country: US
Locality: Washington
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 64:44:42:62:9f:53:b2:59:43:e7:26:c7:89:b3:31:adSerial Number (int): 133277222217575022609782820128664269229
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 75:77:6a:20:9e:23:99:be:e0:9b:0c:c4:15:4e:0e:da:ed:ad:3f:79
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): d5:3b:88:e2:5f:d0:1b:c6:c3:df:4c:16:41:67:88:86:5c:d9:76:ab
Fingerprint (sha256): 02:bd:28:ec:7a:1e:12:28:a9:3a:81:90:09:23:d8:cf:dc:40:b6:4f:0e:1e:94:54:f0:1b:19:96:e5:7f:b2:64
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate NDACAN.ACF.HHS.GOV
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for NDACAN.ACF.HHS.GOV
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
NDACAN.ACF.HHS.GOV
www.ndacan.acf.hhs.gov
www.ndacan.acf.hhs.gov
Other certificates including the domain name HHS.GOV
(limited to 100 certificates)
Certificate
The complete raw certificate details for NDACAN.ACF.HHS.GOV in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG+DCCBeCgAwIBAgIQZERCYp9TsllD5ybHibMxrTANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y MzAyMTcyMDA0MTJaFw0yNDAyMjgyMDA0MTJaMIGRMQswCQYDVQQGEwJVUzEdMBsG A1UECBMURGlzdHJpY3Qgb2YgQ29sdW1iaWExEzARBgNVBAcTCldhc2hpbmd0b24x MTAvBgNVBAoTKEFkbWluaXN0cmF0aW9uIGZvciBDaGlsZHJlbiBhbmQgRmFtaWxp ZXMxGzAZBgNVBAMTEk5EQUNBTi5BQ0YuSEhTLkdPVjCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAL0kL22uI9x+uKSwTe7oLimLnL/B94VRNkEyyYW2rWRe 7WO84BT+5+H3bn7EMb3HNW++rBQOEm2hIsNk/LovfK0tJ9LjbZIQrhxEpoitiaOM oTUDYA139YCOEkgQRNzgqgZ7TttuLxCY+/5sRsxDKRRfYi5pjmKM2keTOP8v7SX8 AS1+GG3RNsuTEZ2uDmDXkkvdS6MdhJKWmRYwCxrkrlfkeNB0fpv7Jav+CHcBIpL8 2HNjk7MY8ljY7lk2MfMBca0GeyfntPF11ZJpohSTfAi+huchgyXCiZD0ukIWbSRA 3DSrB8fyNXPh8mDCX2Tvx6T2lDVUQJpYSAQmZObVEW0CAwEAAaOCAx8wggMbMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFHV3aiCeI5m+4JsMxBVODtrtrT95MB8GA1Ud IwQYMBaAFIKicHTdvFM/z3vU981/p2DGCky/MGgGCCsGAQUFBwEBBFwwWjAjBggr BgEFBQcwAYYXaHR0cDovL29jc3AuZW50cnVzdC5uZXQwMwYIKwYBBQUHMAKGJ2h0 dHA6Ly9haWEuZW50cnVzdC5uZXQvbDFrLWNoYWluMjU2LmNlcjAzBgNVHR8ELDAq MCigJqAkhiJodHRwOi8vY3JsLmVudHJ1c3QubmV0L2xldmVsMWsuY3JsMDUGA1Ud EQQuMCyCEk5EQUNBTi5BQ0YuSEhTLkdPVoIWd3d3Lm5kYWNhbi5hY2YuaGhzLmdv djAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwTAYDVR0gBEUw QzA3BgpghkgBhvpsCgEFMCkwJwYIKwYBBQUHAgEWG2h0dHBzOi8vd3d3LmVudHJ1 c3QubmV0L3JwYTAIBgZngQwBAgIwggGABgorBgEEAdZ5AgQCBIIBcASCAWwBagB3 AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABhmD6J/MAAAQDAEgw RgIhAOeGkFrsZyzasICU24oBDUZq9yywZl+W0FiAqx73neymAiEA5nA5IcWKyPpq RQCxrF8UMbtIlfqVSURqWxbHMqPNpcIAdgBz2Z6JG0yWeKAgfUed5rLGHNBRXnEZ KoxrgBB6wXdytQAAAYZg+ighAAAEAwBHMEUCICNpxqPo+Ta+BB5O5cLfDz5QXgAM RbJ1+NR858JfNHAvAiEAyGGMlvePf6JbAfDotstJfbxuRKlG3bobuNvUSK66rscA dwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYZg+ikoAAAEAwBI MEYCIQCN0OyY82GlQuzoVqN5N71ny9sZ0YDCEnAyn0Fnw/irdQIhAPXkqaClalR1 3UdAsnt6GmNxIcEMH7+mD+q9KLBbTi0ZMA0GCSqGSIb3DQEBCwUAA4IBAQC0vp2p mfbxFpYj6pfLdNygfu+vgTWpOmcb/eaqP6okluDoK35X8XnzDAYxzd+exq3joMu8 Sf0jY+tDabWV0J4oWJl7PMd+keASc3nwV3tJNz/k+MflfKLnUk7ZCDwgiEfRQdK/ w1Tbr/K6CEtKuFuAT1kenFMgqUdP+Xvj453TZpAME/Ki2mQ4Y3UQ0daF20Pw1YVp jjpV71C4JQzFYKk/+9TSE0DmAbgsxlYqvjAgu4+56/5s4OdxPjPiZ6E/BAz3CMp2 dsPtx6NhnJzIj6g625w2EGwE3JKE4g9g3C9HwJXjNQnLs6AKRRGV28+LpYar94cl ob9048jh+LAIZuOZ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSQvba4j3H64pLBN7ugu KYucv8H3hVE2QTLJhbatZF7tY7zgFP7n4fdufsQxvcc1b76sFA4SbaEiw2T8ui98 rS0n0uNtkhCuHESmiK2Jo4yhNQNgDXf1gI4SSBBE3OCqBntO224vEJj7/mxGzEMp FF9iLmmOYozaR5M4/y/tJfwBLX4YbdE2y5MRna4OYNeSS91Lox2EkpaZFjALGuSu V+R40HR+m/slq/4IdwEikvzYc2OTsxjyWNjuWTYx8wFxrQZ7J+e08XXVkmmiFJN8 CL6G5yGDJcKJkPS6QhZtJEDcNKsHx/I1c+HyYMJfZO/HpPaUNVRAmlhIBCZk5tUR bQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 133277222217575022609782820128664269229 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-17 20:04:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-28 20:04:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Administration for Children and Families' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NDACAN.ACF.HHS.GOV' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23876883258950071672148549467749844099359290834992526565443991116780685288261416220932781093988310019146112849938205799272546862206299850691280471095189468130345900192399553629637430947828701921727240853674443263342427279860290770174903073675906423081523076610586361362512636475421788877320830203250605135251998749444493463037179011072473864316176649176674369897766370505728238380172460889637392813933223820273617425279648389475892608700133820628115615866666945031664726239138461899188810388186504467575832795147289851090443970582616561024691458370594028510580144766720526643626778283997015862593640384148724457476461 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 75776a209e2399bee09b0cc4154e0edaedad3f79 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'NDACAN.ACF.HHS.GOV' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ndacan.acf.hhs.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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