online.ogs.ny.gov
- New York State Office of General Services -
Issued by Entrust Certification Authority - L1E
About this certificate
This digital certificate with serial number 4c:20:c4:57 was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Certificates typically do not have multiple attributes in a single RDN (subject). This may be an error. (lint.AWSLabs certlint)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
New York State Office of General Services
Company registration number:
01011960
Organization: New York State Office of General Services
Organization: New York State Office of General Services
State / Province:
New York
Locality: Albany
Country: US
Locality: Albany
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 4c:20:c4:57Serial Number (int): 1277215831
Serial Number lenght: 31 bits, 4 octets
SubjectKeyId: 55:ea:25:9d:e0:29:77:1b:4a:cb:57:7f:32:98:f7:a9:99:28:85:a3
AuthorityKeyId: 5b:41:8a:b2:c4:43:c1:bd:bf:c8:54:41:55:9d:e0:96:ad:ff:b9:a1
Fingerprint (sha1): 2f:e6:97:23:81:04:46:87:f2:45:f9:12:3b:f2:f8:d5:a2:02:84:94
Fingerprint (sha256): 02:c2:ac:8a:60:a6:16:95:71:f0:b0:0d:d9:e7:5a:4d:41:79:5c:3c:fd:b7:d4:40:c3:9b:56:5e:29:63:d7:43
Issuing Certificate URL: http://aia.entrust.net/l1e-chain.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1e.crl
Check the revocation status for certificate online.ogs.ny.gov
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for online.ogs.ny.gov
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
online.ogs.ny.gov
webmail.ogs.ny.gov
webmail.ogs.ny.gov
Other certificates including the domain name ny.gov
(limited to 100 certificates)
www.tax.ny.gov
*.justicecenter.ny.gov
5638059940904960-fe3.pantheonsite.io
mail.cityofjohnstown.ny.gov
r4a10.osc.ny.gov
*.health.ny.gov
www.ciris.ny.gov
carpepm.almonds.com
5697124062724096-fe2.pantheonsite.io
5767917874446336-fe1.pantheonsite.io
*.hcr.ny.gov
5645914630782976-fe1.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
el.nyserda.ny.gov
cjc.ny.gov
www.rev.ny.gov
5767917874446336-fe1.pantheonsite.io
5638059940904960-fe3.pantheonsite.io
*.health.ny.gov
tracs2.otda.ny.gov
ocra.omh.ny.gov
it.uahs.arizona.edu
learn.apps.loopstart.net
sni.cloudflaressl.com
int.sfs.ny.gov
recovery.dhses.ny.gov
www.tax.ny.gov
www.tax.ny.gov
5638059940904960-fe3.pantheonsite.io
Appcenter1.esd.ny.gov
5202656289095680-fe4.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
*.hcr.ny.gov
www.perb.ny.gov
*.hcr.ny.gov
*.oagtest.ag.ny.gov
qasc.oft.ny.gov
bonds.hcr.ny.gov
*.opwdd.ny.gov
*.health.ny.gov
doccs-ndid.digital-dev.dmv.ny.gov
calendar.sdzsafaripark.org
devwebcloud.health.ny.gov
www.oscar.ny.gov
www.rev.ny.gov
dev.ag.ny.gov
youthworks.ny.gov
steuben911.ny.gov
APPS.OCFS.NY.GOV
recovery.dhses.ny.gov
mhprovider.qa.omh.ny.gov
vhc.wcb.ny.gov
*.dos.ny.gov
banking-business-review.com
cdn-test.battlefields.org
5752571553644544-fe2.pantheonsite.io
WestchesterCDPS.ny.gov
*.omh.ny.gov
GardenCity.ny.gov
citeak.multidevcom.uaf.edu
qa.my.ny.gov
booking.virtualhometour.sg
portwashingtonpd.ny.gov
r5a20.osc.ny.gov
fulton.ny.gov
ertfin.sfs.ny.gov
*.criminaljustice.ny.gov
cortlandcounty.ny.gov
uihp2.labor.ny.gov
5697124062724096-fe2.pantheonsite.io
hcstgbi.osc.ny.gov
applications.labor.ny.gov
www2.dps.ny.gov
DOCCS-Submetering.BMS.ny.gov
chns120.courseresource.yale.edu
my.justicecenter.ny.gov
*.dec.ny.gov
bonds.hcr.ny.gov
*.troopers.ny.gov
5202656289095680-fe4.pantheonsite.io
vpcr-qa.justicecenter.ny.gov
data.ny.gov
ccf.ny.gov
*.ocfs.ny.gov
vhc.wcb.ny.gov
dmna.ny.gov
qa-ldap.ny.gov
pay-92qanyspows.osc.ny.gov
online.ogs.ny.gov
nystateofhealth.ny.gov
5202656289095680-fe4.pantheonsite.io
www7f.tax.ny.gov
labor.ny.gov
allegany.ny.gov
vpn3.dfs.ny.gov
RAVPN.FRG.NY.GOV
qasc.oft.ny.gov
sni.cloudflaressl.com
ihstgi.osc.ny.gov
*.budget.ny.gov
*.justicecenter.ny.gov
5638059940904960-fe3.pantheonsite.io
mail.cityofjohnstown.ny.gov
r4a10.osc.ny.gov
*.health.ny.gov
www.ciris.ny.gov
carpepm.almonds.com
5697124062724096-fe2.pantheonsite.io
5767917874446336-fe1.pantheonsite.io
*.hcr.ny.gov
5645914630782976-fe1.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
el.nyserda.ny.gov
cjc.ny.gov
www.rev.ny.gov
5767917874446336-fe1.pantheonsite.io
5638059940904960-fe3.pantheonsite.io
*.health.ny.gov
tracs2.otda.ny.gov
ocra.omh.ny.gov
it.uahs.arizona.edu
learn.apps.loopstart.net
sni.cloudflaressl.com
int.sfs.ny.gov
recovery.dhses.ny.gov
www.tax.ny.gov
www.tax.ny.gov
5638059940904960-fe3.pantheonsite.io
Appcenter1.esd.ny.gov
5202656289095680-fe4.pantheonsite.io
5752571553644544-fe2.pantheonsite.io
*.hcr.ny.gov
www.perb.ny.gov
*.hcr.ny.gov
*.oagtest.ag.ny.gov
qasc.oft.ny.gov
bonds.hcr.ny.gov
*.opwdd.ny.gov
*.health.ny.gov
doccs-ndid.digital-dev.dmv.ny.gov
calendar.sdzsafaripark.org
devwebcloud.health.ny.gov
www.oscar.ny.gov
www.rev.ny.gov
dev.ag.ny.gov
youthworks.ny.gov
steuben911.ny.gov
APPS.OCFS.NY.GOV
recovery.dhses.ny.gov
mhprovider.qa.omh.ny.gov
vhc.wcb.ny.gov
*.dos.ny.gov
banking-business-review.com
cdn-test.battlefields.org
5752571553644544-fe2.pantheonsite.io
WestchesterCDPS.ny.gov
*.omh.ny.gov
GardenCity.ny.gov
citeak.multidevcom.uaf.edu
qa.my.ny.gov
booking.virtualhometour.sg
portwashingtonpd.ny.gov
r5a20.osc.ny.gov
fulton.ny.gov
ertfin.sfs.ny.gov
*.criminaljustice.ny.gov
cortlandcounty.ny.gov
uihp2.labor.ny.gov
5697124062724096-fe2.pantheonsite.io
hcstgbi.osc.ny.gov
applications.labor.ny.gov
www2.dps.ny.gov
DOCCS-Submetering.BMS.ny.gov
chns120.courseresource.yale.edu
my.justicecenter.ny.gov
*.dec.ny.gov
bonds.hcr.ny.gov
*.troopers.ny.gov
5202656289095680-fe4.pantheonsite.io
vpcr-qa.justicecenter.ny.gov
data.ny.gov
ccf.ny.gov
*.ocfs.ny.gov
vhc.wcb.ny.gov
dmna.ny.gov
qa-ldap.ny.gov
pay-92qanyspows.osc.ny.gov
online.ogs.ny.gov
nystateofhealth.ny.gov
5202656289095680-fe4.pantheonsite.io
www7f.tax.ny.gov
labor.ny.gov
allegany.ny.gov
vpn3.dfs.ny.gov
RAVPN.FRG.NY.GOV
qasc.oft.ny.gov
sni.cloudflaressl.com
ihstgi.osc.ny.gov
*.budget.ny.gov
Certificate
The complete raw certificate details for online.ogs.ny.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGnTCCBYWgAwIBAgIETCDEVzANBgkqhkiG9w0BAQUFADCBsTELMAkGA1UEBhMC VVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xOTA3BgNVBAsTMHd3dy5lbnRydXN0 Lm5ldC9ycGEgaXMgaW5jb3Jwb3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMW KGMpIDIwMDkgRW50cnVzdCwgSW5jLjEuMCwGA1UEAxMlRW50cnVzdCBDZXJ0aWZp Y2F0aW9uIEF1dGhvcml0eSAtIEwxRTAeFw0xMzAzMjExOTE0MDFaFw0xNTAzMjIw ODQ5NTRaMIHeMQswCQYDVQQGEwJVUzERMA8GA1UECBMITmV3IFlvcmsxDzANBgNV BAcTBkFsYmFueTETMBEGCysGAQQBgjc8AgEDEwJVUzEZMBcGCysGAQQBgjc8AgEC EwhOZXcgWW9yazEyMDAGA1UEChMpTmV3IFlvcmsgU3RhdGUgT2ZmaWNlIG9mIEdl bmVyYWwgU2VydmljZXMxGjAYBgNVBA8TEUdvdmVybm1lbnQgRW50aXR5MSswDwYD VQQFEwgwMTAxMTk2MDAYBgNVBAMTEW9ubGluZS5vZ3MubnkuZ292MIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqUIETr2hmxQZTupl8MxA4dhOK7NAHV5E lR4hXFSxmgCMvTZ3m3X5K3h7Ye7MvwhhLJg5ZQbH1/hEIFlaHpqoXChbqizx+vT9 9TvdShe8wqZ7WFPT8RNIZWQZGSImtiVG5Qh4w2ZavEHRNyT346+jq4LJdLxnwskX r4jGrz9IjJVJisWuWnr+y7Q1qTvQuPj16FXSRPjSs+2kiMd+U1JW0ZL0T7hL45Lq DbJ+z7UiOh7eAAJxNb0FEnOeLHg7u7VSuvVSC6tbkciqbPyfC0uDK/FH243YyNSo vHjsaWAsZU8DfU8GYEp8olpyZIxnQ7Ou6pFxZsSfwYO2Sm+NSiFl/rJ3L79dBhks 663lvh82YR7F5eeTbkTgmjg26lv/sTE240Uds0hBcd37vQYOPMI1sMp8cGLRN86l 1ayZV+HLbyHrzpBOWvTvijmranpggtjIwHD+4ZwKuJDzXNYkxfZjal5YeYX1Wnvt WaFJkXFXBCR+L41qp+jq8pM294maHLR+GNfoIJI/44TqN8McwuIERMjAec0NRlRV E1CBtnjab3sDSrduEaDiz037Fwvd+wdrSXdwDMWfxmvp57ib8e/K3JF5n8VTdEtt r3213qnLxyP3WJOMaTHCBJ+5zM17moZyEk6DBE8652t9eJTxrvCeiYQ9V6Kzw2bo zLbo0fO6WCkCAwEAAaOCAYwwggGIMAsGA1UdDwQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwZQYIKwYBBQUHAQEEWTBXMCMGCCsGAQUFBzABhhdo dHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAwBggrBgEFBQcwAoYkaHR0cDovL2FpYS5l bnRydXN0Lm5ldC9sMWUtY2hhaW4uY2VyMDMGA1UdHwQsMCowKKAmoCSGImh0dHA6 Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxZS5jcmwwQQYDVR0gBDowODA2BgpghkgB hvpsCgECMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly93d3cuZW50cnVzdC5uZXQvcnBh MDAGA1UdEQQpMCeCEW9ubGluZS5vZ3MubnkuZ292ghJ3ZWJtYWlsLm9ncy5ueS5n b3YwHwYDVR0jBBgwFoAUW0GKssRDwb2/yFRBVZ3glq3/uaEwHQYDVR0OBBYEFFXq JZ3gKXcbSstXfzKY96mZKIWjMAkGA1UdEwQCMAAwDQYJKoZIhvcNAQEFBQADggEB AGs312/aFNGBFNM4sTpKBezSYJq0BETwR4jDNPr582jR0JTKl3hpQEo/kmE1HWO2 ioUxULtXP37NZdpWqNVV5TqcBUl8L5HxOjs6a82EAMrAIGWDTnyqiJB78Mi5JTGE yS8wzfB8gYvPtL6ARG7aA6pEGbG3p7SYwVFtAsIsy7Jde1KtKga4jJrALTLslNb9 wNdxS2/5bUH0n6kWqJvb3kug52gretA3Q35pNAx1Nvqwz6ll9ngwrSxVOJeJEy7v w4ub2IrgT3hHUCBFHuwzW0fE1v7kOu4m6Ts1brtZoTamqc5dw9m6ts9NQUBxNAmx sS1PQYo5GwhQIxU/Zst32vo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqUIETr2hmxQZTupl8MxA 4dhOK7NAHV5ElR4hXFSxmgCMvTZ3m3X5K3h7Ye7MvwhhLJg5ZQbH1/hEIFlaHpqo XChbqizx+vT99TvdShe8wqZ7WFPT8RNIZWQZGSImtiVG5Qh4w2ZavEHRNyT346+j q4LJdLxnwskXr4jGrz9IjJVJisWuWnr+y7Q1qTvQuPj16FXSRPjSs+2kiMd+U1JW 0ZL0T7hL45LqDbJ+z7UiOh7eAAJxNb0FEnOeLHg7u7VSuvVSC6tbkciqbPyfC0uD K/FH243YyNSovHjsaWAsZU8DfU8GYEp8olpyZIxnQ7Ou6pFxZsSfwYO2Sm+NSiFl /rJ3L79dBhks663lvh82YR7F5eeTbkTgmjg26lv/sTE240Uds0hBcd37vQYOPMI1 sMp8cGLRN86l1ayZV+HLbyHrzpBOWvTvijmranpggtjIwHD+4ZwKuJDzXNYkxfZj al5YeYX1WnvtWaFJkXFXBCR+L41qp+jq8pM294maHLR+GNfoIJI/44TqN8McwuIE RMjAec0NRlRVE1CBtnjab3sDSrduEaDiz037Fwvd+wdrSXdwDMWfxmvp57ib8e/K 3JF5n8VTdEttr3213qnLxyP3WJOMaTHCBJ+5zM17moZyEk6DBE8652t9eJTxrvCe iYQ9V6Kzw2bozLbo0fO6WCkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1277215831 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.entrust.net/rpa is incorporated by reference' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2009 Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1E' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-03-21 19:14:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-03-22 08:49:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Albany' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York State Office of General Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '01011960' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'online.ogs.ny.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 690511898880452729847133142209977035129169428520177944407224860738497117815987537493185560226990926543607073900804971532609908466152549222953550344741902040391913608425223402530478353025536120344680999368882195863028893004199207203568022329013375546687222589582079151930472516762551187176739086119354767601763741502912596424698268119088956499534976792647848503467219282301377690528613932662040931722162580630011362929176576487847414892396690818491055076380011511771929261862473668821068565969277464757714567032894877290671935878771429061383104019566901370411677926126446046427252265755313134546245246804390224883246518939307767839715561395228763529740649250638939318186959999797490112628387562749252946656783903549145482656932191882392499763968299799406929131735984479805537898381470551659682878774950655985402442497493456065973125245780878095317267513479218256430888817479926774802456340544962005948242626503284194979378471985685359455886809621042458100057220231184965616234329966195702101940490629319163269449900167751383947836373912240461801215312018334398327777154299899233341895172119067456319420049326548605690208994901345536505603091111720280954112856415132798246391979394849515203758880323387706942703256519903352970895054889 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (89 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1e-chain.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1e.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.2 (Entrust EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (41 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'online.ogs.ny.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.ogs.ny.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5b418ab2c443c1bdbfc85441559de096adffb9a1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 55ea259de029771b4acb577f3298f7a9992885a3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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