app1.massdot.state.ma.us
- Commonwealth Of Massachusetts -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0b:02:b7:40:ab:37:75:d5:03:ae:c0:e6:8e:f6:e2:af was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Commonwealth Of Massachusetts
Organization:
Commonwealth Of Massachusetts
Organization unit: Massachusetts Department Of Transportation
Organization unit: Massachusetts Department Of Transportation
State / Province:
Massachusetts
Locality: Boston
Country: US
Locality: Boston
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:02:b7:40:ab:37:75:d5:03:ae:c0:e6:8e:f6:e2:afSerial Number (int): 14635609351899997471633283319246283439
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d1:17:e4:be:61:34:a4:d2:09:66:b9:1e:0a:cd:19:ff:7e:dd:b7:1f
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): dd:eb:42:19:ee:b0:cb:65:1e:c7:ef:fc:00:37:87:db:81:6a:44:e4
Fingerprint (sha256): 02:df:22:5a:bb:6e:3e:c9:42:d5:89:32:6e:e3:7b:c9:aa:5f:2b:59:a0:35:35:40:bf:db:1a:0c:0c:fc:50:61
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate app1.massdot.state.ma.us
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for app1.massdot.state.ma.us
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
app1.massdot.state.ma.us
Other certificates including the domain name state.ma.us
(limited to 100 certificates)
diaboinf-prod.dia.state.ma.us
vgapps-training.hhs.state.ma.us
secure.dor.state.ma.us
boscpauth.jud.state.ma.us
coplink.chs.state.ma.us
wiki.state.ma.us
hwyweb.massdot.state.ma.us
MyTRSPRDESS.trb.state.ma.us
maexcisestamp.dor.state.ma.us
swa.projectcontrols.massdot.state.ma.us
masshealth.ehs.state.ma.us
foreclosures.dob.state.ma.us
inet.chia.state.ma.us
massclearinghouse.ehs.state.ma.us
bcn3-web-uat.dta.state.ma.us
archives.lib.state.ma.us
ibmmq-st.hhs.state.ma.us
ctrwebintqa.osc.state.ma.us
email.state.ma.us
envdvaccaca.elicensing.state.ma.us
sso.hhs.state.ma.us
mcef.jud.state.ma.us
atlas-portal.massdot.state.ma.us
itd-sam-lws3.itd.state.ma.us
www.sec.state.ma.us
icori-train.chs.state.ma.us
earlyedncareop.eec.state.ma.us
trcsd.jud.state.ma.us
bcn-websrv-prod.dta.state.ma.us
app1.massdot.state.ma.us
sopsmeta.ehs.state.ma.us
csg.jud.state.ma.us
maps.massgis.state.ma.us
matris.dph.state.ma.us
wfb.dor.state.ma.us
legacyhscdev.hhs.state.ma.us
masstraffic.massdot.state.ma.us
virtualgatewaydw.ehs.state.ma.us
reportingsdkdev10.itd.state.ma.us
hhsvgapps03.hhs.state.ma.us
eohhsaimqa.ehs.state.ma.us
med-web-sftp.dph.state.ma.us
ieats-cg-cert.hhs.state.ma.us
www.sec.state.ma.us
sdm-uss.ehs.state.ma.us
hhsvgapps01-training.hhs.state.ma.us
vgapps3-qa.hhs.state.ma.us
incapsula.com
uatccfa.eec.state.ma.us
traingateway.edu.state.ma.us
checkalicense.hhs.state.ma.us
ieats-cg-cert.hhs.state.ma.us
rmvdashboard.massdot.state.ma.us
maps.env.state.ma.us
ecemp.chs.state.ma.us
reportingst10.itd.state.ma.us
icori-train.chs.state.ma.us
gicselfservice.gic.state.ma.us
reportingsdkqa10.itd.state.ma.us
gisdev.massdot.state.ma.us
webfusion.chs.state.ma.us
csg.jud.state.ma.us
aws-h92spt.hrcms.state.ma.us
reportingdev10.itd.state.ma.us
maps.massgis.state.ma.us
pmas-app.dcp.state.ma.us
atlas-myrmv.massdot.state.ma.us
sso-training.hhs.state.ma.us
elicensing.state.ma.us
ds1.massdot.state.ma.us
MyTRSUATMSS.trb.state.ma.us
cms.mgc.state.ma.us
gisstg.massdot.state.ma.us
comit.state.ma.us
securemail.state.ma.us
www.sport.state.ma.us
foreclosures.dob.state.ma.us
securefile.state.ma.us
wifi.massdot.state.ma.us
maps.env.state.ma.us
dlsgateway.dor.state.ma.us
abpweb.tre.state.ma.us
envtsaccadm.elicensing.state.ma.us
hwywebuat.massdot.state.ma.us
ibmmq-st.hhs.state.ma.us
acc.elicensing.state.ma.us
ufr.osd.state.ma.us
IMP-USE2-VPN.impact.dot.state.ma.us
wf.dor.state.ma.us
ecse.cse.state.ma.us
gateway.edu.state.ma.us
massachusettsgatewayservice.us
atm-dev.dor.state.ma.us
dor-uca-1.dor.state.ma.us
elr.dph.state.ma.us
coplink.chs.state.ma.us
matris.dph.state.ma.us
wiki.state.ma.us
dlsgateway.dor.state.ma.us
ehs-pr-mmis-lbase1.ehs.state.ma.us
vgapps-training.hhs.state.ma.us
secure.dor.state.ma.us
boscpauth.jud.state.ma.us
coplink.chs.state.ma.us
wiki.state.ma.us
hwyweb.massdot.state.ma.us
MyTRSPRDESS.trb.state.ma.us
maexcisestamp.dor.state.ma.us
swa.projectcontrols.massdot.state.ma.us
masshealth.ehs.state.ma.us
foreclosures.dob.state.ma.us
inet.chia.state.ma.us
massclearinghouse.ehs.state.ma.us
bcn3-web-uat.dta.state.ma.us
archives.lib.state.ma.us
ibmmq-st.hhs.state.ma.us
ctrwebintqa.osc.state.ma.us
email.state.ma.us
envdvaccaca.elicensing.state.ma.us
sso.hhs.state.ma.us
mcef.jud.state.ma.us
atlas-portal.massdot.state.ma.us
itd-sam-lws3.itd.state.ma.us
www.sec.state.ma.us
icori-train.chs.state.ma.us
earlyedncareop.eec.state.ma.us
trcsd.jud.state.ma.us
bcn-websrv-prod.dta.state.ma.us
app1.massdot.state.ma.us
sopsmeta.ehs.state.ma.us
csg.jud.state.ma.us
maps.massgis.state.ma.us
matris.dph.state.ma.us
wfb.dor.state.ma.us
legacyhscdev.hhs.state.ma.us
masstraffic.massdot.state.ma.us
virtualgatewaydw.ehs.state.ma.us
reportingsdkdev10.itd.state.ma.us
hhsvgapps03.hhs.state.ma.us
eohhsaimqa.ehs.state.ma.us
med-web-sftp.dph.state.ma.us
ieats-cg-cert.hhs.state.ma.us
www.sec.state.ma.us
sdm-uss.ehs.state.ma.us
hhsvgapps01-training.hhs.state.ma.us
vgapps3-qa.hhs.state.ma.us
incapsula.com
uatccfa.eec.state.ma.us
traingateway.edu.state.ma.us
checkalicense.hhs.state.ma.us
ieats-cg-cert.hhs.state.ma.us
rmvdashboard.massdot.state.ma.us
maps.env.state.ma.us
ecemp.chs.state.ma.us
reportingst10.itd.state.ma.us
icori-train.chs.state.ma.us
gicselfservice.gic.state.ma.us
reportingsdkqa10.itd.state.ma.us
gisdev.massdot.state.ma.us
webfusion.chs.state.ma.us
csg.jud.state.ma.us
aws-h92spt.hrcms.state.ma.us
reportingdev10.itd.state.ma.us
maps.massgis.state.ma.us
pmas-app.dcp.state.ma.us
atlas-myrmv.massdot.state.ma.us
sso-training.hhs.state.ma.us
elicensing.state.ma.us
ds1.massdot.state.ma.us
MyTRSUATMSS.trb.state.ma.us
cms.mgc.state.ma.us
gisstg.massdot.state.ma.us
comit.state.ma.us
securemail.state.ma.us
www.sport.state.ma.us
foreclosures.dob.state.ma.us
securefile.state.ma.us
wifi.massdot.state.ma.us
maps.env.state.ma.us
dlsgateway.dor.state.ma.us
abpweb.tre.state.ma.us
envtsaccadm.elicensing.state.ma.us
hwywebuat.massdot.state.ma.us
ibmmq-st.hhs.state.ma.us
acc.elicensing.state.ma.us
ufr.osd.state.ma.us
IMP-USE2-VPN.impact.dot.state.ma.us
wf.dor.state.ma.us
ecse.cse.state.ma.us
gateway.edu.state.ma.us
massachusettsgatewayservice.us
atm-dev.dor.state.ma.us
dor-uca-1.dor.state.ma.us
elr.dph.state.ma.us
coplink.chs.state.ma.us
matris.dph.state.ma.us
wiki.state.ma.us
dlsgateway.dor.state.ma.us
ehs-pr-mmis-lbase1.ehs.state.ma.us
Certificate
The complete raw certificate details for app1.massdot.state.ma.us in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcjCCBVqgAwIBAgIQCwK3QKs3ddUDrsDmjvbirzANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwODIxMDAwMDAwWhcN MTkwODI2MTIwMDAwWjCBtjELMAkGA1UEBhMCVVMxFjAUBgNVBAgTDU1hc3NhY2h1 c2V0dHMxDzANBgNVBAcTBkJvc3RvbjEmMCQGA1UEChMdQ29tbW9ud2VhbHRoIE9m IE1hc3NhY2h1c2V0dHMxMzAxBgNVBAsTKk1hc3NhY2h1c2V0dHMgRGVwYXJ0bWVu dCBPZiBUcmFuc3BvcnRhdGlvbjEhMB8GA1UEAxMYYXBwMS5tYXNzZG90LnN0YXRl Lm1hLnVzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBqbI/YvUN5J msZGWFa6OJ000X9pJuhMPH5SrL2iUBat1gl0ObPVZQMT6NJ0sotKTUo/n1fI1pv7 1Ny3EeXnVWuIAqHR/qPQlZSv+6pByfEwMdtAQPIvQyzdvN72zYyJsZnnOKjvhOIY C3Q+jAwi+YoDgri3zEmftBvDHFy7iOqSr6uCMxQsDMB5MQjRhT9HU2r/RuYuyz6X ZwU6yiP2iJLa+feFlG8PfYnpl49ebhJ5kFlbDL0Xs+ng1V6nispqZnvTcvf4Y29U cZvG1MRl1/B1cdrJZLG87zdGLX/tNNtSvCubPZHv4Ym5E/L9Rz7Lf2zty9drSk5j EQot/eNnVQIDAQABo4IC4jCCAt4wHwYDVR0jBBgwFoAUD4BhHIIxYdUvKOeNRji0 LOHG2eIwHQYDVR0OBBYEFNEX5L5hNKTSCWa5HgrNGf9+3bcfMCMGA1UdEQQcMBqC GGFwcDEubWFzc2RvdC5zdGF0ZS5tYS51czAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGsGA1UdHwRkMGIwL6AtoCuGKWh0dHA6 Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMC+gLaArhilodHRw Oi8vY3JsNC5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWc2LmNybDBMBgNVHSAERTBD MDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2Vy dC5jb20vQ1BTMAgGBmeBDAECAjB8BggrBgEFBQcBAQRwMG4wJAYIKwYBBQUHMAGG GGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBGBggrBgEFBQcwAoY6aHR0cDovL2Nh Y2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMlNlY3VyZVNlcnZlckNBLmNy dDAJBgNVHRMEAjAAMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUAu9nfvB+KcbWT lCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFlW+sKRwAABAMARjBEAiBzg2v+v+t/ JcBJq1SVzo6tlkTmaNxC05eC3q49bka13gIgXiZyog0XUtEM+mS2oR/EC7jdJo0h mS4lzqEU3aLFT70AdQCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCDDwAA AWVb6woNAAAEAwBGMEQCIFCEcO7yWqTiVbkLpsY5Gl+GmrZulrPqZ22hl6lY09qQ AiBLth+ygPO80KVRd2zqwBoGIdFQO7uEdQmdLr27LEeO4TANBgkqhkiG9w0BAQsF AAOCAQEAAok8q1OrPLJkbvoG0jhBUYqNjlB4xWgETbwUKUTQ1/7rJozxYWn2aVo/ dGb+UFQbuDWjYCDxE390YyvJPE4z6yoM2Kz0wdHezCJ25PvIISxEREDN4HquUDLH 71RDJQvtrA3oQ9tDq1AZnRRDMpidapca3oCJkeSkNA85tgTvHXmdPJbJ9Zh2+KHA +0pl6Yw0o/qrAndy4a5ra1pxlXTdhysJ2gKeZlNtOlfY9RQLgfNfcWO1eHNrkNVb nKlb0oMJ858r95/YlsybMuQINTv82LiNefVC/3nuRYw+3O5hYbmE9AUYIj4/FyuA WaIYMhNsBv+1ZsJIvQvkLIbTi2wSTQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBqbI/YvUN5JmsZGWFa6 OJ000X9pJuhMPH5SrL2iUBat1gl0ObPVZQMT6NJ0sotKTUo/n1fI1pv71Ny3EeXn VWuIAqHR/qPQlZSv+6pByfEwMdtAQPIvQyzdvN72zYyJsZnnOKjvhOIYC3Q+jAwi +YoDgri3zEmftBvDHFy7iOqSr6uCMxQsDMB5MQjRhT9HU2r/RuYuyz6XZwU6yiP2 iJLa+feFlG8PfYnpl49ebhJ5kFlbDL0Xs+ng1V6nispqZnvTcvf4Y29UcZvG1MRl 1/B1cdrJZLG87zdGLX/tNNtSvCubPZHv4Ym5E/L9Rz7Lf2zty9drSk5jEQot/eNn VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14635609351899997471633283319246283439 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-26 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Massachusetts' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Boston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Commonwealth Of Massachusetts' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Massachusetts Department Of Transportation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'app1.massdot.state.ma.us' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21726108370368123185942459755090085135466057122068494213707059316933329718712991756593606667138029009701054896865457737357451914490544358130515815251818683300048468448743039104329992250495206030550673092644361614086455466445638851224294832812169512556402974544910652887766689309354778221855658855918366077243980889861741409339370164545378814927123933689611184599689441851170705890055088357255340020293712298091546077120914076946564050757133495388505892869036172969786831113760605184863693385252251108970540187256808819827500020987736173514855766998834350455476625012703627273543144781016331886050621417787936978724693 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d117e4be6134a4d20966b91e0acd19ff7eddb71f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app1.massdot.state.ma.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001655beb0a470000040300463044022073836bfebfeb7f25c049ab5495ce8ead9644e668dc42d39782deae3d6e46b5de02205e2672a20d1752d10cfa64b6a11fc40bb8dd268d21992e25cea114dda2c54fbd0075008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001655beb0a0d00000403004630440220508470eef25aa4e255b90ba6c6391a5f869ab66e96b3ea676da197a958d3da9002204bb61fb280f3bcd0a551776ceac01a0621d1503bbb8475099d2ebdbb2c478ee1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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