www.itwd.oit.va.gov
Issued by Veterans Affairs Device CA B2
About this certificate
This digital certificate with serial number 03:c3:51 was issued on byVeterans Affairs Device CA B2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates MUST contain the Subject Alternate Name extension (BRs: 7.1.4.2.1)
- The common name field in subscriber certificates must include only names from the SAN extension (BRs: 7.1.4.2.2)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.itwd.oit.va.gov,OU=devices,0.9.2342.19200300.100.1.25=#13027661,0.9.2342.19200300.100.1.25=#1303676f76
Veterans Affairs Device CA B2
Organization unit: Services
Organization unit: PKI
Organization unit: PKI
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c3:51Serial Number (int): 246609
Serial Number lenght: 18 bits, 3 octets
SubjectKeyId: 42:05:1d:c0:eb:fb:03:b7:9e:91:e8:b3:7b:d1:38:be:a3:21:03:8e
AuthorityKeyId: 81:94:35:9e:2a:a8:77:60:23:66:ec:2a:9d:6e:cf:b6:75:19:50:5d
Fingerprint (sha1): 51:a0:52:fa:73:dc:a0:30:36:bd:eb:fb:e3:64:fe:81:da:74:7c:95
Fingerprint (sha256): 03:12:28:85:d5:53:83:d3:64:69:01:ea:43:5a:7b:72:b8:6b:0e:fe:a4:59:c5:e0:50:97:e0:91:e3:f2:e8:52
Issuing Certificate URL: http://aia1.ssp-strong-id.net/CA/VAdeviceCA.p7c
Issuing Certificate URL: ldap://dir1.ssp-strong-id.net/cn=Veterans%20Affairs%20Device%20CA%20B2,ou=PKI,ou=Services,dc=va,dc=gov?cACertificate
Revocation information
OCSP Server: http://ocsp.pki.va.gov/OCSP Server: http://ocsp1.ssp-strong-id.net/VA-SSP-CA-B2
CRL Distribution Point: http://crl.pki.va.gov/PKI/CRL/vadevice.crl
CRL Distribution Point: ldap://ldap.pki.va.gov/cn%3dSSPB2AE,cn%3dCDP,cn%3dPKI,cn%3dServices,dc%3dva,dc%3dgov?certificateRevocationList
CRL Distribution Point: http://cdp1.ssp-strong-id.net/CDP/vadevice.crl
CRL Distribution Point: ldap://dir1.ssp-strong-id.net/cn%3dVeterans%20Affairs%20Device%20CA%20B2,ou%3dPKI,ou%3dServices,dc%3dva,dc%3dgov?certificateRevocationList
Check the revocation status for certificate www.itwd.oit.va.gov
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.itwd.oit.va.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
7 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name va.gov
(limited to 100 certificates)
www.tee.va.gov
www.explore.va.gov
gfe.vpn.va.gov
www.cc.1vision.va.gov
m.pint.ebenefits.va.gov
www.visn2.va.gov
SERVICES.TEST.MDM.VA.GOV
vaww.media.eo.va.gov
*.shopvcs.va.gov
care.va.gov
prod.saas.box.va.gov
pint.vdc.va.gov
ccracommunity.va.gov
www.va.gov
www.cep.fsc.va.gov
www.patientadvocate.va.gov
rqm01.aide.oit.va.gov
nonprod.paas.mulesoft.va.gov
gibill.va.gov
m.va.gov
portal.nprod.vetbiz.va.gov
register.eauth.va.gov
www.ideas.research.va.gov
VABENEFITS.VBA.VA.GOV
ra.vpn.va.gov
yourit.va.gov
homeloans.va.gov
hybrid.va.gov
adfs.edeazclabs.va.gov
pint.sep.va.gov
HRIS.VA.GOV
www.vis.fsc.va.gov
preprod.fed.eauth.va.gov
rrc01.test.aide.oit.va.gov
*.vetride.va.gov
www.netresponse.medtronic.va.gov
m.va.gov
yourit-dev.va.gov
das.va.gov
mass.columbus.va.gov
www.energy.va.gov
www.itwd.oit.va.gov
prod.dip.va.gov
www.index.va.gov
www.pre.csp.va.gov
care.va.gov
vacagtest.vpn.va.gov
vagfe.vpn.va.gov
vdc.va.gov
www.listserv.va.gov
www.communityviewer.va.gov
care.va.gov
vaww.media.eo.va.gov
vaishwcs008.mdm.va.gov
tools.health.dev-developer.va.gov
casemgmt.int2.mbms.va.gov
www.rehab.research.va.gov
citrixaccesstest.va.gov
WWW.VOA.VA.GOV
www.va.gov
www.ihscepp.fsc.va.gov
staff.eva.va.gov
dev-developer.va.gov
www.escm-hcdev.va.gov
www.hcawsdev.va.gov
veteran.mobilehealth.va.gov
prod.saas.qualtrics.va.gov
citrixaccesseast.va.gov
adfs.edeazclabs.va.gov
www.netresponse.airwatch.medtronic.va.gov
casemgmt.perf.mbms.va.gov
mgmt.dev.care2.va.gov
filenet.pdt.vbms.aide.oit.va.gov
jira.devops.va.gov
benefits.vba.va.gov
www.ebenefits.va.gov
www.healthshareprod8.va.gov
RAPORTAL.VPN.VA.GOV
vip.vba.va.gov
cdceportal.va.gov
mrtfwfl01.vas.med.va.gov
www.valu.va.gov
prisma.vpn.va.gov
care.va.gov
care.va.gov
portal.lom.med.va.gov
www.mdssvh.aac.va.gov
services.test.mdm.va.gov
VP.evn.va.gov
www.tms.va.gov
veteranshealthlibrary.va.gov
idm.edeazclabs.va.gov
www.vendorportal.ecms.va.gov
www.vip-preprod.vetbiz.va.gov
services.eauth.va.gov
filenet.uat.vbms.aide.oit.va.gov
dev-api2.va.gov
vhacrrappdevhs5.vaco.va.gov
dev-api.va.gov
vetbiz.va.gov
www.explore.va.gov
gfe.vpn.va.gov
www.cc.1vision.va.gov
m.pint.ebenefits.va.gov
www.visn2.va.gov
SERVICES.TEST.MDM.VA.GOV
vaww.media.eo.va.gov
*.shopvcs.va.gov
care.va.gov
prod.saas.box.va.gov
pint.vdc.va.gov
ccracommunity.va.gov
www.va.gov
www.cep.fsc.va.gov
www.patientadvocate.va.gov
rqm01.aide.oit.va.gov
nonprod.paas.mulesoft.va.gov
gibill.va.gov
m.va.gov
portal.nprod.vetbiz.va.gov
register.eauth.va.gov
www.ideas.research.va.gov
VABENEFITS.VBA.VA.GOV
ra.vpn.va.gov
yourit.va.gov
homeloans.va.gov
hybrid.va.gov
adfs.edeazclabs.va.gov
pint.sep.va.gov
HRIS.VA.GOV
www.vis.fsc.va.gov
preprod.fed.eauth.va.gov
rrc01.test.aide.oit.va.gov
*.vetride.va.gov
www.netresponse.medtronic.va.gov
m.va.gov
yourit-dev.va.gov
das.va.gov
mass.columbus.va.gov
www.energy.va.gov
www.itwd.oit.va.gov
prod.dip.va.gov
www.index.va.gov
www.pre.csp.va.gov
care.va.gov
vacagtest.vpn.va.gov
vagfe.vpn.va.gov
vdc.va.gov
www.listserv.va.gov
www.communityviewer.va.gov
care.va.gov
vaww.media.eo.va.gov
vaishwcs008.mdm.va.gov
tools.health.dev-developer.va.gov
casemgmt.int2.mbms.va.gov
www.rehab.research.va.gov
citrixaccesstest.va.gov
WWW.VOA.VA.GOV
www.va.gov
www.ihscepp.fsc.va.gov
staff.eva.va.gov
dev-developer.va.gov
www.escm-hcdev.va.gov
www.hcawsdev.va.gov
veteran.mobilehealth.va.gov
prod.saas.qualtrics.va.gov
citrixaccesseast.va.gov
adfs.edeazclabs.va.gov
www.netresponse.airwatch.medtronic.va.gov
casemgmt.perf.mbms.va.gov
mgmt.dev.care2.va.gov
filenet.pdt.vbms.aide.oit.va.gov
jira.devops.va.gov
benefits.vba.va.gov
www.ebenefits.va.gov
www.healthshareprod8.va.gov
RAPORTAL.VPN.VA.GOV
vip.vba.va.gov
cdceportal.va.gov
mrtfwfl01.vas.med.va.gov
www.valu.va.gov
prisma.vpn.va.gov
care.va.gov
care.va.gov
portal.lom.med.va.gov
www.mdssvh.aac.va.gov
services.test.mdm.va.gov
VP.evn.va.gov
www.tms.va.gov
veteranshealthlibrary.va.gov
idm.edeazclabs.va.gov
www.vendorportal.ecms.va.gov
www.vip-preprod.vetbiz.va.gov
services.eauth.va.gov
filenet.uat.vbms.aide.oit.va.gov
dev-api2.va.gov
vhacrrappdevhs5.vaco.va.gov
dev-api.va.gov
vetbiz.va.gov
Certificate
The complete raw certificate details for www.itwd.oit.va.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGmTCCBYGgAwIBAgIDA8NRMA0GCSqGSIb3DQEBCwUAMHIxEzARBgoJkiaJk/Is ZAEZFgNnb3YxEjAQBgoJkiaJk/IsZAEZFgJ2YTERMA8GA1UECxMIU2VydmljZXMx DDAKBgNVBAsTA1BLSTEmMCQGA1UEAxMdVmV0ZXJhbnMgQWZmYWlycyBEZXZpY2Ug Q0EgQjIwHhcNMTMxMjA1MTMzNjMwWhcNMTYxMjA1MTMzNjMwWjBZMRMwEQYKCZIm iZPyLGQBGRYDZ292MRIwEAYKCZImiZPyLGQBGRYCdmExEDAOBgNVBAsTB2Rldmlj ZXMxHDAaBgNVBAMTE3d3dy5pdHdkLm9pdC52YS5nb3YwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQCveAlpuvHRPk0OZN8m7KOyOGoyhAESDajHAiWbd9hr yY+oFrqUuG1FwzyaNUxtLVJ9MHkCqV+u0bKrV63kYv+r83ZEOnwxF8IziTJ6zaAv reBU5XlezBZUT4N9dGaZZl0edgCw2P84RX1S+agdgt9nKiQaFWyi61aT4Gud3o0l 7/CUtmX+Kbpy6YQUIN/1cyXFtofKXabjHhkn7kyW5AXXzWKZgrgc3n/RorCEMHvR UENgzjwMVMdmSDFmJVL7tNycoFZGNUYtvV4vJC1YqUEXVOiw10NBRuvXPZ+8r16k rkS1tT1v1nv4CyVcp7ps3Ic+VPuNMKjSVTTCybIP/DdvAgMBAAGjggNPMIIDSzAX BgNVHSAEEDAOMAwGCmCGSAFlAwIBAwgwggEwBggrBgEFBQcBAQSCASIwggEeMDsG CCsGAQUFBzAChi9odHRwOi8vYWlhMS5zc3Atc3Ryb25nLWlkLm5ldC9DQS9WQWRl dmljZUNBLnA3YzCBgAYIKwYBBQUHMAKGdGxkYXA6Ly9kaXIxLnNzcC1zdHJvbmct aWQubmV0L2NuPVZldGVyYW5zJTIwQWZmYWlycyUyMERldmljZSUyMENBJTIwQjIs b3U9UEtJLG91PVNlcnZpY2VzLGRjPXZhLGRjPWdvdj9jQUNlcnRpZmljYXRlMCMG CCsGAQUFBzABhhdodHRwOi8vb2NzcC5wa2kudmEuZ292LzA3BggrBgEFBQcwAYYr aHR0cDovL29jc3AxLnNzcC1zdHJvbmctaWQubmV0L1ZBLVNTUC1DQS1CMjAOBgNV HQ8BAf8EBAMCBaAwJwYDVR0lBCAwHgYIKwYBBQUHAwEGCCsGAQUFBwMCBghghkgB ZQMGBzAfBgNVHSMEGDAWgBSBlDWeKqh3YCNm7Cqdbs+2dRlQXTCCAYEGA1UdHwSC AXgwggF0MDCgLqAshipodHRwOi8vY3JsLnBraS52YS5nb3YvUEtJL0NSTC92YWRl dmljZS5jcmwwdKByoHCGbmxkYXA6Ly9sZGFwLnBraS52YS5nb3YvY24lM2RTU1BC MkFFLGNuJTNkQ0RQLGNuJTNkUEtJLGNuJTNkU2VydmljZXMsZGMlM2R2YSxkYyUz ZGdvdj9jZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0MDSgMqAwhi5odHRwOi8vY2Rw MS5zc3Atc3Ryb25nLWlkLm5ldC9DRFAvdmFkZXZpY2UuY3JsMIGToIGQoIGNhoGK bGRhcDovL2RpcjEuc3NwLXN0cm9uZy1pZC5uZXQvY24lM2RWZXRlcmFucyUyMEFm ZmFpcnMlMjBEZXZpY2UlMjBDQSUyMEIyLG91JTNkUEtJLG91JTNkU2VydmljZXMs ZGMlM2R2YSxkYyUzZGdvdj9jZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0MB0GA1Ud DgQWBBRCBR3A6/sDt56R6LN70Ti+oyEDjjANBgkqhkiG9w0BAQsFAAOCAQEAXRrE zCu5mjUeBLu01XD79wAZSTnOKkCrRxpToBq3+DojCYezggsr8XXeGKdYWzupHNd1 eGvR01q1dikPJ0yopehesm0JRDUgUZuLgJj/+/3MmJ/ECfWYATLp3rlAaqr2V45i Psd/V6QCwtdUEz07/YzOCoM5ENE3KVWw+t/zcUl15+QXWFqBqvtZ6/pvVoIDIybr L28Fzp21NrS3nlSkgj7ANWsqT/OqnVYAt9sQFa2nMx4f6QWN4XijIt2ihCdvvDxV n+qkAi/1lzT5jtsv9/mBwrJHvV5eG5dy886mp9ARBo71EwpSGRGNY/isJ3ZbzhfL 7f1S8bodjrFt61xKFQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3gJabrx0T5NDmTfJuyj sjhqMoQBEg2oxwIlm3fYa8mPqBa6lLhtRcM8mjVMbS1SfTB5AqlfrtGyq1et5GL/ q/N2RDp8MRfCM4kyes2gL63gVOV5XswWVE+DfXRmmWZdHnYAsNj/OEV9UvmoHYLf ZyokGhVsoutWk+Brnd6NJe/wlLZl/im6cumEFCDf9XMlxbaHyl2m4x4ZJ+5MluQF 181imYK4HN5/0aKwhDB70VBDYM48DFTHZkgxZiVS+7TcnKBWRjVGLb1eLyQtWKlB F1TosNdDQUbr1z2fvK9epK5EtbU9b9Z7+AslXKe6bNyHPlT7jTCo0lU0wsmyD/w3 bwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 246609 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.9.2342.19200300.100.1.25 (domainComponent) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'gov' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.9.2342.19200300.100.1.25 (domainComponent) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'va' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Veterans Affairs Device CA B2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-12-05 13:36:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-05 13:36:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.9.2342.19200300.100.1.25 (domainComponent) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'gov' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.9.2342.19200300.100.1.25 (domainComponent) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'va' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'devices' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.itwd.oit.va.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22150895706261684627183442138215993966091849377973107474038021703949782828664712805196227295562450644028857060875619081462095206452944086809071410529351867839955821742045550868592056604310633137691837000415044645393637978225626402442722174812064565957678028724295660439907583830332269291187531475551966357022953462932274612501176052401335728233230882427069877155926049634608413568582021250744234799541885325532795698667258850144267544890082646436389702864771323376885886249187299799080245700443658111347941456775512572000464057056318761880653556688566848335226542909135019862765425721262095388597946276177150545246063 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.3.2.1.3.8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (290 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia1.ssp-strong-id.net/CA/VAdeviceCA.p7c' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://dir1.ssp-strong-id.net/cn=Veterans%20Affairs%20Device%20CA%20B2,ou=PKI,ou=Services,dc=va,dc=gov?cACertificate' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.va.gov/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp1.ssp-strong-id.net/VA-SSP-CA-B2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.3.6.7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8194359e2aa877602366ec2a9d6ecfb67519505d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (376 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.pki.va.gov/PKI/CRL/vadevice.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://ldap.pki.va.gov/cn%3dSSPB2AE,cn%3dCDP,cn%3dPKI,cn%3dServices,dc%3dva,dc%3dgov?certificateRevocationList' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.ssp-strong-id.net/CDP/vadevice.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://dir1.ssp-strong-id.net/cn%3dVeterans%20Affairs%20Device%20CA%20B2,ou%3dPKI,ou%3dServices,dc%3dva,dc%3dgov?certificateRevocationList' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 42051dc0ebfb03b79e91e8b37bd138bea321038e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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