ghssvr-stg.hhs.gov
- US Department of Health and Human Services -
Issued by HydrantID Server CA O1
About this certificate
This digital certificate with serial number 40:01:8c:ca:71:f4:40:5f:b6:76:7c:e5:58:a6:57:20 was issued on by IdenTrust.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
US Department of Health and Human Services
Organization:
US Department of Health and Human Services
State / Province:
District of Columbia
Locality: Washington
Country: US
Locality: Washington
Country: US
IdenTrust
Organization:
IdenTrust
Organization unit: HydrantID Trusted Certificate Service
Organization unit: HydrantID Trusted Certificate Service
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 40:01:8c:ca:71:f4:40:5f:b6:76:7c:e5:58:a6:57:20Serial Number (int): 85078639603793577815569115296190322464
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 0c:e5:7b:01:a1:cb:b7:69:a3:bb:c8:e8:f7:42:07:5f:48:d2:31:cd
AuthorityKeyId: 89:b8:9b:b6:9e:ed:fb:b0:c6:bd:0d:ec:67:4e:3c:a3:92:9d:2d:f9
Fingerprint (sha1): 29:e3:aa:88:c6:d8:3c:18:04:45:45:74:a9:1f:de:f3:22:f1:bf:4e
Fingerprint (sha256): 03:74:fb:23:07:36:af:76:cf:fd:39:f5:6b:47:53:56:87:9c:dc:2c:aa:2a:60:96:ec:ce:3a:db:16:f0:ec:da
Issuing Certificate URL: http://validation.identrust.com/certs/hydrantidcaO1.p7c
Revocation information
OCSP Server: http://commercial.ocsp.identrust.comCRL Distribution Point: http://validation.identrust.com/crl/hydrantidcao1.crl
Check the revocation status for certificate ghssvr-stg.hhs.gov
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ghssvr-stg.hhs.gov
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ghssvr-stg.hhs.gov
www.ghssvr-stg.hhs.gov
www.ghssvr-stg.hhs.gov
Other certificates including the domain name hhs.gov
(limited to 100 certificates)
*.hhs.gov
eroom2.bardatools.hhs.gov
wecandothis.hhs.gov
ASPRTFS.HHS.GOV
data.hhs.gov
asprgis.hhs.gov
www.imp.cob.cms.hhs.gov
tips.oig.hhs.gov
ofarr.acf.hhs.gov
psr-ui.cms.hhs.gov
actmeetingserver.hhs.gov
api-tanfdata.acf.hhs.gov
www.cms.gov
asfrombapp.hhs.gov
swift.cms.hhs.gov
verilog.hhs.gov
owa.hhs.gov
portal-development.icas.hhs.gov
ncvhs.hhs.gov
TFS.CMS.HHS.GOV
forms.oig.hhs.gov
PartnerPortal.oig.hhs.gov
stg-asprportal.hhs.gov
hsmp-data.aspe.hhs.gov
eclkc.ohs.acf.hhs.gov
tst-sp2019.hhs.gov
www.cms.gov
Collider-Remote.cms.hhs.gov
*.oig.hhs.gov
adc-sfbfep1.fda.gov
stg-asprportal.hhs.gov
www.hhs.gov
nccd.cdc.gov
am.cms.hhs.gov
liheappm.acf.hhs.gov
oga.hhs.gov
www.healthcare.gov
www.cdc.gov
csportal.hhs.gov
*.dcis.hhs.gov
med.cms.hhs.gov
ufmsuat.hhs.gov
hhs.gov
prod-ndms.hhs.gov
dc1-prsmapov-01.oig.hhs.gov
www.hhs.gov
procurementforecast.hhs.gov
eftv2.cms.hhs.gov
psr-ui.cms.hhs.gov
staging.hses.ohs.acf.hhs.gov
stage.occms.acf.hhs.gov
fbistrg12c.hhs.gov
liheappm.acf.hhs.gov
impool2.fda.gov
www.cdc.gov
*.aspe.hhs.gov
emportal.hhs.gov
NDACAN.ACF.HHS.GOV
*.cloud.hhs.gov
taggs.hhs.gov
mrc-cms.hhs.gov
ocsecollab.acf.hhs.gov
collaborate-acl.hhs.gov
iknowtest.hhs.gov
collaborate-acl.hhs.gov
ncsacw.acf.hhs.gov
mec.cms.hhs.gov
akamai-san15.exacttarget.com
accelerate-integration.hhs.gov
asprprofiles.hhs.gov
www.cdc.gov
www.ahrq.gov
ghssvr-stg.hhs.gov
lms.learning.hhs.gov
Collider-aut.cms.hhs.gov
gal.hhs.gov
swift.aspr.hhs.gov
usphstraining.hhs.gov
liheapch.acf.hhs.gov
itsc-sts.o365.hhs.gov
www.safetyreporting.hhs.gov
prod-phe.hhs.gov
subscriptions.cms.hhs.gov
pl-auth01.hhsnet.hhs.gov
webinar3.cms.hhs.gov
stage.liheapch.acf.hhs.gov
www.cdc.gov
accelerate-staging.hhs.gov
www.cdc.gov
learning.hhs.gov
www.hmrffasttrac.acf.hhs.gov
accelerate-server.hhs.gov
*.aspe.hhs.gov
mail.nih.gov
pecos-fpd.cms.hhs.gov
*.cfsrportal.acf.hhs.gov
cccdpcr.thinkculturalhealth.hhs.gov
dr.itas.hhs.gov
MRC-STAGE.HHS.GOV
pecosai.cms.hhs.gov
eroom2.bardatools.hhs.gov
wecandothis.hhs.gov
ASPRTFS.HHS.GOV
data.hhs.gov
asprgis.hhs.gov
www.imp.cob.cms.hhs.gov
tips.oig.hhs.gov
ofarr.acf.hhs.gov
psr-ui.cms.hhs.gov
actmeetingserver.hhs.gov
api-tanfdata.acf.hhs.gov
www.cms.gov
asfrombapp.hhs.gov
swift.cms.hhs.gov
verilog.hhs.gov
owa.hhs.gov
portal-development.icas.hhs.gov
ncvhs.hhs.gov
TFS.CMS.HHS.GOV
forms.oig.hhs.gov
PartnerPortal.oig.hhs.gov
stg-asprportal.hhs.gov
hsmp-data.aspe.hhs.gov
eclkc.ohs.acf.hhs.gov
tst-sp2019.hhs.gov
www.cms.gov
Collider-Remote.cms.hhs.gov
*.oig.hhs.gov
adc-sfbfep1.fda.gov
stg-asprportal.hhs.gov
www.hhs.gov
nccd.cdc.gov
am.cms.hhs.gov
liheappm.acf.hhs.gov
oga.hhs.gov
www.healthcare.gov
www.cdc.gov
csportal.hhs.gov
*.dcis.hhs.gov
med.cms.hhs.gov
ufmsuat.hhs.gov
hhs.gov
prod-ndms.hhs.gov
dc1-prsmapov-01.oig.hhs.gov
www.hhs.gov
procurementforecast.hhs.gov
eftv2.cms.hhs.gov
psr-ui.cms.hhs.gov
staging.hses.ohs.acf.hhs.gov
stage.occms.acf.hhs.gov
fbistrg12c.hhs.gov
liheappm.acf.hhs.gov
impool2.fda.gov
www.cdc.gov
*.aspe.hhs.gov
emportal.hhs.gov
NDACAN.ACF.HHS.GOV
*.cloud.hhs.gov
taggs.hhs.gov
mrc-cms.hhs.gov
ocsecollab.acf.hhs.gov
collaborate-acl.hhs.gov
iknowtest.hhs.gov
collaborate-acl.hhs.gov
ncsacw.acf.hhs.gov
mec.cms.hhs.gov
akamai-san15.exacttarget.com
accelerate-integration.hhs.gov
asprprofiles.hhs.gov
www.cdc.gov
www.ahrq.gov
ghssvr-stg.hhs.gov
lms.learning.hhs.gov
Collider-aut.cms.hhs.gov
gal.hhs.gov
swift.aspr.hhs.gov
usphstraining.hhs.gov
liheapch.acf.hhs.gov
itsc-sts.o365.hhs.gov
www.safetyreporting.hhs.gov
prod-phe.hhs.gov
subscriptions.cms.hhs.gov
pl-auth01.hhsnet.hhs.gov
webinar3.cms.hhs.gov
stage.liheapch.acf.hhs.gov
www.cdc.gov
accelerate-staging.hhs.gov
www.cdc.gov
learning.hhs.gov
www.hmrffasttrac.acf.hhs.gov
accelerate-server.hhs.gov
*.aspe.hhs.gov
mail.nih.gov
pecos-fpd.cms.hhs.gov
*.cfsrportal.acf.hhs.gov
cccdpcr.thinkculturalhealth.hhs.gov
dr.itas.hhs.gov
MRC-STAGE.HHS.GOV
pecosai.cms.hhs.gov
Certificate
The complete raw certificate details for ghssvr-stg.hhs.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHsDCCBpigAwIBAgIQQAGMynH0QF+2dnzlWKZXIDANBgkqhkiG9w0BAQsFADBy MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSWRlblRydXN0MS4wLAYDVQQLEyVIeWRy YW50SUQgVHJ1c3RlZCBDZXJ0aWZpY2F0ZSBTZXJ2aWNlMR8wHQYDVQQDExZIeWRy YW50SUQgU2VydmVyIENBIE8xMB4XDTI0MDEwMjEzNTE1NFoXDTI1MDEzMTEzNTA1 NFowgZMxCzAJBgNVBAYTAlVTMR0wGwYDVQQIExREaXN0cmljdCBvZiBDb2x1bWJp YTETMBEGA1UEBxMKV2FzaGluZ3RvbjEzMDEGA1UEChMqVVMgRGVwYXJ0bWVudCBv ZiBIZWFsdGggYW5kIEh1bWFuIFNlcnZpY2VzMRswGQYDVQQDExJnaHNzdnItc3Rn Lmhocy5nb3YwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDhYPE+f9tD nO1gn+bbG08mZj4muqvVm9azIK4rXL8jjLeIrn3Ma5cuwjoPPYydoQM6Ii6FqFXn DSBOyKoh2ppvc0xRumh2r5R8Bm9cdeK6fr4iwRu9FR4A1J7JIVS7SA+46Rpaw24o h3hDQqk4smH2Gap1tOabD3hFe3e+iacse8OwvPE/5VptAdX1zU/s33tqciUoUjfy rd/9K1OiNEl7R1Cbuz4rwlFzspPYjFC0/gVRlN5LQgXOhQxXY0iLQF5bgY2tEL7I JJSgOIenwjS0hHvl3Z3hIX4j8Ot4Jx6bhUJwZpFFgTGoJYTe7TPZNC8JQMbOsIMJ imPSlbMPjYREl5zEwSLjiiuSw23+vXPP38KelqsAvkSHZuqXPiRfL8VRGjvr8HnR DY9FnGbmy7L8hDrOCI7HzgyS5w23qT3p305DFhrdaWI1yQL1i1VOvDBH9Z/Bv7NI eO6ZnwA6GZzj2P06fQYzuQJQzKnCBrAJBEZAYbdOgRIVtNfl64mKwVEgPupGqhDK G8QOiTulktugJFvsnG4p4XO3RW86K61J+UBRpN4pCw/njw56etoWn+nPKfQKRDQl yDHdjf1tsewI/9zNgGtvnfqkJYl7tEQCQhJHrZR8phRNkxJhXxRrEXV6GbLnanJr bG88R+ocyfncF8mY31J3MDzBo1F9guxa0QIDAQABo4IDHjCCAxowDgYDVR0PAQH/ BAQDAgWgMIGFBggrBgEFBQcBAQR5MHcwMAYIKwYBBQUHMAGGJGh0dHA6Ly9jb21t ZXJjaWFsLm9jc3AuaWRlbnRydXN0LmNvbTBDBggrBgEFBQcwAoY3aHR0cDovL3Zh bGlkYXRpb24uaWRlbnRydXN0LmNvbS9jZXJ0cy9oeWRyYW50aWRjYU8xLnA3YzAf BgNVHSMEGDAWgBSJuJu2nu37sMa9DexnTjyjkp0t+TAhBgNVHSAEGjAYMAgGBmeB DAECAjAMBgpghkgBhvkvAAYDMEYGA1UdHwQ/MD0wO6A5oDeGNWh0dHA6Ly92YWxp ZGF0aW9uLmlkZW50cnVzdC5jb20vY3JsL2h5ZHJhbnRpZGNhbzEuY3JsMDUGA1Ud EQQuMCyCEmdoc3N2ci1zdGcuaGhzLmdvdoIWd3d3Lmdoc3N2ci1zdGcuaGhzLmdv djAdBgNVHQ4EFgQUDOV7AaHLt2mju8jo90IHX0jSMc0wHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdgBOdaMn XJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAYzKcfaFAAAEAwBHMEUCIAMa 2fvJoWvBmu0aW82VVzAL22DBWPDYiEUOJ4i89SBBAiEAxs+jnaVv4BekB6aA0s2d XY2NU7nM4Yfi7VRWERHik1MAdQDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3 zsw7CAAAAYzKcfZaAAAEAwBGMEQCIF3ziebHPzSweOivLJxfQ8Gp0HIMiPvy6UFZ lZMTB3rHAiA9qg8WPEbUvQooCKFndDBQQAmEOxIfLeNg/lSXI2nXeQB2AH1ZHhLh eCp7HGFnfF79+NCHXBSgTpWeuQMv2Q6MLnm4AAABjMpx9l0AAAQDAEcwRQIhAIi3 40sEIxjiIhJ2zc9+0gEz17CnGsIjjYMluTgm9dnAAiBYzTKvAReW7/FcTAa+J9DU keZAwzqLJO/BRc+XV8HrTDANBgkqhkiG9w0BAQsFAAOCAQEAPtThy2nd0oIsZITN M/fSGjJ4nHUA2k5ynxD4oyFl9NGFT+EJB7OgEM0a+vjUd92SLEdDzMr9SEBt8zbo 2li7UssOMbH7uxL1hTpZsObb7iZnhciiC8F/wWPlAQsDV2tTm0ozVsANjH0uAtr6 +YzePE3v252iGYOpOyM3zioGgzkig937lNmfI0ISkGXe0x3afk4vFbm5Bd3bPuny 2vGIXhLuc6ZenD/y3owNjqmIepkSKGBUWfBbt2mtUmoz0zTN98CqDxxfyaJ9wFY8 Qvx7GZ54/oTFhebcnKLYQgiwgUuzMKe91YWacJkDnpaWVv+MQmCA7+JV3VvS+LM9 fWZapw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4WDxPn/bQ5ztYJ/m2xtP JmY+Jrqr1ZvWsyCuK1y/I4y3iK59zGuXLsI6Dz2MnaEDOiIuhahV5w0gTsiqIdqa b3NMUbpodq+UfAZvXHXiun6+IsEbvRUeANSeySFUu0gPuOkaWsNuKId4Q0KpOLJh 9hmqdbTmmw94RXt3vomnLHvDsLzxP+VabQHV9c1P7N97anIlKFI38q3f/StTojRJ e0dQm7s+K8JRc7KT2IxQtP4FUZTeS0IFzoUMV2NIi0BeW4GNrRC+yCSUoDiHp8I0 tIR75d2d4SF+I/DreCcem4VCcGaRRYExqCWE3u0z2TQvCUDGzrCDCYpj0pWzD42E RJecxMEi44orksNt/r1zz9/CnparAL5Eh2bqlz4kXy/FURo76/B50Q2PRZxm5suy /IQ6zgiOx84MkucNt6k96d9OQxYa3WliNckC9YtVTrwwR/Wfwb+zSHjumZ8AOhmc 49j9On0GM7kCUMypwgawCQRGQGG3ToESFbTX5euJisFRID7qRqoQyhvEDok7pZLb oCRb7JxuKeFzt0VvOiutSflAUaTeKQsP548OenraFp/pzyn0CkQ0Jcgx3Y39bbHs CP/czYBrb536pCWJe7REAkISR62UfKYUTZMSYV8UaxF1ehmy52pya2xvPEfqHMn5 3BfJmN9SdzA8waNRfYLsWtECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 85078639603793577815569115296190322464 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IdenTrust' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HydrantID Trusted Certificate Service' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HydrantID Server CA O1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-02 13:51:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-31 13:50:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US Department of Health and Human Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ghssvr-stg.hhs.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 919464799380974723995213061849824664709883137746661096556014613091399644606822112630633562397161807214933204059688050083280410054268036371013781086888414861998257139997846815453134113954031720897138812472058918387960239796159870756119205356379719029475909246978463978621789105903879777539194487656919872255013522611526267718203576123966595131867575522083549723788571047749040504515540874333359092537199468910029004663409816207434600752621681931244730249883299618655630421166864560480094796553552949382734386910544124595598653337038571272871126880758588496956587118820793488002243592451512631734250465078522719735049453783394620046460167652846350989102679742202994907857692741667257773224533086563612482586793488709200676261394045962434455475521531028928782767540597380645627964772532996961069232712269150228047636427953113786117983081691816830807524058819964635605101158539204795349933321639854026173743213330572181791117002460189702005157315045102646408683201422149633573345197994122093377166624054083930712811301751558516887171442242911803809177308055136904396214874014981518148428286117093353256831329708750961312388546339681819897101633422034671974774364883960186995932861293253797797247018081908466845706003872985728570077502161 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://commercial.ocsp.identrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/certs/hydrantidcaO1.p7c' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 89b89bb69eedfbb0c6bd0dec674e3ca3929d2df9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113839.0.6.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (63 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/crl/hydrantidcao1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ghssvr-stg.hhs.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ghssvr-stg.hhs.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0ce57b01a1cbb769a3bbc8e8f742075f48d231cd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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