gal.hhs.gov
- US Dept of Health and Human Services -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 36:7e:ce:e9:b4:f6:0c:93:9e:fc:02:11:14:e8:07:42 was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
US Dept of Health and Human Services
Organization:
US Dept of Health and Human Services
State / Province:
Maryland
Locality: Rockville
Country: US
Locality: Rockville
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 36:7e:ce:e9:b4:f6:0c:93:9e:fc:02:11:14:e8:07:42Serial Number (int): 72436737869105820396690934465122797378
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: ba:81:2c:2b:9d:d0:17:9b:20:96:33:49:92:bc:2e:39:ae:b7:a9:ce
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): e3:66:8b:80:d7:31:5f:ea:8a:52:db:05:fa:35:2e:79:77:67:98:67
Fingerprint (sha256): 03:96:38:3d:2c:94:6f:7a:1d:37:de:f1:a4:91:05:d8:16:54:70:7e:84:48:d0:e2:7f:90:a6:d0:e3:a4:d5:17
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate gal.hhs.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gal.hhs.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gal.hhs.gov
Other certificates including the domain name hhs.gov
(limited to 100 certificates)
*.hhs.gov
eroom2.bardatools.hhs.gov
wecandothis.hhs.gov
ASPRTFS.HHS.GOV
data.hhs.gov
asprgis.hhs.gov
www.imp.cob.cms.hhs.gov
tips.oig.hhs.gov
ofarr.acf.hhs.gov
psr-ui.cms.hhs.gov
actmeetingserver.hhs.gov
api-tanfdata.acf.hhs.gov
www.cms.gov
asfrombapp.hhs.gov
swift.cms.hhs.gov
verilog.hhs.gov
owa.hhs.gov
portal-development.icas.hhs.gov
ncvhs.hhs.gov
TFS.CMS.HHS.GOV
forms.oig.hhs.gov
PartnerPortal.oig.hhs.gov
stg-asprportal.hhs.gov
hsmp-data.aspe.hhs.gov
eclkc.ohs.acf.hhs.gov
tst-sp2019.hhs.gov
www.cms.gov
Collider-Remote.cms.hhs.gov
*.oig.hhs.gov
adc-sfbfep1.fda.gov
stg-asprportal.hhs.gov
www.hhs.gov
nccd.cdc.gov
am.cms.hhs.gov
liheappm.acf.hhs.gov
oga.hhs.gov
www.healthcare.gov
www.cdc.gov
csportal.hhs.gov
*.dcis.hhs.gov
med.cms.hhs.gov
ufmsuat.hhs.gov
hhs.gov
prod-ndms.hhs.gov
dc1-prsmapov-01.oig.hhs.gov
www.hhs.gov
procurementforecast.hhs.gov
eftv2.cms.hhs.gov
psr-ui.cms.hhs.gov
staging.hses.ohs.acf.hhs.gov
stage.occms.acf.hhs.gov
fbistrg12c.hhs.gov
liheappm.acf.hhs.gov
impool2.fda.gov
www.cdc.gov
*.aspe.hhs.gov
emportal.hhs.gov
NDACAN.ACF.HHS.GOV
*.cloud.hhs.gov
taggs.hhs.gov
mrc-cms.hhs.gov
ocsecollab.acf.hhs.gov
collaborate-acl.hhs.gov
iknowtest.hhs.gov
collaborate-acl.hhs.gov
ncsacw.acf.hhs.gov
mec.cms.hhs.gov
akamai-san15.exacttarget.com
accelerate-integration.hhs.gov
asprprofiles.hhs.gov
www.cdc.gov
www.ahrq.gov
ghssvr-stg.hhs.gov
lms.learning.hhs.gov
Collider-aut.cms.hhs.gov
gal.hhs.gov
swift.aspr.hhs.gov
usphstraining.hhs.gov
liheapch.acf.hhs.gov
itsc-sts.o365.hhs.gov
www.safetyreporting.hhs.gov
prod-phe.hhs.gov
subscriptions.cms.hhs.gov
pl-auth01.hhsnet.hhs.gov
webinar3.cms.hhs.gov
stage.liheapch.acf.hhs.gov
www.cdc.gov
accelerate-staging.hhs.gov
www.cdc.gov
learning.hhs.gov
www.hmrffasttrac.acf.hhs.gov
accelerate-server.hhs.gov
*.aspe.hhs.gov
mail.nih.gov
pecos-fpd.cms.hhs.gov
*.cfsrportal.acf.hhs.gov
cccdpcr.thinkculturalhealth.hhs.gov
dr.itas.hhs.gov
MRC-STAGE.HHS.GOV
pecosai.cms.hhs.gov
eroom2.bardatools.hhs.gov
wecandothis.hhs.gov
ASPRTFS.HHS.GOV
data.hhs.gov
asprgis.hhs.gov
www.imp.cob.cms.hhs.gov
tips.oig.hhs.gov
ofarr.acf.hhs.gov
psr-ui.cms.hhs.gov
actmeetingserver.hhs.gov
api-tanfdata.acf.hhs.gov
www.cms.gov
asfrombapp.hhs.gov
swift.cms.hhs.gov
verilog.hhs.gov
owa.hhs.gov
portal-development.icas.hhs.gov
ncvhs.hhs.gov
TFS.CMS.HHS.GOV
forms.oig.hhs.gov
PartnerPortal.oig.hhs.gov
stg-asprportal.hhs.gov
hsmp-data.aspe.hhs.gov
eclkc.ohs.acf.hhs.gov
tst-sp2019.hhs.gov
www.cms.gov
Collider-Remote.cms.hhs.gov
*.oig.hhs.gov
adc-sfbfep1.fda.gov
stg-asprportal.hhs.gov
www.hhs.gov
nccd.cdc.gov
am.cms.hhs.gov
liheappm.acf.hhs.gov
oga.hhs.gov
www.healthcare.gov
www.cdc.gov
csportal.hhs.gov
*.dcis.hhs.gov
med.cms.hhs.gov
ufmsuat.hhs.gov
hhs.gov
prod-ndms.hhs.gov
dc1-prsmapov-01.oig.hhs.gov
www.hhs.gov
procurementforecast.hhs.gov
eftv2.cms.hhs.gov
psr-ui.cms.hhs.gov
staging.hses.ohs.acf.hhs.gov
stage.occms.acf.hhs.gov
fbistrg12c.hhs.gov
liheappm.acf.hhs.gov
impool2.fda.gov
www.cdc.gov
*.aspe.hhs.gov
emportal.hhs.gov
NDACAN.ACF.HHS.GOV
*.cloud.hhs.gov
taggs.hhs.gov
mrc-cms.hhs.gov
ocsecollab.acf.hhs.gov
collaborate-acl.hhs.gov
iknowtest.hhs.gov
collaborate-acl.hhs.gov
ncsacw.acf.hhs.gov
mec.cms.hhs.gov
akamai-san15.exacttarget.com
accelerate-integration.hhs.gov
asprprofiles.hhs.gov
www.cdc.gov
www.ahrq.gov
ghssvr-stg.hhs.gov
lms.learning.hhs.gov
Collider-aut.cms.hhs.gov
gal.hhs.gov
swift.aspr.hhs.gov
usphstraining.hhs.gov
liheapch.acf.hhs.gov
itsc-sts.o365.hhs.gov
www.safetyreporting.hhs.gov
prod-phe.hhs.gov
subscriptions.cms.hhs.gov
pl-auth01.hhsnet.hhs.gov
webinar3.cms.hhs.gov
stage.liheapch.acf.hhs.gov
www.cdc.gov
accelerate-staging.hhs.gov
www.cdc.gov
learning.hhs.gov
www.hmrffasttrac.acf.hhs.gov
accelerate-server.hhs.gov
*.aspe.hhs.gov
mail.nih.gov
pecos-fpd.cms.hhs.gov
*.cfsrportal.acf.hhs.gov
cccdpcr.thinkculturalhealth.hhs.gov
dr.itas.hhs.gov
MRC-STAGE.HHS.GOV
pecosai.cms.hhs.gov
Certificate
The complete raw certificate details for gal.hhs.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGyjCCBbKgAwIBAgIQNn7O6bT2DJOe/AIRFOgHQjANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y MjA2MjMxMzU5MzRaFw0yMzA2MzAxMzU5MzRaMHkxCzAJBgNVBAYTAlVTMREwDwYD VQQIEwhNYXJ5bGFuZDESMBAGA1UEBxMJUm9ja3ZpbGxlMS0wKwYDVQQKEyRVUyBE ZXB0IG9mIEhlYWx0aCBhbmQgSHVtYW4gU2VydmljZXMxFDASBgNVBAMTC2dhbC5o aHMuZ292MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5jro/LM8E4r cSTC4IcmQj+pIYoi5btAmbTTgmxMZk8HWjJnmhpOjvFUOHjjnYIqxAwjdov/QAaN 3oL+NuoSI2ia1EU/dU/UI2DPZGRJTx0YBgzfUuPT2T26PKyxzB0RAAIm5qCs4jWt liT+DE7GNWQRQy1/kfc61Xq6BTwmpPBm/Rkjfap+UTlA7aHXa7szkgZLqC7ftRq9 5lyJZ3EHb2zwuQvGMOicsJNUHt4nBJXOs5PCQMVyyV1vIv2/o8v6xgMAftD88Qm7 gfYQ3ZJUK+t34iCatTTGAIoKd8YQ0Gl1zI06kOPTxprDdL0DwLqu63d7v81DZafV Yh1b5fSy3QIDAQABo4IDCjCCAwYwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUuoEs K53QF5sgljNJkrwuOa63qc4wHwYDVR0jBBgwFoAUgqJwdN28Uz/Pe9T3zX+nYMYK TL8waAYIKwYBBQUHAQEEXDBaMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRy dXN0Lm5ldDAzBggrBgEFBQcwAoYnaHR0cDovL2FpYS5lbnRydXN0Lm5ldC9sMWst Y2hhaW4yNTYuY2VyMDMGA1UdHwQsMCowKKAmoCSGImh0dHA6Ly9jcmwuZW50cnVz dC5uZXQvbGV2ZWwxay5jcmwwFgYDVR0RBA8wDYILZ2FsLmhocy5nb3YwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBMBgNVHSAE RTBDMDcGCmCGSAGG+mwKAQUwKTAnBggrBgEFBQcCARYbaHR0cHM6Ly93d3cuZW50 cnVzdC5uZXQvcnBhMAgGBmeBDAECAjCCAYAGCisGAQQB1nkCBAIEggFwBIIBbAFq AHcArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWGNOvcgooAAAGBkNxvXwAABAMA SDBGAiEA5PyE223fa70qLiDKynv+dWKt1dXaYBUPbrHf4yA/60ECIQCb3ybaJNyD I1tuY7fEBO9H5oc5fcp1T+TOGLxLSNqtGQB2ALNzdwfhhFD4Y4bWBancEQlKeS2x ZwwLh9zwAw55NqWaAAABgZDcb5oAAAQDAEcwRQIgWzMCaJr0Qyx3LMmyucxPulul l6UWoFDjBQ5e150CC/8CIQDSGLA0fjhfGoEHsyb9ay46pXJFWBArujv+M/fFA6Y+ 9AB3ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABgZDcb64AAAQD AEgwRgIhANYTcKFsrUPdfIV7zVf18WG1/ukpdqy66bUJR+KZZJbMAiEA/obc9sMa IElkXf7GIxVfAKFoXnyQb5OWdglq25nJUg0wDQYJKoZIhvcNAQELBQADggEBAI9r 0Y/Weqbb/p3yDGr0lUqQY1UvqhbXkxcwRh4UXt1v01L3zfi2psL9EGgixONDF4fy PN4W2lGaq47ucZxQ3kHz+zMnDHdN8W/6j/2fCQ0BGI3Tyk6M9MS/u2Q6lLkquTiA EXdeClOi6UNkVfeBnlI0gGG1x92GcC/BRqeR2PG11mP2twGemQCcWWogJAMYQAeo jQjlXLBxPsdAlS2YBY2B0elmbe6W2NiDLbuvPHRGgVt0k8PrtMY5iy7TaWsNEF4K 1KzSUnvqHTwB5VJyp0z7/bUv/toDQ+7kjFqHtbMrVIP4ql25yf2MNQx04uUFQbeX 8x+NyH6wjwAZNUxEwZY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5jro/LM8E4rcSTC4Icm Qj+pIYoi5btAmbTTgmxMZk8HWjJnmhpOjvFUOHjjnYIqxAwjdov/QAaN3oL+NuoS I2ia1EU/dU/UI2DPZGRJTx0YBgzfUuPT2T26PKyxzB0RAAIm5qCs4jWtliT+DE7G NWQRQy1/kfc61Xq6BTwmpPBm/Rkjfap+UTlA7aHXa7szkgZLqC7ftRq95lyJZ3EH b2zwuQvGMOicsJNUHt4nBJXOs5PCQMVyyV1vIv2/o8v6xgMAftD88Qm7gfYQ3ZJU K+t34iCatTTGAIoKd8YQ0Gl1zI06kOPTxprDdL0DwLqu63d7v81DZafVYh1b5fSy 3QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 72436737869105820396690934465122797378 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-23 13:59:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-30 13:59:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rockville' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US Dept of Health and Human Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gal.hhs.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20652251603914806451177896112791251939942442324145359824900256234965800560550325467788830192435876873313680037608739457718909842103562089975088305563489832317261928491027999216928862550767661171671375719641768988804800041138003536706999552329231386148472588134584971913686123882037153771089667055023661652654679795114384155434419399449050215330641092910328690604765187454830872114751642944410166332778790365020488109704111910549221439661945816369137830449248982153886087100638559742884984998703191509202213916961005232821004981779954045940441902429073647180693697958283414695945047793122316592814498642138942106022621 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ba812c2b9dd0179b2096334992bc2e39aeb7a9ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gal.hhs.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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