pl-auth01.hhsnet.hhs.gov
- US Department of Health and Human Services -
Issued by HydrantID Server CA O1
About this certificate
This digital certificate with serial number 40:01:8d:32:6a:00:1d:58:df:8f:d1:88:1b:00:75:63 was issued on by IdenTrust.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
US Department of Health and Human Services
Organization:
US Department of Health and Human Services
State / Province:
District of Columbia
Locality: Washington
Country: US
Locality: Washington
Country: US
IdenTrust
Organization:
IdenTrust
Organization unit: HydrantID Trusted Certificate Service
Organization unit: HydrantID Trusted Certificate Service
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 40:01:8d:32:6a:00:1d:58:df:8f:d1:88:1b:00:75:63Serial Number (int): 85078647841060940921332222359504975203
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: e9:d0:6c:01:a0:7e:5d:25:7a:fa:5b:96:c4:3c:df:51:3d:82:0e:05
AuthorityKeyId: 89:b8:9b:b6:9e:ed:fb:b0:c6:bd:0d:ec:67:4e:3c:a3:92:9d:2d:f9
Fingerprint (sha1): cf:ec:3c:00:cc:27:54:e8:28:3e:62:ed:e8:4e:3d:a4:f7:4a:73:0b
Fingerprint (sha256): 04:1c:06:fd:2f:52:5d:0c:4a:ab:f9:09:06:32:52:b0:9f:94:8e:d4:48:fe:49:55:7a:1f:ba:52:95:eb:84:e0
Issuing Certificate URL: http://validation.identrust.com/certs/hydrantidcaO1.p7c
Revocation information
OCSP Server: http://commercial.ocsp.identrust.comCRL Distribution Point: http://validation.identrust.com/crl/hydrantidcao1.crl
Check the revocation status for certificate pl-auth01.hhsnet.hhs.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pl-auth01.hhsnet.hhs.gov
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pl-auth01.hhsnet.hhs.gov
Other certificates including the domain name hhs.gov
(limited to 100 certificates)
*.hhs.gov
eroom2.bardatools.hhs.gov
wecandothis.hhs.gov
ASPRTFS.HHS.GOV
data.hhs.gov
asprgis.hhs.gov
www.imp.cob.cms.hhs.gov
tips.oig.hhs.gov
ofarr.acf.hhs.gov
psr-ui.cms.hhs.gov
actmeetingserver.hhs.gov
api-tanfdata.acf.hhs.gov
www.cms.gov
asfrombapp.hhs.gov
oralhealth.thinkculturalhealth.hhs.gov
swift.cms.hhs.gov
verilog.hhs.gov
owa.hhs.gov
portal-development.icas.hhs.gov
ncvhs.hhs.gov
TFS.CMS.HHS.GOV
forms.oig.hhs.gov
PartnerPortal.oig.hhs.gov
stg-asprportal.hhs.gov
hsmp-data.aspe.hhs.gov
eclkc.ohs.acf.hhs.gov
tst-sp2019.hhs.gov
www.cms.gov
Collider-Remote.cms.hhs.gov
*.oig.hhs.gov
adc-sfbfep1.fda.gov
stg-asprportal.hhs.gov
www.hhs.gov
nccd.cdc.gov
am.cms.hhs.gov
liheappm.acf.hhs.gov
oga.hhs.gov
www.healthcare.gov
www.cdc.gov
csportal.hhs.gov
*.dcis.hhs.gov
med.cms.hhs.gov
ufmsuat.hhs.gov
hhs.gov
prod-ndms.hhs.gov
dc1-prsmapov-01.oig.hhs.gov
www.hhs.gov
procurementforecast.hhs.gov
eftv2.cms.hhs.gov
psr-ui.cms.hhs.gov
staging.hses.ohs.acf.hhs.gov
stage.occms.acf.hhs.gov
fbistrg12c.hhs.gov
liheappm.acf.hhs.gov
impool2.fda.gov
www.cdc.gov
*.aspe.hhs.gov
emportal.hhs.gov
NDACAN.ACF.HHS.GOV
*.cloud.hhs.gov
taggs.hhs.gov
mrc-cms.hhs.gov
ocsecollab.acf.hhs.gov
collaborate-acl.hhs.gov
iknowtest.hhs.gov
collaborate-acl.hhs.gov
ncsacw.acf.hhs.gov
mec.cms.hhs.gov
akamai-san15.exacttarget.com
accelerate-integration.hhs.gov
asprprofiles.hhs.gov
www.cdc.gov
www.ahrq.gov
ghssvr-stg.hhs.gov
lms.learning.hhs.gov
Collider-aut.cms.hhs.gov
gal.hhs.gov
swift.aspr.hhs.gov
usphstraining.hhs.gov
liheapch.acf.hhs.gov
test.learning.hhs.gov
itsc-sts.o365.hhs.gov
www.safetyreporting.hhs.gov
prod-phe.hhs.gov
subscriptions.cms.hhs.gov
pl-auth01.hhsnet.hhs.gov
webinar3.cms.hhs.gov
stage.liheapch.acf.hhs.gov
www.cdc.gov
accelerate-staging.hhs.gov
www.cdc.gov
learning.hhs.gov
www.hmrffasttrac.acf.hhs.gov
accelerate-server.hhs.gov
*.aspe.hhs.gov
mail.nih.gov
pecos-fpd.cms.hhs.gov
*.cfsrportal.acf.hhs.gov
cccdpcr.thinkculturalhealth.hhs.gov
dr.itas.hhs.gov
eroom2.bardatools.hhs.gov
wecandothis.hhs.gov
ASPRTFS.HHS.GOV
data.hhs.gov
asprgis.hhs.gov
www.imp.cob.cms.hhs.gov
tips.oig.hhs.gov
ofarr.acf.hhs.gov
psr-ui.cms.hhs.gov
actmeetingserver.hhs.gov
api-tanfdata.acf.hhs.gov
www.cms.gov
asfrombapp.hhs.gov
oralhealth.thinkculturalhealth.hhs.gov
swift.cms.hhs.gov
verilog.hhs.gov
owa.hhs.gov
portal-development.icas.hhs.gov
ncvhs.hhs.gov
TFS.CMS.HHS.GOV
forms.oig.hhs.gov
PartnerPortal.oig.hhs.gov
stg-asprportal.hhs.gov
hsmp-data.aspe.hhs.gov
eclkc.ohs.acf.hhs.gov
tst-sp2019.hhs.gov
www.cms.gov
Collider-Remote.cms.hhs.gov
*.oig.hhs.gov
adc-sfbfep1.fda.gov
stg-asprportal.hhs.gov
www.hhs.gov
nccd.cdc.gov
am.cms.hhs.gov
liheappm.acf.hhs.gov
oga.hhs.gov
www.healthcare.gov
www.cdc.gov
csportal.hhs.gov
*.dcis.hhs.gov
med.cms.hhs.gov
ufmsuat.hhs.gov
hhs.gov
prod-ndms.hhs.gov
dc1-prsmapov-01.oig.hhs.gov
www.hhs.gov
procurementforecast.hhs.gov
eftv2.cms.hhs.gov
psr-ui.cms.hhs.gov
staging.hses.ohs.acf.hhs.gov
stage.occms.acf.hhs.gov
fbistrg12c.hhs.gov
liheappm.acf.hhs.gov
impool2.fda.gov
www.cdc.gov
*.aspe.hhs.gov
emportal.hhs.gov
NDACAN.ACF.HHS.GOV
*.cloud.hhs.gov
taggs.hhs.gov
mrc-cms.hhs.gov
ocsecollab.acf.hhs.gov
collaborate-acl.hhs.gov
iknowtest.hhs.gov
collaborate-acl.hhs.gov
ncsacw.acf.hhs.gov
mec.cms.hhs.gov
akamai-san15.exacttarget.com
accelerate-integration.hhs.gov
asprprofiles.hhs.gov
www.cdc.gov
www.ahrq.gov
ghssvr-stg.hhs.gov
lms.learning.hhs.gov
Collider-aut.cms.hhs.gov
gal.hhs.gov
swift.aspr.hhs.gov
usphstraining.hhs.gov
liheapch.acf.hhs.gov
test.learning.hhs.gov
itsc-sts.o365.hhs.gov
www.safetyreporting.hhs.gov
prod-phe.hhs.gov
subscriptions.cms.hhs.gov
pl-auth01.hhsnet.hhs.gov
webinar3.cms.hhs.gov
stage.liheapch.acf.hhs.gov
www.cdc.gov
accelerate-staging.hhs.gov
www.cdc.gov
learning.hhs.gov
www.hmrffasttrac.acf.hhs.gov
accelerate-server.hhs.gov
*.aspe.hhs.gov
mail.nih.gov
pecos-fpd.cms.hhs.gov
*.cfsrportal.acf.hhs.gov
cccdpcr.thinkculturalhealth.hhs.gov
dr.itas.hhs.gov
Certificate
The complete raw certificate details for pl-auth01.hhsnet.hhs.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGODCCBSCgAwIBAgIQQAGNMmoAHVjfj9GIGwB1YzANBgkqhkiG9w0BAQsFADBy MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSWRlblRydXN0MS4wLAYDVQQLEyVIeWRy YW50SUQgVHJ1c3RlZCBDZXJ0aWZpY2F0ZSBTZXJ2aWNlMR8wHQYDVQQDExZIeWRy YW50SUQgU2VydmVyIENBIE8xMB4XDTI0MDEyMjE4MjM0NFoXDTI1MDIyMDE4MjI0 NFowgZkxCzAJBgNVBAYTAlVTMR0wGwYDVQQIExREaXN0cmljdCBvZiBDb2x1bWJp YTETMBEGA1UEBxMKV2FzaGluZ3RvbjEzMDEGA1UEChMqVVMgRGVwYXJ0bWVudCBv ZiBIZWFsdGggYW5kIEh1bWFuIFNlcnZpY2VzMSEwHwYDVQQDExhwbC1hdXRoMDEu aGhzbmV0Lmhocy5nb3YwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDE WnPeAuyWd+7yeGbDjpyjyTUDKLPN5ps4okgokSgbBVT9TMdYYXHhuq3cx7OrOSGs UARUV1vebKiHbKVh6dsuMTfYz9M5eYEYo1XR3RuJ6lrqIcrYV4SW6xmP5TzQ5M1Q TvIdBTsvN/ccxNM7hKSI8lBe7eppK9UTH3tIga5JxgZ2iwF+SAsAbTRCk9xy8B3Y UyvmCy2mMW1AMYfb1sQL0Vxdnc69vuGCrSX6fAra7ogagA1gs/l7yX0Kj4+N/Oim vElaHKQRPRO7Fc4ODu2MoiIpgjP9NQGHThaZxPcsuQDECJwJuCQ4O0IjKHnNzW4b jtFLDldP8t7Gl6QU+o6C31rAhKfV4suybz1H1000rPg0JOkKAr2wXtMmaYmu9vM1 ZFFhPmOz5M58tfJFUiHHm5ImzE52CP74c/Ziu1f1Tt8l1akbtATdHqnjS11wdKUf gdu393LNFKKFDI1fdIrLSsXJgSDnCI6TyRb9nLcdQl0Y5rBh6Tm9QTKJWIkk8wPi aj/F0VkIcDD0f5UdmyK461c0Xo8dtaaE18dJsMXpoys9yPhtUywm4F298pQDI5/c 6667UuRTs7Q3WrnF2aagnsVzXMPWhMELHZeIevg2tBGUUOcrq3ytUzJH4dLaAGHq x2Uwc0VQKPs3NqMx4LZkxFZnLJTk3cfQQpjLJ5mXpwIDAQABo4IBoDCCAZwwDgYD VR0PAQH/BAQDAgWgMIGFBggrBgEFBQcBAQR5MHcwMAYIKwYBBQUHMAGGJGh0dHA6 Ly9jb21tZXJjaWFsLm9jc3AuaWRlbnRydXN0LmNvbTBDBggrBgEFBQcwAoY3aHR0 cDovL3ZhbGlkYXRpb24uaWRlbnRydXN0LmNvbS9jZXJ0cy9oeWRyYW50aWRjYU8x LnA3YzAfBgNVHSMEGDAWgBSJuJu2nu37sMa9DexnTjyjkp0t+TAhBgNVHSAEGjAY MAgGBmeBDAECAjAMBgpghkgBhvkvAAYDMEYGA1UdHwQ/MD0wO6A5oDeGNWh0dHA6 Ly92YWxpZGF0aW9uLmlkZW50cnVzdC5jb20vY3JsL2h5ZHJhbnRpZGNhbzEuY3Js MCMGA1UdEQQcMBqCGHBsLWF1dGgwMS5oaHNuZXQuaGhzLmdvdjAdBgNVHQ4EFgQU 6dBsAaB+XSV6+luWxDzfUT2CDgUwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCNnYre wYF/wn6sbzo6+ALXUG0K+dxSePUrNn9hdcvz/pv/iyH6KtUfCLUR923RA3Hd86Hj CalqHmN+o1SibXzqS/X618/QQ4gUL/eNZR3toVeqiJa4hr7AP/fg3/xEkJ/+0Pl1 krLn2yhvMMfMzxXHpSW6MLBZSF7MKEI6UlOPDVllR+kcCfzvYMPoMZQvtDkxu+Dg Cv2d+7RgVp4dnUKpU6JsYGJydJo5Hc1e6tNmYbnmuAmpVC8ygTjUZ3hRKJ8JHhFK VWHrAza8PkGArkn+OVvATHdnzlvDHXY4LHoxBN8rwj+6VMUVD69njiNTEmrUiGV1 MbZeVTxwX090znrh -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxFpz3gLslnfu8nhmw46c o8k1AyizzeabOKJIKJEoGwVU/UzHWGFx4bqt3MezqzkhrFAEVFdb3myoh2ylYenb LjE32M/TOXmBGKNV0d0biepa6iHK2FeElusZj+U80OTNUE7yHQU7Lzf3HMTTO4Sk iPJQXu3qaSvVEx97SIGuScYGdosBfkgLAG00QpPccvAd2FMr5gstpjFtQDGH29bE C9FcXZ3Ovb7hgq0l+nwK2u6IGoANYLP5e8l9Co+PjfzoprxJWhykET0TuxXODg7t jKIiKYIz/TUBh04WmcT3LLkAxAicCbgkODtCIyh5zc1uG47RSw5XT/LexpekFPqO gt9awISn1eLLsm89R9dNNKz4NCTpCgK9sF7TJmmJrvbzNWRRYT5js+TOfLXyRVIh x5uSJsxOdgj++HP2YrtX9U7fJdWpG7QE3R6p40tdcHSlH4Hbt/dyzRSihQyNX3SK y0rFyYEg5wiOk8kW/Zy3HUJdGOawYek5vUEyiViJJPMD4mo/xdFZCHAw9H+VHZsi uOtXNF6PHbWmhNfHSbDF6aMrPcj4bVMsJuBdvfKUAyOf3Ouuu1LkU7O0N1q5xdmm oJ7Fc1zD1oTBCx2XiHr4NrQRlFDnK6t8rVMyR+HS2gBh6sdlMHNFUCj7NzajMeC2 ZMRWZyyU5N3H0EKYyyeZl6cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 85078647841060940921332222359504975203 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IdenTrust' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HydrantID Trusted Certificate Service' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HydrantID Server CA O1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-22 18:23:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-20 18:22:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US Department of Health and Human Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pl-auth01.hhsnet.hhs.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 801051699984431722217440256386850180564772170432976938390911494429607482044675112771685664969514412252740614081958043391357921828558030859244555769042441201270924685124025845680395182970133483894158976297611652529806465776780320927684105832819496426286790960802469517733082771254569245089421607990812962446572157873786948120858238342830219728496611455681018782150645379532345706717194181536083059984430440387373004357879513786874444421235689545790707357545230757554567226596685171535130990160296522068420051082836596091228526374752521545191131574825151534945266146565027387871333015345793650430239877563137903266750743106172806406091403499714891664860349500768145486889173186141283096109251657467454743676172975670907741337031419076815152805726862322108239709551775051257188505306253435273925805156622525890531844050299291588483660847891451483025094523192080705043008800743326903333819428984154060651512383775029495746566432310645986763438878228165261911849327164309107172697451905009190618351169040701220371729540364472252552643466644153531454467262111675504157534169893405662616482650194303247371841291080240719846730347463923855260620566877007671669962674939621536440840825519338374830456481719972244051550135685143748383853877159 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://commercial.ocsp.identrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/certs/hydrantidcaO1.p7c' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 89b89bb69eedfbb0c6bd0dec674e3ca3929d2df9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113839.0.6.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (63 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/crl/hydrantidcao1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-auth01.hhsnet.hhs.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e9d06c01a07e5d257afa5b96c43cdf513d820e05 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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