aad-mra-fed-prod.usps.gov
- United States Postal Service -
Issued by COMODO RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 29:d5:b6:b5:6d:b6:9b:1a:ba:40:7a:d1:c0:12:eb:2b was issued on by COMODO CA Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
United States Postal Service
Organization:
United States Postal Service
State / Province:
Minnesota
Country: US
Country: US
COMODO CA Limited
Organization:
COMODO CA Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 29:d5:b6:b5:6d:b6:9b:1a:ba:40:7a:d1:c0:12:eb:2bSerial Number (int): 55608012830849371789332875663914494763
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 33:d4:e2:22:79:f1:92:fd:7d:be:af:60:ba:cc:66:45:06:aa:51:7e
AuthorityKeyId: 9a:f3:2b:da:cf:ad:4f:b6:2f:bb:2a:48:48:2a:12:b7:1b:42:c1:24
Fingerprint (sha1): 7c:5b:0f:49:c5:c4:99:5b:44:c4:30:4e:f8:bf:7a:5e:2a:af:6b:cc
Fingerprint (sha256): 05:fe:eb:45:f9:7e:98:2e:ca:bf:a1:58:b4:c5:48:5e:b9:d6:dc:b3:c0:c0:15:6a:d0:52:db:69:f4:b4:c5:42
Issuing Certificate URL: http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.comodoca.comCRL Distribution Point: http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate aad-mra-fed-prod.usps.gov
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aad-mra-fed-prod.usps.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aad-mra-fed-prod.usps.gov
www.aad-mra-fed-prod.usps.gov
www.aad-mra-fed-prod.usps.gov
Other certificates including the domain name usps.gov
(limited to 100 certificates)
SAMTCATWE106.usps.gov
policynet.usps.gov
apigee-hybrid.usps.gov
samsak.usps.gov
mimail365.usps.gov
crosswalk.usps.com
epf-dev.usps.gov
tpmtrans-cat.usps.gov
lecm-dev.usps.gov
webvpn.usps.gov
ws0-ext.usps.gov
*.usps.com
pidp-cat.usps.gov
ssp.usps.gov
hce-portal.usps.gov
flosum.usps.gov
inboundcrw.usps.gov
mienrollcat.usps.gov
ereassign.usps.com
samtcavcs118.usps.gov
crosswalk-cat.usps.com
usps.gov
ribbs-dev.usps.gov
wp0-ext.usps.gov
securemail.usps.gov
myusps.gov
crosswalk-cat.usps.com
vtc.usps.gov
crosswalk-dev.usps.com
usps-cmgeus01.usps.gov
aad-ecrms-fed-dev.usps.gov
aad-mra-fed-prod.usps.gov
okta-nofda-fed.prd.usps.gov
pgp.usps.gov
ereassign.usps.com
test.vpn.usps.gov
wc0-ext.usps.gov
ivs-sign.usps.com
meetingplace4-dmz.usps.gov
splunkdmz.usps.gov
cat-amd-int.usps.gov
qliteblue.usps.gov
dbcalc-cat.usps.com
miapp.usps.gov
aad-ecrms-fed-sit.usps.gov
misspcat.usps.gov
bpvpn.usps.gov
epayroll-dev.usps.gov
eopf.usps.gov
eagnmnvcs122.usps.gov
liteblue.usps.gov
samsak-cat.usps.gov
ssp.usps.gov
eaganras.usps.gov
ssp-cat-external.usps.gov
click.go.usps.gov
caps.usps.gov
samtca-ns-b2b.usps.gov
aad-ecrms-fed-sit.usps.gov
cloud.go.usps.gov
ssp-cat.usps.gov
xsp1.ipt-eaglab.usps.gov
crosswalk.usps.com
webpmt.usps.gov
sftraining.usps.gov
akamai-san192.exacttarget.com
usps-cmg-eus-01.usps.gov
eopf.usps.gov
anchor.usps.com
gk-w-email.srvs.usps.gov
wc0-ext.usps.gov
origin-apis-cat2-sm.usps.com
www.uspspostalone.com
uspsservicenowservices.usps.gov
okta-fmis-fed.cat.usps.gov
caps-cat.usps.gov
eopf.usps.gov
ribbs-cat.usps.gov
ipt-cfg.usps.gov
qamps.usps.gov
*.usps.gov
game.usps.gov
view.go.usps.gov
inboundcrw.usps.gov
UNITED STATES POSTAL SERVICE
qamps.usps.gov
meetingplace5-dmz2.usps.gov
game.usps.gov
sm-pci-ext-ns.usps.gov
crosswalk-cat.usps.com
hrkcm-kb.usps.gov
xsp1.ipt-eaglab.usps.gov
lgis-sit.usps.gov
sakcarrier.usps.gov
policynet.usps.gov
apigee-hybrid.usps.gov
samsak.usps.gov
mimail365.usps.gov
crosswalk.usps.com
epf-dev.usps.gov
tpmtrans-cat.usps.gov
lecm-dev.usps.gov
webvpn.usps.gov
ws0-ext.usps.gov
*.usps.com
pidp-cat.usps.gov
ssp.usps.gov
hce-portal.usps.gov
flosum.usps.gov
inboundcrw.usps.gov
mienrollcat.usps.gov
ereassign.usps.com
samtcavcs118.usps.gov
crosswalk-cat.usps.com
usps.gov
ribbs-dev.usps.gov
wp0-ext.usps.gov
securemail.usps.gov
myusps.gov
crosswalk-cat.usps.com
vtc.usps.gov
crosswalk-dev.usps.com
usps-cmgeus01.usps.gov
aad-ecrms-fed-dev.usps.gov
aad-mra-fed-prod.usps.gov
okta-nofda-fed.prd.usps.gov
pgp.usps.gov
ereassign.usps.com
test.vpn.usps.gov
wc0-ext.usps.gov
ivs-sign.usps.com
meetingplace4-dmz.usps.gov
splunkdmz.usps.gov
cat-amd-int.usps.gov
qliteblue.usps.gov
dbcalc-cat.usps.com
miapp.usps.gov
aad-ecrms-fed-sit.usps.gov
misspcat.usps.gov
bpvpn.usps.gov
epayroll-dev.usps.gov
eopf.usps.gov
eagnmnvcs122.usps.gov
liteblue.usps.gov
samsak-cat.usps.gov
ssp.usps.gov
eaganras.usps.gov
ssp-cat-external.usps.gov
click.go.usps.gov
caps.usps.gov
samtca-ns-b2b.usps.gov
aad-ecrms-fed-sit.usps.gov
cloud.go.usps.gov
ssp-cat.usps.gov
xsp1.ipt-eaglab.usps.gov
crosswalk.usps.com
webpmt.usps.gov
sftraining.usps.gov
akamai-san192.exacttarget.com
usps-cmg-eus-01.usps.gov
eopf.usps.gov
anchor.usps.com
gk-w-email.srvs.usps.gov
wc0-ext.usps.gov
origin-apis-cat2-sm.usps.com
www.uspspostalone.com
uspsservicenowservices.usps.gov
okta-fmis-fed.cat.usps.gov
caps-cat.usps.gov
eopf.usps.gov
ribbs-cat.usps.gov
ipt-cfg.usps.gov
qamps.usps.gov
*.usps.gov
game.usps.gov
view.go.usps.gov
inboundcrw.usps.gov
UNITED STATES POSTAL SERVICE
qamps.usps.gov
meetingplace5-dmz2.usps.gov
game.usps.gov
sm-pci-ext-ns.usps.gov
crosswalk-cat.usps.com
hrkcm-kb.usps.gov
xsp1.ipt-eaglab.usps.gov
lgis-sit.usps.gov
sakcarrier.usps.gov
Certificate
The complete raw certificate details for aad-mra-fed-prod.usps.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHDTCCBfWgAwIBAgIQKdW2tW22mxq6QHrRwBLrKzANBgkqhkiG9w0BAQsFADCB ljELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxPDA6BgNV BAMTM0NPTU9ETyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl cnZlciBDQTAeFw0yMzA5MTUwMDAwMDBaFw0yNDA5MTQyMzU5NTlaMGwxCzAJBgNV BAYTAlVTMRIwEAYDVQQIEwlNaW5uZXNvdGExJTAjBgNVBAoTHFVuaXRlZCBTdGF0 ZXMgUG9zdGFsIFNlcnZpY2UxIjAgBgNVBAMTGWFhZC1tcmEtZmVkLXByb2QudXNw cy5nb3YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNgChvDRfGlId8 2Wwz0zIeQ7J1PSl5w5uc3I5Y4cK+f+/gU7+FafMeRmEDR0bmhDAvAI0lf8rMF0Zp zgyuWLE5sjubLDTBNBMEEG17rgC+XH8wRz2Ud43hKMO0LwvJz6a7l8aX6q6MAnKY yL3B3trqYC93GdHajbA9ThPOv1+uC9G/VHYeQX46YApC9m997hyuNMcAbvpVe0IW XLkldLLaIbkigBdDEfSUir1scAKx49m0KsmSlE0GUFG+6RxD6CdHVbj4NKfRh/9z qAxDtCrkc4H/7YnDEpLSD2SoQKo48Bndapcs11v/j8kATOm2FZBkDl2Gwfkr8k7t w1dbbJ7xAgMBAAGjggN+MIIDejAfBgNVHSMEGDAWgBSa8yvaz61Pti+7KkhIKhK3 G0LBJDAdBgNVHQ4EFgQUM9TiInnxkv19vq9gusxmRQaqUX4wDgYDVR0PAQH/BAQD AgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MEoGA1UdIARDMEEwNQYMKwYBBAGyMQECAQMEMCUwIwYIKwYBBQUHAgEWF2h0dHBz Oi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjBaBgNVHR8EUzBRME+gTaBLhklo dHRwOi8vY3JsLmNvbW9kb2NhLmNvbS9DT01PRE9SU0FPcmdhbml6YXRpb25WYWxp ZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3JsMIGLBggrBgEFBQcBAQR/MH0wVQYIKwYB BQUHMAKGSWh0dHA6Ly9jcnQuY29tb2RvY2EuY29tL0NPTU9ET1JTQU9yZ2FuaXph dGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcnQwJAYIKwYBBQUHMAGGGGh0 dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTBDBgNVHREEPDA6ghlhYWQtbXJhLWZlZC1w cm9kLnVzcHMuZ292gh13d3cuYWFkLW1yYS1mZWQtcHJvZC51c3BzLmdvdjCCAX4G CisGAQQB1nkCBAIEggFuBIIBagFoAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhC Cp/mZ0xaOnQAAAGKmT/qOgAABAMARzBFAiB2bSEspOaFuIAZO/Ui5ctlMDyi8mwS Og1ixxR1c6OI9gIhAIH6wppmw6y1PjSq05mm7kPaEBF06Ycs2aWNdZgkC40/AHUA 2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGKmT/qqQAABAMARjBE AiAzswQINJNpS1psFfJjeiD/RbEZAoM1B62x5q1q11o2YwIgNp5qBSVrK52g6GJ9 uMZ+5sdqvZE5Rrg8FOfMnafjNiAAdwDuzdBk1dsazsVct520zROiModGfLzs3sNR SFlGcR+1mwAAAYqZP+phAAAEAwBIMEYCIQDDh7MAZUFnbAlZ9+QYlHJtmcWuRiCa yLdmKk5A/orEBwIhAJcLdk1paNgSAP9gwjVW+IoYM/fSYw8L/j8yJJ96WMWmMA0G CSqGSIb3DQEBCwUAA4IBAQAyn+ytnHGmBYwWse2865NYZCLSmkOUvu3PoI7FnbhS 082QWnEzAdqctnyAsfqLNMomUNGyPl/NmemwNpXc3tJcBezW0q/cAHyHE3b58mpw arGnC/bBrHz4s/dNSTs30srvWU4KgH1cPlqNPL8NoZzqlLGTDnJ0bpSg7oscgTqc uO+3dHZrpOqDwWT+MfuGmjNZCVVpHderZx33WyJfYDLGo/qqTHFdllap7AhcBOHe FpMM72VwcMTn+pmvEITQbv9wKjtjkNM+ERFXLJxhmf6Osf9VfP7R2syyeXWjf+Cu U+McJiWM52QpVA/wMd0S/Cvl+APUSPjVfk2FKmJNwhus -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYAobw0XxpSHfNlsM9My HkOydT0pecObnNyOWOHCvn/v4FO/hWnzHkZhA0dG5oQwLwCNJX/KzBdGac4Mrlix ObI7myw0wTQTBBBte64Avlx/MEc9lHeN4SjDtC8Lyc+mu5fGl+qujAJymMi9wd7a 6mAvdxnR2o2wPU4Tzr9frgvRv1R2HkF+OmAKQvZvfe4crjTHAG76VXtCFly5JXSy 2iG5IoAXQxH0lIq9bHACsePZtCrJkpRNBlBRvukcQ+gnR1W4+DSn0Yf/c6gMQ7Qq 5HOB/+2JwxKS0g9kqECqOPAZ3WqXLNdb/4/JAEzpthWQZA5dhsH5K/JO7cNXW2ye 8QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 55608012830849371789332875663914494763 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'United States Postal Service' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aad-mra-fed-prod.usps.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25942049555863772943457211011977130298732332721522028112524892586469269940930027553649596020151215915245014608951903642267774480053481033624961772278282481785627800585461128443937211193024390622316868448298018092945667395957275621923231839995397139047283548976161010811085647015135236270327821099220161911228984930647046242704858548948957936995683079274673378765473495605625809182494865926386579446582058336466361975274717093118621246955216868349486404045596449518240673394671354302622820517819793389871713286492063392680805804068718390758534322889200073731614065515718981792555793449502082968296876117018611192471281 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9af32bdacfad4fb62fbb2a48482a12b71b42c124 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 33d4e22279f192fd7dbeaf60bacc664506aa517e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (127 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aad-mra-fed-prod.usps.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aad-mra-fed-prod.usps.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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