doh.immunization.doh.dc.gov
- Government of the District of Columbia -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 09:8a:ba:dd:a7:30:18:62:59:0d:f9:4c:9e:46:e1:5f was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Government of the District of Columbia
Company registration number:
Government Entity
Organization: Government of the District of Columbia
Organization unit: Office of the Chief Technology Officer
Organization: Government of the District of Columbia
Organization unit: Office of the Chief Technology Officer
State / Province:
DC
Locality: Washington
Country: US
Locality: Washington
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:8a:ba:dd:a7:30:18:62:59:0d:f9:4c:9e:46:e1:5fSerial Number (int): 12683379017894384162488630321894318431
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 06:45:1c:93:d8:ce:bd:e4:0b:6b:1c:86:ae:29:31:0a:b2:95:78:ab
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 0c:e0:57:90:70:fa:35:35:3e:42:ad:f9:eb:a4:47:14:d5:55:18:54
Fingerprint (sha256): 06:48:05:d7:e5:fd:ec:61:74:60:73:72:dd:b1:ea:7f:33:8a:f2:b3:74:2b:5f:fc:06:d0:43:5c:1f:20:f0:a2
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate doh.immunization.doh.dc.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for doh.immunization.doh.dc.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
doh.immunization.doh.dc.gov
Other certificates including the domain name dc.gov
(limited to 100 certificates)
010-DCPS-8540-01.in.dc.gov
propertyquest.dc.gov
aclprodcfmx.in.dc.gov
smarterocfo.dc.gov
seats.osse.dc.gov
thelab.dc.gov
idmswebqa.dc.gov
youthspeakout.cfsa.dc.gov
ccsea.osse.dc.gov
mpduccawarpt147.mpdc.dc.gov
enode.dc.gov
sso.dc.gov
dcraonline-rms.dcra.dc.gov
justisportal.dc.gov
tipline.oag.dc.gov
leaf.dpw.dc.gov
smtp5.dc.gov
erap.dhs.dc.gov
leaddc.dcps.dc.gov
dashboard.in.dc.gov
mail.dc.gov
selfserve.cfo.dc.gov
fpp.dc.gov
casesearch.oea.dc.gov
bwc.thelab.dc.gov
textalert.ema.dc.gov
pshcm.dc.gov
sboe.dc.gov
dc.gov
mdm.dc.gov
aspentraining.dcps.dc.gov
visitation.doc.dc.gov
os19.in.dc.gov
TA.DCSTARS.K12.DC.GOV
admin.sportswagering-stg.lottery.dc.gov
github.in.dc.gov
streetlights.dc.gov
services.dcnet.dc.gov
openbudget.dc.gov
secure.cfsa.dc.gov
ldap-k12.dc.gov
servusmdm.in.dc.gov
tunnel.mdm.dc.gov
acaprod2.dcra.dc.gov
ecourtlts.oah.dc.gov
theforum.dc.gov
aclqc.in.dc.gov
efiling.ocf.dc.gov
cson.oag.dc.gov
webapi.dcnet.dc.gov
OSPI.DCRA.DC.GOV
secure.cfsa.dc.gov
cpms.dcra.dc.gov
doh.immunization.doh.dc.gov
eplan.dcra.dc.gov
apply-myschooldctest.in.dc.gov
dc.gov
trainingtrack.hsema.dc.gov
docs.cfsa.dc.gov
mail.tdl.dc.gov
maps2.legacy.dcgis.dc.gov
intime.doc.dc.gov
locus.dmh.dc.gov
EXP-E.UC.DC.GOV
eServices.dcra.dc.gov
events.dcgis.dc.gov
ACCESSCSED.oag.dc.gov
upstream.dc.gov
grid.sccrc.dc.gov
events.dcgis.dc.gov
statehood.dc.gov
ess.dc.gov
OCTOProcessEng.dc.gov
dashboard.in.dc.gov
HEALTHCHECK.DOH.DC.GOV
microstrategy.dc.gov
handbook.dcoz.dc.gov
dc.gov
amprdweb.dc.gov
disb.dc.gov
ESNA01.in.dc.gov
*.dlcp.dc.gov
opendata.dc.gov
qap.osse.dc.gov
studyabroad.dcps.dc.gov
itremote.dc.gov
app.cab.dc.gov
rivacarss.in.dc.gov
mealapps.dcps.dc.gov
vpndc.dc.gov
api.qa.311.dc.gov
signon.dev.dc.gov
dda.dc.gov
data.osse.dc.gov
forms.joinmpd.dc.gov
orchard.osse.dc.gov
app.dcoz.dc.gov
dcpaidfamilyleave.dc.gov
sauth.dc.gov
*.dcas.dc.gov
propertyquest.dc.gov
aclprodcfmx.in.dc.gov
smarterocfo.dc.gov
seats.osse.dc.gov
thelab.dc.gov
idmswebqa.dc.gov
youthspeakout.cfsa.dc.gov
ccsea.osse.dc.gov
mpduccawarpt147.mpdc.dc.gov
enode.dc.gov
sso.dc.gov
dcraonline-rms.dcra.dc.gov
justisportal.dc.gov
tipline.oag.dc.gov
leaf.dpw.dc.gov
smtp5.dc.gov
erap.dhs.dc.gov
leaddc.dcps.dc.gov
dashboard.in.dc.gov
mail.dc.gov
selfserve.cfo.dc.gov
fpp.dc.gov
casesearch.oea.dc.gov
bwc.thelab.dc.gov
textalert.ema.dc.gov
pshcm.dc.gov
sboe.dc.gov
dc.gov
mdm.dc.gov
aspentraining.dcps.dc.gov
visitation.doc.dc.gov
os19.in.dc.gov
TA.DCSTARS.K12.DC.GOV
admin.sportswagering-stg.lottery.dc.gov
github.in.dc.gov
streetlights.dc.gov
services.dcnet.dc.gov
openbudget.dc.gov
secure.cfsa.dc.gov
ldap-k12.dc.gov
servusmdm.in.dc.gov
tunnel.mdm.dc.gov
acaprod2.dcra.dc.gov
ecourtlts.oah.dc.gov
theforum.dc.gov
aclqc.in.dc.gov
efiling.ocf.dc.gov
cson.oag.dc.gov
webapi.dcnet.dc.gov
OSPI.DCRA.DC.GOV
secure.cfsa.dc.gov
cpms.dcra.dc.gov
doh.immunization.doh.dc.gov
eplan.dcra.dc.gov
apply-myschooldctest.in.dc.gov
dc.gov
trainingtrack.hsema.dc.gov
docs.cfsa.dc.gov
mail.tdl.dc.gov
maps2.legacy.dcgis.dc.gov
intime.doc.dc.gov
locus.dmh.dc.gov
EXP-E.UC.DC.GOV
eServices.dcra.dc.gov
events.dcgis.dc.gov
ACCESSCSED.oag.dc.gov
upstream.dc.gov
grid.sccrc.dc.gov
events.dcgis.dc.gov
statehood.dc.gov
ess.dc.gov
OCTOProcessEng.dc.gov
dashboard.in.dc.gov
HEALTHCHECK.DOH.DC.GOV
microstrategy.dc.gov
handbook.dcoz.dc.gov
dc.gov
amprdweb.dc.gov
disb.dc.gov
ESNA01.in.dc.gov
*.dlcp.dc.gov
opendata.dc.gov
qap.osse.dc.gov
studyabroad.dcps.dc.gov
itremote.dc.gov
app.cab.dc.gov
rivacarss.in.dc.gov
mealapps.dcps.dc.gov
vpndc.dc.gov
api.qa.311.dc.gov
signon.dev.dc.gov
dda.dc.gov
data.osse.dc.gov
forms.joinmpd.dc.gov
orchard.osse.dc.gov
app.dcoz.dc.gov
dcpaidfamilyleave.dc.gov
sauth.dc.gov
*.dcas.dc.gov
Certificate
The complete raw certificate details for doh.immunization.doh.dc.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFDCCBPygAwIBAgIQCYq63acwGGJZDflMnkbhXzANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE3MDgyOTAwMDAwMFoXDTE5MDkwMzEy MDAwMFowggEEMRowGAYDVQQPDBFHb3Zlcm5tZW50IEVudGl0eTETMBEGCysGAQQB gjc8AgEDEwJVUzEaMBgGA1UEBRMRR292ZXJubWVudCBFbnRpdHkxCzAJBgNVBAYT AlVTMQswCQYDVQQIEwJEQzETMBEGA1UEBxMKV2FzaGluZ3RvbjEvMC0GA1UEChMm R292ZXJubWVudCBvZiB0aGUgRGlzdHJpY3Qgb2YgQ29sdW1iaWExLzAtBgNVBAsT Jk9mZmljZSBvZiB0aGUgQ2hpZWYgVGVjaG5vbG9neSBPZmZpY2VyMSQwIgYDVQQD Extkb2guaW1tdW5pemF0aW9uLmRvaC5kYy5nb3YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnKaczHEuSFN714/R0As6VMhn+CwvBV8KUYLEjiLe44HEG Ybp6ZyOLWqMOkQfAf1+yHepv0pCwmcgPN2L9zbqJY/TJzI05lFbJFPW7LJVUlJIG PGpcwWFS9q1YqaT0kvipy8JsDcXlY5i7wlazLgQyX/W/Qt1mZAPPDsAwuMAFJdTd xGEoWeNF2GlrjbDItTrC+tSMWI6uDwag8YiA6YV01b8Tpiz6x3Euxr7lxWvbyp7b Khr7q8HgA105ZCZFl8JdT49wCpHTKdIlsgs7OgKOf+ub7JB6CA0t+VNWqo1qbOhZ CK9IKTJRI2mBAmwzlEl3mqwmyU1aRKS64TNGUqtJAgMBAAGjggINMIICCTAfBgNV HSMEGDAWgBQ901Cl1qCt7vNKYApl0yHU+PjWDzAdBgNVHQ4EFgQUBkUck9jOveQL axyGrikxCrKVeKswJgYDVR0RBB8wHYIbZG9oLmltbXVuaXphdGlvbi5kb2guZGMu Z292MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwdQYDVR0fBG4wbDA0oDKgMIYuaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3No YTItZXYtc2VydmVyLWcyLmNybDA0oDKgMIYuaHR0cDovL2NybDQuZGlnaWNlcnQu Y29tL3NoYTItZXYtc2VydmVyLWcyLmNybDBLBgNVHSAERDBCMDcGCWCGSAGG/WwC ATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAcG BWeBDAEBMIGIBggrBgEFBQcBAQR8MHowJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTBSBggrBgEFBQcwAoZGaHR0cDovL2NhY2VydHMuZGlnaWNl cnQuY29tL0RpZ2lDZXJ0U0hBMkV4dGVuZGVkVmFsaWRhdGlvblNlcnZlckNBLmNy dDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT5NAZr0IFGoebQtcSt4etBZEDvdK7eOEV8V7E7PJA+2FvoC5rI2i8 4Y5E1swELIv2FZmX0UIu+fr1WkoyhBty4Rk4XGFVSaasMsy45BXBqvV16p8Tm7+d UWm6cg+itpI8j4UyzJmhCNi2acKJLi1819jlynRGSpsm4NkvzYU9otgDx+Ta3cID g6+CvZUFlbiASgcmMLRpoonpCr6e1VKyZdaQTx+9agTO8c7LnbyELR7sQ0hpGMje +tYB+WoVyfTvXfDdncgHZRZjwxCrhL+G7ojj8cAfa9QSLSHvIsBW1LVMvz042YVP aZBXgMtkepQNLpTT7EAm/mQq4A1RRaTt -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApymnMxxLkhTe9eP0dALO lTIZ/gsLwVfClGCxI4i3uOBxBmG6emcji1qjDpEHwH9fsh3qb9KQsJnIDzdi/c26 iWP0ycyNOZRWyRT1uyyVVJSSBjxqXMFhUvatWKmk9JL4qcvCbA3F5WOYu8JWsy4E Ml/1v0LdZmQDzw7AMLjABSXU3cRhKFnjRdhpa42wyLU6wvrUjFiOrg8GoPGIgOmF dNW/E6Ys+sdxLsa+5cVr28qe2yoa+6vB4ANdOWQmRZfCXU+PcAqR0ynSJbILOzoC jn/rm+yQeggNLflTVqqNamzoWQivSCkyUSNpgQJsM5RJd5qsJslNWkSkuuEzRlKr SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12683379017894384162488630321894318431 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-03 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government of the District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Office of the Chief Technology Officer' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'doh.immunization.doh.dc.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21102336850129425509546752274390494258605383903354276706462248706392666216776309820074909147966045370780513830047567759755115684733606418756878723621190215655644272230601358797684085407091434854919472439315495281808350582740847946896622267127095675775430023936933031105752369857625437644737620794792516265158264952651041398973034996835931842696316507326214872577812147893796531943607821875839901954748254492356435872798795989070388701389072426549758006904053670239122949894237762005797377225536903537557375399147232088873291253961051328486751295361058475749888288897667408356640775707454795556275382795748277805558601 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 06451c93d8cebde40b6b1c86ae29310ab29578ab . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'doh.immunization.doh.dc.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0053e4d019af42051a879b42d712b787ad059103bdd2bb78e115f15ec4ecf240fb616fa02e6b2368bce18e44d6cc042c8bf6159997d1422ef9faf55a4a32841b72e119385c615549a6ac32ccb8e415c1aaf575ea9f139bbf9d5169ba720fa2b6923c8f8532cc99a108d8b669c2892e2d7cd7d8e5ca74464a9b26e0d92fcd853da2d803c7e4daddc20383af82bd950595b8804a072630b469a289e90abe9ed552b265d6904f1fbd6a04cef1cecb9dbc842d1eec43486918c8defad601f96a15c9f4ef5df0dd9dc807651663c310ab84bf86ee88e3f1c01f6bd4122d21ef22c056d4b54cbf3d38d9854f69905780cb647a940d2e94d3ec4026fe642ae00d5145a4ed