capmed.mil
- U.S. Government -
Issued by DOD ID SW CA-38
About this certificate
This digital certificate with serial number 6c:c1 was issued on by U.S. Government.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
U.S. Government
Organization:
U.S. Government
Organization unit: DoD
Organization unit: PKI
Organization unit: TMA
Organization unit: DoD
Organization unit: PKI
Organization unit: TMA
Country:
US
U.S. Government
Organization:
U.S. Government
Organization unit: DoD
Organization unit: PKI
Organization unit: DoD
Organization unit: PKI
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 6c:c1Serial Number (int): 27841
Serial Number lenght: 15 bits, 2 octets
SubjectKeyId: a5:ca:01:91:f2:19:7f:a1:29:90:f6:85:cd:01:bb:10:99:1a:a3:cc
AuthorityKeyId: 8e:c5:b9:cc:fc:ce:8e:53:b4:2a:ce:e8:11:2a:cf:9b:29:6c:67:ca
Fingerprint (sha1): 9d:83:be:77:e0:90:40:46:a0:2c:83:a5:0f:49:d9:60:87:a9:82:47
Fingerprint (sha256): 06:8e:03:53:b0:d7:c0:2d:61:28:0d:75:59:0f:84:8c:16:7a:a3:05:91:a9:4a:90:15:35:e7:a6:56:f5:7a:eb
Issuing Certificate URL: http://crl.disa.mil/sign/DODIDSWCA_38.cer
Revocation information
OCSP Server: http://ocsp.disa.milCRL Distribution Point: http://crl.disa.mil/crl/DODIDSWCA_38.crl
Check the revocation status for certificate capmed.mil
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for capmed.mil
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
capmed.mil
www.nicoe.capmed.mil
www.wrnmmc.capmed.mil
www.capmed.mil
www.fbch.capmed.mil
www.wwcc.capmed.mil
www.dthc.capmed.mil
www.nicoe.capmed.mil
www.wrnmmc.capmed.mil
www.capmed.mil
www.fbch.capmed.mil
www.wwcc.capmed.mil
www.dthc.capmed.mil
Other certificates including the domain name capmed.mil
(limited to 100 certificates)
sa.wrnmmc.capmed.mil
capmed.mil
capmed.mil
jpc.capmed.mil
jpc.capmed.mil
sa.wrnmmc.capmed.mil
www.apps.capmed.mil
www.jpc.capmed.army.mil
www.jpc.capmed.mil
www.capmed.mil
jpc.capmed.mil
jpc.capmed.mil
jpc.capmed.mil
www.apps.capmed.mil
capmed.mil
jpc.capmed.mil
www.apps.capmed.mil
jpc.capmed.mil
www.capmed.mil
www.apps.capmed.mil
capmed.mil
jpc.capmed.mil
www.apps.capmed.mil
capmed.mil
jpc.capmed.mil
jpc.capmed.mil
capmed.mil
capmed.mil
jpc.capmed.mil
jpc.capmed.mil
sa.wrnmmc.capmed.mil
www.apps.capmed.mil
www.jpc.capmed.army.mil
www.jpc.capmed.mil
www.capmed.mil
jpc.capmed.mil
jpc.capmed.mil
jpc.capmed.mil
www.apps.capmed.mil
capmed.mil
jpc.capmed.mil
www.apps.capmed.mil
jpc.capmed.mil
www.capmed.mil
www.apps.capmed.mil
capmed.mil
jpc.capmed.mil
www.apps.capmed.mil
capmed.mil
jpc.capmed.mil
jpc.capmed.mil
Certificate
The complete raw certificate details for capmed.mil in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgICbMEwDQYJKoZIhvcNAQELBQAwXTELMAkGA1UEBhMCVVMx GDAWBgNVBAoTD1UuUy4gR292ZXJubWVudDEMMAoGA1UECxMDRG9EMQwwCgYDVQQL EwNQS0kxGDAWBgNVBAMTD0RPRCBJRCBTVyBDQS0zODAeFw0xNjA3MjIxNzQzMTBa Fw0xOTA3MjMxNzQzMTBaMGYxCzAJBgNVBAYTAlVTMRgwFgYDVQQKEw9VLlMuIEdv dmVybm1lbnQxDDAKBgNVBAsTA0RvRDEMMAoGA1UECxMDUEtJMQwwCgYDVQQLEwNU TUExEzARBgNVBAMTCmNhcG1lZC5taWwwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCr33M+tSbdHV87hNqIbxnCrUYYnNjjn5KpR896M1DpNqqhwk8HbdxO vBAF70is51z0PV0d29PMIK3WMm8tl/E3ZubWSAi4xpYEWBLj5zSqIfVHcJVR31VT eXX0Zda0bW7HGWv5naNatLIcf0B5eSFBTMQVtAvgVP0vUl80Cc0ajAfLpZMbSP+7 fMQohm81MxH0rXrrkEP00/3huzsACIuVVT4Az6j3kmJn1J0vwpBk1NNNuxEbvAdg HJoyBJCLV/PhO9DHvg6ySaJxAmjtIyVdpblO3liX0c6m7qBdXPvm83PLUW6D/HqV 1LK0vm6Ckh/ghr2WnqM1kni/t3wJ/7rBAgMBAAGjggHPMIIByzAfBgNVHSMEGDAW gBSOxbnM/M6OU7QqzugRKs+bKWxnyjAdBgNVHQ4EFgQUpcoBkfIZf6EpkPaFzQG7 EJkao8wwZwYIKwYBBQUHAQEEWzBZMDUGCCsGAQUFBzAChilodHRwOi8vY3JsLmRp c2EubWlsL3NpZ24vRE9ESURTV0NBXzM4LmNlcjAgBggrBgEFBQcwAYYUaHR0cDov L29jc3AuZGlzYS5taWwwDgYDVR0PAQH/BAQDAgWgMDkGA1UdHwQyMDAwLqAsoCqG KGh0dHA6Ly9jcmwuZGlzYS5taWwvY3JsL0RPRElEU1dDQV8zOC5jcmwwgZMGA1Ud EQSBizCBiIIKY2FwbWVkLm1pbIIUd3d3Lm5pY29lLmNhcG1lZC5taWyCFXd3dy53 cm5tbWMuY2FwbWVkLm1pbIIOd3d3LmNhcG1lZC5taWyCE3d3dy5mYmNoLmNhcG1l ZC5taWyCE3d3dy53d2NjLmNhcG1lZC5taWyCE3d3dy5kdGhjLmNhcG1lZC5taWww FgYDVR0gBA8wDTALBglghkgBZQIBCycwJwYDVR0lBCAwHgYIKwYBBQUHAwEGCCsG AQUFBwMCBggrBgEFBQgCAjANBgkqhkiG9w0BAQsFAAOCAQEAM0A/9Sl+CVnzE/Kg twITeOUTLUhDSb5Si6DXd1EQ/J0LRZeUkI46R2iaOBTWDejdu38uEMAkIDvCgZ+N xuV7k6SCCMii5jj2oO8RxuqOnjHQxZ90xmCZDy7hYg1jqsltRweSMqWx3IJhXgoB /EP1cHcwkWA7xKxawIMV7Nx2r7P7ch2U44kesoItO7Nzi0az9y0rArxYyjbaegFi gadyhv++Ccymz2/Vj3bbFP61Z4fLWZJ6g74G9bEk31DXoRKLeCwuTdbbi8iRW9Zx PVQxymW9pcagR89xHNiQmZjn7RqOrTp5xwVO8KaiVvMp8fCg9ZNG/IpfBkwIqb/m Rk31AA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq99zPrUm3R1fO4TaiG8Z wq1GGJzY45+SqUfPejNQ6TaqocJPB23cTrwQBe9IrOdc9D1dHdvTzCCt1jJvLZfx N2bm1kgIuMaWBFgS4+c0qiH1R3CVUd9VU3l19GXWtG1uxxlr+Z2jWrSyHH9AeXkh QUzEFbQL4FT9L1JfNAnNGowHy6WTG0j/u3zEKIZvNTMR9K1665BD9NP94bs7AAiL lVU+AM+o95JiZ9SdL8KQZNTTTbsRG7wHYByaMgSQi1fz4TvQx74OskmicQJo7SMl XaW5Tt5Yl9HOpu6gXVz75vNzy1Fug/x6ldSytL5ugpIf4Ia9lp6jNZJ4v7d8Cf+6 wQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 27841 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOD ID SW CA-38' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-07-22 17:43:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-23 17:43:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TMA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'capmed.mil' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21696937537520845344638066948493480750700706552790628559338327841718785625015323274965525718153889096184654898742372845274648588582981545181408926697132687619125379669396083260564432025649257525109329393816413408454782769113602303792791713011489791309499271192131702112966696774514957995874141554676012905556165793642979541851538834862172848846102187244443446357645206594466698784657608271980595706697960133773023490879017900332676672006927662912478499247030022098412018231284367154955196968166860242244430734630958487886790213503794587676345115916636544905221728955350166282681531166618655231791589764511139379526337 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8ec5b9ccfcce8e53b42acee8112acf9b296c67ca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a5ca0191f2197fa12990f685cd01bb10991aa3cc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (91 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/sign/DODIDSWCA_38.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.disa.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/crl/DODIDSWCA_38.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (139 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'capmed.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nicoe.capmed.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wrnmmc.capmed.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.capmed.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fbch.capmed.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wwcc.capmed.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dthc.capmed.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.39 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.8.2.2 (iKEIntermediate) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0033403ff5297e0959f313f2a0b7021378e5132d484349be528ba0d7775110fc9d0b459794908e3a47689a3814d60de8ddbb7f2e10c024203bc2819f8dc6e57b93a48208c8a2e638f6a0ef11c6ea8e9e31d0c59f74c660990f2ee1620d63aac96d47079232a5b1dc82615e0a01fc43f570773091603bc4ac5ac08315ecdc76afb3fb721d94e3891eb2822d3bb3738b46b3f72d2b02bc58ca36da7a016281a77286ffbe09cca6cf6fd58f76db14feb56787cb59927a83be06f5b124df50d7a1128b782c2e4dd6db8bc8915bd6713d5431ca65bda5c6a047cf711cd8909998e7ed1a8ead3a79c7054ef0a6a256f329f1f0a0f59346fc8a5f064c08a9bfe6464df500