entaa.iowa.gov
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 07:50:ce:41:ae:ef:58:9f was issued on by GoDaddy.com, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=entaa.iowa.gov,OU=Domain Control Validated
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:50:ce:41:ae:ef:58:9fSerial Number (int): 527147937905465503
Serial Number lenght: 59 bits, 8 octets
SubjectKeyId: 3b:f4:27:9d:f1:ab:5d:74:6c:49:8c:20:e6:94:95:e7:35:16:9e:a5
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 77:ea:34:0c:01:3d:c7:71:e5:44:3e:ed:cc:01:a7:e4:3d:67:e2:af
Fingerprint (sha256): 06:ef:dc:05:7c:70:61:c4:f5:f2:d2:4f:0c:19:a3:e3:81:dc:d9:fe:bc:cd:70:d3:43:49:74:12:30:3f:cd:a0
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-811.crl
Check the revocation status for certificate entaa.iowa.gov
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for entaa.iowa.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
entaa.iowa.gov
www.entaa.iowa.gov
www.entaa.iowa.gov
Other certificates including the domain name iowa.gov
(limited to 100 certificates)
pottawattamiecounty.iowa.gov
mitchellcountyelections.iowa.gov
pocahontascountyiowa.gov
www.greenecounty.iowa.gov
earlychildhood.iowa.gov
ssl7.revizesites.com
elections101.iowa.gov
ssl8.revizesites.com
idacounty.iowa.gov
iris.iowa.gov
iowa.gov
www.cedarcounty.iowa.gov
incapsula.com
hsemdpreparedness.iowa.gov
pagecounty.iowa.gov
dhs.iowa.gov
delawarecounty.iowa.gov
harrisoncounty.iowa.gov
ssl3.revizesites.com
www.floodrisk.iowa.gov
fs.wdm.iowa.gov
ssl3.revizesites.com
login.iowa.gov
etranscript.iowa.gov
incapsula.com
incapsula.com
www.crawfordcounty.iowa.gov
norwalk.iowa.gov
incapsula.com
ileatraining.iowa.gov
incapsula.com
forms.cabarruscounty.us
dia.iowa.gov
clarkecountyiowa.org
san-f2.granicusgovaccess.net
ltgovernor.iowa.gov
hd.alborgdx.com
vaapp.iowa.gov
claycounty.iowa.gov
incapsula.com
ssl8.revizesites.com
www.wapellocounty.iowa.gov
googlehelp.iowa.gov
va.iowa.gov
lucascountyelections.iowa.gov
ssl8.revizesites.com
commerce.iowa.gov
www.idr.iowa.gov
filings.iowa.gov
incapsula.com
ssl3.revizesites.com
www.plb.iowa.gov
incapsula.com
datapro.plb.iowa.gov
incapsula.com
crawfordcounty.iowa.gov
ltgovernor.iowa.gov
efs.iowa.gov
www.muscatinecountyiowa.gov
monroecounty.iowa.gov
incapsula.com
howardcounty.iowa.gov
idol.iowa.gov
ssl8.revizesites.com
fayettecounty.iowa.gov
vaapp.iowa.gov
yourlifeiowa.org
incapsula.com
www.admissions.iastate.edu
entaa.iowa.gov
www.pocahontas-county.com
yourlifeiowa.com
train-qa.iowa.gov
incapsula.com
claycounty.iowa.gov
incapsula.com
mail.norwalk.iowa.gov
incapsula.com
*.iowa.gov
incapsula.com
city-budget-explorer.iowa.gov
earlychildhood.iowa.gov
terracehill.iowa.gov
madisoncounty.iowa.gov
vpn2.iowa.gov
ssl7.revizesites.com
incapsula.com
san-d2.granicusgovaccess.net
emmetcounty.iowa.gov
ssl7.revizesites.com
incapsula.com
butlercoiowa.org
incapsula.com
guestaccess.iwd.iowa.gov
iowanewbornscreening.iowa.gov
ssl1.revizesites.com
dia.iowa.gov
san-e2.granicusgovaccess.net
desktop.iwd.iowa.gov
san-f2.granicusgovaccess.net
mitchellcountyelections.iowa.gov
pocahontascountyiowa.gov
www.greenecounty.iowa.gov
earlychildhood.iowa.gov
ssl7.revizesites.com
elections101.iowa.gov
ssl8.revizesites.com
idacounty.iowa.gov
iris.iowa.gov
iowa.gov
www.cedarcounty.iowa.gov
incapsula.com
hsemdpreparedness.iowa.gov
pagecounty.iowa.gov
dhs.iowa.gov
delawarecounty.iowa.gov
harrisoncounty.iowa.gov
ssl3.revizesites.com
www.floodrisk.iowa.gov
fs.wdm.iowa.gov
ssl3.revizesites.com
login.iowa.gov
etranscript.iowa.gov
incapsula.com
incapsula.com
www.crawfordcounty.iowa.gov
norwalk.iowa.gov
incapsula.com
ileatraining.iowa.gov
incapsula.com
forms.cabarruscounty.us
dia.iowa.gov
clarkecountyiowa.org
san-f2.granicusgovaccess.net
ltgovernor.iowa.gov
hd.alborgdx.com
vaapp.iowa.gov
claycounty.iowa.gov
incapsula.com
ssl8.revizesites.com
www.wapellocounty.iowa.gov
googlehelp.iowa.gov
va.iowa.gov
lucascountyelections.iowa.gov
ssl8.revizesites.com
commerce.iowa.gov
www.idr.iowa.gov
filings.iowa.gov
incapsula.com
ssl3.revizesites.com
www.plb.iowa.gov
incapsula.com
datapro.plb.iowa.gov
incapsula.com
crawfordcounty.iowa.gov
ltgovernor.iowa.gov
efs.iowa.gov
www.muscatinecountyiowa.gov
monroecounty.iowa.gov
incapsula.com
howardcounty.iowa.gov
idol.iowa.gov
ssl8.revizesites.com
fayettecounty.iowa.gov
vaapp.iowa.gov
yourlifeiowa.org
incapsula.com
www.admissions.iastate.edu
entaa.iowa.gov
www.pocahontas-county.com
yourlifeiowa.com
train-qa.iowa.gov
incapsula.com
claycounty.iowa.gov
incapsula.com
mail.norwalk.iowa.gov
incapsula.com
*.iowa.gov
incapsula.com
city-budget-explorer.iowa.gov
earlychildhood.iowa.gov
terracehill.iowa.gov
madisoncounty.iowa.gov
vpn2.iowa.gov
ssl7.revizesites.com
incapsula.com
san-d2.granicusgovaccess.net
emmetcounty.iowa.gov
ssl7.revizesites.com
incapsula.com
butlercoiowa.org
incapsula.com
guestaccess.iwd.iowa.gov
iowanewbornscreening.iowa.gov
ssl1.revizesites.com
dia.iowa.gov
san-e2.granicusgovaccess.net
desktop.iwd.iowa.gov
san-f2.granicusgovaccess.net
Certificate
The complete raw certificate details for entaa.iowa.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIIB1DOQa7vWJ8wDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMTgwMjI2MjIxODAyWhcN MjAwMjI2MjIxODAyWjA8MSEwHwYDVQQLExhEb21haW4gQ29udHJvbCBWYWxpZGF0 ZWQxFzAVBgNVBAMTDmVudGFhLmlvd2EuZ292MIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEArfSyN6Z+Yc68K89o0ghXnQnwYUy20uAanE0QCzWta9dZvESZ 1QtQW8Scb7cl+sz6c5QG12/lHb8puGRU6fzYs6LvJ1SWwnk09ea9NXJo79MacvP5 ZvdHHPrEXdombfrAArpoH47CWkztre15jZao6qYBnzopQl/+tookSTrNdJ8HtxWB Ey14oPeTgFNAQPtGpjKTEOxPhJVu0onCXo3vPTKfVFSEoM7Vo9vj8EPNWyJDdVns NfV6WdEBFWs5GfANFR9ntbQ5jnranQXzKwdXPWGKZnFng/5p3v+8oDbjKesTDVgR jNDhj3StxvB8f73XcFVDEDvXi3mALwXHJkx5ewIDAQABo4IBwDCCAbwwDAYDVR0T AQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/ BAQDAgWgMDcGA1UdHwQwMC4wLKAqoCiGJmh0dHA6Ly9jcmwuZ29kYWRkeS5jb20v Z2RpZzJzMS04MTEuY3JsMF0GA1UdIARWMFQwSAYLYIZIAYb9bQEHFwEwOTA3Bggr BgEFBQcCARYraHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0 b3J5LzAIBgZngQwBAgEwdgYIKwYBBQUHAQEEajBoMCQGCCsGAQUFBzABhhhodHRw Oi8vb2NzcC5nb2RhZGR5LmNvbS8wQAYIKwYBBQUHMAKGNGh0dHA6Ly9jZXJ0aWZp Y2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS9nZGlnMi5jcnQwHwYDVR0jBBgw FoAUQMK9J47MNIMwojPX+2yz8LQsgM4wLQYDVR0RBCYwJIIOZW50YWEuaW93YS5n b3aCEnd3dy5lbnRhYS5pb3dhLmdvdjAdBgNVHQ4EFgQUO/QnnfGrXXRsSYwg5pSV 5zUWnqUwDQYJKoZIhvcNAQELBQADggEBAH/s+G/XggIA+zSiXqMSGoRITa+zimcU CJiznMDA4nUKAget/X3zYh0n8iOMLZLhRHjGEHZ8YcwQjCN4WQj4PE2m5ah+eCda v3dJ0XsyLF9lGeNseqJKL9XJRSextQu/hkog1tuamYvjdcdfVsuQRZznOJlZfN+f YCWRtbtTh4y/hEX9rPcDMki75yRQ+Q2rkXXfaPP+ShHkh2TtXd6Z61oxleWfz/GO FNtckXTX5nu/eSrRMSsb9xce1RB58etS1A04hGNfDGTjeFi98aitzBEwVWJ14csJ agCFIN8vP2wj3yb2v2fxT1h22FqZyiE2zV1GsHdWLVLB0nYl5XjKdsU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfSyN6Z+Yc68K89o0ghX nQnwYUy20uAanE0QCzWta9dZvESZ1QtQW8Scb7cl+sz6c5QG12/lHb8puGRU6fzY s6LvJ1SWwnk09ea9NXJo79MacvP5ZvdHHPrEXdombfrAArpoH47CWkztre15jZao 6qYBnzopQl/+tookSTrNdJ8HtxWBEy14oPeTgFNAQPtGpjKTEOxPhJVu0onCXo3v PTKfVFSEoM7Vo9vj8EPNWyJDdVnsNfV6WdEBFWs5GfANFR9ntbQ5jnranQXzKwdX PWGKZnFng/5p3v+8oDbjKesTDVgRjNDhj3StxvB8f73XcFVDEDvXi3mALwXHJkx5 ewIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 527147937905465503 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-26 22:18:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-26 22:18:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'entaa.iowa.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21959890933656676706952298086850479038623881882360170669747611303394834782994927994263192799435876195037350167312357823249985319809891166729800586676315279260762657007981808184119848284244567334780663942982158209313469827200825120064865139191712688469185940847267299817520216542272424843908758612622043822302478732925467492694082127756873566448156994971573489460605647940593127956341363771054898045608678889294298910433434330841750764397625718831008364583699943734142958092004213696409649852697676066232073464272520362001906093002702735510388866864390373770790397760679590313474337604896686834830143223700041547676027 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-811.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'entaa.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.entaa.iowa.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3bf4279df1ab5d746c498c20e69495e735169ea5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007fecf86fd7820200fb34a25ea3121a84484dafb38a67140898b39cc0c0e2750a0207adfd7df3621d27f2238c2d92e14478c610767c61cc108c23785908f83c4da6e5a87e78275abf7749d17b322c5f6519e36c7aa24a2fd5c94527b1b50bbf864a20d6db9a998be375c75f56cb90459ce73899597cdf9f602591b5bb53878cbf8445fdacf7033248bbe72450f90dab9175df68f3fe4a11e48764ed5dde99eb5a3195e59fcff18e14db5c9174d7e67bbf792ad1312b1bf7171ed51079f1eb52d40d3884635f0c64e37858bdf1a8adcc1130556275e1cb096a008520df2f3f6c23df26f6bf67f14f5876d85a99ca2136cd5d46b077562d52c1d27625e578ca76c5