upstream.dc.gov
- Government of the District of Columbia -
Issued by DC Government SHA2 EV Intermediate CA
About this certificate
This digital certificate with serial number 05:b9:9a:e3:8f:77:8a:fd:03:17:90:5f:2a:8f:e9:1c was issued on by Government of the District of Columbia.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Government of the District of Columbia
Company registration number:
Government Entity
Organization: Government of the District of Columbia
Organization unit: Office of the Chief Technology Officer
Organization: Government of the District of Columbia
Organization unit: Office of the Chief Technology Officer
State / Province:
District of Columbia
Locality: Washington
Country: US
Locality: Washington
Country: US
Government of the District of Columbia
Organization:
Government of the District of Columbia
Organization unit: Office of the Chief Technology Officer
Organization unit: Office of the Chief Technology Officer
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:b9:9a:e3:8f:77:8a:fd:03:17:90:5f:2a:8f:e9:1cSerial Number (int): 7609856418026250501857276537460484380
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 09:47:48:2a:5c:83:f8:91:d8:25:f9:31:2e:fe:a4:73:73:e3:f9:67
AuthorityKeyId: 50:ae:28:b3:cf:fc:ed:4b:0b:46:d1:80:7e:13:09:f6:df:4b:e6:90
Fingerprint (sha1): e0:65:08:59:7a:e7:4e:48:ce:32:63:4b:35:72:2e:9a:31:14:91:62
Fingerprint (sha256): 07:01:4b:c6:29:36:e4:47:54:8e:40:21:00:c6:20:94:50:e0:5f:78:4d:7f:13:e1:ca:ae:2b:35:c6:30:e1:00
Issuing Certificate URL: http://cacerts.digicert.com/DCGovernmentSHA2EVIntermediateCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DCGovernmentSHA2EVIntermediateCA.crl
CRL Distribution Point: http://crl4.digicert.com/DCGovernmentSHA2EVIntermediateCA.crl
Check the revocation status for certificate upstream.dc.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for upstream.dc.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
upstream.dc.gov
Other certificates including the domain name dc.gov
(limited to 100 certificates)
010-DCPS-8540-01.in.dc.gov
propertyquest.dc.gov
aclprodcfmx.in.dc.gov
smarterocfo.dc.gov
seats.osse.dc.gov
thelab.dc.gov
idmswebqa.dc.gov
youthspeakout.cfsa.dc.gov
ccsea.osse.dc.gov
mpduccawarpt147.mpdc.dc.gov
enode.dc.gov
sso.dc.gov
dcraonline-rms.dcra.dc.gov
justisportal.dc.gov
tipline.oag.dc.gov
leaf.dpw.dc.gov
smtp5.dc.gov
erap.dhs.dc.gov
leaddc.dcps.dc.gov
dashboard.in.dc.gov
mail.dc.gov
selfserve.cfo.dc.gov
fpp.dc.gov
casesearch.oea.dc.gov
bwc.thelab.dc.gov
textalert.ema.dc.gov
pshcm.dc.gov
sboe.dc.gov
dc.gov
mdm.dc.gov
aspentraining.dcps.dc.gov
visitation.doc.dc.gov
os19.in.dc.gov
TA.DCSTARS.K12.DC.GOV
admin.sportswagering-stg.lottery.dc.gov
github.in.dc.gov
streetlights.dc.gov
services.dcnet.dc.gov
openbudget.dc.gov
secure.cfsa.dc.gov
ldap-k12.dc.gov
servusmdm.in.dc.gov
tunnel.mdm.dc.gov
acaprod2.dcra.dc.gov
ecourtlts.oah.dc.gov
theforum.dc.gov
aclqc.in.dc.gov
efiling.ocf.dc.gov
cson.oag.dc.gov
webapi.dcnet.dc.gov
OSPI.DCRA.DC.GOV
secure.cfsa.dc.gov
cpms.dcra.dc.gov
doh.immunization.doh.dc.gov
eplan.dcra.dc.gov
apply-myschooldctest.in.dc.gov
dc.gov
trainingtrack.hsema.dc.gov
docs.cfsa.dc.gov
mail.tdl.dc.gov
maps2.legacy.dcgis.dc.gov
intime.doc.dc.gov
locus.dmh.dc.gov
EXP-E.UC.DC.GOV
eServices.dcra.dc.gov
events.dcgis.dc.gov
ACCESSCSED.oag.dc.gov
upstream.dc.gov
grid.sccrc.dc.gov
events.dcgis.dc.gov
statehood.dc.gov
ess.dc.gov
OCTOProcessEng.dc.gov
dashboard.in.dc.gov
HEALTHCHECK.DOH.DC.GOV
microstrategy.dc.gov
handbook.dcoz.dc.gov
dc.gov
amprdweb.dc.gov
disb.dc.gov
ESNA01.in.dc.gov
*.dlcp.dc.gov
opendata.dc.gov
qap.osse.dc.gov
studyabroad.dcps.dc.gov
itremote.dc.gov
app.cab.dc.gov
rivacarss.in.dc.gov
mealapps.dcps.dc.gov
vpndc.dc.gov
api.qa.311.dc.gov
signon.dev.dc.gov
dda.dc.gov
data.osse.dc.gov
forms.joinmpd.dc.gov
orchard.osse.dc.gov
app.dcoz.dc.gov
dcpaidfamilyleave.dc.gov
sauth.dc.gov
*.dcas.dc.gov
propertyquest.dc.gov
aclprodcfmx.in.dc.gov
smarterocfo.dc.gov
seats.osse.dc.gov
thelab.dc.gov
idmswebqa.dc.gov
youthspeakout.cfsa.dc.gov
ccsea.osse.dc.gov
mpduccawarpt147.mpdc.dc.gov
enode.dc.gov
sso.dc.gov
dcraonline-rms.dcra.dc.gov
justisportal.dc.gov
tipline.oag.dc.gov
leaf.dpw.dc.gov
smtp5.dc.gov
erap.dhs.dc.gov
leaddc.dcps.dc.gov
dashboard.in.dc.gov
mail.dc.gov
selfserve.cfo.dc.gov
fpp.dc.gov
casesearch.oea.dc.gov
bwc.thelab.dc.gov
textalert.ema.dc.gov
pshcm.dc.gov
sboe.dc.gov
dc.gov
mdm.dc.gov
aspentraining.dcps.dc.gov
visitation.doc.dc.gov
os19.in.dc.gov
TA.DCSTARS.K12.DC.GOV
admin.sportswagering-stg.lottery.dc.gov
github.in.dc.gov
streetlights.dc.gov
services.dcnet.dc.gov
openbudget.dc.gov
secure.cfsa.dc.gov
ldap-k12.dc.gov
servusmdm.in.dc.gov
tunnel.mdm.dc.gov
acaprod2.dcra.dc.gov
ecourtlts.oah.dc.gov
theforum.dc.gov
aclqc.in.dc.gov
efiling.ocf.dc.gov
cson.oag.dc.gov
webapi.dcnet.dc.gov
OSPI.DCRA.DC.GOV
secure.cfsa.dc.gov
cpms.dcra.dc.gov
doh.immunization.doh.dc.gov
eplan.dcra.dc.gov
apply-myschooldctest.in.dc.gov
dc.gov
trainingtrack.hsema.dc.gov
docs.cfsa.dc.gov
mail.tdl.dc.gov
maps2.legacy.dcgis.dc.gov
intime.doc.dc.gov
locus.dmh.dc.gov
EXP-E.UC.DC.GOV
eServices.dcra.dc.gov
events.dcgis.dc.gov
ACCESSCSED.oag.dc.gov
upstream.dc.gov
grid.sccrc.dc.gov
events.dcgis.dc.gov
statehood.dc.gov
ess.dc.gov
OCTOProcessEng.dc.gov
dashboard.in.dc.gov
HEALTHCHECK.DOH.DC.GOV
microstrategy.dc.gov
handbook.dcoz.dc.gov
dc.gov
amprdweb.dc.gov
disb.dc.gov
ESNA01.in.dc.gov
*.dlcp.dc.gov
opendata.dc.gov
qap.osse.dc.gov
studyabroad.dcps.dc.gov
itremote.dc.gov
app.cab.dc.gov
rivacarss.in.dc.gov
mealapps.dcps.dc.gov
vpndc.dc.gov
api.qa.311.dc.gov
signon.dev.dc.gov
dda.dc.gov
data.osse.dc.gov
forms.joinmpd.dc.gov
orchard.osse.dc.gov
app.dcoz.dc.gov
dcpaidfamilyleave.dc.gov
sauth.dc.gov
*.dcas.dc.gov
Certificate
The complete raw certificate details for upstream.dc.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHwTCCBqmgAwIBAgIQBbma4493iv0DF5BfKo/pHDANBgkqhkiG9w0BAQsFADCB nzELMAkGA1UEBhMCVVMxLzAtBgNVBAoTJkdvdmVybm1lbnQgb2YgdGhlIERpc3Ry aWN0IG9mIENvbHVtYmlhMS8wLQYDVQQLEyZPZmZpY2Ugb2YgdGhlIENoaWVmIFRl Y2hub2xvZ3kgT2ZmaWNlcjEuMCwGA1UEAxMlREMgR292ZXJubWVudCBTSEEyIEVW IEludGVybWVkaWF0ZSBDQTAeFw0xOTA3MDEwMDAwMDBaFw0yMTA4MzAxMjAwMDBa MIIBCjEaMBgGA1UEDwwRR292ZXJubWVudCBFbnRpdHkxEzARBgsrBgEEAYI3PAIB AxMCVVMxGjAYBgNVBAUTEUdvdmVybm1lbnQgRW50aXR5MQswCQYDVQQGEwJVUzEd MBsGA1UECBMURGlzdHJpY3Qgb2YgQ29sdW1iaWExEzARBgNVBAcTCldhc2hpbmd0 b24xLzAtBgNVBAoTJkdvdmVybm1lbnQgb2YgdGhlIERpc3RyaWN0IG9mIENvbHVt YmlhMS8wLQYDVQQLEyZPZmZpY2Ugb2YgdGhlIENoaWVmIFRlY2hub2xvZ3kgT2Zm aWNlcjEYMBYGA1UEAxMPdXBzdHJlYW0uZGMuZ292MIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEA12+VFhhBzxmz+mLOkKc8XWcz2fMns85eFGXA5uUxQL2v 0LyNo/aBjT8mSEAd4iow+CB9JF+pzm0z5dUfc1YHTOtHnuTEjmiQST4m/1cRcH7B u1pxYS/c1zuvTrXMwPM3/FzaCtCxLjfizsvDjNERBo8vGPj5ZguiojUmMUav/Xg5 dMsVtQnv43nxDOW815svZGo8QsRo+vBdZBdf/NmM6Ul1fJQtP6NoCqKp9DBuF0pG dpqDOkUxWcomPeg/1mSgDr6kQv8c42NpsEeZ8ePnIy6+C2FbKPVmK9bq0Ryij3YH BckeT2VhrVCadHlibrosvW0jsFZ9jLgLYK51dfVa4QIDAQABo4IDiTCCA4UwHwYD VR0jBBgwFoAUUK4os8/87UsLRtGAfhMJ9t9L5pAwHQYDVR0OBBYEFAlHSCpcg/iR 2CX5MS7+pHNz4/lnMBoGA1UdEQQTMBGCD3Vwc3RyZWFtLmRjLmdvdjAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGVBgNVHR8E gY0wgYowQ6BBoD+GPWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EQ0dvdmVybm1l bnRTSEEyRVZJbnRlcm1lZGlhdGVDQS5jcmwwQ6BBoD+GPWh0dHA6Ly9jcmw0LmRp Z2ljZXJ0LmNvbS9EQ0dvdmVybm1lbnRTSEEyRVZJbnRlcm1lZGlhdGVDQS5jcmww SwYDVR0gBEQwQjA3BglghkgBhv1sAgEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93 d3cuZGlnaWNlcnQuY29tL0NQUzAHBgVngQwBATCBggYIKwYBBQUHAQEEdjB0MCQG CCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wTAYIKwYBBQUHMAKG QGh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EQ0dvdmVybm1lbnRTSEEyRVZJ bnRlcm1lZGlhdGVDQS5jcnQwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB1nkCBAIE ggFuBIIBagFoAHYA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo/csAAAFr rif07wAABAMARzBFAiBowYp9FOpzeC7gX/xM7I8bKNW5xHRFUq8IeiwpvoS9mAIh ALeY1ThXov3u2YdP6BzFmEiLMqTPTW7PoMiOWfJcehizAHUAVhQGmi/XwuzT9eG9 RLI+x0Z2ubyZEVzA75SYVdaJ0N0AAAFrrif1HQAABAMARjBEAiAnJZaCkZEe7EsM RI0REGFa/FMGjgD1fkZ8iX0e6SSk+QIgAUwahSdIbqK/f0PQKgssOzopg5kr1VRv ny5Ga8GAwC8AdwCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCDDwAAAWuu J/ZoAAAEAwBIMEYCIQCMI8/fUrGsMFhGtDgwuFBNXZ/d29kkCvY0tfgvUXsQHQIh ALlBk5GAWsboP4D44N/XHX4JerddkIFP/wmmKd46rwSmMA0GCSqGSIb3DQEBCwUA A4IBAQBwAHYt5fq9dPC+OfN1HeG7dvF49WiDrDSuyj2ncMSOHPLAlUPxMDIhjiXY lkxfl9oDyG6w6TNF7QThoBxGzIkNO7U/OJw8/u6U+AhPFi763dOkMa7pgtWhESTi mKmB5wiq2QCOBPCZdVhsg+YGrsd2+B2ErF8PoBJ8TqIrHR7q1pCIIo7MEiOlqb+V GuUPNw0vrfq/QxSDUxK6X7fhV0VZ385VFJqNNAYqgh1RzR9lO1sUQU3kzOQ0+rD+ RP4PSLhdTf1Xh6W+U5QtcumZLspGibNZYEtAIN0Mqm18AyUobn5RI7Ovq4xDsBFn 1JX6seLvdTAs2Gmdp43SbVCvW6kX -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA12+VFhhBzxmz+mLOkKc8 XWcz2fMns85eFGXA5uUxQL2v0LyNo/aBjT8mSEAd4iow+CB9JF+pzm0z5dUfc1YH TOtHnuTEjmiQST4m/1cRcH7Bu1pxYS/c1zuvTrXMwPM3/FzaCtCxLjfizsvDjNER Bo8vGPj5ZguiojUmMUav/Xg5dMsVtQnv43nxDOW815svZGo8QsRo+vBdZBdf/NmM 6Ul1fJQtP6NoCqKp9DBuF0pGdpqDOkUxWcomPeg/1mSgDr6kQv8c42NpsEeZ8ePn Iy6+C2FbKPVmK9bq0Ryij3YHBckeT2VhrVCadHlibrosvW0jsFZ9jLgLYK51dfVa 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7609856418026250501857276537460484380 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government of the District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Office of the Chief Technology Officer' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DC Government SHA2 EV Intermediate CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-30 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government of the District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Office of the Chief Technology Officer' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'upstream.dc.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27196258884302408749976489123309684105587052689317602393253094011803632015223835752696322687444113689274678000702338406011131947593080299393624761977444324960394774178949905125605529453351194121057184691001021269556396880245857941870300232926010137357313530850671765784335965589950107961123189249026657019941030857926623779403276707944065889438999076164156118972005355391640151827009636248049581078619152464156131504324782813774091561069312692297108128137297508953531510867016801005999925467067129191678546670750078850514911449592179622900248363814438587796465770378957519264825305501132844230874865795045503372974817 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 50ae28b3cffced4b0b46d1807e1309f6df4be690 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0947482a5c83f891d825f9312efea47373e3f967 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'upstream.dc.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (141 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DCGovernmentSHA2EVIntermediateCA.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DCGovernmentSHA2EVIntermediateCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DCGovernmentSHA2EVIntermediateCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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