software.af.mil
- Department of Defense -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 5b:3e:75:e6:c1:a1:35:47:b1:01:00:d3:fb:93:8d:20 was issued on by Entrust, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Department of Defense
Organization:
Department of Defense
State / Province:
Colorado
Locality: Colorado Springs
Country: US
Locality: Colorado Springs
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 5b:3e:75:e6:c1:a1:35:47:b1:01:00:d3:fb:93:8d:20Serial Number (int): 121284061345983004833827033017165778208
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: da:43:19:0c:09:e3:58:2f:ce:00:0f:54:1d:91:5c:b9:af:59:ac:52
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 66:a0:6a:c5:31:eb:08:42:77:c8:2f:30:aa:64:6d:ea:0d:a1:a3:dc
Fingerprint (sha256): 08:e3:ff:67:9b:8b:15:0f:a8:27:3c:c8:34:34:5e:96:7d:c6:bc:b0:a9:db:64:51:da:ae:71:b4:1a:76:b1:4b
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate software.af.mil
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for software.af.mil
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
software.af.mil
Other certificates including the domain name af.mil
(limited to 100 certificates)
sso.nasiccloud.af.mil
angelfire.vdl.afrl.af.mil
www.honorguard.af.mil
apc3-ec-01.ang.ds.af.mil
cqmap.cce.af.mil
www.afncr.hq.af.mil
coins9iapp.scott.af.mil
www.afcyber.af.mil
www.afrc.af.mil
ar.afcec-cloud.af.mil
*.coder-gov.nasic.af.mil
oars189.dng.cie.af.mil
mdm.test.cce.af.mil
afbrac.hq.af.mil
WEDNG11645.dng.cie.af.mil
52arty-ws-005v.afrc.af.mil
www.af.mil
efoia.cce.af.mil
www.gil.cetl.gunter.af.mil
hcloginorigin.maxwell.af.mil
lrt2.my.af.mil
mow-g-mrly-001.afgate.ad.af.mil
deamsbpel.cie.af.mil
portal.jbsa.af.mil
ej-crl2.my.af.mil
ihs.afrc.af.mil
UAT.MEDXS.AF.MIL
owscollab.barksdale.af.mil
deamsoam0010a.cie.af.mil
acesdsso.cie.af.mil
deamsgrdintconsole.cie.af.mil
www.ang.af.mil
asli.af.mil
wargaming.hq.af.mil
wildcard.cce.af.mil
PETERSON-MAIL1.afnoc.af.mil
cie-sdp-dp.cie.af.mil
www.uat.medxs.af.mil
www.damis.afaa.hq.af.mil
netdev.hq.af.mil
afrcdesktops.us.af.mil
kir-g-mrly-002.afgate.ad.af.mil
bermuda.af.mil
crosslink.af.mil
development.lcmp.af.mil
remote1.afwa.af.mil
armsweb.afpc.randolph.af.mil
aiportal.acc.af.mil
f16ocm.hill.af.mil
diode.nasic.af.mil
aftoc.hill.af.mil
glens0057-web8.frontrange.afspc.ds.af.mil
ows.sembach.af.mil
www.honorguard.af.mil
pass.hq.af.mil
w40.afpc.randolph.af.mil
wecstclnt85.gateway.cie.af.mil
www.airforcefaptest.af.mil
52tymx-ws-200.randolph.aetc.ds.af.mil
www.afcyber.af.mil
www.airforcehollywood.af.mil
apims.af.mil
bsds.cie.af.mil
www.af.mil
www.af.mil
www.af.mil
adapts2.test.cce.af.mil
webmail.clear.af.mil
itsrd.cie.af.mil
www.afrc.af.mil
esgweb.afccc.af.mil
aflegalassistance.law.af.mil
deamsdisint1console.cie.af.mil
mocc.vandenberg.af.mil
52vejx-ucpool-001.area52.afnoapps.usaf.mil
deamsobiint2.cie.af.mil
bermuda.af.mil
www.af.mil
widds.afwa.af.mil
mail.ok.afmc.af.mil
teams.afsoc.af.mil
*.bermuda.af.mil
www.airforcehollywood.af.mil
c5galaxy.robins.af.mil
jagusaf.jag.af.mil
teleport.nasic.af.mil
nssi.cce.af.mil
digitalu.af.mil
mxprod.hq.af.mil
mail.kirtland.af.mil
etca.randolph.af.mil
www.my.af.mil
asli.af.mil
reports.arpc.afrc.af.mil
cx.hanscom.af.mil
software.af.mil
webmail.ajab.nosc.afcent.af.mil
afaems.us.af.mil
owsjet17.us.af.mil
bipweather.afwa.af.mil
angelfire.vdl.afrl.af.mil
www.honorguard.af.mil
apc3-ec-01.ang.ds.af.mil
cqmap.cce.af.mil
www.afncr.hq.af.mil
coins9iapp.scott.af.mil
www.afcyber.af.mil
www.afrc.af.mil
ar.afcec-cloud.af.mil
*.coder-gov.nasic.af.mil
oars189.dng.cie.af.mil
mdm.test.cce.af.mil
afbrac.hq.af.mil
WEDNG11645.dng.cie.af.mil
52arty-ws-005v.afrc.af.mil
www.af.mil
efoia.cce.af.mil
www.gil.cetl.gunter.af.mil
hcloginorigin.maxwell.af.mil
lrt2.my.af.mil
mow-g-mrly-001.afgate.ad.af.mil
deamsbpel.cie.af.mil
portal.jbsa.af.mil
ej-crl2.my.af.mil
ihs.afrc.af.mil
UAT.MEDXS.AF.MIL
owscollab.barksdale.af.mil
deamsoam0010a.cie.af.mil
acesdsso.cie.af.mil
deamsgrdintconsole.cie.af.mil
www.ang.af.mil
asli.af.mil
wargaming.hq.af.mil
wildcard.cce.af.mil
PETERSON-MAIL1.afnoc.af.mil
cie-sdp-dp.cie.af.mil
www.uat.medxs.af.mil
www.damis.afaa.hq.af.mil
netdev.hq.af.mil
afrcdesktops.us.af.mil
kir-g-mrly-002.afgate.ad.af.mil
bermuda.af.mil
crosslink.af.mil
development.lcmp.af.mil
remote1.afwa.af.mil
armsweb.afpc.randolph.af.mil
aiportal.acc.af.mil
f16ocm.hill.af.mil
diode.nasic.af.mil
aftoc.hill.af.mil
glens0057-web8.frontrange.afspc.ds.af.mil
ows.sembach.af.mil
www.honorguard.af.mil
pass.hq.af.mil
w40.afpc.randolph.af.mil
wecstclnt85.gateway.cie.af.mil
www.airforcefaptest.af.mil
52tymx-ws-200.randolph.aetc.ds.af.mil
www.afcyber.af.mil
www.airforcehollywood.af.mil
apims.af.mil
bsds.cie.af.mil
www.af.mil
www.af.mil
www.af.mil
adapts2.test.cce.af.mil
webmail.clear.af.mil
itsrd.cie.af.mil
www.afrc.af.mil
esgweb.afccc.af.mil
aflegalassistance.law.af.mil
deamsdisint1console.cie.af.mil
mocc.vandenberg.af.mil
52vejx-ucpool-001.area52.afnoapps.usaf.mil
deamsobiint2.cie.af.mil
bermuda.af.mil
www.af.mil
widds.afwa.af.mil
mail.ok.afmc.af.mil
teams.afsoc.af.mil
*.bermuda.af.mil
www.airforcehollywood.af.mil
c5galaxy.robins.af.mil
jagusaf.jag.af.mil
teleport.nasic.af.mil
nssi.cce.af.mil
digitalu.af.mil
mxprod.hq.af.mil
mail.kirtland.af.mil
etca.randolph.af.mil
www.my.af.mil
asli.af.mil
reports.arpc.afrc.af.mil
cx.hanscom.af.mil
software.af.mil
webmail.ajab.nosc.afcent.af.mil
afaems.us.af.mil
owsjet17.us.af.mil
bipweather.afwa.af.mil
Certificate
The complete raw certificate details for software.af.mil in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHkjCCBnqgAwIBAgIQWz515sGhNUexAQDT+5ONIDANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y MzExMTQxNDU4MzZaFw0yNDEyMTAxNDU4MzVaMHUxCzAJBgNVBAYTAlVTMREwDwYD VQQIEwhDb2xvcmFkbzEZMBcGA1UEBxMQQ29sb3JhZG8gU3ByaW5nczEeMBwGA1UE ChMVRGVwYXJ0bWVudCBvZiBEZWZlbnNlMRgwFgYDVQQDEw9zb2Z0d2FyZS5hZi5t aWwwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC+CRPoLITuHiP4F0Zl CqseafvWyYsrJ2imfX434D4AtoSCd8H1KJz3PgLXPJQ9Ehwh1cu+SjClp5RlsVfh DFdZ/5XtqnPhMnt9d0Ka2L2Qlk9O8MQBBVXE381uUgHKhgoscgxcVXzFpLXo+M9t 8n8CG+msCveSytURGc3SwEPKz9jR/Gh5zqIDA/tK4T6jW4CNVSLywgEEqqcqlJxW QpuBmjUdibzCa+7Gxb9Bk1nTGHJCuk1042I59c5GidIatP6OhBdST8i0yTWgBi0/ y0ZFlvXvXlTVh5qdrkAUREpT4XYLby/9BkQswSQmQAWBWIJZvOlAtDcrv8x2boan rvLZYq7v9ZdK4pKlZBXi1Vy86ALwmqIZQ8mcbq4cpX+joN49VaQUAPmlQMRxJyav 7qgfdGv93RH+KQhghotrW9NTTzJkBf7X1Ly/y2/F8LfCzF9ylkg4MFJP1cc1Y/Nj npPmXWrdMXv4Axfm15DPHy1fUBxhcMLBfyCh4R6r2N/umlDJZlEDiPoTuW4lPqUU ovXRHWeBEEZ5AJPJshUrvG9lRPsoLyc3T8G6iDWN1FH/T9OIg+0cATYfcy4hquJv BKFW4dx4/EWP3vfOup2Qu/LHzMG8Auyn6ePdKrlqwASVFKomO8fsZwkenqGECujT PBI06LxB3I9k9pvP528wf5WOowIDAQABo4IC1jCCAtIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQU2kMZDAnjWC/OAA9UHZFcua9ZrFIwHwYDVR0jBBgwFoAUgqJwdN28 Uz/Pe9T3zX+nYMYKTL8waAYIKwYBBQUHAQEEXDBaMCMGCCsGAQUFBzABhhdodHRw Oi8vb2NzcC5lbnRydXN0Lm5ldDAzBggrBgEFBQcwAoYnaHR0cDovL2FpYS5lbnRy dXN0Lm5ldC9sMWstY2hhaW4yNTYuY2VyMDMGA1UdHwQsMCowKKAmoCSGImh0dHA6 Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxay5jcmwwGgYDVR0RBBMwEYIPc29mdHdh cmUuYWYubWlsMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwEwYDVR0gBAwwCjAIBgZngQwBAgIwggGBBgorBgEEAdZ5AgQCBIIB cQSCAW0BawB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABi85X ag0AAAQDAEgwRgIhALwu+dlwKIwC/ZRX8dk1WW6Ooy2aX1Si33qT56HY0ZENAiEA uwjo/eW7YhXcq4z3LfdlZu5jigZ7+Ws0G51aUJN5gJkAdwA/F0tP1yJHWJQdZRyE vg0S7ZA3fx+FauvBvyiF7PhkbgAAAYvOV2ocAAAEAwBIMEYCIQDSVbsqtYF3VAGj vJ1ArLQ3Qs+k1yjsvRAgHB5+fCNgSAIhAK0wDdTXjCCtOuZMUKhChZBqQE7ucpWU bI4lY0wFL9X0AHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL zldqcgAABAMASDBGAiEA36IoxcwUCm1d2bbwSVagG6iw7LjWdvohq0d5zm/1AiMC IQDhdkkV78CSRUiBhP1C3YE+tHT+UyQWEC+opvU6tK8PljANBgkqhkiG9w0BAQsF AAOCAQEAFNqtwE0297nD2F9QwxbjhWLfT1hKfxhIQRsLOPVfMUKDUzAcfavaQkO1 nQubD9KTBVr3kdcj8q19/EvKqGWQ3P4yYn5qd8d6a5Bqplo/SCRAaxrlx5Iarpnd 0IjQ5GJqLzasb/Au9iW9dtACoYp+oXL4kKEx810DDgx3R9oYR19Yp/ZRUKodFHqM T4bEXIeMYCVCBrEPNSD8z3lnIDzlwP3MtVBYO52+8Et016mFv7QR1thskyjw0UYJ sN6VrZstPqhOv0+IghIwP0AAXrWa0MctjnObj60GXSBe5QOcPKPicp5r/zvi4RgB 698v+KLsmBbJ2+t3XetJTmrGlwAdjg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvgkT6CyE7h4j+BdGZQqr Hmn71smLKydopn1+N+A+ALaEgnfB9Sic9z4C1zyUPRIcIdXLvkowpaeUZbFX4QxX Wf+V7apz4TJ7fXdCmti9kJZPTvDEAQVVxN/NblIByoYKLHIMXFV8xaS16PjPbfJ/ AhvprAr3ksrVERnN0sBDys/Y0fxoec6iAwP7SuE+o1uAjVUi8sIBBKqnKpScVkKb gZo1HYm8wmvuxsW/QZNZ0xhyQrpNdONiOfXORonSGrT+joQXUk/ItMk1oAYtP8tG RZb1715U1Yeana5AFERKU+F2C28v/QZELMEkJkAFgViCWbzpQLQ3K7/Mdm6Gp67y 2WKu7/WXSuKSpWQV4tVcvOgC8JqiGUPJnG6uHKV/o6DePVWkFAD5pUDEcScmr+6o H3Rr/d0R/ikIYIaLa1vTU08yZAX+19S8v8tvxfC3wsxfcpZIODBST9XHNWPzY56T 5l1q3TF7+AMX5teQzx8tX1AcYXDCwX8goeEeq9jf7ppQyWZRA4j6E7luJT6lFKL1 0R1ngRBGeQCTybIVK7xvZUT7KC8nN0/Buog1jdRR/0/TiIPtHAE2H3MuIaribwSh VuHcePxFj973zrqdkLvyx8zBvALsp+nj3Sq5asAElRSqJjvH7GcJHp6hhAro0zwS NOi8QdyPZPabz+dvMH+VjqMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 121284061345983004833827033017165778208 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-14 14:58:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-10 14:58:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Colorado' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Colorado Springs' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Department of Defense' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'software.af.mil' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 775277037125465823749665947894994070886658325554524088237517198014913168931966509461486179049275929351826546423465020519069992978995867839548539669529487215134947786580295280241562770512125947555519656120290415714613700751493375818438348603440842638325585819984680107410065257469599690761967886508632071974578299727423308117935967250063795503870736478657630248271804554570172789456959067901371433097134014071719582150319370586376497589818872838715842917884260948360533581598926522860097652215432224117628400966271847048318797708876748482501044850020694154237282559695868298300643959194666193766495837184539054388822727000295600338988729872599311901884802642616472819068518803417962393348184874661861376128588961354501098658822680955913143290830310676846528182755820823329146800654922019018328727481556257455732764080134508661122217493847879114836902410323141237841674309107480288509919230043890649276693134193641167593642930336813656327110681457002013014543588346019922127285279528840747158660590567883000862794544666574635064111909568652869808047659011992906866801279989109719684776583815635855373488914147219188517503379536097650661102708037237317805006092684830809612009404258174036736580233471012859864044314574586056021451837091 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) da43190c09e3582fce000f541d915cb9af59ac52 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'software.af.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (369 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0014daadc04d36f7b9c3d85f50c316e38562df4f584a7f1848411b0b38f55f31428353301c7dabda4243b59d0b9b0fd293055af791d723f2ad7dfc4bcaa86590dcfe32627e6a77c77a6b906aa65a3f4824406b1ae5c7921aae99ddd088d0e4626a2f36ac6ff02ef625bd76d002a18a7ea172f890a131f35d030e0c7747da18475f58a7f65150aa1d147a8c4f86c45c878c60254206b10f3520fccf7967203ce5c0fdccb550583b9dbef04b74d7a985bfb411d6d86c9328f0d14609b0de95ad9b2d3ea84ebf4f888212303f40005eb59ad0c72d8e739b8fad065d205ee5039c3ca3e2729e6bff3be2e11801ebdf2ff8a2ec9816c9dbeb775deb494e6ac697001d8e