retire.vermont.gov
- State of Vermont -
Issued by GlobalSign Extended Validation CA - SHA256 - G3
About this certificate
This digital certificate with serial number 73:93:f6:ed:20:db:50:79:ed:52:33:7f was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
State of Vermont
Company registration number:
Government Entities
Organization: State of Vermont
Organization: State of Vermont
State / Province:
Vermont
Locality: Montpelier
Country: US
Locality: Montpelier
Country: US
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 73:93:f6:ed:20:db:50:79:ed:52:33:7fSerial Number (int): 35769654301338739307634111359
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: 29:b3:69:07:64:d8:3f:1f:c1:13:b3:3c:77:a7:89:73:76:97:cb:e6
AuthorityKeyId: dd:b3:e7:6d:a8:2e:e8:c5:4e:6e:cf:74:e6:75:3c:94:15:ce:e8:1d
Fingerprint (sha1): 50:19:2b:92:b4:ac:9b:dd:c5:9c:7b:0a:df:66:7d:ab:84:02:29:06
Fingerprint (sha256): 0e:00:da:4b:e5:f2:81:1c:37:93:0c:3a:6a:a4:d1:40:35:d7:a8:9c:17:53:2a:02:7f:93:2b:f9:8a:95:a2:92
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsextendvalsha2g3r3.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsextendvalsha2g3r3CRL Distribution Point: http://crl.globalsign.com/gs/gsextendvalsha2g3r3.crl
Check the revocation status for certificate retire.vermont.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for retire.vermont.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
retire.vermont.gov
Other certificates including the domain name vermont.gov
(limited to 100 certificates)
dhriu.vermont.gov
www.myvtax.vermont.gov
inside.vermont.gov
www.vermont.gov
ssl7.revizesites.com
anrmaps.vermont.gov
ismstg.apps.vermont.gov
*.healthconnect.vermont.gov
list.vermont.gov
ljfo.vermont.gov
e911ags.vermont.gov
usaherds.vermont.gov
matsdev.vtrans.vermont.gov
maps.vcgi.vermont.gov
1moreconversation.com
inside.vermont.gov
dev.maps.vcgi.vermont.gov
employerreporting.vermont.gov
gpnh.ngesi.vermont.gov
selfserve.education.state.vt.us
cloud.agriculture.vermont.gov
railtrails.vermont.gov
gs.tax.vermont.gov
*.professionals.vermont.gov
anrgeodata.vermont.gov
secure.vermont.gov
eoc.vermont.gov
1moreconversation.com
bedboard.vermont.gov
slds.education.vermont.gov
staging.mydmv.vermont.gov
geodata.vermont.gov
rms.vermont.gov
cloud.agriculture.vermont.gov
*.hsep.vermont.gov
ssl7.revizesites.com
anrgeodata.vermont.gov
legislature.vermont.gov
apps.health.vermont.gov
uipublic01.labor.vermont.gov
ACCDMaps.Vermont.gov
anrmaps.vermont.gov
list.vermont.gov
www.vermont.gov
Inside.Vermont.Gov
*.id.vermont.gov
peacham.vermont.gov
grants.vermont.gov
www.staging.vtpics.vermont.gov
edwa.vermont.gov
cloud.agriculture.vermont.gov
agriculturegrants.vermont.gov
maps.vermont.gov
secure.accd.vermont.gov
WebDBMS.ngesi.vermont.gov
preprod.slds.vermont.gov
anrmaps.vermont.gov
gs.vtrans.vermont.gov
*.healthconnect.vermont.gov
vtlottery.com
my.vermont.gov
retire.vermont.gov
ljfo.vermont.gov
apps.health.vermont.gov
bedboard.vermont.gov
dev.maps.vcgi.vermont.gov
legislature.vermont.gov
ssl7.revizesites.com
uipublic.labor.vermont.gov
maps.vermont.gov
1moreconversation.com
*.id.vermont.gov
sos.vermont.gov
*.hsep.vermont.gov
ssl7.revizesites.com
roadsidemarkers.vermont.gov
design.education.vermont.gov
*.ngesi.vermont.gov
childcareproviders.vermont.gov
160.166.tmcapital.com
*.apps.vermont.gov
vitws.labor.vermont.gov
www.usaplants.vermont.gov
test.slds.vermont.gov
www.rms.vermont.gov
cloud.agriculture.vermont.gov
ssl7.revizesites.com
*.professionals.vermont.gov
*.hsep.in.vermont.gov
maps.vcgi.vermont.gov
infotest.my.vermont.gov
www.vermont.gov
uipublic.labor.vermont.gov
apps.health.vermont.gov
dualenrollment.vermont.gov
ljfo.vermont.gov
lobbying.vermont.gov
orc.vermont.gov
*.hsep.vermont.gov
dev-dfr.gs.vermont.gov
www.myvtax.vermont.gov
inside.vermont.gov
www.vermont.gov
ssl7.revizesites.com
anrmaps.vermont.gov
ismstg.apps.vermont.gov
*.healthconnect.vermont.gov
list.vermont.gov
ljfo.vermont.gov
e911ags.vermont.gov
usaherds.vermont.gov
matsdev.vtrans.vermont.gov
maps.vcgi.vermont.gov
1moreconversation.com
inside.vermont.gov
dev.maps.vcgi.vermont.gov
employerreporting.vermont.gov
gpnh.ngesi.vermont.gov
selfserve.education.state.vt.us
cloud.agriculture.vermont.gov
railtrails.vermont.gov
gs.tax.vermont.gov
*.professionals.vermont.gov
anrgeodata.vermont.gov
secure.vermont.gov
eoc.vermont.gov
1moreconversation.com
bedboard.vermont.gov
slds.education.vermont.gov
staging.mydmv.vermont.gov
geodata.vermont.gov
rms.vermont.gov
cloud.agriculture.vermont.gov
*.hsep.vermont.gov
ssl7.revizesites.com
anrgeodata.vermont.gov
legislature.vermont.gov
apps.health.vermont.gov
uipublic01.labor.vermont.gov
ACCDMaps.Vermont.gov
anrmaps.vermont.gov
list.vermont.gov
www.vermont.gov
Inside.Vermont.Gov
*.id.vermont.gov
peacham.vermont.gov
grants.vermont.gov
www.staging.vtpics.vermont.gov
edwa.vermont.gov
cloud.agriculture.vermont.gov
agriculturegrants.vermont.gov
maps.vermont.gov
secure.accd.vermont.gov
WebDBMS.ngesi.vermont.gov
preprod.slds.vermont.gov
anrmaps.vermont.gov
gs.vtrans.vermont.gov
*.healthconnect.vermont.gov
vtlottery.com
my.vermont.gov
retire.vermont.gov
ljfo.vermont.gov
apps.health.vermont.gov
bedboard.vermont.gov
dev.maps.vcgi.vermont.gov
legislature.vermont.gov
ssl7.revizesites.com
uipublic.labor.vermont.gov
maps.vermont.gov
1moreconversation.com
*.id.vermont.gov
sos.vermont.gov
*.hsep.vermont.gov
ssl7.revizesites.com
roadsidemarkers.vermont.gov
design.education.vermont.gov
*.ngesi.vermont.gov
childcareproviders.vermont.gov
160.166.tmcapital.com
*.apps.vermont.gov
vitws.labor.vermont.gov
www.usaplants.vermont.gov
test.slds.vermont.gov
www.rms.vermont.gov
cloud.agriculture.vermont.gov
ssl7.revizesites.com
*.professionals.vermont.gov
*.hsep.in.vermont.gov
maps.vcgi.vermont.gov
infotest.my.vermont.gov
www.vermont.gov
uipublic.labor.vermont.gov
apps.health.vermont.gov
dualenrollment.vermont.gov
ljfo.vermont.gov
lobbying.vermont.gov
orc.vermont.gov
*.hsep.vermont.gov
dev-dfr.gs.vermont.gov
Certificate
The complete raw certificate details for retire.vermont.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHFjCCBf6gAwIBAgIMc5P27SDbUHntUjN/MA0GCSqGSIb3DQEBCwUAMGIxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTgwNgYDVQQDEy9H bG9iYWxTaWduIEV4dGVuZGVkIFZhbGlkYXRpb24gQ0EgLSBTSEEyNTYgLSBHMzAe Fw0xOTA1MTAxNjM2MDRaFw0yMDA4MTcxOTMxMDRaMIHVMRowGAYDVQQPDBFHb3Zl cm5tZW50IEVudGl0eTEcMBoGA1UEBRMTR292ZXJubWVudCBFbnRpdGllczETMBEG CysGAQQBgjc8AgEDEwJVUzEYMBYGCysGAQQBgjc8AgECEwdWZXJtb250MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHVmVybW9udDETMBEGA1UEBxMKTW9udHBlbGllcjEZ MBcGA1UEChMQU3RhdGUgb2YgVmVybW9udDEbMBkGA1UEAxMScmV0aXJlLnZlcm1v bnQuZ292MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkUNWzH+8asZK iFqB1tswoSjI9uqt2gTGiv7OAUZfUTmBuJZBUVSp9ubEzMFkMYBhczliIQdaG4jC QIDTmjrDfTAudqpIafAhBppNkwrdL5Lt3S9O7j0mSUA9KbiWMRp2T5mjsKQDLtn3 wPZwWM3/cG72z3QkzBmVHv3ce5PJX6cUAngHTvGjz2j6kgGkNTiDFskiSAmmB33c +Elv8wMd+rmA8I3rrLRWbCQIpgHLinFp6DHQ0ZCG+oL5zJJevxmw8yygnAopJrah CZ8MMVmxHI6DRs9e9YmAv0c57FDdFzZ8gCYb2GNMNC1cL9KPZ24P+/kJNHaXQv21 sCTaL47t3QIDAQABo4IDVjCCA1IwDgYDVR0PAQH/BAQDAgWgMIGWBggrBgEFBQcB AQSBiTCBhjBHBggrBgEFBQcwAoY7aHR0cDovL3NlY3VyZS5nbG9iYWxzaWduLmNv bS9jYWNlcnQvZ3NleHRlbmR2YWxzaGEyZzNyMy5jcnQwOwYIKwYBBQUHMAGGL2h0 dHA6Ly9vY3NwMi5nbG9iYWxzaWduLmNvbS9nc2V4dGVuZHZhbHNoYTJnM3IzMFUG A1UdIAROMEwwQQYJKwYBBAGgMgEBMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3 Lmdsb2JhbHNpZ24uY29tL3JlcG9zaXRvcnkvMAcGBWeBDAEBMAkGA1UdEwQCMAAw RQYDVR0fBD4wPDA6oDigNoY0aHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9ncy9n c2V4dGVuZHZhbHNoYTJnM3IzLmNybDAdBgNVHREEFjAUghJyZXRpcmUudmVybW9u dC5nb3YwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQYMBaA FN2z522oLujFTm7PdOZ1PJQVzugdMB0GA1UdDgQWBBQps2kHZNg/H8ETszx3p4lz dpfL5jCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHcAb1N2rDHwMRnYmQCkURX/ dxUcEdkCwQApBo2yCJo32RMAAAFqopoOUQAABAMASDBGAiEA47oFPFtdWha1UI36 cl0io+6+eZrw7zTtjJ9/slZ4iIUCIQDb97ef9QPUZi5MrTOgmtiUIPWCqdolA0iW /SvvyzG6MAB1AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABaqKa EY0AAAQDAEYwRAIgXZdxAVw9tmHGiDbVpfHPxOTlOBEa7f+zM0ruUIQ7PycCIB2S m8t7K2B4g1BPD5k+B0YBy8sTUWQIFYzV4MYI8hf1AHYAVYHUwhaQNgFK6gubVzxT 8MDkOHhwJQgXL6OqHQcT0wwAAAFqopoOKgAABAMARzBFAiEAzsx1IX/1LwAMp3Ec hQHwIT+94U5SVf/Z+7LcoEsQ99gCIFT/fC2tB5vEPWre1Zl37so1LlVFucR9amXh yYl1w2RyMA0GCSqGSIb3DQEBCwUAA4IBAQBjOivHzV+h1ibEbaq6kZaVEeAmIyOp BJbjF4S57HvnlsalRtghCpXjE3dISYUEtDkwhOa5od+98XmygHl2uXw/GyJhqnJr ZdETypR91Ovrygdp25zeRtx+N6iONSijD5lWI1D6m/she+D7qozR3lHxCfKNnsDG dEFrY+kdLSSiyA0RpgYcldVxHoMVeg7SD2qkgVQtF+oHqmUQpiH0NUF8SXmK+qmO rHFAmMciDweJ8lqb17PN5SGWtqidj7aZDZDXZI51hdtIAEvsoKLxbnm23hLysz6T 8ot90duRV9T9OGCSWz2KRjFBzo2Kxmza4U2QQjk/vieq1coBpdWW5caq -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkUNWzH+8asZKiFqB1tsw oSjI9uqt2gTGiv7OAUZfUTmBuJZBUVSp9ubEzMFkMYBhczliIQdaG4jCQIDTmjrD fTAudqpIafAhBppNkwrdL5Lt3S9O7j0mSUA9KbiWMRp2T5mjsKQDLtn3wPZwWM3/ cG72z3QkzBmVHv3ce5PJX6cUAngHTvGjz2j6kgGkNTiDFskiSAmmB33c+Elv8wMd +rmA8I3rrLRWbCQIpgHLinFp6DHQ0ZCG+oL5zJJevxmw8yygnAopJrahCZ8MMVmx HI6DRs9e9YmAv0c57FDdFzZ8gCYb2GNMNC1cL9KPZ24P+/kJNHaXQv21sCTaL47t 3QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 35769654301338739307634111359 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Extended Validation CA - SHA256 - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-10 16:36:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-17 19:31:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entities' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Vermont' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Vermont' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montpelier' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'State of Vermont' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'retire.vermont.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18337760347141562631344561896720782699277762939445723534615121229313040946631150080776058248663991268913021798549769423206212128709374234117772462077630290506006952480770976213142622254413220026021455049238815416709371762698469653145914814716590573290139497388953158770439471579251317816131754959420164178606984640823728606825959576463219890811410162874910777555769358736030995377927328045909442181213535856657603866555019411212173171229365965708979959733172287722835405999719461271680937157470959519094243242977630368295124971807587608745699907862139412221378029627827482077565326304347811210864787273804343111773661 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (137 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsextendvalsha2g3r3.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsextendvalsha2g3r3' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (78 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.1 (GlobalSign EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/gsextendvalsha2g3r3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retire.vermont.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ddb3e76da82ee8c54e6ecf74e6753c9415cee81d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 29b3690764d83f1fc113b33c77a789737697cbe6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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