arba.army.pentagon.mil

- Headquarters Department of the Army -

Issued by TrustID Server CA A52

About this certificate

This digital certificate with serial number 40:01:6a:e0:fd:b5:25:82:ac:76:42:dc:0c:c3:0e:35 was issued on by IdenTrust.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Headquarters Department of the Army

Organization: Headquarters Department of the Army
State / Province: District of Columbia
Locality: Washington
Country: US

IdenTrust

Organization: IdenTrust
Organization unit: TrustID Server
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 40:01:6a:e0:fd:b5:25:82:ac:76:42:dc:0c:c3:0e:35
Serial Number (int): 85077951788138241161963081478508318261
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: ff:07:17:0c:b1:b6:e3:2b:36:57:0f:d1:4e:61:ed:82:45:18:f6:f0
AuthorityKeyId: a2:56:24:3c:d0:d4:15:b9:e8:bf:78:a3:13:10:58:48:2e:16:54:e1

Fingerprint (sha1): 7f:fd:71:2b:8d:95:c0:8b:f8:13:2a:cd:8b:b5:e3:7a:bb:59:d4:23
Fingerprint (sha256): 0e:b9:d6:59:6c:d9:7c:6c:d6:1a:95:9c:7f:51:c4:90:90:b5:5d:0e:ea:a1:50:5b:16:5e:45:f7:5d:2c:f8:76

Issuing Certificate URL: http://validation.identrust.com/certs/trustidcaa52.p7c

Revocation information

OCSP Server: http://commercial.ocsp.identrust.com
CRL Distribution Point: http://validation.identrust.com/crl/trustidcaa52.crl

Check the revocation status for certificate arba.army.pentagon.mil

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for arba.army.pentagon.mil

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

arba.army.pentagon.mil

Other certificates including the domain name pentagon.mil

(limited to 100 certificates)
www.dami.army.pentagon.mil
fa49.hqda.pentagon.mil
www.dma.mil
enbosswistagingcac.ocar.army.pentagon.mil
isrtrain.hqda.pentagon.mil
www.dma.mil
adminapps1.hqda.pentagon.mil
www.dma.mil
www.dma.mil
www.pentagon.mil
www.dma.mil
HQDAC2N00062-03.hqda.pentagon.mil
www.dma.mil
ariddashboard.ocar.army.pentagon.mil
www.dma.mil
www.pentagon.mil
www.asamra.army.mil
visitors.pentagon.mil
eeoa.army.pentagon.mil
jagc61-250.army.pentagon.mil
www.g357intranet.hqda.pentagon.mil
wias.hqda.pentagon.mil
www.pentagon.mil
www.acp.army.pentagon.mil
jspwin.pentagon.mil
www.dma.mil
meeting.pentagon.mil
pubssod2.acsap.hqda.pentagon.mil
citrixgw1.hqda.pentagon.mil
saprp.pentagon.mil
arba.army.pentagon.mil
*.hqda.pentagon.mil
minuteman.ngb.army.mil
www.dma.mil
www.pentagon.mil
www.daig.pentagon.mil
arba.army.pentagon.mil
arba.army.pentagon.mil
www.dma.mil
www.pentagon.mil
www.dma.mil
enbossteamtrackanon.ocar.army.pentagon.mil
www.dami.army.pentagon.mil
rbuild.pentagon.mil
SSOREGISTRATION.OCAR.ARMY.PENTAGON.MIL
EPASR.OCAR.ARMY.PENTAGON.MIL
smms.army.pentagon.mil
www.dma.mil
www.dma.mil
staging.rovr.army.pentagon.mil
smartbook.armyg1.pentagon.mil
RbuilderMMSupplemental.pentagon.mil
www.atrrs.army.pentagon.mil
pmdwtstest.ocar.army.pentagon.mil
interface.rovr.army.pentagon.mil
www.dma.mil
drrb-risk-reserve.acsap.hqda.pentagon.mil
www.dma.mil
cppm-pwn-s4.nsmc.pentagon.mil
www.dma.mil
usarbasops.ocar.army.pentagon.mil
vdi.hqda.pentagon.mil
www.dma.mil
aewrs.hqda.pentagon.mil
ssoregistrationdev.ocar.army.pentagon.mil
actsonline.army.mil
fdbtraining.ocar.army.pentagon.mil
ocsp5.army.pentagon.mil
visitors.pentagon.mil
eis.hqda.pentagon.mil
ecdrs.ocar.army.pentagon.mil
citrixgw2.hqda.pentagon.mil
www.dma.mil
drr-risk.acsap.hqda.pentagon.mil
citrixgw2.hqda.pentagon.mil
portal.doha.pentagon.mil
interface.eval.atrrs.army.pentagon.mil
ecdrs.ocar.army.pentagon.mil
www.g357intranet.hqda.pentagon.mil
www.dma.mil
www.amhs.pentagon.mil
cppm-pwn-s2.nsmc.pentagon.mil
www.dma.mil
fmwebdav.hqda.pentagon.mil
prissod1.acsap.hqda.pentagon.mil
www.asamra.army.mil
staging.rovr.army.pentagon.mil
www.dma.mil
www.dma.mil
connect.dtmo.pentagon.mil
www.atrrs.army.pentagon.mil
www.dma.mil
wias.pentagon.mil
casa.army.mil
rbuilder.pentagon.mil
webmail.dtmo.pentagon.mil
isr.hqda.pentagon.mil
www.dma.mil
arba.army.pentagon.mil
enbosscsg.ocar.army.pentagon.mil

Certificate

The complete raw certificate details for arba.army.pentagon.mil in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIHGzCCBgOgAwIBAgIQQAFq4P21JYKsdkLcDMMONTANBgkqhkiG9w0BAQsFADBa
MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSWRlblRydXN0MRcwFQYDVQQLEw5UcnVz
dElEIFNlcnZlcjEeMBwGA1UEAxMVVHJ1c3RJRCBTZXJ2ZXIgQ0EgQTUyMB4XDTE5
MDUyMjE5MjEyNFoXDTIwMDUyMTE5MjEyNFowgZAxHzAdBgNVBAMTFmFyYmEuYXJt
eS5wZW50YWdvbi5taWwxLDAqBgNVBAoTI0hlYWRxdWFydGVycyBEZXBhcnRtZW50
IG9mIHRoZSBBcm15MRMwEQYDVQQHEwpXYXNoaW5ndG9uMR0wGwYDVQQIExREaXN0
cmljdCBvZiBDb2x1bWJpYTELMAkGA1UEBhMCVVMwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCSOUu+qOC/oyVxcUcqjQ7B09OmQXOHlNEYAkkq9uPvncDI
lO3OLvK1N2HN0zBlGIwwEQ0XRJdzzqOJvyqNPDfDiSK/Bj/Jc2HKRnif9yS2xJEK
UpDbJxyWOvzD+YbwYxpRK0m0UVOYdfjlp9gB1fM2qdi9usy7Y//EZEiQvxa/3KIB
dh43wEYTXn0F2avimMyvmQZzio3R9DmTZBi9idFlwFO06h6EFa+tTHWDaYYQrp79
cQV9hcbCZo4+GHY8UE/DP1M8DZ6lDXMXHpJkemoJhVjKLrhU4iEn2PN/qdAhG7JB
41SJ7tHdw1lqe4AbA+OvQxno7hKtJZKG7FZeWS8PAgMBAAGjggOkMIIDoDAOBgNV
HQ8BAf8EBAMCBaAwgYQGCCsGAQUFBwEBBHgwdjAwBggrBgEFBQcwAYYkaHR0cDov
L2NvbW1lcmNpYWwub2NzcC5pZGVudHJ1c3QuY29tMEIGCCsGAQUFBzAChjZodHRw
Oi8vdmFsaWRhdGlvbi5pZGVudHJ1c3QuY29tL2NlcnRzL3RydXN0aWRjYWE1Mi5w
N2MwHwYDVR0jBBgwFoAUolYkPNDUFbnov3ijExBYSC4WVOEwggInBgNVHSAEggIe
MIICGjCCAQsGCmCGSAGG+S8ABgMwgfwwQAYIKwYBBQUHAgEWNGh0dHBzOi8vc2Vj
dXJlLmlkZW50cnVzdC5jb20vY2VydGlmaWNhdGVzL3BvbGljeS90cy8wgbcGCCsG
AQUFBwICMIGqDIGnVGhpcyBUcnVzdElEIFNlcnZlciBDZXJ0aWZpY2F0ZSBoYXMg
YmVlbiBpc3N1ZWQgaW4gYWNjb3JkYW5jZSB3aXRoIElkZW5UcnVzdCdzIFRydXN0
SUQgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0dHBzOi8vc2VjdXJlLmlk
ZW50cnVzdC5jb20vY2VydGlmaWNhdGVzL3BvbGljeS90cy8wggEHBgZngQwBAgIw
gfwwQAYIKwYBBQUHAgEWNGh0dHBzOi8vc2VjdXJlLmlkZW50cnVzdC5jb20vY2Vy
dGlmaWNhdGVzL3BvbGljeS90cy8wgbcGCCsGAQUFBwICMIGqDIGnVGhpcyBUcnVz
dElEIFNlcnZlciBDZXJ0aWZpY2F0ZSBoYXMgYmVlbiBpc3N1ZWQgaW4gYWNjb3Jk
YW5jZSB3aXRoIElkZW5UcnVzdCdzIFRydXN0SUQgQ2VydGlmaWNhdGUgUG9saWN5
IGZvdW5kIGF0IGh0dHBzOi8vc2VjdXJlLmlkZW50cnVzdC5jb20vY2VydGlmaWNh
dGVzL3BvbGljeS90cy8wRQYDVR0fBD4wPDA6oDigNoY0aHR0cDovL3ZhbGlkYXRp
b24uaWRlbnRydXN0LmNvbS9jcmwvdHJ1c3RpZGNhYTUyLmNybDAhBgNVHREEGjAY
ghZhcmJhLmFybXkucGVudGFnb24ubWlsMB0GA1UdDgQWBBT/BxcMsbbjKzZXD9FO
Ye2CRRj28DAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwEwYKKwYBBAHW
eQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAEbcOmu4l4BYEK1K0q9fMzhV
A6HZ0fHjKmPMIVMkpIAd2suJ1KQHpvLg2RCRz+JXjpxzHEl7qkNAEymYhB7NZfpQ
hQGbCc2Nig5JjWmiP7T6JfJNoGU+S/XR067qB0kEURRXaU/t3KFnU8/JuYGIqoB8
qfQtCQbwv9nXtDB8F1stTaSOxNM7fnmprPOr+hREMfFD1g+xKrloJwLpirKQW6kb
IGmtml5IqgZL0Lz8j9dvoTLfw4qvd0+9kbHoAaYiei+neh7nDn3wU4wnTdKGFe/R
U7N6ey7x31kbszvphut76QpyG8NG6QqqukaRzI8ZO+etBkm9mF2TwvOZBbCOGZs=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjlLvqjgv6MlcXFHKo0O
wdPTpkFzh5TRGAJJKvbj753AyJTtzi7ytTdhzdMwZRiMMBENF0SXc86jib8qjTw3
w4kivwY/yXNhykZ4n/cktsSRClKQ2yccljr8w/mG8GMaUStJtFFTmHX45afYAdXz
NqnYvbrMu2P/xGRIkL8Wv9yiAXYeN8BGE159Bdmr4pjMr5kGc4qN0fQ5k2QYvYnR
ZcBTtOoehBWvrUx1g2mGEK6e/XEFfYXGwmaOPhh2PFBPwz9TPA2epQ1zFx6SZHpq
CYVYyi64VOIhJ9jzf6nQIRuyQeNUie7R3cNZanuAGwPjr0MZ6O4SrSWShuxWXlkv
DwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 85077951788138241161963081478508318261
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IdenTrust'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TrustID Server'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TrustID Server CA A52'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-22 19:21:24 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-21 19:21:24 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'arba.army.pentagon.mil'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Headquarters Department of the Army'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18459046175507345422226749879439819308201407194118107793607008338008288143353083755477332637429060186480279801027540648624972705917006752722603209046087827489347363248251063652016155088639423099489812405367106750453463555836664194039763494975563079462512409931548070968142492142509244270414936950589462894191404338920436537230878223545848622046476129025567034994648451140506074738539234030827746881300471216883949691200259443868977684159605671490393522190838055798701466577835469015954597738832784877710051567779436685932704892470291841753147807748593109169115763408627971939965064422944385915879541243885486784196367
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://commercial.ocsp.identrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/certs/trustidcaa52.p7c'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a256243cd0d415b9e8bf78a3131058482e1654e1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (542 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113839.0.6.3
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.identrust.com/certificates/policy/ts/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This TrustID Server Certificate has been issued in accordance with IdenTrust's TrustID Certificate Policy found at https://secure.identrust.com/certificates/policy/ts/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.identrust.com/certificates/policy/ts/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This TrustID Server Certificate has been issued in accordance with IdenTrust's TrustID Certificate Policy found at https://secure.identrust.com/certificates/policy/ts/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/crl/trustidcaa52.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arba.army.pentagon.mil'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ff07170cb1b6e32b36570fd14e61ed824518f6f0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0046dc3a6bb897805810ad4ad2af5f33385503a1d9d1f1e32a63cc215324a4801ddacb89d4a407a6f2e0d91091cfe2578e9c731c497baa4340132998841ecd65fa5085019b09cd8d8a0e498d69a23fb4fa25f24da0653e4bf5d1d3aeea074904511457694feddca16753cfc9b98188aa807ca9f42d0906f0bfd9d7b4307c175b2d4da48ec4d33b7e79a9acf3abfa144431f143d60fb12ab9682702e98ab2905ba91b2069ad9a5e48aa064bd0bcfc8fd76fa132dfc38aaf774fbd91b1e801a6227a2fa77a1ee70e7df0538c274dd28615efd153b37a7b2ef1df591bb33be986eb7be90a721bc346e90aaaba4691cc8f193be7ad0649bd985d93c2f39905b08e199b