arba.army.pentagon.mil

- HEADQUARTERS DEPARTMENT OF THE ARMY -

Issued by TrustID Server CA O1

About this certificate

This digital certificate with serial number 40:01:8f:70:6f:d0:67:8f:e7:4b:80:9c:c2:0b:d5:2d was issued on by IdenTrust.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

HEADQUARTERS DEPARTMENT OF THE ARMY

Organization: HEADQUARTERS DEPARTMENT OF THE ARMY
State / Province: Virginia
Locality: Arlington
Country: US

IdenTrust

Organization: IdenTrust
Organization unit: TrustID Server
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 40:01:8f:70:6f:d0:67:8f:e7:4b:80:9c:c2:0b:d5:2d
Serial Number (int): 85078693319825456198896457155613545773
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: cb:1c:72:0b:c5:0e:3c:c6:97:d7:e8:58:10:db:70:74:e7:08:f7:ee
AuthorityKeyId: 4e:17:19:16:5a:0e:4c:dc:4e:f4:72:ec:e4:3a:01:c1:19:94:fd:35

Fingerprint (sha1): 3a:b8:1c:02:fb:df:81:47:66:10:d1:51:8c:34:28:18:d6:5d:6a:22
Fingerprint (sha256): 12:80:56:cd:ee:a5:b2:c8:3f:8b:aa:64:f9:9e:f3:d3:83:e6:cd:3d:1f:e9:b4:6d:62:39:c1:3f:83:c1:17:da

Issuing Certificate URL: http://validation.identrust.com/certs/trustidcaO1.p7c

Revocation information

OCSP Server: http://commercial.ocsp.identrust.com
CRL Distribution Point: http://validation.identrust.com/crl/trustidcao1.crl

Check the revocation status for certificate arba.army.pentagon.mil

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for arba.army.pentagon.mil

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

arba.army.pentagon.mil
www.armydiversity.army.mil

Other certificates including the domain name pentagon.mil

(limited to 100 certificates)
www.dami.army.pentagon.mil
fa49.hqda.pentagon.mil
www.dma.mil
enbosswistagingcac.ocar.army.pentagon.mil
isrtrain.hqda.pentagon.mil
www.dma.mil
adminapps1.hqda.pentagon.mil
www.dma.mil
www.dma.mil
www.pentagon.mil
www.dma.mil
HQDAC2N00062-03.hqda.pentagon.mil
www.dma.mil
ariddashboard.ocar.army.pentagon.mil
www.dma.mil
www.pentagon.mil
www.asamra.army.mil
visitors.pentagon.mil
eeoa.army.pentagon.mil
jagc61-250.army.pentagon.mil
www.g357intranet.hqda.pentagon.mil
wias.hqda.pentagon.mil
www.pentagon.mil
www.acp.army.pentagon.mil
jspwin.pentagon.mil
www.dma.mil
meeting.pentagon.mil
pubssod2.acsap.hqda.pentagon.mil
citrixgw1.hqda.pentagon.mil
saprp.pentagon.mil
arba.army.pentagon.mil
*.hqda.pentagon.mil
minuteman.ngb.army.mil
www.dma.mil
www.pentagon.mil
www.daig.pentagon.mil
arba.army.pentagon.mil
arba.army.pentagon.mil
www.dma.mil
www.pentagon.mil
www.dma.mil
enbossteamtrackanon.ocar.army.pentagon.mil
www.dami.army.pentagon.mil
rbuild.pentagon.mil
SSOREGISTRATION.OCAR.ARMY.PENTAGON.MIL
EPASR.OCAR.ARMY.PENTAGON.MIL
smms.army.pentagon.mil
www.dma.mil
www.dma.mil
staging.rovr.army.pentagon.mil
smartbook.armyg1.pentagon.mil
RbuilderMMSupplemental.pentagon.mil
www.atrrs.army.pentagon.mil
pmdwtstest.ocar.army.pentagon.mil
interface.rovr.army.pentagon.mil
www.dma.mil
drrb-risk-reserve.acsap.hqda.pentagon.mil
www.dma.mil
cppm-pwn-s4.nsmc.pentagon.mil
www.dma.mil
usarbasops.ocar.army.pentagon.mil
vdi.hqda.pentagon.mil
www.dma.mil
aewrs.hqda.pentagon.mil
ssoregistrationdev.ocar.army.pentagon.mil
actsonline.army.mil
fdbtraining.ocar.army.pentagon.mil
ocsp5.army.pentagon.mil
visitors.pentagon.mil
eis.hqda.pentagon.mil
ecdrs.ocar.army.pentagon.mil
citrixgw2.hqda.pentagon.mil
www.dma.mil
drr-risk.acsap.hqda.pentagon.mil
citrixgw2.hqda.pentagon.mil
portal.doha.pentagon.mil
interface.eval.atrrs.army.pentagon.mil
ecdrs.ocar.army.pentagon.mil
www.g357intranet.hqda.pentagon.mil
www.dma.mil
www.amhs.pentagon.mil
cppm-pwn-s2.nsmc.pentagon.mil
www.dma.mil
fmwebdav.hqda.pentagon.mil
prissod1.acsap.hqda.pentagon.mil
www.asamra.army.mil
staging.rovr.army.pentagon.mil
www.dma.mil
www.dma.mil
connect.dtmo.pentagon.mil
www.atrrs.army.pentagon.mil
www.dma.mil
wias.pentagon.mil
casa.army.mil
rbuilder.pentagon.mil
webmail.dtmo.pentagon.mil
isr.hqda.pentagon.mil
www.dma.mil
arba.army.pentagon.mil
enbosscsg.ocar.army.pentagon.mil

Certificate

The complete raw certificate details for arba.army.pentagon.mil in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt78ndsE0SpyeRTvNR0+w
oJc2GN5w8Qc/3ocx5/RpW9FkjSOilh0kBpS46L5qN0kv2I/F0Z0xCCr4fgVxtujN
gIBE9FGly9qwpi/pbX9Vku91tJpWvYqJB9LaYRybHf/lfDLmmIzbD+2sQ/rfg3rR
uD37DdEekb5qH4H6FUdbAJ/SGrpYsOUh72Sfpse8pPakxLiAJCRe0aIRFaX2oRjv
il25NR7Pa42URlNOq+hOKpwamDC7nNvy/Cjsh4lBSqus8KUVzgQ8jZym5fNFeXiV
TYE4NS//qs6dVoUNcFsg4WGKd+6eOKU878x82sv/dpAA4zQbae1e4IKBhyu15Fhj
cQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 85078693319825456198896457155613545773
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IdenTrust'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TrustID Server'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TrustID Server CA O1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-13 05:32:07 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-13 05:31:07 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Virginia'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arlington'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HEADQUARTERS DEPARTMENT OF THE ARMY'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'arba.army.pentagon.mil'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23195871436194142654267323026880495300919838604826370433912923915484144059073585750748361113043448642519971885435986232060721940744446310788989294069741864210649105892977178517238433059591381188966751449184653824386014800551686400596852295213332926480976889775702528570071899706232182992920316748971440118673268077066585760372033387713833756412421367131828666760939394204089635678811362568746480809032092218895522234036958630990353115773918037197025533958741784302394752631038184514456407589325415778590629601280656608344121119652889570897049089993531799239748206679178874666613601044168510640349400708266173937509233
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://commercial.ocsp.identrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/certs/trustidcaO1.p7c'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4e1719165a0e4cdc4ef472ece43a01c11994fd35
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113839.0.6.3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/crl/trustidcao1.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arba.army.pentagon.mil'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.armydiversity.army.mil'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							cb1c720bc50e3cc697d7e85810db7074e708f7ee
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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