soa.nih.gov
- US Department of Health and Human Services -
Issued by HydrantID Server CA O1
About this certificate
This digital certificate with serial number 40:01:84:d5:0f:8a:6d:06:e6:52:6a:7f:4d:74:dc:1e was issued on by IdenTrust.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
US Department of Health and Human Services
Organization:
US Department of Health and Human Services
State / Province:
District of Columbia
Locality: Washington
Country: US
Locality: Washington
Country: US
IdenTrust
Organization:
IdenTrust
Organization unit: HydrantID Trusted Certificate Service
Organization unit: HydrantID Trusted Certificate Service
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 40:01:84:d5:0f:8a:6d:06:e6:52:6a:7f:4d:74:dc:1eSerial Number (int): 85078478185569070027922587578675813406
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 34:ad:57:26:46:b9:02:4b:ab:ff:3c:2b:f3:b8:dc:d0:92:3e:a4:fe
AuthorityKeyId: 89:b8:9b:b6:9e:ed:fb:b0:c6:bd:0d:ec:67:4e:3c:a3:92:9d:2d:f9
Fingerprint (sha1): 09:ba:72:0c:e8:3f:3b:10:1f:06:38:10:ad:96:b5:e8:05:83:39:b6
Fingerprint (sha256): 13:69:39:97:86:f6:9c:39:aa:72:2c:07:72:18:f2:1b:74:83:c1:12:2c:d4:7f:de:e7:87:46:30:1b:8b:eb:81
Issuing Certificate URL: http://validation.identrust.com/certs/hydrantidcaO1.p7c
Revocation information
OCSP Server: http://commercial.ocsp.identrust.comCRL Distribution Point: http://validation.identrust.com/crl/hydrantidcao1.crl
Check the revocation status for certificate soa.nih.gov
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for soa.nih.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
soa.nih.gov
www.soa.nih.gov
www.soa.nih.gov
Other certificates including the domain name nih.gov
(limited to 100 certificates)
*.nihms.nih.gov
*.nei.nih.gov
*.niaid.nih.gov
*.nlm.nih.gov
3dprintqa.niaid.nih.gov
www.niaaa.nih.gov
drupal.nihlibrary.com
internet.csr.nih.gov
nei1.nih.gov
*.niams.nih.gov
biobeat.nigms.nih.gov
pots.nci.nih.gov
*.nlm.nih.gov
meetings.nigms.nih.gov
*.nlm.nih.gov
neidatacommons.nei.nih.gov
catalog.nei.nih.gov
devstageerawebserviceaccess.nichd.nih.gov
assettrack.cc.nih.gov
sisterstudy.niehs.nih.gov
*.nci.nih.gov
3dprintqa.niaid.nih.gov
sbrblood.nhgri.nih.gov
*.apps.nciconnectstg.nci.nih.gov
excessproductcatalog.od.nih.gov
madb.nci.nih.gov
biomedicalresearchworkforce.nih.gov
intranet.cit.nih.gov
ai-cs105otdqa1.niaid.nih.gov
*.nci.nih.gov
obssr.od.nih.gov
nihguide.od.nih.gov
2019-BTH-TIC-VPN-EG-03-A.NET.NIH.GOV
ucceventsupport.cit.nih.gov
APF-Access.niaid.nih.gov
etsplab.ninds.nih.gov
www.safetytraining.nih.gov
recovery.nih.gov
*.niddk.nih.gov
sni.cloudflaressl.com
authproxy.ha.nih.gov
pdbp-dd-uat.cit.nih.gov
ai-appauthfoochiprd1.niaid.nih.gov
ncias-p595.nci.nih.gov
ccpharmrees.cc.nih.gov
parkinsontrial.ninds.nih.gov
jats.nlm.nih.gov
otds16-dev.niaid.nih.gov
www.smokefree.gov
intranet.nccih.nih.gov
intranet.nccam.nih.gov
fitbir-stage.cit.nih.gov
www.cc.nih.gov
aghealth.nci.nih.gov
ncif5-d013-v.nci.nih.gov
activenav-dev.niaid.nih.gov
apps.cc.nih.gov
sptest.nibib.nih.gov
healthyeating.nhlbi.nih.gov
medialibrary.nei.nih.gov
*.nlm.nih.gov
salivaryproteome.nidcr.nih.gov
ocrtme.cc.nih.gov
itbweb.nhgri.nih.gov
dcb.cit.nih.gov
devwebeditor.nichd.nih.gov
toolkit.ncats.nih.gov
bricsguid.nia.nih.gov
nisc.nih.gov
pedmatch.nci.nih.gov
tls.automattic.com
eracert137.era.nih.gov
*.nlm.nih.gov
erss-vip.niaid.nih.gov
sa66gl.wpc.edgecastcdn.net
isupplierext.qa.nih.gov
oacu.od.nih.gov
depot.tbportals.niaid.nih.gov
ecollab.niaid.nih.gov
ccapps.cc.nih.gov
resresources.nci.nih.gov
rnai.nih.gov
www.nigms.nih.gov
breezecore5.cit.nih.gov
NIAID-EdgePool-Rock.niaid.nih.gov
datadiscovery.nlm.nih.gov
biolincc.nhlbi.nih.gov
analytics.nih.gov
ctepcorebeta.nci.nih.gov
cc0mlinuxtools.cc.nih.gov
cadsrpasswordchange-stage.nci.nih.gov
nars.cc.nih.gov
femto.niddk.nih.gov
strap.trials-stage.nci.nih.gov
cadsrsentinel.nci.nih.gov
datadiscovery.nlm.nih.gov
gulfstudy.nih.gov
ncrmserawsdev.niaid.nih.gov
cde.awsprod.nlm.nih.gov
cimac-uat.nci.nih.gov
*.nei.nih.gov
*.niaid.nih.gov
*.nlm.nih.gov
3dprintqa.niaid.nih.gov
www.niaaa.nih.gov
drupal.nihlibrary.com
internet.csr.nih.gov
nei1.nih.gov
*.niams.nih.gov
biobeat.nigms.nih.gov
pots.nci.nih.gov
*.nlm.nih.gov
meetings.nigms.nih.gov
*.nlm.nih.gov
neidatacommons.nei.nih.gov
catalog.nei.nih.gov
devstageerawebserviceaccess.nichd.nih.gov
assettrack.cc.nih.gov
sisterstudy.niehs.nih.gov
*.nci.nih.gov
3dprintqa.niaid.nih.gov
sbrblood.nhgri.nih.gov
*.apps.nciconnectstg.nci.nih.gov
excessproductcatalog.od.nih.gov
madb.nci.nih.gov
biomedicalresearchworkforce.nih.gov
intranet.cit.nih.gov
ai-cs105otdqa1.niaid.nih.gov
*.nci.nih.gov
obssr.od.nih.gov
nihguide.od.nih.gov
2019-BTH-TIC-VPN-EG-03-A.NET.NIH.GOV
ucceventsupport.cit.nih.gov
APF-Access.niaid.nih.gov
etsplab.ninds.nih.gov
www.safetytraining.nih.gov
recovery.nih.gov
*.niddk.nih.gov
sni.cloudflaressl.com
authproxy.ha.nih.gov
pdbp-dd-uat.cit.nih.gov
ai-appauthfoochiprd1.niaid.nih.gov
ncias-p595.nci.nih.gov
ccpharmrees.cc.nih.gov
parkinsontrial.ninds.nih.gov
jats.nlm.nih.gov
otds16-dev.niaid.nih.gov
www.smokefree.gov
intranet.nccih.nih.gov
intranet.nccam.nih.gov
fitbir-stage.cit.nih.gov
www.cc.nih.gov
aghealth.nci.nih.gov
ncif5-d013-v.nci.nih.gov
activenav-dev.niaid.nih.gov
apps.cc.nih.gov
sptest.nibib.nih.gov
healthyeating.nhlbi.nih.gov
medialibrary.nei.nih.gov
*.nlm.nih.gov
salivaryproteome.nidcr.nih.gov
ocrtme.cc.nih.gov
itbweb.nhgri.nih.gov
dcb.cit.nih.gov
devwebeditor.nichd.nih.gov
toolkit.ncats.nih.gov
bricsguid.nia.nih.gov
nisc.nih.gov
pedmatch.nci.nih.gov
tls.automattic.com
eracert137.era.nih.gov
*.nlm.nih.gov
erss-vip.niaid.nih.gov
sa66gl.wpc.edgecastcdn.net
isupplierext.qa.nih.gov
oacu.od.nih.gov
depot.tbportals.niaid.nih.gov
ecollab.niaid.nih.gov
ccapps.cc.nih.gov
resresources.nci.nih.gov
rnai.nih.gov
www.nigms.nih.gov
breezecore5.cit.nih.gov
NIAID-EdgePool-Rock.niaid.nih.gov
datadiscovery.nlm.nih.gov
biolincc.nhlbi.nih.gov
analytics.nih.gov
ctepcorebeta.nci.nih.gov
cc0mlinuxtools.cc.nih.gov
cadsrpasswordchange-stage.nci.nih.gov
nars.cc.nih.gov
femto.niddk.nih.gov
strap.trials-stage.nci.nih.gov
cadsrsentinel.nci.nih.gov
datadiscovery.nlm.nih.gov
gulfstudy.nih.gov
ncrmserawsdev.niaid.nih.gov
cde.awsprod.nlm.nih.gov
cimac-uat.nci.nih.gov
Certificate
The complete raw certificate details for soa.nih.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGNjCCBR6gAwIBAgIQQAGE1Q+KbQbmUmp/TXTcHjANBgkqhkiG9w0BAQsFADBy MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSWRlblRydXN0MS4wLAYDVQQLEyVIeWRy YW50SUQgVHJ1c3RlZCBDZXJ0aWZpY2F0ZSBTZXJ2aWNlMR8wHQYDVQQDExZIeWRy YW50SUQgU2VydmVyIENBIE8xMB4XDTIyMTIwMjIyNTc1NloXDTI0MDEwMTIyNTY1 NlowgYwxFDASBgNVBAMTC3NvYS5uaWguZ292MTMwMQYDVQQKEypVUyBEZXBhcnRt ZW50IG9mIEhlYWx0aCBhbmQgSHVtYW4gU2VydmljZXMxEzARBgNVBAcTCldhc2hp bmd0b24xHTAbBgNVBAgTFERpc3RyaWN0IG9mIENvbHVtYmlhMQswCQYDVQQGEwJV UzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKnCR1KMp2dBpF9fRYib UHom7cpNBnDf+djPBC8GBSHXN4KwpSgVK31xczWKSMxzU2pIj/ey1AaKH1Ixzcyx HGJFfRFZqVIBt4NIeXVysB0Wl5aGb0IxcXzDPBhd7HFUaw3v2EbdXfU71PnMdMKJ yGmVlXF9k8+KV8CcDtOiCuBVUKUN4pRTYxcvM/nRwcbPM5NlckIZQlz3lQOjw1Kp bG5qdB1k+JNpGhMqcodxeSmfqZe5mcgiWedxtw/t004NtCOOfPrWpzOfx7eESUa7 yrWzTFhcjxchmTfk5dFUySOIlYYisX8vShMTcNjE12XMsBP8tcTZCGNDXcLP0PyH pK0CAwEAAaOCAqswggKnMA4GA1UdDwEB/wQEAwIFoDCBhQYIKwYBBQUHAQEEeTB3 MDAGCCsGAQUFBzABhiRodHRwOi8vY29tbWVyY2lhbC5vY3NwLmlkZW50cnVzdC5j b20wQwYIKwYBBQUHMAKGN2h0dHA6Ly92YWxpZGF0aW9uLmlkZW50cnVzdC5jb20v Y2VydHMvaHlkcmFudGlkY2FPMS5wN2MwHwYDVR0jBBgwFoAUibibtp7t+7DGvQ3s Z048o5KdLfkwggEmBgNVHSAEggEdMIIBGTAMBgpghkgBhvkvAAYDMIIBBwYGZ4EM AQICMIH8MEAGCCsGAQUFBwIBFjRodHRwczovL3NlY3VyZS5pZGVudHJ1c3QuY29t L2NlcnRpZmljYXRlcy9wb2xpY3kvdHMvMIG3BggrBgEFBQcCAjCBqgyBp1RoaXMg VHJ1c3RJRCBTZXJ2ZXIgQ2VydGlmaWNhdGUgaGFzIGJlZW4gaXNzdWVkIGluIGFj Y29yZGFuY2Ugd2l0aCBJZGVuVHJ1c3QncyBUcnVzdElEIENlcnRpZmljYXRlIFBv bGljeSBmb3VuZCBhdCBodHRwczovL3NlY3VyZS5pZGVudHJ1c3QuY29tL2NlcnRp ZmljYXRlcy9wb2xpY3kvdHMvMEYGA1UdHwQ/MD0wO6A5oDeGNWh0dHA6Ly92YWxp ZGF0aW9uLmlkZW50cnVzdC5jb20vY3JsL2h5ZHJhbnRpZGNhbzEuY3JsMCcGA1Ud EQQgMB6CC3NvYS5uaWguZ292gg93d3cuc29hLm5paC5nb3YwHQYDVR0OBBYEFDSt VyZGuQJLq/88K/O43NCSPqT+MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQOGyQVQ0 EbjPcSrZf8HCasqyMWB5i3Y05j9XlaYcfhgVwDQGKauhEicrMo4zAfmJngPNhIjO SP55OcF8Exo1BI1pTws41nHVzNIo5MJxVSdK37bXD1/7Ju3TvkOxhIO+ZqYQKf8b k8LdZOrxOVc7xJdjosARMoQ8nnBgS08JYJ4UbIu0+X0Lsd3Bp2Q7TrtpeQkPME6p M1rENsvxCvRRcVeovmR3cL+VjTbOHCMlCWB1GMDyCii7tUamNm7CQY3Bvh3Ooi7T HXAa70PbRUwkXyX9EBC5FVFKJFXnEJVKVmqRRBaHHv0uLu584Y1Ev3DQQxvlzYym Z0OmGMgK+RgeKQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcJHUoynZ0GkX19FiJtQ eibtyk0GcN/52M8ELwYFIdc3grClKBUrfXFzNYpIzHNTakiP97LUBoofUjHNzLEc YkV9EVmpUgG3g0h5dXKwHRaXloZvQjFxfMM8GF3scVRrDe/YRt1d9TvU+cx0wonI aZWVcX2Tz4pXwJwO06IK4FVQpQ3ilFNjFy8z+dHBxs8zk2VyQhlCXPeVA6PDUqls bmp0HWT4k2kaEypyh3F5KZ+pl7mZyCJZ53G3D+3TTg20I458+tanM5/Ht4RJRrvK tbNMWFyPFyGZN+Tl0VTJI4iVhiKxfy9KExNw2MTXZcywE/y1xNkIY0Ndws/Q/Iek rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 85078478185569070027922587578675813406 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IdenTrust' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HydrantID Trusted Certificate Service' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HydrantID Server CA O1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-02 22:57:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-01 22:56:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'soa.nih.gov' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US Department of Health and Human Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21430075889180406588957752139202887786399127458350146388227870926555727649200152829231859289709698364811740125606703086902805623630127533078811570046528198409790914912960996657913051049156427877268420660672154078016127421583329949748413970008734497487577145378439706092022777227345727541527469274405501011341708103935759364981487239969957144305294118832931328718248679859622284887406682985748481335306706998588400241534207792580511894400459723942104953871746749073166275210164478509189825562563950100555606171372903904667033235542860587195484482601952204552186858106535591182298102807519206992924165932722543907021997 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://commercial.ocsp.identrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/certs/hydrantidcaO1.p7c' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 89b89bb69eedfbb0c6bd0dec674e3ca3929d2df9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (285 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113839.0.6.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.identrust.com/certificates/policy/ts/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This TrustID Server Certificate has been issued in accordance with IdenTrust's TrustID Certificate Policy found at https://secure.identrust.com/certificates/policy/ts/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (63 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/crl/hydrantidcao1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'soa.nih.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.soa.nih.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 34ad572646b9024babff3c2bf3b8dcd0923ea4fe . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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