DOTAdminLobbySigns.dot.state.de.us
- State of Delaware -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 08:d8:ac:13:ca:ac:5c:19:f8:80:08:9d:bf:f7:a9:07 was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
State of Delaware
Organization:
State of Delaware
State / Province:
Delaware
Locality: Dover
Country: US
Locality: Dover
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 08:d8:ac:13:ca:ac:5c:19:f8:80:08:9d:bf:f7:a9:07Serial Number (int): 11758850230234107771005144436512893191
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 17:5d:02:d9:32:52:ca:8f:55:96:d3:dd:88:d2:76:97:8c:1f:db:bf
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 2a:66:3b:5e:17:45:23:8d:f5:22:b8:40:5c:40:e1:fb:bd:e4:83:d6
Fingerprint (sha256): 14:a3:30:87:7b:44:58:03:12:d5:0a:36:ff:04:31:15:8a:c8:47:67:12:39:6d:a5:1d:ba:74:fb:7f:c0:64:3b
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate DOTAdminLobbySigns.dot.state.de.us
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for DOTAdminLobbySigns.dot.state.de.us
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
DOTAdminLobbySigns.dot.state.de.us
www.DOTAdminLobbySigns.dot.state.de.us
www.DOTAdminLobbySigns.dot.state.de.us
Other certificates including the domain name state.de.us
(limited to 100 certificates)
iso.delaware.gov
www.dmap.state.de.us
dtisupport.delaware.gov
dtisupport.state.de.us
dtisupport.state.de.us
artifacts.dti.state.de.us
rp.dti.delaware.gov
rp.dti.delaware.gov
dmes-rlink.dhss.state.de.us
rp.dti.delaware.gov
SIP.state.de.us
ADFS.State.de.us
Autodiscover.state.de.us
erp.state.de.us
dmesmapir.dhss.state.de.us
rp.dti.delaware.gov
dcisuat.corp.delaware.gov
DOTAdminLobbySigns.dot.state.de.us
ADFS.state.de.us
prt3adotsigndb.state.de.us
LyncBiggsPool.state.de.us
appsserver.deljis.state.de.us
lists.state.de.us
dmes-rlink.dhss.state.de.us
ADFS.State.de.us
dmesesb.dhss.state.de.us
rp.dti.delaware.gov
rp.dti.delaware.gov
www.dmap.state.de.us
OWA.state.de.us
dhcp.state.de.us
owa.cj.state.de.us
onestoptspublic.dti.delaware.gov
LyncEdge.state.de.us
dtibiggsuccx.state.de.us
test.legis.delaware.gov
rp.dti.delaware.gov
rp.dti.delaware.gov
SIP.state.de.us
rp.dti.delaware.gov
sos-res.state.de.us
sos-res.state.de.us
*.legis.delaware.gov
rp.dti.delaware.gov
rp.dti.delaware.gov
dmes-alm.dhss.state.de.us
SecureMail.state.de.us
dmesedms.dhss.state.de.us
SecureMail.state.de.us
k12.de.us
mail.port.state.de.us
enterpriseenrollment.delaware.gov
uccx-biggs-dmv.state.de.us
testegov.dti.state.de.us
rp.dti.delaware.gov
uccx-dover-2.state.de.us
docdirerp.dti.state.de.us
LyncDovPool.state.de.us
SIP.state.de.us
apps.dnrec.state.de.us
dmeshcpadmin.dhss.state.de.us
rp.dti.delaware.gov
legis.delaware.gov
rp.dti.delaware.gov
*.legis.delaware.gov
extranet-test.gic.dos.state.de.us
ADFS.CJ.State.de.us
test.legis.delaware.gov
dmesbiar.dhss.state.de.us
TestDorOneStopClient.dti.state.de.us
extranet.phrst.state.de.us
lyris.dti.delaware.gov
onestoptspublic.dti.delaware.gov
rp.dti.delaware.gov
phrstrapd.spo.state.de.us
dmes-ppm.dhss.state.de.us
hearing-test.dmv.state.de.us
dtidovuccx.state.de.us
www.dmap.state.de.us
Mail.state.de.us
apps.dnrec.state.de.us
www.dmap.state.de.us
rp.dti.delaware.gov
securemail.state.de.us
conduits.dti.state.de.us
lyris.dti.delaware.gov
dhcp.state.de.us
dtisupport.delaware.gov
rp.dti.delaware.gov
vcs.delaware.gov
dsfstest.dti.state.de.us
legis.delaware.gov
vcs.state.de.us
dtisupport.delaware.gov
www.dmap.state.de.us
ws.state.de.us
rp.dti.delaware.gov
rp.dti.delaware.gov
uccx-dover-dmv.state.de.us
uccx-biggs-2.state.de.us
www.dmap.state.de.us
dtisupport.delaware.gov
dtisupport.state.de.us
dtisupport.state.de.us
artifacts.dti.state.de.us
rp.dti.delaware.gov
rp.dti.delaware.gov
dmes-rlink.dhss.state.de.us
rp.dti.delaware.gov
SIP.state.de.us
ADFS.State.de.us
Autodiscover.state.de.us
erp.state.de.us
dmesmapir.dhss.state.de.us
rp.dti.delaware.gov
dcisuat.corp.delaware.gov
DOTAdminLobbySigns.dot.state.de.us
ADFS.state.de.us
prt3adotsigndb.state.de.us
LyncBiggsPool.state.de.us
appsserver.deljis.state.de.us
lists.state.de.us
dmes-rlink.dhss.state.de.us
ADFS.State.de.us
dmesesb.dhss.state.de.us
rp.dti.delaware.gov
rp.dti.delaware.gov
www.dmap.state.de.us
OWA.state.de.us
dhcp.state.de.us
owa.cj.state.de.us
onestoptspublic.dti.delaware.gov
LyncEdge.state.de.us
dtibiggsuccx.state.de.us
test.legis.delaware.gov
rp.dti.delaware.gov
rp.dti.delaware.gov
SIP.state.de.us
rp.dti.delaware.gov
sos-res.state.de.us
sos-res.state.de.us
*.legis.delaware.gov
rp.dti.delaware.gov
rp.dti.delaware.gov
dmes-alm.dhss.state.de.us
SecureMail.state.de.us
dmesedms.dhss.state.de.us
SecureMail.state.de.us
k12.de.us
mail.port.state.de.us
enterpriseenrollment.delaware.gov
uccx-biggs-dmv.state.de.us
testegov.dti.state.de.us
rp.dti.delaware.gov
uccx-dover-2.state.de.us
docdirerp.dti.state.de.us
LyncDovPool.state.de.us
SIP.state.de.us
apps.dnrec.state.de.us
dmeshcpadmin.dhss.state.de.us
rp.dti.delaware.gov
legis.delaware.gov
rp.dti.delaware.gov
*.legis.delaware.gov
extranet-test.gic.dos.state.de.us
ADFS.CJ.State.de.us
test.legis.delaware.gov
dmesbiar.dhss.state.de.us
TestDorOneStopClient.dti.state.de.us
extranet.phrst.state.de.us
lyris.dti.delaware.gov
onestoptspublic.dti.delaware.gov
rp.dti.delaware.gov
phrstrapd.spo.state.de.us
dmes-ppm.dhss.state.de.us
hearing-test.dmv.state.de.us
dtidovuccx.state.de.us
www.dmap.state.de.us
Mail.state.de.us
apps.dnrec.state.de.us
www.dmap.state.de.us
rp.dti.delaware.gov
securemail.state.de.us
conduits.dti.state.de.us
lyris.dti.delaware.gov
dhcp.state.de.us
dtisupport.delaware.gov
rp.dti.delaware.gov
vcs.delaware.gov
dsfstest.dti.state.de.us
legis.delaware.gov
vcs.state.de.us
dtisupport.delaware.gov
www.dmap.state.de.us
ws.state.de.us
rp.dti.delaware.gov
rp.dti.delaware.gov
uccx-dover-dmv.state.de.us
uccx-biggs-2.state.de.us
Certificate
The complete raw certificate details for DOTAdminLobbySigns.dot.state.de.us in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIQCNisE8qsXBn4gAidv/epBzANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDA0MTYxMjU4MjlaFw0yNTA0MTYxMjU4MjhaMHkxCzAJBgNVBAYTAlVTMREwDwYD VQQIEwhEZWxhd2FyZTEOMAwGA1UEBxMFRG92ZXIxGjAYBgNVBAoTEVN0YXRlIG9m IERlbGF3YXJlMSswKQYDVQQDEyJET1RBZG1pbkxvYmJ5U2lnbnMuZG90LnN0YXRl LmRlLnVzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnjVmReyjaSs kg8dM5T+bO8z+n6x9MIW124F5ltpp3tGYzPU9d21XE8fXhDLCRC5M5vL8XnT1NJE uGx2fUDelfOhwcUshWrleqYHjtwzEdmRhIbzGHwdBJsjZ5eRqdqGRt7BUPoJeuP5 zobgREsG9t4mrqhYg0Q6JnN37xY1Okh1Iwz3fvI6F8uT4ShYjKgBVrK9gL2TNdFg 8OB38fF+d0OJLRWRGYp8HxSG6A614xwRwzA7Aiaa6LmtFD+hOKQTS0ZBemP5xbOh 8vRI9SMBZ92rvVSfQ5FqqE5GyErITtGBT+sLQgTsqMPNInhfitcJZ8rXvgR30qd6 GX9dYTtjOwIDAQABo4IBoTCCAZ0wDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUF10C 2TJSyo9VltPdiNJ2l4wf278wHwYDVR0jBBgwFoAUgqJwdN28Uz/Pe9T3zX+nYMYK TL8waAYIKwYBBQUHAQEEXDBaMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRy dXN0Lm5ldDAzBggrBgEFBQcwAoYnaHR0cDovL2FpYS5lbnRydXN0Lm5ldC9sMWst Y2hhaW4yNTYuY2VyMDMGA1UdHwQsMCowKKAmoCSGImh0dHA6Ly9jcmwuZW50cnVz dC5uZXQvbGV2ZWwxay5jcmwwVQYDVR0RBE4wTIIiRE9UQWRtaW5Mb2JieVNpZ25z LmRvdC5zdGF0ZS5kZS51c4Imd3d3LkRPVEFkbWluTG9iYnlTaWducy5kb3Quc3Rh dGUuZGUudXMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjATBgNVHSAEDDAKMAgGBmeBDAECAjATBgorBgEEAdZ5AgQDAQH/BAIF ADANBgkqhkiG9w0BAQsFAAOCAQEAv/LL5awECrcfiI7oECHufFH09i5h+HXZHwFt DpJrPPEiwiwxwZWM9LBl4FM5iUQoglkEVlcM5/Zzc8doZ5nAlEIVsk48lA0IVeku UoxKjZYNQCAOhIGojEJCLFEqiVcHv7LoAigBPItX66504JBxo6AYHiATeo6yr/Wx Aj8sRtrNGTF/wvoqXlCn6MYg/sDdrgMxe1AVIkpKbdFVrqai7SJimtRMx8ggdV1S R28NsGDXYlGcjuHDrYQz6dEuBI/6/BkNcgK6Q33T7DPPOTHAc1pRPd5Mtm4BqkSH jRRYdJaAgqtd6GuWApf2V7zQu/zSNwkFXyxM7wMCsLOwZek2bw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnjVmReyjaSskg8dM5T+ bO8z+n6x9MIW124F5ltpp3tGYzPU9d21XE8fXhDLCRC5M5vL8XnT1NJEuGx2fUDe lfOhwcUshWrleqYHjtwzEdmRhIbzGHwdBJsjZ5eRqdqGRt7BUPoJeuP5zobgREsG 9t4mrqhYg0Q6JnN37xY1Okh1Iwz3fvI6F8uT4ShYjKgBVrK9gL2TNdFg8OB38fF+ d0OJLRWRGYp8HxSG6A614xwRwzA7Aiaa6LmtFD+hOKQTS0ZBemP5xbOh8vRI9SMB Z92rvVSfQ5FqqE5GyErITtGBT+sLQgTsqMPNInhfitcJZ8rXvgR30qd6GX9dYTtj OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11758850230234107771005144436512893191 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-16 12:58:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-16 12:58:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Delaware' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Dover' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'State of Delaware' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOTAdminLobbySigns.dot.state.de.us' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23034957151104684520424244989066970174330885396107699151082051233484917343036025694681865995354012766143728560250076586247764902784207855300428719048402865718278437916195884981215685894787206603293668965004264139604708931935965728216830903462941541267525144494824367700166056409230164503033211398056692602812630582139634967410270293263311727524007125664694283966346905248013637910513161134465930662423648046510863071306036714255878665078340447075429638341572136915896883632788914892104851574580866468773537689984103180942494171130335117690450662291826181058154646459386262878529570888859264862558571280125410584257339 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 175d02d93252ca8f5596d3dd88d276978c1fdbbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (78 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'DOTAdminLobbySigns.dot.state.de.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.DOTAdminLobbySigns.dot.state.de.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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