test.healthcare.gov
- Centers for Medicare & Medicaid Services -
Issued by GeoTrust SSL CA - G3
About this certificate
This digital certificate with serial number 67:fa:dd:03:74:52:2f:6a:8f:96:78:b1:45:a8:43:65 was issued on by GeoTrust Inc..
With 48 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Centers for Medicare & Medicaid Services
Organization:
Centers for Medicare & Medicaid Services
State / Province:
Maryland
Locality: Baltimore
Country: US
Locality: Baltimore
Country: US
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 67:fa:dd:03:74:52:2f:6a:8f:96:78:b1:45:a8:43:65Serial Number (int): 138213040466686553351592040561988092773
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: d2:6f:f7:96:f4:85:3f:72:3c:30:7d:23:da:85:78:9b:a3:7c:5a:7c
Fingerprint (sha1): bb:cf:4d:b9:1e:7f:a1:e5:0e:42:af:8a:dc:5c:65:29:01:bd:e7:16
Fingerprint (sha256): 15:ea:3a:3a:a1:ec:64:f3:d5:ea:65:6a:bc:f4:ba:42:09:d7:a6:b4:4b:58:6b:9c:15:b0:81:87:91:8e:f5:cf
Issuing Certificate URL: http://gn.symcb.com/gn.crt
Revocation information
OCSP Server: http://gn.symcd.comCRL Distribution Point: http://gn.symcb.com/gn.crl
Check the revocation status for certificate test.healthcare.gov
48
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for test.healthcare.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
imp.cuidadodesalud.gov
imp1b.cuidadodesalud.gov
test.cuidadodesalud.gov
imp2.cuidadodesalud.gov
test2.cuidadodesalud.gov
ayudalocal.dev.cuidadodesalud.gov
dev2.cuidadodesalud.gov
test1.cuidadodesalud.gov
ayudalocal.test.cuidadodesalud.gov
ayudalocal.imp.cuidadodesalud.gov
test3.cuidadodesalud.gov
dev.cuidadodesalud.gov
imp1a.cuidadodesalud.gov
dev2.healthcare.gov
dev.healthcare.gov
logint.healthcare.gov
companyprofiles.dev.healthcare.gov
logini.healthcare.gov
api.finder.test.healthcare.gov
imp2.healthcare.gov
dev1.shop.healthcare.gov
test1.shop.healthcare.gov
companyprofiles.imp.healthcare.gov
test1.healthcare.gov
api.finder.imp.healthcare.gov
imp.healthcare.gov
dev0.shop.healthcare.gov
assets.test.healthcare.gov
companyprofiles.test.healthcare.gov
localhelp.dev.healthcare.gov
data.test.healthcare.gov
imp.address.api.healthcare.gov
test2.healthcare.gov
test.address.api.healthcare.gov
finder.dev.healthcare.gov
imp1b.healthcare.gov
imp1a.healthcare.gov
assets.dev.healthcare.gov
localhelp.imp.healthcare.gov
dev.address.api.healthcare.gov
test0.shop.healthcare.gov
api.finder.dev.healthcare.gov
localhelp.test.healthcare.gov
finder.imp.healthcare.gov
test3.healthcare.gov
assets.imp.healthcare.gov
finder.test.healthcare.gov
test.healthcare.gov
imp1b.cuidadodesalud.gov
test.cuidadodesalud.gov
imp2.cuidadodesalud.gov
test2.cuidadodesalud.gov
ayudalocal.dev.cuidadodesalud.gov
dev2.cuidadodesalud.gov
test1.cuidadodesalud.gov
ayudalocal.test.cuidadodesalud.gov
ayudalocal.imp.cuidadodesalud.gov
test3.cuidadodesalud.gov
dev.cuidadodesalud.gov
imp1a.cuidadodesalud.gov
dev2.healthcare.gov
dev.healthcare.gov
logint.healthcare.gov
companyprofiles.dev.healthcare.gov
logini.healthcare.gov
api.finder.test.healthcare.gov
imp2.healthcare.gov
dev1.shop.healthcare.gov
test1.shop.healthcare.gov
companyprofiles.imp.healthcare.gov
test1.healthcare.gov
api.finder.imp.healthcare.gov
imp.healthcare.gov
dev0.shop.healthcare.gov
assets.test.healthcare.gov
companyprofiles.test.healthcare.gov
localhelp.dev.healthcare.gov
data.test.healthcare.gov
imp.address.api.healthcare.gov
test2.healthcare.gov
test.address.api.healthcare.gov
finder.dev.healthcare.gov
imp1b.healthcare.gov
imp1a.healthcare.gov
assets.dev.healthcare.gov
localhelp.imp.healthcare.gov
dev.address.api.healthcare.gov
test0.shop.healthcare.gov
api.finder.dev.healthcare.gov
localhelp.test.healthcare.gov
finder.imp.healthcare.gov
test3.healthcare.gov
assets.imp.healthcare.gov
finder.test.healthcare.gov
test.healthcare.gov
Other certificates including the domain name healthcare.gov
(limited to 100 certificates)
splunk.aws.healthcare.gov
test3.healthcare.gov
test3.healthcare.gov
www.healthcare.gov
test2.healthcare.gov
www2.cms.gov
orig.impl1a.ses.api.healthcare.gov
www.healthcare.gov
pet-elb.imp1b.healthcare.gov
test-t.healthcare.gov
shop.prod.healthcare.gov
www.healthcare.gov
www.healthcare.gov
adobe-ep.healthcare.gov
www2.healthcare.gov
tmdsm.aws.healthcare.gov
www2.cms.gov
www2.cms.gov
app-dc01.prod.healthcare.gov
app-dc01.prod.healthcare.gov
test3.healthcare.gov
www2.healthcare.gov
tmdsmdr.aws.healthcare.gov
net.prod.healthcare.gov
test2.healthcare.gov
api.healthcare.gov
www.healthcare.gov
impl.mcr.dsh.healthcare.gov
search.test.healthcare.gov
www2.cms.gov
www2.cms.gov
test.healthcare.gov
dsrs.api.healthcare.gov
test4.healthcare.gov
test4.healthcare.gov
net-dc01.prod.healthcare.gov
test3.healthcare.gov
prod.pc2-elb.healthcare.gov
vpneast.aws.cms.gov
www.healthcare.gov
test3.healthcare.gov
orig.ses.api.healthcare.gov
www2.cms.gov
www2.cms.gov
test2.healthcare.gov
sls-elb.imp.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
test2.healthcare.gov
search1.healthcare.gov
test.healthcare.gov
api.healthcare.gov
tmdsmdr.aws.healthcare.gov
test3.healthcare.gov
chat.healthcare.gov
nagiosdr.aws.healthcare.gov
test2.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
www2.cms.gov
test3.healthcare.gov
prod-t.healthcare.gov
www2.cms.gov
test2.healthcare.gov
origin-es-app.prod.healthcare.gov
test0.mcr.gw.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
test.healthcare.gov
test.healthcare.gov
b.dev.healthcare.gov
www.healthcare.gov
www2.healthcare.gov
test2.healthcare.gov
mcr.api.healthcare.gov
api-manager-elb.dev.healthcare.gov
www2.cms.gov
imp1b-marketplace-elb.api.healthcare.gov
origin-es-app.prod.healthcare.gov
test2.healthcare.gov
test.healthcare.gov
www2.cms.gov
www2.healthcare.gov
app1a.imp.healthcare.gov
test3.healthcare.gov
test0.shop.healthcare.gov
test2.healthcare.gov
chat.healthcare.gov
api-manager-elb.imp.healthcare.gov
www.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www2.cms.gov
api.healthcare.gov
www2.cms.gov
test2.healthcare.gov
test3.healthcare.gov
test3.healthcare.gov
test3.healthcare.gov
www.healthcare.gov
test2.healthcare.gov
www2.cms.gov
orig.impl1a.ses.api.healthcare.gov
www.healthcare.gov
pet-elb.imp1b.healthcare.gov
test-t.healthcare.gov
shop.prod.healthcare.gov
www.healthcare.gov
www.healthcare.gov
adobe-ep.healthcare.gov
www2.healthcare.gov
tmdsm.aws.healthcare.gov
www2.cms.gov
www2.cms.gov
app-dc01.prod.healthcare.gov
app-dc01.prod.healthcare.gov
test3.healthcare.gov
www2.healthcare.gov
tmdsmdr.aws.healthcare.gov
net.prod.healthcare.gov
test2.healthcare.gov
api.healthcare.gov
www.healthcare.gov
impl.mcr.dsh.healthcare.gov
search.test.healthcare.gov
www2.cms.gov
www2.cms.gov
test.healthcare.gov
dsrs.api.healthcare.gov
test4.healthcare.gov
test4.healthcare.gov
net-dc01.prod.healthcare.gov
test3.healthcare.gov
prod.pc2-elb.healthcare.gov
vpneast.aws.cms.gov
www.healthcare.gov
test3.healthcare.gov
orig.ses.api.healthcare.gov
www2.cms.gov
www2.cms.gov
test2.healthcare.gov
sls-elb.imp.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
test2.healthcare.gov
search1.healthcare.gov
test.healthcare.gov
api.healthcare.gov
tmdsmdr.aws.healthcare.gov
test3.healthcare.gov
chat.healthcare.gov
nagiosdr.aws.healthcare.gov
test2.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
www2.cms.gov
test3.healthcare.gov
prod-t.healthcare.gov
www2.cms.gov
test2.healthcare.gov
origin-es-app.prod.healthcare.gov
test0.mcr.gw.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
test.healthcare.gov
test.healthcare.gov
b.dev.healthcare.gov
www.healthcare.gov
www2.healthcare.gov
test2.healthcare.gov
mcr.api.healthcare.gov
api-manager-elb.dev.healthcare.gov
www2.cms.gov
imp1b-marketplace-elb.api.healthcare.gov
origin-es-app.prod.healthcare.gov
test2.healthcare.gov
test.healthcare.gov
www2.cms.gov
www2.healthcare.gov
app1a.imp.healthcare.gov
test3.healthcare.gov
test0.shop.healthcare.gov
test2.healthcare.gov
chat.healthcare.gov
api-manager-elb.imp.healthcare.gov
www.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www2.cms.gov
api.healthcare.gov
www2.cms.gov
test2.healthcare.gov
test3.healthcare.gov
Certificate
The complete raw certificate details for test.healthcare.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILhjCCCm6gAwIBAgIQZ/rdA3RSL2qPlnixRahDZTANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UEAxMU R2VvVHJ1c3QgU1NMIENBIC0gRzMwHhcNMTcwODIzMDAwMDAwWhcNMTgxMTIyMjM1 OTU5WjCBhTELMAkGA1UEBhMCVVMxETAPBgNVBAgMCE1hcnlsYW5kMRIwEAYDVQQH DAlCYWx0aW1vcmUxMTAvBgNVBAoMKENlbnRlcnMgZm9yIE1lZGljYXJlICYgTWVk aWNhaWQgU2VydmljZXMxHDAaBgNVBAMME3Rlc3QuaGVhbHRoY2FyZS5nb3YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD0erzSbyXq/vb36mkomTK6ee9 bu5KtEqUKhuB7oD0J2D7OQu2UZCKZZ6Dlx0tgB9nmeykOBL4SynxcUAup2Vr86e5 1xFoApsP2Cz0Py3wZ4ts4hPCzFkIFpgSSrOAdfXKV49ApfqAcIXbLSYfvofNwJre X/8dHLGGbFSk1Y+d+mkvI5Zv1BhboxpUqjAk/R4pYf1ByPRlmx/WAknl9lzIxIDQ lbxBQz2o+VPQfj+wsBODl+5w3aD2/DSlPc+og2uprZO69RDddUCOUyiIlViAmDqm srhOJQUi/ApekQhQXoDhBTnRFUktwI8rG6PZxgHdu/gi4pXEeKEhfcYvWya1AgMB AAGjgggwMIIILDCCBSYGA1UdEQSCBR0wggUZghZpbXAuY3VpZGFkb2Rlc2FsdWQu Z292ghhpbXAxYi5jdWlkYWRvZGVzYWx1ZC5nb3aCF3Rlc3QuY3VpZGFkb2Rlc2Fs dWQuZ292ghdpbXAyLmN1aWRhZG9kZXNhbHVkLmdvdoIYdGVzdDIuY3VpZGFkb2Rl c2FsdWQuZ292giFheXVkYWxvY2FsLmRldi5jdWlkYWRvZGVzYWx1ZC5nb3aCF2Rl djIuY3VpZGFkb2Rlc2FsdWQuZ292ghh0ZXN0MS5jdWlkYWRvZGVzYWx1ZC5nb3aC ImF5dWRhbG9jYWwudGVzdC5jdWlkYWRvZGVzYWx1ZC5nb3aCIWF5dWRhbG9jYWwu aW1wLmN1aWRhZG9kZXNhbHVkLmdvdoIYdGVzdDMuY3VpZGFkb2Rlc2FsdWQuZ292 ghZkZXYuY3VpZGFkb2Rlc2FsdWQuZ292ghhpbXAxYS5jdWlkYWRvZGVzYWx1ZC5n b3aCE2RldjIuaGVhbHRoY2FyZS5nb3aCEmRldi5oZWFsdGhjYXJlLmdvdoIVbG9n aW50LmhlYWx0aGNhcmUuZ292giJjb21wYW55cHJvZmlsZXMuZGV2LmhlYWx0aGNh cmUuZ292ghVsb2dpbmkuaGVhbHRoY2FyZS5nb3aCHmFwaS5maW5kZXIudGVzdC5o ZWFsdGhjYXJlLmdvdoITaW1wMi5oZWFsdGhjYXJlLmdvdoIYZGV2MS5zaG9wLmhl YWx0aGNhcmUuZ292ghl0ZXN0MS5zaG9wLmhlYWx0aGNhcmUuZ292giJjb21wYW55 cHJvZmlsZXMuaW1wLmhlYWx0aGNhcmUuZ292ghR0ZXN0MS5oZWFsdGhjYXJlLmdv doIdYXBpLmZpbmRlci5pbXAuaGVhbHRoY2FyZS5nb3aCEmltcC5oZWFsdGhjYXJl LmdvdoIYZGV2MC5zaG9wLmhlYWx0aGNhcmUuZ292ghphc3NldHMudGVzdC5oZWFs dGhjYXJlLmdvdoIjY29tcGFueXByb2ZpbGVzLnRlc3QuaGVhbHRoY2FyZS5nb3aC HGxvY2FsaGVscC5kZXYuaGVhbHRoY2FyZS5nb3aCGGRhdGEudGVzdC5oZWFsdGhj YXJlLmdvdoIeaW1wLmFkZHJlc3MuYXBpLmhlYWx0aGNhcmUuZ292ghR0ZXN0Mi5o ZWFsdGhjYXJlLmdvdoIfdGVzdC5hZGRyZXNzLmFwaS5oZWFsdGhjYXJlLmdvdoIZ ZmluZGVyLmRldi5oZWFsdGhjYXJlLmdvdoIUaW1wMWIuaGVhbHRoY2FyZS5nb3aC FGltcDFhLmhlYWx0aGNhcmUuZ292ghlhc3NldHMuZGV2LmhlYWx0aGNhcmUuZ292 ghxsb2NhbGhlbHAuaW1wLmhlYWx0aGNhcmUuZ292gh5kZXYuYWRkcmVzcy5hcGku aGVhbHRoY2FyZS5nb3aCGXRlc3QwLnNob3AuaGVhbHRoY2FyZS5nb3aCHWFwaS5m aW5kZXIuZGV2LmhlYWx0aGNhcmUuZ292gh1sb2NhbGhlbHAudGVzdC5oZWFsdGhj YXJlLmdvdoIZZmluZGVyLmltcC5oZWFsdGhjYXJlLmdvdoIUdGVzdDMuaGVhbHRo Y2FyZS5nb3aCGWFzc2V0cy5pbXAuaGVhbHRoY2FyZS5nb3aCGmZpbmRlci50ZXN0 LmhlYWx0aGNhcmUuZ292ghN0ZXN0LmhlYWx0aGNhcmUuZ292MAkGA1UdEwQCMAAw DgYDVR0PAQH/BAQDAgWgMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9nbi5zeW1j Yi5jb20vZ24uY3JsMIGdBgNVHSAEgZUwgZIwgY8GBmeBDAECAjCBhDA/BggrBgEF BQcCARYzaHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0 b3J5L2xlZ2FsMEEGCCsGAQUFBwICMDUMM2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNv bS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdhbDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwHwYDVR0jBBgwFoAU0m/3lvSFP3I8MH0j2oV4m6N8WnwwVwYI KwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8vZ24uc3ltY2QuY29tMCYG CCsGAQUFBzAChhpodHRwOi8vZ24uc3ltY2IuY29tL2duLmNydDCCAX0GCisGAQQB 1nkCBAIEggFtBIIBaQFnAHYA3esdK3oNT6Ygi4GtgWhwfi6OnQHVXIiNPRHEzbbs vswAAAFeEQnGcgAABAMARzBFAiA0sAB4BisfxU6Ix6hedpU8umJG6JX13ahCI572 dnVOMwIhAPkud5n0Sqm/bMJ99MadHvdMXi+drD6ygKPO8pMMMfB3AHYApLkJkLQY WBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFeEQnGewAABAMARzBFAiEA9Z+P CPcNu5w51ZCV+wghs2aBVS3fTsm2KHSmQvj0VD4CIB6EItVB+EiDAeVCYEgpvYM3 WCVleLTileb3Hvki0bXoAHUA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo /csAAAFeEQnIPwAABAMARjBEAiA5G7R204ubM9NzPWOkjpXmH4XukeNo5dNPoalM wfCx6AIgHWrOpxTO7MqzgBy/1ZJVMmJglSeZRd7Rk4KhV4a6m8MwDQYJKoZIhvcN AQELBQADggEBAFOmrecjUuItWZX7Yv/cyvEDQI0knmIRaWKPEcrDyTgxGZebWU0C ku1XGSZ/HiwrqTQRrlHm8QaIZS1/UNsCHVW1jvKK6yAhXRQGKyTckbPpMHGlHTso pDaE+h3Ky4fJRIWjBPfRZK5RotATg1v5g9an9r0b7KK6wMa0C/dPgbZZrzqtL/db 8papLcjHqC8jX4tamwPD+sWRrWdAD7TXNGWzwyfiaZ5ZYfIOVarUAV7j8+0nNfjn SSBt/g2L2GDWQ9n/hs+0FS56Ujx0DU4ps5TncM2BWHeQ0S5SyVIw8woNLRfU8haA mfXjkc/9r/bWjo53gPAn3JHbmmjfUsjuG1w= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9Hq80m8l6v729+ppKJk yunnvW7uSrRKlCobge6A9Cdg+zkLtlGQimWeg5cdLYAfZ5nspDgS+Esp8XFALqdl a/OnudcRaAKbD9gs9D8t8GeLbOITwsxZCBaYEkqzgHX1ylePQKX6gHCF2y0mH76H zcCa3l//HRyxhmxUpNWPnfppLyOWb9QYW6MaVKowJP0eKWH9Qcj0ZZsf1gJJ5fZc yMSA0JW8QUM9qPlT0H4/sLATg5fucN2g9vw0pT3PqINrqa2TuvUQ3XVAjlMoiJVY gJg6prK4TiUFIvwKXpEIUF6A4QU50RVJLcCPKxuj2cYB3bv4IuKVxHihIX3GL1sm tQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 138213040466686553351592040561988092773 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Baltimore' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Centers for Medicare & Medicaid Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'test.healthcare.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24719983781157110832920909131324255275456428289047399987847666669288453012622287425600146318349255623251023299094269807691651965643919848383934107510959653250068758047182738543136207041054307616941654083888880173756178790752678113126914687727754906909587835629312913189556782116915188619920280061460657598260523789407506348769457909865370504423330686775742450277644722266429060143988632032640005324613503688151619781601294584937665056424246370544388135092997559786281673760424601262132977573743721783928947525810216656857428936926597216563480699706008290559731221787818805186219043754815911229954975523362551254165173 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1309 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp1b.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp2.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test2.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ayudalocal.dev.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev2.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test1.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ayudalocal.test.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ayudalocal.imp.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test3.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp1a.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev2.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'logint.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companyprofiles.dev.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'logini.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.finder.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp2.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev1.shop.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test1.shop.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companyprofiles.imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test1.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.finder.imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev0.shop.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companyprofiles.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'localhelp.dev.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp.address.api.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test2.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.address.api.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finder.dev.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp1b.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp1a.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.dev.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'localhelp.imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.address.api.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test0.shop.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.finder.dev.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'localhelp.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finder.imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test3.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finder.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.healthcare.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d26ff796f4853f723c307d23da85789ba37c5a7c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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