ako.sec.army.mil

Issued by DOD CA-27

About this certificate


This digital certificate with serial number 01:48:01 was issued on by U.S. Government .

With 5 subject alternative names this certificate can be used to secure multiple fqdn's. While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

Cerificate errors/warnings *beta

  • ERROR: Certificate contains a CRL with an non-preferred scheme ([ldap])
  • ERROR: localityName or stateOrProvinceName is required if organizationName is set
  • ERROR: stateOrProvinceName is required if organizationName is set

U.S.Government

Organization: U.S.Government
Organization unit: DoD
Organization unit: PKI
Organization unit: USA
Country: US

U.S. Government

Organization: U.S. Government
Organization unit: DoD
Organization unit: PKI
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 01:48:01
Serial Number (int): 83969
Serial Number lenght: 17 bits, 3 octets

SubjectKeyId: 24:30:50:e8:4a:40:74:aa:fb:b6:6d:3e:08:09:24:c5:4f:34:49:39
AuthorityKeyId: 1b:04:04:40:45:5e:7d:2b:5e:0b:cc:99:65:4d:f3:a4:de:90:77:17

Fingerprint (sha1): f2:29:94:45:fb:0c:c9:cd:3d:2f:1e:06:d6:3a:58:1f:8b:a0:a6:1d
Fingerprint (sha256): a6:6b:50:12:20:34:c8:cf:27:f2:41:99:a9:ce:dd:fa:1c:e1:71:01:1e:7e:57:c0:11:9e:39:6f:17:0d:cf:fb

Issuing Certificate URL: http://crl.disa.mil/sign/DODCA_27.cer

Revocation information

OCSP Server: http://ocsp.disa.mil
CRL Distribution Point: http://crl.disa.mil/crl/DODCA_27.crl
CRL Distribution Point: ldap://crl.gds.disa.mil/cn%3dDOD%20CA-27%2cou%3dPKI%2cou%3dDoD%2co%3dU.S.%20Government%2cc%3dUS?certificaterevocationlist;binary

Check the revocation status for the current certificate on ako.sec.army.mil
5
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Extensions

7 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

ako.sec.army.mil
www.ako.sec.army.mil
ako.sec.apg.army.mil
www.ako.sec.apg.army.mil
143.84.24.97

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIDAUgBMA0GCSqGSIb3DQEBBQUAMFcxCzAJBgNVBAYTAlVT MRgwFgYDVQQKEw9VLlMuIEdvdmVybm1lbnQxDDAKBgNVBAsTA0RvRDEMMAoGA1UE CxMDUEtJMRIwEAYDVQQDEwlET0QgQ0EtMjcwHhcNMTMwNTI0MTQzNDIyWhcNMTYw NTI0MTQzNDIyWjBrMQswCQYDVQQGEwJVUzEXMBUGA1UEChMOVS5TLkdvdmVybm1l bnQxDDAKBgNVBAsTA0RvRDEMMAoGA1UECxMDUEtJMQwwCgYDVQQLEwNVU0ExGTAX BgNVBAMTEGFrby5zZWMuYXJteS5taWwwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQC3Z9gC8CnCobcNaXt9cr1PZiBIY4AG2UA5fuMxlOxtzxFy3tqGqIZO ym3d3b9V7prHlrOwKEi8/fbWMkbXYjNX95jbcbc3cPorwTueticJygKOkQyz0RPp n1D/UMh+VSwsztZZgZtDGLmv/PpFY1LaZuLwyk7+YKj125Zp7krnWAN74/kHutym 2yr/fB6XpuU4ECnSh93KlieVbQumrnxT15XwCyPrQkPogC3eIOXGk0ivpyV93qrU kmq9kpzLcQlChsgpMdiK1ZQZqx1e9DkRRLdBKw0lCvcweBuVRlLokVpk7ontbrYO BA2sA3U2pUpjvtk+GntXNYnuRSYXqj8lAgMBAAGjggIVMIICETAfBgNVHSMEGDAW gBQbBARARV59K14LzJllTfOk3pB3FzAdBgNVHQ4EFgQUJDBQ6EpAdKr7tm0+CAkk xU80STkwYwYIKwYBBQUHAQEEVzBVMDEGCCsGAQUFBzAChiVodHRwOi8vY3JsLmRp c2EubWlsL3NpZ24vRE9EQ0FfMjcuY2VyMCAGCCsGAQUFBzABhhRodHRwOi8vb2Nz cC5kaXNhLm1pbDAOBgNVHQ8BAf8EBAMCBaAwgcMGA1UdHwSBuzCBuDAqoCigJoYk aHR0cDovL2NybC5kaXNhLm1pbC9jcmwvRE9EQ0FfMjcuY3JsMIGJoIGGoIGDhoGA bGRhcDovL2NybC5nZHMuZGlzYS5taWwvY24lM2RET0QlMjBDQS0yNyUyY291JTNk UEtJJTJjb3UlM2REb0QlMmNvJTNkVS5TLiUyMEdvdmVybm1lbnQlMmNjJTNkVVM/ Y2VydGlmaWNhdGVyZXZvY2F0aW9ubGlzdDtiaW5hcnkwbwYDVR0RBGgwZoIQYWtv LnNlYy5hcm15Lm1pbIIUd3d3LmFrby5zZWMuYXJteS5taWyCFGFrby5zZWMuYXBn LmFybXkubWlsghh3d3cuYWtvLnNlYy5hcGcuYXJteS5taWyCDDE0My44NC4yNC45 NzAjBgNVHSAEHDAaMAsGCWCGSAFlAgELBTALBglghkgBZQIBCxIwDQYJKoZIhvcN AQEFBQADggEBAC7KG5G4dIKF7t/TNOq8oztpz+rwo0y3+xWClHe1b1RFf3k+MpSw olZT+84vbD1LV3L5X1HwWIrEV/H/LWYCmCpNG4VDMWxr/XhFQS4uKq43rKLOMmu7 7hiYPcHf2wjD29A1Q5WwREEbv8St0Krc2v2gUAIRJBy1n9HCH6tLE0dY8UpFMUqE +0txH6gN693QwcoH45dyW6GHFoWgNjDnZg22SxnsolXm/fFhlJDCBmiehA2q0Axg QPGBNpBTvzbhKnB8XxqutP0HXiEIEvPFFAPOqO7vt/Ppej1AF8XFgbxyZskNrBi4 LYW3g5lJktDeIF5ODi2XkqUmPEINqv97XpI= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2fYAvApwqG3DWl7fXK9 T2YgSGOABtlAOX7jMZTsbc8Rct7ahqiGTspt3d2/Ve6ax5azsChIvP321jJG12Iz V/eY23G3N3D6K8E7nrYnCcoCjpEMs9ET6Z9Q/1DIflUsLM7WWYGbQxi5r/z6RWNS 2mbi8MpO/mCo9duWae5K51gDe+P5B7rcptsq/3wel6blOBAp0ofdypYnlW0Lpq58 U9eV8Asj60JD6IAt3iDlxpNIr6clfd6q1JJqvZKcy3EJQobIKTHYitWUGasdXvQ5 EUS3QSsNJQr3MHgblUZS6JFaZO6J7W62DgQNrAN1NqVKY77ZPhp7VzWJ7kUmF6o/ JQIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 83969 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOD CA-27' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-05-24 14:34:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-24 14:34:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S.Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'USA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ako.sec.army.mil' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23152817092542194071830934246978337134524335149535184270461385555829707175353448044641376155006332440998459732187776425616565791530239061802632058180018339855372941691413787390987717276310969525311469546710527717378705045619603140987549208685136497008001957134357990246781460837448413852852634513432584158772060651176695169359458508328672648780577326982949144067980329459324849288040559858536429357339498645047025289633867232331502254505080432545235296568873350424327403037919072690062915107499019921513583467265394895535143943885273895199721525176301132292624339124839578568772408510182998014260684960814592483278629 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1b040440455e7d2b5e0bcc99654df3a4de907717 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 243050e84a4074aafbb66d3e080924c54f344939 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/sign/DODCA_27.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.disa.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (187 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/crl/DODCA_27.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://crl.gds.disa.mil/cn%3dDOD%20CA-27%2cou%3dPKI%2cou%3dDoD%2co%3dU.S.%20Government%2cc%3dUS?certificaterevocationlist;binary' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ako.sec.army.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ako.sec.army.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ako.sec.apg.army.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ako.sec.apg.army.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '143.84.24.97' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.5 (usDODClass3) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.18 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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