gravite-vpn.jpss.noaa.gov

Issued by DOD CA-27

About this certificate


This digital certificate with serial number a7:6a was issued on by U.S. Government .

While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

Cerificate errors/warnings *beta

  • ERROR: Certificate contains a CRL with an non-preferred scheme ([ldap])
  • ERROR: localityName or stateOrProvinceName is required if organizationName is set
  • ERROR: stateOrProvinceName is required if organizationName is set
  • ERROR: Certificate doesn't contain any subjectAltName
  • ERROR: Certificate CN is not listed in subjectAltName

u.s. government

Organization: u.s. government
Organization unit: dod
Organization unit: pki
Organization unit: disa
Country: us

U.S. Government

Organization: U.S. Government
Organization unit: DoD
Organization unit: PKI
Country: us

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): a7:6a
Serial Number (int): 42858
Serial Number lenght: 16 bits, 2 octets

SubjectKeyId: 2a:46:8a:0c:93:06:2c:99:09:9d:7c:d2:fd:c2:a7:b7:52:9e:7a:09
AuthorityKeyId: 1b:04:04:40:45:5e:7d:2b:5e:0b:cc:99:65:4d:f3:a4:de:90:77:17

Fingerprint (sha1): 2f:e0:05:d1:3b:12:dd:03:13:a3:5d:73:32:f9:85:3f:91:ed:b2:29
Fingerprint (sha256): ae:34:fd:32:cd:ad:db:f5:e3:a5:14:d5:f5:f3:83:50:d7:be:be:ca:06:fa:d1:ec:57:29:de:71:d9:90:a8:88

Issuing Certificate URL: http://crl.disa.mil/sign/DODCA_27.cer

Revocation information

OCSP Server: http://ocsp.disa.mil
CRL Distribution Point: http://crl.disa.mil/crl/DODCA_27.crl
CRL Distribution Point: ldap://crl.gds.disa.mil/cn%3dDOD%20CA-27%2cou%3dPKI%2cou%3dDoD%2co%3dU.S.%20Government%2cc%3dUS?certificaterevocationlist;binary

Check the revocation status for the current certificate on gravite-vpn.jpss.noaa.gov
0
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Extensions

6 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names (DNS Name).

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIDAKdqMA0GCSqGSIb3DQEBBQUAMFcxCzAJBgNVBAYTAlVT MRgwFgYDVQQKEw9VLlMuIEdvdmVybm1lbnQxDDAKBgNVBAsTA0RvRDEMMAoGA1UE CxMDUEtJMRIwEAYDVQQDEwlET0QgQ0EtMjcwHhcNMTIxMDEwMTQxODU5WhcNMTUx MDExMTQxODU5WjB2MQswCQYDVQQGEwJ1czEYMBYGA1UEChMPdS5zLiBnb3Zlcm5t ZW50MQwwCgYDVQQLEwNkb2QxDDAKBgNVBAsTA3BraTENMAsGA1UECxMEZGlzYTEi MCAGA1UEAxMZZ3Jhdml0ZS12cG4uanBzcy5ub2FhLmdvdjCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBALsOd2YNILWOb8yGtjgPTymveISt9M32E469WWw9 Tyr4m2QvO2C36iwj48DxC1qfgesGgeL0vYNwxe4TFKBGlUc/mye9hA/LAx2sWKyT Ibzl/T6FLD9/k4Qsd4ugWQjVbXFL797LYs3DmpRXxcgp4nsdqW/74XZiS1Qh0b8c vh9ZQXVNwtZivFqhaV6/BFnIzZzWyc5DNU1oZMuvC6bcedl/0Li1paYHd/InjpYg peDdF1THmK/OCYjUWufSAEpEJZGhymcbXhkr7aD2Ad8jK6bk2wOxwajtIi1bDtDt SfN054l+ZNRIKCWjJkzAqFdttxk6DkwtkW7lKpJ+AYV/vHMCAwEAAaOCAaQwggGg MB8GA1UdIwQYMBaAFBsEBEBFXn0rXgvMmWVN86TekHcXMB0GA1UdDgQWBBQqRooM kwYsmQmdfNL9wqe3Up56CTAOBgNVHQ8BAf8EBAMCBaAwgcMGA1UdHwSBuzCBuDAq oCigJoYkaHR0cDovL2NybC5kaXNhLm1pbC9jcmwvRE9EQ0FfMjcuY3JsMIGJoIGG oIGDhoGAbGRhcDovL2NybC5nZHMuZGlzYS5taWwvY24lM2RET0QlMjBDQS0yNyUy Y291JTNkUEtJJTJjb3UlM2REb0QlMmNvJTNkVS5TLiUyMEdvdmVybm1lbnQlMmNj JTNkVVM/Y2VydGlmaWNhdGVyZXZvY2F0aW9ubGlzdDtiaW5hcnkwIwYDVR0gBBww GjALBglghkgBZQIBCwUwCwYJYIZIAWUCAQsSMGMGCCsGAQUFBwEBBFcwVTAxBggr BgEFBQcwAoYlaHR0cDovL2NybC5kaXNhLm1pbC9zaWduL0RPRENBXzI3LmNlcjAg BggrBgEFBQcwAYYUaHR0cDovL29jc3AuZGlzYS5taWwwDQYJKoZIhvcNAQEFBQAD ggEBAIEKwXQB9kmtuuMyN/lqBPCq81ev6K4wOmar2Ee/75DE5xnPlkiOXvVCvqmv 1r+yrKJTEDUvR6QxzHCMQRksN7fKRIPvwnt3WXglW3Fky1d9HbVXfIG/EZgug4sC cyKeyjIemL+E68T1RiTp2H+YJiNs/8XMFA5MK6WzbYYzBCfIz/K4Bi1ghWVJ4iaO evbBFkgfVXLE0rOasVyWZliecGkfTzx3xbqDHkASzwxAS/qNz+ZJFVTT6soJXI2q i4EB5jTia1UMGqQJeeA2+p8HZt2n9HlsmemJyj5HndAigo4K0k4lWsGWFHlOjbvh Ls8SLdQk4UYha48CAyYu2k9SGXU= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuw53Zg0gtY5vzIa2OA9P Ka94hK30zfYTjr1ZbD1PKvibZC87YLfqLCPjwPELWp+B6waB4vS9g3DF7hMUoEaV Rz+bJ72ED8sDHaxYrJMhvOX9PoUsP3+ThCx3i6BZCNVtcUvv3stizcOalFfFyCni ex2pb/vhdmJLVCHRvxy+H1lBdU3C1mK8WqFpXr8EWcjNnNbJzkM1TWhky68Lptx5 2X/QuLWlpgd38ieOliCl4N0XVMeYr84JiNRa59IASkQlkaHKZxteGSvtoPYB3yMr puTbA7HBqO0iLVsO0O1J83TniX5k1EgoJaMmTMCoV223GToOTC2RbuUqkn4BhX+8 cwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 42858 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOD CA-27' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-10-10 14:18:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-10-11 14:18:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'us' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'u.s. government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dod' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pki' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'disa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gravite-vpn.jpss.noaa.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23613696676825741210243785157257239762604121773787672775015784913348355578616943555341556166579345406111388865836016669863584418108128581533708050094166161262464626169067134623048273833247744416783463223818076427463831654764089544401359376628886302559930523969192279244197233139611542542732533553571011238564563774353779092284278713043379823069648544133582378979393305492772056625750936741918650047867376138398828513582895770271545928584577156085439303222537201675669889152396914657761721856789382999327192468107285917800334004915793498894074557454084097891514399173791075959467044415718224863363186125066239234522227 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1b040440455e7d2b5e0bcc99654df3a4de907717 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2a468a0c93062c99099d7cd2fdc2a7b7529e7a09 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (187 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/crl/DODCA_27.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://crl.gds.disa.mil/cn%3dDOD%20CA-27%2cou%3dPKI%2cou%3dDoD%2co%3dU.S.%20Government%2cc%3dUS?certificaterevocationlist;binary' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.5 (usDODClass3) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/sign/DODCA_27.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.disa.mil' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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