www.defense.gov
Issued by R3
About this certificate
This digital certificate with serial number 03:f4:66:42:01:61:1e:40:d2:7a:8f:d1:e3:4d:22:49:ab:10 was issued on by Let's Encrypt.
With 64 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.defense.gov
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f4:66:42:01:61:1e:40:d2:7a:8f:d1:e3:4d:22:49:ab:10Serial Number (int): 344501679299129354025635008406461736397584
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 4c:97:a2:22:bb:5c:6a:4e:08:6f:89:aa:41:4a:fa:09:9d:c3:41:1a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 30:da:6e:9b:1f:85:47:37:29:ae:4f:a2:4f:2c:f7:7b:4b:46:c9:3f
Fingerprint (sha256): 1c:11:77:75:d0:0c:2f:cf:20:81:27:81:55:83:5d:0f:8c:ac:59:bd:8d:aa:21:4b:6b:1c:1c:29:0f:cc:ba:df
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.defense.gov
64
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.defense.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
2017dodtransition.defense.gov
actuary.defense.gov
afd.defense.gov
armedforcessports.defense.gov
atsdio.defense.gov
basicresearch.defense.gov
business.defense.gov
cmsmedia.defense.gov
comptroller.defense.gov
ctip.defense.gov
cyberwork.defense.gov
dacowits.defense.gov
dam.defense.gov
data.defense.gov
dbb.defense.gov
dcips.defense.gov
dcmo.defense.gov
diversity.defense.gov
dod.defense.gov
dodcertpmo.defense.gov
dodcio.defense.gov
dodmwrandresalepolicy.defense.gov
dodsioo.defense.gov
dpac.defense.gov
dpcld.defense.gov
dpclo.defense.gov
energy.defense.gov
execsec.defense.gov
frcsw.navair.navy.mil
history.defense.gov
innovation.defense.gov
irt.defense.gov
jamrs.defense.gov
jnlwp.defense.gov
jsc.defense.gov
kb.defense.gov
la.defense.gov
m.nsa.gov
militarypay.defense.gov
minerva.defense.gov
nmio.ise.gov
nsa.gov
ogc.osd.mil
oig.nsa.gov
open.defense.gov
ousdi.defense.gov
policy.defense.gov
prhome.defense.gov
ra.defense.gov
rfpb.defense.gov
rwtf.defense.gov
servicedesk.defense.gov
valor.defense.gov
vwac.defense.gov
www.alssa.mil
www.business.defense.gov
www.dantes.mil
www.dc3.mil
www.defense.gov
www.deomi.mil
www.dod.defense.gov
www.dodnafaccounting.defense.gov
www.nsa.gov
www.whs.mil
actuary.defense.gov
afd.defense.gov
armedforcessports.defense.gov
atsdio.defense.gov
basicresearch.defense.gov
business.defense.gov
cmsmedia.defense.gov
comptroller.defense.gov
ctip.defense.gov
cyberwork.defense.gov
dacowits.defense.gov
dam.defense.gov
data.defense.gov
dbb.defense.gov
dcips.defense.gov
dcmo.defense.gov
diversity.defense.gov
dod.defense.gov
dodcertpmo.defense.gov
dodcio.defense.gov
dodmwrandresalepolicy.defense.gov
dodsioo.defense.gov
dpac.defense.gov
dpcld.defense.gov
dpclo.defense.gov
energy.defense.gov
execsec.defense.gov
frcsw.navair.navy.mil
history.defense.gov
innovation.defense.gov
irt.defense.gov
jamrs.defense.gov
jnlwp.defense.gov
jsc.defense.gov
kb.defense.gov
la.defense.gov
m.nsa.gov
militarypay.defense.gov
minerva.defense.gov
nmio.ise.gov
nsa.gov
ogc.osd.mil
oig.nsa.gov
open.defense.gov
ousdi.defense.gov
policy.defense.gov
prhome.defense.gov
ra.defense.gov
rfpb.defense.gov
rwtf.defense.gov
servicedesk.defense.gov
valor.defense.gov
vwac.defense.gov
www.alssa.mil
www.business.defense.gov
www.dantes.mil
www.dc3.mil
www.defense.gov
www.deomi.mil
www.dod.defense.gov
www.dodnafaccounting.defense.gov
www.nsa.gov
www.whs.mil
Other certificates including the domain name defense.gov
(limited to 100 certificates)
search.usa.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
media-dev.defense.gov
www.defense.gov
media-dev.defense.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
helpdesk.defense.gov
search.usa.gov
media-dev.defense.gov
*.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
search.usa.gov
okdbv.search.usa.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
www.defense.gov
static.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
stats.defense.gov
www.defense.gov
kb.defense.gov
media-dev.defense.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
kb.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
gfm.ousdi.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
search.usa.gov
search.usa.gov
stats.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
media-dev.defense.gov
www.defense.gov
media-dev.defense.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
helpdesk.defense.gov
search.usa.gov
media-dev.defense.gov
*.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
search.usa.gov
okdbv.search.usa.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
www.defense.gov
static.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
stats.defense.gov
www.defense.gov
kb.defense.gov
media-dev.defense.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
kb.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
gfm.ousdi.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
search.usa.gov
search.usa.gov
stats.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
Certificate
The complete raw certificate details for www.defense.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJyzCCCLOgAwIBAgISA/RmQgFhHkDSeo/R400iSasQMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMDkyMTE2MjZaFw0yNDAyMDcyMTE2MjVaMBoxGDAWBgNVBAMT D3d3dy5kZWZlbnNlLmdvdjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALrKaRzO2rR1E8bwkkRFQLTBui5n83nFgtf6entiAbcyjs2IT73fS+oE3fjZmCxg n6m3H4nq1wqnDkWoQZPlvC7D1pdwVVpOInXLlf8hp2VVIde+DUVi/CaXhD1Zo5KS jDT569Jqqkr3XLpCm/fDxG7JzP1+1RVEtgpxz00+dy0f664f6DJHeIUz8LsnEvSH e0qthSmWGrDwfDCJrayL69OnuJx8TTEa50C4kZ/lH/m660TeoPWceB7Evvp2vYfj yXm+RnXH6eHNXCs/XbwQeSk1Kh+Vqy8BTSSOx7qGzjkq6x0L1wzBw7FaZlX/2m8T U12hVNUrkIlLBn/TSQMwS1sCAwEAAaOCBvEwggbtMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUTJeiIrtcak4Ib4mqQUr6CZ3DQRowHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wggT2BgNVHREEggTtMIIE6YIdMjAxN2RvZHRyYW5zaXRpb24uZGVmZW5zZS5n b3aCE2FjdHVhcnkuZGVmZW5zZS5nb3aCD2FmZC5kZWZlbnNlLmdvdoIdYXJtZWRm b3JjZXNzcG9ydHMuZGVmZW5zZS5nb3aCEmF0c2Rpby5kZWZlbnNlLmdvdoIZYmFz aWNyZXNlYXJjaC5kZWZlbnNlLmdvdoIUYnVzaW5lc3MuZGVmZW5zZS5nb3aCFGNt c21lZGlhLmRlZmVuc2UuZ292ghdjb21wdHJvbGxlci5kZWZlbnNlLmdvdoIQY3Rp cC5kZWZlbnNlLmdvdoIVY3liZXJ3b3JrLmRlZmVuc2UuZ292ghRkYWNvd2l0cy5k ZWZlbnNlLmdvdoIPZGFtLmRlZmVuc2UuZ292ghBkYXRhLmRlZmVuc2UuZ292gg9k YmIuZGVmZW5zZS5nb3aCEWRjaXBzLmRlZmVuc2UuZ292ghBkY21vLmRlZmVuc2Uu Z292ghVkaXZlcnNpdHkuZGVmZW5zZS5nb3aCD2RvZC5kZWZlbnNlLmdvdoIWZG9k Y2VydHBtby5kZWZlbnNlLmdvdoISZG9kY2lvLmRlZmVuc2UuZ292giFkb2Rtd3Jh bmRyZXNhbGVwb2xpY3kuZGVmZW5zZS5nb3aCE2RvZHNpb28uZGVmZW5zZS5nb3aC EGRwYWMuZGVmZW5zZS5nb3aCEWRwY2xkLmRlZmVuc2UuZ292ghFkcGNsby5kZWZl bnNlLmdvdoISZW5lcmd5LmRlZmVuc2UuZ292ghNleGVjc2VjLmRlZmVuc2UuZ292 ghVmcmNzdy5uYXZhaXIubmF2eS5taWyCE2hpc3RvcnkuZGVmZW5zZS5nb3aCFmlu bm92YXRpb24uZGVmZW5zZS5nb3aCD2lydC5kZWZlbnNlLmdvdoIRamFtcnMuZGVm ZW5zZS5nb3aCEWpubHdwLmRlZmVuc2UuZ292gg9qc2MuZGVmZW5zZS5nb3aCDmti LmRlZmVuc2UuZ292gg5sYS5kZWZlbnNlLmdvdoIJbS5uc2EuZ292ghdtaWxpdGFy eXBheS5kZWZlbnNlLmdvdoITbWluZXJ2YS5kZWZlbnNlLmdvdoIMbm1pby5pc2Uu Z292ggduc2EuZ292ggtvZ2Mub3NkLm1pbIILb2lnLm5zYS5nb3aCEG9wZW4uZGVm ZW5zZS5nb3aCEW91c2RpLmRlZmVuc2UuZ292ghJwb2xpY3kuZGVmZW5zZS5nb3aC EnByaG9tZS5kZWZlbnNlLmdvdoIOcmEuZGVmZW5zZS5nb3aCEHJmcGIuZGVmZW5z ZS5nb3aCEHJ3dGYuZGVmZW5zZS5nb3aCF3NlcnZpY2VkZXNrLmRlZmVuc2UuZ292 ghF2YWxvci5kZWZlbnNlLmdvdoIQdndhYy5kZWZlbnNlLmdvdoINd3d3LmFsc3Nh Lm1pbIIYd3d3LmJ1c2luZXNzLmRlZmVuc2UuZ292gg53d3cuZGFudGVzLm1pbIIL d3d3LmRjMy5taWyCD3d3dy5kZWZlbnNlLmdvdoINd3d3LmRlb21pLm1pbIITd3d3 LmRvZC5kZWZlbnNlLmdvdoIgd3d3LmRvZG5hZmFjY291bnRpbmcuZGVmZW5zZS5n b3aCC3d3dy5uc2EuZ292ggt3d3cud2hzLm1pbDATBgNVHSAEDDAKMAgGBmeBDAEC ATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABi7YodLYAAAQDAEgwRgIhAOBUAV2auEQDNIhRh7GnojHd 6LRk3H2Z41PtSW5x6OJzAiEAh7eXCmF7H2eph3xoUsFBUWWlGkA7lSGZOFxu50pO lrgAdwA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYu2KHSsAAAE AwBIMEYCIQCXyGoG06lx8241r2dj1cQSL+2O3J0x28H1KkKkSBcCRQIhAILeII8k 21uoYZLdj/1/7qroOUK0jVC995FEYHZXqvCRMA0GCSqGSIb3DQEBCwUAA4IBAQAl FxrUX1/OfE18xSl81floK2tfE24ZYmneqE3/vhp9/AuxVAuGrAuNAKmqOTncKs+F Lto1eyPAq/dQZscr7Jt4VqyXHGUzdpcTNuNVeDI0wbQUXmlze7gQG/HsjV2Hs7iP Nz4bB5wrSOb/vvN5MayW2NEqMo7Jr6vDjytaA6CLintdjHAQra1dH+7Je5jrKZ+s A23v2x8HuyuXnCMjpA5WdsswJzigOb23spOVZvFDaZbfC8tU1BIIChikHDSfQMi5 Kxn9v4vujjB43QDk8NKKB9pr/81vKLTXEbDc7jeRyhBGOfvLaF08wwBQMJKqLWYL 5HcA0+5puI2dOvbNMLqK -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusppHM7atHUTxvCSREVA tMG6LmfzecWC1/p6e2IBtzKOzYhPvd9L6gTd+NmYLGCfqbcfierXCqcORahBk+W8 LsPWl3BVWk4idcuV/yGnZVUh174NRWL8JpeEPVmjkpKMNPnr0mqqSvdcukKb98PE bsnM/X7VFUS2CnHPTT53LR/rrh/oMkd4hTPwuycS9Id7Sq2FKZYasPB8MImtrIvr 06e4nHxNMRrnQLiRn+Uf+brrRN6g9Zx4HsS++na9h+PJeb5Gdcfp4c1cKz9dvBB5 KTUqH5WrLwFNJI7HuobOOSrrHQvXDMHDsVpmVf/abxNTXaFU1SuQiUsGf9NJAzBL WwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 344501679299129354025635008406461736397584 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-09 21:16:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-07 21:16:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.defense.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23580137108547021564392292002195936827602658333877937333282347249851606646745566034863432975741011668753243387828733456152360601647227262445782025571498832936858231113712145346613051579440839936811426651076197791065588799066342055964728649662047516321401607524416981827263467826356817557878255698089264467443789603931473589674175449411266292473257837834981627179058847035341563834811642222423769290473900980663187678520040397490724114923703505274470923730488538843156039390780230033721275872635185214670322633248880194187015090451467915661217341031200569944007826775950140882401021437835592030871992365653886764075867 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4c97a222bb5c6a4e086f89aa414afa099dc3411a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1261 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '2017dodtransition.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'actuary.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'afd.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'armedforcessports.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'atsdio.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'basicresearch.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'business.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmsmedia.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'comptroller.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ctip.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cyberwork.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dacowits.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dam.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dbb.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dcips.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dcmo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diversity.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dod.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodcertpmo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodcio.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodmwrandresalepolicy.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodsioo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dpac.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dpcld.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dpclo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'energy.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'execsec.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'frcsw.navair.navy.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'history.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'innovation.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'irt.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jamrs.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jnlwp.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jsc.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kb.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'la.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'militarypay.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minerva.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nmio.ise.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ogc.osd.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oig.nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'open.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ousdi.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'policy.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prhome.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ra.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rfpb.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rwtf.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'servicedesk.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'valor.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vwac.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.alssa.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.business.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dantes.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dc3.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.deomi.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dod.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dodnafaccounting.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.whs.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f200770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bb62874b60000040300483046022100e054015d9ab8440334885187b1a7a231dde8b464dc7d99e353ed496e71e8e27302210087b7970a617b1f67a9877c6852c1415165a51a403b952199385c6ee74a4e96b80077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bb62874ac000004030048304602210097c86a06d3a971f36e35af6763d5c4122fed8edc9d31dbc1f52a42a44817024502210082de208f24db5ba86192dd8ffd7feeaae83942b48d50bdf79144607657aaf091 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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