www.myvtax.vermont.gov
- State of Vermont -
Issued by GlobalSign RSA OV SSL CA 2018
About this certificate
This digital certificate with serial number 0b:9f:c2:05:5f:95:7f:ba:89:ed:43:99 was issued on by GlobalSign nv-sa.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
State of Vermont
Organization:
State of Vermont
State / Province:
Vermont
Locality: Montpelier
Country: US
Locality: Montpelier
Country: US
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:9f:c2:05:5f:95:7f:ba:89:ed:43:99Serial Number (int): 3597470551572470518757802905
Serial Number lenght: 92 bits, 12 octets
SubjectKeyId: 8e:f3:e3:90:5d:42:9b:48:09:56:26:64:cd:0a:99:38:f2:d8:c3:25
AuthorityKeyId: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb
Fingerprint (sha1): fa:9c:6f:74:54:c4:8c:ac:6a:26:7c:79:0a:a9:8a:7e:d2:e1:2a:8e
Fingerprint (sha256): 20:15:d3:45:fb:25:43:f0:4e:50:54:71:74:69:e7:3a:23:42:4e:bd:e6:72:e2:d7:bd:70:ea:b7:5f:c5:83:61
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018CRL Distribution Point: http://crl.globalsign.com/gsrsaovsslca2018.crl
Check the revocation status for certificate www.myvtax.vermont.gov
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.myvtax.vermont.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.myvtax.vermont.gov
www.myvtax.vt.gov
myvtax.vt.gov
streamlined.tax.vermont.gov
myvtax.vermont.gov
www.myvtax.vt.gov
myvtax.vt.gov
streamlined.tax.vermont.gov
myvtax.vermont.gov
Other certificates including the domain name vermont.gov
(limited to 100 certificates)
dhriu.vermont.gov
www.myvtax.vermont.gov
inside.vermont.gov
www.vermont.gov
ssl7.revizesites.com
anrmaps.vermont.gov
ismstg.apps.vermont.gov
*.healthconnect.vermont.gov
list.vermont.gov
ljfo.vermont.gov
e911ags.vermont.gov
usaherds.vermont.gov
matsdev.vtrans.vermont.gov
maps.vcgi.vermont.gov
1moreconversation.com
inside.vermont.gov
dev.maps.vcgi.vermont.gov
employerreporting.vermont.gov
gpnh.ngesi.vermont.gov
selfserve.education.state.vt.us
cloud.agriculture.vermont.gov
railtrails.vermont.gov
gs.tax.vermont.gov
*.professionals.vermont.gov
anrgeodata.vermont.gov
secure.vermont.gov
eoc.vermont.gov
1moreconversation.com
bedboard.vermont.gov
slds.education.vermont.gov
staging.mydmv.vermont.gov
geodata.vermont.gov
rms.vermont.gov
cloud.agriculture.vermont.gov
*.hsep.vermont.gov
ssl7.revizesites.com
anrgeodata.vermont.gov
legislature.vermont.gov
apps.health.vermont.gov
uipublic01.labor.vermont.gov
ACCDMaps.Vermont.gov
anrmaps.vermont.gov
list.vermont.gov
www.vermont.gov
Inside.Vermont.Gov
*.id.vermont.gov
peacham.vermont.gov
grants.vermont.gov
www.staging.vtpics.vermont.gov
edwa.vermont.gov
cloud.agriculture.vermont.gov
agriculturegrants.vermont.gov
maps.vermont.gov
secure.accd.vermont.gov
WebDBMS.ngesi.vermont.gov
preprod.slds.vermont.gov
anrmaps.vermont.gov
gs.vtrans.vermont.gov
*.healthconnect.vermont.gov
vtlottery.com
my.vermont.gov
retire.vermont.gov
ljfo.vermont.gov
apps.health.vermont.gov
bedboard.vermont.gov
dev.maps.vcgi.vermont.gov
legislature.vermont.gov
ssl7.revizesites.com
uipublic.labor.vermont.gov
maps.vermont.gov
1moreconversation.com
*.id.vermont.gov
sos.vermont.gov
*.hsep.vermont.gov
ssl7.revizesites.com
roadsidemarkers.vermont.gov
design.education.vermont.gov
*.ngesi.vermont.gov
childcareproviders.vermont.gov
160.166.tmcapital.com
*.apps.vermont.gov
vitws.labor.vermont.gov
www.usaplants.vermont.gov
test.slds.vermont.gov
www.rms.vermont.gov
cloud.agriculture.vermont.gov
ssl7.revizesites.com
*.professionals.vermont.gov
svt01exe001.hcs.vermont.gov
*.hsep.in.vermont.gov
maps.vcgi.vermont.gov
infotest.my.vermont.gov
www.vermont.gov
uipublic.labor.vermont.gov
apps.health.vermont.gov
dualenrollment.vermont.gov
ljfo.vermont.gov
lobbying.vermont.gov
orc.vermont.gov
*.hsep.vermont.gov
www.myvtax.vermont.gov
inside.vermont.gov
www.vermont.gov
ssl7.revizesites.com
anrmaps.vermont.gov
ismstg.apps.vermont.gov
*.healthconnect.vermont.gov
list.vermont.gov
ljfo.vermont.gov
e911ags.vermont.gov
usaherds.vermont.gov
matsdev.vtrans.vermont.gov
maps.vcgi.vermont.gov
1moreconversation.com
inside.vermont.gov
dev.maps.vcgi.vermont.gov
employerreporting.vermont.gov
gpnh.ngesi.vermont.gov
selfserve.education.state.vt.us
cloud.agriculture.vermont.gov
railtrails.vermont.gov
gs.tax.vermont.gov
*.professionals.vermont.gov
anrgeodata.vermont.gov
secure.vermont.gov
eoc.vermont.gov
1moreconversation.com
bedboard.vermont.gov
slds.education.vermont.gov
staging.mydmv.vermont.gov
geodata.vermont.gov
rms.vermont.gov
cloud.agriculture.vermont.gov
*.hsep.vermont.gov
ssl7.revizesites.com
anrgeodata.vermont.gov
legislature.vermont.gov
apps.health.vermont.gov
uipublic01.labor.vermont.gov
ACCDMaps.Vermont.gov
anrmaps.vermont.gov
list.vermont.gov
www.vermont.gov
Inside.Vermont.Gov
*.id.vermont.gov
peacham.vermont.gov
grants.vermont.gov
www.staging.vtpics.vermont.gov
edwa.vermont.gov
cloud.agriculture.vermont.gov
agriculturegrants.vermont.gov
maps.vermont.gov
secure.accd.vermont.gov
WebDBMS.ngesi.vermont.gov
preprod.slds.vermont.gov
anrmaps.vermont.gov
gs.vtrans.vermont.gov
*.healthconnect.vermont.gov
vtlottery.com
my.vermont.gov
retire.vermont.gov
ljfo.vermont.gov
apps.health.vermont.gov
bedboard.vermont.gov
dev.maps.vcgi.vermont.gov
legislature.vermont.gov
ssl7.revizesites.com
uipublic.labor.vermont.gov
maps.vermont.gov
1moreconversation.com
*.id.vermont.gov
sos.vermont.gov
*.hsep.vermont.gov
ssl7.revizesites.com
roadsidemarkers.vermont.gov
design.education.vermont.gov
*.ngesi.vermont.gov
childcareproviders.vermont.gov
160.166.tmcapital.com
*.apps.vermont.gov
vitws.labor.vermont.gov
www.usaplants.vermont.gov
test.slds.vermont.gov
www.rms.vermont.gov
cloud.agriculture.vermont.gov
ssl7.revizesites.com
*.professionals.vermont.gov
svt01exe001.hcs.vermont.gov
*.hsep.in.vermont.gov
maps.vcgi.vermont.gov
infotest.my.vermont.gov
www.vermont.gov
uipublic.labor.vermont.gov
apps.health.vermont.gov
dualenrollment.vermont.gov
ljfo.vermont.gov
lobbying.vermont.gov
orc.vermont.gov
*.hsep.vermont.gov
Certificate
The complete raw certificate details for www.myvtax.vermont.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG7TCCBdWgAwIBAgIMC5/CBV+Vf7qJ7UOZMA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0yMzEyMTUxODM2MTFaFw0y NTAxMTUxODM2MTBaMHAxCzAJBgNVBAYTAlVTMRAwDgYDVQQIEwdWZXJtb250MRMw EQYDVQQHEwpNb250cGVsaWVyMRkwFwYDVQQKExBTdGF0ZSBvZiBWZXJtb250MR8w HQYDVQQDExZ3d3cubXl2dGF4LnZlcm1vbnQuZ292MIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAriY2wpXhF4c0n+AYPAfscBpLRgnVcx+uzOEoVUN1McM1 DiODFAsodDzf6w8R2XCnjqgkHrNy4q2Dq5r1Gv4yB1esCDli75n5bY7V8jf55yqQ ToluvH91rJNhQ6vtPyf+OZIj2g+TAd8X6eMXQtbshZzH7S6NfW+Nk+bfw9I6oHI0 ZDeEt/+nwuX8AnZAopN/XZx9YlgWTz+DxTpJWJzytEvQ/6vmztvhc4dAEou2xRa0 rUBsEt3tajDIrKQIzI0YJjPL2pj1xva9IizRCei4KH9KsNwGOLLwZOxmOo2SX8ol pTT52MFq4Izgafd89sh3fKWUquQ9xsuT5Ns7VNu4nQIDAQABo4IDpTCCA6EwDgYD VR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwgY4GCCsGAQUFBwEBBIGBMH8wRAYI KwYBBQUHMAKGOGh0dHA6Ly9zZWN1cmUuZ2xvYmFsc2lnbi5jb20vY2FjZXJ0L2dz cnNhb3Zzc2xjYTIwMTguY3J0MDcGCCsGAQUFBzABhitodHRwOi8vb2NzcC5nbG9i YWxzaWduLmNvbS9nc3JzYW92c3NsY2EyMDE4MFYGA1UdIARPME0wQQYJKwYBBAGg MgEUMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3Lmdsb2JhbHNpZ24uY29tL3Jl cG9zaXRvcnkvMAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vY3Js Lmdsb2JhbHNpZ24uY29tL2dzcnNhb3Zzc2xjYTIwMTguY3JsMHQGA1UdEQRtMGuC Fnd3dy5teXZ0YXgudmVybW9udC5nb3aCEXd3dy5teXZ0YXgudnQuZ292gg1teXZ0 YXgudnQuZ292ghtzdHJlYW1saW5lZC50YXgudmVybW9udC5nb3aCEm15dnRheC52 ZXJtb250LmdvdjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0j BBgwFoAU+O9/8s14Z6jeb48kjYjxhwMCs+swHQYDVR0OBBYEFI7z45BdQptICVYm ZM0KmTjy2MMlMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdwCi4wrkRe+9rZt+ OO1HZ3dT14JbhJTXK14bLMS5UKRH5wAAAYxuw8TZAAAEAwBIMEYCIQCez7fcdarD bVY5nkYGMP9DtEFdaUPYVJpc2futtQZndQIhAJ6U3nJ7+WZGqnrk1LLCEGShIt4V tLGFDIAtv/sR+hYmAHcA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAA AAGMbsPE2wAABAMASDBGAiEA/Jv5lib+W3kk+zzHgD+jHr0WAAB45X+ZZRe1cKdz IU0CIQDWkwMcE5GdaR08eL0s/SOBysrFNEDrxbX6OJsNEHJ3/wB2AE51oydcmhDD OFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjG7DxKsAAAQDAEcwRQIhANJzpDg0 Yqr/rDnbZfBNwhAdP7+onVjvbKdwirFmHZiWAiABnJuJFvcnwCPDxPvk8rUizjPI pfwQuZ+pjNapUcWAqzANBgkqhkiG9w0BAQsFAAOCAQEABpA4R3BQgaYS3zfmLKdb e+Et4TWz8kvN1ZMMuR+EDyUgneYrE14aoGGTNL9nLloyk3PWGIno1M+dSp/mTR5A 1fE6BbEv09Sgf9qPWkGZa+vLnujWh2CXIEUE2yKsboLVOWKdQ3g6E4axP8txLUFW QZK9s2SGvFnlz7NVSVZPwjy7IaJxRXUFI5M3j8Xm/pte3peEnFyPzAMSdDWVzNOx pxSwUuU8lDdmJ2qGqb3dVbv0cvje5JPwAK41812KWyA7UQ+o3cBlk3v5Bo3V7SWT tHNphTxg0wgnkSXolYri0+Z9dgjqYUI+OPpvWhz1kOGZNwlWE7/0p0sXMWytKOEr Zw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAriY2wpXhF4c0n+AYPAfs cBpLRgnVcx+uzOEoVUN1McM1DiODFAsodDzf6w8R2XCnjqgkHrNy4q2Dq5r1Gv4y B1esCDli75n5bY7V8jf55yqQToluvH91rJNhQ6vtPyf+OZIj2g+TAd8X6eMXQtbs hZzH7S6NfW+Nk+bfw9I6oHI0ZDeEt/+nwuX8AnZAopN/XZx9YlgWTz+DxTpJWJzy tEvQ/6vmztvhc4dAEou2xRa0rUBsEt3tajDIrKQIzI0YJjPL2pj1xva9IizRCei4 KH9KsNwGOLLwZOxmOo2SX8olpTT52MFq4Izgafd89sh3fKWUquQ9xsuT5Ns7VNu4 nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3597470551572470518757802905 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-15 18:36:11 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-15 18:36:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Vermont' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montpelier' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'State of Vermont' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.myvtax.vermont.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21984309043782424351100559252812249126633796951991018053085969655866497394889710570200535371248402679131269059269056618011916853317025869299136819290690752013523838801924636792971099235752162505455246211123590469207904683828488093784658528797292148678318308803961355807049773966120098855069972702596710393901973496885646678137759654212868017158259563847531145402609687818711057147779685597144908818907920341699669425462549817604399795596898757785307560114492286995383436825933460676972412767402293179445326482112536260218589899366944506158938695724745395148331759637644869047409072021115638692695855978714717977557149 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsrsaovsslca2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (109 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.myvtax.vermont.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.myvtax.vt.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myvtax.vt.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'streamlined.tax.vermont.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myvtax.vermont.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8ef3e3905d429b4809562664cd0a9938f2d8c325 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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