SMProxySANCertESECProd.dot.pa.gov
- Commonwealth of Pennsylvania -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 76:bf:e0:86:88:c1:0c:f6:00:00:00:00:50:e0:90:1b was issued on by Entrust, Inc..
With 16 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Commonwealth of Pennsylvania
Organization:
Commonwealth of Pennsylvania
Organization unit: Department of Transportation
Organization unit: Department of Transportation
State / Province:
Pennsylvania
Locality: Harrisburg
Country: US
Locality: Harrisburg
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 76:bf:e0:86:88:c1:0c:f6:00:00:00:00:50:e0:90:1bSerial Number (int): 157845186121248565190480148978076782619
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 4f:cd:e3:52:fb:8a:73:74:04:6d:b2:c2:08:4f:31:77:1c:56:29:55
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 04:5f:c5:c1:74:21:9c:3d:e1:55:0c:ea:4e:a4:b6:16:dd:12:54:c3
Fingerprint (sha256): 21:44:48:41:74:7b:77:9f:a5:2b:59:17:7e:b0:cf:49:a8:c3:7a:91:66:61:92:53:17:4d:55:ea:ba:52:71:e5
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate SMProxySANCertESECProd.dot.pa.gov
16
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for SMProxySANCertESECProd.dot.pa.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
SMProxySANCertESECProd.dot.pa.gov
idservices.penndot.gov
www.idservices.penndot.gov
esecrefapp1.penndot.gov
www.placard.penndot.gov
placard.penndot.gov
www.inspections.penndot.gov
inspections.penndot.gov
www.placarddr.penndot.gov
placarddr.penndot.gov
www.pdjfadminapp.penndot.gov
pdjfadminapp.penndot.gov
idservices.pa.gov
www.idservices.pa.gov
kees.pa.gov
www.kees.pa.gov
idservices.penndot.gov
www.idservices.penndot.gov
esecrefapp1.penndot.gov
www.placard.penndot.gov
placard.penndot.gov
www.inspections.penndot.gov
inspections.penndot.gov
www.placarddr.penndot.gov
placarddr.penndot.gov
www.pdjfadminapp.penndot.gov
pdjfadminapp.penndot.gov
idservices.pa.gov
www.idservices.pa.gov
kees.pa.gov
www.kees.pa.gov
Other certificates including the domain name pa.gov
(limited to 100 certificates)
www.penndotesafety.pa.gov
www.puc.state.pa.us
www.dotdom3.state.pa.us
www.uctax.beta.pa.gov
forms.dced.pa.gov
www.crashinfo.penndot.gov
forms.dced.pa.gov
www.snet.jnet.pa.gov
www.bpp.ob.pa.gov
ESECagSANCertProd.dot.pa.gov
www.swifpay.pa.gov
peuaa.SWIF.pa.gov
dliimagesua.pa.gov
pasmallbiz.dced.pa.gov
openscapewebconfw2.pa.gov
forms.dced.pa.gov
www.cfrs.pa.gov
padlsonline.pa.gov
www.ethics.pa.gov
PUC.eServices-DOT-CarrierID.pa.gov
www.oig.pa.gov
www.compas.dli.pa.gov
forms.dced.pa.gov
www.dlisecureweb.pa.gov
dsemms.pa.gov
ESECagSANCertSyst.dot.pa.gov
www.lablicensure.health.pa.gov
portal.pccd.beta.pa.gov
sts.beta.pa.gov
www.notaryreg.pa.gov
www.scicoll.pa.gov
ws.jnet.beta.pa.gov
spapps.pa.gov
gis.penndot.gov
www.portalxl.jnet.pa.gov
www.jobgatewaytr.pa.gov
epics.beta.pa.gov
docs.dcnr.pa.gov
www.pawatersupplyservicearea.pa.gov
services.dcnr.uat.pa.gov
www.puc.state.pa.us
*.pa.gov
www.inet.jnet.pa.gov
SMProxySANCertPROD.dot.pa.gov
events.dcnr.pa.gov
forms.dced.pa.gov
www.PaFoodSafety.beta.pa.gov
www.employment.pa.gov
sais.health.pa.gov
mail01.pa.gov
www.uctax-reg.beta.pa.gov
*.openrecords.pa.gov
www.agtrans.pa.gov
www.idprovider.dev.pa.gov
telcosmftp.pa.gov
dynxrm.dev.pa.gov
www.dos.pa.gov
forms.dced.pa.gov
www.agtrans.state.pa.us
www.lcb.pa.gov
www.cupss.pa.gov
dev-bppcs.pd.pa.gov
www.campaignfinanceonline.beta.pa.gov
www.wmapi.trn.wm.pa.gov
mysite.pa.gov
www.agriculture.pa.gov
www.gis.dcnr.beta.state.pa.us
www.rbaprovider.pa.gov
fdcbids.dcnr.pa.gov
www.PAFoodSafety.pa.gov
dced.pa.gov
damageprevention.puc.pa.gov
www.wcais.pa.gov
www.penndotesafetyqat.pa.gov
*.cor.beta.pa.gov
greenport.dev.pa.gov
staffalert.pa.gov
SMProxySANCertProd.dot.pa.gov
www.pcssmuat.dot.pa.gov
www.boardofappeals.state.pa.us
mysites.pa.gov
www.pgc.pa.gov
www.erstest.health.pa.gov
www.mypdeapps.pa.gov
osfc.sfa.pa.gov
edwin.dcnr.pa.gov
forms.dced.pa.gov
www.iwacs.phmc.pa.gov
ESECSanCertProd128.dot.pa.gov
apps.pwp.pa.gov
www.dominoextsyst.pa.gov
sso.SWIF.pa.gov
boe.ebr.uat.pa.gov
dynxrm.pa.gov
www.corporations.pa.gov
www.pawatersupplyservicearea.pa.gov
goals.governor.pa.gov
ndxs-dev.dhs.pa.gov
www.dot16.pa.gov
mysites.pa.gov
www.puc.state.pa.us
www.dotdom3.state.pa.us
www.uctax.beta.pa.gov
forms.dced.pa.gov
www.crashinfo.penndot.gov
forms.dced.pa.gov
www.snet.jnet.pa.gov
www.bpp.ob.pa.gov
ESECagSANCertProd.dot.pa.gov
www.swifpay.pa.gov
peuaa.SWIF.pa.gov
dliimagesua.pa.gov
pasmallbiz.dced.pa.gov
openscapewebconfw2.pa.gov
forms.dced.pa.gov
www.cfrs.pa.gov
padlsonline.pa.gov
www.ethics.pa.gov
PUC.eServices-DOT-CarrierID.pa.gov
www.oig.pa.gov
www.compas.dli.pa.gov
forms.dced.pa.gov
www.dlisecureweb.pa.gov
dsemms.pa.gov
ESECagSANCertSyst.dot.pa.gov
www.lablicensure.health.pa.gov
portal.pccd.beta.pa.gov
sts.beta.pa.gov
www.notaryreg.pa.gov
www.scicoll.pa.gov
ws.jnet.beta.pa.gov
spapps.pa.gov
gis.penndot.gov
www.portalxl.jnet.pa.gov
www.jobgatewaytr.pa.gov
epics.beta.pa.gov
docs.dcnr.pa.gov
www.pawatersupplyservicearea.pa.gov
services.dcnr.uat.pa.gov
www.puc.state.pa.us
*.pa.gov
www.inet.jnet.pa.gov
SMProxySANCertPROD.dot.pa.gov
events.dcnr.pa.gov
forms.dced.pa.gov
www.PaFoodSafety.beta.pa.gov
www.employment.pa.gov
sais.health.pa.gov
mail01.pa.gov
www.uctax-reg.beta.pa.gov
*.openrecords.pa.gov
www.agtrans.pa.gov
www.idprovider.dev.pa.gov
telcosmftp.pa.gov
dynxrm.dev.pa.gov
www.dos.pa.gov
forms.dced.pa.gov
www.agtrans.state.pa.us
www.lcb.pa.gov
www.cupss.pa.gov
dev-bppcs.pd.pa.gov
www.campaignfinanceonline.beta.pa.gov
www.wmapi.trn.wm.pa.gov
mysite.pa.gov
www.agriculture.pa.gov
www.gis.dcnr.beta.state.pa.us
www.rbaprovider.pa.gov
fdcbids.dcnr.pa.gov
www.PAFoodSafety.pa.gov
dced.pa.gov
damageprevention.puc.pa.gov
www.wcais.pa.gov
www.penndotesafetyqat.pa.gov
*.cor.beta.pa.gov
greenport.dev.pa.gov
staffalert.pa.gov
SMProxySANCertProd.dot.pa.gov
www.pcssmuat.dot.pa.gov
www.boardofappeals.state.pa.us
mysites.pa.gov
www.pgc.pa.gov
www.erstest.health.pa.gov
www.mypdeapps.pa.gov
osfc.sfa.pa.gov
edwin.dcnr.pa.gov
forms.dced.pa.gov
www.iwacs.phmc.pa.gov
ESECSanCertProd128.dot.pa.gov
apps.pwp.pa.gov
www.dominoextsyst.pa.gov
sso.SWIF.pa.gov
boe.ebr.uat.pa.gov
dynxrm.pa.gov
www.corporations.pa.gov
www.pawatersupplyservicearea.pa.gov
goals.governor.pa.gov
ndxs-dev.dhs.pa.gov
www.dot16.pa.gov
mysites.pa.gov
Certificate
The complete raw certificate details for SMProxySANCertESECProd.dot.pa.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG/DCCBeSgAwIBAgIQdr/ghojBDPYAAAAAUOCQGzANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x ODAyMjIxNjM4MDBaFw0yMDAyMjIxNzA3NTlaMIGzMQswCQYDVQQGEwJVUzEVMBMG A1UECBMMUGVubnN5bHZhbmlhMRMwEQYDVQQHEwpIYXJyaXNidXJnMSUwIwYDVQQK ExxDb21tb253ZWFsdGggb2YgUGVubnN5bHZhbmlhMSUwIwYDVQQLExxEZXBhcnRt ZW50IG9mIFRyYW5zcG9ydGF0aW9uMSowKAYDVQQDEyFTTVByb3h5U0FOQ2VydEVT RUNQcm9kLmRvdC5wYS5nb3YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8bLnAJTDMs7ydGKB3rUrsccfbEhdDW4ZbAqkh6gr+H7llYsJ2CZV5jba5q9cv agPNOokqqxm0mo+wdyjBtokgOynIBLqC2u2EySQbztgnOw9scMOJk3M0bYm2gOVm gZd1p80mRI9J/6L4dATNrGuu10m8m/uGxiEgXOPg6EWH8TsqG+uLZ+I47DDN8Re7 G2T0PEoBEgxqt7WQb9LBwka3ilPpA3oUsIy3SLnyJYkQIkODbJHUujVoahWMDGry Ke6aQ8WfHJp3QDnizyT1KTAxwzRrfVdfhPzc3iBrHOJx8xDu2P8whWjw31ba0Q1E JcYayjieSkR7ass2DAjagSGvAgMBAAGjggMBMIIC/TAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDMGA1UdHwQsMCowKKAmoCSG Imh0dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxay5jcmwwSwYDVR0gBEQwQjA2 BgpghkgBhvpsCgEFMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly93d3cuZW50cnVzdC5u ZXQvcnBhMAgGBmeBDAECAjBoBggrBgEFBQcBAQRcMFowIwYIKwYBBQUHMAGGF2h0 dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChidodHRwOi8vYWlhLmVu dHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwggGTBgNVHREEggGKMIIBhoIhU01Q cm94eVNBTkNlcnRFU0VDUHJvZC5kb3QucGEuZ292ghZpZHNlcnZpY2VzLnBlbm5k b3QuZ292ghp3d3cuaWRzZXJ2aWNlcy5wZW5uZG90LmdvdoIXZXNlY3JlZmFwcDEu cGVubmRvdC5nb3aCF3d3dy5wbGFjYXJkLnBlbm5kb3QuZ292ghNwbGFjYXJkLnBl bm5kb3QuZ292ght3d3cuaW5zcGVjdGlvbnMucGVubmRvdC5nb3aCF2luc3BlY3Rp b25zLnBlbm5kb3QuZ292ghl3d3cucGxhY2FyZGRyLnBlbm5kb3QuZ292ghVwbGFj YXJkZHIucGVubmRvdC5nb3aCHHd3dy5wZGpmYWRtaW5hcHAucGVubmRvdC5nb3aC GHBkamZhZG1pbmFwcC5wZW5uZG90LmdvdoIRaWRzZXJ2aWNlcy5wYS5nb3aCFXd3 dy5pZHNlcnZpY2VzLnBhLmdvdoILa2Vlcy5wYS5nb3aCD3d3dy5rZWVzLnBhLmdv djAfBgNVHSMEGDAWgBSConB03bxTP8971PfNf6dgxgpMvzAdBgNVHQ4EFgQUT83j UvuKc3QEbbLCCE8xdxxWKVUwCQYDVR0TBAIwADANBgkqhkiG9w0BAQsFAAOCAQEA lBuSQuXr3bT8dtPDtvEEe20RPZAfQnGA7PXtk3Q++lfq3c5FwtYD6wAB4ffypt7m SZc/ChuKFBnqFVJlx9f9TOrtcA0nSeKS6T5xLltycOqQxGbUKGBLaNnKYolIb8lI HRwUdKIdQGxfL+9i+RIiySbR4bNNKneUhmzwARX6uBHsgDjPNlwuDcCcd8oPLDnN Ry1i9aiUKmdWAa6pRK0arn+V2muLoNIFtRHKL+11OQNwpwFhfYO7RsVBXrTu+L84 pNO2vnaeiHhRCt48XvxoDIZYVTbcJW+LfHlMo8Wb4aRP+K5I+dkF/S8oU/chn+6/ gv+HWMGiPvPbn6DeHAe5hw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGy5wCUwzLO8nRigd61K 7HHH2xIXQ1uGWwKpIeoK/h+5ZWLCdgmVeY22uavXL2oDzTqJKqsZtJqPsHcowbaJ IDspyAS6gtrthMkkG87YJzsPbHDDiZNzNG2JtoDlZoGXdafNJkSPSf+i+HQEzaxr rtdJvJv7hsYhIFzj4OhFh/E7Khvri2fiOOwwzfEXuxtk9DxKARIMare1kG/SwcJG t4pT6QN6FLCMt0i58iWJECJDg2yR1Lo1aGoVjAxq8inumkPFnxyad0A54s8k9Skw McM0a31XX4T83N4gaxzicfMQ7tj/MIVo8N9W2tENRCXGGso4nkpEe2rLNgwI2oEh rwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 157845186121248565190480148978076782619 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-22 16:38:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-22 17:07:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Harrisburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Commonwealth of Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Department of Transportation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SMProxySANCertESECProd.dot.pa.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23786415919380850167083015695625875250659217349815863004112332241563140350971354812851000508377506513099454331658729294321038290835080219025107910331828350621420825029248208797107109011856467376501544901741566456737472247175230687180893812465330893858426692947593725953429281724297736004194773685490182209243775452125246693521539452507556357490394831410415715753825019231693129681208500816939616470003998462213413676610901838164647028977508658119253930479773056289099066855053286763461177323377059752722930006436381987357384151282436874302000050656527999967006669594760158244530140763684307567260616875419051199898031 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (394 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'SMProxySANCertESECProd.dot.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'idservices.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.idservices.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'esecrefapp1.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.placard.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'placard.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.inspections.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inspections.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.placarddr.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'placarddr.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pdjfadminapp.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pdjfadminapp.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'idservices.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.idservices.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kees.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kees.pa.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4fcde352fb8a7374046db2c2084f31771c562955 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00941b9242e5ebddb4fc76d3c3b6f1047b6d113d901f427180ecf5ed93743efa57eaddce45c2d603eb0001e1f7f2a6dee649973f0a1b8a1419ea155265c7d7fd4ceaed700d2749e292e93e712e5b7270ea90c466d428604b68d9ca6289486fc9481d1c1474a21d406c5f2fef62f91222c926d1e1b34d2a7794866cf00115fab811ec8038cf365c2e0dc09c77ca0f2c39cd472d62f5a8942a675601aea944ad1aae7f95da6b8ba0d205b511ca2fed75390370a701617d83bb46c5415eb4eef8bf38a4d3b6be769e8878510ade3c5efc680c86585536dc256f8b7c794ca3c59be1a44ff8ae48f9d905fd2f2853f7219feebf82ff8758c1a23ef3db9fa0de1c07b987