fao.nps.edu

Issued by DOD CA-28

About this certificate


This digital certificate with serial number 28:63 was issued on by U.S. Government .

While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

Cerificate errors/warnings *beta

  • ERROR: Certificate contains a CRL with an non-preferred scheme ([ldap])
  • ERROR: localityName or stateOrProvinceName is required if organizationName is set
  • ERROR: stateOrProvinceName is required if organizationName is set
  • ERROR: Certificate doesn't contain any subjectAltName
  • ERROR: Certificate CN is not listed in subjectAltName

U.S. Government

Organization: U.S. Government
Organization unit: DoD
Organization unit: PKI
Organization unit: USN
Country: US

U.S. Government

Organization: U.S. Government
Organization unit: DoD
Organization unit: PKI
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 28:63
Serial Number (int): 10339
Serial Number lenght: 14 bits, 2 octets

SubjectKeyId: 68:c8:68:2a:e4:e3:03:9d:4e:e5:ee:b6:15:6e:47:0f:4a:80:80:33
AuthorityKeyId: 26:b4:ae:aa:2d:8e:e9:8d:8a:6f:b6:b5:5b:9d:ea:4e:ae:b1:9c:69

Fingerprint (sha1): c2:ff:0a:95:51:f5:2c:9b:2b:11:14:04:ac:7b:d9:14:c3:6b:9b:02
Fingerprint (sha256): 96:59:24:4f:3e:80:48:20:92:df:35:26:29:ed:e1:f4:29:42:0c:d3:1f:a4:e9:1c:c2:8e:d1:e9:6a:21:37:36

Issuing Certificate URL: http://crl.disa.mil/sign/DODCA_28.cer

Revocation information

OCSP Server: http://ocsp.disa.mil
CRL Distribution Point: http://crl.disa.mil/crl/DODCA_28.crl
CRL Distribution Point: ldap://crl.gds.disa.mil/cn%3dDOD%20CA-28%2cou%3dPKI%2cou%3dDoD%2co%3dU.S.%20Government%2cc%3dUS?certificaterevocationlist;binary

Check the revocation status for the current certificate on fao.nps.edu
0
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Extensions

6 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names (DNS Name).

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgICKGMwDQYJKoZIhvcNAQEFBQAwVzELMAkGA1UEBhMCVVMx GDAWBgNVBAoTD1UuUy4gR292ZXJubWVudDEMMAoGA1UECxMDRG9EMQwwCgYDVQQL EwNQS0kxEjAQBgNVBAMTCURPRCBDQS0yODAeFw0xMjA1MzAyMzM0MjJaFw0xNTA1 MzEyMzM0MjJaMGcxCzAJBgNVBAYTAlVTMRgwFgYDVQQKEw9VLlMuIEdvdmVybm1l bnQxDDAKBgNVBAsTA0RvRDEMMAoGA1UECxMDUEtJMQwwCgYDVQQLEwNVU04xFDAS BgNVBAMTC2Zhby5ucHMuZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoiG0dPC1PD8eoI1lP8E4WQYHDH7pXXwRJomGMgh0e2sPbEoRPLvU+zpaCNG+ 7OpCXfws3kefL6Vb7lvuefLwbjEDM5ogkCaH9+Xwv3cbs5cYuEaiA4oQYIXc8K3S IBnUCUtI0Kc0TwrtYedTheFMWUciLazOE1mxtao9VPv3ln0WhrbiLaAatG7M27mp Agyes8qhW8LgW62mu5he8z/0V0DWrSN5mcjmjB3AP3pvV081A+EP61bEzxx1zyKq X0AsGVs0faoKR1LiNnZI5CSQa96Ww2UkPj51djbsCIe/qI6gpMs52A/j9eDeSsJV 5XZwslIJlhNIdInwrMYx7m90HQIDAQABo4IBpDCCAaAwHwYDVR0jBBgwFoAUJrSu qi2O6Y2Kb7a1W53qTq6xnGkwHQYDVR0OBBYEFGjIaCrk4wOdTuXuthVuRw9KgIAz MA4GA1UdDwEB/wQEAwIFoDCBwwYDVR0fBIG7MIG4MCqgKKAmhiRodHRwOi8vY3Js LmRpc2EubWlsL2NybC9ET0RDQV8yOC5jcmwwgYmggYaggYOGgYBsZGFwOi8vY3Js Lmdkcy5kaXNhLm1pbC9jbiUzZERPRCUyMENBLTI4JTJjb3UlM2RQS0klMmNvdSUz ZERvRCUyY28lM2RVLlMuJTIwR292ZXJubWVudCUyY2MlM2RVUz9jZXJ0aWZpY2F0 ZXJldm9jYXRpb25saXN0O2JpbmFyeTAjBgNVHSAEHDAaMAsGCWCGSAFlAgELBTAL BglghkgBZQIBCxIwYwYIKwYBBQUHAQEEVzBVMDEGCCsGAQUFBzAChiVodHRwOi8v Y3JsLmRpc2EubWlsL3NpZ24vRE9EQ0FfMjguY2VyMCAGCCsGAQUFBzABhhRodHRw Oi8vb2NzcC5kaXNhLm1pbDANBgkqhkiG9w0BAQUFAAOCAQEAX41DbNTRJ2IYHUbj yZlVnNLVyEb4YDYsKrWh3e7qNwwa7FHtQ/1WILaBc9qE5E9fNddaZX+doGgH4DD7 QOh6MsCAhZ5kIQOvbw1v0/hvwjUxj9cfbEjZXAZ8I7hdb7CJCsJdkeRKwHVT6EbZ 3hT31bYkrqPJW5BCMpf79dKQELpblyamxj3b5LqxvU2jq66jVujW+ZgFGc2nIyJo uMMHsdpeQwyxP7H0oFU+70tBLLcMFmfs7feRFQc8G9LrQroUCLx08YI4UMatxwVm G2RtChNdlN/BSe7K0Lqdd1XfCgbH71hnON5sXLCjKPrbu2gUDzsB32+ZxdqHDEip CK1jrQ== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoiG0dPC1PD8eoI1lP8E4 WQYHDH7pXXwRJomGMgh0e2sPbEoRPLvU+zpaCNG+7OpCXfws3kefL6Vb7lvuefLw bjEDM5ogkCaH9+Xwv3cbs5cYuEaiA4oQYIXc8K3SIBnUCUtI0Kc0TwrtYedTheFM WUciLazOE1mxtao9VPv3ln0WhrbiLaAatG7M27mpAgyes8qhW8LgW62mu5he8z/0 V0DWrSN5mcjmjB3AP3pvV081A+EP61bEzxx1zyKqX0AsGVs0faoKR1LiNnZI5CSQ a96Ww2UkPj51djbsCIe/qI6gpMs52A/j9eDeSsJV5XZwslIJlhNIdInwrMYx7m90 HQIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10339 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOD CA-28' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-05-30 23:34:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-05-31 23:34:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'USN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fao.nps.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20467225914765187860981071610873666105593180698537514055201462906174231979569071545900781364022693599668073148537073987042971459159230961215487825025688830161286440403078935553703061612930463560925439582959576300211555887190331885353479245948915677104337808693672684599129546628901820176920785492814231480025827344673944237506219531320315285521365380676952820514287898176941513718233601803326051083033732797054261425875339471841196616996690963151794878922748196917452415253220975844026644799032793531730825402876387231752769068004714566248017455512124696701309754940812632968061055278875443334351288632963448414630941 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 26b4aeaa2d8ee98d8a6fb6b55b9dea4eaeb19c69 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 68c8682ae4e3039d4ee5eeb6156e470f4a808033 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (187 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/crl/DODCA_28.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://crl.gds.disa.mil/cn%3dDOD%20CA-28%2cou%3dPKI%2cou%3dDoD%2co%3dU.S.%20Government%2cc%3dUS?certificaterevocationlist;binary' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.5 (usDODClass3) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/sign/DODCA_28.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.disa.mil' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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