test.healthcare.gov
- Centers for Medicare & Medicaid Services -
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 02:0f:8f:c7:e8:2a:51:c7:42:5b:4b:50:2d:e7:42:aa was issued on by DigiCert Inc.
With 48 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Centers for Medicare & Medicaid Services
Organization:
Centers for Medicare & Medicaid Services
State / Province:
Maryland
Locality: Baltimore
Country: US
Locality: Baltimore
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:0f:8f:c7:e8:2a:51:c7:42:5b:4b:50:2d:e7:42:aaSerial Number (int): 2739256667277200038053928853752464042
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 37:ba:55:c2:19:c0:b7:ab:7f:36:6f:3c:8f:ef:fc:5d:8b:ac:40:96
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): f9:b7:a1:3d:19:2e:79:bf:30:ee:0d:54:d6:b1:79:b6:a1:86:e0:8a
Fingerprint (sha256): 2b:44:cc:be:d2:12:88:d5:db:a1:2e:0c:3c:a0:2e:c6:85:86:83:44:63:bf:72:b8:3e:4d:76:84:16:ed:bc:67
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate test.healthcare.gov
48
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for test.healthcare.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
test.healthcare.gov
finder.dev.healthcare.gov
assets.imp.healthcare.gov
logini.healthcare.gov
api.finder.test.healthcare.gov
test1.healthcare.gov
imp1b.cuidadodesalud.gov
test1.shop.healthcare.gov
logint.healthcare.gov
ayudalocal.imp.cuidadodesalud.gov
data.test.healthcare.gov
assets.dev.healthcare.gov
imp1a.healthcare.gov
test3.healthcare.gov
api.finder.imp.healthcare.gov
imp.healthcare.gov
imp1a.cuidadodesalud.gov
dev1.shop.healthcare.gov
imp2.cuidadodesalud.gov
test0.shop.healthcare.gov
dev.cuidadodesalud.gov
finder.imp.healthcare.gov
test.address.api.healthcare.gov
localhelp.test.healthcare.gov
imp2.healthcare.gov
test3.cuidadodesalud.gov
dev0.shop.healthcare.gov
test1.cuidadodesalud.gov
localhelp.dev.healthcare.gov
ayudalocal.dev.cuidadodesalud.gov
test2.cuidadodesalud.gov
companyprofiles.test.healthcare.gov
assets.test.healthcare.gov
imp.address.api.healthcare.gov
imp.cuidadodesalud.gov
imp1b.healthcare.gov
companyprofiles.imp.healthcare.gov
ayudalocal.test.cuidadodesalud.gov
companyprofiles.dev.healthcare.gov
api.finder.dev.healthcare.gov
finder.test.healthcare.gov
dev.address.api.healthcare.gov
dev2.healthcare.gov
localhelp.imp.healthcare.gov
test.cuidadodesalud.gov
dev2.cuidadodesalud.gov
test2.healthcare.gov
dev.healthcare.gov
finder.dev.healthcare.gov
assets.imp.healthcare.gov
logini.healthcare.gov
api.finder.test.healthcare.gov
test1.healthcare.gov
imp1b.cuidadodesalud.gov
test1.shop.healthcare.gov
logint.healthcare.gov
ayudalocal.imp.cuidadodesalud.gov
data.test.healthcare.gov
assets.dev.healthcare.gov
imp1a.healthcare.gov
test3.healthcare.gov
api.finder.imp.healthcare.gov
imp.healthcare.gov
imp1a.cuidadodesalud.gov
dev1.shop.healthcare.gov
imp2.cuidadodesalud.gov
test0.shop.healthcare.gov
dev.cuidadodesalud.gov
finder.imp.healthcare.gov
test.address.api.healthcare.gov
localhelp.test.healthcare.gov
imp2.healthcare.gov
test3.cuidadodesalud.gov
dev0.shop.healthcare.gov
test1.cuidadodesalud.gov
localhelp.dev.healthcare.gov
ayudalocal.dev.cuidadodesalud.gov
test2.cuidadodesalud.gov
companyprofiles.test.healthcare.gov
assets.test.healthcare.gov
imp.address.api.healthcare.gov
imp.cuidadodesalud.gov
imp1b.healthcare.gov
companyprofiles.imp.healthcare.gov
ayudalocal.test.cuidadodesalud.gov
companyprofiles.dev.healthcare.gov
api.finder.dev.healthcare.gov
finder.test.healthcare.gov
dev.address.api.healthcare.gov
dev2.healthcare.gov
localhelp.imp.healthcare.gov
test.cuidadodesalud.gov
dev2.cuidadodesalud.gov
test2.healthcare.gov
dev.healthcare.gov
Other certificates including the domain name healthcare.gov
(limited to 100 certificates)
splunk.aws.healthcare.gov
test3.healthcare.gov
test3.healthcare.gov
www.healthcare.gov
test2.healthcare.gov
www2.cms.gov
orig.impl1a.ses.api.healthcare.gov
www.healthcare.gov
pet-elb.imp1b.healthcare.gov
test-t.healthcare.gov
shop.prod.healthcare.gov
www.healthcare.gov
www.healthcare.gov
adobe-ep.healthcare.gov
www2.healthcare.gov
tmdsm.aws.healthcare.gov
www2.cms.gov
www2.cms.gov
app-dc01.prod.healthcare.gov
app-dc01.prod.healthcare.gov
test3.healthcare.gov
www2.healthcare.gov
tmdsmdr.aws.healthcare.gov
net.prod.healthcare.gov
test2.healthcare.gov
api.healthcare.gov
www.healthcare.gov
impl.mcr.dsh.healthcare.gov
search.test.healthcare.gov
www2.cms.gov
www2.cms.gov
test.healthcare.gov
dsrs.api.healthcare.gov
test4.healthcare.gov
test4.healthcare.gov
net-dc01.prod.healthcare.gov
test3.healthcare.gov
prod.pc2-elb.healthcare.gov
vpneast.aws.cms.gov
www.healthcare.gov
test3.healthcare.gov
orig.ses.api.healthcare.gov
www2.cms.gov
www2.cms.gov
test2.healthcare.gov
sls-elb.imp.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
test2.healthcare.gov
search1.healthcare.gov
test.healthcare.gov
api.healthcare.gov
tmdsmdr.aws.healthcare.gov
test3.healthcare.gov
chat.healthcare.gov
nagiosdr.aws.healthcare.gov
test2.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
www2.cms.gov
test3.healthcare.gov
prod-t.healthcare.gov
www2.cms.gov
test2.healthcare.gov
origin-es-app.prod.healthcare.gov
test0.mcr.gw.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
test.healthcare.gov
test.healthcare.gov
b.dev.healthcare.gov
www.healthcare.gov
www2.healthcare.gov
test2.healthcare.gov
mcr.api.healthcare.gov
api-manager-elb.dev.healthcare.gov
www2.cms.gov
imp1b-marketplace-elb.api.healthcare.gov
origin-es-app.prod.healthcare.gov
test2.healthcare.gov
test.healthcare.gov
www2.cms.gov
www2.healthcare.gov
app1a.imp.healthcare.gov
test3.healthcare.gov
test0.shop.healthcare.gov
test2.healthcare.gov
chat.healthcare.gov
api-manager-elb.imp.healthcare.gov
www.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www2.cms.gov
api.healthcare.gov
www2.cms.gov
test2.healthcare.gov
test3.healthcare.gov
test3.healthcare.gov
test3.healthcare.gov
www.healthcare.gov
test2.healthcare.gov
www2.cms.gov
orig.impl1a.ses.api.healthcare.gov
www.healthcare.gov
pet-elb.imp1b.healthcare.gov
test-t.healthcare.gov
shop.prod.healthcare.gov
www.healthcare.gov
www.healthcare.gov
adobe-ep.healthcare.gov
www2.healthcare.gov
tmdsm.aws.healthcare.gov
www2.cms.gov
www2.cms.gov
app-dc01.prod.healthcare.gov
app-dc01.prod.healthcare.gov
test3.healthcare.gov
www2.healthcare.gov
tmdsmdr.aws.healthcare.gov
net.prod.healthcare.gov
test2.healthcare.gov
api.healthcare.gov
www.healthcare.gov
impl.mcr.dsh.healthcare.gov
search.test.healthcare.gov
www2.cms.gov
www2.cms.gov
test.healthcare.gov
dsrs.api.healthcare.gov
test4.healthcare.gov
test4.healthcare.gov
net-dc01.prod.healthcare.gov
test3.healthcare.gov
prod.pc2-elb.healthcare.gov
vpneast.aws.cms.gov
www.healthcare.gov
test3.healthcare.gov
orig.ses.api.healthcare.gov
www2.cms.gov
www2.cms.gov
test2.healthcare.gov
sls-elb.imp.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
test2.healthcare.gov
search1.healthcare.gov
test.healthcare.gov
api.healthcare.gov
tmdsmdr.aws.healthcare.gov
test3.healthcare.gov
chat.healthcare.gov
nagiosdr.aws.healthcare.gov
test2.healthcare.gov
test3.healthcare.gov
elb1.imp1a.healthcare.gov
www2.cms.gov
test3.healthcare.gov
prod-t.healthcare.gov
www2.cms.gov
test2.healthcare.gov
origin-es-app.prod.healthcare.gov
test0.mcr.gw.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
www2.healthcare.gov
test.healthcare.gov
test.healthcare.gov
b.dev.healthcare.gov
www.healthcare.gov
www2.healthcare.gov
test2.healthcare.gov
mcr.api.healthcare.gov
api-manager-elb.dev.healthcare.gov
www2.cms.gov
imp1b-marketplace-elb.api.healthcare.gov
origin-es-app.prod.healthcare.gov
test2.healthcare.gov
test.healthcare.gov
www2.cms.gov
www2.healthcare.gov
app1a.imp.healthcare.gov
test3.healthcare.gov
test0.shop.healthcare.gov
test2.healthcare.gov
chat.healthcare.gov
api-manager-elb.imp.healthcare.gov
www.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www.healthcare.gov
test.healthcare.gov
www2.cms.gov
api.healthcare.gov
www2.cms.gov
test2.healthcare.gov
test3.healthcare.gov
Certificate
The complete raw certificate details for test.healthcare.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILJTCCCg2gAwIBAgIQAg+Px+gqUcdCW0tQLedCqjANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0xODAzMTYwMDAwMDBaFw0xOTAzMTYxMjAwMDBaMIGFMQswCQYDVQQGEwJVUzER MA8GA1UECBMITWFyeWxhbmQxEjAQBgNVBAcTCUJhbHRpbW9yZTExMC8GA1UECgwo Q2VudGVycyBmb3IgTWVkaWNhcmUgJiBNZWRpY2FpZCBTZXJ2aWNlczEcMBoGA1UE AxMTdGVzdC5oZWFsdGhjYXJlLmdvdjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAOIxPhC+JIdmgQdqma0iS04yL69hFXWbxicom/w3UnGIQVMi1bKAKbO6 xemv2H/8mJOzt89FyZdDajaHrD4JwR7jJ9TAvo3+y+cz6dSsFQgFEKwSB6RUu8Px EkaNxeYKssdEQwxHw0g9FCxTmoNJHvE4ObOVEyaUT9NLU8Q0Q6k7EyZEj4+Plvtw JAisv49G3++NWgfreAAy/pt40ntDL6uRc801ZrDrG9lQ0strGaDi+U11HnUkD/Zk GiyPhGDpwqcezDP53cCywYocDa0BRsqPoKmckt4g9ZKT5CGXWc0+rWi0eyPO4ICU qw/TWjL+2EHaorXuyFsKCwnh3uTMLXcCAwEAAaOCB7UwggexMB8GA1UdIwQYMBaA FJBY/7CcdahRVHex7fKjQxY4nmzFMB0GA1UdDgQWBBQ3ulXCGcC3q382bzyP7/xd i6xAljCCBSYGA1UdEQSCBR0wggUZghN0ZXN0LmhlYWx0aGNhcmUuZ292ghlmaW5k ZXIuZGV2LmhlYWx0aGNhcmUuZ292ghlhc3NldHMuaW1wLmhlYWx0aGNhcmUuZ292 ghVsb2dpbmkuaGVhbHRoY2FyZS5nb3aCHmFwaS5maW5kZXIudGVzdC5oZWFsdGhj YXJlLmdvdoIUdGVzdDEuaGVhbHRoY2FyZS5nb3aCGGltcDFiLmN1aWRhZG9kZXNh bHVkLmdvdoIZdGVzdDEuc2hvcC5oZWFsdGhjYXJlLmdvdoIVbG9naW50LmhlYWx0 aGNhcmUuZ292giFheXVkYWxvY2FsLmltcC5jdWlkYWRvZGVzYWx1ZC5nb3aCGGRh dGEudGVzdC5oZWFsdGhjYXJlLmdvdoIZYXNzZXRzLmRldi5oZWFsdGhjYXJlLmdv doIUaW1wMWEuaGVhbHRoY2FyZS5nb3aCFHRlc3QzLmhlYWx0aGNhcmUuZ292gh1h cGkuZmluZGVyLmltcC5oZWFsdGhjYXJlLmdvdoISaW1wLmhlYWx0aGNhcmUuZ292 ghhpbXAxYS5jdWlkYWRvZGVzYWx1ZC5nb3aCGGRldjEuc2hvcC5oZWFsdGhjYXJl LmdvdoIXaW1wMi5jdWlkYWRvZGVzYWx1ZC5nb3aCGXRlc3QwLnNob3AuaGVhbHRo Y2FyZS5nb3aCFmRldi5jdWlkYWRvZGVzYWx1ZC5nb3aCGWZpbmRlci5pbXAuaGVh bHRoY2FyZS5nb3aCH3Rlc3QuYWRkcmVzcy5hcGkuaGVhbHRoY2FyZS5nb3aCHWxv Y2FsaGVscC50ZXN0LmhlYWx0aGNhcmUuZ292ghNpbXAyLmhlYWx0aGNhcmUuZ292 ghh0ZXN0My5jdWlkYWRvZGVzYWx1ZC5nb3aCGGRldjAuc2hvcC5oZWFsdGhjYXJl LmdvdoIYdGVzdDEuY3VpZGFkb2Rlc2FsdWQuZ292ghxsb2NhbGhlbHAuZGV2Lmhl YWx0aGNhcmUuZ292giFheXVkYWxvY2FsLmRldi5jdWlkYWRvZGVzYWx1ZC5nb3aC GHRlc3QyLmN1aWRhZG9kZXNhbHVkLmdvdoIjY29tcGFueXByb2ZpbGVzLnRlc3Qu aGVhbHRoY2FyZS5nb3aCGmFzc2V0cy50ZXN0LmhlYWx0aGNhcmUuZ292gh5pbXAu YWRkcmVzcy5hcGkuaGVhbHRoY2FyZS5nb3aCFmltcC5jdWlkYWRvZGVzYWx1ZC5n b3aCFGltcDFiLmhlYWx0aGNhcmUuZ292giJjb21wYW55cHJvZmlsZXMuaW1wLmhl YWx0aGNhcmUuZ292giJheXVkYWxvY2FsLnRlc3QuY3VpZGFkb2Rlc2FsdWQuZ292 giJjb21wYW55cHJvZmlsZXMuZGV2LmhlYWx0aGNhcmUuZ292gh1hcGkuZmluZGVy LmRldi5oZWFsdGhjYXJlLmdvdoIaZmluZGVyLnRlc3QuaGVhbHRoY2FyZS5nb3aC HmRldi5hZGRyZXNzLmFwaS5oZWFsdGhjYXJlLmdvdoITZGV2Mi5oZWFsdGhjYXJl LmdvdoIcbG9jYWxoZWxwLmltcC5oZWFsdGhjYXJlLmdvdoIXdGVzdC5jdWlkYWRv ZGVzYWx1ZC5nb3aCF2RldjIuY3VpZGFkb2Rlc2FsdWQuZ292ghR0ZXN0Mi5oZWFs dGhjYXJlLmdvdoISZGV2LmhlYWx0aGNhcmUuZ292MA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPgYDVR0fBDcwNTAzoDGgL4Yt aHR0cDovL2NkcC5nZW90cnVzdC5jb20vR2VvVHJ1c3RSU0FDQTIwMTguY3JsMEwG A1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3 LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMHUGCCsGAQUFBwEBBGkwZzAmBggr BgEFBQcwAYYaaHR0cDovL3N0YXR1cy5nZW90cnVzdC5jb20wPQYIKwYBBQUHMAKG MWh0dHA6Ly9jYWNlcnRzLmdlb3RydXN0LmNvbS9HZW9UcnVzdFJTQUNBMjAxOC5j cnQwCQYDVR0TBAIwADCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AKS5CZC0GFgU h7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABYi89fOAAAAQDAEcwRQIgXW1VfjHh oqFuXCpcyPUHRNuOHOGGP6eullOLBd5YeWMCIQCTblDIW3HReLTv7UBhlX2izRMP ALz+6bHM0ZKQTHufbwB2AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kT AAABYi89ffcAAAQDAEcwRQIgAtr0xeIFMPwPmBuSdYqIUWbbj07QW8/kEIchMuiG 2ZwCIQCoew/Ir8+dCnIVNxKgXAIxGy9sG052w7ajgVRi7bn6ITANBgkqhkiG9w0B AQsFAAOCAQEANAVV8ART9bNp2oIJ2PmRqj3IryDj4jLoCzNBtMtBc+Jo2BOCfUq4 1yAWMUHQqlUsnSy9G/reFj5nDYRO/wiFec58/3GrzQeNQS9KvtuMvggQVus2yL17 +coiwJ3Br7pyYIOgtFmvoF1QzbG+YM9WA3/bmx3xFEX5EXsucWVTKi1I0HYTHyf2 mw9SXoXxkTcYzIx1pllDiot6PSQrzFI9y0GdP6+d7bxAHpjtRlqa0oZxOPZicPj4 Aa0YmZS7VcMPo6Xx/7+jeo3bBN4BED1rHlAVVFi7QXhR1U5OkAXcc5thK4WuVaSQ /iTjapFG4CqBYIl2FU41Y1pLWXVSLs/WxA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jE+EL4kh2aBB2qZrSJL TjIvr2EVdZvGJyib/DdScYhBUyLVsoAps7rF6a/Yf/yYk7O3z0XJl0NqNoesPgnB HuMn1MC+jf7L5zPp1KwVCAUQrBIHpFS7w/ESRo3F5gqyx0RDDEfDSD0ULFOag0ke 8Tg5s5UTJpRP00tTxDRDqTsTJkSPj4+W+3AkCKy/j0bf741aB+t4ADL+m3jSe0Mv q5FzzTVmsOsb2VDSy2sZoOL5TXUedSQP9mQaLI+EYOnCpx7MM/ndwLLBihwNrQFG yo+gqZyS3iD1kpPkIZdZzT6taLR7I87ggJSrD9NaMv7YQdqite7IWwoLCeHe5Mwt dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2739256667277200038053928853752464042 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-16 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Baltimore' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Centers for Medicare & Medicaid Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'test.healthcare.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28554139275975448428823666707315473486719689251753640141198021742565132335737201986382994208590816849133072831201155941801916388237819148800887065482351132355597489001941024033370637724921451827186903293201743827243647832790404701228456357169718108846873986296260422595000331489071242536851109605001338437888105204724382969425178165132194978298605660736134300634104115666443401391313336198855885880375532069130348626518870045219687208887529964585879979335989379217965743510306507398392868669149603055203391845279094662084731413786778613289106289875706784622653751295656343248683764748375266736162197567076783545396599 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 37ba55c219c0b7ab7f366f3c8feffc5d8bac4096 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1309 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finder.dev.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'logini.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.finder.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test1.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp1b.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test1.shop.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'logint.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ayudalocal.imp.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.dev.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp1a.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test3.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.finder.imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp1a.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev1.shop.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp2.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test0.shop.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finder.imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.address.api.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'localhelp.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp2.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test3.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev0.shop.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test1.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'localhelp.dev.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ayudalocal.dev.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test2.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companyprofiles.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp.address.api.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imp1b.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companyprofiles.imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ayudalocal.test.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companyprofiles.dev.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.finder.dev.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finder.test.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.address.api.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev2.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'localhelp.imp.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev2.cuidadodesalud.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test2.healthcare.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.healthcare.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc10000001622f3d7ce0000004030047304502205d6d557e31e1a2a16e5c2a5cc8f50744db8e1ce1863fa7ae96538b05de587963022100936e50c85b71d178b4efed4061957da2cd130f00bcfee9b1ccd192904c7b9f6f0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001622f3d7df70000040300473045022002daf4c5e20530fc0f981b92758a885166db8f4ed05bcfe410872132e886d99c022100a87b0fc8afcf9d0a72153712a05c02311b2f6c1b4e76c3b6a3815462edb9fa21 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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