owa.hhs.gov

- United States Department of Health & Human Services -

Issued by DigiCert SHA2 Secure Server CA

About this certificate

This digital certificate with serial number 0d:94:0f:61:9f:72:27:e9:fd:0f:da:10:58:f5:c7:21 was issued on by DigiCert Inc.

With 55 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

United States Department of Health & Human Services

Organization: United States Department of Health & Human Services
Organization unit: OS/OCIO/ITIO
State / Province: District of Columbia
Locality: Washington
Country: US

DigiCert Inc

Organization: DigiCert Inc
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0d:94:0f:61:9f:72:27:e9:fd:0f:da:10:58:f5:c7:21
Serial Number (int): 18048735850889002089118278946540341025
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 55:c1:16:55:a4:44:d1:f9:68:5c:f2:f7:b1:55:1e:2e:ee:6e:59:16
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2

Fingerprint (sha1): 1e:99:ca:21:61:55:f9:24:6c:b5:39:51:8c:b5:75:1b:d5:b4:3f:7a
Fingerprint (sha256): 2d:02:5e:8a:5f:e5:07:dc:3e:3c:5a:5d:7d:8d:5c:65:1b:fb:71:3a:54:26:35:bf:2e:63:39:e2:11:3f:ff:31

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g5.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g5.crl

Check the revocation status for certificate owa.hhs.gov

55

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for owa.hhs.gov

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

owa.hhs.gov
activesync.hhs.gov
Autodiscover.acf.hhs.gov
Autodiscover.acl.hhs.gov
Autodiscover.ahrq.gov
Autodiscover.ahrq.hhs.gov
Autodiscover.aids.gov
Autodiscover.aoa.gov
Autodiscover.aoa.hhs.gov
Autodiscover.bioethics.gov
Autodiscover.cms.gov
Autodiscover.cms.hhs.gov
Autodiscover.ees.hhs.gov
Autodiscover.email.foh.dhhs.gov
Autodiscover.fatherhood.gov
Autodiscover.foh.hhs.gov
Autodiscover.hhs.gov
Autodiscover.os.dhhs.gov
Autodiscover.os.hhs.gov
Autodiscover.psc.gov
Autodiscover.psc.hhs.gov
Autodiscover.questions.cms.hhs.gov
Autodiscover.samhsa.gov
Autodiscover.samhsa.hhs.gov
Autodiscover.whaging.gov
Autodiscover.whcoa.hhs.gov
hh-emscas15.ees.hhs.gov
hh-emscas16.ees.hhs.gov
hh-emscas17.ees.hhs.gov
hh-emscas18.ees.hhs.gov
hh-emscasarray20.ees.hhs.gov
pl-emscas10.ees.hhs.gov
pl-emscas11.ees.hhs.gov
pl-emscas12.ees.hhs.gov
pl-emscas13.ees.hhs.gov
pl-emscasarray10.ees.hhs.gov
webmail.hhs.gov
caspl.hhs.gov
cashhh.hhs.gov
pl-i2-exch1.ees.hhs.gov
pl-i2-exch2.ees.hhs.gov
pl-i2-exch3.ees.hhs.gov
pl-i2-exch4.ees.hhs.gov
hhh-i2-exch1.ees.hhs.gov
hhh-i2-exch2.ees.hhs.gov
hhh-i2-exch3.ees.hhs.gov
hhh-i2-exch4.ees.hhs.gov
hhh-i2-hybrid1.hhs.gov
hhh-i2-hybrid2.hhs.gov
hhh-i2-hybrid3.hhs.gov
hhh-i2-hybrid4.hhs.gov
pl-i2-hybrid1.hhs.gov
pl-i2-hybrid2.hhs.gov
pl-i2-hybrid3.hhs.gov
pl-i2-hybrid4.hhs.gov

Other certificates including the domain name hhs.gov

(limited to 100 certificates)
*.hhs.gov
eroom2.bardatools.hhs.gov
wecandothis.hhs.gov
ASPRTFS.HHS.GOV
data.hhs.gov
asprgis.hhs.gov
www.imp.cob.cms.hhs.gov
tips.oig.hhs.gov
ofarr.acf.hhs.gov
psr-ui.cms.hhs.gov
actmeetingserver.hhs.gov
api-tanfdata.acf.hhs.gov
www.cms.gov
asfrombapp.hhs.gov
oralhealth.thinkculturalhealth.hhs.gov
swift.cms.hhs.gov
verilog.hhs.gov
owa.hhs.gov
portal-development.icas.hhs.gov
ncvhs.hhs.gov
TFS.CMS.HHS.GOV
forms.oig.hhs.gov
PartnerPortal.oig.hhs.gov
stg-asprportal.hhs.gov
hsmp-data.aspe.hhs.gov
eclkc.ohs.acf.hhs.gov
tst-sp2019.hhs.gov
www.cms.gov
Collider-Remote.cms.hhs.gov
*.oig.hhs.gov
adc-sfbfep1.fda.gov
stg-asprportal.hhs.gov
www.hhs.gov
nccd.cdc.gov
am.cms.hhs.gov
liheappm.acf.hhs.gov
oga.hhs.gov
www.healthcare.gov
www.cdc.gov
csportal.hhs.gov
*.dcis.hhs.gov
med.cms.hhs.gov
ufmsuat.hhs.gov
hhs.gov
prod-ndms.hhs.gov
dc1-prsmapov-01.oig.hhs.gov
www.hhs.gov
procurementforecast.hhs.gov
eftv2.cms.hhs.gov
psr-ui.cms.hhs.gov
staging.hses.ohs.acf.hhs.gov
stage.occms.acf.hhs.gov
fbistrg12c.hhs.gov
liheappm.acf.hhs.gov
impool2.fda.gov
www.cdc.gov
*.aspe.hhs.gov
emportal.hhs.gov
NDACAN.ACF.HHS.GOV
*.cloud.hhs.gov
taggs.hhs.gov
mrc-cms.hhs.gov
ocsecollab.acf.hhs.gov
collaborate-acl.hhs.gov
iknowtest.hhs.gov
collaborate-acl.hhs.gov
ncsacw.acf.hhs.gov
mec.cms.hhs.gov
akamai-san15.exacttarget.com
accelerate-integration.hhs.gov
asprprofiles.hhs.gov
www.cdc.gov
www.ahrq.gov
ghssvr-stg.hhs.gov
lms.learning.hhs.gov
Collider-aut.cms.hhs.gov
gal.hhs.gov
swift.aspr.hhs.gov
usphstraining.hhs.gov
liheapch.acf.hhs.gov
test.learning.hhs.gov
itsc-sts.o365.hhs.gov
www.safetyreporting.hhs.gov
prod-phe.hhs.gov
subscriptions.cms.hhs.gov
pl-auth01.hhsnet.hhs.gov
webinar3.cms.hhs.gov
stage.liheapch.acf.hhs.gov
www.cdc.gov
accelerate-staging.hhs.gov
www.cdc.gov
learning.hhs.gov
www.hmrffasttrac.acf.hhs.gov
accelerate-server.hhs.gov
*.aspe.hhs.gov
mail.nih.gov
pecos-fpd.cms.hhs.gov
*.cfsrportal.acf.hhs.gov
cccdpcr.thinkculturalhealth.hhs.gov
dr.itas.hhs.gov

Certificate

The complete raw certificate details for owa.hhs.gov in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXgtdQxIf2DsaDtc/hj2
EgRIGj2lU0JVcAJ4wJEtHihDBpT6OVfWNpj1trhmGnUvtVYW4V3Q+9x8J4hcq8MF
emOfVq9ktyIyKpIrtkKOUqhxqfP34paAfT5ndUaf6u5t52B+P8rWCfwftkSm8RKV
FskCnR3Ud+9qEG8dBYq7iV9y5x+EtZNtZ1J7N+mMRD6IOtUz320pyxR6OiYvjb0w
/bBRhUSA9DR+u2ee/4xTaBdOXdWBRehw4tw5So2nHSluwnpiDLxhlHq6dOqGRDXm
+rMrCEJWYn/hj8EcP9IPSRjyCM3D7z12Rdcrgh8SKwiy1WI1E38E2rTNWwccQs4h
6QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 18048735850889002089118278946540341025
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-13 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-26 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'United States Department of Health & Human Services'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OS/OCIO/ITIO'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'owa.hhs.gov'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23413348185853284298124761298352722797236579565030858911804678861186062912765479133647804064412156846990428518760242344391208979988829827678283498739326012460260090245614578760767960254254842859358070803651066529424371261042680162142726794805458746735091667066156710220455362518859768749941771419152883855485030470824682140355587102364843204425856057849843368020240283769069250795729177553342910131708904549759147238987874545595051247217697158357626557070529138102866840925391757719651334065915723315544424171975987645077567426411921485349618794182304396469371126876409497221035254946211701444092406113614475754873321
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							55c11655a444d1f9685cf2f7b1551e2eee6e5916
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'owa.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'activesync.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.acf.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.acl.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.ahrq.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.ahrq.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.aids.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.aoa.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.aoa.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.bioethics.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.cms.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.cms.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.email.foh.dhhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.fatherhood.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.foh.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.os.dhhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.os.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.psc.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.psc.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.questions.cms.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.samhsa.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.samhsa.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.whaging.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Autodiscover.whcoa.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hh-emscas15.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hh-emscas16.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hh-emscas17.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hh-emscas18.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hh-emscasarray20.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-emscas10.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-emscas11.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-emscas12.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-emscas13.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-emscasarray10.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'caspl.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cashhh.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-i2-exch1.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-i2-exch2.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-i2-exch3.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-i2-exch4.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hhh-i2-exch1.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hhh-i2-exch2.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hhh-i2-exch3.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hhh-i2-exch4.ees.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hhh-i2-hybrid1.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hhh-i2-hybrid2.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hhh-i2-hybrid3.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hhh-i2-hybrid4.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-i2-hybrid1.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-i2-hybrid2.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-i2-hybrid3.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pl-i2-hybrid4.hhs.gov'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g5.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g5.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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