www.defense.gov
Issued by R3
About this certificate
This digital certificate with serial number 04:ba:56:70:7f:97:6d:a1:eb:d8:19:d1:68:a8:2c:12:c5:f8 was issued on by Let's Encrypt.
With 65 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.defense.gov
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ba:56:70:7f:97:6d:a1:eb:d8:19:d1:68:a8:2c:12:c5:f8Serial Number (int): 411856561707084601276733421778407169115640
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b5:78:f0:6e:9b:6f:21:6b:9f:c9:3e:8a:55:a7:36:5a:91:51:78:1c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 5a:00:2a:f2:6a:23:35:bb:16:0e:ad:6d:bc:93:94:1b:a6:f9:c3:b9
Fingerprint (sha256): 32:ef:c5:1f:c1:66:37:ca:14:cc:9b:7a:fa:3b:bb:4f:2d:c1:11:05:28:8a:56:e8:43:ba:52:56:2b:77:c4:9d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.defense.gov
65
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.defense.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
2017dodtransition.defense.gov
2021dodtransition.defense.gov
actuary.defense.gov
afd.defense.gov
armedforcessports.defense.gov
atsdio.defense.gov
basicresearch.defense.gov
business.defense.gov
cmsmedia.defense.gov
comptroller.defense.gov
ctip.defense.gov
cyberwork.defense.gov
dacowits.defense.gov
dam.defense.gov
data.defense.gov
dbb.defense.gov
dcips.defense.gov
dcmo.defense.gov
diversity.defense.gov
dod.defense.gov
dodcertpmo.defense.gov
dodcio.defense.gov
dodmwrandresalepolicy.defense.gov
dodsioo.defense.gov
dpcld.defense.gov
dpclo.defense.gov
energy.defense.gov
execsec.defense.gov
frcsw.navair.navy.mil
history.defense.gov
innovation.defense.gov
irt.defense.gov
jamrs.defense.gov
jnlwp.defense.gov
jsc.defense.gov
kb.defense.gov
la.defense.gov
m.nsa.gov
militarypay.defense.gov
minerva.defense.gov
nmio.ise.gov
nsa.gov
ogc.osd.mil
oig.nsa.gov
opa.defense.gov
open.defense.gov
ousdi.defense.gov
policy.defense.gov
prhome.defense.gov
ra.defense.gov
rfpb.defense.gov
rwtf.defense.gov
servicedesk.defense.gov
valor.defense.gov
vwac.defense.gov
www.business.defense.gov
www.businessdefense.gov
www.dc3.mil
www.defense.gov
www.deomi.mil
www.dod.defense.gov
www.dodnafaccounting.defense.gov
www.inherentresolve.mil
www.nsa.gov
www.whs.mil
2021dodtransition.defense.gov
actuary.defense.gov
afd.defense.gov
armedforcessports.defense.gov
atsdio.defense.gov
basicresearch.defense.gov
business.defense.gov
cmsmedia.defense.gov
comptroller.defense.gov
ctip.defense.gov
cyberwork.defense.gov
dacowits.defense.gov
dam.defense.gov
data.defense.gov
dbb.defense.gov
dcips.defense.gov
dcmo.defense.gov
diversity.defense.gov
dod.defense.gov
dodcertpmo.defense.gov
dodcio.defense.gov
dodmwrandresalepolicy.defense.gov
dodsioo.defense.gov
dpcld.defense.gov
dpclo.defense.gov
energy.defense.gov
execsec.defense.gov
frcsw.navair.navy.mil
history.defense.gov
innovation.defense.gov
irt.defense.gov
jamrs.defense.gov
jnlwp.defense.gov
jsc.defense.gov
kb.defense.gov
la.defense.gov
m.nsa.gov
militarypay.defense.gov
minerva.defense.gov
nmio.ise.gov
nsa.gov
ogc.osd.mil
oig.nsa.gov
opa.defense.gov
open.defense.gov
ousdi.defense.gov
policy.defense.gov
prhome.defense.gov
ra.defense.gov
rfpb.defense.gov
rwtf.defense.gov
servicedesk.defense.gov
valor.defense.gov
vwac.defense.gov
www.business.defense.gov
www.businessdefense.gov
www.dc3.mil
www.defense.gov
www.deomi.mil
www.dod.defense.gov
www.dodnafaccounting.defense.gov
www.inherentresolve.mil
www.nsa.gov
www.whs.mil
Other certificates including the domain name defense.gov
(limited to 100 certificates)
search.usa.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
media-dev.defense.gov
www.defense.gov
media-dev.defense.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
helpdesk.defense.gov
search.usa.gov
media-dev.defense.gov
*.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
search.usa.gov
okdbv.search.usa.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
www.defense.gov
static.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
stats.defense.gov
www.defense.gov
kb.defense.gov
media-dev.defense.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
kb.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
gfm.ousdi.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
search.usa.gov
search.usa.gov
stats.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
media-dev.defense.gov
www.defense.gov
media-dev.defense.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
helpdesk.defense.gov
search.usa.gov
media-dev.defense.gov
*.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
search.usa.gov
okdbv.search.usa.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
www.defense.gov
static.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
stats.defense.gov
www.defense.gov
kb.defense.gov
media-dev.defense.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
kb.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
gfm.ousdi.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
search.usa.gov
search.usa.gov
stats.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
Certificate
The complete raw certificate details for www.defense.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJQDCCCCigAwIBAgISBLpWcH+XbaHr2BnRaKgsEsX4MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjAzMTcxMjA1MDdaFw0yMjA2MTUxMjA1MDZaMBoxGDAWBgNVBAMT D3d3dy5kZWZlbnNlLmdvdjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMSfPrC/amOHth1qvLE8QyhOQd6disD+t9BbhlL1ytKvpo5rnDGtonEBlj++F3j3 +9mDVNg9VnUCYuEvp9ZSK9kRCzrJmtTQr5sMHbcBJRExwQ6v3b7OnJjGy2SaMTik 52sDVo5ZDsWPDMB36A7+wep+JwNccUo/clivstnh2ugXKDDh3iaUt6k0aOZT6xCe KymNOJQjdBtcx6uxboWJJuhGmgINI9B/HL5cXQLTvH655bzbVp8SUeoGPBvMGXsW HjE3ls2hG+llr7akW3BdelJvQuh0nX/2GSH5Wx4b1u0nsOoujNY7gqPP6xEBS8df XldMp7Csci91BmbyDgrHSRECAwEAAaOCBmYwggZiMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUtXjwbptvIWufyT6KVac2WpFReBwwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wggUnBgNVHREEggUeMIIFGoIdMjAxN2RvZHRyYW5zaXRpb24uZGVmZW5zZS5n b3aCHTIwMjFkb2R0cmFuc2l0aW9uLmRlZmVuc2UuZ292ghNhY3R1YXJ5LmRlZmVu c2UuZ292gg9hZmQuZGVmZW5zZS5nb3aCHWFybWVkZm9yY2Vzc3BvcnRzLmRlZmVu c2UuZ292ghJhdHNkaW8uZGVmZW5zZS5nb3aCGWJhc2ljcmVzZWFyY2guZGVmZW5z ZS5nb3aCFGJ1c2luZXNzLmRlZmVuc2UuZ292ghRjbXNtZWRpYS5kZWZlbnNlLmdv doIXY29tcHRyb2xsZXIuZGVmZW5zZS5nb3aCEGN0aXAuZGVmZW5zZS5nb3aCFWN5 YmVyd29yay5kZWZlbnNlLmdvdoIUZGFjb3dpdHMuZGVmZW5zZS5nb3aCD2RhbS5k ZWZlbnNlLmdvdoIQZGF0YS5kZWZlbnNlLmdvdoIPZGJiLmRlZmVuc2UuZ292ghFk Y2lwcy5kZWZlbnNlLmdvdoIQZGNtby5kZWZlbnNlLmdvdoIVZGl2ZXJzaXR5LmRl ZmVuc2UuZ292gg9kb2QuZGVmZW5zZS5nb3aCFmRvZGNlcnRwbW8uZGVmZW5zZS5n b3aCEmRvZGNpby5kZWZlbnNlLmdvdoIhZG9kbXdyYW5kcmVzYWxlcG9saWN5LmRl ZmVuc2UuZ292ghNkb2RzaW9vLmRlZmVuc2UuZ292ghFkcGNsZC5kZWZlbnNlLmdv doIRZHBjbG8uZGVmZW5zZS5nb3aCEmVuZXJneS5kZWZlbnNlLmdvdoITZXhlY3Nl Yy5kZWZlbnNlLmdvdoIVZnJjc3cubmF2YWlyLm5hdnkubWlsghNoaXN0b3J5LmRl ZmVuc2UuZ292ghZpbm5vdmF0aW9uLmRlZmVuc2UuZ292gg9pcnQuZGVmZW5zZS5n b3aCEWphbXJzLmRlZmVuc2UuZ292ghFqbmx3cC5kZWZlbnNlLmdvdoIPanNjLmRl ZmVuc2UuZ292gg5rYi5kZWZlbnNlLmdvdoIObGEuZGVmZW5zZS5nb3aCCW0ubnNh LmdvdoIXbWlsaXRhcnlwYXkuZGVmZW5zZS5nb3aCE21pbmVydmEuZGVmZW5zZS5n b3aCDG5taW8uaXNlLmdvdoIHbnNhLmdvdoILb2djLm9zZC5taWyCC29pZy5uc2Eu Z292gg9vcGEuZGVmZW5zZS5nb3aCEG9wZW4uZGVmZW5zZS5nb3aCEW91c2RpLmRl ZmVuc2UuZ292ghJwb2xpY3kuZGVmZW5zZS5nb3aCEnByaG9tZS5kZWZlbnNlLmdv doIOcmEuZGVmZW5zZS5nb3aCEHJmcGIuZGVmZW5zZS5nb3aCEHJ3dGYuZGVmZW5z ZS5nb3aCF3NlcnZpY2VkZXNrLmRlZmVuc2UuZ292ghF2YWxvci5kZWZlbnNlLmdv doIQdndhYy5kZWZlbnNlLmdvdoIYd3d3LmJ1c2luZXNzLmRlZmVuc2UuZ292ghd3 d3cuYnVzaW5lc3NkZWZlbnNlLmdvdoILd3d3LmRjMy5taWyCD3d3dy5kZWZlbnNl LmdvdoINd3d3LmRlb21pLm1pbIITd3d3LmRvZC5kZWZlbnNlLmdvdoIgd3d3LmRv ZG5hZmFjY291bnRpbmcuZGVmZW5zZS5nb3aCF3d3dy5pbmhlcmVudHJlc29sdmUu bWlsggt3d3cubnNhLmdvdoILd3d3Lndocy5taWwwTAYDVR0gBEUwQzAIBgZngQwB AgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRz ZW5jcnlwdC5vcmcwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQAD ggEBAGLbF8UZo6SiKSwezY9TbWws9kqVS+Seb+5ClgryytEyNXbVu8FcB4A1PY1Y G8BF1ydeGtcfARQGS6ZM1+5FAiVzjqdemj5Gkk+gLA6uYcB9y0nVgBSFwFxp11xH FKwnshgrBUycKXn1VcvT3JKLOyVsvtOZtwjyNNSduOm0enPY04m2YmxHP59CkXb2 w7kGOd4tRsiq6KlFJTjNACpInLOk1M/mWwNOC+Yzwk8m7WzwLYIkk1x42Le5evQ3 V131s45ztgA/1OJckdjYusSldOEQhxX9PrcUGI81Ie8nCH1zKKgUCrI6E4CVqthv aCyDc/pr5kei8W5zmCvZHSpZEgU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJ8+sL9qY4e2HWq8sTxD KE5B3p2KwP630FuGUvXK0q+mjmucMa2icQGWP74XePf72YNU2D1WdQJi4S+n1lIr 2RELOsma1NCvmwwdtwElETHBDq/dvs6cmMbLZJoxOKTnawNWjlkOxY8MwHfoDv7B 6n4nA1xxSj9yWK+y2eHa6BcoMOHeJpS3qTRo5lPrEJ4rKY04lCN0G1zHq7FuhYkm 6EaaAg0j0H8cvlxdAtO8frnlvNtWnxJR6gY8G8wZexYeMTeWzaEb6WWvtqRbcF16 Um9C6HSdf/YZIflbHhvW7Sew6i6M1juCo8/rEQFLx19eV0ynsKxyL3UGZvIOCsdJ EQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 411856561707084601276733421778407169115640 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-17 12:05:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-15 12:05:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.defense.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24821234352598497976178118560527909597123559928618813477229607566584323116321065351008736424346151354874376208327531438966590468126230058888388925505043722115744024037044543073339557894203616980062651013443050070308975121245600945483424171779832866202521780524759915319699838475898538860225626996757156816869814589114389125043206366574898151182445186894839137428231083572456034428074261312386950142074014579154113387161832305629834457012174322817071755949973873268767355836188736753231213380490955731042435419375067078904071133944676919179942657186765707866647615044889625165412341569444003241930579480863350521809169 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b578f06e9b6f216b9fc93e8a55a7365a9151781c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1310 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '2017dodtransition.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '2021dodtransition.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'actuary.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'afd.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'armedforcessports.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'atsdio.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'basicresearch.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'business.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmsmedia.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'comptroller.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ctip.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cyberwork.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dacowits.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dam.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dbb.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dcips.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dcmo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diversity.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dod.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodcertpmo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodcio.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodmwrandresalepolicy.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodsioo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dpcld.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dpclo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'energy.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'execsec.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'frcsw.navair.navy.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'history.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'innovation.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'irt.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jamrs.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jnlwp.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jsc.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kb.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'la.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'militarypay.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minerva.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nmio.ise.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ogc.osd.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oig.nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'opa.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'open.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ousdi.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'policy.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prhome.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ra.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rfpb.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rwtf.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'servicedesk.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'valor.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vwac.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.business.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.businessdefense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dc3.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.deomi.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dod.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dodnafaccounting.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.inherentresolve.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.whs.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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