www.defense.gov
Issued by R3
About this certificate
This digital certificate with serial number 03:02:9e:88:13:b7:09:89:c4:e7:3b:77:a3:16:23:0c:51:a9 was issued on by Let's Encrypt.
With 65 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.defense.gov
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:02:9e:88:13:b7:09:89:c4:e7:3b:77:a3:16:23:0c:51:a9Serial Number (int): 262228147104696882438541834126281673560489
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8c:da:8b:76:cd:50:4b:ef:8e:e0:13:7d:4b:fd:14:ac:e7:29:19:aa
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 3b:93:f3:b7:b3:6e:a7:10:8d:6c:ea:d4:81:3c:eb:1d:61:4a:b1:51
Fingerprint (sha256): 46:a3:5c:7b:23:2b:99:b6:4c:2f:b0:aa:2c:55:ec:7b:5d:b4:a0:bb:13:0b:18:fc:42:92:77:89:fb:32:b4:07
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.defense.gov
65
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.defense.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
2017dodtransition.defense.gov
actuary.defense.gov
afd.defense.gov
armedforcessports.defense.gov
atsdio.defense.gov
basicresearch.defense.gov
business.defense.gov
cmsmedia.defense.gov
comptroller.defense.gov
ctip.defense.gov
cyberwork.defense.gov
dacowits.defense.gov
dam.defense.gov
data.defense.gov
dbb.defense.gov
dcips.defense.gov
dcmo.defense.gov
diversity.defense.gov
dod.defense.gov
dodcertpmo.defense.gov
dodcio.defense.gov
dodmwrandresalepolicy.defense.gov
dodsioo.defense.gov
dpac.defense.gov
dpcld.defense.gov
dpclo.defense.gov
energy.defense.gov
execsec.defense.gov
frcsw.navair.navy.mil
history.defense.gov
innovation.defense.gov
irt.defense.gov
jamrs.defense.gov
jnlwp.defense.gov
jsc.defense.gov
kb.defense.gov
la.defense.gov
m.nsa.gov
militarypay.defense.gov
minerva.defense.gov
nmio.ise.gov
nsa.gov
ogc.osd.mil
oig.nsa.gov
open.defense.gov
ousdi.defense.gov
policy.defense.gov
prhome.defense.gov
ra.defense.gov
rfpb.defense.gov
rwtf.defense.gov
servicedesk.defense.gov
valor.defense.gov
vwac.defense.gov
www.alssa.mil
www.business.defense.gov
www.dantes.mil
www.dc3.mil
www.defense.gov
www.deomi.mil
www.dod.defense.gov
www.dodnafaccounting.defense.gov
www.nsa.gov
www.ukraineoversight.gov
www.whs.mil
actuary.defense.gov
afd.defense.gov
armedforcessports.defense.gov
atsdio.defense.gov
basicresearch.defense.gov
business.defense.gov
cmsmedia.defense.gov
comptroller.defense.gov
ctip.defense.gov
cyberwork.defense.gov
dacowits.defense.gov
dam.defense.gov
data.defense.gov
dbb.defense.gov
dcips.defense.gov
dcmo.defense.gov
diversity.defense.gov
dod.defense.gov
dodcertpmo.defense.gov
dodcio.defense.gov
dodmwrandresalepolicy.defense.gov
dodsioo.defense.gov
dpac.defense.gov
dpcld.defense.gov
dpclo.defense.gov
energy.defense.gov
execsec.defense.gov
frcsw.navair.navy.mil
history.defense.gov
innovation.defense.gov
irt.defense.gov
jamrs.defense.gov
jnlwp.defense.gov
jsc.defense.gov
kb.defense.gov
la.defense.gov
m.nsa.gov
militarypay.defense.gov
minerva.defense.gov
nmio.ise.gov
nsa.gov
ogc.osd.mil
oig.nsa.gov
open.defense.gov
ousdi.defense.gov
policy.defense.gov
prhome.defense.gov
ra.defense.gov
rfpb.defense.gov
rwtf.defense.gov
servicedesk.defense.gov
valor.defense.gov
vwac.defense.gov
www.alssa.mil
www.business.defense.gov
www.dantes.mil
www.dc3.mil
www.defense.gov
www.deomi.mil
www.dod.defense.gov
www.dodnafaccounting.defense.gov
www.nsa.gov
www.ukraineoversight.gov
www.whs.mil
Other certificates including the domain name defense.gov
(limited to 100 certificates)
search.usa.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
media-dev.defense.gov
www.defense.gov
media-dev.defense.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
helpdesk.defense.gov
search.usa.gov
media-dev.defense.gov
*.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
search.usa.gov
okdbv.search.usa.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
www.defense.gov
static.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
stats.defense.gov
www.defense.gov
kb.defense.gov
media-dev.defense.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
kb.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
gfm.ousdi.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
search.usa.gov
search.usa.gov
stats.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
media-dev.defense.gov
www.defense.gov
media-dev.defense.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
helpdesk.defense.gov
search.usa.gov
media-dev.defense.gov
*.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
search.usa.gov
okdbv.search.usa.gov
search.usa.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
www.defense.gov
static.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
www.defense.gov
stats.defense.gov
www.defense.gov
kb.defense.gov
media-dev.defense.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
kb.defense.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
gfm.ousdi.defense.gov
search.usa.gov
search.usa.gov
www.defense.gov
stats.defense.gov
media-dev.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
dd306dce-f242-4dfc-b2c3-3eb39d5d44b9.defense.gov
search.usa.gov
search.usa.gov
stats.defense.gov
www.defense.gov
www.defense.gov
media-dev.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
search.usa.gov
media-dev.defense.gov
search.usa.gov
www.defense.gov
search.usa.gov
www.defense.gov
www.defense.gov
www.defense.gov
www.defense.gov
search.usa.gov
search.usa.gov
Certificate
The complete raw certificate details for www.defense.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJ4TCCCMmgAwIBAgISAwKeiBO3CYnE5zt3oxYjDFGpMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTUyMDE4MTZaFw0yNDA1MTUyMDE4MTVaMBoxGDAWBgNVBAMT D3d3dy5kZWZlbnNlLmdvdjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMJp+hq10uV+L0tHFItemwTMs5HXjP7MrYANAcGN/z6VZSC1GIU7J9rYikC/TdLH nrBGkZQYy3W6vedtV7Y1JKT3hkp9Lrxwt2gO5t7Ov+A2GAhbrAI88ej79Av4P0MD HcsZ/AQj/m9Un/1tCbD5GghHe8Q+xJcZ4c+ii/4bmI/GPkm3qDm15Mf1cUJ7J/AG hJwLSH0PnhBzmrYxCmAcX7KKXm7We1amf8u/8JXPeJTQcIWFspaoY6cW4klbPHd0 fD25b9aFOGHcFL3Ln+5Zr8MpZnywefYBBAHctGjKU9DYSmDhrIsimokHhD4it8DE do1a6Eowh662S4UOZqOsHIcCAwEAAaOCBwcwggcDMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUjNqLds1QS++O4BN9S/0UrOcpGaowHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wggUQBgNVHREEggUHMIIFA4IdMjAxN2RvZHRyYW5zaXRpb24uZGVmZW5zZS5n b3aCE2FjdHVhcnkuZGVmZW5zZS5nb3aCD2FmZC5kZWZlbnNlLmdvdoIdYXJtZWRm b3JjZXNzcG9ydHMuZGVmZW5zZS5nb3aCEmF0c2Rpby5kZWZlbnNlLmdvdoIZYmFz aWNyZXNlYXJjaC5kZWZlbnNlLmdvdoIUYnVzaW5lc3MuZGVmZW5zZS5nb3aCFGNt c21lZGlhLmRlZmVuc2UuZ292ghdjb21wdHJvbGxlci5kZWZlbnNlLmdvdoIQY3Rp cC5kZWZlbnNlLmdvdoIVY3liZXJ3b3JrLmRlZmVuc2UuZ292ghRkYWNvd2l0cy5k ZWZlbnNlLmdvdoIPZGFtLmRlZmVuc2UuZ292ghBkYXRhLmRlZmVuc2UuZ292gg9k YmIuZGVmZW5zZS5nb3aCEWRjaXBzLmRlZmVuc2UuZ292ghBkY21vLmRlZmVuc2Uu Z292ghVkaXZlcnNpdHkuZGVmZW5zZS5nb3aCD2RvZC5kZWZlbnNlLmdvdoIWZG9k Y2VydHBtby5kZWZlbnNlLmdvdoISZG9kY2lvLmRlZmVuc2UuZ292giFkb2Rtd3Jh bmRyZXNhbGVwb2xpY3kuZGVmZW5zZS5nb3aCE2RvZHNpb28uZGVmZW5zZS5nb3aC EGRwYWMuZGVmZW5zZS5nb3aCEWRwY2xkLmRlZmVuc2UuZ292ghFkcGNsby5kZWZl bnNlLmdvdoISZW5lcmd5LmRlZmVuc2UuZ292ghNleGVjc2VjLmRlZmVuc2UuZ292 ghVmcmNzdy5uYXZhaXIubmF2eS5taWyCE2hpc3RvcnkuZGVmZW5zZS5nb3aCFmlu bm92YXRpb24uZGVmZW5zZS5nb3aCD2lydC5kZWZlbnNlLmdvdoIRamFtcnMuZGVm ZW5zZS5nb3aCEWpubHdwLmRlZmVuc2UuZ292gg9qc2MuZGVmZW5zZS5nb3aCDmti LmRlZmVuc2UuZ292gg5sYS5kZWZlbnNlLmdvdoIJbS5uc2EuZ292ghdtaWxpdGFy eXBheS5kZWZlbnNlLmdvdoITbWluZXJ2YS5kZWZlbnNlLmdvdoIMbm1pby5pc2Uu Z292ggduc2EuZ292ggtvZ2Mub3NkLm1pbIILb2lnLm5zYS5nb3aCEG9wZW4uZGVm ZW5zZS5nb3aCEW91c2RpLmRlZmVuc2UuZ292ghJwb2xpY3kuZGVmZW5zZS5nb3aC EnByaG9tZS5kZWZlbnNlLmdvdoIOcmEuZGVmZW5zZS5nb3aCEHJmcGIuZGVmZW5z ZS5nb3aCEHJ3dGYuZGVmZW5zZS5nb3aCF3NlcnZpY2VkZXNrLmRlZmVuc2UuZ292 ghF2YWxvci5kZWZlbnNlLmdvdoIQdndhYy5kZWZlbnNlLmdvdoINd3d3LmFsc3Nh Lm1pbIIYd3d3LmJ1c2luZXNzLmRlZmVuc2UuZ292gg53d3cuZGFudGVzLm1pbIIL d3d3LmRjMy5taWyCD3d3dy5kZWZlbnNlLmdvdoINd3d3LmRlb21pLm1pbIITd3d3 LmRvZC5kZWZlbnNlLmdvdoIgd3d3LmRvZG5hZmFjY291bnRpbmcuZGVmZW5zZS5n b3aCC3d3dy5uc2EuZ292ghh3d3cudWtyYWluZW92ZXJzaWdodC5nb3aCC3d3dy53 aHMubWlsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAgYKKwYBBAHWeQIEAgSB8wSB 8ADuAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGNrqJsWQAA BAMARjBEAiAxo3K6YZFjPvsUKZRqtc/mU4UKvLfuKrrUy7/K5OJsOAIgFmx1iotI OWGmSe3PmMD6iAF8us/HF5QlzppuSnZgJHkAdQBIsONr2qZHNA/lagL6nTDrHFIB y1bdLIHZu7+rOdiEcwAAAY2uom3rAAAEAwBGMEQCIBqwSL7lUjgaCRUiAy3mML1G txJ6pIFrGN/KESAhoU9IAiASD6DHjNmVe9NDCkM/izlPf55PRV+LePELOX1xvsKN JjANBgkqhkiG9w0BAQsFAAOCAQEANwGCuiF3JaphTV3YllL4TfEu4eJhj57KFRU8 +ttJRJuaiPGk9gJJxorZLim5OCC2wWwCeT3iqSSswt/wt20tTeiyoXflSIWfHAW9 Kwz1zkcHNM8WjKxAvsgt+krJ0BS9x9cmnC9sWyRFSoNyO00Nq9TKpgg/qFkSngUs 9EPxm3V0vAdYZ4V930FThqdQT3hHZV2oa6+eOTJYrZaGNPKZoLBoBmDuRf1YxI33 B4+S5BSqoW4nVJAYBjoJ5aUV0HrBJRXgx/Yk9qZ7stX6ldFdCazyhEyMg7cZP0hA rMGhrnzLWkzjLx01RiqnK1OS1sinXcZ0kFmSEW1N3V2SVdWfDQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmn6GrXS5X4vS0cUi16b BMyzkdeM/sytgA0BwY3/PpVlILUYhTsn2tiKQL9N0seesEaRlBjLdbq9521XtjUk pPeGSn0uvHC3aA7m3s6/4DYYCFusAjzx6Pv0C/g/QwMdyxn8BCP+b1Sf/W0JsPka CEd7xD7Elxnhz6KL/huYj8Y+SbeoObXkx/VxQnsn8AaEnAtIfQ+eEHOatjEKYBxf sopebtZ7VqZ/y7/wlc94lNBwhYWylqhjpxbiSVs8d3R8Pblv1oU4YdwUvcuf7lmv wylmfLB59gEEAdy0aMpT0NhKYOGsiyKaiQeEPiK3wMR2jVroSjCHrrZLhQ5mo6wc hwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 262228147104696882438541834126281673560489 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-15 20:18:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-15 20:18:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.defense.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24542490355081693357997046759738793756042287463860992143385425548899943410696058339449926823662757121561411293048140591800296063991199411158803108188493948223561504791426096526068916033217526879067109394237121820910258558260162744733279132017580029635276217259539849250581562754890750283102462910500324838267651484604308417662665001856022027903623500658046360772187681976682846503358581672601824970050148883288416655745971336791788461736838798145677903896278129393759983209719818196639624963158641941106070077066046000994043514460151861454484065624472455452756184880813539335685910690429755364589744175781829728279687 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8cda8b76cd504bef8ee0137d4bfd14ace72919aa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1287 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '2017dodtransition.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'actuary.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'afd.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'armedforcessports.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'atsdio.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'basicresearch.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'business.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmsmedia.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'comptroller.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ctip.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cyberwork.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dacowits.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dam.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dbb.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dcips.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dcmo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diversity.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dod.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodcertpmo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodcio.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodmwrandresalepolicy.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dodsioo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dpac.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dpcld.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dpclo.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'energy.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'execsec.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'frcsw.navair.navy.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'history.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'innovation.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'irt.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jamrs.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jnlwp.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jsc.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kb.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'la.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'militarypay.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minerva.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nmio.ise.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ogc.osd.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oig.nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'open.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ousdi.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'policy.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prhome.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ra.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rfpb.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rwtf.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'servicedesk.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'valor.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vwac.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.alssa.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.business.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dantes.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dc3.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.deomi.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dod.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dodnafaccounting.defense.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nsa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ukraineoversight.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.whs.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018daea26c590000040300463044022031a372ba6191633efb1429946ab5cfe653850abcb7ee2abad4cbbfcae4e26c380220166c758a8b483961a649edcf98c0fa88017cbacfc7179425ce9a6e4a7660247900750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018daea26deb000004030046304402201ab048bee552381a091522032de630bd46b7127aa4816b18dfca112021a14f480220120fa0c78cd9957bd3430a433f8b394f7f9e4f455f8b78f10b397d71bec28d26 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00370182ba217725aa614d5dd89652f84df12ee1e2618f9eca15153cfadb49449b9a88f1a4f60249c68ad92e29b93820b6c16c02793de2a924acc2dff0b76d2d4de8b2a177e548859f1c05bd2b0cf5ce470734cf168cac40bec82dfa4ac9d014bdc7d7269c2f6c5b24454a83723b4d0dabd4caa6083fa859129e052cf443f19b7574bc075867857ddf415386a7504f7847655da86baf9e393258ad968634f299a0b0680660ee45fd58c48df7078f92e414aaa16e27549018063a09e5a515d07ac12515e0c7f624f6a67bb2d5fa95d15d09acf2844c8c83b7193f4840acc1a1ae7ccb5a4ce32f1d35462aa72b5392d6c8a75dc674905992116d4ddd5d9255d59f0d