www.idealinksyst.pa.gov
- Commonwealth of Pennsylvania -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 63:91:95:aa:70:85:71:48:5d:a9:5e:f0:9d:a4:3c:8b was issued on by Entrust, Inc..
With 18 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Commonwealth of Pennsylvania
Organization:
Commonwealth of Pennsylvania
State / Province:
Pennsylvania
Locality: Harrisburg
Country: US
Locality: Harrisburg
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 63:91:95:aa:70:85:71:48:5d:a9:5e:f0:9d:a4:3c:8bSerial Number (int): 132349490209836436143770940836933811339
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 48:03:9e:7d:ed:4d:50:b7:cc:e5:26:2d:b3:fa:3a:68:3a:c1:c3:b0
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): ec:67:db:9f:a5:ab:a3:45:19:0d:56:7f:50:f6:0b:12:9a:0b:87:17
Fingerprint (sha256): 4f:55:36:42:35:9d:22:6a:a3:0b:ad:83:b9:b2:5e:f0:7e:6c:8c:d5:18:09:30:97:75:52:8c:ab:7d:5d:d2:d6
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate www.idealinksyst.pa.gov
18
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.idealinksyst.pa.gov
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.idealinksyst.pa.gov
www.dot16syst.pa.gov
www.worksmartsyst.pa.gov
www.dot18syst.pa.gov
www.soundingboardsyst.dced.pa.gov
customercaresyst.penndot.gov
customercareccsyst.penndot.gov
crashesdweb7syst.penndot.gov
customercaresyst.penndot.pa.gov
customercareccsyst.penndot.pa.gov
crashesdweb7syst.penndot.pa.gov
www.ideassyst.dhs.pa.gov
www.lightbulbssyst.puc.pa.gov
www.dotuat.state.pa.us
CustomerCareRLsyst.penndot.pa.gov
voyagerdev.penndot.pa.gov
voyagersyst.penndot.pa.gov
TrainingVideossyst.penndot.pa.gov
www.dot16syst.pa.gov
www.worksmartsyst.pa.gov
www.dot18syst.pa.gov
www.soundingboardsyst.dced.pa.gov
customercaresyst.penndot.gov
customercareccsyst.penndot.gov
crashesdweb7syst.penndot.gov
customercaresyst.penndot.pa.gov
customercareccsyst.penndot.pa.gov
crashesdweb7syst.penndot.pa.gov
www.ideassyst.dhs.pa.gov
www.lightbulbssyst.puc.pa.gov
www.dotuat.state.pa.us
CustomerCareRLsyst.penndot.pa.gov
voyagerdev.penndot.pa.gov
voyagersyst.penndot.pa.gov
TrainingVideossyst.penndot.pa.gov
Other certificates including the domain name pa.gov
(limited to 100 certificates)
www.penndotesafety.pa.gov
www.puc.state.pa.us
www.dotdom3.state.pa.us
www.uctax.beta.pa.gov
forms.dced.pa.gov
www.crashinfo.penndot.gov
forms.dced.pa.gov
www.snet.jnet.pa.gov
www.bpp.ob.pa.gov
ESECagSANCertProd.dot.pa.gov
www.swifpay.pa.gov
peuaa.SWIF.pa.gov
dliimagesua.pa.gov
pasmallbiz.dced.pa.gov
openscapewebconfw2.pa.gov
forms.dced.pa.gov
www.cfrs.pa.gov
padlsonline.pa.gov
www.ethics.pa.gov
PUC.eServices-DOT-CarrierID.pa.gov
www.oig.pa.gov
www.compas.dli.pa.gov
forms.dced.pa.gov
www.dlisecureweb.pa.gov
dsemms.pa.gov
ESECagSANCertSyst.dot.pa.gov
www.lablicensure.health.pa.gov
portal.pccd.beta.pa.gov
sts.beta.pa.gov
www.notaryreg.pa.gov
www.scicoll.pa.gov
ws.jnet.beta.pa.gov
spapps.pa.gov
gis.penndot.gov
www.portalxl.jnet.pa.gov
www.jobgatewaytr.pa.gov
epics.beta.pa.gov
docs.dcnr.pa.gov
www.pawatersupplyservicearea.pa.gov
services.dcnr.uat.pa.gov
www.puc.state.pa.us
*.pa.gov
www.inet.jnet.pa.gov
SMProxySANCertPROD.dot.pa.gov
events.dcnr.pa.gov
forms.dced.pa.gov
www.PaFoodSafety.beta.pa.gov
www.employment.pa.gov
sais.health.pa.gov
mail01.pa.gov
www.uctax-reg.beta.pa.gov
*.openrecords.pa.gov
www.agtrans.pa.gov
www.idprovider.dev.pa.gov
telcosmftp.pa.gov
dynxrm.dev.pa.gov
www.dos.pa.gov
forms.dced.pa.gov
www.agtrans.state.pa.us
www.lcb.pa.gov
www.cupss.pa.gov
dev-bppcs.pd.pa.gov
www.campaignfinanceonline.beta.pa.gov
www.wmapi.trn.wm.pa.gov
mysite.pa.gov
www.agriculture.pa.gov
www.gis.dcnr.beta.state.pa.us
www.rbaprovider.pa.gov
fdcbids.dcnr.pa.gov
www.PAFoodSafety.pa.gov
dced.pa.gov
damageprevention.puc.pa.gov
www.wcais.pa.gov
www.penndotesafetyqat.pa.gov
*.cor.beta.pa.gov
greenport.dev.pa.gov
staffalert.pa.gov
SMProxySANCertProd.dot.pa.gov
www.pcssmuat.dot.pa.gov
www.boardofappeals.state.pa.us
mysites.pa.gov
www.pgc.pa.gov
www.erstest.health.pa.gov
www.mypdeapps.pa.gov
osfc.sfa.pa.gov
edwin.dcnr.pa.gov
forms.dced.pa.gov
www.iwacs.phmc.pa.gov
ESECSanCertProd128.dot.pa.gov
apps.pwp.pa.gov
www.dominoextsyst.pa.gov
sso.SWIF.pa.gov
boe.ebr.uat.pa.gov
dynxrm.pa.gov
www.corporations.pa.gov
www.pawatersupplyservicearea.pa.gov
goals.governor.pa.gov
ndxs-dev.dhs.pa.gov
www.dot16.pa.gov
mysites.pa.gov
www.puc.state.pa.us
www.dotdom3.state.pa.us
www.uctax.beta.pa.gov
forms.dced.pa.gov
www.crashinfo.penndot.gov
forms.dced.pa.gov
www.snet.jnet.pa.gov
www.bpp.ob.pa.gov
ESECagSANCertProd.dot.pa.gov
www.swifpay.pa.gov
peuaa.SWIF.pa.gov
dliimagesua.pa.gov
pasmallbiz.dced.pa.gov
openscapewebconfw2.pa.gov
forms.dced.pa.gov
www.cfrs.pa.gov
padlsonline.pa.gov
www.ethics.pa.gov
PUC.eServices-DOT-CarrierID.pa.gov
www.oig.pa.gov
www.compas.dli.pa.gov
forms.dced.pa.gov
www.dlisecureweb.pa.gov
dsemms.pa.gov
ESECagSANCertSyst.dot.pa.gov
www.lablicensure.health.pa.gov
portal.pccd.beta.pa.gov
sts.beta.pa.gov
www.notaryreg.pa.gov
www.scicoll.pa.gov
ws.jnet.beta.pa.gov
spapps.pa.gov
gis.penndot.gov
www.portalxl.jnet.pa.gov
www.jobgatewaytr.pa.gov
epics.beta.pa.gov
docs.dcnr.pa.gov
www.pawatersupplyservicearea.pa.gov
services.dcnr.uat.pa.gov
www.puc.state.pa.us
*.pa.gov
www.inet.jnet.pa.gov
SMProxySANCertPROD.dot.pa.gov
events.dcnr.pa.gov
forms.dced.pa.gov
www.PaFoodSafety.beta.pa.gov
www.employment.pa.gov
sais.health.pa.gov
mail01.pa.gov
www.uctax-reg.beta.pa.gov
*.openrecords.pa.gov
www.agtrans.pa.gov
www.idprovider.dev.pa.gov
telcosmftp.pa.gov
dynxrm.dev.pa.gov
www.dos.pa.gov
forms.dced.pa.gov
www.agtrans.state.pa.us
www.lcb.pa.gov
www.cupss.pa.gov
dev-bppcs.pd.pa.gov
www.campaignfinanceonline.beta.pa.gov
www.wmapi.trn.wm.pa.gov
mysite.pa.gov
www.agriculture.pa.gov
www.gis.dcnr.beta.state.pa.us
www.rbaprovider.pa.gov
fdcbids.dcnr.pa.gov
www.PAFoodSafety.pa.gov
dced.pa.gov
damageprevention.puc.pa.gov
www.wcais.pa.gov
www.penndotesafetyqat.pa.gov
*.cor.beta.pa.gov
greenport.dev.pa.gov
staffalert.pa.gov
SMProxySANCertProd.dot.pa.gov
www.pcssmuat.dot.pa.gov
www.boardofappeals.state.pa.us
mysites.pa.gov
www.pgc.pa.gov
www.erstest.health.pa.gov
www.mypdeapps.pa.gov
osfc.sfa.pa.gov
edwin.dcnr.pa.gov
forms.dced.pa.gov
www.iwacs.phmc.pa.gov
ESECSanCertProd128.dot.pa.gov
apps.pwp.pa.gov
www.dominoextsyst.pa.gov
sso.SWIF.pa.gov
boe.ebr.uat.pa.gov
dynxrm.pa.gov
www.corporations.pa.gov
www.pawatersupplyservicearea.pa.gov
goals.governor.pa.gov
ndxs-dev.dhs.pa.gov
www.dot16.pa.gov
mysites.pa.gov
Certificate
The complete raw certificate details for www.idealinksyst.pa.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIINjCCBx6gAwIBAgIQY5GVqnCFcUhdqV7wnaQ8izANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDA0MjIxODM0MzJaFw0yNTA1MjIxODM0MzBaMIGCMQswCQYDVQQGEwJVUzEVMBMG A1UECBMMUGVubnN5bHZhbmlhMRMwEQYDVQQHEwpIYXJyaXNidXJnMSUwIwYDVQQK ExxDb21tb253ZWFsdGggb2YgUGVubnN5bHZhbmlhMSAwHgYDVQQDExd3d3cuaWRl YWxpbmtzeXN0LnBhLmdvdjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AMughW8ppmTTyBBE42YDqCfCPoNQD4W8B/0yC8LafqbIyFi0iD2gcl0EQfU3++/x jLlnHPGY1kb6vrAWACzqz9prIH/CV4gPfl3XtGjkyW4jFBvt1yZdZbpZ6JvKQAHY Kic9PtIWe4iOD2FhQj8rAUZha6imTwK1TcQMiXCrDq6W0mQpJWqJ12/Zf2VSsVsL wCpXo/6k/VsIgf4fcvoDJb0QxKufjTbNzADeiJYRU9umT4W1S87iuSR+mYcX6cYw T0AXlmG//eW+/YLpLuwwSAMhL/087+MEKkg2R18cVWozLyoLtAFM4R0wvVbJ5qre lpFje8EhrgxF0qAEC1zqUFCafHX77UfLiRRgtvAx2OJeB42oa48/pcQdnzx4C6Up FobHXja6mPBSfDy5rXrb9MwBfJ1+Z/NjIa9ju8mFH0WcPckBJXZPD/M8SfrqeZgR jvRAi9wSV+hY6oDqQft5kzzDNYbOaKVl9TrY1FjEwveBLAX3hqsVdFK3gqmYYZgZ un6Dko35GpEWm0BwX48LlN80WnCUjFwoA2wAX1gQt8nB5FtFkknyq54azPLPxbsT V0EGf+sZ1+hkd1mr5Xlu9Nz+Gp0z0/Iw+IpYJVTO2AQvYdY/gVUz+VLPsqIlhbxs EoAohWS6cKBSHqqZpXobb/5rpX3pAONJceJMSFLsusbBAgMBAAGjggNsMIIDaDAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRIA5597U1Qt8zlJi2z+jpoOsHDsDAfBgNV HSMEGDAWgBSConB03bxTP8971PfNf6dgxgpMvzBoBggrBgEFBQcBAQRcMFowIwYI KwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChido dHRwOi8vYWlhLmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwMwYDVR0fBCww KjAooCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZlbDFrLmNybDCCAh4G A1UdEQSCAhUwggIRghd3d3cuaWRlYWxpbmtzeXN0LnBhLmdvdoIUd3d3LmRvdDE2 c3lzdC5wYS5nb3aCGHd3dy53b3Jrc21hcnRzeXN0LnBhLmdvdoIUd3d3LmRvdDE4 c3lzdC5wYS5nb3aCIXd3dy5zb3VuZGluZ2JvYXJkc3lzdC5kY2VkLnBhLmdvdoIc Y3VzdG9tZXJjYXJlc3lzdC5wZW5uZG90LmdvdoIeY3VzdG9tZXJjYXJlY2NzeXN0 LnBlbm5kb3QuZ292ghxjcmFzaGVzZHdlYjdzeXN0LnBlbm5kb3QuZ292gh9jdXN0 b21lcmNhcmVzeXN0LnBlbm5kb3QucGEuZ292giFjdXN0b21lcmNhcmVjY3N5c3Qu cGVubmRvdC5wYS5nb3aCH2NyYXNoZXNkd2ViN3N5c3QucGVubmRvdC5wYS5nb3aC GHd3dy5pZGVhc3N5c3QuZGhzLnBhLmdvdoIdd3d3LmxpZ2h0YnVsYnNzeXN0LnB1 Yy5wYS5nb3aCFnd3dy5kb3R1YXQuc3RhdGUucGEudXOCIUN1c3RvbWVyQ2FyZVJM c3lzdC5wZW5uZG90LnBhLmdvdoIZdm95YWdlcmRldi5wZW5uZG90LnBhLmdvdoIa dm95YWdlcnN5c3QucGVubmRvdC5wYS5nb3aCIVRyYWluaW5nVmlkZW9zc3lzdC5w ZW5uZG90LnBhLmdvdjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMBMGA1UdIAQMMAowCAYGZ4EMAQICMBMGCisGAQQB1nkCBAMB Af8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCdvX2i8GssHcgUN1SUL8YptDpaYdgt I/nhVg2Dd+SjWjt9+OWaEeXto3IdtxFxOHq4ZS9pgz6KrBag9JqHyFpuPR5qDNP9 eTBQRQ6t/82eST1zbb61RhvrJchDOKqGisc5tffmabj8XGHfUMlN7sxyDwzXx2pB zEvnehK5jAZrc8PQo+OAixR7wdZ7iTpGS7F83L+yzW3xKfIlIVlL5S0dRQCmAh7W 7vkm+wMOpFBedENlI2PlcNKTzbDvaG7K8/ySfJ+vhjkfDnpkkr0VBG5ylWhbVeYG 2RPcBo1edB7p19aRv4gKUg6/b/NX/YmnE+f/QILMNtvwAXjKTQLlEryq -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAy6CFbymmZNPIEETjZgOo J8I+g1APhbwH/TILwtp+psjIWLSIPaByXQRB9Tf77/GMuWcc8ZjWRvq+sBYALOrP 2msgf8JXiA9+Xde0aOTJbiMUG+3XJl1lulnom8pAAdgqJz0+0hZ7iI4PYWFCPysB RmFrqKZPArVNxAyJcKsOrpbSZCklaonXb9l/ZVKxWwvAKlej/qT9WwiB/h9y+gMl vRDEq5+NNs3MAN6IlhFT26ZPhbVLzuK5JH6ZhxfpxjBPQBeWYb/95b79guku7DBI AyEv/Tzv4wQqSDZHXxxVajMvKgu0AUzhHTC9Vsnmqt6WkWN7wSGuDEXSoAQLXOpQ UJp8dfvtR8uJFGC28DHY4l4Hjahrjz+lxB2fPHgLpSkWhsdeNrqY8FJ8PLmtetv0 zAF8nX5n82Mhr2O7yYUfRZw9yQEldk8P8zxJ+up5mBGO9ECL3BJX6FjqgOpB+3mT PMM1hs5opWX1OtjUWMTC94EsBfeGqxV0UreCqZhhmBm6foOSjfkakRabQHBfjwuU 3zRacJSMXCgDbABfWBC3ycHkW0WSSfKrnhrM8s/FuxNXQQZ/6xnX6GR3WavleW70 3P4anTPT8jD4ilglVM7YBC9h1j+BVTP5Us+yoiWFvGwSgCiFZLpwoFIeqpmlehtv /mulfekA40lx4kxIUuy6xsECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 132349490209836436143770940836933811339 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-22 18:34:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-22 18:34:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Harrisburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Commonwealth of Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.idealinksyst.pa.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 830725829688518669249951247569706776906447593584679265031826324551046366612727381554854091610466203142926345607946470621279972220547975208676463902995788726272892553624296361459342838887413508134756231828180526461180100851352399494635310399741098314133344285581194940007143048702720979776510737137128890205421767029155564845071412240246010154883518650853205613180923858709991230591712046340327370011482948212072683424814167441913555850998533887675705703180611780619992664868681225970533071243559131054947147237130522829923411184825922531002425862028544698649116950284235148273991387807090920737994891209280132303058804837147973960535198687236081360247335512184977286850119140240192701274325799787714237220061522692229758106958601176274940700734985781873145131421942861008379516036687544325548922326216129362911826458587842238686808149183722941435347670357884480551436494386193307040015885822728384533912547555667903298659458490102482392950626622046204485901315644117155249054732128987948620386670580029939528928170185141171510980111968158428199336255514948036690645987907395434128283598259590441890565352421950906769230236098712462601647035140741597627483816292933530726876235484836880021723664143130080530426061270818484101213505217 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 48039e7ded4d50b7cce5262db3fa3a683ac1c3b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (533 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.idealinksyst.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dot16syst.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.worksmartsyst.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dot18syst.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.soundingboardsyst.dced.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'customercaresyst.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'customercareccsyst.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crashesdweb7syst.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'customercaresyst.penndot.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'customercareccsyst.penndot.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crashesdweb7syst.penndot.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ideassyst.dhs.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lightbulbssyst.puc.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dotuat.state.pa.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'CustomerCareRLsyst.penndot.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'voyagerdev.penndot.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'voyagersyst.penndot.pa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'TrainingVideossyst.penndot.pa.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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