www.dot.gov

- United States Department of Transportation -

Issued by GeoTrust RSA CA 2018

About this certificate

This digital certificate with serial number 07:4e:23:85:43:57:b7:87:07:26:7b:32:41:c8:17:f7 was issued on by DigiCert Inc.

With 67 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

United States Department of Transportation

Organization: United States Department of Transportation
State / Province: District Of Columbia
Locality: Washington
Country: US

DigiCert Inc

Organization: DigiCert Inc
Organization unit: www.digicert.com
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 07:4e:23:85:43:57:b7:87:07:26:7b:32:41:c8:17:f7
Serial Number (int): 9710315567983408759202408332568041463
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 28:56:e4:b9:94:36:dc:f5:1d:2d:2b:df:b1:16:a9:f3:fd:5b:53:cb
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5

Fingerprint (sha1): e5:14:61:1a:09:e9:46:41:21:55:cc:76:af:14:96:8a:9d:63:94:47
Fingerprint (sha256): 52:30:de:68:d4:79:6a:63:15:48:25:6f:57:18:1a:e9:79:79:b0:b5:3e:24:8b:56:9a:6d:d1:2b:8b:59:6b:a4

Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt

Revocation information

OCSP Server: http://status.geotrust.com
CRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl

Check the revocation status for certificate www.dot.gov

67

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.dot.gov

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.dot.gov
dot.gov
www.bts.dot.gov
cms.data.fra.dot.gov
www.fmcsa.dot.gov
ntl.bts.gov
cms.phmsa.dot.gov
pipelinesafety.dot.gov
fmcsa.dot.gov
smarterskies.gov
cms.permits.performance.gov
fta.dot.gov
cms.seaway.dot.gov
www.secure.dot.gov
cms.volpe.dot.gov
tsi.dot.gov
dotcms.fra.dot.gov
sfm.fmcsa.dot.gov
www.usmma.edu
civilrights.dot.gov
cms.fmcsa.dot.gov
cms.bts.dot.gov
fmcsa.portal.dot.gov
cms.dot.gov
www.bts.gov
www.transit.dot.gov
www.volpe.dot.gov
hazmatsafety.dot.gov
www.tsi.dot.gov
www.sustainablecommunities.gov
sustainablecommunities.gov
cms.secure.dot.gov
cms.usmma.edu
cms.fhwa.dot.gov
cms.sustainablecommunities.gov
www.data.fra.dot.gov
permits.performance.gov
cms.bts.gov
transit.dot.gov
www.atcreform.gov
www.seaway.dot.gov
www.protectyourmove.gov
portal.dot.gov
www.fta.dot.gov
score.fmcsa.dot.gov
phmsa.dot.gov
cms.fra.dot.gov
protectyourmove.gov
cms.fta.dot.gov
www.transportation.gov
www.smarterskies.gov
volpe.dot.gov
transerve.dot.gov
cms.fmcsa.secure.dot.gov
sharetheroadsafely.gov
www.portal.dot.gov
www.civilrights.dot.gov
www.sharetheroadsafely.gov
utc.dot.gov
www.phmsa.dot.gov
secure.dot.gov
pnt.rita.dot.gov
www.permits.performance.gov
data.fra.dot.gov
www.rita.dot.gov
seaway.dot.gov
ntcscheduler.fmcsa.dot.gov

Other certificates including the domain name dot.gov

(limited to 100 certificates)
www.psp.fmcsa.dot.gov
www.dot.gov
acquia-sites.com
*.phmsa.dot.gov
vsa.volpe.dot.gov
marad.dot.gov
acquia-sites.com
www.standards.its.dot.gov
origin-www-esv.nhtsa.dot.gov
*.volpe.dot.gov
faces.fta.dot.gov
1c3rs.rita.dot.gov
itsdpro.ornl.gov
facesuat.fta.dot.gov
its2010.ornl.gov
www.faa.gov
ftp.nhtsa.dot.gov
rsac.fra.dot.gov
fl17vgisweb.hfl17do1.wfl.fld.fhwa.dot.gov
marapps.dot.gov
ask.fmcsa.dot.gov
crashstats.nhtsa.dot.gov
TSMART.VOLPE.DOT.GOV
www.dot.gov
acquia-sites.com
mcmis.fmcsa.dot.gov
its2010.ornl.gov
safeconsole.volpe.dot.gov
nhtsa.dot.gov
acquia-sites.com
NHTHQNF5B-M.nhtsa.dot.gov
fhw2xavwmup02.dmz.fhwa.dot.gov
pmars.marad.dot.gov
acquia-sites.com
dotcmsreporting.dot.gov
oetcrt.dot.gov
itsassets.ornl.gov
acquia-sites.com
acquia-sites.com
safercar.gov
enepa.fhwa.dot.gov
rspcb.safety.fhwa.dot.gov
itsassets.ornl.gov
marapps.dot.gov
www-odi.nhtsa.dot.gov
PoolSFC.dot.gov
fhw1xavwmup01.dmz.fhwa.dot.gov
flh.fhwa.dot.gov
swim.volpe.dot.gov
Access.dot.gov
www.dot.gov
www-nass.nhtsa.dot.gov
itsassets.ornl.gov
ftp.nhtsa.dot.gov
its.dot.gov
ftajira.ad.dot.gov
sphome.volpe.dot.gov
crashstats.nhtsa.dot.gov
www.environment.fhwa.dot.gov
scm.nhtsa.dot.gov
www.faa.gov
www.dot.gov
test.cdlis.dot.gov
elmsstaging.dot.gov
eas.dot.gov
crashviewer.nhtsa.dot.gov
PoolSFC.dot.gov
eas.dot.gov
transportation.gov
safety.fhwa.dot.gov
nhthqnlas865.ad.dot.gov
nhthqnwas603.ad.dot.gov
sftp.phmsa.dot.gov
score.fmcsa.dot.gov
eas.dot.gov
origin-www-odi.nhtsa.dot.gov
www.npms.phmsa.dot.gov
slfts.fhwa.dot.gov
CSAM.DOT.GOV
email.dot.gov
itsdpro.ornl.gov
www.dot.gov
fhfl15gisweb.flhd.fhwa.dot.gov
*.phmsa.dot.gov
VOLPEPHONEMGR.VOLPE.DOT.GOV
mscs.marad.dot.gov
faces.fta.dot.gov
facesdev5.fta.dot.gov
dtrack2013.ornl.gov
sra.volpe.dot.gov
hostedsites.volpe.dot.gov
smtp10.dot.gov
*.infopave.fhwa.dot.gov
www.faa.gov
nhthqnwas813.ad.dot.gov
transitapp.ost.dot.gov
elmsstaging.dot.gov
acquia-sites.com
nhthqnlas803.ad.dot.gov
rspcb.safety.fhwa.dot.gov

Certificate

The complete raw certificate details for www.dot.gov in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIILMDCCChigAwIBAgIQB04jhUNXt4cHJnsyQcgX9zANBgkqhkiG9w0BAQsFADBe
MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3
d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe
Fw0xODAzMDgwMDAwMDBaFw0xODExMjUxMjAwMDBaMIGMMQswCQYDVQQGEwJVUzEd
MBsGA1UECBMURGlzdHJpY3QgT2YgQ29sdW1iaWExEzARBgNVBAcTCldhc2hpbmd0
b24xMzAxBgNVBAoTKlVuaXRlZCBTdGF0ZXMgRGVwYXJ0bWVudCBvZiBUcmFuc3Bv
cnRhdGlvbjEUMBIGA1UEAxMLd3d3LmRvdC5nb3YwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDXCI+7VZhdY7mZjJOTinFxOHX31sDdtqrRAMjd4ZbKCZiE
523WS2rEooBAsIeZARGY3nJS42La2p3UukRKpy1xDlwbr3QZnDto62krDyqPgYbF
9TsBM6IKZK6r88dK6hdTUEzioUVOynjpUxiD95K2CHfTK6q5fNLPUdkkLY3S7V6F
bhCwiWHA3Fyl+RcvnLA56UYSl5s+sghy4CB19ZeJp+3TFOgZpZTrBPdc9Pfj3Ulg
JTX15KrGIPErw2wxxe8wVcu+L7WHaXJbdLpL7NipxiRhBsnYFJq2dWqFYASYZzsC
1Dsaba/rVjy6hjwaAQUuJsL9M+3jPwC97D6H05mjAgMBAAGjgge5MIIHtTAfBgNV
HSMEGDAWgBSQWP+wnHWoUVR3se3yo0MWOJ5sxTAdBgNVHQ4EFgQUKFbkuZQ23PUd
LSvfsRap8/1bU8swggUqBgNVHREEggUhMIIFHYILd3d3LmRvdC5nb3aCB2RvdC5n
b3aCD3d3dy5idHMuZG90LmdvdoIUY21zLmRhdGEuZnJhLmRvdC5nb3aCEXd3dy5m
bWNzYS5kb3QuZ292ggtudGwuYnRzLmdvdoIRY21zLnBobXNhLmRvdC5nb3aCFnBp
cGVsaW5lc2FmZXR5LmRvdC5nb3aCDWZtY3NhLmRvdC5nb3aCEHNtYXJ0ZXJza2ll
cy5nb3aCG2Ntcy5wZXJtaXRzLnBlcmZvcm1hbmNlLmdvdoILZnRhLmRvdC5nb3aC
EmNtcy5zZWF3YXkuZG90LmdvdoISd3d3LnNlY3VyZS5kb3QuZ292ghFjbXMudm9s
cGUuZG90LmdvdoILdHNpLmRvdC5nb3aCEmRvdGNtcy5mcmEuZG90LmdvdoIRc2Zt
LmZtY3NhLmRvdC5nb3aCDXd3dy51c21tYS5lZHWCE2NpdmlscmlnaHRzLmRvdC5n
b3aCEWNtcy5mbWNzYS5kb3QuZ292gg9jbXMuYnRzLmRvdC5nb3aCFGZtY3NhLnBv
cnRhbC5kb3QuZ292ggtjbXMuZG90LmdvdoILd3d3LmJ0cy5nb3aCE3d3dy50cmFu
c2l0LmRvdC5nb3aCEXd3dy52b2xwZS5kb3QuZ292ghRoYXptYXRzYWZldHkuZG90
LmdvdoIPd3d3LnRzaS5kb3QuZ292gh53d3cuc3VzdGFpbmFibGVjb21tdW5pdGll
cy5nb3aCGnN1c3RhaW5hYmxlY29tbXVuaXRpZXMuZ292ghJjbXMuc2VjdXJlLmRv
dC5nb3aCDWNtcy51c21tYS5lZHWCEGNtcy5maHdhLmRvdC5nb3aCHmNtcy5zdXN0
YWluYWJsZWNvbW11bml0aWVzLmdvdoIUd3d3LmRhdGEuZnJhLmRvdC5nb3aCF3Bl
cm1pdHMucGVyZm9ybWFuY2UuZ292ggtjbXMuYnRzLmdvdoIPdHJhbnNpdC5kb3Qu
Z292ghF3d3cuYXRjcmVmb3JtLmdvdoISd3d3LnNlYXdheS5kb3QuZ292ghd3d3cu
cHJvdGVjdHlvdXJtb3ZlLmdvdoIOcG9ydGFsLmRvdC5nb3aCD3d3dy5mdGEuZG90
LmdvdoITc2NvcmUuZm1jc2EuZG90LmdvdoINcGhtc2EuZG90LmdvdoIPY21zLmZy
YS5kb3QuZ292ghNwcm90ZWN0eW91cm1vdmUuZ292gg9jbXMuZnRhLmRvdC5nb3aC
Fnd3dy50cmFuc3BvcnRhdGlvbi5nb3aCFHd3dy5zbWFydGVyc2tpZXMuZ292gg12
b2xwZS5kb3QuZ292ghF0cmFuc2VydmUuZG90LmdvdoIYY21zLmZtY3NhLnNlY3Vy
ZS5kb3QuZ292ghZzaGFyZXRoZXJvYWRzYWZlbHkuZ292ghJ3d3cucG9ydGFsLmRv
dC5nb3aCF3d3dy5jaXZpbHJpZ2h0cy5kb3QuZ292ghp3d3cuc2hhcmV0aGVyb2Fk
c2FmZWx5LmdvdoILdXRjLmRvdC5nb3aCEXd3dy5waG1zYS5kb3QuZ292gg5zZWN1
cmUuZG90LmdvdoIQcG50LnJpdGEuZG90LmdvdoIbd3d3LnBlcm1pdHMucGVyZm9y
bWFuY2UuZ292ghBkYXRhLmZyYS5kb3QuZ292ghB3d3cucml0YS5kb3QuZ292gg5z
ZWF3YXkuZG90LmdvdoIabnRjc2NoZWR1bGVyLmZtY3NhLmRvdC5nb3YwDgYDVR0P
AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA+BgNVHR8E
NzA1MDOgMaAvhi1odHRwOi8vY2RwLmdlb3RydXN0LmNvbS9HZW9UcnVzdFJTQUNB
MjAxOC5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYc
aHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwdQYIKwYBBQUH
AQEEaTBnMCYGCCsGAQUFBzABhhpodHRwOi8vc3RhdHVzLmdlb3RydXN0LmNvbTA9
BggrBgEFBQcwAoYxaHR0cDovL2NhY2VydHMuZ2VvdHJ1c3QuY29tL0dlb1RydXN0
UlNBQ0EyMDE4LmNydDAJBgNVHRMEAjAAMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw
AHUApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFiB3ZBEgAABAMA
RjBEAiBOppfaXzzHOWT8opEb3AgUqMiO8/hk6NMM6wlie8rb+wIgQlhkoaXFKEzD
TbAqfUk6nK8fF8VPG3tEbff1rZdInVoAdwBvU3asMfAxGdiZAKRRFf93FRwR2QLB
ACkGjbIImjfZEwAAAWIHdkJMAAAEAwBIMEYCIQD08ZoqmdVHEdOOQxYjTQPDc+XI
zNer31+vyq5cToAe9wIhAIaziMQ6etdSudQjyl1fbVOdV3crzJJ/9N401mQyzW24
MA0GCSqGSIb3DQEBCwUAA4IBAQCZ8jCFSkdZ3mxubz8kfPwFiaSBfsqlkKfR3D2l
PoFLlCSPQXnxzvOKNU1G5p6zqwKblSaCIXl1Knf04jDlbUqmxwDN04HZO4H0IHz8
Wy6957NG9lhdgTxEHkg85G5xc1Jk9v2r6QzlsW5fPHw+YIrhJDMRIqLDREXaS18o
vUavuZiYhbiCnkVcJv9ma2jJUxWCMI80TivQxIzrTxISyi97BpPjavCu9hEJZgDu
aG5d9iHzbGUFmGb5qzMH9yGHURmqBNirAfSfgtJJM2hcYFQs1k3ADf+gIGoipIsG
6PmYDSSw6PuQUUmwqFDn3AawWTcwjEwd4wniJGf1UaaRm+YD
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1wiPu1WYXWO5mYyTk4px
cTh199bA3baq0QDI3eGWygmYhOdt1ktqxKKAQLCHmQERmN5yUuNi2tqd1LpESqct
cQ5cG690GZw7aOtpKw8qj4GGxfU7ATOiCmSuq/PHSuoXU1BM4qFFTsp46VMYg/eS
tgh30yuquXzSz1HZJC2N0u1ehW4QsIlhwNxcpfkXL5ywOelGEpebPrIIcuAgdfWX
iaft0xToGaWU6wT3XPT3491JYCU19eSqxiDxK8NsMcXvMFXLvi+1h2lyW3S6S+zY
qcYkYQbJ2BSatnVqhWAEmGc7AtQ7Gm2v61Y8uoY8GgEFLibC/TPt4z8Avew+h9OZ
owIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 9710315567983408759202408332568041463
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-08 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-25 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District Of Columbia'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'United States Department of Transportation'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.dot.gov'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27145457377153815776782061522565618898740919190328849667279808159493596296523770367245563621440610000804102561929661872565396196322167984118547558403017621087958274386406287626882705558166974467872078492323864034531431161669000174061289342778655100768694510363917209472862509987200045375046040967464322866536863847741406759687747235198145936380530484695361632008304772570262933027850770041446645886020572061444839349563849171043023736063449502720653018919522168636146636041401154624752740631646587100353744121159166058584360702960554856678399195606399739791262756481429279044053564067799092489098942112110765541661091
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2856e4b99436dcf51d2d2bdfb116a9f3fd5b53cb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1313 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bts.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.data.fra.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fmcsa.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ntl.bts.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.phmsa.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pipelinesafety.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fmcsa.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smarterskies.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.permits.performance.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fta.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.seaway.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.secure.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.volpe.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tsi.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dotcms.fra.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfm.fmcsa.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.usmma.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'civilrights.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.fmcsa.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.bts.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fmcsa.portal.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bts.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.transit.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.volpe.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hazmatsafety.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tsi.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sustainablecommunities.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sustainablecommunities.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.secure.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.usmma.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.fhwa.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.sustainablecommunities.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.data.fra.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'permits.performance.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.bts.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'transit.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.atcreform.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.seaway.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.protectyourmove.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fta.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'score.fmcsa.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'phmsa.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.fra.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'protectyourmove.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.fta.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.transportation.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.smarterskies.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'volpe.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'transerve.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.fmcsa.secure.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sharetheroadsafely.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.portal.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.civilrights.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sharetheroadsafely.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'utc.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.phmsa.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pnt.rita.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.permits.performance.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.fra.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rita.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'seaway.dot.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ntcscheduler.fmcsa.dot.gov'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016207764112000004030046304402204ea697da5f3cc73964fca2911bdc0814a8c88ef3f864e8d30ceb09627bcadbfb0220425864a1a5c5284cc34db02a7d493a9caf1f17c54f1b7b446df7f5ad97489d5a0077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001620776424c0000040300483046022100f4f19a2a99d54711d38e4316234d03c373e5c8ccd7abdf5fafcaae5c4e801ef702210086b388c43a7ad752b9d423ca5d5f6d539d57772bcc927ff4de34d66432cd6db8
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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