www.dot.gov
- United States Department of Transportation -
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 07:32:08:d1:55:74:a5:d2:2b:8d:34:ba:c7:a2:9c:f4 was issued on by DigiCert Inc.
With 75 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
United States Department of Transportation
Organization:
United States Department of Transportation
State / Province:
District Of Columbia
Locality: Washington
Country: US
Locality: Washington
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:32:08:d1:55:74:a5:d2:2b:8d:34:ba:c7:a2:9c:f4Serial Number (int): 9564389657831191483676902155622718708
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 26:68:fa:4f:ee:09:a7:99:c4:4a:a6:b5:63:f6:1c:62:06:5c:90:a1
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): 62:38:e6:02:5c:e3:6c:26:ed:9e:3f:6c:09:c8:70:46:01:5e:53:50
Fingerprint (sha256): 58:07:83:3b:aa:0c:14:cf:e8:24:3c:f2:2e:39:b4:5b:aa:a8:6a:e5:f0:e1:62:c8:02:51:67:93:4e:53:af:79
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate www.dot.gov
75
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.dot.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.dot.gov
dot.gov
dotcms.fra.dot.gov
seaway.dot.gov
cms.marad.dot.gov
cms.bts.gov
fta.dot.gov
www.sharetheroadsafely.gov
secure.dot.gov
data.fra.dot.gov
sharetheroadsafely.gov
highways.dot.gov
transit.dot.gov
tsi.dot.gov
transerve.dot.gov
www.data.fra.dot.gov
www.fmcsa.dot.gov
www.transit.dot.gov
www.bts.dot.gov
cms.fra.dot.gov
phmsa.dot.gov
fmcsa.dot.gov
ntl.bts.gov
ntcscheduler.fmcsa.dot.gov
www.atcreform.gov
score.fmcsa.dot.gov
cms.seaway.dot.gov
www.tsi.dot.gov
www.permits.performance.gov
sfm.fmcsa.dot.gov
cms.dot.gov
cms.fmcsa.secure.dot.gov
cms.fta.dot.gov
fmcsa.portal.dot.gov
www.portal.dot.gov
checkthebox.dot.gov
cms.fhwa.dot.gov
www.phmsa.dot.gov
www.marad.dot.gov
www.sustainablecommunities.gov
cms.sustainablecommunities.gov
pnt.rita.dot.gov
www.usmma.edu
highways.fhwa.dot.gov
volpe.dot.gov
www.bts.gov
pipelinesafety.dot.gov
portal.dot.gov
hazmatsafety.dot.gov
www.osdbu.dot.gov
cms.phmsa.dot.gov
cms.usmma.edu
www.fta.dot.gov
sustainablecommunities.gov
www.civilrights.dot.gov
www.transportation.gov
cms.secure.dot.gov
cms.permits.performance.gov
www.protectyourmove.gov
smarterskies.gov
railroads.fra.dot.gov
www.seaway.dot.gov
cms.bts.dot.gov
utc.dot.gov
www.smarterskies.gov
cms.volpe.dot.gov
www.rita.dot.gov
civilrights.dot.gov
cms.data.fra.dot.gov
cms.fmcsa.dot.gov
railroads.dot.gov
protectyourmove.gov
www.secure.dot.gov
www.volpe.dot.gov
permits.performance.gov
dot.gov
dotcms.fra.dot.gov
seaway.dot.gov
cms.marad.dot.gov
cms.bts.gov
fta.dot.gov
www.sharetheroadsafely.gov
secure.dot.gov
data.fra.dot.gov
sharetheroadsafely.gov
highways.dot.gov
transit.dot.gov
tsi.dot.gov
transerve.dot.gov
www.data.fra.dot.gov
www.fmcsa.dot.gov
www.transit.dot.gov
www.bts.dot.gov
cms.fra.dot.gov
phmsa.dot.gov
fmcsa.dot.gov
ntl.bts.gov
ntcscheduler.fmcsa.dot.gov
www.atcreform.gov
score.fmcsa.dot.gov
cms.seaway.dot.gov
www.tsi.dot.gov
www.permits.performance.gov
sfm.fmcsa.dot.gov
cms.dot.gov
cms.fmcsa.secure.dot.gov
cms.fta.dot.gov
fmcsa.portal.dot.gov
www.portal.dot.gov
checkthebox.dot.gov
cms.fhwa.dot.gov
www.phmsa.dot.gov
www.marad.dot.gov
www.sustainablecommunities.gov
cms.sustainablecommunities.gov
pnt.rita.dot.gov
www.usmma.edu
highways.fhwa.dot.gov
volpe.dot.gov
www.bts.gov
pipelinesafety.dot.gov
portal.dot.gov
hazmatsafety.dot.gov
www.osdbu.dot.gov
cms.phmsa.dot.gov
cms.usmma.edu
www.fta.dot.gov
sustainablecommunities.gov
www.civilrights.dot.gov
www.transportation.gov
cms.secure.dot.gov
cms.permits.performance.gov
www.protectyourmove.gov
smarterskies.gov
railroads.fra.dot.gov
www.seaway.dot.gov
cms.bts.dot.gov
utc.dot.gov
www.smarterskies.gov
cms.volpe.dot.gov
www.rita.dot.gov
civilrights.dot.gov
cms.data.fra.dot.gov
cms.fmcsa.dot.gov
railroads.dot.gov
protectyourmove.gov
www.secure.dot.gov
www.volpe.dot.gov
permits.performance.gov
Other certificates including the domain name dot.gov
(limited to 100 certificates)
www.psp.fmcsa.dot.gov
www.dot.gov
acquia-sites.com
*.phmsa.dot.gov
vsa.volpe.dot.gov
marad.dot.gov
acquia-sites.com
www.standards.its.dot.gov
origin-www-esv.nhtsa.dot.gov
*.volpe.dot.gov
faces.fta.dot.gov
1c3rs.rita.dot.gov
itsdpro.ornl.gov
facesuat.fta.dot.gov
its2010.ornl.gov
www.faa.gov
ftp.nhtsa.dot.gov
rsac.fra.dot.gov
fl17vgisweb.hfl17do1.wfl.fld.fhwa.dot.gov
marapps.dot.gov
ask.fmcsa.dot.gov
crashstats.nhtsa.dot.gov
TSMART.VOLPE.DOT.GOV
www.dot.gov
acquia-sites.com
mcmis.fmcsa.dot.gov
its2010.ornl.gov
safeconsole.volpe.dot.gov
nhtsa.dot.gov
acquia-sites.com
NHTHQNF5B-M.nhtsa.dot.gov
fhw2xavwmup02.dmz.fhwa.dot.gov
pmars.marad.dot.gov
acquia-sites.com
dotcmsreporting.dot.gov
oetcrt.dot.gov
itsassets.ornl.gov
acquia-sites.com
acquia-sites.com
safercar.gov
enepa.fhwa.dot.gov
rspcb.safety.fhwa.dot.gov
itsassets.ornl.gov
marapps.dot.gov
www-odi.nhtsa.dot.gov
PoolSFC.dot.gov
fhw1xavwmup01.dmz.fhwa.dot.gov
flh.fhwa.dot.gov
swim.volpe.dot.gov
Access.dot.gov
www.dot.gov
www-nass.nhtsa.dot.gov
itsassets.ornl.gov
ftp.nhtsa.dot.gov
its.dot.gov
ftajira.ad.dot.gov
sphome.volpe.dot.gov
crashstats.nhtsa.dot.gov
www.environment.fhwa.dot.gov
scm.nhtsa.dot.gov
www.faa.gov
www.dot.gov
test.cdlis.dot.gov
elmsstaging.dot.gov
eas.dot.gov
crashviewer.nhtsa.dot.gov
PoolSFC.dot.gov
eas.dot.gov
transportation.gov
safety.fhwa.dot.gov
nhthqnlas865.ad.dot.gov
nhthqnwas603.ad.dot.gov
sftp.phmsa.dot.gov
score.fmcsa.dot.gov
eas.dot.gov
origin-www-odi.nhtsa.dot.gov
www.npms.phmsa.dot.gov
slfts.fhwa.dot.gov
CSAM.DOT.GOV
email.dot.gov
itsdpro.ornl.gov
www.dot.gov
fhfl15gisweb.flhd.fhwa.dot.gov
*.phmsa.dot.gov
VOLPEPHONEMGR.VOLPE.DOT.GOV
mscs.marad.dot.gov
faces.fta.dot.gov
facesdev5.fta.dot.gov
dtrack2013.ornl.gov
sra.volpe.dot.gov
hostedsites.volpe.dot.gov
smtp10.dot.gov
*.infopave.fhwa.dot.gov
www.faa.gov
nhthqnwas813.ad.dot.gov
transitapp.ost.dot.gov
elmsstaging.dot.gov
acquia-sites.com
nhthqnlas803.ad.dot.gov
rspcb.safety.fhwa.dot.gov
www.dot.gov
acquia-sites.com
*.phmsa.dot.gov
vsa.volpe.dot.gov
marad.dot.gov
acquia-sites.com
www.standards.its.dot.gov
origin-www-esv.nhtsa.dot.gov
*.volpe.dot.gov
faces.fta.dot.gov
1c3rs.rita.dot.gov
itsdpro.ornl.gov
facesuat.fta.dot.gov
its2010.ornl.gov
www.faa.gov
ftp.nhtsa.dot.gov
rsac.fra.dot.gov
fl17vgisweb.hfl17do1.wfl.fld.fhwa.dot.gov
marapps.dot.gov
ask.fmcsa.dot.gov
crashstats.nhtsa.dot.gov
TSMART.VOLPE.DOT.GOV
www.dot.gov
acquia-sites.com
mcmis.fmcsa.dot.gov
its2010.ornl.gov
safeconsole.volpe.dot.gov
nhtsa.dot.gov
acquia-sites.com
NHTHQNF5B-M.nhtsa.dot.gov
fhw2xavwmup02.dmz.fhwa.dot.gov
pmars.marad.dot.gov
acquia-sites.com
dotcmsreporting.dot.gov
oetcrt.dot.gov
itsassets.ornl.gov
acquia-sites.com
acquia-sites.com
safercar.gov
enepa.fhwa.dot.gov
rspcb.safety.fhwa.dot.gov
itsassets.ornl.gov
marapps.dot.gov
www-odi.nhtsa.dot.gov
PoolSFC.dot.gov
fhw1xavwmup01.dmz.fhwa.dot.gov
flh.fhwa.dot.gov
swim.volpe.dot.gov
Access.dot.gov
www.dot.gov
www-nass.nhtsa.dot.gov
itsassets.ornl.gov
ftp.nhtsa.dot.gov
its.dot.gov
ftajira.ad.dot.gov
sphome.volpe.dot.gov
crashstats.nhtsa.dot.gov
www.environment.fhwa.dot.gov
scm.nhtsa.dot.gov
www.faa.gov
www.dot.gov
test.cdlis.dot.gov
elmsstaging.dot.gov
eas.dot.gov
crashviewer.nhtsa.dot.gov
PoolSFC.dot.gov
eas.dot.gov
transportation.gov
safety.fhwa.dot.gov
nhthqnlas865.ad.dot.gov
nhthqnwas603.ad.dot.gov
sftp.phmsa.dot.gov
score.fmcsa.dot.gov
eas.dot.gov
origin-www-odi.nhtsa.dot.gov
www.npms.phmsa.dot.gov
slfts.fhwa.dot.gov
CSAM.DOT.GOV
email.dot.gov
itsdpro.ornl.gov
www.dot.gov
fhfl15gisweb.flhd.fhwa.dot.gov
*.phmsa.dot.gov
VOLPEPHONEMGR.VOLPE.DOT.GOV
mscs.marad.dot.gov
faces.fta.dot.gov
facesdev5.fta.dot.gov
dtrack2013.ornl.gov
sra.volpe.dot.gov
hostedsites.volpe.dot.gov
smtp10.dot.gov
*.infopave.fhwa.dot.gov
www.faa.gov
nhthqnwas813.ad.dot.gov
transitapp.ost.dot.gov
elmsstaging.dot.gov
acquia-sites.com
nhthqnlas803.ad.dot.gov
rspcb.safety.fhwa.dot.gov
Certificate
The complete raw certificate details for www.dot.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIMTDCCCzSgAwIBAgIQBzII0VV0pdIrjTS6x6Kc9DANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0xODA5MjYwMDAwMDBaFw0xOTEyMjYxMjAwMDBaMIGMMQswCQYDVQQGEwJVUzEd MBsGA1UECBMURGlzdHJpY3QgT2YgQ29sdW1iaWExEzARBgNVBAcTCldhc2hpbmd0 b24xMzAxBgNVBAoTKlVuaXRlZCBTdGF0ZXMgRGVwYXJ0bWVudCBvZiBUcmFuc3Bv cnRhdGlvbjEUMBIGA1UEAxMLd3d3LmRvdC5nb3YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLbooYASV0WTnEM8lB8plsmZg6wZw47FRV05tTh5iwacf9 IYfGC4IcU22lCaUycQKVta7R23oZ8U3p6OvUMbmqsMDBFkstjGHFpXO7E9V8ypkC /+Cg6dJDrH+RnBJHhwjjZkSz+qQxAqViZz8qBPojASvNeOGv03Y3o2tGZc4TOxPY gQz5z0U5SZMFIAgXLbGuJ3rz+wfDogro3hK+AelX9P9LwlM5Ys2fkZUZ9xBrfWz+ dyHJZMGQGnPTSzrhw/3U+DZKHH9gU6Wha55elkcOlovwqanTWnslANaRpoyUoLEY mLVbnwOANXHHKkFfUjMplecTqmmZBfcuNFgGmfkZAgMBAAGjggjVMIII0TAfBgNV HSMEGDAWgBSQWP+wnHWoUVR3se3yo0MWOJ5sxTAdBgNVHQ4EFgQUJmj6T+4Jp5nE Sqa1Y/YcYgZckKEwggXLBgNVHREEggXCMIIFvoILd3d3LmRvdC5nb3aCB2RvdC5n b3aCEmRvdGNtcy5mcmEuZG90LmdvdoIOc2Vhd2F5LmRvdC5nb3aCEWNtcy5tYXJh ZC5kb3QuZ292ggtjbXMuYnRzLmdvdoILZnRhLmRvdC5nb3aCGnd3dy5zaGFyZXRo ZXJvYWRzYWZlbHkuZ292gg5zZWN1cmUuZG90LmdvdoIQZGF0YS5mcmEuZG90Lmdv doIWc2hhcmV0aGVyb2Fkc2FmZWx5LmdvdoIQaGlnaHdheXMuZG90LmdvdoIPdHJh bnNpdC5kb3QuZ292ggt0c2kuZG90LmdvdoIRdHJhbnNlcnZlLmRvdC5nb3aCFHd3 dy5kYXRhLmZyYS5kb3QuZ292ghF3d3cuZm1jc2EuZG90LmdvdoITd3d3LnRyYW5z aXQuZG90LmdvdoIPd3d3LmJ0cy5kb3QuZ292gg9jbXMuZnJhLmRvdC5nb3aCDXBo bXNhLmRvdC5nb3aCDWZtY3NhLmRvdC5nb3aCC250bC5idHMuZ292ghpudGNzY2hl ZHVsZXIuZm1jc2EuZG90LmdvdoIRd3d3LmF0Y3JlZm9ybS5nb3aCE3Njb3JlLmZt Y3NhLmRvdC5nb3aCEmNtcy5zZWF3YXkuZG90LmdvdoIPd3d3LnRzaS5kb3QuZ292 ght3d3cucGVybWl0cy5wZXJmb3JtYW5jZS5nb3aCEXNmbS5mbWNzYS5kb3QuZ292 ggtjbXMuZG90LmdvdoIYY21zLmZtY3NhLnNlY3VyZS5kb3QuZ292gg9jbXMuZnRh LmRvdC5nb3aCFGZtY3NhLnBvcnRhbC5kb3QuZ292ghJ3d3cucG9ydGFsLmRvdC5n b3aCE2NoZWNrdGhlYm94LmRvdC5nb3aCEGNtcy5maHdhLmRvdC5nb3aCEXd3dy5w aG1zYS5kb3QuZ292ghF3d3cubWFyYWQuZG90LmdvdoIed3d3LnN1c3RhaW5hYmxl Y29tbXVuaXRpZXMuZ292gh5jbXMuc3VzdGFpbmFibGVjb21tdW5pdGllcy5nb3aC EHBudC5yaXRhLmRvdC5nb3aCDXd3dy51c21tYS5lZHWCFWhpZ2h3YXlzLmZod2Eu ZG90LmdvdoINdm9scGUuZG90LmdvdoILd3d3LmJ0cy5nb3aCFnBpcGVsaW5lc2Fm ZXR5LmRvdC5nb3aCDnBvcnRhbC5kb3QuZ292ghRoYXptYXRzYWZldHkuZG90Lmdv doIRd3d3Lm9zZGJ1LmRvdC5nb3aCEWNtcy5waG1zYS5kb3QuZ292gg1jbXMudXNt bWEuZWR1gg93d3cuZnRhLmRvdC5nb3aCGnN1c3RhaW5hYmxlY29tbXVuaXRpZXMu Z292ghd3d3cuY2l2aWxyaWdodHMuZG90LmdvdoIWd3d3LnRyYW5zcG9ydGF0aW9u LmdvdoISY21zLnNlY3VyZS5kb3QuZ292ghtjbXMucGVybWl0cy5wZXJmb3JtYW5j ZS5nb3aCF3d3dy5wcm90ZWN0eW91cm1vdmUuZ292ghBzbWFydGVyc2tpZXMuZ292 ghVyYWlscm9hZHMuZnJhLmRvdC5nb3aCEnd3dy5zZWF3YXkuZG90LmdvdoIPY21z LmJ0cy5kb3QuZ292ggt1dGMuZG90LmdvdoIUd3d3LnNtYXJ0ZXJza2llcy5nb3aC EWNtcy52b2xwZS5kb3QuZ292ghB3d3cucml0YS5kb3QuZ292ghNjaXZpbHJpZ2h0 cy5kb3QuZ292ghRjbXMuZGF0YS5mcmEuZG90LmdvdoIRY21zLmZtY3NhLmRvdC5n b3aCEXJhaWxyb2Fkcy5kb3QuZ292ghNwcm90ZWN0eW91cm1vdmUuZ292ghJ3d3cu c2VjdXJlLmRvdC5nb3aCEXd3dy52b2xwZS5kb3QuZ292ghdwZXJtaXRzLnBlcmZv cm1hbmNlLmdvdjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMD4GA1UdHwQ3MDUwM6AxoC+GLWh0dHA6Ly9jZHAuZ2VvdHJ1c3Qu Y29tL0dlb1RydXN0UlNBQ0EyMDE4LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwB ATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgG BmeBDAECAjB1BggrBgEFBQcBAQRpMGcwJgYIKwYBBQUHMAGGGmh0dHA6Ly9zdGF0 dXMuZ2VvdHJ1c3QuY29tMD0GCCsGAQUFBzAChjFodHRwOi8vY2FjZXJ0cy5nZW90 cnVzdC5jb20vR2VvVHJ1c3RSU0FDQTIwMTguY3J0MAkGA1UdEwQCMAAwggF/Bgor BgEEAdZ5AgQCBIIBbwSCAWsBaQB2AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3 zQ7IDdwQAAABZhXCj3sAAAQDAEcwRQIhAMurblORJsBrWYezlqNMwjkWXpl2mFd/ I2GWVEfMavPJAiAjZfHjlCvONH5ffE83PcRRCpMt4yprAxgTck1Rvq9OgQB2AId1 v+dZfPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9eoIMPAAABZhXCkGgAAAQDAEcwRQIh AIpm/7AZlpoRH0bBNtcBdHT0mE6H/jx2FKdMBAdPnQlZAiBlbocPpvcY4zj6jLUl BeWrHf04hw/teH82A+XwZ0Sd8QB3AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDE e4l6qP3LAAABZhXCkJgAAAQDAEgwRgIhAIp8S1RoEpohkqEx6ulBGI/rgwUTRf0h D8oyFLd5Z7HoAiEAsljp1fNHAFxnn5P31LQ7SgP5BEzARlBYCH7no+AAqGAwDQYJ KoZIhvcNAQELBQADggEBADiblyAN+Gw9rTyYkds1wfAy/GvusHEM12TKo+yo95yr 8bBpfBTheor8Kp1VkX553sW5johpo0mZiMX4QpVLxgRcAd468vxPw789Z3IZUqpw ZTDsuipHY37UVA6fDmb+pGuDncZZepTvYx+7YrCdEqIl2hc1pX2AYXY/dcK1rtWk D2FGk4UsZQuakFusB5X9VwkEmbvu4Gwc0k2CSNcMX0iukK/dbgpWPhfVSp7Iu0wV P1EuSlo4gYzL8vJkHR9nv206r7ldMTuauJ/Ok5YpCWTbLnpCdSFWPviYqu+SwFAD QRGzTWIMIZmL0YHwzW7/CgJ0aiL0bsVwCs6vTb3cH2A= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy26KGAEldFk5xDPJQfKZ bJmYOsGcOOxUVdObU4eYsGnH/SGHxguCHFNtpQmlMnEClbWu0dt6GfFN6ejr1DG5 qrDAwRZLLYxhxaVzuxPVfMqZAv/goOnSQ6x/kZwSR4cI42ZEs/qkMQKlYmc/KgT6 IwErzXjhr9N2N6NrRmXOEzsT2IEM+c9FOUmTBSAIFy2xrid68/sHw6IK6N4SvgHp V/T/S8JTOWLNn5GVGfcQa31s/nchyWTBkBpz00s64cP91Pg2Shx/YFOloWueXpZH DpaL8Kmp01p7JQDWkaaMlKCxGJi1W58DgDVxxypBX1IzKZXnE6ppmQX3LjRYBpn5 GQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9564389657831191483676902155622718708 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-26 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District Of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'United States Department of Transportation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.dot.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25680884932020097513882059305482777478021835781481476232158723250822360447294037625076068659124594920179090250867275999297977751987697106955679840806148269029744478628548718934991129028043905290567640479911360016990923138300148099283098547293454127153451990643452435153027503002016368229362383281014553578487390857239091891797733505635523171376745958306623501059464349293247878789568676486564335732652766875784983129151024076622767415118172573656847462380386395322135707511750619867280742271137300468088073500926802987996057476958937979543588865884856640353947473779992771616521036942211225965695789279266672802920729 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2668fa4fee09a799c44aa6b563f61c62065c90a1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1474 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dotcms.fra.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'seaway.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.marad.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.bts.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fta.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sharetheroadsafely.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.fra.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sharetheroadsafely.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'highways.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'transit.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tsi.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'transerve.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.data.fra.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fmcsa.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.transit.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bts.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.fra.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'phmsa.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fmcsa.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ntl.bts.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ntcscheduler.fmcsa.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.atcreform.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'score.fmcsa.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.seaway.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tsi.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.permits.performance.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfm.fmcsa.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.fmcsa.secure.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.fta.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fmcsa.portal.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.portal.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'checkthebox.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.fhwa.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.phmsa.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.marad.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sustainablecommunities.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.sustainablecommunities.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pnt.rita.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.usmma.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'highways.fhwa.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'volpe.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bts.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pipelinesafety.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hazmatsafety.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.osdbu.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.phmsa.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.usmma.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fta.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sustainablecommunities.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.civilrights.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.transportation.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.secure.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.permits.performance.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.protectyourmove.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smarterskies.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'railroads.fra.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.seaway.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.bts.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'utc.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.smarterskies.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.volpe.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rita.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'civilrights.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.data.fra.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.fmcsa.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'railroads.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'protectyourmove.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.secure.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.volpe.dot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'permits.performance.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 0169007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016615c28f7b0000040300473045022100cbab6e539126c06b5987b396a34cc239165e997698577f2361965447cc6af3c902202365f1e3942bce347e5f7c4f373dc4510a932de32a6b031813724d51beaf4e810076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016615c2906800000403004730450221008a66ffb019969a111f46c136d7017474f4984e87fe3c7614a74c04074f9d09590220656e870fa6f718e338fa8cb52505e5ab1dfd38870fed787f3603e5f067449df1007700ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000016615c2909800000403004830460221008a7c4b5468129a2192a131eae941188feb83051345fd210fca3214b77967b1e8022100b258e9d5f347005c679f93f7d4b43b4a03f9044cc0465058087ee7a3e000a860 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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