gistest.penndot.gov
- Commonwealth of Pennsylvania -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 3d:f5:b0:58:66:d0:3d:a8:dc:fd:1b:ac:9f:d0:17:47 was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Commonwealth of Pennsylvania
Organization:
Commonwealth of Pennsylvania
State / Province:
Pennsylvania
Locality: Harrisburg
Country: US
Locality: Harrisburg
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 3d:f5:b0:58:66:d0:3d:a8:dc:fd:1b:ac:9f:d0:17:47Serial Number (int): 82358597181208663716967938821364651847
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 4e:8c:f3:1c:f8:73:ee:9f:87:76:36:bc:11:26:93:cd:f5:3a:31:d6
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 8f:7e:da:86:a7:45:ee:fd:e8:9b:24:df:5b:c9:61:31:7e:62:02:c5
Fingerprint (sha256): 58:50:24:46:4a:15:4e:66:f3:e3:5f:e8:6f:02:5a:4a:c4:03:9a:1d:76:58:f7:e0:df:3a:3c:e0:41:2c:c3:ec
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate gistest.penndot.gov
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gistest.penndot.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gistest.penndot.gov
www.gistest.penndot.gov
www.gistest.penndot.gov
Other certificates including the domain name penndot.gov
(limited to 100 certificates)
www.crashinfo.penndot.gov
CISREPORTS.PENNDOT.GOV
ESECagSANCertProd.dot.pa.gov
ESECagSANCertSyst.dot.pa.gov
gis.penndot.gov
www.ecssyst.penndot.gov
www.ecmssyst.penndot.gov
SMProxySANCertProd.dot.pa.gov
ESECSanCertProd128.dot.pa.gov
www.dot16.pa.gov
www.dottrn34.state.pa.us
qars.penndot.gov
ESECagSANCertSyst.dot.pa.gov
pathsyst.penndot.pa.gov
qars.penndot.gov
www.idealinksyst.pa.gov
www.mpmstest.penndot.gov
path.penndot.gov
dev.aem.penndot.gov
path.penndot.gov
gis.penndot.gov
ESECagSANCertSyst.dot.pa.gov
www.sbe.penndot.pa.gov
ESECagSANCertDev.dot.pa.gov
aprassyst.penndot.gov
www.dot16.pa.gov
www.dot16.pa.gov
ESECagSANCertProd.dot.pa.gov
cisreports.penndot.gov
apras.penndot.gov
analytics.penndot.gov
ESECagSANCertProd.dot.pa.gov
ESECagSANCertProd.dot.pa.gov
www.dottrn34.state.pa.us
ESECagSANCertSyst.dot.pa.gov
SMProxySANCertESECProd.dot.pa.gov
SMProxySANCertUAT.dot.pa.gov
www.ecms.penndot.gov
analytics.penndot.gov
SMProxySANCertUAT.dot.pa.gov
www.ecssyst.penndot.gov
idservicesadv.penndot.gov
a93c8e3041.nxcli.io
analytics-uat.penndot.gov
cisweb.penndot.gov
ESECagSANCertProd.dot.pa.gov
004uatcisweb.penndot.gov
www.eGov.penndot.pa.gov
ESECagSANCertSyst.dot.pa.gov
www.idealinksyst.pa.gov
sp.pwp.pa.gov
www.ecms.penndot.gov
idservicesadvsyst.penndot.gov
analytics.penndot.gov
ESECagSANCertProd.dot.pa.gov
www.dot16.pa.gov
ESECagSANCertProd.dot.pa.gov
www.bmswebservicessyst.penndot.gov
www.bmssyst.penndot.pa.gov
ppccsyst.penndot.gov
workzonecameras.penndot.gov
www.bmssyst.penndot.pa.gov
analytics-dev.penndot.pa.gov
www.dotdev34.state.pa.us
www.penndot.gov
sp.pwp.pa.gov
ESECagSANCertSyst.dot.pa.gov
ESECagSANCertProd.dot.pa.gov
path.penndot.pa.gov
ESECagSANCertProd.dot.pa.gov
gistest.penndot.gov
004uatbiwebmc.penndot.gov
www.ecmssyst.penndot.gov
www.eGovsyst.penndot.pa.gov
ppccsyst.penndot.gov
www.eGovsyst.penndot.pa.gov
004uatciswebmc.penndot.gov
www.idealinksyst.pa.gov
mobilenprd.penndot.gov
gis.penndot.gov
www.dot4E.penndot.gov
ESECagSANCertSyst.dot.pa.gov
pathsyst.penndot.gov
ESECagSANCertProd.dot.pa.gov
sqldldbcluster.penndot.gov
ESECagSANCertProd.dot.pa.gov
www.sbe.penndot.pa.gov
ESECagSANCertProd.dot.pa.gov
gistest.penndot.gov
www.idealinksyst.pa.gov
www.dot16.pa.gov
004UATCISWEBMC.penndot.gov
www.idealinksyst.pa.gov
www.mpms.penndot.gov
004UATDLDB.penndot.gov
ESECagSANCertDev.dot.pa.gov
004UATBIWEB.penndot.gov
ESECagSANCertSyst.dot.pa.gov
004BIWEBMC.PENNDOT.GOV
www.systcrashinfo.penndot.gov
CISREPORTS.PENNDOT.GOV
ESECagSANCertProd.dot.pa.gov
ESECagSANCertSyst.dot.pa.gov
gis.penndot.gov
www.ecssyst.penndot.gov
www.ecmssyst.penndot.gov
SMProxySANCertProd.dot.pa.gov
ESECSanCertProd128.dot.pa.gov
www.dot16.pa.gov
www.dottrn34.state.pa.us
qars.penndot.gov
ESECagSANCertSyst.dot.pa.gov
pathsyst.penndot.pa.gov
qars.penndot.gov
www.idealinksyst.pa.gov
www.mpmstest.penndot.gov
path.penndot.gov
dev.aem.penndot.gov
path.penndot.gov
gis.penndot.gov
ESECagSANCertSyst.dot.pa.gov
www.sbe.penndot.pa.gov
ESECagSANCertDev.dot.pa.gov
aprassyst.penndot.gov
www.dot16.pa.gov
www.dot16.pa.gov
ESECagSANCertProd.dot.pa.gov
cisreports.penndot.gov
apras.penndot.gov
analytics.penndot.gov
ESECagSANCertProd.dot.pa.gov
ESECagSANCertProd.dot.pa.gov
www.dottrn34.state.pa.us
ESECagSANCertSyst.dot.pa.gov
SMProxySANCertESECProd.dot.pa.gov
SMProxySANCertUAT.dot.pa.gov
www.ecms.penndot.gov
analytics.penndot.gov
SMProxySANCertUAT.dot.pa.gov
www.ecssyst.penndot.gov
idservicesadv.penndot.gov
a93c8e3041.nxcli.io
analytics-uat.penndot.gov
cisweb.penndot.gov
ESECagSANCertProd.dot.pa.gov
004uatcisweb.penndot.gov
www.eGov.penndot.pa.gov
ESECagSANCertSyst.dot.pa.gov
www.idealinksyst.pa.gov
sp.pwp.pa.gov
www.ecms.penndot.gov
idservicesadvsyst.penndot.gov
analytics.penndot.gov
ESECagSANCertProd.dot.pa.gov
www.dot16.pa.gov
ESECagSANCertProd.dot.pa.gov
www.bmswebservicessyst.penndot.gov
www.bmssyst.penndot.pa.gov
ppccsyst.penndot.gov
workzonecameras.penndot.gov
www.bmssyst.penndot.pa.gov
analytics-dev.penndot.pa.gov
www.dotdev34.state.pa.us
www.penndot.gov
sp.pwp.pa.gov
ESECagSANCertSyst.dot.pa.gov
ESECagSANCertProd.dot.pa.gov
path.penndot.pa.gov
ESECagSANCertProd.dot.pa.gov
gistest.penndot.gov
004uatbiwebmc.penndot.gov
www.ecmssyst.penndot.gov
www.eGovsyst.penndot.pa.gov
ppccsyst.penndot.gov
www.eGovsyst.penndot.pa.gov
004uatciswebmc.penndot.gov
www.idealinksyst.pa.gov
mobilenprd.penndot.gov
gis.penndot.gov
www.dot4E.penndot.gov
ESECagSANCertSyst.dot.pa.gov
pathsyst.penndot.gov
ESECagSANCertProd.dot.pa.gov
sqldldbcluster.penndot.gov
ESECagSANCertProd.dot.pa.gov
www.sbe.penndot.pa.gov
ESECagSANCertProd.dot.pa.gov
gistest.penndot.gov
www.idealinksyst.pa.gov
www.dot16.pa.gov
004UATCISWEBMC.penndot.gov
www.idealinksyst.pa.gov
www.mpms.penndot.gov
004UATDLDB.penndot.gov
ESECagSANCertDev.dot.pa.gov
004UATBIWEB.penndot.gov
ESECagSANCertSyst.dot.pa.gov
004BIWEBMC.PENNDOT.GOV
www.systcrashinfo.penndot.gov
Certificate
The complete raw certificate details for gistest.penndot.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG7jCCBdagAwIBAgIQPfWwWGbQPajc/Rusn9AXRzANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y MjA5MzAxMzIxMjlaFw0yMzEwMjcxMzIxMjlaMH4xCzAJBgNVBAYTAlVTMRUwEwYD VQQIEwxQZW5uc3lsdmFuaWExEzARBgNVBAcTCkhhcnJpc2J1cmcxJTAjBgNVBAoT HENvbW1vbndlYWx0aCBvZiBQZW5uc3lsdmFuaWExHDAaBgNVBAMTE2dpc3Rlc3Qu cGVubmRvdC5nb3YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGI41E 6GiLnmAS0kToXLcqkeNH2VVkuvN54GI8ADPBd0DSZnS7QVW5+bdKNJPw2m+HWQRQ R5PH4hu4lnp5f78tBYXA35UNBUYa2E7bEzI/02IQkiI5yuWy2QNci7rXEs+LS5lM 5f5hMNzWO16nb2dsJfEm4VpxxHYUI7ZZ4ZvH+tc9CC7gxbRH7g22nS8rVnGmMGlq IAKi7+Ele3R/XPJEo6hb+Qbuv3zlyS5GQ2A80Z/nxjfp97c0cD9xMBg+TncC9YtO TPI8naSn55R+ALGoTvvu6StECfF51jbkmhWp590//Uu2OwejJ+YqbFrhaof0xF1Y rs/OoEyqvFfIbJDbAgMBAAGjggMpMIIDJTAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBROjPMc+HPun4d2NrwRJpPN9Tox1jAfBgNVHSMEGDAWgBSConB03bxTP8971PfN f6dgxgpMvzBoBggrBgEFBQcBAQRcMFowIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3Nw LmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChidodHRwOi8vYWlhLmVudHJ1c3QubmV0 L2wxay1jaGFpbjI1Ni5jZXIwMwYDVR0fBCwwKjAooCagJIYiaHR0cDovL2NybC5l bnRydXN0Lm5ldC9sZXZlbDFrLmNybDA3BgNVHREEMDAughNnaXN0ZXN0LnBlbm5k b3QuZ292ghd3d3cuZ2lzdGVzdC5wZW5uZG90LmdvdjAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEwGA1UdIARFMEMwNwYKYIZI AYb6bAoBBTApMCcGCCsGAQUFBwIBFhtodHRwczovL3d3dy5lbnRydXN0Lm5ldC9y cGEwCAYGZ4EMAQICMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgBVgdTCFpA2 AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAYOOjyeQAAAEAwBHMEUCIA1NZg29 qY4tZipyVmAqkeBzeZqWQLwr0/NhipjyYl9MAiEAkM7t9xdcZpx3wbcqOHjVuhJI 2JY56Ra5wqVcpYtpdw0AdgCzc3cH4YRQ+GOG1gWp3BEJSnktsWcMC4fc8AMOeTal mgAAAYOOjyeOAAAEAwBHMEUCID6cPNVQEkirYKHtGrF822K/yCeaSXappBHpW3Ji +TdgAiEA39p95hLNjeG0+9lKozxjuIiP59t1pn9ntXY1z7LRPj8AdgCt9776fP8Q yIudPZwePhhqtGcpXc+xDCTKhYY069yCigAAAYOOjyeNAAAEAwBHMEUCIGjuqe9M SThhSo9crzGeB8bptWnEEZKW0YmXv5MRMf/MAiEAxG9PM6TOrSHh0rgZ2duskw40 NEFw35dTWUTP4/x3hg4wDQYJKoZIhvcNAQELBQADggEBAD9r6xvOHJh3Nh4PF2sC wtUYjkVSY1UsPwDDnIB9CmV/XljLNwel06S7qp3YgzqkSFCQyXP1JwMyF6p1rpf+ BsrR16TbVh2tmZgNcacSGBXuW4jt8/FXmIKJYv6y8XTTWFNyeXjgEl8+y739vtmM UJZIJedYbE6afACOEAS50SXZLCTr/C/5P5+eUqdVM8pWmp6t1hZkQ5V1wEUvke6s rIcR8XV+r0M6hAiKSF217usZ36Y5a+p2ZDjuOuJlEghie3UuayPBt6wMtqedNVYL SeQvt1Zu12KprMZEbD9lASbxCF29Q0cjjdPYaQWTCuaYUTaeshv8K25o143TwSfW AGI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxiONROhoi55gEtJE6Fy3 KpHjR9lVZLrzeeBiPAAzwXdA0mZ0u0FVufm3SjST8Npvh1kEUEeTx+IbuJZ6eX+/ LQWFwN+VDQVGGthO2xMyP9NiEJIiOcrlstkDXIu61xLPi0uZTOX+YTDc1jtep29n bCXxJuFaccR2FCO2WeGbx/rXPQgu4MW0R+4Ntp0vK1ZxpjBpaiACou/hJXt0f1zy RKOoW/kG7r985ckuRkNgPNGf58Y36fe3NHA/cTAYPk53AvWLTkzyPJ2kp+eUfgCx qE777ukrRAnxedY25JoVqefdP/1LtjsHoyfmKmxa4WqH9MRdWK7PzqBMqrxXyGyQ 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 82358597181208663716967938821364651847 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-30 13:21:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-27 13:21:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Harrisburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Commonwealth of Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gistest.penndot.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25012715645383199541235800066688421293337770393400450241008053835575398382865941989663780909757640341091745800468374395861209812387113440525407580431708410380477017209299916888218833708474500824162400945415571485953081496622693492591010727889128452585767462040149068127514993011545913098041017275933926948437501991275129159949063417155350330241242323760278718108422209785470466890468852730587789237894731630200657948296187903245944524030371310137978158086715893364212702172445572948547436801181299965257706154946129757111849347207727906676128327414865655948844174744133285439319684160934232173354028864675898823839963 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4e8cf31cf873ee9f877636bc112693cdf53a31d6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gistest.penndot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gistest.penndot.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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