stg-dc-lb-139ii-gtm-b.net.nih.gov
- US Department of Health and Human Services -
Issued by HydrantID Server CA O1
About this certificate
This digital certificate with serial number 40:01:84:d5:10:4e:ee:c7:ec:62:b3:0e:e4:47:00:7e was issued on by IdenTrust.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
US Department of Health and Human Services
Organization:
US Department of Health and Human Services
State / Province:
District of Columbia
Locality: Washington
Country: US
Locality: Washington
Country: US
IdenTrust
Organization:
IdenTrust
Organization unit: HydrantID Trusted Certificate Service
Organization unit: HydrantID Trusted Certificate Service
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 40:01:84:d5:10:4e:ee:c7:ec:62:b3:0e:e4:47:00:7eSerial Number (int): 85078478185806632234501880252497068158
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 11:c6:63:3b:58:0e:df:ef:76:a4:1b:7c:1f:98:64:ad:bb:a1:2a:15
AuthorityKeyId: 89:b8:9b:b6:9e:ed:fb:b0:c6:bd:0d:ec:67:4e:3c:a3:92:9d:2d:f9
Fingerprint (sha1): d6:f7:a1:67:e6:64:07:cf:6a:ee:b9:b3:30:2f:8b:82:0f:28:c6:8e
Fingerprint (sha256): 5c:04:50:63:e9:2e:bb:a1:21:48:23:f2:da:ae:8a:bb:86:71:f3:ca:97:b4:6f:5b:ac:ab:b1:82:17:a1:c9:85
Issuing Certificate URL: http://validation.identrust.com/certs/hydrantidcaO1.p7c
Revocation information
OCSP Server: http://commercial.ocsp.identrust.comCRL Distribution Point: http://validation.identrust.com/crl/hydrantidcao1.crl
Check the revocation status for certificate stg-dc-lb-139ii-gtm-b.net.nih.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stg-dc-lb-139ii-gtm-b.net.nih.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stg-dc-lb-139ii-gtm-b.net.nih.gov
Other certificates including the domain name nih.gov
(limited to 100 certificates)
*.nihms.nih.gov
*.nei.nih.gov
*.niaid.nih.gov
*.nlm.nih.gov
3dprintqa.niaid.nih.gov
www.niaaa.nih.gov
drupal.nihlibrary.com
internet.csr.nih.gov
nei1.nih.gov
*.niams.nih.gov
biobeat.nigms.nih.gov
pots.nci.nih.gov
*.nlm.nih.gov
meetings.nigms.nih.gov
*.nlm.nih.gov
neidatacommons.nei.nih.gov
catalog.nei.nih.gov
devstageerawebserviceaccess.nichd.nih.gov
assettrack.cc.nih.gov
sisterstudy.niehs.nih.gov
*.nci.nih.gov
3dprintqa.niaid.nih.gov
sbrblood.nhgri.nih.gov
*.apps.nciconnectstg.nci.nih.gov
excessproductcatalog.od.nih.gov
madb.nci.nih.gov
biomedicalresearchworkforce.nih.gov
intranet.cit.nih.gov
ai-cs105otdqa1.niaid.nih.gov
*.nci.nih.gov
obssr.od.nih.gov
nihguide.od.nih.gov
2019-BTH-TIC-VPN-EG-03-A.NET.NIH.GOV
ucceventsupport.cit.nih.gov
APF-Access.niaid.nih.gov
etsplab.ninds.nih.gov
www.safetytraining.nih.gov
recovery.nih.gov
*.niddk.nih.gov
sni.cloudflaressl.com
authproxy.ha.nih.gov
pdbp-dd-uat.cit.nih.gov
ai-appauthfoochiprd1.niaid.nih.gov
ncias-p595.nci.nih.gov
ccpharmrees.cc.nih.gov
parkinsontrial.ninds.nih.gov
jats.nlm.nih.gov
otds16-dev.niaid.nih.gov
www.smokefree.gov
intranet.nccih.nih.gov
intranet.nccam.nih.gov
fitbir-stage.cit.nih.gov
www.cc.nih.gov
aghealth.nci.nih.gov
ncif5-d013-v.nci.nih.gov
activenav-dev.niaid.nih.gov
apps.cc.nih.gov
sptest.nibib.nih.gov
healthyeating.nhlbi.nih.gov
medialibrary.nei.nih.gov
*.nlm.nih.gov
salivaryproteome.nidcr.nih.gov
ocrtme.cc.nih.gov
itbweb.nhgri.nih.gov
dcb.cit.nih.gov
devwebeditor.nichd.nih.gov
toolkit.ncats.nih.gov
bricsguid.nia.nih.gov
nisc.nih.gov
pedmatch.nci.nih.gov
tls.automattic.com
eracert137.era.nih.gov
*.nlm.nih.gov
erss-vip.niaid.nih.gov
sa66gl.wpc.edgecastcdn.net
isupplierext.qa.nih.gov
oacu.od.nih.gov
depot.tbportals.niaid.nih.gov
ecollab.niaid.nih.gov
ccapps.cc.nih.gov
resresources.nci.nih.gov
rnai.nih.gov
www.nigms.nih.gov
breezecore5.cit.nih.gov
NIAID-EdgePool-Rock.niaid.nih.gov
datadiscovery.nlm.nih.gov
biolincc.nhlbi.nih.gov
analytics.nih.gov
ctepcorebeta.nci.nih.gov
cc0mlinuxtools.cc.nih.gov
cadsrpasswordchange-stage.nci.nih.gov
nars.cc.nih.gov
femto.niddk.nih.gov
strap.trials-stage.nci.nih.gov
cadsrsentinel.nci.nih.gov
datadiscovery.nlm.nih.gov
gulfstudy.nih.gov
ncrmserawsdev.niaid.nih.gov
cde.awsprod.nlm.nih.gov
cimac-uat.nci.nih.gov
*.nei.nih.gov
*.niaid.nih.gov
*.nlm.nih.gov
3dprintqa.niaid.nih.gov
www.niaaa.nih.gov
drupal.nihlibrary.com
internet.csr.nih.gov
nei1.nih.gov
*.niams.nih.gov
biobeat.nigms.nih.gov
pots.nci.nih.gov
*.nlm.nih.gov
meetings.nigms.nih.gov
*.nlm.nih.gov
neidatacommons.nei.nih.gov
catalog.nei.nih.gov
devstageerawebserviceaccess.nichd.nih.gov
assettrack.cc.nih.gov
sisterstudy.niehs.nih.gov
*.nci.nih.gov
3dprintqa.niaid.nih.gov
sbrblood.nhgri.nih.gov
*.apps.nciconnectstg.nci.nih.gov
excessproductcatalog.od.nih.gov
madb.nci.nih.gov
biomedicalresearchworkforce.nih.gov
intranet.cit.nih.gov
ai-cs105otdqa1.niaid.nih.gov
*.nci.nih.gov
obssr.od.nih.gov
nihguide.od.nih.gov
2019-BTH-TIC-VPN-EG-03-A.NET.NIH.GOV
ucceventsupport.cit.nih.gov
APF-Access.niaid.nih.gov
etsplab.ninds.nih.gov
www.safetytraining.nih.gov
recovery.nih.gov
*.niddk.nih.gov
sni.cloudflaressl.com
authproxy.ha.nih.gov
pdbp-dd-uat.cit.nih.gov
ai-appauthfoochiprd1.niaid.nih.gov
ncias-p595.nci.nih.gov
ccpharmrees.cc.nih.gov
parkinsontrial.ninds.nih.gov
jats.nlm.nih.gov
otds16-dev.niaid.nih.gov
www.smokefree.gov
intranet.nccih.nih.gov
intranet.nccam.nih.gov
fitbir-stage.cit.nih.gov
www.cc.nih.gov
aghealth.nci.nih.gov
ncif5-d013-v.nci.nih.gov
activenav-dev.niaid.nih.gov
apps.cc.nih.gov
sptest.nibib.nih.gov
healthyeating.nhlbi.nih.gov
medialibrary.nei.nih.gov
*.nlm.nih.gov
salivaryproteome.nidcr.nih.gov
ocrtme.cc.nih.gov
itbweb.nhgri.nih.gov
dcb.cit.nih.gov
devwebeditor.nichd.nih.gov
toolkit.ncats.nih.gov
bricsguid.nia.nih.gov
nisc.nih.gov
pedmatch.nci.nih.gov
tls.automattic.com
eracert137.era.nih.gov
*.nlm.nih.gov
erss-vip.niaid.nih.gov
sa66gl.wpc.edgecastcdn.net
isupplierext.qa.nih.gov
oacu.od.nih.gov
depot.tbportals.niaid.nih.gov
ecollab.niaid.nih.gov
ccapps.cc.nih.gov
resresources.nci.nih.gov
rnai.nih.gov
www.nigms.nih.gov
breezecore5.cit.nih.gov
NIAID-EdgePool-Rock.niaid.nih.gov
datadiscovery.nlm.nih.gov
biolincc.nhlbi.nih.gov
analytics.nih.gov
ctepcorebeta.nci.nih.gov
cc0mlinuxtools.cc.nih.gov
cadsrpasswordchange-stage.nci.nih.gov
nars.cc.nih.gov
femto.niddk.nih.gov
strap.trials-stage.nci.nih.gov
cadsrsentinel.nci.nih.gov
datadiscovery.nlm.nih.gov
gulfstudy.nih.gov
ncrmserawsdev.niaid.nih.gov
cde.awsprod.nlm.nih.gov
cimac-uat.nci.nih.gov
Certificate
The complete raw certificate details for stg-dc-lb-139ii-gtm-b.net.nih.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgIQQAGE1RBO7sfsYrMO5EcAfjANBgkqhkiG9w0BAQsFADBy MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSWRlblRydXN0MS4wLAYDVQQLEyVIeWRy YW50SUQgVHJ1c3RlZCBDZXJ0aWZpY2F0ZSBTZXJ2aWNlMR8wHQYDVQQDExZIeWRy YW50SUQgU2VydmVyIENBIE8xMB4XDTIyMTIwMjIyNTg0NloXDTI0MDEwMTIyNTc0 NlowgaIxKjAoBgNVBAMTIXN0Zy1kYy1sYi0xMzlpaS1ndG0tYi5uZXQubmloLmdv djEzMDEGA1UEChMqVVMgRGVwYXJ0bWVudCBvZiBIZWFsdGggYW5kIEh1bWFuIFNl cnZpY2VzMRMwEQYDVQQHEwpXYXNoaW5ndG9uMR0wGwYDVQQIExREaXN0cmljdCBv ZiBDb2x1bWJpYTELMAkGA1UEBhMCVVMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDAWeLKbSgYwBML5pOAV+aVJl2PhQMnsZyo3eYZAW4y+S2DDRjWTBWn NcLReETwz7oHSWtiqi7T7euEg/QVgumSpIUG01QDT0t4fBoyPe7ufvP3nHESCB0t IAsmig5J8+2npxyJcpGEyP7MfWT6kAo3s9vXKjGN5QqSqQ2O5eNJcICfAnqHYS8n SwmNKPRZ55dvQxZ11a9cHX4j9hQjS39FOWJw3pUrk15Dl79fS9Zxy5n+3MZB23ek OLoy44WwMe36iIMre4onseFcZzYztrhza8dm4JV43XhbgU59zUbNkhI9BpZMKc4R xn+ONXL+R/e+sNLSHB9LNokvhPvmaTNZAgMBAAGjggKwMIICrDAOBgNVHQ8BAf8E BAMCBaAwgYUGCCsGAQUFBwEBBHkwdzAwBggrBgEFBQcwAYYkaHR0cDovL2NvbW1l cmNpYWwub2NzcC5pZGVudHJ1c3QuY29tMEMGCCsGAQUFBzAChjdodHRwOi8vdmFs aWRhdGlvbi5pZGVudHJ1c3QuY29tL2NlcnRzL2h5ZHJhbnRpZGNhTzEucDdjMB8G A1UdIwQYMBaAFIm4m7ae7fuwxr0N7GdOPKOSnS35MIIBJgYDVR0gBIIBHTCCARkw DAYKYIZIAYb5LwAGAzCCAQcGBmeBDAECAjCB/DBABggrBgEFBQcCARY0aHR0cHM6 Ly9zZWN1cmUuaWRlbnRydXN0LmNvbS9jZXJ0aWZpY2F0ZXMvcG9saWN5L3RzLzCB twYIKwYBBQUHAgIwgaoMgadUaGlzIFRydXN0SUQgU2VydmVyIENlcnRpZmljYXRl IGhhcyBiZWVuIGlzc3VlZCBpbiBhY2NvcmRhbmNlIHdpdGggSWRlblRydXN0J3Mg VHJ1c3RJRCBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9zZWN1 cmUuaWRlbnRydXN0LmNvbS9jZXJ0aWZpY2F0ZXMvcG9saWN5L3RzLzBGBgNVHR8E PzA9MDugOaA3hjVodHRwOi8vdmFsaWRhdGlvbi5pZGVudHJ1c3QuY29tL2NybC9o eWRyYW50aWRjYW8xLmNybDAsBgNVHREEJTAjgiFzdGctZGMtbGItMTM5aWktZ3Rt LWIubmV0Lm5paC5nb3YwHQYDVR0OBBYEFBHGYztYDt/vdqQbfB+YZK27oSoVMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjATBgorBgEEAdZ5AgQDAQH/BAIF ADANBgkqhkiG9w0BAQsFAAOCAQEAkHvw0kKHAQ84LoAQKXI2rw0OTBFsICm1sIHi sL9TmHpNMRIK9Vijv7zcurH8jj/92A5C00RU4ttjH/Kut5oK3u2Qq1nzImq8O6lM XjvXhCAu8UbpfIO720eNCTNTDtJFrZ4VmmeOJ1HOjwDgYgck0Uu+TxsPouBa0dl7 Q3cECtR7ppOiWjOQfVvCxEdEwZlXyGA86atBYX+mMMMqSZjpMmgFNQTvzxYy4tHT P88YDOfM0G8ExgW34UwXXVwlRWSr90X2LCdKXnrezt+7OffSokjnLmHa8Df7xAxo G5B58WA965Ses8HED5VPbtOh0VLcnk/T2gHosKiYRueAWedPwg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFniym0oGMATC+aTgFfm lSZdj4UDJ7GcqN3mGQFuMvktgw0Y1kwVpzXC0XhE8M+6B0lrYqou0+3rhIP0FYLp kqSFBtNUA09LeHwaMj3u7n7z95xxEggdLSALJooOSfPtp6cciXKRhMj+zH1k+pAK N7Pb1yoxjeUKkqkNjuXjSXCAnwJ6h2EvJ0sJjSj0WeeXb0MWddWvXB1+I/YUI0t/ RTlicN6VK5NeQ5e/X0vWccuZ/tzGQdt3pDi6MuOFsDHt+oiDK3uKJ7HhXGc2M7a4 c2vHZuCVeN14W4FOfc1GzZISPQaWTCnOEcZ/jjVy/kf3vrDS0hwfSzaJL4T75mkz WQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 85078478185806632234501880252497068158 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IdenTrust' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HydrantID Trusted Certificate Service' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HydrantID Server CA O1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-02 22:58:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-01 22:57:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stg-dc-lb-139ii-gtm-b.net.nih.gov' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US Department of Health and Human Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24282078943397863994951223098610970246477048017979717916810678836578392075740311167798954371956331331207122408413598886714797697000988381800191622474185020325587357294469989389310373503100467734144273903902119856279130445952450190040036183292211777757955586204325215022648354696678730455622338106443127593984639041217542945638266759566621868291310227309983602584596365269421969123811174909734848023099885164071217234633376112435783964156841377531443320132057015488182275934064125292418040002577106755432137520412149800232581783636655054028769384420368452139013821585933126582580899093631646967343475894206438732018521 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://commercial.ocsp.identrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/certs/hydrantidcaO1.p7c' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 89b89bb69eedfbb0c6bd0dec674e3ca3929d2df9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (285 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113839.0.6.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.identrust.com/certificates/policy/ts/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This TrustID Server Certificate has been issued in accordance with IdenTrust's TrustID Certificate Policy found at https://secure.identrust.com/certificates/policy/ts/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (63 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/crl/hydrantidcao1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (37 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg-dc-lb-139ii-gtm-b.net.nih.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 11c6633b580edfef76a41b7c1f9864adbba12a15 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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