www.gov.uk
- Government Digital Service -
Issued by GlobalSign RSA OV SSL CA 2018
About this certificate
This digital certificate with serial number 0e:ac:5d:99:fc:6c:5c:ca:47:93:77:f3 was issued on by GlobalSign nv-sa.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- 1 DNS name(s) are bare public suffixes: gov.uk The domain SHOULD NOT have a bare public suffix (awslabs certlint)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Government Digital Service
Organization:
Government Digital Service
State / Province:
Greater London
Locality: London
Country: GB
Locality: London
Country: GB
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate will expire on
Certificate Details
Serial Number (hex): 0e:ac:5d:99:fc:6c:5c:ca:47:93:77:f3Serial Number (int): 4541167399096312353659254771
Serial Number lenght: 92 bits, 12 octets
SubjectKeyId: ae:10:4a:51:c8:ad:fa:a8:8d:f0:28:ce:1f:fd:ac:20:2f:b2:75:64
AuthorityKeyId: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb
Fingerprint (sha1): a9:ad:d4:38:b0:d0:49:75:e9:36:81:cd:97:cf:8e:ec:e5:c5:d3:35
Fingerprint (sha256): 63:cd:57:d2:ad:f1:0b:9f:2b:da:5b:b2:a3:2b:39:a0:be:e6:c7:3f:65:37:09:da:91:4a:ed:75:82:2a:7e:7f
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018CRL Distribution Point: http://crl.globalsign.com/gsrsaovsslca2018.crl
Check the revocation status for certificate www.gov.uk
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.gov.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.gov.uk
*.businesslink.gov.uk
*.direct.gov.uk
*.publishing.service.gov.uk
*.cabinet-office.gov.uk
assets.digital.cabinet-office.gov.uk
service.gov.uk
data.gov.uk
dfid.gov.uk
cabinet-office.gov.uk
api.gov.uk
www.data.gov.uk
gov.uk
*.businesslink.gov.uk
*.direct.gov.uk
*.publishing.service.gov.uk
*.cabinet-office.gov.uk
assets.digital.cabinet-office.gov.uk
service.gov.uk
data.gov.uk
dfid.gov.uk
cabinet-office.gov.uk
api.gov.uk
www.data.gov.uk
gov.uk
Other certificates including the domain name www.gov.uk
(limited to 100 certificates)
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
www.gov.uk
gov.uk
www.gov.uk
Certificate
The complete raw certificate details for www.gov.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHezCCBmOgAwIBAgIMDqxdmfxsXMpHk3fzMA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0yMzExMTQxMDMxMTJaFw0y NDEyMTUxMDMxMTFaMHExCzAJBgNVBAYTAkdCMRcwFQYDVQQIEw5HcmVhdGVyIExv bmRvbjEPMA0GA1UEBxMGTG9uZG9uMSMwIQYDVQQKExpHb3Zlcm5tZW50IERpZ2l0 YWwgU2VydmljZTETMBEGA1UEAxMKd3d3Lmdvdi51azCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAKii2iR6rMRSVERB2gsUwU2DlZuJvtPwOmfFewPJQk/+ KmTYaQBVdbX02HEZ1yfTirY0W47JvF4nxOdVnNB0/uJwJpEm2uqAliiVhqqC35UC DfEp4yLCSa9Od+TqYS1txdXnoe+TKHQI/aHy2/Bf+BMPMUSq7QI88WlC4MGFO68x NufoBZ8fNyVSjYTQ0BArcaoAFfYnTuddyDEHirGJYhx0oHjbMz7RJUKKtXU0Yjhn fnk16Mvf3Ksl5vYbbx0T4RLyTS9QFBL+nJgUEcTfN1iCgnFVuG2uoFzBAi6rOlR/ vv8G2ymvL+h/FutZlO3LA29QmwzwHL2zLsyfOlk7cbECAwEAAaOCBDIwggQuMA4G A1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMIGOBggrBgEFBQcBAQSBgTB/MEQG CCsGAQUFBzAChjhodHRwOi8vc2VjdXJlLmdsb2JhbHNpZ24uY29tL2NhY2VydC9n c3JzYW92c3NsY2EyMDE4LmNydDA3BggrBgEFBQcwAYYraHR0cDovL29jc3AuZ2xv YmFsc2lnbi5jb20vZ3Nyc2FvdnNzbGNhMjAxODBWBgNVHSAETzBNMEEGCSsGAQQB oDIBFDA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNvbS9y ZXBvc2l0b3J5LzAIBgZngQwBAgIwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2Ny bC5nbG9iYWxzaWduLmNvbS9nc3JzYW92c3NsY2EyMDE4LmNybDCCAQEGA1UdEQSB +TCB9oIKd3d3Lmdvdi51a4IVKi5idXNpbmVzc2xpbmsuZ292LnVrgg8qLmRpcmVj dC5nb3YudWuCGyoucHVibGlzaGluZy5zZXJ2aWNlLmdvdi51a4IXKi5jYWJpbmV0 LW9mZmljZS5nb3YudWuCJGFzc2V0cy5kaWdpdGFsLmNhYmluZXQtb2ZmaWNlLmdv di51a4IOc2VydmljZS5nb3YudWuCC2RhdGEuZ292LnVrggtkZmlkLmdvdi51a4IV Y2FiaW5ldC1vZmZpY2UuZ292LnVrggphcGkuZ292LnVrgg93d3cuZGF0YS5nb3Yu dWuCBmdvdi51azAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0j BBgwFoAU+O9/8s14Z6jeb48kjYjxhwMCs+swHQYDVR0OBBYEFK4QSlHIrfqojfAo zh/9rCAvsnVkMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgBIsONr2qZHNA/l agL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYvNYpwxAAAEAwBHMEUCIDEUYZ2PRXH3 jVS+JXcZvMW+zeiAkVPUO+c6ZeiwcUJoAiEA5lPjSSlH6QG10K/e4j0BDzhPGknA tj3P6X0AYC8w6KgAdwDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAA AYvNYp8gAAAEAwBIMEYCIQC3CUwygtiAl+Sd/OOI9Vk06XdwZC/LOmwCrQTS0/mA 9AIhAKIB1wsqXFWW7ZtenZq7nRvcxlP+y/jglGHBYaUp7R1WAHUAdv+IPwq2+5VR wmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGLzWKiAQAABAMARjBEAiA7kTi4O+n4 ISs5gFqV/Gsds9w+zT6NsGvDpFc8UFDrUQIgAPm3eaeWZw+fd1NXI5Ns50/cvQrD 5EIogrKVAJFmHSEwDQYJKoZIhvcNAQELBQADggEBAJNKO4ymd1HjzFKaoXtii5CS BkiCIk8UMKKCRBXlj7uGaIhYS10RBU5y/tj9vwrqwcIJfhCAm/bXzYSivkXdnW9d m9l/RIIigkk1vluF+lZYEgS1Es6y3XZk5CPDpYzceLP+sJ9V7XDsGLRjkdsdjEZ8 sXp1Nd3m5czrTCUWgB9vxDo4ke68TbwqM1eObH8YyBvecpWYDEYx7kubujk7jPVV iN8yYbMvP3+5hIGUQHMe2JMdjAgmb9g841Ct5wLoFmiV3tsshU4B6vFcsXI655qA s/WeRUA+K595vjuCoGKe7Od3Ur+N7UR3oK4COkp6NmV1QzzXuJFHAAz7VxrNZcI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKLaJHqsxFJUREHaCxTB TYOVm4m+0/A6Z8V7A8lCT/4qZNhpAFV1tfTYcRnXJ9OKtjRbjsm8XifE51Wc0HT+ 4nAmkSba6oCWKJWGqoLflQIN8SnjIsJJr0535OphLW3F1eeh75ModAj9ofLb8F/4 Ew8xRKrtAjzxaULgwYU7rzE25+gFnx83JVKNhNDQECtxqgAV9idO513IMQeKsYli HHSgeNszPtElQoq1dTRiOGd+eTXoy9/cqyXm9htvHRPhEvJNL1AUEv6cmBQRxN83 WIKCcVW4ba6gXMECLqs6VH++/wbbKa8v6H8W61mU7csDb1CbDPAcvbMuzJ86WTtx sQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4541167399096312353659254771 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-14 10:31:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-15 10:31:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Digital Service' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.gov.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21288340607262300330577062278970460071554155603674163199959900792717057473657893081543841939063450471154888850686845610331121265699685071410097471719947070778219362925955107391680564159160036706416748912680564258846946042834281586948456081281075656394072316833344126499720765490341396019677046697207113442751244480463142589742783349553968910540839917742590534960750984191170028437997880681558182991332869349158709496029812052875497528122690939579484928050336595208853569076290529149869111472699450391278356348309305204456747621199268288878243447694781709168205987088288924635034240906099897023495892991471315316339121 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsrsaovsslca2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (249 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.businesslink.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.direct.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.publishing.service.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cabinet-office.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.digital.cabinet-office.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'service.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dfid.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cabinet-office.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.data.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gov.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ae104a51c8adfaa88df028ce1ffdac202fb27564 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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