mciwest.mcop.milcloud.mil
- U.S. Government -
Issued by DOD ID SW CA-37
About this certificate
This digital certificate with serial number 01:c9:13 was issued on by U.S. Government.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: subject:localityName MUST appear if subject:organizationName, subject:givenName, or subject:surname fields are present but the subject:stateOrProvinceName field is absent. (BRs: 7.1.4.2.2)
- Subscriber Certificate: subject:stateOrProvinceName MUST appear if the subject:organizationName, subject:givenName, or subject:surname fields are present and subject:localityName is absent. (BRs: 7.1.4.2.2)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
U.S. Government
Organization:
U.S. Government
Organization unit: DoD
Organization unit: PKI
Organization unit: USA
Organization unit: DoD
Organization unit: PKI
Organization unit: USA
Country:
US
U.S. Government
Organization:
U.S. Government
Organization unit: DoD
Organization unit: PKI
Organization unit: DoD
Organization unit: PKI
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:c9:13Serial Number (int): 117011
Serial Number lenght: 17 bits, 3 octets
SubjectKeyId: e9:92:31:f0:2b:ab:f6:ad:97:fb:4b:57:fd:fb:de:e4:53:88:ce:ed
AuthorityKeyId: 16:24:7e:f7:2d:c1:ef:92:3f:be:44:e7:54:5e:e9:fe:17:ba:f3:a1
Fingerprint (sha1): e7:5e:ce:9a:86:c7:66:c0:55:37:86:ce:c4:bf:30:71:26:6b:50:50
Fingerprint (sha256): 89:d9:2c:f0:68:20:1c:5b:3f:d2:cd:56:46:8b:57:18:68:eb:3f:ae:5c:e0:04:cc:db:ff:be:53:4b:f8:8a:c9
Issuing Certificate URL: http://crl.disa.mil/sign/DODIDSWCA_37.cer
Revocation information
OCSP Server: http://ocsp.disa.milCRL Distribution Point: http://crl.disa.mil/crl/DODIDSWCA_37.crl
Check the revocation status for certificate mciwest.mcop.milcloud.mil
1
DNS Names
0
Email Addresses
1
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mciwest.mcop.milcloud.mil
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mciwest.mcop.milcloud.mil 214.23.36.162
Other certificates including the domain name milcloud.mil
(limited to 100 certificates)
rdais.platform.milcloud.mil
cbrnis.jpmis.milcloud.mil
rdais.platform.milcloud.mil
rdais-test.platform.milcloud.mil
myseco-preprod.platform.milcloud.mil
trtcs.milcloud.mil
manager011u.platform.milcloud.mil
mcipac.mcop.milcloud.mil
utinvpn.milcloud.mil
ugunvpn.milcloud.mil
myseco-preprod.platform.milcloud.mil
els023uvpn.milcloud.mil
manager006u.platform.milcloud.mil
myseco-test.platform.milcloud.mil
apacs.milcloud.mil
ugunvpn.milcloud.mil
gcdsaf7.af.mil
milcloud.mil
myseco-test.platform.milcloud.mil
usaf-acq-test.platform.milcloud.mil
manager012u.platform.milcloud.mil
usaf-acq.platform.milcloud.mil
usaf-acq-test.platform.milcloud.mil
mcincr.mcop.milcloud.mil
manager011u.platform.milcloud.mil
cbrnis.jpmis.milcloud.mil
mciwest.mcop.milcloud.mil
usaf-acq.platform.milcloud.mil
rdais-test.platform.milcloud.mil
efoia.milcloud.mil
www.milcloud.mil
utinvpn.milcloud.mil
ui.csd.disa.mil
geo.mcop.milcloud.mil
rdais.platform.milcloud.mil
manager006u.platform.milcloud.mil
mcieast.mcop.milcloud.mil
apacs-stg.milcloud.mil
myseco-test.platform.milcloud.mil
efoia.milcloud.mil
USAFA-COP.psif.milcloud.mil
els023uvpn.milcloud.mil
efoia.milcloud.mil
milcloud.mil
ugunvpn.milcloud.mil
utinhuhl.platform.milcloud.mil
issp.platform.milcloud.mil
efoia.milcloud.mil
mcicom.mcop.milcloud.mil
utinvpn.milcloud.mil
utinhuhk.platform.milcloud.mil
myseco-preprod.platform.milcloud.mil
manager006u.platform.milcloud.mil
cbrnis.jpmis.milcloud.mil
rdais.platform.milcloud.mil
rdais-test.platform.milcloud.mil
myseco-preprod.platform.milcloud.mil
trtcs.milcloud.mil
manager011u.platform.milcloud.mil
mcipac.mcop.milcloud.mil
utinvpn.milcloud.mil
ugunvpn.milcloud.mil
myseco-preprod.platform.milcloud.mil
els023uvpn.milcloud.mil
manager006u.platform.milcloud.mil
myseco-test.platform.milcloud.mil
apacs.milcloud.mil
ugunvpn.milcloud.mil
gcdsaf7.af.mil
milcloud.mil
myseco-test.platform.milcloud.mil
usaf-acq-test.platform.milcloud.mil
manager012u.platform.milcloud.mil
usaf-acq.platform.milcloud.mil
usaf-acq-test.platform.milcloud.mil
mcincr.mcop.milcloud.mil
manager011u.platform.milcloud.mil
cbrnis.jpmis.milcloud.mil
mciwest.mcop.milcloud.mil
usaf-acq.platform.milcloud.mil
rdais-test.platform.milcloud.mil
efoia.milcloud.mil
www.milcloud.mil
utinvpn.milcloud.mil
ui.csd.disa.mil
geo.mcop.milcloud.mil
rdais.platform.milcloud.mil
manager006u.platform.milcloud.mil
mcieast.mcop.milcloud.mil
apacs-stg.milcloud.mil
myseco-test.platform.milcloud.mil
efoia.milcloud.mil
USAFA-COP.psif.milcloud.mil
els023uvpn.milcloud.mil
efoia.milcloud.mil
milcloud.mil
ugunvpn.milcloud.mil
utinhuhl.platform.milcloud.mil
issp.platform.milcloud.mil
efoia.milcloud.mil
mcicom.mcop.milcloud.mil
utinvpn.milcloud.mil
utinhuhk.platform.milcloud.mil
myseco-preprod.platform.milcloud.mil
manager006u.platform.milcloud.mil
Certificate
The complete raw certificate details for mciwest.mcop.milcloud.mil in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEtjCCA56gAwIBAgIDAckTMA0GCSqGSIb3DQEBCwUAMF0xCzAJBgNVBAYTAlVT MRgwFgYDVQQKEw9VLlMuIEdvdmVybm1lbnQxDDAKBgNVBAsTA0RvRDEMMAoGA1UE CxMDUEtJMRgwFgYDVQQDEw9ET0QgSUQgU1cgQ0EtMzcwHhcNMTcwNjA1MTk0OTA1 WhcNMjAwNjA1MTk0OTA1WjB1MQswCQYDVQQGEwJVUzEYMBYGA1UEChMPVS5TLiBH b3Zlcm5tZW50MQwwCgYDVQQLEwNEb0QxDDAKBgNVBAsTA1BLSTEMMAoGA1UECxMD VVNBMSIwIAYDVQQDExltY2l3ZXN0Lm1jb3AubWlsY2xvdWQubWlsMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVQ36owSdHGiV6jVUBwB7ryj274vmWqU KrI0qX22CgztXqjRc8famAM4L1ga87TkUafj9mYNQ8PvMsS1rKTNO2pTdswiQigR BJ5fFQ7HbEGsWFIqJs4BbNe8RE6WNIY052mS19Os6eOuLQO9v4uMdkC9lFhUNXYn X5u4phefmXevJa/lfcwR0ynrEccmLB3SRVRqUXLEXwNyQcv/TZAADWIoYh1v72aO ypUUEpNmX2rQws38ru2TZEpTE8egwxaTHOpOMWEj8cTQB5Q5QNfKSjHxX2FvE5zG siI4fLm3xZGprep41/EFFrvn6foLicTeat7GDfJ0XCjK8PA2rs44zQIDAQABo4IB ZTCCAWEwHwYDVR0jBBgwFoAUFiR+9y3B75I/vkTnVF7p/he686EwHQYDVR0OBBYE FOmSMfArq/atl/tLV/373uRTiM7tMGcGCCsGAQUFBwEBBFswWTA1BggrBgEFBQcw AoYpaHR0cDovL2NybC5kaXNhLm1pbC9zaWduL0RPRElEU1dDQV8zNy5jZXIwIAYI KwYBBQUHMAGGFGh0dHA6Ly9vY3NwLmRpc2EubWlsMA4GA1UdDwEB/wQEAwIFoDA5 BgNVHR8EMjAwMC6gLKAqhihodHRwOi8vY3JsLmRpc2EubWlsL2NybC9ET0RJRFNX Q0FfMzcuY3JsMCoGA1UdEQQjMCGCGW1jaXdlc3QubWNvcC5taWxjbG91ZC5taWyH BNYXJKIwFgYDVR0gBA8wDTALBglghkgBZQIBCycwJwYDVR0lBCAwHgYIKwYBBQUH AwEGCCsGAQUFBwMCBggrBgEFBQgCAjANBgkqhkiG9w0BAQsFAAOCAQEAGYjEdASj Td61HxXpt1iz7NykiKpmPIjitfIhts4xiyk8kJFriI9C1+xDMjDjm1XbG1WUNwFA ftUwzv3ETjhEuQ7TBw6GZw6YbGB27M4tbsarOmWIPMfKR85OevhSaJqAHAwKcdZT hND8/DdLP3RnFLEg+9s7yE8puLgFexzVVvlo4z6vzXnLsRdoAr9e+XR9mJEhPhrb smqgohE5+EGEW5JMc7vSzhH7ew19Hoxma7c6qc/4oQvMI8dnNTYaXedb+Ge9El50 8806e7RzheNpDVnHmoOQFAOWPvAD3vTaA0dH/2m6NU2peF5EL7dhFPa5Lx5Ur3D6 yB2jrFZUBOn/Xw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVQ36owSdHGiV6jVUBwB 7ryj274vmWqUKrI0qX22CgztXqjRc8famAM4L1ga87TkUafj9mYNQ8PvMsS1rKTN O2pTdswiQigRBJ5fFQ7HbEGsWFIqJs4BbNe8RE6WNIY052mS19Os6eOuLQO9v4uM dkC9lFhUNXYnX5u4phefmXevJa/lfcwR0ynrEccmLB3SRVRqUXLEXwNyQcv/TZAA DWIoYh1v72aOypUUEpNmX2rQws38ru2TZEpTE8egwxaTHOpOMWEj8cTQB5Q5QNfK SjHxX2FvE5zGsiI4fLm3xZGprep41/EFFrvn6foLicTeat7GDfJ0XCjK8PA2rs44 zQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 117011 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOD ID SW CA-37' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-06-05 19:49:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-05 19:49:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'USA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mciwest.mcop.milcloud.mil' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18851037091985533573748802156366023695722286689863995069090478321160448178692624825243898327987533359301678225171326542619741092406128001020655437982645064839227341920772331799475774338657660932136961863584362563073833385065706775393391147693051731348205908706060623174525966783226661717078724896147433957039278360761298593648861105161003625866950814445933978255528527853463532600869160824943300707009129446382639781005849632461471987950155976096298492416030782109813082955371850688625392869648754979097040737948775098711874733374303296910312723669809701228029283497706161433815726968420617878976874093858376045705421 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 16247ef72dc1ef923fbe44e7545ee9fe17baf3a1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e99231f02babf6ad97fb4b57fdfbdee45388ceed . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (91 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/sign/DODIDSWCA_37.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.disa.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/crl/DODIDSWCA_37.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (35 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mciwest.mcop.milcloud.mil' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:7|false] OCTET STRING '214.23.36.162' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.39 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.8.2.2 (iKEIntermediate) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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