usmaasa.ds.army.edu
- U.S. Government -
Issued by DOD CA-21
About this certificate
This digital certificate with serial number 62:af was issued on by U.S. Government.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
U.S. Government
Organization:
U.S. Government
Organization unit: DoD
Organization unit: PKI
Organization unit: DoD
Organization unit: PKI
Country:
US
U.S. Government
Organization:
U.S. Government
Organization unit: DoD
Organization unit: PKI
Organization unit: DoD
Organization unit: PKI
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 62:afSerial Number (int): 25263
Serial Number lenght: 15 bits, 2 octets
SubjectKeyId: c9:ae:99:6a:e4:72:ce:f8:33:93:5f:ea:4b:0a:9f:6b:80:ac:04:54
AuthorityKeyId: 09:99:13:e2:a3:d5:e7:74:d8:f6:3f:b5:dc:fb:d4:b5:16:ed:4c:d3
Fingerprint (sha1): 48:21:5f:ca:cc:83:3e:e4:df:e6:e6:f3:ea:90:14:27:4a:eb:e3:0c
Fingerprint (sha256): 92:83:fc:db:1e:3d:e9:42:ca:2f:6b:5d:e9:a3:2d:7f:31:7d:4f:d5:a1:8d:17:0f:e8:b5:4f:4f:c5:2c:ed:d6
Issuing Certificate URL: http://crl.disa.mil/getsign?DOD%20CA-21
Revocation information
OCSP Server: http://ocsp.disa.milCRL Distribution Point: http://crl.disa.mil/getcrl?DOD%20CA-21
CRL Distribution Point: ldap://crl.gds.disa.mil/cn%3dDOD%20CA-21%2cou%3dPKI%2cou%3dDoD%2co%3dU.S.%20Government%2cc%3dUS?certificaterevocationlist;binary
Check the revocation status for certificate usmaasa.ds.army.edu
1
DNS Names
0
Email Addresses
1
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for usmaasa.ds.army.edu
Public Key Algorithm
RSA
Key Size
1024
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Any
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
usmaasa.ds.army.edu 129.29.252.251
Other certificates including the domain name army.edu
(limited to 100 certificates)
Certificate
The complete raw certificate details for usmaasa.ds.army.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICYq8wDQYJKoZIhvcNAQEFBQAwVzELMAkGA1UEBhMCVVMx GDAWBgNVBAoTD1UuUy4gR292ZXJubWVudDEMMAoGA1UECxMDRG9EMQwwCgYDVQQL EwNQS0kxEjAQBgNVBAMTCURPRCBDQS0yMTAeFw0wOTEyMTEyMTM4MjlaFw0xMjEy MTEyMTM4MjlaMIGKMQswCQYDVQQGEwJVUzEYMBYGA1UEChMPVS5TLiBHb3Zlcm5t ZW50MQwwCgYDVQQLEwNEb0QxDDAKBgNVBAsTA1BLSTEcMBoGA1UEAxMTdXNtYWFz YS5kcy5hcm15LmVkdTEnMCUGCSqGSIb3DQEJAhYYVVNNQUFTQS5VU01BLkRTLkFS TVkuRURVMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDEVX5A4ljC/tV/kTU8 2PyKvPY/LZ1K8fLeOX34tE3HOdz7wVUaYVtx6vwwxqG8Tec9FZ/b65lGwrMrfN/0 HIqjf1qy1Hq9L/9gg+33iXrphHx5wm3T3haiqbiYHMArzAg22RMievo48dWSrGS3 rh5Xv/yMHO5aQQzM50D7Wf+PqwIDAQABo4IB8DCCAewwHwYDVR0jBBgwFoAUCZkT 4qPV53TY9j+13PvUtRbtTNMwHQYDVR0OBBYEFMmumWrkcs74M5Nf6ksKn2uArARU MGUGCCsGAQUFBwEBBFkwVzAzBggrBgEFBQcwAoYnaHR0cDovL2NybC5kaXNhLm1p bC9nZXRzaWduP0RPRCUyMENBLTIxMCAGCCsGAQUFBzABhhRodHRwOi8vb2NzcC5k aXNhLm1pbDAOBgNVHQ8BAf8EBAMCBaAwgcUGA1UdHwSBvTCBujAsoCqgKIYmaHR0 cDovL2NybC5kaXNhLm1pbC9nZXRjcmw/RE9EJTIwQ0EtMjEwgYmggYaggYOGgYBs ZGFwOi8vY3JsLmdkcy5kaXNhLm1pbC9jbiUzZERPRCUyMENBLTIxJTJjb3UlM2RQ S0klMmNvdSUzZERvRCUyY28lM2RVLlMuJTIwR292ZXJubWVudCUyY2MlM2RVUz9j ZXJ0aWZpY2F0ZXJldm9jYXRpb25saXN0O2JpbmFyeTAkBgNVHREEHTAbghN1c21h YXNhLmRzLmFybXkuZWR1hwSBHfz7MBYGA1UdIAQPMA0wCwYJYIZIAWUCAQsFMC0G A1UdJQQmMCQGCCsGAQUFBwMBBggrBgEFBQcDAgYIKwYBBQUIAgIGBFUdJQAwDQYJ KoZIhvcNAQEFBQADggEBAE8DA5WYP1ro0u5ozBTAYRXhqKuLarIWv0EAlzmzOpMF oldHpVG/b5omQ7U26FhCmfGeRcvkTv4vLL4CCh1D6pQsKrHRjM0Qe4Nm2PNONUWu 6McrDbjpu+UHgEyOUY6BkZHUkEc3xzEj2GKQJD8Ts7Rn1Wa5zYv7AOa4BvsFMryZ SBtBnhm/yiViL973SzNBH4Ph7UOmKe4B82n8BZi+slpq7NkW7wwcdXA/sg/8/g+X 4aRvZZg/qqCksJ2KKKh2zNiulgDD4Wisu3QKNoJ5BINiV+8KKYNwAyARN/1yZpu4 ZT5K5wVeUh1YBcobV8uaAfUA60om3JeGiS8oA+vDon4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDEVX5A4ljC/tV/kTU82PyKvPY/ LZ1K8fLeOX34tE3HOdz7wVUaYVtx6vwwxqG8Tec9FZ/b65lGwrMrfN/0HIqjf1qy 1Hq9L/9gg+33iXrphHx5wm3T3haiqbiYHMArzAg22RMievo48dWSrGS3rh5Xv/yM HO5aQQzM50D7Wf+PqwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 25263 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOD CA-21' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2009-12-11 21:38:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-12-11 21:38:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'usmaasa.ds.army.edu' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.2 (unstructuredName) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'USMAASA.USMA.DS.ARMY.EDU' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1120 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 137870393727443883278385737197205215485254485531966457630387039574832656436210968364442678795539733724040793144273550206311722974525165459478528713680641824058592703849340627702206812201801963295104454608330947302179277586581897211016591993930908478909105594674618769776110149664843967356888210463233006342059 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 099913e2a3d5e774d8f63fb5dcfbd4b516ed4cd3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c9ae996ae472cef833935fea4b0a9f6b80ac0454 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (89 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/getsign?DOD%20CA-21' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.disa.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (189 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/getcrl?DOD%20CA-21' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://crl.gds.disa.mil/cn%3dDOD%20CA-21%2cou%3dPKI%2cou%3dDoD%2co%3dU.S.%20Government%2cc%3dUS?certificaterevocationlist;binary' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usmaasa.ds.army.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:7|false] OCTET STRING '129.29.252.251' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.5 (usDODClass3) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.8.2.2 (iKEIntermediate) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37.0 (anyExtendedKeyUsage) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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