*.worcesterma.gov
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number a2:5a:45:23:4a:00:3b:06 was issued on by GoDaddy.com, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
Certificate Subject
CN=*.worcesterma.gov
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): a2:5a:45:23:4a:00:3b:06Serial Number (int): 11698738999915985670
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: e5:c4:94:7e:9f:4f:e5:52:c0:1e:04:8a:ad:6a:5d:cb:60:dd:dc:e3
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): ae:ed:a9:99:54:6e:11:15:b0:96:34:51:6f:35:2e:98:50:4b:a0:57
Fingerprint (sha256): 99:9d:71:36:e4:70:d0:0b:8e:f1:55:b0:07:ca:ec:8a:ab:67:08:63:90:35:04:66:18:b6:8f:fd:02:a2:25:84
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-5207.crl
Check the revocation status for certificate *.worcesterma.gov
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.worcesterma.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.worcesterma.gov
worcesterma.gov
worcesterma.gov
Other certificates including the domain name worcesterma.gov
(limited to 100 certificates)
cag.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
opendata.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
now-next.worcesterma.gov
opendata.worcesterma.gov
*.worcesterma.gov
worcesterma.gov
gisdata.worcesterma.gov
worcesterma.gov
green.worcesterma.gov
opendata.worcesterma.gov
now-next.worcesterma.gov
gisdata.worcesterma.gov
remote.worcesterma.gov
opendata.worcesterma.gov
remote.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
worcesterwifi.worcesterma.gov
cowcex2.worcesterma.gov
worcesterma.gov
opendata.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
*.worcesterma.gov
*.worcesterma.gov
now-next.worcesterma.gov
cowcex1.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
opendata.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
now-next.worcesterma.gov
opendata.worcesterma.gov
*.worcesterma.gov
worcesterma.gov
gisdata.worcesterma.gov
worcesterma.gov
green.worcesterma.gov
opendata.worcesterma.gov
now-next.worcesterma.gov
gisdata.worcesterma.gov
remote.worcesterma.gov
opendata.worcesterma.gov
remote.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
worcesterwifi.worcesterma.gov
cowcex2.worcesterma.gov
worcesterma.gov
opendata.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
*.worcesterma.gov
*.worcesterma.gov
now-next.worcesterma.gov
cowcex1.worcesterma.gov
Certificate
The complete raw certificate details for *.worcesterma.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGmzCCBYOgAwIBAgIJAKJaRSNKADsGMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIzMDIxNTIwNDgzOVoX DTI0MDMxODIwNDgzOVowHDEaMBgGA1UEAwwRKi53b3JjZXN0ZXJtYS5nb3YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfboI+SyzQPvok5bvcfEbu1Pkx TkG/AIvDEplEYzScP917TT9bI63dtzpzJ24Kn6RYPG9q7IWRzaWwSpqLlYN8ovDW i+jZeMm2YZ4R0JEph+WPaXj0AUTV/RG8o0b6onK8GYx8vYcKNCsVEQQlqKC/GaQr Sy+VQ3QTlXnRrDK7Zrpv9N2htJpl654Ah8rObAvgiQQAaV1KOlHYAdM8fpyvV425 R+F6V/NbTAcZ4IZJhny+Q8vStSG2E/uYeP4cJkku1Z0IEDsyDaTfwqdKV7SrH9PL xmQ2ABM88602gIePyVGdGns5lYwJBrXCT7undLeQvoOQ8DpkAvGj7ZLNvhXhAgMB AAGjggNFMIIDQTAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjAOBgNVHQ8BAf8EBAMCBaAwOAYDVR0fBDEwLzAtoCugKYYnaHR0cDov L2NybC5nb2RhZGR5LmNvbS9nZGlnMnMxLTUyMDcuY3JsMF0GA1UdIARWMFQwSAYL YIZIAYb9bQEHFwEwOTA3BggrBgEFBQcCARYraHR0cDovL2NlcnRpZmljYXRlcy5n b2RhZGR5LmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwdgYIKwYBBQUHAQEEajBo MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5nb2RhZGR5LmNvbS8wQAYIKwYBBQUH MAKGNGh0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20vcmVwb3NpdG9yeS9n ZGlnMi5jcnQwHwYDVR0jBBgwFoAUQMK9J47MNIMwojPX+2yz8LQsgM4wLQYDVR0R BCYwJIIRKi53b3JjZXN0ZXJtYS5nb3aCD3dvcmNlc3Rlcm1hLmdvdjAdBgNVHQ4E FgQU5cSUfp9P5VLAHgSKrWpdy2Dd3OMwggGABgorBgEEAdZ5AgQCBIIBcASCAWwB agB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABhlbWI2oAAAQD AEcwRQIhAJuA+JRIxSI2lpiwIaUXsUt8ydu7+E7lMOV9B1Ee1tDZAiAePeXSoXgf nfYxQzdCxRXHF+dSHr6mAt7plWAd3zD9pQB3AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABhlbWJEwAAAQDAEgwRgIhAOvR8K6XX+EcQjLMPBHrIOPw +qcXMihwNZeGveBIaTMDAiEA9YvZWUB7mzuvYzvT/SCn0OYOA6A27RPYiTHjOWJw OX4AdwDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYZW1iTPAAAE AwBIMEYCIQDtn5TT2gCbfusIG3die6p/6jIqcKzuUSSMH32V2yAGeQIhAOcpLfR3 eF7Cx/nTR/V8E6uwfRZTrgewIUjKeG4/pwErMA0GCSqGSIb3DQEBCwUAA4IBAQBC jEc3ocGsCR+rIaUM/xJMpZdnTcvkVsHKBC7SySb5wwiV5mnd+PwcaUiAMn4M0yJa ZBmygcGkiGfvj0fw1a0Q5laJ7oZdW7cLBHhZeQns5OuAkMxm13Ebx7iWvt24VkkY kkUfXja2yWiGRvdcD0bioqJs1MqFmDBfEj545yjxUjljUS7h2v6DgfLMcNYZfpRU jAOzYq/BX28Y7FVM/E0WEBBBE1NK9JxlpJTu2X+8PDp9HOdo26slgveissDU/KMJ jVmJSVeoWsDpqIxHPEXWf+aSuwTN7QGbkoe1p7Urkd8IuXWLJ67Zs00Nd50AYu/m ByERRTKTonBlX9n7GN18 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn26CPkss0D76JOW73HxG 7tT5MU5BvwCLwxKZRGM0nD/de00/WyOt3bc6cyduCp+kWDxvauyFkc2lsEqai5WD fKLw1ovo2XjJtmGeEdCRKYflj2l49AFE1f0RvKNG+qJyvBmMfL2HCjQrFREEJaig vxmkK0svlUN0E5V50awyu2a6b/TdobSaZeueAIfKzmwL4IkEAGldSjpR2AHTPH6c r1eNuUfhelfzW0wHGeCGSYZ8vkPL0rUhthP7mHj+HCZJLtWdCBA7Mg2k38KnSle0 qx/Ty8ZkNgATPPOtNoCHj8lRnRp7OZWMCQa1wk+7p3S3kL6DkPA6ZALxo+2Szb4V 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11698738999915985670 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-15 20:48:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-18 20:48:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.worcesterma.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20126384391666839485445335620663547208242305504882483374545755305332652185441164558828466250890563612477195157019490502190146673339976580605221912278622920799517702147761117551236865647595944920422163132355268108295739812670953344407478807155426777750984409648170568106839951673256626209403340918390553765757002840319188173014490693000900518475416551832474501620148934664967991217877946334428523647565049652490506744519333062591740192857933809471955721641477850024563636913506480303329973003563762745292081636300087414078398161272955038456198263214962861291843574663438934220269224405372121940342884847323043245987297 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-5207.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.worcesterma.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'worcesterma.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e5c4947e9f4fe552c01e048aad6a5dcb60dddce3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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