analyticsv20.illinoiscomptroller.gov
- Illinois Office of Comptroller -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 6c:b4:67:a7:5a:bf:a4:61:5a:3f:25:87:29:f5:d6:3d was issued on by Entrust, Inc..
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Illinois Office of Comptroller
Organization:
Illinois Office of Comptroller
State / Province:
Illinois
Locality: Springfield
Country: US
Locality: Springfield
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 6c:b4:67:a7:5a:bf:a4:61:5a:3f:25:87:29:f5:d6:3dSerial Number (int): 144493339326684831230352470316900800061
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 53:ad:4a:be:97:29:59:40:11:4e:e1:f8:95:a2:53:d9:31:08:66:8f
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): db:68:95:8f:b8:49:01:c9:a5:9f:e4:68:3c:fc:59:ba:da:2b:58:23
Fingerprint (sha256): c5:19:2e:a3:0d:e6:50:ed:a3:18:3d:ff:5b:fa:90:b5:4f:f6:3c:8c:40:0f:e8:e2:67:3c:19:83:92:32:d7:d5
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate analyticsv20.illinoiscomptroller.gov
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for analyticsv20.illinoiscomptroller.gov
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
analyticsv20.illinoiscomptroller.gov
www.analyticsv20.illinoiscomptroller.gov
Analytics.illinoiscomptroller.gov
www.analyticsv20.illinoiscomptroller.gov
Analytics.illinoiscomptroller.gov
Other certificates including the domain name illinoiscomptroller.gov
(limited to 100 certificates)
analytics.illinoiscomptroller.gov
*.illinoiscomptroller.gov
*.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
IllinoisComptroller.gov
sslvpn.illinoiscomptroller.gov
IllinoisComptroller.gov
IOC-ISE1.illinoiscomptroller.gov
IOC-ISE1.illinoiscomptroller.gov
ioc-fmc-ca.illinoiscomptroller.gov
IllinoisComptroller.gov
gateway.iconstituent.com
iocwebvpn.illinoiscomptroller.gov
*.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
*.IllinoisComptroller.gov
IllinoisComptroller.gov
analytics.illinoiscomptroller.gov
IOC-ISE2.illinoiscomptroller.gov
gateway.iconstituent.com
gateway.iconstituent.com
*.IllinoisComptroller.gov
*.illinoiscomptroller.gov
training.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
illinoiscomptroller.gov
gateway.iconstituent.com
*.illinoiscomptroller.gov
*.illinoiscomptroller.gov
*.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
IllinoisComptroller.gov
sslvpn.illinoiscomptroller.gov
IllinoisComptroller.gov
IOC-ISE1.illinoiscomptroller.gov
IOC-ISE1.illinoiscomptroller.gov
ioc-fmc-ca.illinoiscomptroller.gov
IllinoisComptroller.gov
gateway.iconstituent.com
iocwebvpn.illinoiscomptroller.gov
*.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
*.IllinoisComptroller.gov
IllinoisComptroller.gov
analytics.illinoiscomptroller.gov
IOC-ISE2.illinoiscomptroller.gov
gateway.iconstituent.com
gateway.iconstituent.com
*.IllinoisComptroller.gov
*.illinoiscomptroller.gov
training.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
illinoiscomptroller.gov
gateway.iconstituent.com
*.illinoiscomptroller.gov
Certificate
The complete raw certificate details for analyticsv20.illinoiscomptroller.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGnjCCBYagAwIBAgIQbLRnp1q/pGFaPyWHKfXWPTANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y MzEyMTkxNDMxMzZaFw0yNTAxMDgxNDMxMzVaMIGOMQswCQYDVQQGEwJVUzERMA8G A1UECBMISWxsaW5vaXMxFDASBgNVBAcTC1NwcmluZ2ZpZWxkMScwJQYDVQQKEx5J bGxpbm9pcyBPZmZpY2Ugb2YgQ29tcHRyb2xsZXIxLTArBgNVBAMTJGFuYWx5dGlj c3YyMC5pbGxpbm9pc2NvbXB0cm9sbGVyLmdvdjCCAiIwDQYJKoZIhvcNAQEBBQAD ggIPADCCAgoCggIBANl7hwdIwGbTxcQgOLQIY8fuQTMkrvTyRGxVjYzOln6v3YVy IsFjh+ZCnppBnZNaw7EoixSgaWt2gLcy6JqlWDlKemST4qxcdV5BedG0W+VFqqlf fl9A3yBG+awcFR9wX7g3Dyj7/juRmH33LjOwv2b8oWKTseDyLj3V8JXXzIYO9uCA YF6fkRmGLkj38bIt5+StBLlx6s5oOUF7NTelIlTQxkCNQsB793gI9YkAdopR8R+j lEQ1SvciWTHgPiKGzhvkBZiVox7ErQeJ2xFUWkxOxEwjQn1SwIvNFODP7l37kes5 F8M+La2XDtYAN5YkKlag7DWudrDUoGW4ZiH2kDc1KaxtNbhc+/Omyi9pjETS9MMJ 10bASndAUoq6nuSIG0+yReB9NKho8vqI5eGTgUw0lK2laH5N1DwVQ3dnEn4snEUv olaoBlRs4wTrM3rBKtOAhvhA1oVfbAskJLkVKNZb2393SEzZ5YJ4XAf4ny3C6ViQ y1QOE/WFblWpoAOs6JY8LUYBOxg/LMaCXPlVdcML1Hr0sz5IhgLqJkNV+/q+R+gQ K/zJ8M1Lc3Buecgd0H/22NS1cvtFBMNLEc84jPudtnwISSPDEBFEIPYtKeLa21mi JOCM2Twfn1BeVrBd/3oUaF9eeeDvMyXJy+/QrWVWirJlKGcJIYrEHCuUVqltAgMB AAGjggHIMIIBxDAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRTrUq+lylZQBFO4fiV olPZMQhmjzAfBgNVHSMEGDAWgBSConB03bxTP8971PfNf6dgxgpMvzBoBggrBgEF BQcBAQRcMFowIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMG CCsGAQUFBzAChidodHRwOi8vYWlhLmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5j ZXIwMwYDVR0fBCwwKjAooCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZl bDFrLmNybDB8BgNVHREEdTBzgiRhbmFseXRpY3N2MjAuaWxsaW5vaXNjb21wdHJv bGxlci5nb3aCKHd3dy5hbmFseXRpY3N2MjAuaWxsaW5vaXNjb21wdHJvbGxlci5n b3aCIUFuYWx5dGljcy5pbGxpbm9pc2NvbXB0cm9sbGVyLmdvdjAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBMGA1UdIAQMMAow CAYGZ4EMAQICMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAIEKh+RcoxBZI3uvj9uaMjkuBQjUVHu1iNBoUORq4TkZcyNVYOGzozcvJU+8Lv UDVzY8GcVOQi71s3ZeoLBQ/55Et2K89RI0nlaWC4FeK06HMxqljQRr//hV+ArSUv NK+/p/vy5La0VlbR/UMNtjRP6WPOwMVDdZmiC/cFvRtYKuPIttzSqMbkj2LbdGMO Sy27kJNfypomP4fGSokGUDbzgUeP9eAyniK9dpXNPspE4WzDM1sp5pSm8W7bK0ny HhrHk34AYRHUajORxlAXK3Ve/BSdhxlXqWvY07L+dkXEGab/inEMmH56KpUnt6lG /aDHfaS0r77xy0CM9pHJ0DfZ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2XuHB0jAZtPFxCA4tAhj x+5BMySu9PJEbFWNjM6Wfq/dhXIiwWOH5kKemkGdk1rDsSiLFKBpa3aAtzLomqVY OUp6ZJPirFx1XkF50bRb5UWqqV9+X0DfIEb5rBwVH3BfuDcPKPv+O5GYffcuM7C/ ZvyhYpOx4PIuPdXwldfMhg724IBgXp+RGYYuSPfxsi3n5K0EuXHqzmg5QXs1N6Ui VNDGQI1CwHv3eAj1iQB2ilHxH6OURDVK9yJZMeA+IobOG+QFmJWjHsStB4nbEVRa TE7ETCNCfVLAi80U4M/uXfuR6zkXwz4trZcO1gA3liQqVqDsNa52sNSgZbhmIfaQ NzUprG01uFz786bKL2mMRNL0wwnXRsBKd0BSirqe5IgbT7JF4H00qGjy+ojl4ZOB TDSUraVofk3UPBVDd2cSfiycRS+iVqgGVGzjBOszesEq04CG+EDWhV9sCyQkuRUo 1lvbf3dITNnlgnhcB/ifLcLpWJDLVA4T9YVuVamgA6zoljwtRgE7GD8sxoJc+VV1 wwvUevSzPkiGAuomQ1X7+r5H6BAr/MnwzUtzcG55yB3Qf/bY1LVy+0UEw0sRzziM +522fAhJI8MQEUQg9i0p4trbWaIk4IzZPB+fUF5WsF3/ehRoX1554O8zJcnL79Ct ZVaKsmUoZwkhisQcK5RWqW0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 144493339326684831230352470316900800061 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-19 14:31:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-08 14:31:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Springfield' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois Office of Comptroller' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'analyticsv20.illinoiscomptroller.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 887251309825256841154531595370873513423597132762241741533506613814624585651674159507140069048169415592175626454253994904943900279905032229368727193349147588256458227973605842318784620047984495085120534107549726013354424790543450278699777597022968810272947411653020305236678114029514467733229626640452688437693368178264012840277826432759008800538077075476680093776899487210958716192322861366738918715044717356158696927891099811357486758432447852170431212838351085998361032395865510064490610180098492328718337625273264427897894213159836315662923516376004536712980098875766361628375530555577565264953937799669160443462554174784649716457103960375790809960831892951114495027008968858207439186205090091381258707487498691596448231924051038205000724746017181577830595715630531592632390730407804603038677326327711034755861880476163410212147625000089840959102939418431301973117961128978430692428089432483129120386440324363374386298799685933144144335595516571023156321249210151147480419777709010380499012719008635042724223545462422761197335460965601322832184022318790486571367781441861035109629890641708061886840803310365612374989506015870607016904813979578065261249306875323317948919537833147720447430532198288384080284808236847064168193763693 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 53ad4abe97295940114ee1f895a253d93108668f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (117 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'analyticsv20.illinoiscomptroller.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.analyticsv20.illinoiscomptroller.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Analytics.illinoiscomptroller.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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