*.dodlive.mil
- U.S. Government -
Issued by DOD ID SW CA-38
About this certificate
This digital certificate with serial number a5:ac was issued on by U.S. Government.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
U.S. Government
Organization:
U.S. Government
Organization unit: DMA
Organization unit: DMA
State / Province:
MD
Locality: Fort Meade
Country: US
Locality: Fort Meade
Country: US
U.S. Government
Organization:
U.S. Government
Organization unit: DoD
Organization unit: PKI
Organization unit: DoD
Organization unit: PKI
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): a5:acSerial Number (int): 42412
Serial Number lenght: 16 bits, 2 octets
SubjectKeyId: 64:ef:9e:a8:ee:cb:86:17:17:69:0a:65:1d:0b:8d:90:6b:af:f8:68
AuthorityKeyId: 8e:c5:b9:cc:fc:ce:8e:53:b4:2a:ce:e8:11:2a:cf:9b:29:6c:67:ca
Fingerprint (sha1): aa:70:dd:cb:ee:e4:a7:d0:7e:1c:68:dd:36:f0:53:cc:a7:9e:6f:8b
Fingerprint (sha256): ed:aa:5a:13:ea:08:b7:3f:ce:06:4b:bf:9c:a2:d4:90:e3:21:30:02:1f:41:8c:99:e1:be:f5:b8:36:2d:5a:64
Issuing Certificate URL: http://crl.disa.mil/sign/DODIDSWCA_38.cer
Revocation information
OCSP Server: http://ocsp.disa.milCRL Distribution Point: http://crl.disa.mil/crl/DODIDSWCA_38.crl
Check the revocation status for certificate *.dodlive.mil
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.dodlive.mil
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.dodlive.mil
Other certificates including the domain name dodlive.mil
(limited to 100 certificates)
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
navylive.dodlive.mil
www.dodlive.mil
*.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
navylive.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
navylive.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
wildcard.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
*.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
*.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
wildcard.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
wildcard.dodlive.mil
*.dodlive.mil
www.dodlive.mil
wildcard.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
navylive.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
navylive.dodlive.mil
www.dodlive.mil
*.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
navylive.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
navylive.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
wildcard.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
*.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
*.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
wildcard.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
wildcard.dodlive.mil
*.dodlive.mil
www.dodlive.mil
wildcard.dodlive.mil
www.dodlive.mil
www.dodlive.mil
www.dodlive.mil
navylive.dodlive.mil
www.dodlive.mil
www.dodlive.mil
Certificate
The complete raw certificate details for *.dodlive.mil in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEnjCCA4agAwIBAgIDAKWsMA0GCSqGSIb3DQEBCwUAMF0xCzAJBgNVBAYTAlVT MRgwFgYDVQQKEw9VLlMuIEdvdmVybm1lbnQxDDAKBgNVBAsTA0RvRDEMMAoGA1UE CxMDUEtJMRgwFgYDVQQDEw9ET0QgSUQgU1cgQ0EtMzgwHhcNMTYwOTA4MjExMjM4 WhcNMTkwOTA5MjExMjM4WjBvMQswCQYDVQQGEwJVUzELMAkGA1UECBMCTUQxEzAR BgNVBAcTCkZvcnQgTWVhZGUxGDAWBgNVBAoTD1UuUy4gR292ZXJubWVudDEMMAoG A1UECxMDRE1BMRYwFAYDVQQDFA0qLmRvZGxpdmUubWlsMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEA4549suQlTfr4UwkMc/JLC2NyOIozfnkWQud6e6Ae ubGRM1nZ/InilvtQ7BEv3HVcrmp+btENsy92dDubAcOrxqjzGwPdJtxazwLVnU/3 SUFnkHVwVn4W8X6VWb03L7uJ4V+e2a7UhZuL8DUF/gq5pAlhmeJJOVHW7yJJYKHF kYazWZCk3gc6A0nr0D24MUAitair6QbS606BKZ9FVq/vybaFRdDyB2pgCtFgyWE6 fv5PwWb7KGEDJ+PQl8nhJ1c+QcexYOBL76R6TW0Se608/JPyww4whtptmppnc807 QaMkbK14tlhfh/RrApCQFmlfiN4U3Ie7T+cmxqWkcXkydwIDAQABo4IBUzCCAU8w HwYDVR0jBBgwFoAUjsW5zPzOjlO0Ks7oESrPmylsZ8owHQYDVR0OBBYEFGTvnqju y4YXF2kKZR0LjZBrr/hoMGcGCCsGAQUFBwEBBFswWTA1BggrBgEFBQcwAoYpaHR0 cDovL2NybC5kaXNhLm1pbC9zaWduL0RPRElEU1dDQV8zOC5jZXIwIAYIKwYBBQUH MAGGFGh0dHA6Ly9vY3NwLmRpc2EubWlsMA4GA1UdDwEB/wQEAwIFoDA5BgNVHR8E MjAwMC6gLKAqhihodHRwOi8vY3JsLmRpc2EubWlsL2NybC9ET0RJRFNXQ0FfMzgu Y3JsMBgGA1UdEQQRMA+CDSouZG9kbGl2ZS5taWwwFgYDVR0gBA8wDTALBglghkgB ZQIBCycwJwYDVR0lBCAwHgYIKwYBBQUHAwEGCCsGAQUFBwMCBggrBgEFBQgCAjAN BgkqhkiG9w0BAQsFAAOCAQEAAIZJFs79Xa7aqS1JnbeaAbRleuyZoHqUpATGCJUs l4c1hCjXFfM0SIrzlNsPH831UIK1BALa3cg1N79zH70rQ1CHttyKWUpRpHw+ylGS Q6MzwtGvJnQxwSJlvP8V18R013506mN3NmKSYvuXq/US/lla9l9G4yvkcSyP+Fjv VrRNvl2ZJCj5qo9kOZm4BvJs+to7bb/XWznv+Q2MrAsub+jqaY14EEMpYmPWsVN0 k5Lu2ndsGJ2v3escfzaO7+qqPZDddr/mvFbSVWaZ+P+fgPmRJiK8Olahweju3guS G9ErPFjaZlsOJM+f2t/VmZ7k7HF4tA+aJaw75JHb4u5VqQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4549suQlTfr4UwkMc/JL C2NyOIozfnkWQud6e6AeubGRM1nZ/InilvtQ7BEv3HVcrmp+btENsy92dDubAcOr xqjzGwPdJtxazwLVnU/3SUFnkHVwVn4W8X6VWb03L7uJ4V+e2a7UhZuL8DUF/gq5 pAlhmeJJOVHW7yJJYKHFkYazWZCk3gc6A0nr0D24MUAitair6QbS606BKZ9FVq/v ybaFRdDyB2pgCtFgyWE6fv5PwWb7KGEDJ+PQl8nhJ1c+QcexYOBL76R6TW0Se608 /JPyww4whtptmppnc807QaMkbK14tlhfh/RrApCQFmlfiN4U3Ie7T+cmxqWkcXky dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 42412 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DoD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOD ID SW CA-38' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-08 21:12:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-09 21:12:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Fort Meade' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'U.S. Government' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DMA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.dodlive.mil' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28734126778052230792410577677467328171375698814571191943666028662225986758189404122545991866638449525174248844422593526238690560548141888180108529049530637330592453691351847203057225238736106850512712929034350929749386895357864550721141558865583231782907976417144128537644067931628098488657892166163062722000285501141130477918040004221836771312903922838247760813593625572827865679086518563446338858465019772446832408390348462751604187155692286396536596059479702457350296770045147968980937805010643043099993725135391089961677075770392947853740086708016202131138766659767156174432455220114302261449436015807852879360631 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8ec5b9ccfcce8e53b42acee8112acf9b296c67ca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 64ef9ea8eecb861717690a651d0b8d906baff868 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (91 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/sign/DODIDSWCA_38.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.disa.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.disa.mil/crl/DODIDSWCA_38.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dodlive.mil' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.2.1.11.39 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.8.2.2 (iKEIntermediate) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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