Development version and work in progress. Might not work properly and could go down at any time. For the real thing visit www.ssllabs.com instead.
SSL Report: pax.csd.disa.mil (156.112.99.111)
Assessed on:  Sun, 22 Sep 2019 03:07:59 UTC | Clear cache

Due to a recently discovered bug in Apple's code, your browser is exposed to MITM attacks. Click here for more information.

Summary
Overall Rating
T
If trust issues are ignored: B
0
20
40
60
80
100
Certificate
 
Protocol Support
 
Key Exchange
 
Cipher Strength
 

Visit our documentation page for more information, configuration guides, and books. Known issues are documented here.
This server's certificate is not trusted, see below for details.
This server does not support Forward Secrecy with the reference browsers. Grade capped to B.  MORE INFO »
This server does not support Authenticated encryption (AEAD) cipher suites. Grade capped to B.  MORE INFO »
This server's certificate chain is incomplete. Grade capped to B.
HTTP request to this server failed, see below for details.
Certificate #1: RSA 2048 bits (SHA256withRSA)
Server Key and Certificate #1
Subject pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=
Common names pax.csd.disa.mil
Alternative names pax.csd.disa.mil
Serial Number 017840
Valid from Mon, 13 Mar 2017 15:14:05 UTC
Valid until Fri, 13 Mar 2020 15:14:05 UTC (expires in 5 months and 18 days)
Key RSA 2048 bits (e 65537)
Weak key (Debian) No
Issuer DOD ID SW CA-38
AIA: http://crl.disa.mil/sign/DODIDSWCA_38.cer
Signature algorithm SHA256withRSA
Extended Validation No
Certificate Transparency No
OCSP Must Staple No
Revocation information CRL, OCSP
CRL: http://crl.disa.mil/crl/DODIDSWCA_38.crl
OCSP: http://ocsp.disa.mil
Revocation status Good (not revoked)
DNS CAA No (more info)
Trusted No   NOT TRUSTED (Why?)
Mozilla  Apple  Android  Java  Windows 


Additional Certificates (if supplied)
Certificates provided 1 (1187 bytes)
Chain issues Incomplete


Certification Paths
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: ece27f8ea5c13e273467796993e8f57d670fa39322e717c27557398a88511390
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download TSCP SHA256 Bridge CA
Fingerprint SHA256: 5becd8dd2e6d3fbee4d2e2306406f7c15c5a2575e4988b8edb7d601fb0ab1806
Pin SHA256: /J/yfELkoeJ3S4akPtr+yqIA4oWyFnXFZmWUJfBtLZ0=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Fortior Solutions Intermediate CA 2018
Fingerprint SHA256: 65c5055f314c07d0c519cdf11e5cb1adf1e711bfe96feb729d64f754e33059ef
Pin SHA256: +vfFCKDeQ2tWb3tejcJZ7VXqMAs7r40v3yog6Lg0XvY=

RSA 3072 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Fortior Solutions PKI Root CA 2018   Self-signed
Fingerprint SHA256: 492ac5b1c28d6b407553e3871a7f117a4a5f17bd67a3a38eddd5a92295fa2e04
Pin SHA256: ALzMVq71zoTf1kpdd9fepQrkvFwbsTYskC+MRHJlql0=

RSA 4096 bits (e 65537) / SHA256withRSA
Path #2: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: 0cfbb7742861b60c0ed2862510c8c6b1b014b6df9ef5a6751eceda2a6ef007b2
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download SAFE Bridge CA 02
Fingerprint SHA256: 1bfd91884e94845a2ff41d4b30d543aacca231363c4ef0e691c4a985af058620
Pin SHA256: 6q1Bzspwv2oiLRYOpKmqdX4aVq6zlaIt0qipuvdL4b4=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Trans Sped Mobile eIDAS QCA G2
Fingerprint SHA256: d4afa9ca41e14b9660a135ae67ab9ecf573d148ca660c3fb0f1903670a76a925
Pin SHA256: VfTO+md5cTAGCrK21ju9jGpHpW7bFK07xa9g+b6YaUU=

RSA 2048 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Trans Sped Root CA G2   Self-signed
Fingerprint SHA256: aa1c0aece5d897485444ac9da96950d827ed492b66490239204873f97beca357
Pin SHA256: 2drHryIKRSX3Rp4P9GXiB0th+SVQzEUugS+EPJFSmyo=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #3: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: ece27f8ea5c13e273467796993e8f57d670fa39322e717c27557398a88511390
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download TSCP SHA256 Bridge CA
Fingerprint SHA256: 6c53f0bdf9293718cc51fa1481d8cd378fc292a79974ae1d257764ffa40756ad
Pin SHA256: /J/yfELkoeJ3S4akPtr+yqIA4oWyFnXFZmWUJfBtLZ0=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Alexion Pharmaceuticals Issue 2 CA
Fingerprint SHA256: 0cd0794157cd296ba60aba0dcb20568ae71b97c1d87872f8a21188043e6fb80e
Pin SHA256: LXZpOiQ8DNIfqW88oUlqk0ruHS/Mp8P0r+/yl5YGEA8=

RSA 2048 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Alexion Pharmaceuticals Root CA   Self-signed
Fingerprint SHA256: e62dcca38e97f11965e56859a71bc9705ab0d16a9c746cf7ba2431ff8a4da4a4
Pin SHA256: y4Rx6OltA6Vma7cNvPmnt4oPodxkZwHoaJlAoWB4QVY=

RSA 4096 bits (e 65537) / SHA256withRSA
Path #4: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: f1dea737217dfaac3b52803bcc55e473d474727cfb0767a55a4c253fcc8d2700
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download
  Not in trust store
U.S. Government / Government Printing Office   Self-signed
Fingerprint SHA256: 277e207579c89cafdb1c80c695beefeff1916050af77e4b546094a6284fc5102
Pin SHA256: OUvZTPUh+udRjEnfs6+PqoM8YACsT7ulw+Q3TcYK82I=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #5: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: f1dea737217dfaac3b52803bcc55e473d474727cfb0767a55a4c253fcc8d2700
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download U.S. Government / Government Printing Office
Fingerprint SHA256: bd8b8f5e01be71c380de5d873cefccfa42a46f1e73b71435aa92d52b10349b89
Pin SHA256: OUvZTPUh+udRjEnfs6+PqoM8YACsT7ulw+Q3TcYK82I=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download
  Not in trust store
U.S. Government / Government Printing Office   Self-signed
Fingerprint SHA256: 61f38ff85b2b65cd9ad7a7e60038ec9a44ba36b701b5eda0e5f4e011464dcb28
Pin SHA256: f4eqEM1bv17xT0GsJrDbgVokavOVO6OU5erkFClbyWk=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: ece27f8ea5c13e273467796993e8f57d670fa39322e717c27557398a88511390
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download TSCP SHA256 Bridge CA
Fingerprint SHA256: 5becd8dd2e6d3fbee4d2e2306406f7c15c5a2575e4988b8edb7d601fb0ab1806
Pin SHA256: /J/yfELkoeJ3S4akPtr+yqIA4oWyFnXFZmWUJfBtLZ0=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Fortior Solutions Intermediate CA 2018
Fingerprint SHA256: 65c5055f314c07d0c519cdf11e5cb1adf1e711bfe96feb729d64f754e33059ef
Pin SHA256: +vfFCKDeQ2tWb3tejcJZ7VXqMAs7r40v3yog6Lg0XvY=

RSA 3072 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Fortior Solutions PKI Root CA 2018   Self-signed
Fingerprint SHA256: 492ac5b1c28d6b407553e3871a7f117a4a5f17bd67a3a38eddd5a92295fa2e04
Pin SHA256: ALzMVq71zoTf1kpdd9fepQrkvFwbsTYskC+MRHJlql0=

RSA 4096 bits (e 65537) / SHA256withRSA
Path #2: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: 0cfbb7742861b60c0ed2862510c8c6b1b014b6df9ef5a6751eceda2a6ef007b2
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download SAFE Bridge CA 02
Fingerprint SHA256: 1bfd91884e94845a2ff41d4b30d543aacca231363c4ef0e691c4a985af058620
Pin SHA256: 6q1Bzspwv2oiLRYOpKmqdX4aVq6zlaIt0qipuvdL4b4=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Trans Sped Mobile eIDAS QCA G2
Fingerprint SHA256: d4afa9ca41e14b9660a135ae67ab9ecf573d148ca660c3fb0f1903670a76a925
Pin SHA256: VfTO+md5cTAGCrK21ju9jGpHpW7bFK07xa9g+b6YaUU=

RSA 2048 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Trans Sped Root CA G2   Self-signed
Fingerprint SHA256: aa1c0aece5d897485444ac9da96950d827ed492b66490239204873f97beca357
Pin SHA256: 2drHryIKRSX3Rp4P9GXiB0th+SVQzEUugS+EPJFSmyo=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #3: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: ece27f8ea5c13e273467796993e8f57d670fa39322e717c27557398a88511390
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download TSCP SHA256 Bridge CA
Fingerprint SHA256: 6c53f0bdf9293718cc51fa1481d8cd378fc292a79974ae1d257764ffa40756ad
Pin SHA256: /J/yfELkoeJ3S4akPtr+yqIA4oWyFnXFZmWUJfBtLZ0=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Alexion Pharmaceuticals Issue 2 CA
Fingerprint SHA256: 0cd0794157cd296ba60aba0dcb20568ae71b97c1d87872f8a21188043e6fb80e
Pin SHA256: LXZpOiQ8DNIfqW88oUlqk0ruHS/Mp8P0r+/yl5YGEA8=

RSA 2048 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Alexion Pharmaceuticals Root CA   Self-signed
Fingerprint SHA256: e62dcca38e97f11965e56859a71bc9705ab0d16a9c746cf7ba2431ff8a4da4a4
Pin SHA256: y4Rx6OltA6Vma7cNvPmnt4oPodxkZwHoaJlAoWB4QVY=

RSA 4096 bits (e 65537) / SHA256withRSA
Path #4: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: f1dea737217dfaac3b52803bcc55e473d474727cfb0767a55a4c253fcc8d2700
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download
  Not in trust store
U.S. Government / Government Printing Office   Self-signed
Fingerprint SHA256: 277e207579c89cafdb1c80c695beefeff1916050af77e4b546094a6284fc5102
Pin SHA256: OUvZTPUh+udRjEnfs6+PqoM8YACsT7ulw+Q3TcYK82I=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #5: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: f1dea737217dfaac3b52803bcc55e473d474727cfb0767a55a4c253fcc8d2700
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download U.S. Government / Government Printing Office
Fingerprint SHA256: bd8b8f5e01be71c380de5d873cefccfa42a46f1e73b71435aa92d52b10349b89
Pin SHA256: OUvZTPUh+udRjEnfs6+PqoM8YACsT7ulw+Q3TcYK82I=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download
  Not in trust store
U.S. Government / Government Printing Office   Self-signed
Fingerprint SHA256: 61f38ff85b2b65cd9ad7a7e60038ec9a44ba36b701b5eda0e5f4e011464dcb28
Pin SHA256: f4eqEM1bv17xT0GsJrDbgVokavOVO6OU5erkFClbyWk=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: ece27f8ea5c13e273467796993e8f57d670fa39322e717c27557398a88511390
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download TSCP SHA256 Bridge CA
Fingerprint SHA256: 5becd8dd2e6d3fbee4d2e2306406f7c15c5a2575e4988b8edb7d601fb0ab1806
Pin SHA256: /J/yfELkoeJ3S4akPtr+yqIA4oWyFnXFZmWUJfBtLZ0=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Fortior Solutions Intermediate CA 2018
Fingerprint SHA256: 65c5055f314c07d0c519cdf11e5cb1adf1e711bfe96feb729d64f754e33059ef
Pin SHA256: +vfFCKDeQ2tWb3tejcJZ7VXqMAs7r40v3yog6Lg0XvY=

RSA 3072 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Fortior Solutions PKI Root CA 2018   Self-signed
Fingerprint SHA256: 492ac5b1c28d6b407553e3871a7f117a4a5f17bd67a3a38eddd5a92295fa2e04
Pin SHA256: ALzMVq71zoTf1kpdd9fepQrkvFwbsTYskC+MRHJlql0=

RSA 4096 bits (e 65537) / SHA256withRSA
Path #2: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: 0cfbb7742861b60c0ed2862510c8c6b1b014b6df9ef5a6751eceda2a6ef007b2
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download SAFE Bridge CA 02
Fingerprint SHA256: 1bfd91884e94845a2ff41d4b30d543aacca231363c4ef0e691c4a985af058620
Pin SHA256: 6q1Bzspwv2oiLRYOpKmqdX4aVq6zlaIt0qipuvdL4b4=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Trans Sped Mobile eIDAS QCA G2
Fingerprint SHA256: d4afa9ca41e14b9660a135ae67ab9ecf573d148ca660c3fb0f1903670a76a925
Pin SHA256: VfTO+md5cTAGCrK21ju9jGpHpW7bFK07xa9g+b6YaUU=

RSA 2048 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Trans Sped Root CA G2   Self-signed
Fingerprint SHA256: aa1c0aece5d897485444ac9da96950d827ed492b66490239204873f97beca357
Pin SHA256: 2drHryIKRSX3Rp4P9GXiB0th+SVQzEUugS+EPJFSmyo=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #3: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: ece27f8ea5c13e273467796993e8f57d670fa39322e717c27557398a88511390
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download TSCP SHA256 Bridge CA
Fingerprint SHA256: 6c53f0bdf9293718cc51fa1481d8cd378fc292a79974ae1d257764ffa40756ad
Pin SHA256: /J/yfELkoeJ3S4akPtr+yqIA4oWyFnXFZmWUJfBtLZ0=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Alexion Pharmaceuticals Issue 2 CA
Fingerprint SHA256: 0cd0794157cd296ba60aba0dcb20568ae71b97c1d87872f8a21188043e6fb80e
Pin SHA256: LXZpOiQ8DNIfqW88oUlqk0ruHS/Mp8P0r+/yl5YGEA8=

RSA 2048 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Alexion Pharmaceuticals Root CA   Self-signed
Fingerprint SHA256: e62dcca38e97f11965e56859a71bc9705ab0d16a9c746cf7ba2431ff8a4da4a4
Pin SHA256: y4Rx6OltA6Vma7cNvPmnt4oPodxkZwHoaJlAoWB4QVY=

RSA 4096 bits (e 65537) / SHA256withRSA
Path #4: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: f1dea737217dfaac3b52803bcc55e473d474727cfb0767a55a4c253fcc8d2700
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download
  Not in trust store
U.S. Government / Government Printing Office   Self-signed
Fingerprint SHA256: 277e207579c89cafdb1c80c695beefeff1916050af77e4b546094a6284fc5102
Pin SHA256: OUvZTPUh+udRjEnfs6+PqoM8YACsT7ulw+Q3TcYK82I=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #5: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: f1dea737217dfaac3b52803bcc55e473d474727cfb0767a55a4c253fcc8d2700
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download U.S. Government / Government Printing Office
Fingerprint SHA256: bd8b8f5e01be71c380de5d873cefccfa42a46f1e73b71435aa92d52b10349b89
Pin SHA256: OUvZTPUh+udRjEnfs6+PqoM8YACsT7ulw+Q3TcYK82I=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download
  Not in trust store
U.S. Government / Government Printing Office   Self-signed
Fingerprint SHA256: 61f38ff85b2b65cd9ad7a7e60038ec9a44ba36b701b5eda0e5f4e011464dcb28
Pin SHA256: f4eqEM1bv17xT0GsJrDbgVokavOVO6OU5erkFClbyWk=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: ece27f8ea5c13e273467796993e8f57d670fa39322e717c27557398a88511390
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download TSCP SHA256 Bridge CA
Fingerprint SHA256: 5becd8dd2e6d3fbee4d2e2306406f7c15c5a2575e4988b8edb7d601fb0ab1806
Pin SHA256: /J/yfELkoeJ3S4akPtr+yqIA4oWyFnXFZmWUJfBtLZ0=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Fortior Solutions Intermediate CA 2018
Fingerprint SHA256: 65c5055f314c07d0c519cdf11e5cb1adf1e711bfe96feb729d64f754e33059ef
Pin SHA256: +vfFCKDeQ2tWb3tejcJZ7VXqMAs7r40v3yog6Lg0XvY=

RSA 3072 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Fortior Solutions PKI Root CA 2018   Self-signed
Fingerprint SHA256: 492ac5b1c28d6b407553e3871a7f117a4a5f17bd67a3a38eddd5a92295fa2e04
Pin SHA256: ALzMVq71zoTf1kpdd9fepQrkvFwbsTYskC+MRHJlql0=

RSA 4096 bits (e 65537) / SHA256withRSA
Path #2: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: 0cfbb7742861b60c0ed2862510c8c6b1b014b6df9ef5a6751eceda2a6ef007b2
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download SAFE Bridge CA 02
Fingerprint SHA256: 1bfd91884e94845a2ff41d4b30d543aacca231363c4ef0e691c4a985af058620
Pin SHA256: 6q1Bzspwv2oiLRYOpKmqdX4aVq6zlaIt0qipuvdL4b4=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Trans Sped Mobile eIDAS QCA G2
Fingerprint SHA256: d4afa9ca41e14b9660a135ae67ab9ecf573d148ca660c3fb0f1903670a76a925
Pin SHA256: VfTO+md5cTAGCrK21ju9jGpHpW7bFK07xa9g+b6YaUU=

RSA 2048 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Trans Sped Root CA G2   Self-signed
Fingerprint SHA256: aa1c0aece5d897485444ac9da96950d827ed492b66490239204873f97beca357
Pin SHA256: 2drHryIKRSX3Rp4P9GXiB0th+SVQzEUugS+EPJFSmyo=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #3: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: ece27f8ea5c13e273467796993e8f57d670fa39322e717c27557398a88511390
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download TSCP SHA256 Bridge CA
Fingerprint SHA256: 6c53f0bdf9293718cc51fa1481d8cd378fc292a79974ae1d257764ffa40756ad
Pin SHA256: /J/yfELkoeJ3S4akPtr+yqIA4oWyFnXFZmWUJfBtLZ0=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Alexion Pharmaceuticals Issue 2 CA
Fingerprint SHA256: 0cd0794157cd296ba60aba0dcb20568ae71b97c1d87872f8a21188043e6fb80e
Pin SHA256: LXZpOiQ8DNIfqW88oUlqk0ruHS/Mp8P0r+/yl5YGEA8=

RSA 2048 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Alexion Pharmaceuticals Root CA   Self-signed
Fingerprint SHA256: e62dcca38e97f11965e56859a71bc9705ab0d16a9c746cf7ba2431ff8a4da4a4
Pin SHA256: y4Rx6OltA6Vma7cNvPmnt4oPodxkZwHoaJlAoWB4QVY=

RSA 4096 bits (e 65537) / SHA256withRSA
Path #4: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: f1dea737217dfaac3b52803bcc55e473d474727cfb0767a55a4c253fcc8d2700
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download
  Not in trust store
U.S. Government / Government Printing Office   Self-signed
Fingerprint SHA256: 277e207579c89cafdb1c80c695beefeff1916050af77e4b546094a6284fc5102
Pin SHA256: OUvZTPUh+udRjEnfs6+PqoM8YACsT7ulw+Q3TcYK82I=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #5: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: f1dea737217dfaac3b52803bcc55e473d474727cfb0767a55a4c253fcc8d2700
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download U.S. Government / Government Printing Office
Fingerprint SHA256: bd8b8f5e01be71c380de5d873cefccfa42a46f1e73b71435aa92d52b10349b89
Pin SHA256: OUvZTPUh+udRjEnfs6+PqoM8YACsT7ulw+Q3TcYK82I=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download
  Not in trust store
U.S. Government / Government Printing Office   Self-signed
Fingerprint SHA256: 61f38ff85b2b65cd9ad7a7e60038ec9a44ba36b701b5eda0e5f4e011464dcb28
Pin SHA256: f4eqEM1bv17xT0GsJrDbgVokavOVO6OU5erkFClbyWk=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: ece27f8ea5c13e273467796993e8f57d670fa39322e717c27557398a88511390
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download TSCP SHA256 Bridge CA
Fingerprint SHA256: 5becd8dd2e6d3fbee4d2e2306406f7c15c5a2575e4988b8edb7d601fb0ab1806
Pin SHA256: /J/yfELkoeJ3S4akPtr+yqIA4oWyFnXFZmWUJfBtLZ0=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Fortior Solutions Intermediate CA 2018
Fingerprint SHA256: 65c5055f314c07d0c519cdf11e5cb1adf1e711bfe96feb729d64f754e33059ef
Pin SHA256: +vfFCKDeQ2tWb3tejcJZ7VXqMAs7r40v3yog6Lg0XvY=

RSA 3072 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Fortior Solutions PKI Root CA 2018   Self-signed
Fingerprint SHA256: 492ac5b1c28d6b407553e3871a7f117a4a5f17bd67a3a38eddd5a92295fa2e04
Pin SHA256: ALzMVq71zoTf1kpdd9fepQrkvFwbsTYskC+MRHJlql0=

RSA 4096 bits (e 65537) / SHA256withRSA
Path #2: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: 0cfbb7742861b60c0ed2862510c8c6b1b014b6df9ef5a6751eceda2a6ef007b2
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download SAFE Bridge CA 02
Fingerprint SHA256: 1bfd91884e94845a2ff41d4b30d543aacca231363c4ef0e691c4a985af058620
Pin SHA256: 6q1Bzspwv2oiLRYOpKmqdX4aVq6zlaIt0qipuvdL4b4=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Trans Sped Mobile eIDAS QCA G2
Fingerprint SHA256: d4afa9ca41e14b9660a135ae67ab9ecf573d148ca660c3fb0f1903670a76a925
Pin SHA256: VfTO+md5cTAGCrK21ju9jGpHpW7bFK07xa9g+b6YaUU=

RSA 2048 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Trans Sped Root CA G2   Self-signed
Fingerprint SHA256: aa1c0aece5d897485444ac9da96950d827ed492b66490239204873f97beca357
Pin SHA256: 2drHryIKRSX3Rp4P9GXiB0th+SVQzEUugS+EPJFSmyo=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #3: Trusted
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: 039c1473089282fb36a4dbc23b1125aec83219c6e624fd169b02e08e6409c3f2
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 In trust store Federal Common Policy CA   Self-signed
Fingerprint SHA256: 894ebc0b23da2a50c0186b7f8f25ef1f6b2935af32a94584ef80aaf877a3a06e
Pin SHA256: jotW9ZGKJb2F3OdmY/2UzCNpDxDqlYZhMXHG+DeIkNU=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #4: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: ece27f8ea5c13e273467796993e8f57d670fa39322e717c27557398a88511390
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download TSCP SHA256 Bridge CA
Fingerprint SHA256: 6c53f0bdf9293718cc51fa1481d8cd378fc292a79974ae1d257764ffa40756ad
Pin SHA256: /J/yfELkoeJ3S4akPtr+yqIA4oWyFnXFZmWUJfBtLZ0=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download Alexion Pharmaceuticals Issue 2 CA
Fingerprint SHA256: 0cd0794157cd296ba60aba0dcb20568ae71b97c1d87872f8a21188043e6fb80e
Pin SHA256: LXZpOiQ8DNIfqW88oUlqk0ruHS/Mp8P0r+/yl5YGEA8=

RSA 2048 bits (e 65537) / SHA256withRSA
8 Extra download
  Not in trust store
Alexion Pharmaceuticals Root CA   Self-signed
Fingerprint SHA256: e62dcca38e97f11965e56859a71bc9705ab0d16a9c746cf7ba2431ff8a4da4a4
Pin SHA256: y4Rx6OltA6Vma7cNvPmnt4oPodxkZwHoaJlAoWB4QVY=

RSA 4096 bits (e 65537) / SHA256withRSA
Path #5: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: f1dea737217dfaac3b52803bcc55e473d474727cfb0767a55a4c253fcc8d2700
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download
  Not in trust store
U.S. Government / Government Printing Office   Self-signed
Fingerprint SHA256: 277e207579c89cafdb1c80c695beefeff1916050af77e4b546094a6284fc5102
Pin SHA256: OUvZTPUh+udRjEnfs6+PqoM8YACsT7ulw+Q3TcYK82I=

RSA 2048 bits (e 65537) / SHA256withRSA
Path #6: Trusted
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: 9f91eb41b75ba01f95ebe26a36276ee0265c4c44785b7f2f3d0bc349b16a72ae
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download CertiPath Bridge CA - G2
Fingerprint SHA256: b828f113de992937944b886fc9cd7cacba80e547064ce416609b6ebe9787f2ce
Pin SHA256: dmL9iH2qjc79D/dM+p3GOSMKNoIBh+AGfgIGgggdvL8=

RSA 2048 bits (e 65537) / SHA256withRSA
7 In trust store CISRCA1   Self-signed
Fingerprint SHA256: 12ff248372bd87e44ece432198be9b04525f33dee00356fd646f8acc01412f86
Pin SHA256: kYWR8eFte+DbBRln93k93f/PuauJ1Mo1cZ2vIjHwcjs=

RSA 4096 bits (e 65537) / SHA256withRSA
Path #7: Not trusted (path does not chain to a trusted anchor)
1 Sent by server pax.csd.disa.mil
Fingerprint SHA256: 78ff7ac1e61958774ee6678a04795fb2c872fb85868596fe41707244846612be
Pin SHA256: yhGIYv+hd9PpInbxDvJrMooRPmBRqBGhAZSPYs5yihw=

RSA 2048 bits (e 65537) / SHA256withRSA
2 Extra download DOD ID SW CA-38
Fingerprint SHA256: 59fc8d390e6f92ae9ea86179ca5b9a4ae04f9b2b346f10ccc87f23aadef15207
Pin SHA256: 80MntPybZzcIvKSf1Zz8pnwFiNghC44HJ9E0W/DHA7U=

RSA 2048 bits (e 65537) / SHA256withRSA
3 Extra download DoD Root CA 3
Fingerprint SHA256: 5648b85d3a00bc26cca9b427267b82d5d1b8ce68b193300187ebd8fe3e8c0518
Pin SHA256: BCatDv9/XleFPJW5wC1oUUdGKWXSkJq9FH7Ac3fre7U=

RSA 2048 bits (e 65537) / SHA256withRSA
4 Extra download DoD Interoperability Root CA 2
Fingerprint SHA256: 82ca09462997e440700c2190b3aeb115107c5c9bdba2ee330d09fc6537afe08f
Pin SHA256: bCRiPL01OMBL23pHWrzpWlwgEhWb8VAgGvktVBZglq8=

RSA 2048 bits (e 65537) / SHA256withRSA
5 Extra download Federal Bridge CA 2016
Fingerprint SHA256: f1dea737217dfaac3b52803bcc55e473d474727cfb0767a55a4c253fcc8d2700
Pin SHA256: W2uW8Yyxj2piqce5co6eVYfNTlaNkvOA+K9uIk4h0xk=

RSA 2048 bits (e 65537) / SHA256withRSA
6 Extra download U.S. Government / Government Printing Office
Fingerprint SHA256: bd8b8f5e01be71c380de5d873cefccfa42a46f1e73b71435aa92d52b10349b89
Pin SHA256: OUvZTPUh+udRjEnfs6+PqoM8YACsT7ulw+Q3TcYK82I=

RSA 2048 bits (e 65537) / SHA256withRSA
7 Extra download
  Not in trust store
U.S. Government / Government Printing Office   Self-signed
Fingerprint SHA256: 61f38ff85b2b65cd9ad7a7e60038ec9a44ba36b701b5eda0e5f4e011464dcb28
Pin SHA256: f4eqEM1bv17xT0GsJrDbgVokavOVO6OU5erkFClbyWk=

RSA 2048 bits (e 65537) / SHA256withRSA

Click here to expand

Configuration
Protocols
TLS 1.3 No
TLS 1.2 Yes
TLS 1.1 No
TLS 1.0 No
SSL 3 No
SSL 2 No
For TLS 1.3 tests, we only support RFC 8446.


Cipher Suites
# TLS 1.2 (suites in server-preferred order)
TLS_RSA_WITH_AES_128_CBC_SHA (0x2f)   WEAK 128
TLS_RSA_WITH_AES_256_CBC_SHA (0x35)   WEAK 256
TLS_RSA_WITH_AES_256_CBC_SHA256 (0x3d)   WEAK 256


Handshake Simulation
Android 4.4.2 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Android 5.0.0 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Android 6.0 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Android 7.0 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Android 8.0 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Android 8.1 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Android 9.0 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
BingPreview Jan 2015 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Chrome 49 / XP SP3 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Chrome 69 / Win 7  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Chrome 70 / Win 10 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Chrome 75 / Win 10  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Firefox 31.3.0 ESR / Win 7 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Firefox 47 / Win 7  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Firefox 49 / XP SP3 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Firefox 62 / Win 7  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Firefox 67 / Win 10  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Googlebot Feb 2018 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
IE 11 / Win 7  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
IE 11 / Win 8.1  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
IE 11 / Win Phone 8.1  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
IE 11 / Win Phone 8.1 Update  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
IE 11 / Win 10  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Edge 15 / Win 10  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Edge 16 / Win 10  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Edge 18 / Win 10  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Edge 13 / Win Phone 10  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Java 8u161 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Java 11.0.3 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Java 12.0.1 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
OpenSSL 1.0.1l  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
OpenSSL 1.0.2s  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
OpenSSL 1.1.0k  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
OpenSSL 1.1.1c  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Safari 6 / iOS 6.0.1 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Safari 7 / iOS 7.1  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Safari 7 / OS X 10.9  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Safari 8 / iOS 8.4  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Safari 8 / OS X 10.10  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Safari 9 / iOS 9  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Safari 9 / OS X 10.11  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Safari 10 / iOS 10  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Safari 10 / OS X 10.12  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Safari 12.1.2 / MacOS 10.14.6 Beta  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Safari 12.1.1 / iOS 12.3.1  R RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
Apple ATS 9 / iOS 9  R Server closed connection
Yahoo Slurp Jan 2015 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
YandexBot Jan 2015 RSA 2048 (SHA256)   TLS 1.2 TLS_RSA_WITH_AES_128_CBC_SHA  No FS
# Not simulated clients (Protocol mismatch)
Android 2.3.7   No SNI 2 Protocol mismatch (not simulated)
Android 4.0.4 Protocol mismatch (not simulated)
Android 4.1.1 Protocol mismatch (not simulated)
Android 4.2.2 Protocol mismatch (not simulated)
Android 4.3 Protocol mismatch (not simulated)
Baidu Jan 2015 Protocol mismatch (not simulated)
IE 6 / XP   No FS 1   No SNI 2 Protocol mismatch (not simulated)
IE 7 / Vista Protocol mismatch (not simulated)
IE 8 / XP   No FS 1   No SNI 2 Protocol mismatch (not simulated)
IE 8-10 / Win 7  R Protocol mismatch (not simulated)
IE 10 / Win Phone 8.0 Protocol mismatch (not simulated)
Java 6u45   No SNI 2 Protocol mismatch (not simulated)
Java 7u25 Protocol mismatch (not simulated)
OpenSSL 0.9.8y Protocol mismatch (not simulated)
Safari 5.1.9 / OS X 10.6.8 Protocol mismatch (not simulated)
Safari 6.0.4 / OS X 10.8.4  R Protocol mismatch (not simulated)

Click here to expand

(1) Clients that do not support Forward Secrecy (FS) are excluded when determining support for it.
(2) No support for virtual SSL hosting (SNI). Connects to the default site if the server uses SNI.
(3) Only first connection attempt simulated. Browsers sometimes retry with a lower protocol version.
(R) Denotes a reference browser or client, with which we expect better effective security.
(All) We use defaults, but some platforms do not use their best protocols and features (e.g., Java 6 & 7, older IE).
(All) Certificate trust is not checked in handshake simulation, we only perform TLS handshake.


Protocol Details
DROWN No, server keys and hostname not seen elsewhere with SSLv2
(1) For a better understanding of this test, please read this longer explanation
(2) Key usage data kindly provided by the Censys network search engine; original DROWN website here
(3) Censys data is only indicative of possible key and certificate reuse; possibly out-of-date and not complete
Secure Renegotiation Supported
Secure Client-Initiated Renegotiation No
Insecure Client-Initiated Renegotiation No
BEAST attack Mitigated server-side (more info)  
POODLE (SSLv3) No, SSL 3 not supported (more info)
POODLE (TLS) No (more info)
Zombie POODLE Unknown (more info)
GOLDENDOODLE Unknown (more info)
OpenSSL 0-Length Unknown (more info)
Sleeping POODLE Unknown (more info)
Downgrade attack prevention Unknown (requires support for at least two protocols, excl. SSL2)
SSL/TLS compression No
RC4 No
Heartbeat (extension) No
Heartbleed (vulnerability) No (more info)
Ticketbleed (vulnerability) No (more info)
OpenSSL CCS vuln. (CVE-2014-0224) Unknown (more info)
OpenSSL Padding Oracle vuln.
(CVE-2016-2107)
No (more info)
ROBOT (vulnerability) No (more info)
Forward Secrecy No   WEAK (more info)
ALPN No
NPN No
Session resumption (caching) Unknown
Session resumption (tickets) No
OCSP stapling No
Strict Transport Security (HSTS) Unknown (failed HTTP request?)
HSTS Preloading Not in: Chrome  Edge  Firefox  IE 
Public Key Pinning (HPKP) Unknown (failed HTTP request?)
Public Key Pinning Report-Only Unknown (failed HTTP request?)
Public Key Pinning (Static) No (more info)
Long handshake intolerance No
TLS extension intolerance No
TLS version intolerance No
Incorrect SNI alerts No
Uses common DH primes No, DHE suites not supported
DH public server param (Ys) reuse No, DHE suites not supported
ECDH public server param reuse No, ECDHE suites not supported
Supported Named Groups -
SSL 2 handshake compatibility Yes


HTTP Requests
1 https://pax.csd.disa.mil/  (Request failed)


Miscellaneous
Test date Sun, 22 Sep 2019 03:07:06 UTC
Test duration 53.725 seconds
HTTP status code Request failed
HTTP server signature Unknown
Server hostname pax.csd.disa.mil


Why is my certificate not trusted?

There are many reasons why a certificate may not be trusted. The exact problem is indicated on the report card in bright red. The problems fall into three categories:

  1. Invalid certificate
  2. Invalid configuration
  3. Unknown Certificate Authority

1. Invalid certificate

A certificate is invalid if:

2. Invalid configuration

In some cases, the certificate chain does not contain all the necessary certificates to connect the web server certificate to one of the root certificates in our trust store. Less commonly, one of the certificates in the chain (other than the web server certificate) will have expired, and that invalidates the entire chain.

3. Unknown Certificate Authority

In order for trust to be established, we must have the root certificate of the signing Certificate Authority in our trust store. SSL Labs does not maintain its own trust store; instead we use the store maintained by Mozilla.

If we mark a web site as not trusted, that means that the average web user's browser will not trust it either. For certain special groups of users, such web sites can still be secure. For example, if you can securely verify that a self-signed web site is operated by a person you trust, then you can trust that self-signed web site too. Or, if you work for an organisation that manages its own trust, and you have their own root certificate already embedded in your browser. Such special cases do not work for the general public, however, and this is what we indicate on our report card.

4. Interoperability issues

In some rare cases trust cannot be established because of interoperability issues between our code and the code or configuration running on the server. We manually review such cases, but if you encounter such an issue please feel free to contact us. Such problems are very difficult to troubleshoot and you may be able to provide us with information that might help us determine the root cause.

SSL Report v2.0.2