mytravel-apps.ucdavis.edu

- University of California, Davis -

Issued by InCommon RSA Server CA

About this certificate

This digital certificate with serial number 62:3c:34:7d:60:58:8c:20:79:67:c9:71:ec:ec:0b:93 was issued on by Internet2.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

University of California, Davis

Organization: University of California, Davis
Organization unit: ARM
Address: One Shields Avenue
Postal code: 95616
State / Province: CA
Locality: Davis
Country: US

Internet2

Organization: Internet2
Organization unit: InCommon
State / Province: MI
Locality: Ann Arbor
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 62:3c:34:7d:60:58:8c:20:79:67:c9:71:ec:ec:0b:93
Serial Number (int): 130576946017071157517515974503610190739
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: c9:2f:1b:78:35:45:11:d5:51:62:29:d2:4b:12:95:b8:02:75:2c:7d
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38

Fingerprint (sha1): 73:99:55:80:13:38:eb:28:53:3a:2e:48:86:f3:21:7a:94:90:f0:8d
Fingerprint (sha256): 00:03:e1:06:9f:6f:99:35:40:e3:72:37:8a:26:1c:ec:1d:8f:41:dd:99:fe:78:cd:ca:3f:22:a6:58:a1:26:33

Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

Check the revocation status for certificate mytravel-apps.ucdavis.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for mytravel-apps.ucdavis.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

mytravel-apps.ucdavis.edu

Other certificates including the domain name ucdavis.edu

(limited to 100 certificates)
mytravel-apps.ucdavis.edu
health-stage.ucdavis.edu
bml.ucdavis.edu
cwec.ucdavis.edu
renfe.ucdavis.edu
test-web-lws.edu.help
payweb-dev.ucdavis.edu
axiomepm.ucdmc.ucdavis.edu
status.acquia.com
saintly.zeck.net
5719238044024832-fe2.pantheonsite.io
carpepm.almonds.com
developers.dss.ucdavis.edu
us.prod.campusgroups.com
bluefoxstatus.com
secure.vetmed.ucdavis.edu
staging.gifford.ucdavis.edu
numbernine.ucdavis.edu
it.uahs.arizona.edu
5719238044024832-fe2.pantheonsite.io
status.itsnationwide.com
org.ucdavis.edu
wcec.ucdavis.edu
breeze.ucdavis.edu
5733679603122176-fe4.pantheonsite.io
ucdc.edu
dev.cas.ucdavis.edu
status.takemepay.com
5644101080842240-fe2.pantheonsite.io
mobile.ucdavis.edu
5655869022797824-fe2.pantheonsite.io
5648161435549696-fe2.pantheonsite.io
smtp.lib.ucdavis.edu
chertok.physics.ucdavis.edu
ais.ucdavis.edu
5648161435549696-fe2.pantheonsite.io
dual.ucdavis.edu
listings.ucdavis.edu
csiflabs.cs.ucdavis.edu
vidi.cs.ucdavis.edu
www.superfund.ucdavis.edu
*.gsm.ucdavis.edu
cmsi.ucdavis.edu
cntrics.ucdavis.edu
adxstatus.com
linlab.ucdavis.edu
igg.ucdavis.edu
davt-0703-x3-a.ucdmc.ucdavis.edu
5727950116749312-fe4.pantheonsite.io
5756292874371072-fe1.pantheonsite.io
tle.ucdavis.edu
pczt-win-lbk-a1.primate.ucdavis.edu
psa.ucdavis.edu
anthromuseum.ucdavis.edu
5655869022797824-fe2.pantheonsite.io
asucd.ucdavis.edu
vpn.larry.ucdavis.edu
virtuallab.ucdavis.edu
5756292874371072-fe1.pantheonsite.io
scilhsapp01.ucdmc.ucdavis.edu
ces.ucdavis.edu
sfunder9cert.net
streetfilms.org
banner-api.gs.ucdavis.edu
stata.ucdavis.edu
horus.ucdavis.edu
gawsmith.ucdavis.edu
sfunder9cert.net
ceprod.ucdmc.ucdavis.edu
scdev03.ucdavis.edu
tls.automattic.com
banking-business-review.com
5747976207073280-fe2.pantheonsite.io
ionenterprise.ucdavis.edu
forensicscience.ucdavis.edu
cdn-test.battlefields.org
orcid.library.ucdavis.edu
virchow.ucdavis.edu
test.eis.uw.edu
pioneeringpunjabis.ucdavis.edu
linlab.ucdavis.edu
5742636757417984-fe1.pantheonsite.io
cnprc.ucdavis.edu
gap.ucdavis.edu
support.ucdavis.edu
citeak.multidevcom.uaf.edu
www.design-engineering.princeton.edu
bob.cs.ucdavis.edu
placemaking.ucdavis.edu
aphid.ucdavis.edu
securedns.planmygift.org
5699257587728384-fe4.pantheonsite.io
messenger.dss.ucdavis.edu
moraleslab.ucdavis.edu
eu-status.walkme.com
5666083260334080-fe3.pantheonsite.io
wiki.cse.ucdavis.edu
sapep.api.cloud.ucdavis.edu
5666083260334080-fe3.pantheonsite.io
pb2.extensiononline.ucdavis.edu

Certificate

The complete raw certificate details for mytravel-apps.ucdavis.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZ4P1iefIuxgl5PGduIU
Jzvocn0aIqkPsptCkwawH/y+Go270Db3fWifbaAzcL7VYnq2JVLXq3SIvqNgPnpz
GH7zolOcIwpPQpFYpIgtRNumjHqIJtqDuunrwCDUOO4WxY+9Hj5uUUaUz1MeDLp2
4lXbAHB63yd5GgKSN3tRNxwsaxm2h1vD/adId4ehg9nVbl+FA9IsY1gtOVHLnYWc
6t6dujKWzvGUFhv7tvaE3hQGwQh1Ta6zEmjIKcpfHP1SlA4UYJbYLY2qRL24fJWc
xTU4t3RjLa3HE3PUc7+E72C9K4Qg4f3xz0tEa6Gp1/+Qto8DMcT0d19eeCBkdT2C
DQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 130576946017071157517515974503610190739
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-24 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-23 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '95616'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Davis'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'One Shields Avenue'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of California, Davis'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ARM'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mytravel-apps.ucdavis.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22422123187877501797462999720733993956876532441395032931390592022243579318497842201868429071335662524988871919878167227289766755625774857645079548153064734633826608757074992742004784748845722917208562990131661285655389619040574559615269132117350590860529473391289340901899361031169051539490792722975583057360861168239173415773052581243809976863698343381680380958217635834944146961420794877268270463649806942327677839661833448617928045861604789736383109837678999059588621105436241756036877903621606475967444082924702954154194069599451758360673118793766696974994412347925306303273450956650232273270112533157315700687373
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c92f1b78354511d5516229d24b1295b802752c7d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mytravel-apps.ucdavis.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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