courses.rockefeller.edu

- The Rockefeller University -

Issued by COMODO High-Assurance Secure Server CA

About this certificate

This digital certificate with serial number 65:96:c4:75:a3:f3:0d:9f:bb:23:73:52:8e:4c:77:40 was issued on by COMODO CA Limited.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)

The Rockefeller University

Organization: The Rockefeller University
Organization unit: Information Technology
Organization unit: Hosted by The Rockefeller University
Organization unit: PlatinumSSL SGC
Address: 1230 York Ave.
Postal code: 10065
State / Province: New York
Locality: New York
Country: US

COMODO CA Limited

Organization: COMODO CA Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): 65:96:c4:75:a3:f3:0d:9f:bb:23:73:52:8e:4c:77:40
Serial Number (int): 135034856775773947116221614268080748352
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 16:f5:a8:00:23:b1:60:77:1e:f5:f4:81:6d:0b:da:da:e4:8a:16:01
AuthorityKeyId: 3f:d5:b5:d0:d6:44:79:50:4a:17:a3:9b:8c:4a:dc:b8:b0:22:64:6b

Fingerprint (sha1): 01:03:f6:fe:4d:28:d8:83:dd:28:6e:4c:65:4e:bf:97:89:64:c9:6e
Fingerprint (sha256): 00:0d:2d:86:8b:24:f8:b6:66:e5:84:d2:6b:97:64:97:6c:b9:3e:f3:fc:a6:77:44:00:c9:82:ac:41:e9:17:55

Issuing Certificate URL: http://crt.comodoca.com/COMODOHigh-AssuranceSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.comodoca.com
CRL Distribution Point: http://crl.comodoca.com/COMODOHigh-AssuranceSecureServerCA.crl

Check the revocation status for certificate courses.rockefeller.edu

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for courses.rockefeller.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication
Microsoft Server-Gated Cryptography
Netscape Server-Gated Cryptography

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

courses.rockefeller.edu
www.courses.rockefeller.edu

Other certificates including the domain name rockefeller.edu

(limited to 100 certificates)
courses.rockefeller.edu
pubsubmit.rockefeller.edu
phe.rockefeller.edu
rubbdb2.rockefeller.edu
stage.rockedu.rockefeller.edu
mchc.rockefeller.edu
www.rockefeller.edu
phe.rockefeller.edu
parclip.rockefeller.edu
rushib.rockefeller.edu
formspolicies.rockefeller.edu
rocklab.rockefeller.edu
sopstudentapplication.rockefeller.edu
hgidlabredcap.rockefeller.edu
academicseminars.rockefeller.edu
ldaptest.rockefeller.edu
incubator.rockefeller.edu
formspolicies.rockefeller.edu
cctscertificate.rockefeller.edu
giveandjoin.rockefeller.edu
womenandscience.rockefeller.edu
oas.rockefeller.edu
cctscertificate.rockefeller.edu
phe.rockefeller.edu
vosshall-intra.rockefeller.edu
rumail.rockefeller.edu
appext.rockefeller.edu
bridges.rockefeller.edu
labapps.rockefeller.edu
cp.rockefeller.edu
pilotprojectsreview.rockefeller.edu
rumail.rockefeller.edu
netstat.rockefeller.edu
surfapplication.rockefeller.edu
cctscertificate.rockefeller.edu
go.rockefeller.edu
notifyru.rockefeller.edu
pubsubmit.rockefeller.edu
webmail.rockefeller.edu
reeke-pubdata.rockefeller.edu
eventreg.rockefeller.edu
elf.rockefeller.edu
virtualroom-graduate.rockefeller.edu
bh.rockefeller.edu
postdocalumni.rockefeller.edu
scholarapplication.rockefeller.edu
em.rockefeller.edu
itservices.rockefeller.edu
cchi.rockefeller.edu
virtualroom.rockefeller.edu
ruauth2.rockefeller.edu
bh.rockefeller.edu
pdf-files-test.rockefeller.edu
sopstudentapplication.rockefeller.edu
postdochousingwaitlist.rockefeller.edu
www.rockefeller.edu
xenopus.rockefeller.edu
giveandjoin.rockefeller.edu
maimonlab.rockefeller.edu
ruifar.rockefeller.edu
images.rockefeller.edu
www.rockefeller.edu
test4.rockedu.rockefeller.edu
rumail.rockefeller.edu
appintpl.rockefeller.edu
lab.rockefeller.edu
sees.rockefeller.edu
phe.rockefeller.edu
test19.rockedu.rockefeller.edu
plutus.rockefeller.edu
housinglottery.rockefeller.edu
hospitalhelpdesk.rockefeller.edu
biorhythm.rockefeller.edu
netstat.rockefeller.edu
cctscertificate.rockefeller.edu
itmd.rockefeller.edu
cctscertificate.rockefeller.edu
test22.rockedu.rockefeller.edu
zhao.labapps.rockefeller.edu
giveandjoin.rockefeller.edu
elf.rockefeller.edu
webmail.rockefeller.edu
darwin.rockefeller.edu
gradrecruitment.rockefeller.edu
mchc.rockefeller.edu
ruifar.rockefeller.edu
phe.rockefeller.edu
peggy.rockefeller.edu
sslvpntest.rockefeller.edu
rumail.rockefeller.edu
rufirst.rockefeller.edu
virtualroom.rockefeller.edu
housinglottery.rockefeller.edu
courseevaluations.rockefeller.edu
digitalcommons.rockefeller.edu
ias4web.rockefeller.edu
macromolecule.rockefeller.edu
anvesana.rockefeller.edu
sopstudentapplication.rockefeller.edu
graduateapplication.rockefeller.edu

Certificate

The complete raw certificate details for courses.rockefeller.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVc5o+wyH/X9fCBhZJ+Z
j22QaTclOMhSWVTOYbqSSi8/HYcF2i54azHxJfl0gHjV+GCkwYxmzcdD/rlkPmFi
fBztecq5fXOrUCp4MCNEEKM1DhSKj4m3B4FyK5EqwifkG7hFDM6Jw4myncFK7sA9
txt/BqYyujw/Y0tu3fgMAMD5qfDg34TNvXDRm7WFLB/ekTcSDQwecXo7LyF68TDh
0SeBttopRR8sMyLbWXbsH/+Tk4PY5ZV78Y3goa88XoKsuc2ehm8LxNzP77qRqsIs
rind4v1Hicww8l1r686Jq7QoqiyzuUB3HYwJRxc3uEVSNbgw5NQGamOAzjzIfhB6
bwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 135034856775773947116221614268080748352
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO High-Assurance Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-02-11 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-02-11 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '10065'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1230 York Ave.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Rockefeller University'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Technology'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosted by The Rockefeller University'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PlatinumSSL SGC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'courses.rockefeller.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23902051966845173715510049703797098470951548597482102637065662393971086831331352631999529659705040371178234252277508870698917028563728366051523053332199084566096746469564583089260138477938022577981911905307538423781725178446273228233150225306092382457006882543344753443417816694341861602902187991898041385103409885208703439730597129946027513549022485010725153336900736809178756367985720617351683454070791987926364058514681959262527696407537859537084924756551036764472182506639660797748140580576311771789131268906381934485996786437048327530603224258000781967531074240549773713610538115350660485412741254784027190131311
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3fd5b5d0d64479504a17a39b8c4adcb8b022646b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							16f5a80023b160771ef5f4816d0bdadae48a1601
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (45 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.3.3 (serverGatedCrypto)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113730.4.1 (serverGatedCrypto)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODOHigh-AssuranceSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODOHigh-AssuranceSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'courses.rockefeller.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.courses.rockefeller.edu'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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