*.hr.tufts.edu
- Tufts University (Trustees of Tufts College) -
Issued by InCommon RSA Server CA
About this certificate
This digital certificate with serial number af:56:ba:07:de:3f:96:4b:33:a9:8b:be:14:f2:76:64 was issued on by Internet2.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Tufts University (Trustees of Tufts College)
Organization:
Tufts University (Trustees of Tufts College)
Organization unit: Tufts Technology Services
Organization unit: Tufts Technology Services
Address:
169 Holland Street
Postal code: 02144
State / Province: Massachusetts
Locality: Somerville
Country: US
Postal code: 02144
State / Province: Massachusetts
Locality: Somerville
Country: US
Internet2
Organization:
Internet2
Organization unit: InCommon
Organization unit: InCommon
State / Province:
MI
Locality: Ann Arbor
Country: US
Locality: Ann Arbor
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): af:56:ba:07:de:3f:96:4b:33:a9:8b:be:14:f2:76:64Serial Number (int): 233065209943760233993944298662336296548
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 72:59:08:c1:ce:ac:23:67:10:f9:a2:c8:59:f2:b6:c3:82:c3:00:45
AuthorityKeyId: 1e:05:a3:77:8f:6c:96:e2:5b:87:4b:a6:b4:86:ac:71:00:0c:e7:38
Fingerprint (sha1): 84:85:1e:98:e5:c5:85:ec:f3:7d:32:8f:bb:ea:48:42:b9:1f:0c:6a
Fingerprint (sha256): 00:1d:5b:0b:7e:d2:49:44:c6:ac:2a:b3:4a:89:3d:e8:5d:ca:5c:ac:34:26:2f:a0:38:8e:40:9d:4a:65:e0:b8
Issuing Certificate URL: http://crt.usertrust.com/InCommonRSAServerCA_2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
Check the revocation status for certificate *.hr.tufts.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.hr.tufts.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.hr.tufts.edu
Other certificates including the domain name tufts.edu
(limited to 100 certificates)
amtrust.kinnser.com
statuspage.io
sfunder1cert.net
filemaker.it.tufts.edu
tcu.tufts.edu
*.hr.tufts.edu
*.studentservices.tufts.edu
us.prod.campusgroups.com
csdd.tufts.edu
artgalleries.tufts.edu
statuspage.io
statuspage.io
spamblocker.uit.tufts.edu
grad.tufts.edu
csdd.tufts.edu
statuspage.io
cluster3.technolutions.net
www.net.tufts.edu
hrss.uit.tufts.edu
us.prod.campusgroups.com
conferences.tufts.edu
sis.uit.tufts.edu
amtrust.kinnser.com
tuftsjournal.tufts.edu
5674368789118976-fe3.pantheonsite.io
exchange.tufts.edu
uconnectlabs.com
issquaredown.com
trustees.tufts.edu
webdav.ase.tufts.edu
support10.cdnetworks.net
it.tufts.edu
statuspage.io
amtrust.kinnser.com
dental150.tufts.edu
webcenter2.studentservices.tufts.edu
cluster3.technolutions.net
sisweb-prod-01.uit.tufts.edu
*.it.tufts.edu
support10.cdnetworks.net
5649202965118976-fe1.pantheonsite.io
cluster2.technolutions.net
researchstorage.uit.tufts.edu
devtutorfinder.studentservices.tufts.edu
support10.cdnetworks.net
5692592335355904-fe2.pantheonsite.io
tcu.tufts.edu
us.prod.campusgroups.com
sfunder19cert.net
mbg.hnrc.tufts.edu
ereqtest.uit.tufts.edu
view.e.tufts.edu
tufts.edu
waddc05.tufts.ad.tufts.edu
tcu.tufts.edu
gradase.admissions.tufts.edu
www.tcu.tufts.edu
support10.cdnetworks.net
support10.cdnetworks.net
statuspage.io
statuspage.io
conferences.tufts.edu
fis.uit.tufts.edu
www.tcu.tufts.edu
statuspage.io
info.gordon.tufts.edu
wfinauditprd01.tufts.ad.tufts.edu
statuspage.io
tusc.tufts.edu
sso365.tufts.edu
support10.cdnetworks.net
uconnectlabs.com
yakamafish-star.net
n002.offcampuspartners.com
tac.admissions.tufts.edu
n002.offcampuspartners.com
statuspage.io
www.nutritionletter.tufts.edu
uconnectlabs.com
support10.cdnetworks.net
admissions.tufts.edu
offcampushousing.fau.edu
5649202965118976-fe1.pantheonsite.io
gradhlthsci.admissions.tufts.edu
*.tufts.edu
hrss.uit.tufts.edu
eventrsvp.tufts.edu
*.it.tufts.edu
streetfilms.org
us.prod.campusgroups.com
5649202965118976-fe1.pantheonsite.io
statuspage.io
*.perseus.tufts.edu
irb.viceprovost.tufts.edu
cds2.cvent.com
*.atech.tufts.edu
5673497447628800-fe2.pantheonsite.io
n002.offcampuspartners.com
tufts.edu
ugrad.admissions.tufts.edu
statuspage.io
sfunder1cert.net
filemaker.it.tufts.edu
tcu.tufts.edu
*.hr.tufts.edu
*.studentservices.tufts.edu
us.prod.campusgroups.com
csdd.tufts.edu
artgalleries.tufts.edu
statuspage.io
statuspage.io
spamblocker.uit.tufts.edu
grad.tufts.edu
csdd.tufts.edu
statuspage.io
cluster3.technolutions.net
www.net.tufts.edu
hrss.uit.tufts.edu
us.prod.campusgroups.com
conferences.tufts.edu
sis.uit.tufts.edu
amtrust.kinnser.com
tuftsjournal.tufts.edu
5674368789118976-fe3.pantheonsite.io
exchange.tufts.edu
uconnectlabs.com
issquaredown.com
trustees.tufts.edu
webdav.ase.tufts.edu
support10.cdnetworks.net
it.tufts.edu
statuspage.io
amtrust.kinnser.com
dental150.tufts.edu
webcenter2.studentservices.tufts.edu
cluster3.technolutions.net
sisweb-prod-01.uit.tufts.edu
*.it.tufts.edu
support10.cdnetworks.net
5649202965118976-fe1.pantheonsite.io
cluster2.technolutions.net
researchstorage.uit.tufts.edu
devtutorfinder.studentservices.tufts.edu
support10.cdnetworks.net
5692592335355904-fe2.pantheonsite.io
tcu.tufts.edu
us.prod.campusgroups.com
sfunder19cert.net
mbg.hnrc.tufts.edu
ereqtest.uit.tufts.edu
view.e.tufts.edu
tufts.edu
waddc05.tufts.ad.tufts.edu
tcu.tufts.edu
gradase.admissions.tufts.edu
www.tcu.tufts.edu
support10.cdnetworks.net
support10.cdnetworks.net
statuspage.io
statuspage.io
conferences.tufts.edu
fis.uit.tufts.edu
www.tcu.tufts.edu
statuspage.io
info.gordon.tufts.edu
wfinauditprd01.tufts.ad.tufts.edu
statuspage.io
tusc.tufts.edu
sso365.tufts.edu
support10.cdnetworks.net
uconnectlabs.com
yakamafish-star.net
n002.offcampuspartners.com
tac.admissions.tufts.edu
n002.offcampuspartners.com
statuspage.io
www.nutritionletter.tufts.edu
uconnectlabs.com
support10.cdnetworks.net
admissions.tufts.edu
offcampushousing.fau.edu
5649202965118976-fe1.pantheonsite.io
gradhlthsci.admissions.tufts.edu
*.tufts.edu
hrss.uit.tufts.edu
eventrsvp.tufts.edu
*.it.tufts.edu
streetfilms.org
us.prod.campusgroups.com
5649202965118976-fe1.pantheonsite.io
statuspage.io
*.perseus.tufts.edu
irb.viceprovost.tufts.edu
cds2.cvent.com
*.atech.tufts.edu
5673497447628800-fe2.pantheonsite.io
n002.offcampuspartners.com
tufts.edu
ugrad.admissions.tufts.edu
Certificate
The complete raw certificate details for *.hr.tufts.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgIRAK9WugfeP5ZLM6mLvhTydmQwDQYJKoZIhvcNAQELBQAw djELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1JMRIwEAYDVQQHEwlBbm4gQXJib3Ix EjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5Db21tb24xHzAdBgNVBAMT FkluQ29tbW9uIFJTQSBTZXJ2ZXIgQ0EwHhcNMTgwMjA4MDAwMDAwWhcNMjEwMjA3 MjM1OTU5WjCB2zELMAkGA1UEBhMCVVMxDjAMBgNVBBETBTAyMTQ0MRYwFAYDVQQI Ew1NYXNzYWNodXNldHRzMRMwEQYDVQQHEwpTb21lcnZpbGxlMRswGQYDVQQJExIx NjkgSG9sbGFuZCBTdHJlZXQxNTAzBgNVBAoTLFR1ZnRzIFVuaXZlcnNpdHkgKFRy dXN0ZWVzIG9mIFR1ZnRzIENvbGxlZ2UpMSIwIAYDVQQLExlUdWZ0cyBUZWNobm9s b2d5IFNlcnZpY2VzMRcwFQYDVQQDDA4qLmhyLnR1ZnRzLmVkdTCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAMijfdWUQsmbOskI+b2QX+iqWvpeepAQna8f KMOCW+fEhk7Sdw2bS/qJ2irNGea/RxBTy82zofkxkKZHJCl7BwjZAuLRfhnwovNS UiRtKCbdWKNJAGhct0cmW2qSZhXsZn6BWdjRAWBbMxzAzi6zTfH36M8O5VlbscVi 2CUHVUe2VJNxOUuIj/59E2COztqA866cBe8HjO4cVah1yc4aP9dh+dxS7nkGEyfB D9ZjVBRaIoNFuUcwzHN9KuO3uwqEsFRztY79ogZlJA6ru/H3xj0TF6xfy3j2mIO/ /+dP9SVslc83YI8RXEb+/xt/QmXd4RLwcMig5ymQ5mZJ45/OgT0CAwEAAaOCAcIw ggG+MB8GA1UdIwQYMBaAFB4Fo3ePbJbiW4dLprSGrHEADOc4MB0GA1UdDgQWBBRy WQjBzqwjZxD5oshZ8rbDgsMARTAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIw ADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwZwYDVR0gBGAwXjBSBgwr BgEEAa4jAQQDAQEwQjBABggrBgEFBQcCARY0aHR0cHM6Ly93d3cuaW5jb21tb24u b3JnL2NlcnQvcmVwb3NpdG9yeS9jcHNfc3NsLnBkZjAIBgZngQwBAgIwRAYDVR0f BD0wOzA5oDegNYYzaHR0cDovL2NybC5pbmNvbW1vbi1yc2Eub3JnL0luQ29tbW9u UlNBU2VydmVyQ0EuY3JsMHUGCCsGAQUFBwEBBGkwZzA+BggrBgEFBQcwAoYyaHR0 cDovL2NydC51c2VydHJ1c3QuY29tL0luQ29tbW9uUlNBU2VydmVyQ0FfMi5jcnQw JQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wGQYDVR0RBBIw EIIOKi5oci50dWZ0cy5lZHUwDQYJKoZIhvcNAQELBQADggEBAD7PNcsnANWhfD1s BkLNC1K2Yw98Q47iN+ZG+7wZ1OrowsudpQbUgY8Rl4LHvTrzzN8hmmAqLVpEClcs IUKXLFfs4rawuqAndyC2kNpdUHrHmwUBIUta8IYxBjPpii7MhaxnAUAGf7s8WJP7 f8CDecLeaEDAg8iYbzZZYBaOnwULpsgcE6ezabPm1HRnF4tOrG6ibKlv0NG55AXP fYtSYbPi8TC6cGBDglsS849hkBKAagKdn6mxWE/6nUeVguIO8vgr7nLI9+0xFBnu +Vi0DPtobRq7nK/vcfTsM3MLA4/ZgG2OVJk4dZyul1xeE7Iszo8x/3wHB3iTrxVw gXS7nw0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKN91ZRCyZs6yQj5vZBf 6Kpa+l56kBCdrx8ow4Jb58SGTtJ3DZtL+onaKs0Z5r9HEFPLzbOh+TGQpkckKXsH CNkC4tF+GfCi81JSJG0oJt1Yo0kAaFy3RyZbapJmFexmfoFZ2NEBYFszHMDOLrNN 8ffozw7lWVuxxWLYJQdVR7ZUk3E5S4iP/n0TYI7O2oDzrpwF7weM7hxVqHXJzho/ 12H53FLueQYTJ8EP1mNUFFoig0W5RzDMc30q47e7CoSwVHO1jv2iBmUkDqu78ffG PRMXrF/LePaYg7//50/1JWyVzzdgjxFcRv7/G39CZd3hEvBwyKDnKZDmZknjn86B PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 233065209943760233993944298662336296548 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ann Arbor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Internet2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'InCommon RSA Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '02144' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Massachusetts' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Somerville' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '169 Holland Street' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tufts University (Trustees of Tufts College)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tufts Technology Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.hr.tufts.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25328281676462849459426985666570919631061714432682489417868633046769701535017997892501026733802518910120128086155797132157838732423306918895164390295521527221469800924187464967951591449309152753188230454116438958554420288569533077717050476435153165399810282559170056449255102845990322317016070648687714863884432396261469890906164240599302298434026025491005196131710087930135843311332574472175125502928358430688515788894946908021252327162690861074002080552605337491876837529943898510604017224297444713950769480586603362489554566522483947578979339719499728442035582700132940907160459521199200082407665941482997476655421 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1e05a3778f6c96e25b874ba6b486ac71000ce738 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 725908c1ceac236710f9a2c859f2b6c382c30045 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.5923.1.4.3.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.incommon.org/cert/repository/cps_ssl.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.incommon-rsa.org/InCommonRSAServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/InCommonRSAServerCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hr.tufts.edu' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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